=======================================
Sat, 11 Jan 2025 - Debian 12.9 released
=======================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:38:10 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
btrfs-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
cdrom-core-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
cdrom-core-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
crc-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
crc-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
crypto-dm-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
crypto-dm-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
crypto-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
crypto-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
dasd-extra-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
dasd-extra-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
dasd-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
dasd-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
ext4-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
ext4-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
f2fs-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
f2fs-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
fat-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
fat-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
fuse-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
fuse-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
isofs-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
isofs-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
kernel-image-6.1.0-25-s390x-di |  6.1.106-3 | s390x
kernel-image-6.1.0-28-s390x-di |  6.1.119-1 | s390x
linux-headers-6.1.0-25-s390x |  6.1.106-3 | s390x
linux-headers-6.1.0-28-s390x |  6.1.119-1 | s390x
linux-image-6.1.0-25-s390x |  6.1.106-3 | s390x
linux-image-6.1.0-25-s390x-dbg |  6.1.106-3 | s390x
linux-image-6.1.0-28-s390x |  6.1.119-1 | s390x
linux-image-6.1.0-28-s390x-dbg |  6.1.119-1 | s390x
loop-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
loop-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
md-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
md-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
mtd-core-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
mtd-core-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
multipath-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
multipath-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
nbd-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
nbd-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
nic-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
nic-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
scsi-core-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
scsi-core-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
scsi-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
scsi-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
udf-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
udf-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x
xfs-modules-6.1.0-25-s390x-di |  6.1.106-3 | s390x
xfs-modules-6.1.0-28-s390x-di |  6.1.119-1 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:38:22 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
affs-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
affs-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
affs-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
ata-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
ata-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
ata-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
ata-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
btrfs-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
btrfs-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
btrfs-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
btrfs-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
cdrom-core-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
cdrom-core-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
cdrom-core-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
cdrom-core-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
crc-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
crc-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
crc-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
crc-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
crypto-dm-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
crypto-dm-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
crypto-dm-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
crypto-dm-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
crypto-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
crypto-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
crypto-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
crypto-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
event-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
event-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
event-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
event-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
ext4-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
ext4-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
ext4-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
ext4-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
f2fs-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
f2fs-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
f2fs-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
f2fs-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
fat-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
fat-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
fat-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
fat-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
fb-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
fb-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
fb-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
fb-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
firewire-core-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
firewire-core-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
firewire-core-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
firewire-core-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
fuse-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
fuse-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
fuse-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
fuse-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
input-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
input-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
input-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
input-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
isofs-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
isofs-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
isofs-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
isofs-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
jfs-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
jfs-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
jfs-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
jfs-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
kernel-image-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
kernel-image-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
kernel-image-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
kernel-image-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
linux-headers-6.1.0-25-4kc-malta |  6.1.106-3 | mipsel
linux-headers-6.1.0-25-mips32r2el |  6.1.106-3 | mipsel
linux-headers-6.1.0-28-4kc-malta |  6.1.119-1 | mipsel
linux-headers-6.1.0-28-mips32r2el |  6.1.119-1 | mipsel
linux-image-6.1.0-25-4kc-malta |  6.1.106-3 | mipsel
linux-image-6.1.0-25-4kc-malta-dbg |  6.1.106-3 | mipsel
linux-image-6.1.0-25-mips32r2el |  6.1.106-3 | mipsel
linux-image-6.1.0-25-mips32r2el-dbg |  6.1.106-3 | mipsel
linux-image-6.1.0-28-4kc-malta |  6.1.119-1 | mipsel
linux-image-6.1.0-28-4kc-malta-dbg |  6.1.119-1 | mipsel
linux-image-6.1.0-28-mips32r2el |  6.1.119-1 | mipsel
linux-image-6.1.0-28-mips32r2el-dbg |  6.1.119-1 | mipsel
loop-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
loop-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
loop-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
loop-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
md-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
md-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
md-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
md-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
minix-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
minix-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
minix-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
minix-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
mmc-core-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
mmc-core-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
mmc-core-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
mmc-core-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
mmc-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
mmc-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
mmc-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
mmc-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
mouse-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
mouse-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
mouse-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
mouse-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
multipath-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
multipath-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
multipath-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
multipath-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
nbd-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
nbd-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
nbd-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
nbd-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
nfs-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
nfs-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
nfs-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
nfs-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
nic-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
nic-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
nic-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
nic-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
nic-shared-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
nic-shared-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
nic-shared-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
nic-shared-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
nic-usb-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
nic-usb-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
nic-usb-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
nic-usb-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
nic-wireless-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
nic-wireless-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
nic-wireless-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
nic-wireless-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
pata-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
pata-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
pata-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
pata-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
ppp-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
ppp-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
ppp-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
ppp-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
sata-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
sata-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
sata-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
sata-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
scsi-core-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
scsi-core-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
scsi-core-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
scsi-core-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
scsi-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
scsi-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
scsi-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
scsi-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
scsi-nic-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
scsi-nic-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
scsi-nic-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
scsi-nic-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
sound-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
sound-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
sound-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
sound-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
speakup-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
speakup-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
speakup-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
speakup-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
squashfs-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
squashfs-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
squashfs-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
squashfs-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
udf-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
udf-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
udf-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
udf-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
usb-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
usb-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
usb-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
usb-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
usb-serial-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
usb-serial-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
usb-serial-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
usb-serial-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
usb-storage-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
usb-storage-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
usb-storage-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
usb-storage-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel
xfs-modules-6.1.0-25-4kc-malta-di |  6.1.106-3 | mipsel
xfs-modules-6.1.0-25-mips32r2el-di |  6.1.106-3 | mipsel
xfs-modules-6.1.0-28-4kc-malta-di |  6.1.119-1 | mipsel
xfs-modules-6.1.0-28-mips32r2el-di |  6.1.119-1 | mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:38:33 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
ata-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
btrfs-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
btrfs-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
cdrom-core-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
cdrom-core-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
crc-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
crc-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
crypto-dm-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
crypto-dm-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
crypto-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
crypto-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
event-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
event-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
ext4-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
ext4-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
f2fs-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
f2fs-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
fancontrol-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
fancontrol-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
fat-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
fat-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
fb-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
fb-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
firewire-core-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
firewire-core-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
fuse-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
fuse-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
hypervisor-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
hypervisor-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
i2c-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
i2c-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
input-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
input-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
isofs-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
isofs-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
jfs-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
jfs-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
kernel-image-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
kernel-image-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
linux-headers-6.1.0-25-powerpc64le |  6.1.106-3 | ppc64el
linux-headers-6.1.0-28-powerpc64le |  6.1.119-1 | ppc64el
linux-image-6.1.0-25-powerpc64le |  6.1.106-3 | ppc64el
linux-image-6.1.0-25-powerpc64le-dbg |  6.1.106-3 | ppc64el
linux-image-6.1.0-28-powerpc64le |  6.1.119-1 | ppc64el
linux-image-6.1.0-28-powerpc64le-dbg |  6.1.119-1 | ppc64el
loop-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
loop-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
md-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
md-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
mouse-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
mouse-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
mtd-core-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
mtd-core-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
multipath-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
multipath-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
nbd-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
nbd-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
nic-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
nic-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
nic-shared-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
nic-shared-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
nic-usb-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
nic-usb-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
nic-wireless-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
nic-wireless-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
ppp-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
ppp-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
sata-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
sata-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
scsi-core-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
scsi-core-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
scsi-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
scsi-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
scsi-nic-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
scsi-nic-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
serial-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
serial-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
squashfs-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
squashfs-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
udf-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
udf-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
uinput-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
uinput-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
usb-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
usb-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
usb-serial-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
usb-serial-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
usb-storage-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
usb-storage-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el
xfs-modules-6.1.0-25-powerpc64le-di |  6.1.106-3 | ppc64el
xfs-modules-6.1.0-28-powerpc64le-di |  6.1.119-1 | ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:38:43 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-25-amd64 |  6.1.106-3 | amd64
linux-headers-6.1.0-25-cloud-amd64 |  6.1.106-3 | amd64
linux-headers-6.1.0-25-rt-amd64 |  6.1.106-3 | amd64
linux-headers-6.1.0-28-amd64 |  6.1.119-1 | amd64
linux-headers-6.1.0-28-cloud-amd64 |  6.1.119-1 | amd64
linux-headers-6.1.0-28-rt-amd64 |  6.1.119-1 | amd64
linux-image-6.1.0-25-amd64-dbg |  6.1.106-3 | amd64
linux-image-6.1.0-25-amd64-unsigned |  6.1.106-3 | amd64
linux-image-6.1.0-25-cloud-amd64-dbg |  6.1.106-3 | amd64
linux-image-6.1.0-25-cloud-amd64-unsigned |  6.1.106-3 | amd64
linux-image-6.1.0-25-rt-amd64-dbg |  6.1.106-3 | amd64
linux-image-6.1.0-25-rt-amd64-unsigned |  6.1.106-3 | amd64
linux-image-6.1.0-28-amd64-dbg |  6.1.119-1 | amd64
linux-image-6.1.0-28-amd64-unsigned |  6.1.119-1 | amd64
linux-image-6.1.0-28-cloud-amd64-dbg |  6.1.119-1 | amd64
linux-image-6.1.0-28-cloud-amd64-unsigned |  6.1.119-1 | amd64
linux-image-6.1.0-28-rt-amd64-dbg |  6.1.119-1 | amd64
linux-image-6.1.0-28-rt-amd64-unsigned |  6.1.119-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:38:52 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-25-arm64 |  6.1.106-3 | arm64
linux-headers-6.1.0-25-cloud-arm64 |  6.1.106-3 | arm64
linux-headers-6.1.0-25-rt-arm64 |  6.1.106-3 | arm64
linux-headers-6.1.0-28-arm64 |  6.1.119-1 | arm64
linux-headers-6.1.0-28-cloud-arm64 |  6.1.119-1 | arm64
linux-headers-6.1.0-28-rt-arm64 |  6.1.119-1 | arm64
linux-image-6.1.0-25-arm64-dbg |  6.1.106-3 | arm64
linux-image-6.1.0-25-arm64-unsigned |  6.1.106-3 | arm64
linux-image-6.1.0-25-cloud-arm64-dbg |  6.1.106-3 | arm64
linux-image-6.1.0-25-cloud-arm64-unsigned |  6.1.106-3 | arm64
linux-image-6.1.0-25-rt-arm64-dbg |  6.1.106-3 | arm64
linux-image-6.1.0-25-rt-arm64-unsigned |  6.1.106-3 | arm64
linux-image-6.1.0-28-arm64-dbg |  6.1.119-1 | arm64
linux-image-6.1.0-28-arm64-unsigned |  6.1.119-1 | arm64
linux-image-6.1.0-28-cloud-arm64-dbg |  6.1.119-1 | arm64
linux-image-6.1.0-28-cloud-arm64-unsigned |  6.1.119-1 | arm64
linux-image-6.1.0-28-rt-arm64-dbg |  6.1.119-1 | arm64
linux-image-6.1.0-28-rt-arm64-unsigned |  6.1.119-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:39:27 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
btrfs-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
cdrom-core-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
cdrom-core-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
crc-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
crc-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
crypto-dm-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
crypto-dm-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
crypto-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
crypto-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
event-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
event-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
ext4-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
ext4-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
f2fs-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
f2fs-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
fat-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
fat-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
fb-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
fb-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
fuse-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
fuse-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
input-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
input-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
ipv6-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
ipv6-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
isofs-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
isofs-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
jffs2-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
jffs2-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
jfs-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
jfs-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
kernel-image-6.1.0-25-marvell-di |  6.1.106-3 | armel
kernel-image-6.1.0-28-marvell-di |  6.1.119-1 | armel
leds-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
leds-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
linux-headers-6.1.0-25-marvell |  6.1.106-3 | armel
linux-headers-6.1.0-25-rpi |  6.1.106-3 | armel
linux-headers-6.1.0-28-marvell |  6.1.119-1 | armel
linux-headers-6.1.0-28-rpi |  6.1.119-1 | armel
linux-image-6.1.0-25-marvell |  6.1.106-3 | armel
linux-image-6.1.0-25-marvell-dbg |  6.1.106-3 | armel
linux-image-6.1.0-25-rpi |  6.1.106-3 | armel
linux-image-6.1.0-25-rpi-dbg |  6.1.106-3 | armel
linux-image-6.1.0-28-marvell |  6.1.119-1 | armel
linux-image-6.1.0-28-marvell-dbg |  6.1.119-1 | armel
linux-image-6.1.0-28-rpi |  6.1.119-1 | armel
linux-image-6.1.0-28-rpi-dbg |  6.1.119-1 | armel
loop-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
loop-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
md-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
md-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
minix-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
minix-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
mmc-core-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
mmc-core-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
mmc-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
mmc-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
mouse-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
mouse-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
mtd-core-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
mtd-core-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
mtd-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
mtd-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
multipath-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
multipath-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
nbd-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
nbd-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
nic-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
nic-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
nic-shared-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
nic-shared-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
nic-usb-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
nic-usb-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
ppp-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
ppp-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
sata-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
sata-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
scsi-core-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
scsi-core-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
squashfs-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
squashfs-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
udf-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
udf-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
uinput-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
uinput-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
usb-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
usb-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
usb-serial-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
usb-serial-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel
usb-storage-modules-6.1.0-25-marvell-di |  6.1.106-3 | armel
usb-storage-modules-6.1.0-28-marvell-di |  6.1.119-1 | armel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:39:42 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
ata-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
btrfs-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
btrfs-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
cdrom-core-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
cdrom-core-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
crc-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
crc-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
crypto-dm-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
crypto-dm-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
crypto-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
crypto-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
efi-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
efi-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
event-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
event-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
ext4-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
ext4-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
f2fs-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
f2fs-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
fat-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
fat-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
fb-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
fb-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
fuse-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
fuse-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
i2c-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
i2c-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
input-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
input-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
isofs-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
isofs-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
jfs-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
jfs-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
kernel-image-6.1.0-25-armmp-di |  6.1.106-3 | armhf
kernel-image-6.1.0-28-armmp-di |  6.1.119-1 | armhf
leds-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
leds-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
linux-headers-6.1.0-25-armmp |  6.1.106-3 | armhf
linux-headers-6.1.0-25-armmp-lpae |  6.1.106-3 | armhf
linux-headers-6.1.0-25-rt-armmp |  6.1.106-3 | armhf
linux-headers-6.1.0-28-armmp |  6.1.119-1 | armhf
linux-headers-6.1.0-28-armmp-lpae |  6.1.119-1 | armhf
linux-headers-6.1.0-28-rt-armmp |  6.1.119-1 | armhf
linux-image-6.1.0-25-armmp |  6.1.106-3 | armhf
linux-image-6.1.0-25-armmp-dbg |  6.1.106-3 | armhf
linux-image-6.1.0-25-armmp-lpae |  6.1.106-3 | armhf
linux-image-6.1.0-25-armmp-lpae-dbg |  6.1.106-3 | armhf
linux-image-6.1.0-25-rt-armmp |  6.1.106-3 | armhf
linux-image-6.1.0-25-rt-armmp-dbg |  6.1.106-3 | armhf
linux-image-6.1.0-28-armmp |  6.1.119-1 | armhf
linux-image-6.1.0-28-armmp-dbg |  6.1.119-1 | armhf
linux-image-6.1.0-28-armmp-lpae |  6.1.119-1 | armhf
linux-image-6.1.0-28-armmp-lpae-dbg |  6.1.119-1 | armhf
linux-image-6.1.0-28-rt-armmp |  6.1.119-1 | armhf
linux-image-6.1.0-28-rt-armmp-dbg |  6.1.119-1 | armhf
loop-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
loop-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
md-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
md-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
mmc-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
mmc-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
mtd-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
mtd-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
multipath-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
multipath-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
nbd-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
nbd-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
nic-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
nic-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
nic-shared-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
nic-shared-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
nic-usb-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
nic-usb-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
nic-wireless-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
nic-wireless-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
pata-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
pata-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
ppp-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
ppp-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
sata-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
sata-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
scsi-core-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
scsi-core-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
scsi-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
scsi-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
scsi-nic-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
scsi-nic-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
sound-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
sound-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
speakup-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
speakup-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
squashfs-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
squashfs-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
udf-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
udf-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
uinput-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
uinput-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
usb-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
usb-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
usb-serial-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
usb-serial-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf
usb-storage-modules-6.1.0-25-armmp-di |  6.1.106-3 | armhf
usb-storage-modules-6.1.0-28-armmp-di |  6.1.119-1 | armhf

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:39:54 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-25-686 |  6.1.106-3 | i386
linux-headers-6.1.0-25-686-pae |  6.1.106-3 | i386
linux-headers-6.1.0-25-rt-686-pae |  6.1.106-3 | i386
linux-headers-6.1.0-28-686 |  6.1.119-1 | i386
linux-headers-6.1.0-28-686-pae |  6.1.119-1 | i386
linux-headers-6.1.0-28-rt-686-pae |  6.1.119-1 | i386
linux-image-6.1.0-25-686-dbg |  6.1.106-3 | i386
linux-image-6.1.0-25-686-pae-dbg |  6.1.106-3 | i386
linux-image-6.1.0-25-686-pae-unsigned |  6.1.106-3 | i386
linux-image-6.1.0-25-686-unsigned |  6.1.106-3 | i386
linux-image-6.1.0-25-rt-686-pae-dbg |  6.1.106-3 | i386
linux-image-6.1.0-25-rt-686-pae-unsigned |  6.1.106-3 | i386
linux-image-6.1.0-28-686-dbg |  6.1.119-1 | i386
linux-image-6.1.0-28-686-pae-dbg |  6.1.119-1 | i386
linux-image-6.1.0-28-686-pae-unsigned |  6.1.119-1 | i386
linux-image-6.1.0-28-686-unsigned |  6.1.119-1 | i386
linux-image-6.1.0-28-rt-686-pae-dbg |  6.1.119-1 | i386
linux-image-6.1.0-28-rt-686-pae-unsigned |  6.1.119-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:40:20 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
affs-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
affs-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
affs-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
ata-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
ata-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
ata-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
ata-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
btrfs-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
btrfs-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
btrfs-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
btrfs-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
cdrom-core-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
cdrom-core-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
cdrom-core-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
cdrom-core-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
crc-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
crc-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
crc-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
crc-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
crypto-dm-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
crypto-dm-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
crypto-dm-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
crypto-dm-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
crypto-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
crypto-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
crypto-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
crypto-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
event-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
event-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
event-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
event-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
ext4-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
ext4-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
ext4-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
ext4-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
f2fs-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
f2fs-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
f2fs-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
f2fs-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
fat-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
fat-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
fat-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
fat-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
fb-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
fb-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
fb-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
fb-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
firewire-core-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
firewire-core-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
firewire-core-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
firewire-core-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
fuse-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
fuse-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
fuse-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
fuse-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
input-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
input-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
input-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
input-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
isofs-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
isofs-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
isofs-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
isofs-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
jfs-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
jfs-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
jfs-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
jfs-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
kernel-image-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
kernel-image-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
kernel-image-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
kernel-image-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
linux-headers-6.1.0-25-5kc-malta |  6.1.106-3 | mips64el
linux-headers-6.1.0-25-mips64r2el |  6.1.106-3 | mips64el
linux-headers-6.1.0-28-5kc-malta |  6.1.119-1 | mips64el
linux-headers-6.1.0-28-mips64r2el |  6.1.119-1 | mips64el
linux-image-6.1.0-25-5kc-malta |  6.1.106-3 | mips64el
linux-image-6.1.0-25-5kc-malta-dbg |  6.1.106-3 | mips64el
linux-image-6.1.0-25-mips64r2el |  6.1.106-3 | mips64el
linux-image-6.1.0-25-mips64r2el-dbg |  6.1.106-3 | mips64el
linux-image-6.1.0-28-5kc-malta |  6.1.119-1 | mips64el
linux-image-6.1.0-28-5kc-malta-dbg |  6.1.119-1 | mips64el
linux-image-6.1.0-28-mips64r2el |  6.1.119-1 | mips64el
linux-image-6.1.0-28-mips64r2el-dbg |  6.1.119-1 | mips64el
loop-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
loop-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
loop-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
loop-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
md-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
md-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
md-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
md-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
minix-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
minix-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
minix-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
minix-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
mmc-core-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
mmc-core-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
mmc-core-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
mmc-core-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
mmc-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
mmc-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
mmc-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
mmc-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
mouse-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
mouse-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
mouse-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
mouse-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
multipath-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
multipath-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
multipath-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
multipath-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
nbd-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
nbd-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
nbd-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
nbd-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
nfs-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
nfs-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
nfs-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
nfs-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
nic-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
nic-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
nic-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
nic-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
nic-shared-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
nic-shared-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
nic-shared-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
nic-shared-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
nic-usb-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
nic-usb-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
nic-usb-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
nic-usb-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
nic-wireless-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
nic-wireless-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
nic-wireless-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
nic-wireless-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
pata-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
pata-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
pata-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
pata-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
ppp-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
ppp-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
ppp-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
ppp-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
sata-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
sata-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
sata-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
sata-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
scsi-core-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
scsi-core-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
scsi-core-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
scsi-core-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
scsi-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
scsi-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
scsi-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
scsi-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
scsi-nic-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
scsi-nic-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
scsi-nic-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
scsi-nic-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
sound-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
sound-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
sound-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
sound-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
speakup-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
speakup-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
speakup-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
speakup-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
squashfs-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
squashfs-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
squashfs-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
squashfs-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
udf-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
udf-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
udf-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
udf-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
usb-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
usb-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
usb-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
usb-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
usb-serial-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
usb-serial-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
usb-serial-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
usb-serial-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
usb-storage-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
usb-storage-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
usb-storage-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
usb-storage-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el
xfs-modules-6.1.0-25-5kc-malta-di |  6.1.106-3 | mips64el
xfs-modules-6.1.0-25-mips64r2el-di |  6.1.106-3 | mips64el
xfs-modules-6.1.0-28-5kc-malta-di |  6.1.119-1 | mips64el
xfs-modules-6.1.0-28-mips64r2el-di |  6.1.119-1 | mips64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:41:00 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
affs-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
affs-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
affs-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
ata-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
ata-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
ata-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
ata-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
btrfs-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
btrfs-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
btrfs-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
btrfs-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
cdrom-core-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
cdrom-core-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
crc-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
crc-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
crc-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
crc-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
crypto-dm-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
crypto-dm-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
crypto-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
crypto-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
crypto-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
crypto-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
event-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
event-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
event-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
event-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
ext4-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
ext4-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
ext4-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
ext4-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
f2fs-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
f2fs-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
f2fs-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
f2fs-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
fat-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
fat-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
fat-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
fat-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
fb-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
fb-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
fb-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
fb-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
firewire-core-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
firewire-core-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
firewire-core-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
firewire-core-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
fuse-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
fuse-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
fuse-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
fuse-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
input-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
input-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
input-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
input-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
isofs-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
isofs-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
isofs-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
isofs-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
jfs-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
jfs-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
jfs-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
jfs-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
kernel-image-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
kernel-image-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
kernel-image-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
kernel-image-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
linux-headers-6.1.0-25-loongson-3 |  6.1.106-3 | mips64el, mipsel
linux-headers-6.1.0-25-octeon |  6.1.106-3 | mips64el, mipsel
linux-headers-6.1.0-28-loongson-3 |  6.1.119-1 | mips64el, mipsel
linux-headers-6.1.0-28-octeon |  6.1.119-1 | mips64el, mipsel
linux-image-6.1.0-25-loongson-3 |  6.1.106-3 | mips64el, mipsel
linux-image-6.1.0-25-loongson-3-dbg |  6.1.106-3 | mips64el, mipsel
linux-image-6.1.0-25-octeon |  6.1.106-3 | mips64el, mipsel
linux-image-6.1.0-25-octeon-dbg |  6.1.106-3 | mips64el, mipsel
linux-image-6.1.0-28-loongson-3 |  6.1.119-1 | mips64el, mipsel
linux-image-6.1.0-28-loongson-3-dbg |  6.1.119-1 | mips64el, mipsel
linux-image-6.1.0-28-octeon |  6.1.119-1 | mips64el, mipsel
linux-image-6.1.0-28-octeon-dbg |  6.1.119-1 | mips64el, mipsel
loop-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
loop-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
loop-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
loop-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
md-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
md-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
md-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
md-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
minix-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
minix-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
minix-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
minix-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
mmc-core-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
mmc-core-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
mmc-core-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
mmc-core-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
mmc-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
mmc-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
mmc-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
mmc-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
mouse-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
mouse-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
mouse-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
mouse-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
multipath-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
multipath-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
multipath-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
multipath-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
nbd-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
nbd-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
nbd-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
nbd-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
nfs-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
nfs-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
nfs-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
nfs-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
nic-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
nic-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
nic-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
nic-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
nic-shared-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
nic-shared-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
nic-shared-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
nic-shared-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
nic-usb-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
nic-usb-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
nic-usb-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
nic-usb-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
nic-wireless-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
nic-wireless-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
pata-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
pata-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
pata-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
pata-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
ppp-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
ppp-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
ppp-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
ppp-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
sata-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
sata-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
sata-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
sata-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
scsi-core-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
scsi-core-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
scsi-core-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
scsi-core-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
scsi-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
scsi-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
scsi-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
scsi-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
scsi-nic-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
scsi-nic-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
sound-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
sound-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
sound-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
sound-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
speakup-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
speakup-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
speakup-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
speakup-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
squashfs-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
squashfs-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
squashfs-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
squashfs-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
udf-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
udf-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
udf-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
udf-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
usb-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
usb-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
usb-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
usb-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
usb-serial-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
usb-serial-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
usb-serial-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
usb-serial-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
usb-storage-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
usb-storage-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
usb-storage-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
usb-storage-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel
xfs-modules-6.1.0-25-loongson-3-di |  6.1.106-3 | mips64el, mipsel
xfs-modules-6.1.0-25-octeon-di |  6.1.106-3 | mips64el, mipsel
xfs-modules-6.1.0-28-loongson-3-di |  6.1.119-1 | mips64el, mipsel
xfs-modules-6.1.0-28-octeon-di |  6.1.119-1 | mips64el, mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:41:18 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
acpi-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
ata-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
ata-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
btrfs-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
btrfs-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
cdrom-core-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
cdrom-core-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
crc-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
crc-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
crypto-dm-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
crypto-dm-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
crypto-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
crypto-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
efi-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
efi-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
event-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
event-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
ext4-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
ext4-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
f2fs-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
f2fs-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
fat-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
fat-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
fb-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
fb-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
firewire-core-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
firewire-core-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
fuse-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
fuse-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
i2c-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
i2c-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
input-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
input-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
isofs-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
isofs-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
jfs-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
jfs-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
kernel-image-6.1.0-25-amd64-di |  6.1.106-3 | amd64
kernel-image-6.1.0-28-amd64-di |  6.1.119-1 | amd64
linux-image-6.1.0-25-amd64 |  6.1.106-3 | amd64
linux-image-6.1.0-25-cloud-amd64 |  6.1.106-3 | amd64
linux-image-6.1.0-25-rt-amd64 |  6.1.106-3 | amd64
linux-image-6.1.0-28-amd64 |  6.1.119-1 | amd64
linux-image-6.1.0-28-cloud-amd64 |  6.1.119-1 | amd64
linux-image-6.1.0-28-rt-amd64 |  6.1.119-1 | amd64
loop-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
loop-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
md-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
md-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
mmc-core-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
mmc-core-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
mmc-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
mmc-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
mouse-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
mouse-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
mtd-core-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
mtd-core-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
multipath-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
multipath-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
nbd-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
nbd-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
nic-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
nic-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
nic-pcmcia-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
nic-pcmcia-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
nic-shared-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
nic-shared-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
nic-usb-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
nic-usb-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
nic-wireless-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
nic-wireless-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
pata-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
pata-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
pcmcia-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
pcmcia-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
pcmcia-storage-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
pcmcia-storage-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
ppp-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
ppp-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
rfkill-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
rfkill-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
sata-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
sata-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
scsi-core-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
scsi-core-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
scsi-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
scsi-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
scsi-nic-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
scsi-nic-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
serial-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
serial-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
sound-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
sound-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
speakup-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
speakup-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
squashfs-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
squashfs-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
udf-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
udf-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
uinput-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
uinput-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
usb-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
usb-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
usb-serial-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
usb-serial-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
usb-storage-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
usb-storage-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64
xfs-modules-6.1.0-25-amd64-di |  6.1.106-3 | amd64
xfs-modules-6.1.0-28-amd64-di |  6.1.119-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-amd64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:41:36 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
ata-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
btrfs-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
btrfs-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
cdrom-core-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
cdrom-core-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
crc-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
crc-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
crypto-dm-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
crypto-dm-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
crypto-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
crypto-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
efi-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
efi-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
event-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
event-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
ext4-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
ext4-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
f2fs-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
f2fs-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
fat-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
fat-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
fb-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
fb-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
fuse-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
fuse-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
i2c-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
i2c-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
input-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
input-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
isofs-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
isofs-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
jfs-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
jfs-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
kernel-image-6.1.0-25-arm64-di |  6.1.106-3 | arm64
kernel-image-6.1.0-28-arm64-di |  6.1.119-1 | arm64
leds-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
leds-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
linux-image-6.1.0-25-arm64 |  6.1.106-3 | arm64
linux-image-6.1.0-25-cloud-arm64 |  6.1.106-3 | arm64
linux-image-6.1.0-25-rt-arm64 |  6.1.106-3 | arm64
linux-image-6.1.0-28-arm64 |  6.1.119-1 | arm64
linux-image-6.1.0-28-cloud-arm64 |  6.1.119-1 | arm64
linux-image-6.1.0-28-rt-arm64 |  6.1.119-1 | arm64
loop-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
loop-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
md-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
md-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
mmc-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
mmc-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
mtd-core-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
mtd-core-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
multipath-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
multipath-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
nbd-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
nbd-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
nic-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
nic-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
nic-shared-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
nic-shared-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
nic-usb-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
nic-usb-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
nic-wireless-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
nic-wireless-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
ppp-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
ppp-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
sata-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
sata-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
scsi-core-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
scsi-core-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
scsi-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
scsi-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
scsi-nic-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
scsi-nic-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
sound-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
sound-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
speakup-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
speakup-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
squashfs-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
squashfs-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
udf-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
udf-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
uinput-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
uinput-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
usb-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
usb-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
usb-serial-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
usb-serial-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
usb-storage-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
usb-storage-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64
xfs-modules-6.1.0-25-arm64-di |  6.1.106-3 | arm64
xfs-modules-6.1.0-28-arm64-di |  6.1.119-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-arm64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:42:08 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-25-686-di |  6.1.106-3 | i386
acpi-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
acpi-modules-6.1.0-28-686-di |  6.1.119-1 | i386
acpi-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
ata-modules-6.1.0-25-686-di |  6.1.106-3 | i386
ata-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
ata-modules-6.1.0-28-686-di |  6.1.119-1 | i386
ata-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
btrfs-modules-6.1.0-25-686-di |  6.1.106-3 | i386
btrfs-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
btrfs-modules-6.1.0-28-686-di |  6.1.119-1 | i386
btrfs-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
cdrom-core-modules-6.1.0-25-686-di |  6.1.106-3 | i386
cdrom-core-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
cdrom-core-modules-6.1.0-28-686-di |  6.1.119-1 | i386
cdrom-core-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
crc-modules-6.1.0-25-686-di |  6.1.106-3 | i386
crc-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
crc-modules-6.1.0-28-686-di |  6.1.119-1 | i386
crc-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
crypto-dm-modules-6.1.0-25-686-di |  6.1.106-3 | i386
crypto-dm-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
crypto-dm-modules-6.1.0-28-686-di |  6.1.119-1 | i386
crypto-dm-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
crypto-modules-6.1.0-25-686-di |  6.1.106-3 | i386
crypto-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
crypto-modules-6.1.0-28-686-di |  6.1.119-1 | i386
crypto-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
efi-modules-6.1.0-25-686-di |  6.1.106-3 | i386
efi-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
efi-modules-6.1.0-28-686-di |  6.1.119-1 | i386
efi-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
event-modules-6.1.0-25-686-di |  6.1.106-3 | i386
event-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
event-modules-6.1.0-28-686-di |  6.1.119-1 | i386
event-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
ext4-modules-6.1.0-25-686-di |  6.1.106-3 | i386
ext4-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
ext4-modules-6.1.0-28-686-di |  6.1.119-1 | i386
ext4-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
f2fs-modules-6.1.0-25-686-di |  6.1.106-3 | i386
f2fs-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
f2fs-modules-6.1.0-28-686-di |  6.1.119-1 | i386
f2fs-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
fat-modules-6.1.0-25-686-di |  6.1.106-3 | i386
fat-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
fat-modules-6.1.0-28-686-di |  6.1.119-1 | i386
fat-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
fb-modules-6.1.0-25-686-di |  6.1.106-3 | i386
fb-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
fb-modules-6.1.0-28-686-di |  6.1.119-1 | i386
fb-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
firewire-core-modules-6.1.0-25-686-di |  6.1.106-3 | i386
firewire-core-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
firewire-core-modules-6.1.0-28-686-di |  6.1.119-1 | i386
firewire-core-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
fuse-modules-6.1.0-25-686-di |  6.1.106-3 | i386
fuse-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
fuse-modules-6.1.0-28-686-di |  6.1.119-1 | i386
fuse-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
i2c-modules-6.1.0-25-686-di |  6.1.106-3 | i386
i2c-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
i2c-modules-6.1.0-28-686-di |  6.1.119-1 | i386
i2c-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
input-modules-6.1.0-25-686-di |  6.1.106-3 | i386
input-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
input-modules-6.1.0-28-686-di |  6.1.119-1 | i386
input-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
isofs-modules-6.1.0-25-686-di |  6.1.106-3 | i386
isofs-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
isofs-modules-6.1.0-28-686-di |  6.1.119-1 | i386
isofs-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
jfs-modules-6.1.0-25-686-di |  6.1.106-3 | i386
jfs-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
jfs-modules-6.1.0-28-686-di |  6.1.119-1 | i386
jfs-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
kernel-image-6.1.0-25-686-di |  6.1.106-3 | i386
kernel-image-6.1.0-25-686-pae-di |  6.1.106-3 | i386
kernel-image-6.1.0-28-686-di |  6.1.119-1 | i386
kernel-image-6.1.0-28-686-pae-di |  6.1.119-1 | i386
linux-image-6.1.0-25-686 |  6.1.106-3 | i386
linux-image-6.1.0-25-686-pae |  6.1.106-3 | i386
linux-image-6.1.0-25-rt-686-pae |  6.1.106-3 | i386
linux-image-6.1.0-28-686 |  6.1.119-1 | i386
linux-image-6.1.0-28-686-pae |  6.1.119-1 | i386
linux-image-6.1.0-28-rt-686-pae |  6.1.119-1 | i386
loop-modules-6.1.0-25-686-di |  6.1.106-3 | i386
loop-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
loop-modules-6.1.0-28-686-di |  6.1.119-1 | i386
loop-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
md-modules-6.1.0-25-686-di |  6.1.106-3 | i386
md-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
md-modules-6.1.0-28-686-di |  6.1.119-1 | i386
md-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
mmc-core-modules-6.1.0-25-686-di |  6.1.106-3 | i386
mmc-core-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
mmc-core-modules-6.1.0-28-686-di |  6.1.119-1 | i386
mmc-core-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
mmc-modules-6.1.0-25-686-di |  6.1.106-3 | i386
mmc-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
mmc-modules-6.1.0-28-686-di |  6.1.119-1 | i386
mmc-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
mouse-modules-6.1.0-25-686-di |  6.1.106-3 | i386
mouse-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
mouse-modules-6.1.0-28-686-di |  6.1.119-1 | i386
mouse-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
mtd-core-modules-6.1.0-25-686-di |  6.1.106-3 | i386
mtd-core-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
mtd-core-modules-6.1.0-28-686-di |  6.1.119-1 | i386
mtd-core-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
multipath-modules-6.1.0-25-686-di |  6.1.106-3 | i386
multipath-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
multipath-modules-6.1.0-28-686-di |  6.1.119-1 | i386
multipath-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
nbd-modules-6.1.0-25-686-di |  6.1.106-3 | i386
nbd-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
nbd-modules-6.1.0-28-686-di |  6.1.119-1 | i386
nbd-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
nic-modules-6.1.0-25-686-di |  6.1.106-3 | i386
nic-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
nic-modules-6.1.0-28-686-di |  6.1.119-1 | i386
nic-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
nic-pcmcia-modules-6.1.0-25-686-di |  6.1.106-3 | i386
nic-pcmcia-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
nic-pcmcia-modules-6.1.0-28-686-di |  6.1.119-1 | i386
nic-pcmcia-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
nic-shared-modules-6.1.0-25-686-di |  6.1.106-3 | i386
nic-shared-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
nic-shared-modules-6.1.0-28-686-di |  6.1.119-1 | i386
nic-shared-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
nic-usb-modules-6.1.0-25-686-di |  6.1.106-3 | i386
nic-usb-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
nic-usb-modules-6.1.0-28-686-di |  6.1.119-1 | i386
nic-usb-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
nic-wireless-modules-6.1.0-25-686-di |  6.1.106-3 | i386
nic-wireless-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
nic-wireless-modules-6.1.0-28-686-di |  6.1.119-1 | i386
nic-wireless-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
pata-modules-6.1.0-25-686-di |  6.1.106-3 | i386
pata-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
pata-modules-6.1.0-28-686-di |  6.1.119-1 | i386
pata-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
pcmcia-modules-6.1.0-25-686-di |  6.1.106-3 | i386
pcmcia-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
pcmcia-modules-6.1.0-28-686-di |  6.1.119-1 | i386
pcmcia-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
pcmcia-storage-modules-6.1.0-25-686-di |  6.1.106-3 | i386
pcmcia-storage-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
pcmcia-storage-modules-6.1.0-28-686-di |  6.1.119-1 | i386
pcmcia-storage-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
ppp-modules-6.1.0-25-686-di |  6.1.106-3 | i386
ppp-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
ppp-modules-6.1.0-28-686-di |  6.1.119-1 | i386
ppp-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
rfkill-modules-6.1.0-25-686-di |  6.1.106-3 | i386
rfkill-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
rfkill-modules-6.1.0-28-686-di |  6.1.119-1 | i386
rfkill-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
sata-modules-6.1.0-25-686-di |  6.1.106-3 | i386
sata-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
sata-modules-6.1.0-28-686-di |  6.1.119-1 | i386
sata-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
scsi-core-modules-6.1.0-25-686-di |  6.1.106-3 | i386
scsi-core-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
scsi-core-modules-6.1.0-28-686-di |  6.1.119-1 | i386
scsi-core-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
scsi-modules-6.1.0-25-686-di |  6.1.106-3 | i386
scsi-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
scsi-modules-6.1.0-28-686-di |  6.1.119-1 | i386
scsi-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
scsi-nic-modules-6.1.0-25-686-di |  6.1.106-3 | i386
scsi-nic-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
scsi-nic-modules-6.1.0-28-686-di |  6.1.119-1 | i386
scsi-nic-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
serial-modules-6.1.0-25-686-di |  6.1.106-3 | i386
serial-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
serial-modules-6.1.0-28-686-di |  6.1.119-1 | i386
serial-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
sound-modules-6.1.0-25-686-di |  6.1.106-3 | i386
sound-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
sound-modules-6.1.0-28-686-di |  6.1.119-1 | i386
sound-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
speakup-modules-6.1.0-25-686-di |  6.1.106-3 | i386
speakup-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
speakup-modules-6.1.0-28-686-di |  6.1.119-1 | i386
speakup-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
squashfs-modules-6.1.0-25-686-di |  6.1.106-3 | i386
squashfs-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
squashfs-modules-6.1.0-28-686-di |  6.1.119-1 | i386
squashfs-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
udf-modules-6.1.0-25-686-di |  6.1.106-3 | i386
udf-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
udf-modules-6.1.0-28-686-di |  6.1.119-1 | i386
udf-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
uinput-modules-6.1.0-25-686-di |  6.1.106-3 | i386
uinput-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
uinput-modules-6.1.0-28-686-di |  6.1.119-1 | i386
uinput-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
usb-modules-6.1.0-25-686-di |  6.1.106-3 | i386
usb-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
usb-modules-6.1.0-28-686-di |  6.1.119-1 | i386
usb-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
usb-serial-modules-6.1.0-25-686-di |  6.1.106-3 | i386
usb-serial-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
usb-serial-modules-6.1.0-28-686-di |  6.1.119-1 | i386
usb-serial-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
usb-storage-modules-6.1.0-25-686-di |  6.1.106-3 | i386
usb-storage-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
usb-storage-modules-6.1.0-28-686-di |  6.1.119-1 | i386
usb-storage-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386
xfs-modules-6.1.0-25-686-di |  6.1.106-3 | i386
xfs-modules-6.1.0-25-686-pae-di |  6.1.106-3 | i386
xfs-modules-6.1.0-28-686-di |  6.1.119-1 | i386
xfs-modules-6.1.0-28-686-pae-di |  6.1.119-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-i386)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:42:33 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-25-common |  6.1.106-3 | all
linux-headers-6.1.0-25-common-rt |  6.1.106-3 | all
linux-headers-6.1.0-28-common |  6.1.119-1 | all
linux-headers-6.1.0-28-common-rt |  6.1.119-1 | all
linux-support-6.1.0-25 |  6.1.106-3 | all
linux-support-6.1.0-28 |  6.1.119-1 | all

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:29:38 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

       hv3 | 3.0~fossil20110109-8 | all
  tk-html3 | 3.0~fossil20110109-8 | source, amd64, arm64, armel, armhf, i386, mips64el, mipsel, ppc64el, s390x
Closed bugs: 1088261

------------------- Reason -------------------
RoQA; unmaintained; security issues
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 11 Jan 2025 09:30:25 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

      criu |   3.17.1-2 | armhf
Closed bugs: 1088282

------------------- Reason -------------------
RoM; fails to build on arm64 host
----------------------------------------------
=========================================================================
allow-html-temp (10.0.4-1~deb12u1) bookworm; urgency=medium
 .
   * Prepared for uploading to bookworm proposed update
allow-html-temp (9.0.0-2) unstable; urgency=medium
 .
   [ Mechtilde ]
   * [9461d49] Fixed d/watch
allow-html-temp (9.0.0-1) unstable; urgency=medium
 .
   [ Mechtilde ]
   * [f6b9b32] New upstream version 9.0.0
   * [187f994] Bumped thunderbird version to 115 and limit it to 119
   * [2662398] Bumped standard version to recent one - no changes needed
   * [82471ba] Fixed max version of thunderbird

ansible-core (2.14.18-0+deb12u2) bookworm; urgency=medium
 .
   * Update integration test dependencies
   * Update integration test restrictions
ansible-core (2.14.18-0+deb12u1) bookworm; urgency=medium
 .
   [ Lee Garrett ]
   * New stable bugfix release
   * Add integration tests to autopkgtest
   * Fix CVE-2024-11079: This vulnerability allows attackers to bypass unsafe
     content protections using the hostvars object to reference and execute
     templated content. This issue can lead to arbitrary code execution if remote
     data or module outputs are improperly templated within playbooks.
 .
   [ Bastien Roucariès ]
   * Fix CVE-2024-8775: A flaw was found in Ansible,
     where sensitive information stored in Ansible Vault files can be exposed in
     plaintext during the execution of a playbook. This occurs when using tasks
     such as include_vars to load vaulted variables without setting the no_log:
     true parameter, resulting in sensitive data being printed in the playbook
     output or logs. This can lead to the unintentional disclosure of secrets
     like passwords or API keys, compromising security and potentially allowing
     unauthorized access or actions. (Closes: #1082851)
   * Fix CVE-2024-9902: A flaw was found in Ansible.
     The ansible-core `user` module can allow an unprivileged user to silently
     create or replace the contents of any file on any system path and take
     ownership of it when a privileged user executes the `user` module against
     the unprivileged user's home directory. If the unprivileged user has
     traversal permissions on the directory containing the exploited target file,
     they retain full control over the contents of the file as its owner.

audiofile (0.3.6-5+deb12u1) bookworm; urgency=medium
 .
   * CVE-2022-24599 (Closes: #1008017)
   * CVE-2019-13147 (Closes: #931343)

avahi (0.8-10+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
 .
   [ Michael Biebl ]
   * core: make sure there is rdata to process before parsing it.
     Patch cherry-picked from upstream Git.
     (CVE-2023-38472, Closes: #1054879)
   * core: reject overly long TXT resource records.
     Patches cherry-picked from upstream Git.
     (CVE-2023-38469, Closes: #1054876)
   * Ensure each label is at least one byte long.
     Patch cherry-picked from upstream Git.
     (CVE-2023-38470, Closes: #1054877)
   * core: extract host name using avahi_unescape_label()
     Patch cherry-picked from upstream Git.
     (CVE-2023-38471, Closes: #1054878)
   * common: derive alternative host name from its unescaped version.
     Patch cherry-picked from upstream Git.
     (CVE-2023-38473, Closes: #1054880)
   * Fix browsing when invalid services present.
     See https://github.com/lathiat/avahi/issues/212

base-files (12.4+deb12u9) bookworm; urgency=medium
 .
   * Change /etc/debian_version to 12.9, for Debian 12.9 point release.

bochs (2.7+dfsg-4+deb12u1) bookworm; urgency=medium
 .
   * Build the BIOS images for 386 CPUs rather than the compiler’s 32-bit
     default. Closes: #1082917.

ceph (16.2.15+ds-0+deb12u1) bookworm-security; urgency=medium
 .
   * Adding myself to uploaders.
   * Updating watch file for ceph 16.
   * Merging upstream version 16.2.15:
     - 16.2.12: Fix rgw bucket validation against POST policies
       [CVE-2023-43040]
   * Refreshing 32bit-fixes.patch.
   * Removing bug1917414.patch, included upstream.
   * Removing patches for CVE-2022-3650, included upstream.
   * Cherry-picking patch from upstream to fix authentication bypass in rgw
     (Closes: #1088993) [CVE-2024-48916].
ceph (16.2.11+ds-5.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Rename libraries for 64-bit time_t transition.  Closes: #1062065
ceph (16.2.11+ds-5) unstable; urgency=high
 .
   * CVE-2023-43040: security issue with RGW with improperly verified POST keys.
     Applied upstream fix: rgw: Fix bucket validation against POST policies
     (Closes: #1053690).
ceph (16.2.11+ds-4) unstable; urgency=medium
 .
   * [5e0eaf6] Add -latomic for riscv.
   * [44ebe5f] Modify fix-CheckCxxAtomic-riscv64.patch so that it works as
     expected.
ceph (16.2.11+ds-3) unstable; urgency=medium
 .
   * Fix gcc-13 FTBFS. (Closes: #1037602):
     - fix-gcc-13-issue.patch (thanks to Bo YU).
     - Add -fpermissive to DEB_CXXFLAGS_MAINT_APPEND.
     - include-cstdint-in-subsys_types.h.patch.
   * Fix debian/calc-max-parallel.sh to allow building on more core on
     (very) big systems.

chromium (131.0.6778.139-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-12381: Type Confusion in V8.
       Reported by Seunghyun Lee (@0x10n).
     - CVE-2024-12382: Use after free in Translate. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
   * (Temporarily?) switch from llvm's libc++ to gcc's libstdc++ to
     simplify the prior clang-16/19 upgrades.
   * d/patches:
     - fixes/bindgen.patch: refresh.
     - upstream/dawn-strlen.patch: add gcc-specific build fix.
     - upstream/ink-isfinite.patch: add gcc-specific build fix.
     - upstream/webrtc-optional.patch: add gcc-specific build fix.
     - upstream/variant.patch: add gcc-specific build fixes.
     - upstream/array.patch: add gcc-specific build fix.
     - fixes/absl-optional.patch: re-introduce clang/gcc build workaround.
     - upstream/mrc-copy-op.patch: add gcc-specific build fix.
     - fixes/font-gc-asan.patch: add a better workaround for bad font-gc
       behavior under libstdc++. This is self-contained and small, unlike
       the prior reverts of the switch to font garbage collection.
     - bookworm/constexpr.patch: re-enable (and refresh) build fix
       specifically for gcc 12.
     - bookworm/constexpr2.patch: re-enable build fix for gcc 12.
     - bookworm/bubble-contents.patch: re-enable build fix for gcc 12.
 .
   [ Nathan Teodosio ]
   * Simplify fixes/bindgen.patch so it doesn't need frequent rebasing.
 .
   [ Daniel Richard G. ]
   * d/copyright: Expand list of Files-Excluded: entries.
   * d/rules: Various updates to get-orig-source rule, including use of
     grep-dctrl(1) and the LASTCHANGE.committime timestamp.
   * d/scripts/check-upstream: Avoid issues with inaccurate $(pwd) value and
     spaces in filenames, and print all errors instead of only the first one.
chromium (131.0.6778.108-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-12053: Type Confusion in V8.
       Reported by gal1ium and chluo.
chromium (131.0.6778.108-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-12053: Type Confusion in V8.
       Reported by gal1ium and chluo.
   * Switch to clang-19 from clang-16 (closes: #1088162, #1088974).
chromium (131.0.6778.85-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-11110: Inappropriate implementation in Blink.
       Reported by Vsevolod Kokorin (Slonser) of Solidlab.
     - CVE-2024-11111: Inappropriate implementation in Autofill.
       Reported by Narendra Bhati, Suma Soft Pvt. Ltd - Pune (India).
     - CVE-2024-11112: Use after free in Media. Reported by
       Nan Wang(@eternalsakura13) and Zhenghang Xiao(@Kipreyyy) of
       360 Vulnerability Research Institute.
     - CVE-2024-11113: Use after free in Accessibility.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2024-11114: Inappropriate implementation in Views.
       Reported by Micky.
     - CVE-2024-11115: Insufficient policy enforcement in Navigation.
       Reported by mastersplinter.
     - CVE-2024-11116: Inappropriate implementation in Paint.
       Reported by Thomas Orlita.
     - CVE-2024-11117: Inappropriate implementation in FileSystem.
       Reported by Ameen Basha M K.
     - CVE-2024-11395: Type Confusion in V8. Reported by Anonymous.
   * d/patches:
     - upstream/wayland-gbm-pixmap.patch: drop, merged upstream.
     - disable/catapult.patch: refresh.
     - fixes/bindgen.patch: refresh.
     - fixes/freetype.patch: add new patch to fix missing
       enable_freetype arg declaration.
     - fixes/updater-test.patch: add simple build fix for deleted
       third_party/updater/.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - workarounds/HACK-debian-clang-disable-pa-musttail.patch: Work around
       additional upstream musttail definitions
     - workarounds/HACK-debian-clang-disable-base-musttail.patch: Refresh for
       upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       Refresh for upstream changes
chromium (131.0.6778.85-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-11110: Inappropriate implementation in Blink.
       Reported by Vsevolod Kokorin (Slonser) of Solidlab.
     - CVE-2024-11111: Inappropriate implementation in Autofill.
       Reported by Narendra Bhati, Suma Soft Pvt. Ltd - Pune (India).
     - CVE-2024-11112: Use after free in Media. Reported by
       Nan Wang(@eternalsakura13) and Zhenghang Xiao(@Kipreyyy) of
       360 Vulnerability Research Institute.
     - CVE-2024-11113: Use after free in Accessibility.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2024-11114: Inappropriate implementation in Views.
       Reported by Micky.
     - CVE-2024-11115: Insufficient policy enforcement in Navigation.
       Reported by mastersplinter.
     - CVE-2024-11116: Inappropriate implementation in Paint.
       Reported by Thomas Orlita.
     - CVE-2024-11117: Inappropriate implementation in FileSystem.
       Reported by Ameen Basha M K.
     - CVE-2024-11395: Type Confusion in V8. Reported by Anonymous.
   * d/patches:
     - upstream/wayland-gbm-pixmap.patch: drop, merged upstream.
     - disable/catapult.patch: refresh.
     - fixes/bindgen.patch: refresh.
     - fixes/freetype.patch: add new patch to fix missing
       enable_freetype arg declaration.
     - fixes/updater-test.patch: add simple build fix for deleted
       third_party/updater/.
     - upstream/stack-header.patch: drop, merged upstream.
     - bookworm/clang16.patch: refresh.
     - bookworm/bubble-contents.patch: refresh.
     - bookworm/constexpr.patch: refresh.
     - bookworm/gn-absl.patch: add a few more places where libs needed to
       be made visible.
     - bookworm/gn-funcs.patch: add another deletion of newer gn
       features.
     - bookworm/constexpr-assert.patch: add patch to work around more
       clang-16 constexpr bugs; this time a fun one with branching
       optimizations. Whee!
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - workarounds/HACK-debian-clang-disable-pa-musttail.patch: Work around
       additional upstream musttail definitions
     - workarounds/HACK-debian-clang-disable-base-musttail.patch: Refresh for
       upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       Refresh for upstream changes
chromium (130.0.6723.116-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-10826: Use after free in Family Experiences.
       Reported by Anonymous.
     - CVE-2024-10827: Use after free in Serial. Reported by Anonymous.
chromium (130.0.6723.116-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-10826: Use after free in Family Experiences.
       Reported by Anonymous.
     - CVE-2024-10827: Use after free in Serial. Reported by Anonymous.
 .
 chromium (130.0.6723.91-2) unstable; urgency=high
 .
   * d/patches/fixes/armhf-timespec.patch: add patch to fix armhf FTBFS.
chromium (130.0.6723.91-2) unstable; urgency=high
 .
   * d/patches/fixes/armhf-timespec.patch: add patch to fix armhf FTBFS.
chromium (130.0.6723.91-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-10487: Out of bounds write in Dawn.
       Reported by Apple Security Engineering and Architecture (SEAR).
     - CVE-2024-10488: Use after free in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).

cpuinfo (0.0~git20220617.082deff-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Ignore exit status of dh_auto_test, allowing the package to be
     built on systems where the CPU is not recognized. Closes: #1086649.

criu (3.17.1-2+deb12u1) bookworm; urgency=medium
 .
   * cr-restore: rseq: dynamically handle *libc with rseq (Closes: #1081683)
   * cr-restore: rseq: use glibc-specific way to unregister only as fallback

debian-installer (20230607+deb12u9) bookworm; urgency=medium
 .
   * Bump Linux kernel ABI to 6.1.0-29.
   * Adjust linux-image build-deps as well.

debian-installer-netboot-images (20230607+deb12u9) bookworm; urgency=medium
 .
   * Update to 20230607+deb12u9, from bookworm-proposed-updates.

debian-security-support (1:12+2024.12.22) bookworm; urgency=medium
 .
   [ Salvatore Bonaccorso ]
   * Mark src:vte as limited supported in Debian bookworm and above.
     Thanks to Simon McVittie. Closes: #1082885.
 .
   [ Holger Levsen ]
   * Add intel-mediasdk to security-support-ended.deb12. Closes: #1087718.
   * Add tiles to security-support-limited. Closes: #1057343.
   * Add jython to security-support-limited.
   * Drop openjdk-21 from security-support-limited. Closes: #1079693.
   * Drop debian/.gitlab-ci.yml
   * Drop spurios comma after Maintainer field, thanks buxy.

debootstrap (1.0.128+nmu2+deb12u2) bookworm; urgency=medium
 .
   * Do not pull in usr-is-merged in trixie/sid (Closes: #1091649)

dnsmasq (2.90-4~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Backport to bookworm, fixing:
     - CVE-2023-28450 - Reduce default maximum EDNS.0 UDP packet size due to DNS
       Flag Day 2020
     - CVE-2023-50387, CVE-2023-50868 - DNSSEC validation CPU exhaustion
       ("Keytrap")
dnsmasq (2.90-3) unstable; urgency=medium
 .
   * Update d/control:
     - Add passwd to Depends of dnsmasq-base(-lua) (closes: #1064518).
     - Update the Vcs-* fields (closes: #1065347).
     - Fix lintian issue build-depends-on-obsolete-package.
     - Add myself as uploader.
   * Update d/copyright:
     - Fix lintian issue missing-field-in-dep5-copyright.
   * Add missing CVE number to the 2.90-1 change log.
dnsmasq (2.90-2) unstable; urgency=medium
 .
   [ Sven Geuer ]
   * Relax limits imposed by d/t/functions.d/ip-addr.patterns to allow for
     successful tests on ci.debian.net.
dnsmasq (2.90-1) unstable; urgency=medium
 .
   [ Simon Kelley ]
   * New upstream. (closes: #1033165)
   * Move hard-coding of Lua version from the upstream Makefile
     to  d/rules.
   * Security fixes for Keytrap - DNSSEC validation CPU exhaustion.
     CVE-2023-50387 and CVE-2023-50868
   [ Sven Geuer ]
   * Introduce autokpgtests per d/tests/* (closes: #1034135).
   * Switch to dpkg-source 3.0 (quilt) format (closes: #1007041).
   * doc.html: Add patch to eliminate privacy breaches leaving the Donations
     paragraph as untouched as possible.
   * Prepend dnsmasq. to default, init, preinst, postinst, prerm, postrm.
   * Rename d/systemd.service to d/dnsmasq.service.
   * Rename d/systemd@.service to d/dnsmasq@.service.
   * Refactor d/rules to use the DH sequencer and fix major lintian issues
     (closes: #844989, #1040923, #1063551).
     Modified files:
     - d/rules
         Complete rewrite making use of debhelper and its tools, fixes lintian
         warning debian-rules-sets-dpkg-architecture-variable.
     - d/control
         Build-Depends, Pre-Depends, Depends added or changed as needed, lintian
         error depends-on-obsolete-package fixed.
     - d/dnsmasq.default
         ENABLED removed and comment changed to fix lintian error
         init.d-script-should-always-start-service.
     - d/dnsmasq.init
         Remove handling of obsolete ENABLED flag.
         Extract code used with System-V-style init and systemd into
         d/init-system-common, extract code used with systemd only
         into d/systemd-helper. This fixes lintian warning
         systemd-service-file-wraps-init-script.
         Drop workaround for hypothetically non-existent file
         /lib/lsb/init-functions, it has been around for more than a decade.
     - d/dnsmasq.service, d/dnsmasq@.service
         Adapt these files to make use of init-system-common and systemd-helper.
     - d/dnsmasq.{post,pre}{inst,rm}
         Rely mostly on the script snippets created by the DH tools to get
         things done, implicitly fixes the lintian warnings
         maintainer-script-should-not-use-dpkg-maintscript-helper and
         command-with-path-in-maintainer-script.
     - d/resolvconf*
         Change file mode bits to 0755, the installed files need it
     New files:
     - d/dnsmasq.{install,links,maintscript}
     - d/dnsmasq-base.{dirs,docs,install}
     - d/dnsmasq-base-lua.{dirs,docs,install,links}
     - d/dnsmasq-utils.{install,manpages}
         The DH tools use these to install what was scripted explicitly
         in the previous version of the d/rules file,
         lintian warning dbus-policy-in-etc fixed
     - d/init-system-common
     - d/systemd-helper
         These files contain slightly modified code formerly part of in
         d/dnsmasq.init.
     Deleted files:
     - d/*conffiles
     - d/lintian-override
     - d/installed-marker
         These are not in use anymore.
   * Deal with a removed conffile and changed links.
     Modified files:
     - d/dnsmasq-base.{postinst,postrm}
     New files:
     - d/dnsmasq-base.maintscript
     - d/dnsmasq-base-lua.maintscript
   * Add watch file and upstream's signing key.
     New files:
     - d/watch
     - d/u/signing-key.asc
   * Remove dependency on package adduser.
     Modified files:
     - d/control
     - d/dnsmasq.post{inst,rm}
   * Refactor d/copyright to comply with DEP 5 (closes: #966505).
   * Remove trailing whitespace from various files under debian/.
   * Bump Standards-Version to 4.6.2.
   * Specify Rules-Requires-Root.
   * Update http:// to https:// with Homepage, Vcs-Git and Vcs-Browser.
   * Introduce d/u/metadata.
   * Fix lintian issue duplicate-short-description.
   * Fix lintian issue capitalization-error-in-description.
   * Bump Lua version to 5.4 (closes: #1050750).
     Modified files:
     - d/control
     - d/t/functions.d/log.patterns

dpdk (22.11.7-1~deb12u1) bookworm-security; urgency=medium
 .
   * Update upstream source from tag 'upstream/22.11.7'
     Fixes rx checksum calculation in virtio driver (CVE-2024-11614)

eas4tbsync (4.11-1~deb12u1) bookworm; urgency=medium
 .
   * [6c3dc26] Merge branch 'debian/sid' into debian/bookworm
   * Prepared for release in bookworm (proposed-updates)
eas4tbsync (4.8-1) unstable; urgency=medium
 .
   * [cf34002] New upstream version 4.8
   * [8bc063a] Bump standard version - no changes needed;
               bump version of dependency
   * [4c2fbdd] Bump year in d/copyright
eas4tbsync (4.7-1) unstable; urgency=medium
 .
   * [a18dc06] Changed compression for tar.gz
   * [4286976] New upstream version 4.7
   *     Removed double entries in the version before

espeak-ng (1.51+dfsg-10+deb12u2) bookworm; urgency=medium
 .
   * patches/espeak-stdin: Fix dropping last byte of stdin input.

fastnetmon (1.2.4-2+deb12u1) bookworm-security; urgency=medium
 .
   [ Moritz Mühlenhoff ]
   * Fixes CVE-2024-56073: Zero-length templates for Netflow v9 allow remote
     attackers to cause a denial of service (divide-by-zero error and
     application crash).
     Closes: #1090387
   * Fixes CVE-2024-56072: The sFlow v5 plugin allows remote attackers to cause
     a denial of service (application crash) via a crafted packet that
     specifies many sFlow samples.
     Closes: #1090388

firefox-esr (128.5.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-64, also known as:
     CVE-2024-11691, CVE-2024-11692, CVE-2024-11694, CVE-2024-11695,
     CVE-2024-11696, CVE-2024-11697, CVE-2024-11699.
firefox-esr (128.4.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-56, also known as:
     CVE-2024-10458, CVE-2024-10459, CVE-2024-10460, CVE-2024-10461,
     CVE-2024-10462, CVE-2024-10463, CVE-2024-10464, CVE-2024-10465,
     CVE-2024-10466, CVE-2024-10467.
firefox-esr (128.4.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-56, also known as:
     CVE-2024-10458, CVE-2024-10459, CVE-2024-10460, CVE-2024-10461,
     CVE-2024-10462, CVE-2024-10463, CVE-2024-10464, CVE-2024-10465,
     CVE-2024-10466, CVE-2024-10467.
firefox-esr (128.3.1esr-2) unstable; urgency=medium
 .
   * debian/rules: Exclude -g from CXXFLAGS too. It's handled by the upstream
     build system, and leaving it there breaks the build on 32-bits platforms
     because the debug info is just too large to handle for the address space.
     That's how it was before the changes in 128.3.1esr-1 anyways.
firefox-esr (128.3.1esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-51, also known as CVE-2024-9680.
 .
   * debian/rules: Get CXXFLAGS from dpkg-buildflags directly instead of
     deriving it from CFLAGS.
   * debian/control*: Remove build dependency on yasm.
   * debian/browser.lintian-overrides.in: Adjust lintian overrides for
     the lintian version in unstable.

geoclue-2.0 (2.6.0-2+deb12u1) bookworm; urgency=medium
 .
   * Switch to beaconDB instead of the new retired MLS (Closes: #1074427)
   * d/README.Debian: Update the README to explicitly state we are using beaconDB
   * Add SSID to queries, cherry-picked from upstream for beaconDB

ghostscript (10.0.0~dfsg-11+deb12u6) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Check for overflow validating format string (CVE-2024-46953)
   * Fix filenameforall completion cleanup
   * Don't leave a dangling pointer on the stack
   * PostScript interpreter - Null dangling references on stack
   * PostScript interpreter - fix buffer length check (CVE-2024-46956)
   * PS interpreter review colour code for stack pointers
   * PS interpreter - check Indexed colour space index (CVE-2024-46955)
   * PS interpreter - check the type of the Pattern Implementation
     (CVE-2024-46951)
   * PDF interpreter - sanitise W array values in Xref streams (CVE-2024-46952)

glib2.0 (2.74.6-2+deb12u5) bookworm; urgency=medium
 .
   * d/p/gsocks4aproxy-Fix-a-single-byte-buffer-overflow-in-connec.patch:
     Fix a buffer overflow when configured to use a SOCKS4a proxy with a
     very long username (CVE-2024-52533, Closes: #1087419)

gnuchess (6.2.7-1+deb12u1) bookworm; urgency=medium
 .
   * CVE-2021-30184 (Closes: #1070372)
   * Add missing build dep on help2man

grml-rescueboot (0.5.2+deb12u1) bookworm; urgency=medium
 .
   * update-grml-rescueboot: remove -a (bitwidth) flag
   * update-grml-rescueboot: support new ISO names and archs (Closes: #1091702)
   * update-grml-rescueboot: rename isotype to grmlflavor
   * update-grml-rescueboot: use grmlflavor in version regex
   * Add NEWS entry about i386

gsl (2.7.1+dfsg-5+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2020-35357: buffer overflow when calculating the quantile value
     (Closes: #1052655)

gst-plugins-base1.0 (1.22.0-3+deb12u4) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * id3v2: Don't try parsing extended header if not enough data is available
     (CVE-2024-47542)
gst-plugins-base1.0 (1.22.0-3+deb12u3) bookworm-security; urgency=medium
 .
   * CVE-2024-47538 CVE-2024-47541 CVE-2024-47600 CVE-2024-47607
     CVE-2024-47615 CVE-2024-47835

gst-plugins-good1.0 (1.22.0-5+deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * qtdemux: Avoid integer overflow when parsing Theora extension
     (CVE-2024-47606, GHSL-2024-166)
   * jpegdec: Directly error out on negotiation failures (CVE-2024-47599,
     GHSL-2024-247)
   * gdkpixbufdec: Check if initializing the video info actually succeeded
     (CVE-2024-47613, GHSL-2024-118)
   * wavparse: Check for short reads when parsing headers in pull mode
     (CVE-2024-47778, GHSL-2024-258, CVE-2024-47776, GHSL-2024-260)
   * wavparse: Make sure enough data for the tag list tag is available before
     parsing (CVE-2024-47778, GHSL-2024-258)
   * wavparse: Fix parsing of acid chunk
   * wavparse: Check that at least 4 bytes are available before parsing cue
     chunks
   * wavparse: Check that at least 32 bytes are available before parsing smpl
     chunks (CVE-2024-47777, GHSL-2024-259)
   * wavparse: Fix clipping of size to the file size (CVE-2024-47776,
     GHSL-2024-260)
   * wavparse: Check size before reading ds64 chunk (CVE-2024-47775,
     GHSL-2024-261)
   * avisubtitle: Fix size checks and avoid overflows when checking sizes
     (CVE-2024-47774, GHSL-2024-262)
   * matroskademux: Only unmap GstMapInfo in WavPack header extraction error
     paths if previously mapped (CVE-2024-47540, GHSL-2024-197)
   * matroskademux: Fix off-by-one when parsing multi-channel WavPack
   * matroskademux: Check for big enough WavPack codec private data before
     accessing it (CVE-2024-47602, GHSL-2024-250)
   * matroskademux: Don't take data out of an empty adapter when processing
     WavPack frames (CVE-2024-47601, GHSL-2024-249)
   * matroskademux: Skip over laces directly when postprocessing the frame
     fails (CVE-2024-47601, GHSL-2024-249)
   * matroskademux: Skip over zero-sized Xiph stream headers (CVE-2024-47603,
     GHSL-2024-251)
   * matroskademux: Put a copy of the codec data into the A_MS/ACM caps
     (CVE-2024-47834, GHSL-2024-280)
   * qtdemux: Fix integer overflow when allocating the samples table for
     fragmented MP4 (CVE-2024-47537, GHSL-2024-094, GHSL-2024-237,
     GHSL-2024-241)
   * qtdemux: Fix debug output during trun parsing
   * qtdemux: Don't iterate over all trun entries if none of the flags are set
   * qtdemux: Check sizes of stsc/stco/stts before trying to merge entries
     (CVE-2024-47598, GHSL-2024-246)
   * qtdemux: Make sure only an even number of bytes is processed when handling
     CEA608 data (CVE-2024-47539, GHSL-2024-195)
   * qtdemux: Make sure enough data is available before reading wave header
     node (CVE-2024-47543, GHSL-2024-236)
   * qtdemux: Fix length checks and offsets in stsd entry parsing
     (CVE-2024-47545, GHSL-2024-242)
   * qtdemux: Fix error handling when parsing cenc sample groups fails
     (CVE-2024-47544, GHSL-2024-238, GHSL-2024-239, GHSL-2024-240)
   * qtdemux: Make sure there are enough offsets to read when parsing samples
     (CVE-2024-47597, GHSL-2024-245)
   * qtdemux: Actually handle errors returns from various functions instead of
     ignoring them (CVE-2024-47597, GHSL-2024-245)
   * qtdemux: Check for invalid atom length when extracting Closed Caption data
     (CVE-2024-47546, GHSL-2024-243)
   * qtdemux: Add size check for parsing SMI / SEQH atom (CVE-2024-47596,
     GHSL-2024-244)

gstreamer1.0 (1.22.0-2+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * allocator: Avoid integer overflow when allocating sysmem (CVE-2024-47606)

guix (1.4.0-3+deb12u2) bookworm-security; urgency=medium
 .
   * debian/patches: Add patches to fix Build User Takeover Vulnerability.

gunicorn (20.1.0-6+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2024-1135: HTTP Request Smuggling (Closes: #1069126)

icinga2 (2.13.6-2+deb12u2) bookworm; urgency=medium
 .
   * Team upload.
   * Add upstream patch to fix CVE-2024-49369.
     (closes: #1087384)

intel-microcode (3.20241112.1~deb12u1) bookworm; urgency=medium
 .
   * Build for bookworm
   * All trixie-only changes (from 3.20240813.2) are reverted on this branch
 .
 intel-microcode (3.20241112.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20241112 (closes: #1086483)
     - Mitigations for INTEL-SA-01101 (CVE-2024-21853)
       Improper Finite State Machines (FSMs) in the Hardware logic in some
       4th and 5th Generation Intel Xeon Processors may allow an authorized
       user to potentially enable denial of service via local access.
     - Mitigations for INTEL-SA-01079 (CVE-2024-23918)
       Potential security vulnerabilities in some Intel Xeon processors
       using Intel SGX may allow escalation of privilege.  Intel disclosed
       that some processor models were already fixed by a previous
       microcode update.
     - Updated mitigations for INTEL-SA-01097 (CVE-2024-24968)
       Improper finite state machines (FSMs) in hardware logic in some
       Intel Processors may allow an privileged user to potentially enable a
       denial of service via local access.
     - Mitigations for INTEL-SA-01103 (CVE-2024-23984)
       A potential security vulnerability in the Running Average Power Limit
       (RAPL) interface for some Intel Processors may allow information
       disclosure.  Added mitigations for more processor models.
   * Updated Microcodes:
     sig 0x000806f8, pf_mask 0x87, 2024-06-20, rev 0x2b000603, size 588800
     sig 0x000806f7, pf_mask 0x87, 2024-06-20, rev 0x2b000603
     sig 0x000806f6, pf_mask 0x87, 2024-06-20, rev 0x2b000603
     sig 0x000806f5, pf_mask 0x87, 2024-06-20, rev 0x2b000603
     sig 0x000806f4, pf_mask 0x87, 2024-06-20, rev 0x2b000603
     sig 0x00090672, pf_mask 0x07, 2024-05-29, rev 0x0037, size 224256
     sig 0x00090675, pf_mask 0x07, 2024-05-29, rev 0x0037
     sig 0x000b06f2, pf_mask 0x07, 2024-05-29, rev 0x0037
     sig 0x000b06f5, pf_mask 0x07, 2024-05-29, rev 0x0037
     sig 0x000906a3, pf_mask 0x80, 2024-06-03, rev 0x0435, size 223232
     sig 0x000906a4, pf_mask 0x80, 2024-06-03, rev 0x0435
     sig 0x000a06a4, pf_mask 0xe6, 2024-08-02, rev 0x0020, size 138240
     sig 0x000b06a2, pf_mask 0xe0, 2024-05-29, rev 0x4123, size 220160
     sig 0x000b06a3, pf_mask 0xe0, 2024-05-29, rev 0x4123
     sig 0x000b06a8, pf_mask 0xe0, 2024-05-29, rev 0x4123
     sig 0x000c06f2, pf_mask 0x87, 2024-06-20, rev 0x21000283, size 560128
     sig 0x000c06f1, pf_mask 0x87, 2024-06-20, rev 0x21000283
   * source: update symlinks to reflect id of the latest release, 20241112
   * Update changelog for 3.20240910.1 and 3.20240813.1 with new information:
     INTEL-SA-1103 was addressed by 3.20240813.1 for some processor models,
     and not by 3.20240910. INTEL-SA-1079 was addressed by 3.20240910.1 for
     some processor models.
 .
 intel-microcode (3.20241029.1) UNRELEASED; urgency=medium
 .
   * New upstream microcode datafile 20241029
     - Not relevant for operating system microcode updates
     - Only when loaded from firmware, this update fixes the critical,
       potentially hardware-damaging errata RPL061: Incorrect Internal
       Voltage Request on Raptor Lake (Core 13th/14th gen) Intel
       processors.
   * Updated Microcodes:
     sig 0x000b0671, pf_mask 0x32, 2024-08-29, rev 0x012b, size 211968
intel-microcode (3.20240910.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240910 (closes: #1081363)
     - Mitigations for INTEL-SA-01103 (CVE-2024-23984)
       A potential security vulnerability in the Running Average Power Limit
       (RAPL) interface for some Intel Processors may allow information
       disclosure.
     - Mitigations for INTEL-SA-01097 (CVE-2024-24968)
       A potential security vulnerability in some Intel Processors may allow
       denial of service.
     - Fixes for unspecified functional issues on several processor models
     - The processor voltage limit issue on Core 13rd/14th gen REQUIRES A
       FIRMWARE UPDATE.  It is present in this release for sig 0xb0671, but
       THE VOLTAGE ISSUE FIX ONLY WORKS WHEN THE MICROCODE UPDATE IS LOADED
       THROUGH THE FIT TABLE IN FIRMWARE.  Contact your system vendor for a
       firmware update that includes the appropriate microcode update for
       your processor.
   * Updated Microcodes:
     sig 0x00090672, pf_mask 0x07, 2024-02-22, rev 0x0036, size 224256
     sig 0x00090675, pf_mask 0x07, 2024-02-22, rev 0x0036
     sig 0x000b06f2, pf_mask 0x07, 2024-02-22, rev 0x0036
     sig 0x000b06f5, pf_mask 0x07, 2024-02-22, rev 0x0036
     sig 0x000906a3, pf_mask 0x80, 2024-02-22, rev 0x0434, size 222208
     sig 0x000906a4, pf_mask 0x80, 2024-02-22, rev 0x0434
     sig 0x000a06a4, pf_mask 0xe6, 2024-06-17, rev 0x001f, size 137216
     sig 0x000b0671, pf_mask 0x32, 2024-07-18, rev 0x0129, size 215040
     sig 0x000b06a2, pf_mask 0xe0, 2024-02-22, rev 0x4122, size 220160
     sig 0x000b06a3, pf_mask 0xe0, 2024-02-22, rev 0x4122
     sig 0x000b06a8, pf_mask 0xe0, 2024-02-22, rev 0x4122
     sig 0x000b06e0, pf_mask 0x19, 2024-03-25, rev 0x001a, size 138240
   * Update changelog for 3.20240813.1 with new information
   * Update changelog for 3.20240514.1 with new information
   * source: update symlinks to reflect id of the latest release, 20240910

jinja2 (3.1.2-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2024-22195: HTML attribute injection (Closes: #1060748)
   * CVE-2024-34064: HTML attribute injection (Closes: #1070712)

lemonldap-ng (2.16.1+ds-deb12u4) bookworm; urgency=medium
 .
   * Fix authentication privilege (Closes: CVE-2024-52946)
   * Fix XSS in "Upgrade" plugin (Closes: CVE-2024-52947)

libarchive (3.6.2-1+deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * rar4 reader: protect copy_from_lzss_window_to_unp() (CVE-2024-20696)
     (Closes: #1086155)

libebml (1.4.4-1+deb12u1) bookworm; urgency=medium
 .
   * CVE-2023-52339 (Integer overflow in MemIOCallback::read)

libmodule-scandeps-perl (1.31-2+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * use three-argument open() (CVE-2024-10224)
   * replace 'eval "..."' constructs (CVE-2024-10224)
   * fix parsing of "use if ..."

libpgjava (42.5.5-0+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * New upstream release.
     - CVE-2024-1597: SQL Injection via line comment generation

libsoup2.4 (2.74.3-1+deb12u1) bookworm; urgency=high
 .
   * Backport upstream fixes for
     - CVE-2024-52530: HTTP request smuggling with null bytes at the end of
       header names (Closes: #1088812)
     - CVE-2024-52531: buffer overflow in soup_header_parse_param_list_strict
       (Closes: #1089240)
     - CVE-2024-52532: infinite loop / potential DoS in reading certain
       data from WebSocket clients (Closes: #1089238).

libxstream-java (1.4.20-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Fix CVE-2024-47072: XStream is vulnerable to a
     Denial of Service attack due to stack overflow
     from a manipulated binary input stream.
     (Closes: #1087274)

linux (6.1.123-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.120
     - [x86] ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated
       codec
     - [x86] ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10
       tablet
     - [x86] ASoC: Intel: sst: Support LPE0F28 ACPI HID
     - wifi: iwlwifi: mvm: Use the sync timepoint API in suspend
     - mac80211: fix user-power when emulating chanctx
     - usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver
     - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13
     - bpf: fix filed access without lock
     - net: usb: qmi_wwan: add Quectel RG650V
     - soc: qcom: Add check devm_kasprintf() returned value
     - regulator: rk808: Add apply_bit for BUCK3 on RK809
     - [x86] platform/x86: dell-smbios-base: Extends support to Alienware
       products
     - [x86] platform/x86: dell-wmi-base: Handle META key Lock/Unlock events
     - tools/lib/thermal: Remove the thermal.h soft link when doing make clean
     - can: j1939: fix error in J1939 documentation.
     - [x86] platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing
       incorrect fan speed
     - [x86] ASoC: amd: yc: Support dmic on another model of Lenovo Thinkpad E14
       Gen 6
     - [armhf] ASoC: stm: Prevent potential division by zero in
       stm32_sai_mclk_round_rate()
     - [armhf] ASoC: stm: Prevent potential division by zero in
       stm32_sai_get_clk_div()
     - drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less
       strict
     - proc/softirqs: replace seq_printf with seq_put_decimal_ull_width
     - ASoC: audio-graph-card2: Purge absent supplies for device tree nodes
     - ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry
     - [armel,armhf] 9420/1: smp: Fix SMP for xip kernels
     - ipmr: Fix access to mfc_cache_list without lock held
     - closures: Change BUG_ON() to WARN_ON() (CVE-2024-42252)
     - net: fix crash when config small gso_max_size/gso_ipv4_max_size
       (CVE-2024-50258)
     - serial: sc16is7xx: fix invalid FIFO access with special register set
       (CVE-2024-44950)
     - cifs: Fix buffer overflow when parsing NFS reparse points (CVE-2024-49996)
     - fpga: bridge: add owner module and take its refcount (CVE-2024-36479)
     - fpga: manager: add owner module and take its refcount (CVE-2024-37021)
     - drm/amd/display: Add NULL check for function pointer in
       dcn32_set_output_transfer_func (CVE-2024-49909)
     - drm/amd/display: Check null-initialized variables (CVE-2024-49898)
     - Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue
     - Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (CVE-2024-49951)
     - fbdev: efifb: Register sysfs groups through driver core (CVE-2024-49925)
     - mptcp: fix possible integer overflow in mptcp_reset_tout_timer
     - wifi: rtw89: avoid to add interface to list twice when SER
       (CVE-2024-49939)
     - drm/amd/display: Initialize denominators' default to 1 (CVE-2024-49899)
     - fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name
     - [x86] barrier: Do not serialize MSR accesses on AMD
     - [s390x] cio: Do not unregister the subchannel based on DNV
     - brd: defer automatic disk creation until module initialization succeeds
     - ext4: make 'abort' mount option handling standard
     - ext4: avoid remount errors with 'abort' mount option
     - [mips*] asm: fix warning when disabling MIPS_FP_SUPPORT
     - initramfs: avoid filename buffer overrun (CVE-2024-53142)
     - nvme-pci: fix freeing of the HMB descriptor table
     - [arm64] acpi/arm64: Adjust error handling procedure in
       gtdt_parse_timer_block()
     - cachefiles: Fix missing pos updates in cachefiles_ondemand_fd_write_iter()
     - netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING
     - block: fix bio_split_rw_at to take zone_write_granularity into account
     - [s390x] syscalls: Avoid creation of arch/arch/ directory
     - hfsplus: don't query the device logical block size multiple times
     - nvme-pci: reverse request order in nvme_queue_rqs
     - virtio_blk: reverse request order in virtio_queue_rqs
     - crypto: caam - Fix the pointer passed to caam_qi_shutdown()
     - firmware: google: Unregister driver_info on failure
     - EDAC/bluefield: Fix potential integer overflow
     - [x86] crypto: qat - remove faulty arbiter config reset
     - thermal: core: Initialize thermal zones before registering them
     - EDAC/fsl_ddr: Fix bad bit shift operations
     - crypto: pcrypt - Call crypto layer directly when padata_do_parallel()
       return -EBUSY
     - crypto: cavium - Fix the if condition to exit loop after timeout
     - crypto: hisilicon/qm - disable same error report before resetting
     - EDAC/igen6: Avoid segmentation fault on module unload
     - crypto: inside-secure - Fix the return value of
       safexcel_xcbcmac_cra_init()
     - doc: rcu: update printed dynticks counter bits
     - hwmon: (nct6775-core) Fix overflows seen when writing limit attributes
     - ACPI: CPPC: Fix _CPC register setting issue
     - crypto: caam - add error check to caam_rsa_set_priv_key_form
     - crypto: bcm - add error check in the ahash_hmac_init function
     - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw()
     - tools/lib/thermal: Make more generic the command encoding function
     - thermal/lib: Fix memory leak on error in thermal_genl_auto()
     - time: Fix references to _msecs_to_jiffies() handling of values
     - seqlock/latch: Provide raw_read_seqcount_latch_retry()
     - clocksource/drivers:sp804: Make user selectable
     - clocksource/drivers/timer-ti-dm: Fix child node refcount handling
     - spi: spi-fsl-lpspi: downgrade log level for pio mode
     - spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq()
     - drivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend()
     - microblaze: Export xmb_manager functions
     - [arm64] dts: mt8195: Fix dtbs_check error for infracfg_ao node
     - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq()
     - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()
     - mmc: mmc_spi: drop buggy snprintf()
     - tpm: fix signed/unsigned bug when checking event logs
     - [arm64] dts: mt8183: krane: Fix the address of eeprom at i2c4
     - [arm64] dts: mt8183: kukui: Fix the address of eeprom at i2c4
     - [arm64] dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source
       trackpad
     - Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline"
     - cgroup/bpf: only cgroup v2 can be attached by bpf programs
     - [arm64] dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: cozmo: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns
     - pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle
     - [armhf] dts: cubieboard4: Fix DCDC5 regulator constraints
     - pmdomain: ti-sci: Add missing of_node_put() for args.np
     - regmap: irq: Set lockdep class for hierarchical IRQ domains
     - [arm64] dts: mt8183: jacuzzi: Move panel under aux-bus
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed
       regulators
     - [arm64] firmware: arm_scpi: Check the DVFS OPP count returned by the
       firmware
     - venus: venc: add handling for VIDIOC_ENCODER_CMD
     - media: venus: provide ctx queue lock for ioctl synchronization
     - media: atomisp: Add check for rgby_data memory allocation failure
     - [x86] platform/x86: panasonic-laptop: Return errno correctly in show
       callback
     - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused
     - [arm64,armhf] drm/vc4: hvs: Don't write gamma luts on 2711
     - [arm64,armhf] drm/vc4: hdmi: Avoid hang with debug registers when
       suspended
     - [arm64,armhf] drm/vc4: hvs: Fix dlist debug not resetting the next entry
       pointer
     - [arm64,armhf] drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs
       function
     - [arm64,armhf] drm/vc4: hvs: Correct logic on stopping an HVS channel
     - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()
     - drm/omap: Fix possible NULL dereference
     - drm/omap: Fix locking in omap_gem_new_dmabuf()
     - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq()
     - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/v3d: Address race-condition in MMU flush
     - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1
     - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2
     - dt-bindings: vendor-prefixes: Add NeoFidelity, Inc
     - ASoC: fsl_micfil: fix regmap_write_bits usage
     - ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode
     - drm/bridge: anx7625: Drop EDID cache on bridge power off
     - libbpf: Fix output .symtab byte-order during linking
     - bpf: Fix the xdp_adjust_tail sample prog issue
     - libbpf: fix sym_is_subprog() logic for weak global subprogs
     - libbpf: never interpret subprogs in .text as entry programs
     - netdevsim: copy addresses for both in and out paths
     - drm/bridge: tc358767: Fix link properties discovery
     - wifi: mwifiex: Fix memcpy() field-spanning write warning in
       mwifiex_config_scan()
     - drm: fsl-dcu: enable PIXCLK on LS1021A
     - [arm64,armhf] drm/panfrost: Remove unused id_mask from struct
       panfrost_model
     - [arm64] bpf, arm64: Remove garbage frame for struct_ops trampoline
     - [arm64] drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/msm/gpu: Add devfreq tuning debugfs
     - [arm64] drm/msm/gpu: Bypass PM QoS constraint for idle clamp
     - [arm64] drm/msm/gpu: Check the status of registration to PM QoS
     - [arm64,armhf] drm/etnaviv: Request pages from DMA32 zone on
       addressing_limited
     - [arm64,armhf] drm/etnaviv: fix power register offset on GC300
     - [arm64,armhf] drm/etnaviv: hold GPU lock across perfmon sampling
     - wifi: wfx: Fix error handling in wfx_core_init()
     - [arm64] drm/msm/dpu: cast crtc_clk calculation to u64 in
       _dpu_core_perf_calc_clk()
     - netfilter: nf_tables: skip transaction if update object is not implemented
     - netfilter: nf_tables: must hold rcu read lock while iterating object type
       list
     - netlink: typographical error in nlmsg_type constants definition
     - bpf, sockmap: Several fixes to bpf_msg_push_data
     - bpf, sockmap: Several fixes to bpf_msg_pop_data
     - bpf, sockmap: Fix sk_msg_reset_curr
     - sock_diag: add module pointer to "struct sock_diag_handler"
     - sock_diag: allow concurrent operations
     - sock_diag: allow concurrent operation in sock_diag_rcv_msg()
     - net: use unrcu_pointer() helper
     - ipv6: release nexthop on device removal
     - net: rfkill: gpio: Add check for clk_enable()
     - ALSA: usx2y: Use snd_card_free_when_closed() at disconnection
     - ALSA: us122l: Use snd_card_free_when_closed() at disconnection
     - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection
     - ALSA: 6fire: Release resources at card release
     - Bluetooth: fix use-after-free in device_for_each_child()
     - netpoll: Use rcu_access_pointer() in netpoll_poll_lock
     - wireguard: selftests: load nf_conntrack if not present
     - bpf: fix recursive lock when verdict program return SK_PASS
     - unicode: Fix utf8_load() error path
     - trace/trace_event_perf: remove duplicate samples on the first tracepoint
       event
     - pinctrl: zynqmp: drop excess struct member description
     - [powerpc*] vdso: Flag VDSO64 entry points as functions
     - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race
     - mfd: da9052-spi: Change read-mask to write-mask
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices
     - cpufreq: loongson2: Unregister platform_driver on failure
     - [powerpc*] fadump: Refactor and prepare fadump_cma_init for late init
     - [powerpc*] fadump: Move fadump_cma_init to setup_arch() after
       initmem_init()
     - memory: renesas-rpc-if: Improve Runtime PM handling
     - memory: renesas-rpc-if: Pass device instead of rpcif to rpcif_*()
     - memory: renesas-rpc-if: Remove Runtime PM wrappers
     - mtd: hyperbus: rpc-if: Convert to platform remove callback returning void
     - mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE
     - mtd: rawnand: atmel: Fix possible memory leak
     - [powerpc*] mm/fault: Fix kfence page fault reporting
     - [powerpc*] pseries: Fix dtl_access_lock to be a rw_semaphore
     - cpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw()
     - cpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()
     - [arm64] RDMA/hns: Fix an AEQE overflow error caused by untimely update of
       eq_db_ci
     - [arm64] RDMA/hns: Add clear_hem return value to log
     - [arm64] RDMA/hns: Use dev_* printings in hem code instead of ibdev_*
     - [arm64] RDMA/hns: Remove unnecessary QP type checks
     - [arm64] RDMA/hns: Fix cpu stuck caused by printings during reset
     - RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey
     - clk: sunxi-ng: d1: Fix PLL_AUDIO0 preset
     - clk: renesas: rzg2l: Fix FOUTPOSTDIV clk
     - clk: imx: lpcg-scu: SW workaround for errata (e10858)
     - clk: imx: fracn-gppll: correct PLL initialization flow
     - clk: imx: fracn-gppll: fix pll power up
     - clk: imx: clk-scu: fix clk enable state save and restore
     - [amd64] iommu/vt-d: Fix checks and print in dmar_fault_dump_ptes()
     - [amd64] iommu/vt-d: Fix checks and print in pgtable_walk()
     - mfd: rt5033: Fix missing regmap_del_irq_chip()
     - fs/proc/kcore.c: fix coccinelle reported ERROR instances
     - scsi: bfa: Fix use-after-free in bfad_im_module_exit()
     - scsi: fusion: Remove unused variable 'rc'
     - scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()
     - scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()
     - [arm64] RDMA/hns: Fix out-of-order issue of requester when setting FENCE
     - [arm64] RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg()
     - cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_cost()
     - cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_power()
     - ocfs2: fix uninitialized value in ocfs2_file_read_iter()
     - dax: delete a stale directory pmem
     - KVM: PPC: Book3S HV: Stop using vc->dpdes for nested KVM guests
     - KVM: PPC: Book3S HV: Avoid returning to nested hypervisor on pending
       doorbells
     - [powerpc*] sstep: make emulate_vsx_load and emulate_vsx_store static
     - [powerpc*] kexec: Fix return of uninitialized variable
     - fbdev/sh7760fb: Alloc DMA memory from hardware device
     - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()
     - clk: clk-apple-nco: Add NULL check in applnco_probe
     - dt-bindings: clock: axi-clkgen: include AXI clk
     - clk: clk-axi-clkgen: make sure to enable the AXI bus clock
     - pinctrl: k210: Undef K210_PC_DEFAULT
     - smb: cached directories can be more than root file handle
     - mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb()
     - perf cs-etm: Don't flush when packet_queue fills up
     - PCI: Fix reset_method_store() memory leak
     - perf stat: Close cork_fd when create_perf_stat_counter() failed
     - perf stat: Fix affinity memory leaks on error path
     - f2fs: compress: fix inconsistent update of i_blocks in
       release_compress_blocks and reserve_compress_blocks
     - f2fs: fix to account dirty data in __get_secs_required()
     - perf probe: Fix libdw memory leak
     - perf probe: Correct demangled symbols in C++ program
     - PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads
     - PCI: cpqphp: Fix PCIBIOS_* return value confusion
     - perf ftrace latency: Fix unit on histogram first entry when using
       --use-nsec
     - f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block
     - f2fs: remove struct segment_allocation default_salloc_ops
     - f2fs: open code allocate_segment_by_default
     - f2fs: remove the unused flush argument to change_curseg
     - f2fs: check curseg->inited before write_sum_page in change_curseg
     - f2fs: fix to avoid use GC_AT when setting gc_mode as GC_URGENT_LOW or
       GC_URGENT_MID
     - f2fs: fix to avoid forcing direct write to use buffered IO on inline_data
       inode
     - perf trace: avoid garbage when not printing a trace event's arguments
     - svcrdma: Address an integer overflow
     - perf trace: Do not lose last events in a race
     - perf trace: Avoid garbage when not printing a syscall's arguments
     - remoteproc: qcom: q6v5: Use _clk_get_optional for aggre2_clk
     - remoteproc: qcom: pas: add minidump_id to SM8350 resources
     - rpmsg: glink: Fix GLINK command prefix
     - rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length
     - remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region
     - NFSD: Prevent NULL dereference in nfsd4_process_cb_update()
     - NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir()
     - sunrpc: simplify two-level sysctl registration for svcrdma_parm_table
     - svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()
     - NFSD: Fix nfsd4_shutdown_copy()
     - hwmon: (tps23861) Fix reporting of negative temperatures
     - vdpa/mlx5: Fix suboptimal range on iotlb iteration
     - vfio/pci: Properly hide first-in-list PCIe extended capability
     - fs_parser: update mount_api doc to match function signature
     - power: supply: core: Remove might_sleep() from power_supply_put()
     - power: supply: bq27xxx: Fix registers of bq27426
     - net: usb: lan78xx: Fix double free issue with interrupt buffer allocation
     - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device
     - tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets
     - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL
       configuration
     - [s390x] iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()
     - net/ipv6: delete temporary address if mngtmpaddr is removed or unmanaged
     - net: mdio-ipq4019: add missing error check
     - marvell: pxa168_eth: fix call balance of pep->clk handling routines
     - net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken
     - spi: atmel-quadspi: Fix register name in verbose logging function
     - net: hsr: fix hsr_init_sk() vs network/transport headers.
     - bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down
     - Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync
     - crypto: api - Add crypto_tfm_get
     - crypto: api - Add crypto_clone_tfm
     - llc: Improve setsockopt() handling of malformed user input
     - rxrpc: Improve setsockopt() handling of malformed user input
     - tcp: Fix use-after-free of nreq in reqsk_timer_handler().
     - ip6mr: fix tables suspicious RCU usage
     - ipmr: fix tables suspicious RCU usage
     - iio: light: al3010: Fix an error handling path in al3010_probe()
     - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read()
     - usb: yurex: make waiting on yurex_write interruptible
     - USB: chaoskey: fail open after removal
     - USB: chaoskey: Fix possible deadlock chaoskey_list_lock
     - misc: apds990x: Fix missing pm_runtime_disable()
     - counter: stm32-timer-cnt: Add check for clk_enable()
     - counter: ti-ecap-capture: Add check for clk_enable()
     - ALSA: hda/realtek: Update ALC256 depop procedure
     - apparmor: fix 'Do simple duplicate message elimination'
     - [x86] ASoC: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry
     - mailbox: mtk-cmdq: Move devm_mbox_controller_register() after
       devm_pm_runtime_enable()
     - fs/ntfs3: Fixed overflow check in mi_enum_attr() (CVE-2024-27407)
     - ntfs3: Add bounds checking to mi_enum_attr() (CVE-2024-50248)
     - scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata
       paths (CVE-2024-49891)
     - xfs: add bounds checking to xlog_recover_process_data (CVE-2024-41014)
     - xen: Fix the issue of resource not being properly released in
       xenbus_dev_probe()
     - ALSA: usb-audio: Fix out of bounds reads when finding clock sources
     - usb: ehci-spear: fix call balance of sehci clk handling routines
     - media: aspeed: Fix memory overwrite if timing is 1600x900 (CVE-2023-52916)
     - wifi: iwlwifi: mvm: avoid NULL pointer dereference (CVE-2024-49929)
     - drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in
       dcn30_init_hw (CVE-2024-49917)
     - drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw
       (CVE-2024-49915)
     - drm/amd/display: Add NULL check for function pointer in
       dcn20_set_output_transfer_func (CVE-2024-49911)
     - drm/amd/display: Check phantom_stream before it is used (CVE-2024-49897)
     - rcu-tasks: Fix access non-existent percpu rtpcp variable in
       rcu_tasks_need_gpcb()
     - btrfs: qgroup: fix qgroup prealloc rsv leak in subvolume operations
       (CVE-2024-35956)
     - [x86] perf/x86/intel: Hide Topdown metrics events if the feature is not
       enumerated
     - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox
       devices
     - Revert "arm64: dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as
       disabled"
     - [arm64] dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled
     - mm/slab: decouple ARCH_KMALLOC_MINALIGN from ARCH_DMA_MINALIGN
     - [powerpc*] move the ARCH_DMA_MINALIGN definition to asm/cache.h
     - dma: allow dma_get_cache_alignment() to be overridden by the arch code
     - [x86] ASoC: Intel: sst: Fix used of uninitialized ctx to log an error
     - soc: qcom: socinfo: fix revision check in qcom_socinfo_probe()
     - ext4: supress data-race warnings in ext4_free_inodes_{count,set}()
     - ext4: fix FS_IOC_GETFSMAP handling
     - jfs: xattr: check invalid xattr size more strictly
     - [x86] ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen
       5 21MES00B00
     - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata()
     - [x86] perf/x86/intel/pt: Fix buffer full but size is 0 case
     - crypto: x86/aegis128 - access 32-bit arguments as 32-bit
     - [x86] KVM: x86/mmu: Skip the "try unsync" path iff the old SPTE was a leaf
       SPTE
     - [powerpc*] pseries: Fix KVM guest detection for disabling hardlockup
       detector
     - [arm64] KVM: arm64: vgic-v3: Sanitise guest writes to GICR_INVLPIR
     - [arm64] KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow
       status
     - PCI: Fix use-after-free of slot->bus on hot remove
     - fsnotify: fix sending inotify event with unexpected filename
     - comedi: Flush partial mappings in error case
     - apparmor: test: Fix memory leak for aa_unpack_strdup()
     - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler
     - locking/lockdep: Avoid creating new name string literals in
       lockdep_set_subclass()
     - pinctrl: qcom: spmi: fix debugfs drive strength
     - dt-bindings: iio: dac: ad3552r: fix maximum spi speed
     - exfat: fix uninit-value in __exfat_get_dentry_set
     - Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}()
     - usb: xhci: Fix TD invalidation under pending Set TR Dequeue
     - driver core: bus: Fix double free in driver API bus_register()
       (CVE-2024-50055)
     - wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of
       failures
     - wifi: brcmfmac: release 'root' node in all execution paths
     - Revert "usb: gadget: composite: fix OS descriptors w_value logic"
     - serial: sh-sci: Clean sci_ports[0] after at earlycon exit
     - Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit"
     - gpio: exar: set value when external pull-up or pull-down is present
     - netfilter: ipset: add missing range check in bitmap_ip_uadt
       (CVE-2024-53141)
     - spi: Fix acpi deferred irq probe
     - mtd: spi-nor: core: replace dummy buswidth from addr to data
     - cpufreq: mediatek-hw: Fix wrong return value in
       mtk_cpufreq_get_cpu_power()
     - platform/chrome: cros_ec_typec: fix missing fwnode reference decrement
     - ubi: wl: Put source PEB into correct list if trying locking LEB failed
     - dt-bindings: serial: rs485: Fix rs485-rts-delay property
     - serial: 8250_fintek: Add support for F81216E
     - serial: 8250: omap: Move pm_runtime_get_sync
     - ublk: fix ublk_ch_mmap() for 64K page size
     - [arm64] tls: Fix context-switching of tpidrro_el0 when kpti is enabled
     - block: fix ordering between checking BLK_MQ_S_STOPPED request adding
     - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values
     - media: wl128x: Fix atomicity violation in fmc_send_cmd()
     - soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting()
     - media: v4l2-core: v4l2-dv-timings: check cvt/gtf result
     - ALSA: pcm: Add sanity NULL check for the default mmap fault handler
     - ALSA: hda/realtek: Update ALC225 depop procedure
     - ALSA: hda/realtek: Set PCBeep to default value for ALC274
     - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max
     - ALSA: hda/realtek: Apply quirk for Medion E15433
     - smb3: request handle caching when caching directories
     - usb: musb: Fix hardware lockup on first Rx endpoint request
     - usb: dwc3: gadget: Fix checking for number of TRBs left
     - usb: dwc3: gadget: Fix looping of queued SG entries
     - ublk: fix error code for unsupported command
     - lib: string_helpers: silence snprintf() output truncation warning
     - ipc: fix memleak if msg_init_ns failed in create_ipc_ns
     - NFSD: Prevent a potential integer overflow
     - SUNRPC: make sure cache entry active before cache_show
     - NFSv4.0: Fix a use-after-free problem in the asynchronous open()
     - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq()
     - rtc: abx80x: Fix WDT bit position of the status register
     - rtc: check if __rtc_read_time was successful in rtc_timer_do_work()
     - ubi: fastmap: wl: Schedule fm_work if wear-leveling pool is empty
     - ubifs: Correct the total block count by deducting journal reservation
     - ubi: fastmap: Fix duplicate slab cache names while attaching
     - ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit
     - jffs2: fix use of uninitialized variable
     - rtc: rzn1: fix BCD to rtc_time conversion errors
     - block: return unsigned int from bdev_io_min
     - 9p/xen: fix init sequence
     - 9p/xen: fix release of IRQ
     - [arm64] perf/arm-smmuv3: Fix lockdep assert in ->event_init()
     - [arm64] perf/arm-cmn: Ensure port and device id bits are set properly
     - rtc: ab-eoz9: don't fail temperature reads on undervoltage notification
     - modpost: remove incorrect code in do_eisa_entry()
     - nfs: ignore SB_RDONLY when mounting nfs
     - sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport
     - xfs: remove unknown compat feature check in superblock write validation
     - quota: flush quota_release_work upon quota writeback
     - btrfs: don't loop for nowait writes when checking for cross references
     - btrfs: add might_sleep() annotations
     - btrfs: add a sanity check for btrfs root in btrfs_search_slot()
     - btrfs: ref-verify: fix use-after-free after invalid ref action
     - [arm64] dts: allwinner: pinephone: Add mount matrix to accelerometer
     - [arm64] dts: freescale: imx8mm-verdin: Fix SD regulator startup delay
     - media: amphion: Set video drvdata before register video device
     - media: imx-jpeg: Set video drvdata before register video device
     - media: i2c: dw9768: Fix pm_runtime_set_suspended() with runtime pm enabled
     - [arm64] dts: freescale: imx8mp-verdin: Fix SD regulator startup delay
     - media: i2c: tc358743: Fix crash in the probe error path when using polling
     - media: imx-jpeg: Ensure power suppliers be suspended before detach them
     - media: ts2020: fix null-ptr-deref in ts2020_probe()
     - media: platform: exynos4-is: Fix an OF node reference leak in
       fimc_md_is_isp_available
     - media: amphion: Fix pm_runtime_set_suspended() with runtime pm enabled
     - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled
     - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate()
     - media: platform: allegro-dvt: Fix possible memory leak in
       allocate_buffers_internal()
     - media: uvcvideo: Stop stream during unregister
     - media: uvcvideo: Require entities to have a non-zero unique ID
     - ovl: Filter invalid inodes with missing lookup function
     - maple_tree: refine mas_store_root() on storing NULL
     - ftrace: Fix regression with module command in stack_trace_filter
     - vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event
     - [arm64,armhf] iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated
       tables
     - leds: lp55xx: Remove redundant test for invalid channel number
     - clk: qcom: gcc-qcs404: fix initial rate of GPLL3
     - ad7780: fix division by zero in ad7780_write_raw()
     - [armel,armhf] 9429/1: ioremap: Sync PGDs for VMALLOC shadow
     - [s390x] entry: Mark IRQ entries to fix stack depot warnings
     - [armel,armhf] 9430/1: entry: Do a dummy read from VMAP shadow
     - [armel,armhf] 9431/1: mm: Pair atomic_set_release() with _read_acquire()
     - ceph: extract entity name from device id
     - util_macros.h: fix/rework find_closest() macros
     - scsi: ufs: exynos: Fix hibern8 notify callbacks
     - i3c: master: svc: Fix pm_runtime_set_suspended() with runtime pm enabled
     - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()
     - PCI: keystone: Set mode as Root Complex for "ti,keystone-pcie" compatible
     - PCI: keystone: Add link up check to ks_pcie_other_map_bus()
     - fs/proc/kcore.c: Clear ret value in read_kcore_iter after successful
       iov_iter_zero
     - thermal: int3400: Fix reading of current_uuid for active policy
     - ovl: properly handle large files in ovl_security_fileattr
     - dm thin: Add missing destroy_work_on_stack()
     - PCI: rockchip-ep: Fix address translation unit programming
     - nfsd: make sure exp active before svc_export_show
     - nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur
     - iio: Fix fwnode_handle in __fwnode_iio_channel_get_by_name()
     - iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer
     - [powerpc*] Fix stack protector Kconfig test for clang
     - [powerpc*] Adjust adding stack protector flags to KBUILD_CLAGS for clang
     - btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in
       walk_down_proc()
     - drm/sti: avoid potential dereference of error pointers in
       sti_hqvdp_atomic_check
     - drm/sti: avoid potential dereference of error pointers in
       sti_gdp_atomic_check
     - drm/sti: avoid potential dereference of error pointers
     - [arm64,armhf] drm/etnaviv: flush shader L1 cache after user commandstream
     - drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu
       v13.0.7
     - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call
     - watchdog: apple: Actually flush writes after requesting watchdog restart
     - watchdog: mediatek: Make sure system reset gets asserted in
       mtk_wdt_restart()
     - can: gs_usb: remove leading space from goto labels
     - can: gs_usb: gs_usb_probe(): align block comment
     - can: gs_usb: uniformly use "parent" as variable name for struct gs_usb
     - can: gs_usb: add VID/PID for Xylanta SAINT3 product family
     - can: gs_usb: add usb endpoint address detection at driver probe step
     - can: c_can: c_can_handle_bus_err(): update statistics if skb allocation
       fails
     - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is
       NULL
     - can: hi311x: hi3110_can_ist(): fix potential use-after-free
     - can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics
     - can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics
     - can: hi311x: hi3110_can_ist(): fix {rx,tx}_errors statistics
     - can: sja1000: sja1000_err(): fix {rx,tx}_errors statistics
     - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics
     - can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics
     - ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init()
     - netfilter: x_tables: fix LED ID check in led_tg_check()
     - netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level
     - ptp: convert remaining drivers to adjfine interface
     - ptp: Add error handling for adjfine callback in ptp_clock_adjtime
     - net/sched: tbf: correct backlog statistic for GSO packets
     - net: hsr: avoid potential out-of-bound access in fill_frame_info()
     - can: j1939: j1939_session_new(): fix skb reference counting
     - net-timestamp: make sk_tskey more predictable in error path
     - net/ipv6: release expired exception dst cached in socket
     - dccp: Fix memory leak in dccp_feat_change_recv
     - tipc: Fix use-after-free of kernel socket in cleanup_bearer().
     - net/smc: fix LGR and link use-after-free issue
     - net/qed: allow old cards not supporting "num_images" to work
     - ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5
     - ixgbe: downgrade logging of unsupported VF API version to debug
     - igb: Fix potential invalid memory access in igb_init_module()
     - net: sched: fix erspan_opt settings in cls_flower
     - netfilter: ipset: Hold module reference while requesting a module
     - netfilter: nft_set_hash: skip duplicated elements pending gc run
     - ethtool: Fix wrong mod state in case of verbose and no_mask bitset
     - geneve: do not assume mac header is set in geneve_xmit_skb()
     - net/mlx5e: Remove workaround to avoid syndrome for internal port
     - [arm64] KVM: arm64: Change kvm_handle_mmio_return() return polarity
     - [arm64] KVM: arm64: Don't retire aborted MMIO instruction
     - gpio: grgpio: use a helper variable to store the address of ofdev->dev
     - gpio: grgpio: Add NULL check in grgpio_probe
     - serial: amba-pl011: Use port lock wrappers
     - serial: amba-pl011: Fix RX stall when DMA is used
     - usb: dwc3: gadget: Rewrite endpoint allocation flow
     - usb: dwc3: ep0: Don't reset resource alloc flag (including ep0)
     - usb: dwc3: ep0: Don't clear ep0 DWC3_EP_TRANSFER_STARTED
     - [powerpc*] vdso: Skip objtool from running on VDSO files
     - [powerpc*] vdso: Remove unused '-s' flag from ASFLAGS
     - [powerpc*] vdso: Improve linker flags
     - [powerpc*] vdso: Remove an unsupported flag from vgettimeofday-32.o with
       clang
     - [powerpc*] vdso: Include CLANG_FLAGS explicitly in ldflags-y
     - [powerpc*] vdso: Refactor CFLAGS for CVDSO build
     - [powerpc*] vdso: Drop -mstack-protector-guard flags in 32-bit files with
       clang
     - ntp: Remove invalid cast in time offset math
     - driver core: fw_devlink: Improve logs for cycle detection
     - driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link
     - driver core: fw_devlink: Stop trying to optimize cycle detection logic
     - i3c: Make i3c_master_unregister() return void
     - i3c: master: add enable(disable) hot join in sys entry
     - i3c: master: svc: add hot join support
     - i3c: master: fix kernel-doc check warning
     - i3c: master: support to adjust first broadcast address speed
     - i3c: master: svc: use slow speed for first broadcast address
     - i3c: master: svc: Modify enabled_events bit 7:0 to act as IBI enable
       counter
     - i3c: master: Replace hard code 2 with macro I3C_ADDR_SLOT_STATUS_BITS
     - i3c: master: Extend address status bit to 4 and add
       I3C_ADDR_SLOT_EXT_DESIRED
     - i3c: master: Fix dynamic address leak when 'assigned-address' is present
     - PCI: endpoint: Use a separate lock for protecting epc->pci_epf list
     - PCI: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf()
     - device property: Constify device child node APIs
     - device property: Add cleanup.h based fwnode_handle_put() scope based
       cleanup.
     - device property: Introduce device_for_each_child_node_scoped()
     - leds: flash: mt6360: Fix device_for_each_child_node() refcounting in error
       paths
     - drm/bridge: it6505: update usleep_range for RC circuit charge time
     - drm/bridge: it6505: Fix inverted reset polarity
     - xsk: always clear DMA mapping information when unmapping the pool
     - bpftool: Remove asserts from JIT disassembler
     - bpftool: fix potential NULL pointer dereferencing in prog_dump()
     - drm/sti: Add __iomem for mixer_dbg_mxn's parameter
     - tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg
     - ALSA: usb-audio: Notify xrun for low-latency mode
     - tools: Override makefile ARCH variable if defined, but empty
     - spi: mpc52xx: Add cancel_work_sync before module remove
     - scsi: scsi_debug: Fix hrtimer support for ndelay
     - [arm64] drm/v3d: Enable Performance Counters before clearing them
     - ocfs2: free inode when ocfs2_get_init_inode() fails
     - scatterlist: fix incorrect func name in kernel-doc
     - iio: magnetometer: yas530: use signed integer type for clamp limits
     - bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie
     - bpf: Remove unnecessary kfree(im_node) in lpm_trie_update_elem
     - bpf: Handle in-place update for full LPM trie correctly
     - bpf: Fix exact match conditions in trie_get_next_key()
     - mm: page_alloc: move mlocked flag clearance into free_pages_prepare()
       (CVE-2024-53105)
     - HID: wacom: fix when get product name maybe null pointer
     - ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read
     - ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write
     - watchdog: rti: of: honor timeout-sec property
     - can: dev: can_set_termination(): allow sleeping GPIOs
     - can: mcp251xfd: mcp251xfd_get_tef_len(): work around erratum DS80000789E
       6.
     - tracing: Fix cmp_entries_dup() to respect sort() comparison rules
     - [arm64] Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit
       ASIDs
     - [arm64] ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL
     - ALSA: usb-audio: add mixer mapping for Corsair HS80
     - ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8
     - ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG)
     - scsi: qla2xxx: Fix abort in bsg timeout
     - scsi: qla2xxx: Fix NVMe and NPIV connect issue
     - scsi: qla2xxx: Supported speed displayed incorrectly for VPorts
     - scsi: qla2xxx: Fix use after free on unload
     - scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt
     - scsi: ufs: core: sysfs: Prevent div by zero
     - scsi: ufs: core: Add missing post notify for power mode change
     - nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()
     - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again
     - drm/dp_mst: Fix MST sideband message body length check
     - drm/dp_mst: Verify request type in the corresponding down message reply
     - drm/dp_mst: Fix resetting msg rx state after topology removal
     - drm/amdgpu/hdp5.2: do a posting read when flushing HDP
     - modpost: Add .irqentry.text to OTHER_SECTIONS
     - bpf: fix OOB devmap writes when deleting elements
     - dma-buf: fix dma_fence_array_signaled v4
     - dma-fence: Fix reference leak on fence merge failure path
     - dma-fence: Use kernel's sort for merging fences
     - xsk: fix OOB map writes when deleting elements
     - regmap: detach regmap from dev on regmap_exit
     - mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10
       tablet
     - mmc: core: Further prevent card detect during shutdown
     - ocfs2: update seq_file index in ocfs2_dlm_seq_next
     - lib: stackinit: hide never-taken branch from compiler
     - [arm64] iommu/arm-smmu: Defer probe of clients after smmu device bound
     - epoll: annotate racy check
     - [s390x] cpum_sf: Handle CPU hotplug remove during sampling
     - btrfs: avoid unnecessary device path update for the same device
     - btrfs: do not clear read-only when adding sprout device
     - [x86] perf/x86/amd: Warn only on new bits set
     - media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera
     - media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108
     - mmc: core: Add SD card quirk for broken poweroff notification
     - soc: imx8m: Probe the SoC driver as platform driver
     - HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support
     - [arm64,armhf] drm/vc4: hdmi: Avoid log spam for audio start failure
     - [arm64,armhf] drm/vc4: hvs: Set AXI panic modes for the HVS
     - drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model
     - drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition
     - drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK
     - drm/bridge: it6505: Enable module autoloading
     - drm/mcde: Enable module autoloading
     - drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check()
     - drm/display: Fix building with GCC 15
     - r8169: don't apply UDP padding quirk on RTL8126A
     - net: fec_mpc52xx_phy: Use %pa to format resource_size_t
     - net: ethernet: fs_enet: Use %pa to format resource_size_t
     - net/sched: cbs: Fix integer overflow in cbs_set_port_rate()
     - af_packet: avoid erroring out after sock_init_data() in packet_create()
     - Bluetooth: L2CAP: do not leave dangling sk pointer on error in
       l2cap_sock_create()
     - Bluetooth: RFCOMM: avoid leaving dangling sk pointer in
       rfcomm_sock_alloc()
     - net: af_can: do not leave a dangling sk pointer in can_create()
     - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create()
     - net: inet: do not leave a dangling sk pointer in inet_create()
     - net: inet6: do not leave a dangling sk pointer in inet6_create()
     - wifi: ath5k: add PCI ID for SX76X
     - wifi: ath5k: add PCI ID for Arcadyan devices
     - drm/panel: simple: Add Microchip AC69T88A LVDS Display panel
     - net: sfp: change quirks for Alcatel Lucent G-010S-P
     - drm/sched: memset() 'job' in drm_sched_job_init()
     - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih
     - drm/amdgpu: Dereference the ATCS ACPI buffer
     - drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr
     - dma-debug: fix a possible deadlock on radix_lock
     - jfs: array-index-out-of-bounds fix in dtReadFirst
     - jfs: fix shift-out-of-bounds in dbSplit
     - jfs: fix array-index-out-of-bounds in jfs_readdir
     - jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree
     - drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov
     - ALSA: usb-audio: Make mic volume workarounds globally applicable
     - drm/amdgpu: set the right AMDGPU sg segment limitation
     - wifi: ipw2x00: libipw_rx_any(): fix bad alignment
     - wifi: brcmfmac: Fix oops due to NULL pointer dereference in
       brcmf_sdiod_sglist_rw()
     - dsa: qca8k: Use nested lock to avoid splat
     - Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables
     - Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet
     - ASoC: hdmi-codec: reorder channel allocation list
     - rocker: fix link status detection in rocker_carrier_init()
     - net/neighbor: clear error in case strict check is not set
     - netpoll: Use rcu_access_pointer() in __netpoll_setup
     - pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU
     - tracing/ftrace: disable preemption in syscall probe
     - tracing: Use atomic64_inc_return() in trace_clock_counter()
     - tools/rtla: fix collision with glibc sched_attr/sched_set_attr
     - scsi: hisi_sas: Add cond_resched() for no forced preemption model
     - scsi: ufs: core: Make DMA mask configuration more flexible
     - leds: class: Protect brightness_show() with led_cdev->led_access mutex
     - scsi: st: Don't modify unknown block number in MTIOCGET
     - scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset
     - pinctrl: qcom-pmic-gpio: add support for PM8937
     - pinctrl: qcom: spmi-mpp: Add PM8937 compatible
     - nvdimm: rectify the illogical code within nd_dax_probe()
     - smb: client: memcpy() with surrounding object base address
     - verification/dot2: Improve dot parser robustness
     - f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode.
     - i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request
     - PCI: Detect and trust built-in Thunderbolt chips
     - PCI: Add 'reset_subordinate' to reset hierarchy below bridge
     - PCI: Add ACS quirk for Wangxun FF5xxx NICs
     - i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to
       avoid deadlock
     - usb: chipidea: udc: handle USB Error Interrupt if IOC not set
     - iio: light: ltr501: Add LTER0303 to the supported devices
     - [x86] ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen
       6 21M1CTO1WW (Closes: #1087673)
     - [powerpc*] prom_init: Fixup missing powermac #size-cells
     - misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle
     - rtc: cmos: avoid taking rtc_lock for extended period of time
     - serial: 8250_dw: Add Sophgo SG2044 quirk
     - io_uring/tctx: work around xa_store() allocation error issue
     - sched/core: Remove the unnecessary need_resched() check in nohz_csd_func()
     - sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU
       turning busy
     - sched/core: Prevent wakeup of ksoftirqd during idle load balance
     - btrfs: fix missing snapshot drew unlock when root is dead during swap
       activation
     - tracing/eprobe: Fix to release eprobe when failed to add dyn_event
     - Revert "unicode: Don't special case ignorable code points"
     - vfio/mlx5: Align the page tracking max message size with the device
       capability
     - udf: Fold udf_getblk() into udf_bread()
     - [arm64] KVM: arm64: vgic-its: Add a data length check in vgic_its_save_*
     - [arm64] KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device
     - [arm64] KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE
     - [x86] KVM: x86/mmu: Ensure that kvm_release_pfn_clean() takes exact pfn
       from kvm_faultin_pfn()
     - jffs2: Prevent rtime decompress memory corruption
     - jffs2: Fix rtime decompressor
     - mm/damon/vaddr: fix issue in damon_va_evenly_split_region()
     - io_uring: wake up optimisations
     - xhci: dbc: Fix STALL transfer event handling
     - mmc: mtk-sd: Fix error handle of probe function
     - drm/amd/display: Check BIOS images before it is used (CVE-2024-46809)
     - ocfs2: Revert "ocfs2: fix the la space leak when unmounting an ocfs2
       volume"
     - Revert "drm/amdgpu: add missing size check in
       amdgpu_debugfs_gprwave_read()"
     - gve: Fixes for napi_poll when budget is 0
     - [arm64] sve: Discard stale CPU state when handling SVE traps
       (CVE-2024-50275)
     - [arm64] smccc: Remove broken support for SMCCCv1.3 SVE discard hint
     - [x86] ASoC: Intel: avs: Fix return status of avs_pcm_hw_constraints_init()
     - mm: call the security_mmap_file() LSM hook in remap_file_pages()
     - bpf: Fix helper writes to read-only maps (CVE-2024-49861)
     - net: Move {l,t,d}stats allocation to core and convert veth & vrf
     - bpf: Fix dev's rx stats for bpf_redirect_peer traffic
     - veth: Use tstats per-CPU traffic counters
     - drm/ttm: Make sure the mapped tt pages are decrypted when needed
     - drm/ttm: Print the memory decryption status just once
     - drm/amdgpu: rework resume handling for display (v2)
     - usb: dwc3: ep0: Don't reset resource alloc flag
     - serial: amba-pl011: fix build regression
     - i3c: master: Remove i3c_dev_disable_ibi_locked(olddev) on device hotjoin
     - i3c: master: svc: fix possible assignment of the same address to two
       devices
     - PM / devfreq: Fix build issues with devfreq disabled
     - [arm64] drm/msm: DEVFREQ_GOV_SIMPLE_ONDEMAND is no longer needed
     - fs/ntfs3: Sequential field availability check in mi_enum_attr()
     - i3c: master: svc: Fix use after free vulnerability in svc_i3c_master
       Driver Due to Race Condition
     - Bluetooth: MGMT: Fix possible deadlocks
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.121
     - bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors
     - ksmbd: fix racy issue from session lookup and expire
     - tcp: check space before adding MPTCP SYN options
     - blk-cgroup: Fix UAF in blkcg_unpin_online()
     - ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5
     - usb: host: max3421-hcd: Correctly abort a USB request.
     - ata: sata_highbank: fix OF node reference leak in
       highbank_initialize_phys()
     - usb: dwc2: Fix HCD resume
     - usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature
     - usb: dwc2: Fix HCD port connection race
     - usb: ehci-hcd: fix call balance of clocks handling routines
     - usb: typec: anx7411: fix fwnode_handle reference leak
     - usb: typec: anx7411: fix OF node reference leaks in
       anx7411_typec_switch_probe()
     - usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to
       accessing null pointer
     - usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode
     - [x86] drm/i915: Fix memory leak by correcting cache object name in error
       handler
     - xfs: update btree keys correctly when _insrec splits an inode root block
     - xfs: don't drop errno values when we fail to ficlone the entire range
     - xfs: return from xfs_symlink_verify early on V4 filesystems
     - xfs: fix scrub tracepoints when inode-rooted btrees are involved
     - xfs: only run precommits once per transaction object
     - bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog
     - bpf, sockmap: Fix update element with same
     - smb: client: fix UAF in smb2_reconnect_server() (CVE-2024-35870)
       (Closes: #1088733)
     - exfat: support dynamic allocate bh for exfat_entry_set_cache
     - exfat: fix potential deadlock on __exfat_get_dentry_set (CVE-2024-42315)
     - wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one
     - wifi: mac80211: clean up 'ret' in sta_link_apply_parameters()
     - wifi: mac80211: fix station NSS capability initialization order
     - acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl
     - amdgpu/uvd: get ring reference from rq scheduler
     - batman-adv: Do not send uninitialized TT changes
     - batman-adv: Remove uninitialized data in full table TT response
     - batman-adv: Do not let TT changes list grows indefinitely
     - tipc: fix NULL deref in cleanup_bearer()
     - net/mlx5: DR, prevent potential error pointer dereference
     - ptp: kvm: Use decrypted memory in confidential guest on x86
     - [x86] ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from
       kvm_arch_ptp_init()
     - net: lapb: increase LAPB_HEADER_LEN
     - net: defer final 'struct net' free in netns dismantle
     - [arm64] net: mscc: ocelot: fix memory leak on
       ocelot_port_add_txtstamp_skb()
     - [arm64] net: mscc: ocelot: improve handling of TX timestamp for unknown
       skb
     - [arm64] net: mscc: ocelot: ocelot->ts_id_lock and
       ocelot_port->tx_skbs.lock are IRQ-safe
     - [arm64] net: mscc: ocelot: be resilient to loss of PTP packets during
       transmission
     - [arm64] net: mscc: ocelot: perform error cleanup in ocelot_hwstamp_set()
     - [armhf] spi: aspeed: Fix an error handling path in
       aspeed_spi_[read|write]_user()
     - net: sparx5: fix FDMA performance issue
     - net: sparx5: fix the maximum frame length register
     - ACPI: resource: Fix memory resource type union access
     - cxgb4: use port number to set mac addr
     - qca_spi: Fix clock speed for multiple QCA7000
     - qca_spi: Make driver probing reliable
     - ASoC: amd: yc: Fix the wrong return value
     - Documentation: PM: Clarify pm_runtime_resume_and_get() return value
     - net: dsa: felix: fix stuck CPU-injected packets with short taprio windows
     - net/sched: netem: account for backlog updates from child qdisc
     - bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
     - team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
     - ACPICA: events/evxfregn: don't release the ContextMutex that was never
       acquired
     - Bluetooth: iso: Fix recursive locking warning
     - Bluetooth: SCO: Add support for 16 bits transparent voice setting
     - blk-iocost: Avoid using clamp() on inuse in __propagate_weights()
     - bpf: sync_linked_regs() must preserve subreg_def (CVE-2024-53125)
     - tracing/kprobes: Skip symbol counting logic for module symbols in
       create_local_trace_kprobe()
     - xen/netfront: fix crash when removing device (CVE-2024-53240)
     - [x86] make get_cpu_vendor() accessible from Xen code (CVE-2024-53241)
     - [x86] objtool/x86: allow syscall instruction (CVE-2024-53241)
     - [x86] static-call: provide a way to do very early static-call updates
       (CVE-2024-53241)
     - [x86] xen: don't do PV iret hypercall through hypercall page
       (CVE-2024-53241)
     - [x86] xen: add central hypercall functions (CVE-2024-53241)
     - [x86] xen: use new hypercall functions instead of hypercall page
       (CVE-2024-53241)
     - [x86] xen: remove hypercall page (CVE-2024-53241)
     - ALSA: usb-audio: Fix a DMA to stack memory bug
     - [x86] static-call: fix 32-bit build
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.122
     - net: sched: fix ordering of qlen adjustment (CVE-2024-53164)
     - PCI/AER: Disable AER service on suspend
     - PCI: Use preserve_config in place of pci_flags
     - PCI: vmd: Create domain symlink before pci_bus_add_devices()
     - usb: cdns3: Add quirk flag to enable suspend residency
     - [x86] ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP
     - [x86] ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C
     - PCI: Add ACS quirk for Broadcom BCM5760X NIC
     - [arm64,armhf] usb: dwc2: gadget: Don't write invalid mapped sg entries
       into dma_desc with iommu enabled
     - PCI: Introduce pci_resource_n()
     - [x86] platform/x86: p2sb: Make p2sb_get_devfn() return void
     - [x86] p2sb: Factor out p2sb_read_from_cache()
     - [x86] p2sb: Introduce the global flag p2sb_hidden_by_bios
     - [x86] p2sb: Move P2SB hide and unhide code to p2sb_scan_and_cache()
     - [x86] p2sb: Do not scan and remove the P2SB device when it is unhidden
     - i2c: pnx: Fix timeout in wait functions
     - cxl/region: Fix region creation for greater than x2 switches
     - net/smc: protect link down work from execute after lgr freed
       (CVE-2024-56718)
     - net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll
     - net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal
       msg
     - net/smc: check smcd_v2_ext_offset when receiving proposal msg
     - net/smc: check return value of sock_recvmsg when draining clc data
     - [arm64] net: mscc: ocelot: fix incorrect IFH SRC_PORT field in
       ocelot_ifh_set_basic()
     - ionic: Fix netdev notifier unregister on failure (CVE-2024-56715)
     - ionic: use ee->offset when returning sprom data
     - net: hinic: Fix cleanup in create_rxqs/txqs()
     - net: ethernet: bgmac-platform: fix an OF node reference leak
     - netfilter: ipset: Fix for recursive locking warning
     - net: mdiobus: fix an OF node reference leak
     - [arm64,armhf] mmc: sdhci-tegra: Remove
       SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk
     - [x86] KVM: x86: Cache CPUID.0xD XSTATE offsets+sizes during module init
     - i2c: riic: Always round-up when calculating bus period
     - efivarfs: Fix error on non-existent file
     - USB: serial: option: add TCL IK512 MBIM & ECM
     - USB: serial: option: add MeiG Smart SLM770A
     - USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready
     - USB: serial: option: add MediaTek T7XX compositions
     - USB: serial: option: add Telit FE910C04 rmnet compositions
     - [x86] thunderbolt: Improve redrive mode handling
     - drm/modes: Avoid divide by zero harder in drm_mode_vrefresh()
     - drm/panel: novatek-nt35950: fix return value check in nt35950_probe()
     - [x86] i915/guc: Reset engine utilization buffer before registration
     - [x86] i915/guc: Ensure busyness counter increases motonically
     - [x86] i915/guc: Accumulate active runtime on gt reset
     - drm/amdgpu: don't access invalid sched
     - hwmon: (tmp513) Don't use "proxy" headers
     - hwmon: (tmp513) Simplify with dev_err_probe()
     - hwmon: (tmp513) Use SI constants from units.h
     - hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit
       Registers
     - hwmon: (tmp513) Fix Current Register value interpretation
     - hwmon: (tmp513) Fix interpretation of values of Temperature Result and
       Limit Registers
     - zram: refuse to use zero sized block device as backing device
     - zram: fix uninitialized ZRAM not releasing backing device
     - btrfs: tree-checker: reject inline extent items with 0 ref count
     - Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet
     - [x86] KVM: x86: Play nice with protected guests in
       complete_hypercall_exit()
     - tracing: Fix test_event_printk() to process entire print argument
     - tracing: Add missing helper functions in event pointer dereference check
     - tracing: Add "%s" check in test_event_printk()
     - io_uring: Fix registered ring file refcount leak
     - io_uring: check if iowq is killed before queuing (CVE-2024-56709)
     - NFS/pnfs: Fix a live lock between recalled layouts and layoutget
     - of/irq: Fix interrupt-map cell length check in of_irq_parse_imap_parent()
     - of/irq: Fix using uninitialized variable @addr_len in API
       of_irq_parse_one()
     - nilfs2: fix buffer head leaks in calls to truncate_inode_pages()
     - nilfs2: prevent use of deleted inode
     - of: Fix error path in of_parse_phandle_with_args_map()
     - of: Fix refcount leakage for OF node returned by __of_get_dma_parent()
     - ceph: validate snapdirname option length when mounting
     - udf: Fix directory iteration for longer tail extents (Closes: #1089698)
     - epoll: Add synchronous wakeup support for ep_poll_callback
     - io_uring/rw: split io_read() into a helper
     - io_uring/rw: treat -EOPNOTSUPP for IOCB_NOWAIT like -EAGAIN
     - io_uring/rw: avoid punting to io-wq directly
     - drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.123
     - media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg
     - mm/vmstat: fix a W=1 clang compiler warning
     - tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress()
     - tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection
     - bpf: Check negative offsets in __bpf_skb_min_len()
     - nfsd: restore callback functionality for NFSv4.0
     - mtd: diskonchip: Cast an operand to prevent potential overflow
     - [arm64] phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP
     - phy: core: Fix an OF node refcount leakage in _of_phy_get()
     - phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup()
     - phy: core: Fix that API devm_phy_put() fails to release the phy
     - phy: core: Fix that API devm_of_phy_provider_unregister() fails to
       unregister the phy provider
     - phy: core: Fix that API devm_phy_destroy() fails to destroy the phy
     - phy: usb: Toggle the PHY power during init
     - [arm64] phy: rockchip: naneng-combphy: fix phy reset
     - [arm*] dmaengine: mv_xor: fix child node refcount handling in early exit
     - [x86] dmaengine: dw: Select only supported masters for ACPI devices
     - [powerpc*] pseries/vas: Add close() callback in vas_vm_ops struct
     - stddef: make __struct_group() UAPI C++-friendly
     - tracing/kprobe: Make trace_kprobe's module callback called after
       jump_label update
     - watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04
     - scsi: qla1280: Fix hw revision numbering for ISP1020/1040
     - scsi: megaraid_sas: Fix for a potential deadlock
     - ALSA: hda/conexant: fix Z60MR100 startup pop issue
     - smb: server: Fix building with GCC 15
     - regmap: Use correct format specifier for logging range errors
     - [x86] platform/x86: asus-nb-wmi: Ignore unknown event 0xCF
     - scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver
       load time
     - scsi: storvsc: Do not flag MAINTENANCE_IN return of
       SRB_STATUS_DATA_OVERRUN as an error
     - drm/dp_mst: Ensure mst_primary pointer is valid in
       drm_dp_mst_handle_up_req()
     - virtio-blk: don't keep queue frozen during system suspend
     - blk-mq: register cpuhp callback after hctx is added to xarray table
     - vmalloc: fix accounting with i915
     - [mips*] mipsregs: Set proper ISA level for virt extensions
     - net/mlx5e: Don't call cleanup on profile rollback failure (CVE-2024-50146)
     - bpf: Check validity of link->type in bpf_link_show_fdinfo()
       (CVE-2024-53099)
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook X G1i
     - ALSA: hda/realtek: fix micmute LEDs don't work on HP Laptops
     - pmdomain: core: Add missing put_device()
     - sched/core: Report correct state for TASK_IDLE | TASK_FREEZABLE
     - freezer, sched: Report frozen tasks as 'D' instead of 'R'
     - tracing: Constify string literal data member in struct trace_event_call
     - tracing: Prevent bad count for tracing_cpumask_write
     - io_uring/sqpoll: fix sqpoll error handling races
     - i2c: microchip-core: actually use repeated sends
     - i2c: imx: add imx7d compatible string for applying erratum ERR007805
     - i2c: microchip-core: fix "ghost" detections
     - power: supply: gpio-charger: Fix set charge current limits
     - btrfs: avoid monopolizing a core when activating a swap file
     - btrfs: sysfs: fix direct super block member reads
     - nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net
       (CVE-2024-50121)
     - Revert "rcu-tasks: Fix access non-existent percpu rtpcp variable in
       rcu_tasks_need_gpcb()"
     - ALSA: hda/realtek: Fix spelling mistake "Firelfy" -> "Firefly"
 .
   [ Salvatore Bonaccorso ]
   * d/salsa-ci.yml: Suppress aliased-location lintian errors
   * debian/salsa-ci.yml: Include run of .build-after-script from common
     pipeline.
   * debian/salsa-ci.yml: Reference .build-after-script from after_script
     section
   * Revert "[x86] Revert "x86: Increase brk randomness entropy for 64-bit
     systems""
     The root cause for the segfaults were actually in qemu, which re-enables
     --static-pie linking for qemu-user-static binaries. It was disabled by
     mistake in qemu versions in Debian. Details in #1087822 and #1053101.
   * Bump ABI to 29
   * [rt] Update to 6.1.120-rt47
linux (6.1.119-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.116
     - cpufreq: Generalize of_perf_domain_get_sharing_cpumask phandle format
     - cpufreq: Avoid a bad reference count on CPU node (CVE-2024-50012)
     - mm: remove kern_addr_valid() completely
     - fs/proc/kcore: avoid bounce buffer for ktext data
     - fs/proc/kcore: convert read_kcore() to read_kcore_iter()
     - fs/proc/kcore: reinstate bounce buffer for KCORE_TEXT regions
     - fs/proc/kcore.c: allow translation of physical memory addresses
     - cgroup: Fix potential overflow issue when checking max_depth
     - wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd()
       (Closes: #1062421)
     - mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING
     - wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys
     - wifi: ath11k: Fix invalid ring usage in full monitor mode
     - wifi: brcm80211: BRCM_TRACING should depend on TRACING
     - RDMA/cxgb4: Dump vendor specific QP details
     - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down
     - RDMA/bnxt_re: synchronize the qp-handle table array
     - wifi: iwlwifi: mvm: disconnect station vifs if recovery failed
     - wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
       (CVE-2024-53059)
     - [armel,armhf] ASoC: cs42l51: Fix some error handling paths in
       cs42l51_probe()
     - macsec: Fix use-after-free while sending the offloading packet
       (CVE-2024-50261)
     - net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data
       (CVE-2024-53058)
     - ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()
       (CVE-2024-53042)
     - gtp: allow -1 to be specified as file description from userspace
     - net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT (CVE-2024-53057)
     - netdevsim: Add trailing zero to terminate the string in
       nsim_nexthop_bucket_activity_write() (CVE-2024-50259)
     - bpf: Fix out-of-bounds write in trie_get_next_key() (CVE-2024-50262)
     - netfilter: Fix use-after-free in get_info() (CVE-2024-50257)
     - netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
       (CVE-2024-50256)
     - Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs
       (CVE-2024-50255)
     - net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension
     - netfilter: nft_payload: sanitize offset and length before calling
       skb_checksum() (CVE-2024-50251)
     - iomap: convert iomap_unshare_iter to use large folios
     - iomap: improve shared block detection in iomap_unshare_iter
     - iomap: don't bother unsharing delalloc extents
     - iomap: share iomap_unshare_iter predicate code with fsdax
     - fsdax: remove zeroing code from dax_unshare_iter
     - fsdax: dax_unshare_iter needs to copy entire blocks (CVE-2024-50250)
     - iomap: turn iomap_want_unshare_iter into an inline function
     - compiler-gcc: be consistent with underscores use for `no_sanitize`
     - compiler-gcc: remove attribute support check for `__no_sanitize_address__`
     - afs: Automatically generate trace tag enums
     - afs: Fix missing subdir edit when renamed between parent dirs
     - ACPI: CPPC: Make rmw_lock a raw_spin_lock (CVE-2024-50249)
     - fs/ntfs3: Check if more than chunk-size bytes are written (CVE-2024-50247)
     - fs/ntfs3: Fix warning possible deadlock in ntfs_set_state
     - fs/ntfs3: Stale inode instead of bad
     - fs/ntfs3: Fix possible deadlock in mi_read (CVE-2024-50245)
     - fs/ntfs3: Additional check in ni_clear() (CVE-2024-50244)
     - scsi: scsi_transport_fc: Allow setting rport state to current state
     - net: amd: mvme147: Fix probe banner message
     - NFS: remove revoked delegation from server's delegation list
     - misc: sgi-gru: Don't disable preemption in GRU driver
     - usb: gadget: dummy_hcd: Switch to hrtimer transfer scheduler
     - usb: gadget: dummy_hcd: Set transfer interval to 1 microframe
     - usb: gadget: dummy_hcd: execute hrtimer callback in softirq context
     - USB: gadget: dummy-hcd: Fix "task hung" problem
     - ALSA: usb-audio: Add quirks for Dell WD19 dock
     - usbip: tools: Fix detach_port() invalid port error path
     - usb: phy: Fix API devm_usb_put_phy() can not release the phy
     - usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes()
     - xhci: Fix Link TRB DMA in command ring stopped completion event
     - xhci: Use pm_runtime_get to prevent RPM on unsupported systems
     - Revert "driver core: Fix uevent_show() vs driver detach race"
     - wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
       (CVE-2024-50237)
     - wifi: ath10k: Fix memory leak in management tx (CVE-2024-50236)
     - wifi: cfg80211: clear wdev->cqm_config pointer on free (CVE-2024-50235)
     - wifi: iwlegacy: Clear stale interrupts before resuming device
       (CVE-2024-50234)
     - iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
       (CVE-2024-50232)
     - iio: light: veml6030: fix microlux value calculation
     - nilfs2: fix potential deadlock with newly created symlinks
       (CVE-2024-50229)
     - block: fix sanity checks in blk_rq_map_user_bvec
     - cgroup/bpf: use a dedicated workqueue for cgroup bpf destruction
       (CVE-2024-53054)
     - ALSA: hda/realtek: Limit internal Mic boost on Dell platform
     - cxl/acpi: Move rescan to the workqueue
     - cxl/port: Fix cxl_bus_rescan() vs bus_rescan_devices()
     - mm/page_alloc: rename ALLOC_HIGH to ALLOC_MIN_RESERVE
     - mm/page_alloc: treat RT tasks similar to __GFP_HIGH
     - mm/page_alloc: explicitly record high-order atomic allocations in
       alloc_flags
     - mm/page_alloc: explicitly define what alloc flags deplete min reserves
     - mm/page_alloc: explicitly define how __GFP_HIGH non-blocking allocations
       accesses reserves
     - mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves
     - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (CVE-2024-50218)
     - mctp i2c: handle NULL header address (CVE-2024-53043)
     - ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1
     - nvmet-auth: assign dh_key to NULL after kfree_sensitive (CVE-2024-50215)
     - io_uring: rename kiocb_end_write() local helper
     - fs: create kiocb_{start,end}_write() helpers
     - io_uring: use kiocb_{start,end}_write() helpers
     - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write
       (CVE-2024-53052)
     - mm: migrate: try again if THP split is failed due to page refcnt
     - migrate: convert unmap_and_move() to use folios
     - migrate: convert migrate_pages() to use folios
     - mm/migrate.c: stop using 0 as NULL pointer
     - migrate_pages: organize stats with struct migrate_pages_stats
     - migrate_pages: separate hugetlb folios migration
     - migrate_pages: restrict number of pages to migrate in batch
     - migrate_pages: split unmap_and_move() to _unmap() and _move()
     - vmscan,migrate: fix page count imbalance on node stats when demoting pages
     - io_uring: always lock __io_cqring_overflow_flush (Closes: #1087602)
     - [x86] bugs: Use code segment selector for VERW operand (CVE-2024-50072)
     - wifi: mac80211: fix NULL dereference at band check in starting tx ba
       session (CVE-2024-43911)
     - nilfs2: fix kernel bug due to missing clearing of checked flag
       (CVE-2024-50230)
     - wifi: iwlwifi: mvm: fix 6 GHz scan construction (CVE-2024-53055)
     - mm: shmem: fix data-race in shmem_getattr() (CVE-2024-50228)
     - mtd: spi-nor: winbond: fix w25q128 regression
     - drm/amd/display: Add null checks for 'stream' and 'plane' before
       dereferencing (CVE-2024-43904)
     - drm/amd/display: Skip on writeback when it's not applicable
       (CVE-2024-36914)
     - vt: prevent kernel-infoleak in con_font_get()
     - mm: avoid gcc complaint about pointer casting
     - migrate_pages_batch: fix statistics for longterm pin retry
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.117
     - [arm64] dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610
     - [arm64] dts: rockchip: Fix rt5651 compatible value on
       rk3399-sapphire-excavator
     - [arm64] dts: rockchip: Remove hdmi's 2nd interrupt on rk3328
     - [arm64] dts: rockchip: Fix wakeup prop names on PineNote BT node
     - [arm64] dts: rockchip: Fix bluetooth properties on Rock960 boards
     - [arm64] dts: rockchip: Remove #cooling-cells from fan on Theobroma lion
     - [arm64] dts: rockchip: Fix LED triggers on rk3308-roc-cc
     - [arm64] dts: imx8qm: Fix VPU core alias name
     - [arm64] dts: imx8qxp: Add VPU subsystem file
     - [arm64] dts: imx8-ss-vpu: Fix imx8qm VPU IRQs
     - [arm64] dts: imx8mp: correct sdhc ipg clk
     - [armhf] ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin
     - HID: core: zero-initialize the report buffer (CVE-2024-50302)
     - [x86] platform/x86/amd/pmc: Detect when STB is not available
       (CVE-2024-53072)
     - sunrpc: handle -ENOTCONN in xs_tcp_setup_socket()
     - NFSv3: only use NFS timeout for MOUNT when protocols are compatible
     - NFSv3: handle out-of-order write replies.
     - nfs: avoid i_lock contention in nfs_clear_invalid_mapping
     - security/keys: fix slab-out-of-bounds in key_task_permission
       (CVE-2024-50301)
     - [arm64] net: enetc: set MAC address to the VF net_device
     - sctp: properly validate chunk size in sctp_sf_ootb() (CVE-2024-50299)
     - can: c_can: fix {rx,tx}_errors statistics
     - ice: change q_index variable type to s16 to store -1 value
     - i40e: fix race condition by adding filter's intermediate sync state
       (CVE-2024-53088)
     - [arm64] net: hns3: fix kernel crash when uninstalling driver
       (CVE-2024-50296)
     - net: phy: ti: add PHY_RST_AFTER_CLK_EN flag
     - net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case
     - virtio_net: Add hash_key_length check (CVE-2024-53082)
     - Revert "ALSA: hda/conexant: Mute speakers at suspend / shutdown"
     - media: stb0899_algo: initialize cfr before using it
     - media: dvbdev: prevent the risk of out of memory access (CVE-2024-53063)
     - media: dvb_frontend: don't play tricks with underflow values
     - media: adv7604: prevent underflow condition when reporting colorspace
     - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer
     - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init()
     - [armhf] ASoC: stm32: spdifrx: fix dma channel release in
       stm32_spdifrx_remove
     - media: ar0521: don't overflow when checking PLL values (CVE-2024-53081)
     - media: s5p-jpeg: prevent buffer overflows (CVE-2024-53061)
     - media: cx24116: prevent overflows on SNR calculus (CVE-2024-50290)
     - media: pulse8-cec: fix data timestamp at pulse8_setup()
     - media: v4l2-tpg: prevent the risk of a division by zero (CVE-2024-50287)
     - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl()
     - can: mcp251xfd: mcp251xfd_get_tef_len(): fix length calculation
     - can: mcp251xfd: mcp251xfd_ring_alloc(): fix coalescing configuration when
       switching CAN modes
     - ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create
       (CVE-2024-50286)
     - ksmbd: Fix the missing xa_store error check (CVE-2024-50284)
     - ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (CVE-2024-50283)
     - pwm: imx-tpm: Use correct MODULO value for EPWM mode
     - drm/amdgpu: Adjust debugfs eviction and IB access permissions
     - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()
       (CVE-2024-50282)
     - drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported
       (CVE-2024-53060)
     - thermal/drivers/qcom/lmh: Remove false lockdep backtrace
     - dm cache: correct the number of origin blocks to match the target length
     - dm cache: fix flushing uninitialized delayed_work on cache_ctr error
       (CVE-2024-50280)
     - dm cache: fix out-of-bounds access to the dirty bitset when resizing
       (CVE-2024-50279)
     - dm cache: optimize dirty bit checking with find_next_bit when resizing
     - dm cache: fix potential out-of-bounds access on the first resume
       (CVE-2024-50278)
     - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t
       overflow
     - ALSA: usb-audio: Add quirk for HP 320 FHD Webcam
     - ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3
     - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone
     - nfs: Fix KMSAN warning in decode_getfattr_attrs() (CVE-2024-53066)
     - net: wwan: t7xx: Fix off-by-one error in t7xx_dpmaif_rx_buf_alloc()
     - net: vertexcom: mse102x: Fix possible double free of TX skb
       (CVE-2024-50276)
     - mptcp: use sock_kfree_s instead of kfree
     - btrfs: reinitialize delayed ref list after deleting it from the list
       (CVE-2024-50273)
     - bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq
       (CVE-2024-38540)
     - Revert "wifi: mac80211: fix RCU list iterations"
     - net: do not delay dst_entries_add() in dst_release() (CVE-2024-50036)
     - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in
       uvc_parse_format
     - filemap: Fix bounds checking in filemap_read() (CVE-2024-50272)
     - fs/proc: fix compile warning about variable 'vmcore_mmap_ops'
     - signal: restore the override_rlimit logic (CVE-2024-50271)
     - usb: musb: sunxi: Fix accessing an released usb phy (CVE-2024-50269)
     - usb: dwc3: fix fault at system suspend if device was already runtime
       suspended
     - usb: typec: fix potential out of bounds in
       ucsi_ccg_update_set_new_cam_cmd()
     - USB: serial: io_edgeport: fix use after free in debug printk
       (CVE-2024-50267)
     - USB: serial: qcserial: add support for Sierra Wireless EM86xx
     - USB: serial: option: add Fibocom FG132 0x0112 composition
     - USB: serial: option: add Quectel RG650V
     - irqchip/gic-v3: Force propagation of the active state with a read-back
     - ocfs2: remove entry once instead of null-ptr-dereference in
       ocfs2_xa_remove()
     - ucounts: fix counter leak in inc_rlimit_get_ucounts()
     - [x86] ASoC: amd: yc: fix internal mic on Xiaomi Book Pro 14 2022
     - net: sched: use RCU read-side critical section in taprio_dump()
       (CVE-2024-50126)
     - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer
     - vsock/virtio: Initialization of the dangling pointer occurring in
       vsk->trans
     - media: amphion: Fix VPU core alias name
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.118
     - Revert "Bluetooth: fix use-after-free in accessing skb after sending it"
     - Revert "Bluetooth: hci_sync: Fix overwriting request callback"
     - Revert "Bluetooth: af_bluetooth: Fix deadlock"
     - Revert "Bluetooth: hci_core: Fix possible buffer overflow"
     - Revert "Bluetooth: hci_conn: Consolidate code for aborting connections"
       (Closes: #1086447)
     - 9p: Avoid creating multiple slab caches with the same name
     - nvme: tcp: avoid race between queue_lock lock and destroy
     - block: Fix elevator_get_default() checking for NULL q->tag_set
     - HID: multitouch: Add support for B2402FVA track point
     - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad
     - nvme: disable CC.CRIME (NVME_CC_CRIME)
     - bpf: use kvzmalloc to allocate BPF verifier environment
     - crypto: api - Fix liveliness check in crypto_alg_tested
     - [arm*] crypto: marvell/cesa - Disable hash algorithms
     - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML
     - drm/vmwgfx: Limit display layout ioctl array size to
       VMWGFX_NUM_DISPLAY_UNITS
     - nvme-multipath: defer partition scanning (CVE-2024-53093)
     - [powerpc*] powernv: Free name on error in opal_event_init()
     - nvme: make keep-alive synchronous operation
     - bpf: Fix mismatched RCU unlock flavour in bpf_out_neigh_v6
     - fs: Fix uninitialized value issue in from_kuid and from_kgid
     - HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad
     - HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard
     - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition
     - md/raid10: improve code of mrdev in raid10_sync_request
     - io_uring: fix possible deadlock in io_register_iowq_max_workers()
       (CVE-2024-41080)
     - uprobes: encapsulate preparation of uprobe args buffer
     - uprobe: avoid out-of-bounds memory access of fetching args
       (CVE-2024-50067)
     - drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (CVE-2024-49991)
     - ext4: fix timer use-after-free on failed mount (CVE-2024-49960)
     - Bluetooth: L2CAP: Fix uaf in l2cap_connect (CVE-2024-49950)
     - mm: krealloc: Fix MTE false alarm in __do_krealloc
     - [x86] platform/x86: x86-android-tablets: Fix use after free on
       platform_device_register() errors (CVE-2024-49986)
     - fs/ntfs3: Fix general protection fault in run_is_mapped_full
       (CVE-2024-50243)
     - 9p: fix slab cache name creation for real
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.119
     - netlink: terminate outstanding dump on socket close
     - [arm64,armhf] drm/rockchip: vop: Fix a dereferenced before check warning
     - mptcp: error out earlier on disconnect
     - net/mlx5: fs, lock FTE when checking if active
     - net/mlx5e: kTLS, Fix incorrect page refcounting
     - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow
     - virtio/vsock: Fix accept_queue memory leak
     - Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS
     - Bluetooth: hci_core: Fix calling mgmt_device_connected
     - net/sched: cls_u32: replace int refcounts with proper refcounts
     - net: sched: cls_u32: Fix u32's systematic failure to free IDR entries for
       hnodes.
     - bonding: add ns target multicast address to slave device
     - [armel,armhf] 9419/1: mm: Fix kernel memory mapping for xip kernels
     - [x86] mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y
     - mm: fix NULL pointer dereference in alloc_pages_bulk_noprof
     - ocfs2: uncache inode which has failed entering the group
     - vdpa/mlx5: Fix PA offset with unaligned starting iotlb map
     - ima: fix buffer overrun in ima_eventdigest_init_common
     - [x86] KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID
       disabled
     - [x86] KVM: x86: Unconditionally set irr_pending when updating APICv state
     - [x86] KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind
       CONFIG_BROKEN
     - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint
     - ALSA: hda/realtek - Fixed Clevo platform headset Mic issue
     - ALSA: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10
     - ocfs2: fix UBSAN warning in ocfs2_verify_volume()
     - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
     - Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K"
     - mmc: sunxi-mmc: Fix A100 compatible description
     - drm/bridge: tc358768: Fix DSI command tx
     - drm/amd: Fix initialization mistake for NBIO 7.7.0
     - staging: vchiq_arm: Get the rid off struct vchiq_2835_state
     - staging: vchiq_arm: Use devm_kzalloc() for vchiq_arm_state allocation
     - fs/ntfs3: Additional check in ntfs_file_release (CVE-2024-50242)
     - Bluetooth: ISO: Fix not validating setsockopt user input (CVE-2024-35964)
     - lib/buildid: Fix build ID parsing logic
     - cxl/pci: fix error code in __cxl_hdm_decode_init()
     - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set
     - NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point
     - NFSD: Async COPY result needs to return a write verifier
     - NFSD: Limit the number of concurrent async COPY operations
       (CVE-2024-49974)
     - NFSD: Initialize struct nfsd4_copy earlier
     - NFSD: Never decrement pending_async_copies on error
     - mptcp: cope racing subflow creation in mptcp_rcv_space_adjust
     - mptcp: define more local variables sk
     - mptcp: add userspace_pm_lookup_addr_by_id helper
     - mptcp: update local address flags when setting it
     - mptcp: hold pm lock when deleting entry
     - mptcp: drop lookup_by_id in lookup_addr
     - mptcp: pm: use _rcu variant under rcu_read_lock
     - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-26954)
     - ksmbd: fix potencial out-of-bounds when buffer offset is invalid
       (CVE-2024-26952)
     - net: add copy_safe_from_sockptr() helper
     - nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies
     - fs/9p: fix uninitialized values during inode evict (CVE-2024-36923)
     - ipvs: properly dereference pe in ip_vs_add_service (CVE-2024-42322)
     - net/sched: taprio: extend minimum interval restriction to entire cycle too
       (CVE-2024-36244)
     - net: fec: remove .ndo_poll_controller to avoid deadlocks (CVE-2024-38553)
     - mm: revert "mm: shmem: fix data-race in shmem_getattr()"
     - mm: avoid unsafe VMA hook invocation when error arises on mmap hook
     - mm: unconditionally close VMAs on error
     - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling
     - mm: resolve faulty mmap_region() error path behaviour
     - drm/amd: check num of link levels when update pcie param (CVE-2023-52812)
     - char: xillybus: Prevent use-after-free due to race condition
       (CVE-2022-45888)
     - null_blk: Remove usage of the deprecated ida_simple_xx() API
     - null_blk: fix null-ptr-dereference while configuring 'power' and
       'submit_queues' (CVE-2024-36478)
     - null_blk: Fix return value of nullb_device_power_store()
     - parisc: fix a possible DMA corruption (CVE-2024-44949)
     - char: xillybus: Fix trivial bug with mutex
     - net: Make copy_safe_from_sockptr() match documentation
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 28
   * [x86] Revert "x86: Increase brk randomness entropy for 64-bit systems"
     (Closes: #1085762)

linux-signed-amd64 (6.1.123+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.123-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.120
     - [x86] ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated
       codec
     - [x86] ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10
       tablet
     - [x86] ASoC: Intel: sst: Support LPE0F28 ACPI HID
     - wifi: iwlwifi: mvm: Use the sync timepoint API in suspend
     - mac80211: fix user-power when emulating chanctx
     - usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver
     - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13
     - bpf: fix filed access without lock
     - net: usb: qmi_wwan: add Quectel RG650V
     - soc: qcom: Add check devm_kasprintf() returned value
     - regulator: rk808: Add apply_bit for BUCK3 on RK809
     - [x86] platform/x86: dell-smbios-base: Extends support to Alienware
       products
     - [x86] platform/x86: dell-wmi-base: Handle META key Lock/Unlock events
     - tools/lib/thermal: Remove the thermal.h soft link when doing make clean
     - can: j1939: fix error in J1939 documentation.
     - [x86] platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing
       incorrect fan speed
     - [x86] ASoC: amd: yc: Support dmic on another model of Lenovo Thinkpad E14
       Gen 6
     - [armhf] ASoC: stm: Prevent potential division by zero in
       stm32_sai_mclk_round_rate()
     - [armhf] ASoC: stm: Prevent potential division by zero in
       stm32_sai_get_clk_div()
     - drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less
       strict
     - proc/softirqs: replace seq_printf with seq_put_decimal_ull_width
     - ASoC: audio-graph-card2: Purge absent supplies for device tree nodes
     - ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry
     - [armel,armhf] 9420/1: smp: Fix SMP for xip kernels
     - ipmr: Fix access to mfc_cache_list without lock held
     - closures: Change BUG_ON() to WARN_ON() (CVE-2024-42252)
     - net: fix crash when config small gso_max_size/gso_ipv4_max_size
       (CVE-2024-50258)
     - serial: sc16is7xx: fix invalid FIFO access with special register set
       (CVE-2024-44950)
     - cifs: Fix buffer overflow when parsing NFS reparse points (CVE-2024-49996)
     - fpga: bridge: add owner module and take its refcount (CVE-2024-36479)
     - fpga: manager: add owner module and take its refcount (CVE-2024-37021)
     - drm/amd/display: Add NULL check for function pointer in
       dcn32_set_output_transfer_func (CVE-2024-49909)
     - drm/amd/display: Check null-initialized variables (CVE-2024-49898)
     - Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue
     - Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (CVE-2024-49951)
     - fbdev: efifb: Register sysfs groups through driver core (CVE-2024-49925)
     - mptcp: fix possible integer overflow in mptcp_reset_tout_timer
     - wifi: rtw89: avoid to add interface to list twice when SER
       (CVE-2024-49939)
     - drm/amd/display: Initialize denominators' default to 1 (CVE-2024-49899)
     - fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name
     - [x86] barrier: Do not serialize MSR accesses on AMD
     - [s390x] cio: Do not unregister the subchannel based on DNV
     - brd: defer automatic disk creation until module initialization succeeds
     - ext4: make 'abort' mount option handling standard
     - ext4: avoid remount errors with 'abort' mount option
     - [mips*] asm: fix warning when disabling MIPS_FP_SUPPORT
     - initramfs: avoid filename buffer overrun (CVE-2024-53142)
     - nvme-pci: fix freeing of the HMB descriptor table
     - [arm64] acpi/arm64: Adjust error handling procedure in
       gtdt_parse_timer_block()
     - cachefiles: Fix missing pos updates in cachefiles_ondemand_fd_write_iter()
     - netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING
     - block: fix bio_split_rw_at to take zone_write_granularity into account
     - [s390x] syscalls: Avoid creation of arch/arch/ directory
     - hfsplus: don't query the device logical block size multiple times
     - nvme-pci: reverse request order in nvme_queue_rqs
     - virtio_blk: reverse request order in virtio_queue_rqs
     - crypto: caam - Fix the pointer passed to caam_qi_shutdown()
     - firmware: google: Unregister driver_info on failure
     - EDAC/bluefield: Fix potential integer overflow
     - [x86] crypto: qat - remove faulty arbiter config reset
     - thermal: core: Initialize thermal zones before registering them
     - EDAC/fsl_ddr: Fix bad bit shift operations
     - crypto: pcrypt - Call crypto layer directly when padata_do_parallel()
       return -EBUSY
     - crypto: cavium - Fix the if condition to exit loop after timeout
     - crypto: hisilicon/qm - disable same error report before resetting
     - EDAC/igen6: Avoid segmentation fault on module unload
     - crypto: inside-secure - Fix the return value of
       safexcel_xcbcmac_cra_init()
     - doc: rcu: update printed dynticks counter bits
     - hwmon: (nct6775-core) Fix overflows seen when writing limit attributes
     - ACPI: CPPC: Fix _CPC register setting issue
     - crypto: caam - add error check to caam_rsa_set_priv_key_form
     - crypto: bcm - add error check in the ahash_hmac_init function
     - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw()
     - tools/lib/thermal: Make more generic the command encoding function
     - thermal/lib: Fix memory leak on error in thermal_genl_auto()
     - time: Fix references to _msecs_to_jiffies() handling of values
     - seqlock/latch: Provide raw_read_seqcount_latch_retry()
     - clocksource/drivers:sp804: Make user selectable
     - clocksource/drivers/timer-ti-dm: Fix child node refcount handling
     - spi: spi-fsl-lpspi: downgrade log level for pio mode
     - spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq()
     - drivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend()
     - microblaze: Export xmb_manager functions
     - [arm64] dts: mt8195: Fix dtbs_check error for infracfg_ao node
     - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq()
     - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()
     - mmc: mmc_spi: drop buggy snprintf()
     - tpm: fix signed/unsigned bug when checking event logs
     - [arm64] dts: mt8183: krane: Fix the address of eeprom at i2c4
     - [arm64] dts: mt8183: kukui: Fix the address of eeprom at i2c4
     - [arm64] dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source
       trackpad
     - Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline"
     - cgroup/bpf: only cgroup v2 can be attached by bpf programs
     - [arm64] dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: cozmo: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns
     - pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle
     - [armhf] dts: cubieboard4: Fix DCDC5 regulator constraints
     - pmdomain: ti-sci: Add missing of_node_put() for args.np
     - regmap: irq: Set lockdep class for hierarchical IRQ domains
     - [arm64] dts: mt8183: jacuzzi: Move panel under aux-bus
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed
       regulators
     - [arm64] firmware: arm_scpi: Check the DVFS OPP count returned by the
       firmware
     - venus: venc: add handling for VIDIOC_ENCODER_CMD
     - media: venus: provide ctx queue lock for ioctl synchronization
     - media: atomisp: Add check for rgby_data memory allocation failure
     - [x86] platform/x86: panasonic-laptop: Return errno correctly in show
       callback
     - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused
     - [arm64,armhf] drm/vc4: hvs: Don't write gamma luts on 2711
     - [arm64,armhf] drm/vc4: hdmi: Avoid hang with debug registers when
       suspended
     - [arm64,armhf] drm/vc4: hvs: Fix dlist debug not resetting the next entry
       pointer
     - [arm64,armhf] drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs
       function
     - [arm64,armhf] drm/vc4: hvs: Correct logic on stopping an HVS channel
     - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()
     - drm/omap: Fix possible NULL dereference
     - drm/omap: Fix locking in omap_gem_new_dmabuf()
     - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq()
     - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/v3d: Address race-condition in MMU flush
     - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1
     - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2
     - dt-bindings: vendor-prefixes: Add NeoFidelity, Inc
     - ASoC: fsl_micfil: fix regmap_write_bits usage
     - ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode
     - drm/bridge: anx7625: Drop EDID cache on bridge power off
     - libbpf: Fix output .symtab byte-order during linking
     - bpf: Fix the xdp_adjust_tail sample prog issue
     - libbpf: fix sym_is_subprog() logic for weak global subprogs
     - libbpf: never interpret subprogs in .text as entry programs
     - netdevsim: copy addresses for both in and out paths
     - drm/bridge: tc358767: Fix link properties discovery
     - wifi: mwifiex: Fix memcpy() field-spanning write warning in
       mwifiex_config_scan()
     - drm: fsl-dcu: enable PIXCLK on LS1021A
     - [arm64,armhf] drm/panfrost: Remove unused id_mask from struct
       panfrost_model
     - [arm64] bpf, arm64: Remove garbage frame for struct_ops trampoline
     - [arm64] drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/msm/gpu: Add devfreq tuning debugfs
     - [arm64] drm/msm/gpu: Bypass PM QoS constraint for idle clamp
     - [arm64] drm/msm/gpu: Check the status of registration to PM QoS
     - [arm64,armhf] drm/etnaviv: Request pages from DMA32 zone on
       addressing_limited
     - [arm64,armhf] drm/etnaviv: fix power register offset on GC300
     - [arm64,armhf] drm/etnaviv: hold GPU lock across perfmon sampling
     - wifi: wfx: Fix error handling in wfx_core_init()
     - [arm64] drm/msm/dpu: cast crtc_clk calculation to u64 in
       _dpu_core_perf_calc_clk()
     - netfilter: nf_tables: skip transaction if update object is not implemented
     - netfilter: nf_tables: must hold rcu read lock while iterating object type
       list
     - netlink: typographical error in nlmsg_type constants definition
     - bpf, sockmap: Several fixes to bpf_msg_push_data
     - bpf, sockmap: Several fixes to bpf_msg_pop_data
     - bpf, sockmap: Fix sk_msg_reset_curr
     - sock_diag: add module pointer to "struct sock_diag_handler"
     - sock_diag: allow concurrent operations
     - sock_diag: allow concurrent operation in sock_diag_rcv_msg()
     - net: use unrcu_pointer() helper
     - ipv6: release nexthop on device removal
     - net: rfkill: gpio: Add check for clk_enable()
     - ALSA: usx2y: Use snd_card_free_when_closed() at disconnection
     - ALSA: us122l: Use snd_card_free_when_closed() at disconnection
     - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection
     - ALSA: 6fire: Release resources at card release
     - Bluetooth: fix use-after-free in device_for_each_child()
     - netpoll: Use rcu_access_pointer() in netpoll_poll_lock
     - wireguard: selftests: load nf_conntrack if not present
     - bpf: fix recursive lock when verdict program return SK_PASS
     - unicode: Fix utf8_load() error path
     - trace/trace_event_perf: remove duplicate samples on the first tracepoint
       event
     - pinctrl: zynqmp: drop excess struct member description
     - [powerpc*] vdso: Flag VDSO64 entry points as functions
     - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race
     - mfd: da9052-spi: Change read-mask to write-mask
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices
     - cpufreq: loongson2: Unregister platform_driver on failure
     - [powerpc*] fadump: Refactor and prepare fadump_cma_init for late init
     - [powerpc*] fadump: Move fadump_cma_init to setup_arch() after
       initmem_init()
     - memory: renesas-rpc-if: Improve Runtime PM handling
     - memory: renesas-rpc-if: Pass device instead of rpcif to rpcif_*()
     - memory: renesas-rpc-if: Remove Runtime PM wrappers
     - mtd: hyperbus: rpc-if: Convert to platform remove callback returning void
     - mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE
     - mtd: rawnand: atmel: Fix possible memory leak
     - [powerpc*] mm/fault: Fix kfence page fault reporting
     - [powerpc*] pseries: Fix dtl_access_lock to be a rw_semaphore
     - cpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw()
     - cpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()
     - [arm64] RDMA/hns: Fix an AEQE overflow error caused by untimely update of
       eq_db_ci
     - [arm64] RDMA/hns: Add clear_hem return value to log
     - [arm64] RDMA/hns: Use dev_* printings in hem code instead of ibdev_*
     - [arm64] RDMA/hns: Remove unnecessary QP type checks
     - [arm64] RDMA/hns: Fix cpu stuck caused by printings during reset
     - RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey
     - clk: sunxi-ng: d1: Fix PLL_AUDIO0 preset
     - clk: renesas: rzg2l: Fix FOUTPOSTDIV clk
     - clk: imx: lpcg-scu: SW workaround for errata (e10858)
     - clk: imx: fracn-gppll: correct PLL initialization flow
     - clk: imx: fracn-gppll: fix pll power up
     - clk: imx: clk-scu: fix clk enable state save and restore
     - [amd64] iommu/vt-d: Fix checks and print in dmar_fault_dump_ptes()
     - [amd64] iommu/vt-d: Fix checks and print in pgtable_walk()
     - mfd: rt5033: Fix missing regmap_del_irq_chip()
     - fs/proc/kcore.c: fix coccinelle reported ERROR instances
     - scsi: bfa: Fix use-after-free in bfad_im_module_exit()
     - scsi: fusion: Remove unused variable 'rc'
     - scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()
     - scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()
     - [arm64] RDMA/hns: Fix out-of-order issue of requester when setting FENCE
     - [arm64] RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg()
     - cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_cost()
     - cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_power()
     - ocfs2: fix uninitialized value in ocfs2_file_read_iter()
     - dax: delete a stale directory pmem
     - KVM: PPC: Book3S HV: Stop using vc->dpdes for nested KVM guests
     - KVM: PPC: Book3S HV: Avoid returning to nested hypervisor on pending
       doorbells
     - [powerpc*] sstep: make emulate_vsx_load and emulate_vsx_store static
     - [powerpc*] kexec: Fix return of uninitialized variable
     - fbdev/sh7760fb: Alloc DMA memory from hardware device
     - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()
     - clk: clk-apple-nco: Add NULL check in applnco_probe
     - dt-bindings: clock: axi-clkgen: include AXI clk
     - clk: clk-axi-clkgen: make sure to enable the AXI bus clock
     - pinctrl: k210: Undef K210_PC_DEFAULT
     - smb: cached directories can be more than root file handle
     - mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb()
     - perf cs-etm: Don't flush when packet_queue fills up
     - PCI: Fix reset_method_store() memory leak
     - perf stat: Close cork_fd when create_perf_stat_counter() failed
     - perf stat: Fix affinity memory leaks on error path
     - f2fs: compress: fix inconsistent update of i_blocks in
       release_compress_blocks and reserve_compress_blocks
     - f2fs: fix to account dirty data in __get_secs_required()
     - perf probe: Fix libdw memory leak
     - perf probe: Correct demangled symbols in C++ program
     - PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads
     - PCI: cpqphp: Fix PCIBIOS_* return value confusion
     - perf ftrace latency: Fix unit on histogram first entry when using
       --use-nsec
     - f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block
     - f2fs: remove struct segment_allocation default_salloc_ops
     - f2fs: open code allocate_segment_by_default
     - f2fs: remove the unused flush argument to change_curseg
     - f2fs: check curseg->inited before write_sum_page in change_curseg
     - f2fs: fix to avoid use GC_AT when setting gc_mode as GC_URGENT_LOW or
       GC_URGENT_MID
     - f2fs: fix to avoid forcing direct write to use buffered IO on inline_data
       inode
     - perf trace: avoid garbage when not printing a trace event's arguments
     - svcrdma: Address an integer overflow
     - perf trace: Do not lose last events in a race
     - perf trace: Avoid garbage when not printing a syscall's arguments
     - remoteproc: qcom: q6v5: Use _clk_get_optional for aggre2_clk
     - remoteproc: qcom: pas: add minidump_id to SM8350 resources
     - rpmsg: glink: Fix GLINK command prefix
     - rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length
     - remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region
     - NFSD: Prevent NULL dereference in nfsd4_process_cb_update()
     - NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir()
     - sunrpc: simplify two-level sysctl registration for svcrdma_parm_table
     - svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()
     - NFSD: Fix nfsd4_shutdown_copy()
     - hwmon: (tps23861) Fix reporting of negative temperatures
     - vdpa/mlx5: Fix suboptimal range on iotlb iteration
     - vfio/pci: Properly hide first-in-list PCIe extended capability
     - fs_parser: update mount_api doc to match function signature
     - power: supply: core: Remove might_sleep() from power_supply_put()
     - power: supply: bq27xxx: Fix registers of bq27426
     - net: usb: lan78xx: Fix double free issue with interrupt buffer allocation
     - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device
     - tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets
     - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL
       configuration
     - [s390x] iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()
     - net/ipv6: delete temporary address if mngtmpaddr is removed or unmanaged
     - net: mdio-ipq4019: add missing error check
     - marvell: pxa168_eth: fix call balance of pep->clk handling routines
     - net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken
     - spi: atmel-quadspi: Fix register name in verbose logging function
     - net: hsr: fix hsr_init_sk() vs network/transport headers.
     - bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down
     - Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync
     - crypto: api - Add crypto_tfm_get
     - crypto: api - Add crypto_clone_tfm
     - llc: Improve setsockopt() handling of malformed user input
     - rxrpc: Improve setsockopt() handling of malformed user input
     - tcp: Fix use-after-free of nreq in reqsk_timer_handler().
     - ip6mr: fix tables suspicious RCU usage
     - ipmr: fix tables suspicious RCU usage
     - iio: light: al3010: Fix an error handling path in al3010_probe()
     - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read()
     - usb: yurex: make waiting on yurex_write interruptible
     - USB: chaoskey: fail open after removal
     - USB: chaoskey: Fix possible deadlock chaoskey_list_lock
     - misc: apds990x: Fix missing pm_runtime_disable()
     - counter: stm32-timer-cnt: Add check for clk_enable()
     - counter: ti-ecap-capture: Add check for clk_enable()
     - ALSA: hda/realtek: Update ALC256 depop procedure
     - apparmor: fix 'Do simple duplicate message elimination'
     - [x86] ASoC: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry
     - mailbox: mtk-cmdq: Move devm_mbox_controller_register() after
       devm_pm_runtime_enable()
     - fs/ntfs3: Fixed overflow check in mi_enum_attr() (CVE-2024-27407)
     - ntfs3: Add bounds checking to mi_enum_attr() (CVE-2024-50248)
     - scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata
       paths (CVE-2024-49891)
     - xfs: add bounds checking to xlog_recover_process_data (CVE-2024-41014)
     - xen: Fix the issue of resource not being properly released in
       xenbus_dev_probe()
     - ALSA: usb-audio: Fix out of bounds reads when finding clock sources
     - usb: ehci-spear: fix call balance of sehci clk handling routines
     - media: aspeed: Fix memory overwrite if timing is 1600x900 (CVE-2023-52916)
     - wifi: iwlwifi: mvm: avoid NULL pointer dereference (CVE-2024-49929)
     - drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in
       dcn30_init_hw (CVE-2024-49917)
     - drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw
       (CVE-2024-49915)
     - drm/amd/display: Add NULL check for function pointer in
       dcn20_set_output_transfer_func (CVE-2024-49911)
     - drm/amd/display: Check phantom_stream before it is used (CVE-2024-49897)
     - rcu-tasks: Fix access non-existent percpu rtpcp variable in
       rcu_tasks_need_gpcb()
     - btrfs: qgroup: fix qgroup prealloc rsv leak in subvolume operations
       (CVE-2024-35956)
     - [x86] perf/x86/intel: Hide Topdown metrics events if the feature is not
       enumerated
     - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox
       devices
     - Revert "arm64: dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as
       disabled"
     - [arm64] dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled
     - mm/slab: decouple ARCH_KMALLOC_MINALIGN from ARCH_DMA_MINALIGN
     - [powerpc*] move the ARCH_DMA_MINALIGN definition to asm/cache.h
     - dma: allow dma_get_cache_alignment() to be overridden by the arch code
     - [x86] ASoC: Intel: sst: Fix used of uninitialized ctx to log an error
     - soc: qcom: socinfo: fix revision check in qcom_socinfo_probe()
     - ext4: supress data-race warnings in ext4_free_inodes_{count,set}()
     - ext4: fix FS_IOC_GETFSMAP handling
     - jfs: xattr: check invalid xattr size more strictly
     - [x86] ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen
       5 21MES00B00
     - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata()
     - [x86] perf/x86/intel/pt: Fix buffer full but size is 0 case
     - crypto: x86/aegis128 - access 32-bit arguments as 32-bit
     - [x86] KVM: x86/mmu: Skip the "try unsync" path iff the old SPTE was a leaf
       SPTE
     - [powerpc*] pseries: Fix KVM guest detection for disabling hardlockup
       detector
     - [arm64] KVM: arm64: vgic-v3: Sanitise guest writes to GICR_INVLPIR
     - [arm64] KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow
       status
     - PCI: Fix use-after-free of slot->bus on hot remove
     - fsnotify: fix sending inotify event with unexpected filename
     - comedi: Flush partial mappings in error case
     - apparmor: test: Fix memory leak for aa_unpack_strdup()
     - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler
     - locking/lockdep: Avoid creating new name string literals in
       lockdep_set_subclass()
     - pinctrl: qcom: spmi: fix debugfs drive strength
     - dt-bindings: iio: dac: ad3552r: fix maximum spi speed
     - exfat: fix uninit-value in __exfat_get_dentry_set
     - Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}()
     - usb: xhci: Fix TD invalidation under pending Set TR Dequeue
     - driver core: bus: Fix double free in driver API bus_register()
       (CVE-2024-50055)
     - wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of
       failures
     - wifi: brcmfmac: release 'root' node in all execution paths
     - Revert "usb: gadget: composite: fix OS descriptors w_value logic"
     - serial: sh-sci: Clean sci_ports[0] after at earlycon exit
     - Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit"
     - gpio: exar: set value when external pull-up or pull-down is present
     - netfilter: ipset: add missing range check in bitmap_ip_uadt
       (CVE-2024-53141)
     - spi: Fix acpi deferred irq probe
     - mtd: spi-nor: core: replace dummy buswidth from addr to data
     - cpufreq: mediatek-hw: Fix wrong return value in
       mtk_cpufreq_get_cpu_power()
     - platform/chrome: cros_ec_typec: fix missing fwnode reference decrement
     - ubi: wl: Put source PEB into correct list if trying locking LEB failed
     - dt-bindings: serial: rs485: Fix rs485-rts-delay property
     - serial: 8250_fintek: Add support for F81216E
     - serial: 8250: omap: Move pm_runtime_get_sync
     - ublk: fix ublk_ch_mmap() for 64K page size
     - [arm64] tls: Fix context-switching of tpidrro_el0 when kpti is enabled
     - block: fix ordering between checking BLK_MQ_S_STOPPED request adding
     - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values
     - media: wl128x: Fix atomicity violation in fmc_send_cmd()
     - soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting()
     - media: v4l2-core: v4l2-dv-timings: check cvt/gtf result
     - ALSA: pcm: Add sanity NULL check for the default mmap fault handler
     - ALSA: hda/realtek: Update ALC225 depop procedure
     - ALSA: hda/realtek: Set PCBeep to default value for ALC274
     - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max
     - ALSA: hda/realtek: Apply quirk for Medion E15433
     - smb3: request handle caching when caching directories
     - usb: musb: Fix hardware lockup on first Rx endpoint request
     - usb: dwc3: gadget: Fix checking for number of TRBs left
     - usb: dwc3: gadget: Fix looping of queued SG entries
     - ublk: fix error code for unsupported command
     - lib: string_helpers: silence snprintf() output truncation warning
     - ipc: fix memleak if msg_init_ns failed in create_ipc_ns
     - NFSD: Prevent a potential integer overflow
     - SUNRPC: make sure cache entry active before cache_show
     - NFSv4.0: Fix a use-after-free problem in the asynchronous open()
     - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq()
     - rtc: abx80x: Fix WDT bit position of the status register
     - rtc: check if __rtc_read_time was successful in rtc_timer_do_work()
     - ubi: fastmap: wl: Schedule fm_work if wear-leveling pool is empty
     - ubifs: Correct the total block count by deducting journal reservation
     - ubi: fastmap: Fix duplicate slab cache names while attaching
     - ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit
     - jffs2: fix use of uninitialized variable
     - rtc: rzn1: fix BCD to rtc_time conversion errors
     - block: return unsigned int from bdev_io_min
     - 9p/xen: fix init sequence
     - 9p/xen: fix release of IRQ
     - [arm64] perf/arm-smmuv3: Fix lockdep assert in ->event_init()
     - [arm64] perf/arm-cmn: Ensure port and device id bits are set properly
     - rtc: ab-eoz9: don't fail temperature reads on undervoltage notification
     - modpost: remove incorrect code in do_eisa_entry()
     - nfs: ignore SB_RDONLY when mounting nfs
     - sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport
     - xfs: remove unknown compat feature check in superblock write validation
     - quota: flush quota_release_work upon quota writeback
     - btrfs: don't loop for nowait writes when checking for cross references
     - btrfs: add might_sleep() annotations
     - btrfs: add a sanity check for btrfs root in btrfs_search_slot()
     - btrfs: ref-verify: fix use-after-free after invalid ref action
     - [arm64] dts: allwinner: pinephone: Add mount matrix to accelerometer
     - [arm64] dts: freescale: imx8mm-verdin: Fix SD regulator startup delay
     - media: amphion: Set video drvdata before register video device
     - media: imx-jpeg: Set video drvdata before register video device
     - media: i2c: dw9768: Fix pm_runtime_set_suspended() with runtime pm enabled
     - [arm64] dts: freescale: imx8mp-verdin: Fix SD regulator startup delay
     - media: i2c: tc358743: Fix crash in the probe error path when using polling
     - media: imx-jpeg: Ensure power suppliers be suspended before detach them
     - media: ts2020: fix null-ptr-deref in ts2020_probe()
     - media: platform: exynos4-is: Fix an OF node reference leak in
       fimc_md_is_isp_available
     - media: amphion: Fix pm_runtime_set_suspended() with runtime pm enabled
     - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled
     - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate()
     - media: platform: allegro-dvt: Fix possible memory leak in
       allocate_buffers_internal()
     - media: uvcvideo: Stop stream during unregister
     - media: uvcvideo: Require entities to have a non-zero unique ID
     - ovl: Filter invalid inodes with missing lookup function
     - maple_tree: refine mas_store_root() on storing NULL
     - ftrace: Fix regression with module command in stack_trace_filter
     - vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event
     - [arm64,armhf] iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated
       tables
     - leds: lp55xx: Remove redundant test for invalid channel number
     - clk: qcom: gcc-qcs404: fix initial rate of GPLL3
     - ad7780: fix division by zero in ad7780_write_raw()
     - [armel,armhf] 9429/1: ioremap: Sync PGDs for VMALLOC shadow
     - [s390x] entry: Mark IRQ entries to fix stack depot warnings
     - [armel,armhf] 9430/1: entry: Do a dummy read from VMAP shadow
     - [armel,armhf] 9431/1: mm: Pair atomic_set_release() with _read_acquire()
     - ceph: extract entity name from device id
     - util_macros.h: fix/rework find_closest() macros
     - scsi: ufs: exynos: Fix hibern8 notify callbacks
     - i3c: master: svc: Fix pm_runtime_set_suspended() with runtime pm enabled
     - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()
     - PCI: keystone: Set mode as Root Complex for "ti,keystone-pcie" compatible
     - PCI: keystone: Add link up check to ks_pcie_other_map_bus()
     - fs/proc/kcore.c: Clear ret value in read_kcore_iter after successful
       iov_iter_zero
     - thermal: int3400: Fix reading of current_uuid for active policy
     - ovl: properly handle large files in ovl_security_fileattr
     - dm thin: Add missing destroy_work_on_stack()
     - PCI: rockchip-ep: Fix address translation unit programming
     - nfsd: make sure exp active before svc_export_show
     - nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur
     - iio: Fix fwnode_handle in __fwnode_iio_channel_get_by_name()
     - iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer
     - [powerpc*] Fix stack protector Kconfig test for clang
     - [powerpc*] Adjust adding stack protector flags to KBUILD_CLAGS for clang
     - btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in
       walk_down_proc()
     - drm/sti: avoid potential dereference of error pointers in
       sti_hqvdp_atomic_check
     - drm/sti: avoid potential dereference of error pointers in
       sti_gdp_atomic_check
     - drm/sti: avoid potential dereference of error pointers
     - [arm64,armhf] drm/etnaviv: flush shader L1 cache after user commandstream
     - drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu
       v13.0.7
     - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call
     - watchdog: apple: Actually flush writes after requesting watchdog restart
     - watchdog: mediatek: Make sure system reset gets asserted in
       mtk_wdt_restart()
     - can: gs_usb: remove leading space from goto labels
     - can: gs_usb: gs_usb_probe(): align block comment
     - can: gs_usb: uniformly use "parent" as variable name for struct gs_usb
     - can: gs_usb: add VID/PID for Xylanta SAINT3 product family
     - can: gs_usb: add usb endpoint address detection at driver probe step
     - can: c_can: c_can_handle_bus_err(): update statistics if skb allocation
       fails
     - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is
       NULL
     - can: hi311x: hi3110_can_ist(): fix potential use-after-free
     - can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics
     - can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics
     - can: hi311x: hi3110_can_ist(): fix {rx,tx}_errors statistics
     - can: sja1000: sja1000_err(): fix {rx,tx}_errors statistics
     - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics
     - can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics
     - ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init()
     - netfilter: x_tables: fix LED ID check in led_tg_check()
     - netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level
     - ptp: convert remaining drivers to adjfine interface
     - ptp: Add error handling for adjfine callback in ptp_clock_adjtime
     - net/sched: tbf: correct backlog statistic for GSO packets
     - net: hsr: avoid potential out-of-bound access in fill_frame_info()
     - can: j1939: j1939_session_new(): fix skb reference counting
     - net-timestamp: make sk_tskey more predictable in error path
     - net/ipv6: release expired exception dst cached in socket
     - dccp: Fix memory leak in dccp_feat_change_recv
     - tipc: Fix use-after-free of kernel socket in cleanup_bearer().
     - net/smc: fix LGR and link use-after-free issue
     - net/qed: allow old cards not supporting "num_images" to work
     - ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5
     - ixgbe: downgrade logging of unsupported VF API version to debug
     - igb: Fix potential invalid memory access in igb_init_module()
     - net: sched: fix erspan_opt settings in cls_flower
     - netfilter: ipset: Hold module reference while requesting a module
     - netfilter: nft_set_hash: skip duplicated elements pending gc run
     - ethtool: Fix wrong mod state in case of verbose and no_mask bitset
     - geneve: do not assume mac header is set in geneve_xmit_skb()
     - net/mlx5e: Remove workaround to avoid syndrome for internal port
     - [arm64] KVM: arm64: Change kvm_handle_mmio_return() return polarity
     - [arm64] KVM: arm64: Don't retire aborted MMIO instruction
     - gpio: grgpio: use a helper variable to store the address of ofdev->dev
     - gpio: grgpio: Add NULL check in grgpio_probe
     - serial: amba-pl011: Use port lock wrappers
     - serial: amba-pl011: Fix RX stall when DMA is used
     - usb: dwc3: gadget: Rewrite endpoint allocation flow
     - usb: dwc3: ep0: Don't reset resource alloc flag (including ep0)
     - usb: dwc3: ep0: Don't clear ep0 DWC3_EP_TRANSFER_STARTED
     - [powerpc*] vdso: Skip objtool from running on VDSO files
     - [powerpc*] vdso: Remove unused '-s' flag from ASFLAGS
     - [powerpc*] vdso: Improve linker flags
     - [powerpc*] vdso: Remove an unsupported flag from vgettimeofday-32.o with
       clang
     - [powerpc*] vdso: Include CLANG_FLAGS explicitly in ldflags-y
     - [powerpc*] vdso: Refactor CFLAGS for CVDSO build
     - [powerpc*] vdso: Drop -mstack-protector-guard flags in 32-bit files with
       clang
     - ntp: Remove invalid cast in time offset math
     - driver core: fw_devlink: Improve logs for cycle detection
     - driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link
     - driver core: fw_devlink: Stop trying to optimize cycle detection logic
     - i3c: Make i3c_master_unregister() return void
     - i3c: master: add enable(disable) hot join in sys entry
     - i3c: master: svc: add hot join support
     - i3c: master: fix kernel-doc check warning
     - i3c: master: support to adjust first broadcast address speed
     - i3c: master: svc: use slow speed for first broadcast address
     - i3c: master: svc: Modify enabled_events bit 7:0 to act as IBI enable
       counter
     - i3c: master: Replace hard code 2 with macro I3C_ADDR_SLOT_STATUS_BITS
     - i3c: master: Extend address status bit to 4 and add
       I3C_ADDR_SLOT_EXT_DESIRED
     - i3c: master: Fix dynamic address leak when 'assigned-address' is present
     - PCI: endpoint: Use a separate lock for protecting epc->pci_epf list
     - PCI: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf()
     - device property: Constify device child node APIs
     - device property: Add cleanup.h based fwnode_handle_put() scope based
       cleanup.
     - device property: Introduce device_for_each_child_node_scoped()
     - leds: flash: mt6360: Fix device_for_each_child_node() refcounting in error
       paths
     - drm/bridge: it6505: update usleep_range for RC circuit charge time
     - drm/bridge: it6505: Fix inverted reset polarity
     - xsk: always clear DMA mapping information when unmapping the pool
     - bpftool: Remove asserts from JIT disassembler
     - bpftool: fix potential NULL pointer dereferencing in prog_dump()
     - drm/sti: Add __iomem for mixer_dbg_mxn's parameter
     - tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg
     - ALSA: usb-audio: Notify xrun for low-latency mode
     - tools: Override makefile ARCH variable if defined, but empty
     - spi: mpc52xx: Add cancel_work_sync before module remove
     - scsi: scsi_debug: Fix hrtimer support for ndelay
     - [arm64] drm/v3d: Enable Performance Counters before clearing them
     - ocfs2: free inode when ocfs2_get_init_inode() fails
     - scatterlist: fix incorrect func name in kernel-doc
     - iio: magnetometer: yas530: use signed integer type for clamp limits
     - bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie
     - bpf: Remove unnecessary kfree(im_node) in lpm_trie_update_elem
     - bpf: Handle in-place update for full LPM trie correctly
     - bpf: Fix exact match conditions in trie_get_next_key()
     - mm: page_alloc: move mlocked flag clearance into free_pages_prepare()
       (CVE-2024-53105)
     - HID: wacom: fix when get product name maybe null pointer
     - ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read
     - ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write
     - watchdog: rti: of: honor timeout-sec property
     - can: dev: can_set_termination(): allow sleeping GPIOs
     - can: mcp251xfd: mcp251xfd_get_tef_len(): work around erratum DS80000789E
       6.
     - tracing: Fix cmp_entries_dup() to respect sort() comparison rules
     - [arm64] Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit
       ASIDs
     - [arm64] ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL
     - ALSA: usb-audio: add mixer mapping for Corsair HS80
     - ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8
     - ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG)
     - scsi: qla2xxx: Fix abort in bsg timeout
     - scsi: qla2xxx: Fix NVMe and NPIV connect issue
     - scsi: qla2xxx: Supported speed displayed incorrectly for VPorts
     - scsi: qla2xxx: Fix use after free on unload
     - scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt
     - scsi: ufs: core: sysfs: Prevent div by zero
     - scsi: ufs: core: Add missing post notify for power mode change
     - nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()
     - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again
     - drm/dp_mst: Fix MST sideband message body length check
     - drm/dp_mst: Verify request type in the corresponding down message reply
     - drm/dp_mst: Fix resetting msg rx state after topology removal
     - drm/amdgpu/hdp5.2: do a posting read when flushing HDP
     - modpost: Add .irqentry.text to OTHER_SECTIONS
     - bpf: fix OOB devmap writes when deleting elements
     - dma-buf: fix dma_fence_array_signaled v4
     - dma-fence: Fix reference leak on fence merge failure path
     - dma-fence: Use kernel's sort for merging fences
     - xsk: fix OOB map writes when deleting elements
     - regmap: detach regmap from dev on regmap_exit
     - mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10
       tablet
     - mmc: core: Further prevent card detect during shutdown
     - ocfs2: update seq_file index in ocfs2_dlm_seq_next
     - lib: stackinit: hide never-taken branch from compiler
     - [arm64] iommu/arm-smmu: Defer probe of clients after smmu device bound
     - epoll: annotate racy check
     - [s390x] cpum_sf: Handle CPU hotplug remove during sampling
     - btrfs: avoid unnecessary device path update for the same device
     - btrfs: do not clear read-only when adding sprout device
     - [x86] perf/x86/amd: Warn only on new bits set
     - media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera
     - media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108
     - mmc: core: Add SD card quirk for broken poweroff notification
     - soc: imx8m: Probe the SoC driver as platform driver
     - HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support
     - [arm64,armhf] drm/vc4: hdmi: Avoid log spam for audio start failure
     - [arm64,armhf] drm/vc4: hvs: Set AXI panic modes for the HVS
     - drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model
     - drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition
     - drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK
     - drm/bridge: it6505: Enable module autoloading
     - drm/mcde: Enable module autoloading
     - drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check()
     - drm/display: Fix building with GCC 15
     - r8169: don't apply UDP padding quirk on RTL8126A
     - net: fec_mpc52xx_phy: Use %pa to format resource_size_t
     - net: ethernet: fs_enet: Use %pa to format resource_size_t
     - net/sched: cbs: Fix integer overflow in cbs_set_port_rate()
     - af_packet: avoid erroring out after sock_init_data() in packet_create()
     - Bluetooth: L2CAP: do not leave dangling sk pointer on error in
       l2cap_sock_create()
     - Bluetooth: RFCOMM: avoid leaving dangling sk pointer in
       rfcomm_sock_alloc()
     - net: af_can: do not leave a dangling sk pointer in can_create()
     - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create()
     - net: inet: do not leave a dangling sk pointer in inet_create()
     - net: inet6: do not leave a dangling sk pointer in inet6_create()
     - wifi: ath5k: add PCI ID for SX76X
     - wifi: ath5k: add PCI ID for Arcadyan devices
     - drm/panel: simple: Add Microchip AC69T88A LVDS Display panel
     - net: sfp: change quirks for Alcatel Lucent G-010S-P
     - drm/sched: memset() 'job' in drm_sched_job_init()
     - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih
     - drm/amdgpu: Dereference the ATCS ACPI buffer
     - drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr
     - dma-debug: fix a possible deadlock on radix_lock
     - jfs: array-index-out-of-bounds fix in dtReadFirst
     - jfs: fix shift-out-of-bounds in dbSplit
     - jfs: fix array-index-out-of-bounds in jfs_readdir
     - jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree
     - drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov
     - ALSA: usb-audio: Make mic volume workarounds globally applicable
     - drm/amdgpu: set the right AMDGPU sg segment limitation
     - wifi: ipw2x00: libipw_rx_any(): fix bad alignment
     - wifi: brcmfmac: Fix oops due to NULL pointer dereference in
       brcmf_sdiod_sglist_rw()
     - dsa: qca8k: Use nested lock to avoid splat
     - Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables
     - Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet
     - ASoC: hdmi-codec: reorder channel allocation list
     - rocker: fix link status detection in rocker_carrier_init()
     - net/neighbor: clear error in case strict check is not set
     - netpoll: Use rcu_access_pointer() in __netpoll_setup
     - pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU
     - tracing/ftrace: disable preemption in syscall probe
     - tracing: Use atomic64_inc_return() in trace_clock_counter()
     - tools/rtla: fix collision with glibc sched_attr/sched_set_attr
     - scsi: hisi_sas: Add cond_resched() for no forced preemption model
     - scsi: ufs: core: Make DMA mask configuration more flexible
     - leds: class: Protect brightness_show() with led_cdev->led_access mutex
     - scsi: st: Don't modify unknown block number in MTIOCGET
     - scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset
     - pinctrl: qcom-pmic-gpio: add support for PM8937
     - pinctrl: qcom: spmi-mpp: Add PM8937 compatible
     - nvdimm: rectify the illogical code within nd_dax_probe()
     - smb: client: memcpy() with surrounding object base address
     - verification/dot2: Improve dot parser robustness
     - f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode.
     - i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request
     - PCI: Detect and trust built-in Thunderbolt chips
     - PCI: Add 'reset_subordinate' to reset hierarchy below bridge
     - PCI: Add ACS quirk for Wangxun FF5xxx NICs
     - i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to
       avoid deadlock
     - usb: chipidea: udc: handle USB Error Interrupt if IOC not set
     - iio: light: ltr501: Add LTER0303 to the supported devices
     - [x86] ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen
       6 21M1CTO1WW (Closes: #1087673)
     - [powerpc*] prom_init: Fixup missing powermac #size-cells
     - misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle
     - rtc: cmos: avoid taking rtc_lock for extended period of time
     - serial: 8250_dw: Add Sophgo SG2044 quirk
     - io_uring/tctx: work around xa_store() allocation error issue
     - sched/core: Remove the unnecessary need_resched() check in nohz_csd_func()
     - sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU
       turning busy
     - sched/core: Prevent wakeup of ksoftirqd during idle load balance
     - btrfs: fix missing snapshot drew unlock when root is dead during swap
       activation
     - tracing/eprobe: Fix to release eprobe when failed to add dyn_event
     - Revert "unicode: Don't special case ignorable code points"
     - vfio/mlx5: Align the page tracking max message size with the device
       capability
     - udf: Fold udf_getblk() into udf_bread()
     - [arm64] KVM: arm64: vgic-its: Add a data length check in vgic_its_save_*
     - [arm64] KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device
     - [arm64] KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE
     - [x86] KVM: x86/mmu: Ensure that kvm_release_pfn_clean() takes exact pfn
       from kvm_faultin_pfn()
     - jffs2: Prevent rtime decompress memory corruption
     - jffs2: Fix rtime decompressor
     - mm/damon/vaddr: fix issue in damon_va_evenly_split_region()
     - io_uring: wake up optimisations
     - xhci: dbc: Fix STALL transfer event handling
     - mmc: mtk-sd: Fix error handle of probe function
     - drm/amd/display: Check BIOS images before it is used (CVE-2024-46809)
     - ocfs2: Revert "ocfs2: fix the la space leak when unmounting an ocfs2
       volume"
     - Revert "drm/amdgpu: add missing size check in
       amdgpu_debugfs_gprwave_read()"
     - gve: Fixes for napi_poll when budget is 0
     - [arm64] sve: Discard stale CPU state when handling SVE traps
       (CVE-2024-50275)
     - [arm64] smccc: Remove broken support for SMCCCv1.3 SVE discard hint
     - [x86] ASoC: Intel: avs: Fix return status of avs_pcm_hw_constraints_init()
     - mm: call the security_mmap_file() LSM hook in remap_file_pages()
     - bpf: Fix helper writes to read-only maps (CVE-2024-49861)
     - net: Move {l,t,d}stats allocation to core and convert veth & vrf
     - bpf: Fix dev's rx stats for bpf_redirect_peer traffic
     - veth: Use tstats per-CPU traffic counters
     - drm/ttm: Make sure the mapped tt pages are decrypted when needed
     - drm/ttm: Print the memory decryption status just once
     - drm/amdgpu: rework resume handling for display (v2)
     - usb: dwc3: ep0: Don't reset resource alloc flag
     - serial: amba-pl011: fix build regression
     - i3c: master: Remove i3c_dev_disable_ibi_locked(olddev) on device hotjoin
     - i3c: master: svc: fix possible assignment of the same address to two
       devices
     - PM / devfreq: Fix build issues with devfreq disabled
     - [arm64] drm/msm: DEVFREQ_GOV_SIMPLE_ONDEMAND is no longer needed
     - fs/ntfs3: Sequential field availability check in mi_enum_attr()
     - i3c: master: svc: Fix use after free vulnerability in svc_i3c_master
       Driver Due to Race Condition
     - Bluetooth: MGMT: Fix possible deadlocks
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.121
     - bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors
     - ksmbd: fix racy issue from session lookup and expire
     - tcp: check space before adding MPTCP SYN options
     - blk-cgroup: Fix UAF in blkcg_unpin_online()
     - ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5
     - usb: host: max3421-hcd: Correctly abort a USB request.
     - ata: sata_highbank: fix OF node reference leak in
       highbank_initialize_phys()
     - usb: dwc2: Fix HCD resume
     - usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature
     - usb: dwc2: Fix HCD port connection race
     - usb: ehci-hcd: fix call balance of clocks handling routines
     - usb: typec: anx7411: fix fwnode_handle reference leak
     - usb: typec: anx7411: fix OF node reference leaks in
       anx7411_typec_switch_probe()
     - usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to
       accessing null pointer
     - usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode
     - [x86] drm/i915: Fix memory leak by correcting cache object name in error
       handler
     - xfs: update btree keys correctly when _insrec splits an inode root block
     - xfs: don't drop errno values when we fail to ficlone the entire range
     - xfs: return from xfs_symlink_verify early on V4 filesystems
     - xfs: fix scrub tracepoints when inode-rooted btrees are involved
     - xfs: only run precommits once per transaction object
     - bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog
     - bpf, sockmap: Fix update element with same
     - smb: client: fix UAF in smb2_reconnect_server() (CVE-2024-35870)
       (Closes: #1088733)
     - exfat: support dynamic allocate bh for exfat_entry_set_cache
     - exfat: fix potential deadlock on __exfat_get_dentry_set (CVE-2024-42315)
     - wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one
     - wifi: mac80211: clean up 'ret' in sta_link_apply_parameters()
     - wifi: mac80211: fix station NSS capability initialization order
     - acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl
     - amdgpu/uvd: get ring reference from rq scheduler
     - batman-adv: Do not send uninitialized TT changes
     - batman-adv: Remove uninitialized data in full table TT response
     - batman-adv: Do not let TT changes list grows indefinitely
     - tipc: fix NULL deref in cleanup_bearer()
     - net/mlx5: DR, prevent potential error pointer dereference
     - ptp: kvm: Use decrypted memory in confidential guest on x86
     - [x86] ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from
       kvm_arch_ptp_init()
     - net: lapb: increase LAPB_HEADER_LEN
     - net: defer final 'struct net' free in netns dismantle
     - [arm64] net: mscc: ocelot: fix memory leak on
       ocelot_port_add_txtstamp_skb()
     - [arm64] net: mscc: ocelot: improve handling of TX timestamp for unknown
       skb
     - [arm64] net: mscc: ocelot: ocelot->ts_id_lock and
       ocelot_port->tx_skbs.lock are IRQ-safe
     - [arm64] net: mscc: ocelot: be resilient to loss of PTP packets during
       transmission
     - [arm64] net: mscc: ocelot: perform error cleanup in ocelot_hwstamp_set()
     - [armhf] spi: aspeed: Fix an error handling path in
       aspeed_spi_[read|write]_user()
     - net: sparx5: fix FDMA performance issue
     - net: sparx5: fix the maximum frame length register
     - ACPI: resource: Fix memory resource type union access
     - cxgb4: use port number to set mac addr
     - qca_spi: Fix clock speed for multiple QCA7000
     - qca_spi: Make driver probing reliable
     - ASoC: amd: yc: Fix the wrong return value
     - Documentation: PM: Clarify pm_runtime_resume_and_get() return value
     - net: dsa: felix: fix stuck CPU-injected packets with short taprio windows
     - net/sched: netem: account for backlog updates from child qdisc
     - bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
     - team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
     - ACPICA: events/evxfregn: don't release the ContextMutex that was never
       acquired
     - Bluetooth: iso: Fix recursive locking warning
     - Bluetooth: SCO: Add support for 16 bits transparent voice setting
     - blk-iocost: Avoid using clamp() on inuse in __propagate_weights()
     - bpf: sync_linked_regs() must preserve subreg_def (CVE-2024-53125)
     - tracing/kprobes: Skip symbol counting logic for module symbols in
       create_local_trace_kprobe()
     - xen/netfront: fix crash when removing device (CVE-2024-53240)
     - [x86] make get_cpu_vendor() accessible from Xen code (CVE-2024-53241)
     - [x86] objtool/x86: allow syscall instruction (CVE-2024-53241)
     - [x86] static-call: provide a way to do very early static-call updates
       (CVE-2024-53241)
     - [x86] xen: don't do PV iret hypercall through hypercall page
       (CVE-2024-53241)
     - [x86] xen: add central hypercall functions (CVE-2024-53241)
     - [x86] xen: use new hypercall functions instead of hypercall page
       (CVE-2024-53241)
     - [x86] xen: remove hypercall page (CVE-2024-53241)
     - ALSA: usb-audio: Fix a DMA to stack memory bug
     - [x86] static-call: fix 32-bit build
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.122
     - net: sched: fix ordering of qlen adjustment (CVE-2024-53164)
     - PCI/AER: Disable AER service on suspend
     - PCI: Use preserve_config in place of pci_flags
     - PCI: vmd: Create domain symlink before pci_bus_add_devices()
     - usb: cdns3: Add quirk flag to enable suspend residency
     - [x86] ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP
     - [x86] ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C
     - PCI: Add ACS quirk for Broadcom BCM5760X NIC
     - [arm64,armhf] usb: dwc2: gadget: Don't write invalid mapped sg entries
       into dma_desc with iommu enabled
     - PCI: Introduce pci_resource_n()
     - [x86] platform/x86: p2sb: Make p2sb_get_devfn() return void
     - [x86] p2sb: Factor out p2sb_read_from_cache()
     - [x86] p2sb: Introduce the global flag p2sb_hidden_by_bios
     - [x86] p2sb: Move P2SB hide and unhide code to p2sb_scan_and_cache()
     - [x86] p2sb: Do not scan and remove the P2SB device when it is unhidden
     - i2c: pnx: Fix timeout in wait functions
     - cxl/region: Fix region creation for greater than x2 switches
     - net/smc: protect link down work from execute after lgr freed
       (CVE-2024-56718)
     - net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll
     - net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal
       msg
     - net/smc: check smcd_v2_ext_offset when receiving proposal msg
     - net/smc: check return value of sock_recvmsg when draining clc data
     - [arm64] net: mscc: ocelot: fix incorrect IFH SRC_PORT field in
       ocelot_ifh_set_basic()
     - ionic: Fix netdev notifier unregister on failure (CVE-2024-56715)
     - ionic: use ee->offset when returning sprom data
     - net: hinic: Fix cleanup in create_rxqs/txqs()
     - net: ethernet: bgmac-platform: fix an OF node reference leak
     - netfilter: ipset: Fix for recursive locking warning
     - net: mdiobus: fix an OF node reference leak
     - [arm64,armhf] mmc: sdhci-tegra: Remove
       SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk
     - [x86] KVM: x86: Cache CPUID.0xD XSTATE offsets+sizes during module init
     - i2c: riic: Always round-up when calculating bus period
     - efivarfs: Fix error on non-existent file
     - USB: serial: option: add TCL IK512 MBIM & ECM
     - USB: serial: option: add MeiG Smart SLM770A
     - USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready
     - USB: serial: option: add MediaTek T7XX compositions
     - USB: serial: option: add Telit FE910C04 rmnet compositions
     - [x86] thunderbolt: Improve redrive mode handling
     - drm/modes: Avoid divide by zero harder in drm_mode_vrefresh()
     - drm/panel: novatek-nt35950: fix return value check in nt35950_probe()
     - [x86] i915/guc: Reset engine utilization buffer before registration
     - [x86] i915/guc: Ensure busyness counter increases motonically
     - [x86] i915/guc: Accumulate active runtime on gt reset
     - drm/amdgpu: don't access invalid sched
     - hwmon: (tmp513) Don't use "proxy" headers
     - hwmon: (tmp513) Simplify with dev_err_probe()
     - hwmon: (tmp513) Use SI constants from units.h
     - hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit
       Registers
     - hwmon: (tmp513) Fix Current Register value interpretation
     - hwmon: (tmp513) Fix interpretation of values of Temperature Result and
       Limit Registers
     - zram: refuse to use zero sized block device as backing device
     - zram: fix uninitialized ZRAM not releasing backing device
     - btrfs: tree-checker: reject inline extent items with 0 ref count
     - Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet
     - [x86] KVM: x86: Play nice with protected guests in
       complete_hypercall_exit()
     - tracing: Fix test_event_printk() to process entire print argument
     - tracing: Add missing helper functions in event pointer dereference check
     - tracing: Add "%s" check in test_event_printk()
     - io_uring: Fix registered ring file refcount leak
     - io_uring: check if iowq is killed before queuing (CVE-2024-56709)
     - NFS/pnfs: Fix a live lock between recalled layouts and layoutget
     - of/irq: Fix interrupt-map cell length check in of_irq_parse_imap_parent()
     - of/irq: Fix using uninitialized variable @addr_len in API
       of_irq_parse_one()
     - nilfs2: fix buffer head leaks in calls to truncate_inode_pages()
     - nilfs2: prevent use of deleted inode
     - of: Fix error path in of_parse_phandle_with_args_map()
     - of: Fix refcount leakage for OF node returned by __of_get_dma_parent()
     - ceph: validate snapdirname option length when mounting
     - udf: Fix directory iteration for longer tail extents (Closes: #1089698)
     - epoll: Add synchronous wakeup support for ep_poll_callback
     - io_uring/rw: split io_read() into a helper
     - io_uring/rw: treat -EOPNOTSUPP for IOCB_NOWAIT like -EAGAIN
     - io_uring/rw: avoid punting to io-wq directly
     - drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.123
     - media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg
     - mm/vmstat: fix a W=1 clang compiler warning
     - tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress()
     - tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection
     - bpf: Check negative offsets in __bpf_skb_min_len()
     - nfsd: restore callback functionality for NFSv4.0
     - mtd: diskonchip: Cast an operand to prevent potential overflow
     - [arm64] phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP
     - phy: core: Fix an OF node refcount leakage in _of_phy_get()
     - phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup()
     - phy: core: Fix that API devm_phy_put() fails to release the phy
     - phy: core: Fix that API devm_of_phy_provider_unregister() fails to
       unregister the phy provider
     - phy: core: Fix that API devm_phy_destroy() fails to destroy the phy
     - phy: usb: Toggle the PHY power during init
     - [arm64] phy: rockchip: naneng-combphy: fix phy reset
     - [arm*] dmaengine: mv_xor: fix child node refcount handling in early exit
     - [x86] dmaengine: dw: Select only supported masters for ACPI devices
     - [powerpc*] pseries/vas: Add close() callback in vas_vm_ops struct
     - stddef: make __struct_group() UAPI C++-friendly
     - tracing/kprobe: Make trace_kprobe's module callback called after
       jump_label update
     - watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04
     - scsi: qla1280: Fix hw revision numbering for ISP1020/1040
     - scsi: megaraid_sas: Fix for a potential deadlock
     - ALSA: hda/conexant: fix Z60MR100 startup pop issue
     - smb: server: Fix building with GCC 15
     - regmap: Use correct format specifier for logging range errors
     - [x86] platform/x86: asus-nb-wmi: Ignore unknown event 0xCF
     - scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver
       load time
     - scsi: storvsc: Do not flag MAINTENANCE_IN return of
       SRB_STATUS_DATA_OVERRUN as an error
     - drm/dp_mst: Ensure mst_primary pointer is valid in
       drm_dp_mst_handle_up_req()
     - virtio-blk: don't keep queue frozen during system suspend
     - blk-mq: register cpuhp callback after hctx is added to xarray table
     - vmalloc: fix accounting with i915
     - [mips*] mipsregs: Set proper ISA level for virt extensions
     - net/mlx5e: Don't call cleanup on profile rollback failure (CVE-2024-50146)
     - bpf: Check validity of link->type in bpf_link_show_fdinfo()
       (CVE-2024-53099)
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook X G1i
     - ALSA: hda/realtek: fix micmute LEDs don't work on HP Laptops
     - pmdomain: core: Add missing put_device()
     - sched/core: Report correct state for TASK_IDLE | TASK_FREEZABLE
     - freezer, sched: Report frozen tasks as 'D' instead of 'R'
     - tracing: Constify string literal data member in struct trace_event_call
     - tracing: Prevent bad count for tracing_cpumask_write
     - io_uring/sqpoll: fix sqpoll error handling races
     - i2c: microchip-core: actually use repeated sends
     - i2c: imx: add imx7d compatible string for applying erratum ERR007805
     - i2c: microchip-core: fix "ghost" detections
     - power: supply: gpio-charger: Fix set charge current limits
     - btrfs: avoid monopolizing a core when activating a swap file
     - btrfs: sysfs: fix direct super block member reads
     - nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net
       (CVE-2024-50121)
     - Revert "rcu-tasks: Fix access non-existent percpu rtpcp variable in
       rcu_tasks_need_gpcb()"
     - ALSA: hda/realtek: Fix spelling mistake "Firelfy" -> "Firefly"
 .
   [ Salvatore Bonaccorso ]
   * d/salsa-ci.yml: Suppress aliased-location lintian errors
   * debian/salsa-ci.yml: Include run of .build-after-script from common
     pipeline.
   * debian/salsa-ci.yml: Reference .build-after-script from after_script
     section
   * Revert "[x86] Revert "x86: Increase brk randomness entropy for 64-bit
     systems""
     The root cause for the segfaults were actually in qemu, which re-enables
     --static-pie linking for qemu-user-static binaries. It was disabled by
     mistake in qemu versions in Debian. Details in #1087822 and #1053101.
   * Bump ABI to 29
   * [rt] Update to 6.1.120-rt47
linux-signed-amd64 (6.1.119+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.119-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.116
     - cpufreq: Generalize of_perf_domain_get_sharing_cpumask phandle format
     - cpufreq: Avoid a bad reference count on CPU node (CVE-2024-50012)
     - mm: remove kern_addr_valid() completely
     - fs/proc/kcore: avoid bounce buffer for ktext data
     - fs/proc/kcore: convert read_kcore() to read_kcore_iter()
     - fs/proc/kcore: reinstate bounce buffer for KCORE_TEXT regions
     - fs/proc/kcore.c: allow translation of physical memory addresses
     - cgroup: Fix potential overflow issue when checking max_depth
     - wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd()
       (Closes: #1062421)
     - mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING
     - wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys
     - wifi: ath11k: Fix invalid ring usage in full monitor mode
     - wifi: brcm80211: BRCM_TRACING should depend on TRACING
     - RDMA/cxgb4: Dump vendor specific QP details
     - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down
     - RDMA/bnxt_re: synchronize the qp-handle table array
     - wifi: iwlwifi: mvm: disconnect station vifs if recovery failed
     - wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
       (CVE-2024-53059)
     - [armel,armhf] ASoC: cs42l51: Fix some error handling paths in
       cs42l51_probe()
     - macsec: Fix use-after-free while sending the offloading packet
       (CVE-2024-50261)
     - net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data
       (CVE-2024-53058)
     - ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()
       (CVE-2024-53042)
     - gtp: allow -1 to be specified as file description from userspace
     - net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT (CVE-2024-53057)
     - netdevsim: Add trailing zero to terminate the string in
       nsim_nexthop_bucket_activity_write() (CVE-2024-50259)
     - bpf: Fix out-of-bounds write in trie_get_next_key() (CVE-2024-50262)
     - netfilter: Fix use-after-free in get_info() (CVE-2024-50257)
     - netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
       (CVE-2024-50256)
     - Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs
       (CVE-2024-50255)
     - net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension
     - netfilter: nft_payload: sanitize offset and length before calling
       skb_checksum() (CVE-2024-50251)
     - iomap: convert iomap_unshare_iter to use large folios
     - iomap: improve shared block detection in iomap_unshare_iter
     - iomap: don't bother unsharing delalloc extents
     - iomap: share iomap_unshare_iter predicate code with fsdax
     - fsdax: remove zeroing code from dax_unshare_iter
     - fsdax: dax_unshare_iter needs to copy entire blocks (CVE-2024-50250)
     - iomap: turn iomap_want_unshare_iter into an inline function
     - compiler-gcc: be consistent with underscores use for `no_sanitize`
     - compiler-gcc: remove attribute support check for `__no_sanitize_address__`
     - afs: Automatically generate trace tag enums
     - afs: Fix missing subdir edit when renamed between parent dirs
     - ACPI: CPPC: Make rmw_lock a raw_spin_lock (CVE-2024-50249)
     - fs/ntfs3: Check if more than chunk-size bytes are written (CVE-2024-50247)
     - fs/ntfs3: Fix warning possible deadlock in ntfs_set_state
     - fs/ntfs3: Stale inode instead of bad
     - fs/ntfs3: Fix possible deadlock in mi_read (CVE-2024-50245)
     - fs/ntfs3: Additional check in ni_clear() (CVE-2024-50244)
     - scsi: scsi_transport_fc: Allow setting rport state to current state
     - net: amd: mvme147: Fix probe banner message
     - NFS: remove revoked delegation from server's delegation list
     - misc: sgi-gru: Don't disable preemption in GRU driver
     - usb: gadget: dummy_hcd: Switch to hrtimer transfer scheduler
     - usb: gadget: dummy_hcd: Set transfer interval to 1 microframe
     - usb: gadget: dummy_hcd: execute hrtimer callback in softirq context
     - USB: gadget: dummy-hcd: Fix "task hung" problem
     - ALSA: usb-audio: Add quirks for Dell WD19 dock
     - usbip: tools: Fix detach_port() invalid port error path
     - usb: phy: Fix API devm_usb_put_phy() can not release the phy
     - usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes()
     - xhci: Fix Link TRB DMA in command ring stopped completion event
     - xhci: Use pm_runtime_get to prevent RPM on unsupported systems
     - Revert "driver core: Fix uevent_show() vs driver detach race"
     - wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
       (CVE-2024-50237)
     - wifi: ath10k: Fix memory leak in management tx (CVE-2024-50236)
     - wifi: cfg80211: clear wdev->cqm_config pointer on free (CVE-2024-50235)
     - wifi: iwlegacy: Clear stale interrupts before resuming device
       (CVE-2024-50234)
     - iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
       (CVE-2024-50232)
     - iio: light: veml6030: fix microlux value calculation
     - nilfs2: fix potential deadlock with newly created symlinks
       (CVE-2024-50229)
     - block: fix sanity checks in blk_rq_map_user_bvec
     - cgroup/bpf: use a dedicated workqueue for cgroup bpf destruction
       (CVE-2024-53054)
     - ALSA: hda/realtek: Limit internal Mic boost on Dell platform
     - cxl/acpi: Move rescan to the workqueue
     - cxl/port: Fix cxl_bus_rescan() vs bus_rescan_devices()
     - mm/page_alloc: rename ALLOC_HIGH to ALLOC_MIN_RESERVE
     - mm/page_alloc: treat RT tasks similar to __GFP_HIGH
     - mm/page_alloc: explicitly record high-order atomic allocations in
       alloc_flags
     - mm/page_alloc: explicitly define what alloc flags deplete min reserves
     - mm/page_alloc: explicitly define how __GFP_HIGH non-blocking allocations
       accesses reserves
     - mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves
     - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (CVE-2024-50218)
     - mctp i2c: handle NULL header address (CVE-2024-53043)
     - ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1
     - nvmet-auth: assign dh_key to NULL after kfree_sensitive (CVE-2024-50215)
     - io_uring: rename kiocb_end_write() local helper
     - fs: create kiocb_{start,end}_write() helpers
     - io_uring: use kiocb_{start,end}_write() helpers
     - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write
       (CVE-2024-53052)
     - mm: migrate: try again if THP split is failed due to page refcnt
     - migrate: convert unmap_and_move() to use folios
     - migrate: convert migrate_pages() to use folios
     - mm/migrate.c: stop using 0 as NULL pointer
     - migrate_pages: organize stats with struct migrate_pages_stats
     - migrate_pages: separate hugetlb folios migration
     - migrate_pages: restrict number of pages to migrate in batch
     - migrate_pages: split unmap_and_move() to _unmap() and _move()
     - vmscan,migrate: fix page count imbalance on node stats when demoting pages
     - io_uring: always lock __io_cqring_overflow_flush (Closes: #1087602)
     - [x86] bugs: Use code segment selector for VERW operand (CVE-2024-50072)
     - wifi: mac80211: fix NULL dereference at band check in starting tx ba
       session (CVE-2024-43911)
     - nilfs2: fix kernel bug due to missing clearing of checked flag
       (CVE-2024-50230)
     - wifi: iwlwifi: mvm: fix 6 GHz scan construction (CVE-2024-53055)
     - mm: shmem: fix data-race in shmem_getattr() (CVE-2024-50228)
     - mtd: spi-nor: winbond: fix w25q128 regression
     - drm/amd/display: Add null checks for 'stream' and 'plane' before
       dereferencing (CVE-2024-43904)
     - drm/amd/display: Skip on writeback when it's not applicable
       (CVE-2024-36914)
     - vt: prevent kernel-infoleak in con_font_get()
     - mm: avoid gcc complaint about pointer casting
     - migrate_pages_batch: fix statistics for longterm pin retry
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.117
     - [arm64] dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610
     - [arm64] dts: rockchip: Fix rt5651 compatible value on
       rk3399-sapphire-excavator
     - [arm64] dts: rockchip: Remove hdmi's 2nd interrupt on rk3328
     - [arm64] dts: rockchip: Fix wakeup prop names on PineNote BT node
     - [arm64] dts: rockchip: Fix bluetooth properties on Rock960 boards
     - [arm64] dts: rockchip: Remove #cooling-cells from fan on Theobroma lion
     - [arm64] dts: rockchip: Fix LED triggers on rk3308-roc-cc
     - [arm64] dts: imx8qm: Fix VPU core alias name
     - [arm64] dts: imx8qxp: Add VPU subsystem file
     - [arm64] dts: imx8-ss-vpu: Fix imx8qm VPU IRQs
     - [arm64] dts: imx8mp: correct sdhc ipg clk
     - [armhf] ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin
     - HID: core: zero-initialize the report buffer (CVE-2024-50302)
     - [x86] platform/x86/amd/pmc: Detect when STB is not available
       (CVE-2024-53072)
     - sunrpc: handle -ENOTCONN in xs_tcp_setup_socket()
     - NFSv3: only use NFS timeout for MOUNT when protocols are compatible
     - NFSv3: handle out-of-order write replies.
     - nfs: avoid i_lock contention in nfs_clear_invalid_mapping
     - security/keys: fix slab-out-of-bounds in key_task_permission
       (CVE-2024-50301)
     - [arm64] net: enetc: set MAC address to the VF net_device
     - sctp: properly validate chunk size in sctp_sf_ootb() (CVE-2024-50299)
     - can: c_can: fix {rx,tx}_errors statistics
     - ice: change q_index variable type to s16 to store -1 value
     - i40e: fix race condition by adding filter's intermediate sync state
       (CVE-2024-53088)
     - [arm64] net: hns3: fix kernel crash when uninstalling driver
       (CVE-2024-50296)
     - net: phy: ti: add PHY_RST_AFTER_CLK_EN flag
     - net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case
     - virtio_net: Add hash_key_length check (CVE-2024-53082)
     - Revert "ALSA: hda/conexant: Mute speakers at suspend / shutdown"
     - media: stb0899_algo: initialize cfr before using it
     - media: dvbdev: prevent the risk of out of memory access (CVE-2024-53063)
     - media: dvb_frontend: don't play tricks with underflow values
     - media: adv7604: prevent underflow condition when reporting colorspace
     - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer
     - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init()
     - [armhf] ASoC: stm32: spdifrx: fix dma channel release in
       stm32_spdifrx_remove
     - media: ar0521: don't overflow when checking PLL values (CVE-2024-53081)
     - media: s5p-jpeg: prevent buffer overflows (CVE-2024-53061)
     - media: cx24116: prevent overflows on SNR calculus (CVE-2024-50290)
     - media: pulse8-cec: fix data timestamp at pulse8_setup()
     - media: v4l2-tpg: prevent the risk of a division by zero (CVE-2024-50287)
     - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl()
     - can: mcp251xfd: mcp251xfd_get_tef_len(): fix length calculation
     - can: mcp251xfd: mcp251xfd_ring_alloc(): fix coalescing configuration when
       switching CAN modes
     - ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create
       (CVE-2024-50286)
     - ksmbd: Fix the missing xa_store error check (CVE-2024-50284)
     - ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (CVE-2024-50283)
     - pwm: imx-tpm: Use correct MODULO value for EPWM mode
     - drm/amdgpu: Adjust debugfs eviction and IB access permissions
     - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()
       (CVE-2024-50282)
     - drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported
       (CVE-2024-53060)
     - thermal/drivers/qcom/lmh: Remove false lockdep backtrace
     - dm cache: correct the number of origin blocks to match the target length
     - dm cache: fix flushing uninitialized delayed_work on cache_ctr error
       (CVE-2024-50280)
     - dm cache: fix out-of-bounds access to the dirty bitset when resizing
       (CVE-2024-50279)
     - dm cache: optimize dirty bit checking with find_next_bit when resizing
     - dm cache: fix potential out-of-bounds access on the first resume
       (CVE-2024-50278)
     - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t
       overflow
     - ALSA: usb-audio: Add quirk for HP 320 FHD Webcam
     - ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3
     - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone
     - nfs: Fix KMSAN warning in decode_getfattr_attrs() (CVE-2024-53066)
     - net: wwan: t7xx: Fix off-by-one error in t7xx_dpmaif_rx_buf_alloc()
     - net: vertexcom: mse102x: Fix possible double free of TX skb
       (CVE-2024-50276)
     - mptcp: use sock_kfree_s instead of kfree
     - btrfs: reinitialize delayed ref list after deleting it from the list
       (CVE-2024-50273)
     - bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq
       (CVE-2024-38540)
     - Revert "wifi: mac80211: fix RCU list iterations"
     - net: do not delay dst_entries_add() in dst_release() (CVE-2024-50036)
     - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in
       uvc_parse_format
     - filemap: Fix bounds checking in filemap_read() (CVE-2024-50272)
     - fs/proc: fix compile warning about variable 'vmcore_mmap_ops'
     - signal: restore the override_rlimit logic (CVE-2024-50271)
     - usb: musb: sunxi: Fix accessing an released usb phy (CVE-2024-50269)
     - usb: dwc3: fix fault at system suspend if device was already runtime
       suspended
     - usb: typec: fix potential out of bounds in
       ucsi_ccg_update_set_new_cam_cmd()
     - USB: serial: io_edgeport: fix use after free in debug printk
       (CVE-2024-50267)
     - USB: serial: qcserial: add support for Sierra Wireless EM86xx
     - USB: serial: option: add Fibocom FG132 0x0112 composition
     - USB: serial: option: add Quectel RG650V
     - irqchip/gic-v3: Force propagation of the active state with a read-back
     - ocfs2: remove entry once instead of null-ptr-dereference in
       ocfs2_xa_remove()
     - ucounts: fix counter leak in inc_rlimit_get_ucounts()
     - [x86] ASoC: amd: yc: fix internal mic on Xiaomi Book Pro 14 2022
     - net: sched: use RCU read-side critical section in taprio_dump()
       (CVE-2024-50126)
     - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer
     - vsock/virtio: Initialization of the dangling pointer occurring in
       vsk->trans
     - media: amphion: Fix VPU core alias name
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.118
     - Revert "Bluetooth: fix use-after-free in accessing skb after sending it"
     - Revert "Bluetooth: hci_sync: Fix overwriting request callback"
     - Revert "Bluetooth: af_bluetooth: Fix deadlock"
     - Revert "Bluetooth: hci_core: Fix possible buffer overflow"
     - Revert "Bluetooth: hci_conn: Consolidate code for aborting connections"
       (Closes: #1086447)
     - 9p: Avoid creating multiple slab caches with the same name
     - nvme: tcp: avoid race between queue_lock lock and destroy
     - block: Fix elevator_get_default() checking for NULL q->tag_set
     - HID: multitouch: Add support for B2402FVA track point
     - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad
     - nvme: disable CC.CRIME (NVME_CC_CRIME)
     - bpf: use kvzmalloc to allocate BPF verifier environment
     - crypto: api - Fix liveliness check in crypto_alg_tested
     - [arm*] crypto: marvell/cesa - Disable hash algorithms
     - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML
     - drm/vmwgfx: Limit display layout ioctl array size to
       VMWGFX_NUM_DISPLAY_UNITS
     - nvme-multipath: defer partition scanning (CVE-2024-53093)
     - [powerpc*] powernv: Free name on error in opal_event_init()
     - nvme: make keep-alive synchronous operation
     - bpf: Fix mismatched RCU unlock flavour in bpf_out_neigh_v6
     - fs: Fix uninitialized value issue in from_kuid and from_kgid
     - HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad
     - HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard
     - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition
     - md/raid10: improve code of mrdev in raid10_sync_request
     - io_uring: fix possible deadlock in io_register_iowq_max_workers()
       (CVE-2024-41080)
     - uprobes: encapsulate preparation of uprobe args buffer
     - uprobe: avoid out-of-bounds memory access of fetching args
       (CVE-2024-50067)
     - drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (CVE-2024-49991)
     - ext4: fix timer use-after-free on failed mount (CVE-2024-49960)
     - Bluetooth: L2CAP: Fix uaf in l2cap_connect (CVE-2024-49950)
     - mm: krealloc: Fix MTE false alarm in __do_krealloc
     - [x86] platform/x86: x86-android-tablets: Fix use after free on
       platform_device_register() errors (CVE-2024-49986)
     - fs/ntfs3: Fix general protection fault in run_is_mapped_full
       (CVE-2024-50243)
     - 9p: fix slab cache name creation for real
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.119
     - netlink: terminate outstanding dump on socket close
     - [arm64,armhf] drm/rockchip: vop: Fix a dereferenced before check warning
     - mptcp: error out earlier on disconnect
     - net/mlx5: fs, lock FTE when checking if active
     - net/mlx5e: kTLS, Fix incorrect page refcounting
     - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow
     - virtio/vsock: Fix accept_queue memory leak
     - Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS
     - Bluetooth: hci_core: Fix calling mgmt_device_connected
     - net/sched: cls_u32: replace int refcounts with proper refcounts
     - net: sched: cls_u32: Fix u32's systematic failure to free IDR entries for
       hnodes.
     - bonding: add ns target multicast address to slave device
     - [armel,armhf] 9419/1: mm: Fix kernel memory mapping for xip kernels
     - [x86] mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y
     - mm: fix NULL pointer dereference in alloc_pages_bulk_noprof
     - ocfs2: uncache inode which has failed entering the group
     - vdpa/mlx5: Fix PA offset with unaligned starting iotlb map
     - ima: fix buffer overrun in ima_eventdigest_init_common
     - [x86] KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID
       disabled
     - [x86] KVM: x86: Unconditionally set irr_pending when updating APICv state
     - [x86] KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind
       CONFIG_BROKEN
     - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint
     - ALSA: hda/realtek - Fixed Clevo platform headset Mic issue
     - ALSA: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10
     - ocfs2: fix UBSAN warning in ocfs2_verify_volume()
     - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
     - Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K"
     - mmc: sunxi-mmc: Fix A100 compatible description
     - drm/bridge: tc358768: Fix DSI command tx
     - drm/amd: Fix initialization mistake for NBIO 7.7.0
     - staging: vchiq_arm: Get the rid off struct vchiq_2835_state
     - staging: vchiq_arm: Use devm_kzalloc() for vchiq_arm_state allocation
     - fs/ntfs3: Additional check in ntfs_file_release (CVE-2024-50242)
     - Bluetooth: ISO: Fix not validating setsockopt user input (CVE-2024-35964)
     - lib/buildid: Fix build ID parsing logic
     - cxl/pci: fix error code in __cxl_hdm_decode_init()
     - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set
     - NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point
     - NFSD: Async COPY result needs to return a write verifier
     - NFSD: Limit the number of concurrent async COPY operations
       (CVE-2024-49974)
     - NFSD: Initialize struct nfsd4_copy earlier
     - NFSD: Never decrement pending_async_copies on error
     - mptcp: cope racing subflow creation in mptcp_rcv_space_adjust
     - mptcp: define more local variables sk
     - mptcp: add userspace_pm_lookup_addr_by_id helper
     - mptcp: update local address flags when setting it
     - mptcp: hold pm lock when deleting entry
     - mptcp: drop lookup_by_id in lookup_addr
     - mptcp: pm: use _rcu variant under rcu_read_lock
     - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-26954)
     - ksmbd: fix potencial out-of-bounds when buffer offset is invalid
       (CVE-2024-26952)
     - net: add copy_safe_from_sockptr() helper
     - nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies
     - fs/9p: fix uninitialized values during inode evict (CVE-2024-36923)
     - ipvs: properly dereference pe in ip_vs_add_service (CVE-2024-42322)
     - net/sched: taprio: extend minimum interval restriction to entire cycle too
       (CVE-2024-36244)
     - net: fec: remove .ndo_poll_controller to avoid deadlocks (CVE-2024-38553)
     - mm: revert "mm: shmem: fix data-race in shmem_getattr()"
     - mm: avoid unsafe VMA hook invocation when error arises on mmap hook
     - mm: unconditionally close VMAs on error
     - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling
     - mm: resolve faulty mmap_region() error path behaviour
     - drm/amd: check num of link levels when update pcie param (CVE-2023-52812)
     - char: xillybus: Prevent use-after-free due to race condition
       (CVE-2022-45888)
     - null_blk: Remove usage of the deprecated ida_simple_xx() API
     - null_blk: fix null-ptr-dereference while configuring 'power' and
       'submit_queues' (CVE-2024-36478)
     - null_blk: Fix return value of nullb_device_power_store()
     - parisc: fix a possible DMA corruption (CVE-2024-44949)
     - char: xillybus: Fix trivial bug with mutex
     - net: Make copy_safe_from_sockptr() match documentation
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 28
   * [x86] Revert "x86: Increase brk randomness entropy for 64-bit systems"
     (Closes: #1085762)

linux-signed-arm64 (6.1.123+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.123-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.120
     - [x86] ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated
       codec
     - [x86] ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10
       tablet
     - [x86] ASoC: Intel: sst: Support LPE0F28 ACPI HID
     - wifi: iwlwifi: mvm: Use the sync timepoint API in suspend
     - mac80211: fix user-power when emulating chanctx
     - usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver
     - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13
     - bpf: fix filed access without lock
     - net: usb: qmi_wwan: add Quectel RG650V
     - soc: qcom: Add check devm_kasprintf() returned value
     - regulator: rk808: Add apply_bit for BUCK3 on RK809
     - [x86] platform/x86: dell-smbios-base: Extends support to Alienware
       products
     - [x86] platform/x86: dell-wmi-base: Handle META key Lock/Unlock events
     - tools/lib/thermal: Remove the thermal.h soft link when doing make clean
     - can: j1939: fix error in J1939 documentation.
     - [x86] platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing
       incorrect fan speed
     - [x86] ASoC: amd: yc: Support dmic on another model of Lenovo Thinkpad E14
       Gen 6
     - [armhf] ASoC: stm: Prevent potential division by zero in
       stm32_sai_mclk_round_rate()
     - [armhf] ASoC: stm: Prevent potential division by zero in
       stm32_sai_get_clk_div()
     - drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less
       strict
     - proc/softirqs: replace seq_printf with seq_put_decimal_ull_width
     - ASoC: audio-graph-card2: Purge absent supplies for device tree nodes
     - ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry
     - [armel,armhf] 9420/1: smp: Fix SMP for xip kernels
     - ipmr: Fix access to mfc_cache_list without lock held
     - closures: Change BUG_ON() to WARN_ON() (CVE-2024-42252)
     - net: fix crash when config small gso_max_size/gso_ipv4_max_size
       (CVE-2024-50258)
     - serial: sc16is7xx: fix invalid FIFO access with special register set
       (CVE-2024-44950)
     - cifs: Fix buffer overflow when parsing NFS reparse points (CVE-2024-49996)
     - fpga: bridge: add owner module and take its refcount (CVE-2024-36479)
     - fpga: manager: add owner module and take its refcount (CVE-2024-37021)
     - drm/amd/display: Add NULL check for function pointer in
       dcn32_set_output_transfer_func (CVE-2024-49909)
     - drm/amd/display: Check null-initialized variables (CVE-2024-49898)
     - Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue
     - Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (CVE-2024-49951)
     - fbdev: efifb: Register sysfs groups through driver core (CVE-2024-49925)
     - mptcp: fix possible integer overflow in mptcp_reset_tout_timer
     - wifi: rtw89: avoid to add interface to list twice when SER
       (CVE-2024-49939)
     - drm/amd/display: Initialize denominators' default to 1 (CVE-2024-49899)
     - fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name
     - [x86] barrier: Do not serialize MSR accesses on AMD
     - [s390x] cio: Do not unregister the subchannel based on DNV
     - brd: defer automatic disk creation until module initialization succeeds
     - ext4: make 'abort' mount option handling standard
     - ext4: avoid remount errors with 'abort' mount option
     - [mips*] asm: fix warning when disabling MIPS_FP_SUPPORT
     - initramfs: avoid filename buffer overrun (CVE-2024-53142)
     - nvme-pci: fix freeing of the HMB descriptor table
     - [arm64] acpi/arm64: Adjust error handling procedure in
       gtdt_parse_timer_block()
     - cachefiles: Fix missing pos updates in cachefiles_ondemand_fd_write_iter()
     - netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING
     - block: fix bio_split_rw_at to take zone_write_granularity into account
     - [s390x] syscalls: Avoid creation of arch/arch/ directory
     - hfsplus: don't query the device logical block size multiple times
     - nvme-pci: reverse request order in nvme_queue_rqs
     - virtio_blk: reverse request order in virtio_queue_rqs
     - crypto: caam - Fix the pointer passed to caam_qi_shutdown()
     - firmware: google: Unregister driver_info on failure
     - EDAC/bluefield: Fix potential integer overflow
     - [x86] crypto: qat - remove faulty arbiter config reset
     - thermal: core: Initialize thermal zones before registering them
     - EDAC/fsl_ddr: Fix bad bit shift operations
     - crypto: pcrypt - Call crypto layer directly when padata_do_parallel()
       return -EBUSY
     - crypto: cavium - Fix the if condition to exit loop after timeout
     - crypto: hisilicon/qm - disable same error report before resetting
     - EDAC/igen6: Avoid segmentation fault on module unload
     - crypto: inside-secure - Fix the return value of
       safexcel_xcbcmac_cra_init()
     - doc: rcu: update printed dynticks counter bits
     - hwmon: (nct6775-core) Fix overflows seen when writing limit attributes
     - ACPI: CPPC: Fix _CPC register setting issue
     - crypto: caam - add error check to caam_rsa_set_priv_key_form
     - crypto: bcm - add error check in the ahash_hmac_init function
     - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw()
     - tools/lib/thermal: Make more generic the command encoding function
     - thermal/lib: Fix memory leak on error in thermal_genl_auto()
     - time: Fix references to _msecs_to_jiffies() handling of values
     - seqlock/latch: Provide raw_read_seqcount_latch_retry()
     - clocksource/drivers:sp804: Make user selectable
     - clocksource/drivers/timer-ti-dm: Fix child node refcount handling
     - spi: spi-fsl-lpspi: downgrade log level for pio mode
     - spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq()
     - drivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend()
     - microblaze: Export xmb_manager functions
     - [arm64] dts: mt8195: Fix dtbs_check error for infracfg_ao node
     - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq()
     - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()
     - mmc: mmc_spi: drop buggy snprintf()
     - tpm: fix signed/unsigned bug when checking event logs
     - [arm64] dts: mt8183: krane: Fix the address of eeprom at i2c4
     - [arm64] dts: mt8183: kukui: Fix the address of eeprom at i2c4
     - [arm64] dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source
       trackpad
     - Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline"
     - cgroup/bpf: only cgroup v2 can be attached by bpf programs
     - [arm64] dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: cozmo: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns
     - pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle
     - [armhf] dts: cubieboard4: Fix DCDC5 regulator constraints
     - pmdomain: ti-sci: Add missing of_node_put() for args.np
     - regmap: irq: Set lockdep class for hierarchical IRQ domains
     - [arm64] dts: mt8183: jacuzzi: Move panel under aux-bus
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed
       regulators
     - [arm64] firmware: arm_scpi: Check the DVFS OPP count returned by the
       firmware
     - venus: venc: add handling for VIDIOC_ENCODER_CMD
     - media: venus: provide ctx queue lock for ioctl synchronization
     - media: atomisp: Add check for rgby_data memory allocation failure
     - [x86] platform/x86: panasonic-laptop: Return errno correctly in show
       callback
     - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused
     - [arm64,armhf] drm/vc4: hvs: Don't write gamma luts on 2711
     - [arm64,armhf] drm/vc4: hdmi: Avoid hang with debug registers when
       suspended
     - [arm64,armhf] drm/vc4: hvs: Fix dlist debug not resetting the next entry
       pointer
     - [arm64,armhf] drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs
       function
     - [arm64,armhf] drm/vc4: hvs: Correct logic on stopping an HVS channel
     - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()
     - drm/omap: Fix possible NULL dereference
     - drm/omap: Fix locking in omap_gem_new_dmabuf()
     - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq()
     - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/v3d: Address race-condition in MMU flush
     - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1
     - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2
     - dt-bindings: vendor-prefixes: Add NeoFidelity, Inc
     - ASoC: fsl_micfil: fix regmap_write_bits usage
     - ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode
     - drm/bridge: anx7625: Drop EDID cache on bridge power off
     - libbpf: Fix output .symtab byte-order during linking
     - bpf: Fix the xdp_adjust_tail sample prog issue
     - libbpf: fix sym_is_subprog() logic for weak global subprogs
     - libbpf: never interpret subprogs in .text as entry programs
     - netdevsim: copy addresses for both in and out paths
     - drm/bridge: tc358767: Fix link properties discovery
     - wifi: mwifiex: Fix memcpy() field-spanning write warning in
       mwifiex_config_scan()
     - drm: fsl-dcu: enable PIXCLK on LS1021A
     - [arm64,armhf] drm/panfrost: Remove unused id_mask from struct
       panfrost_model
     - [arm64] bpf, arm64: Remove garbage frame for struct_ops trampoline
     - [arm64] drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/msm/gpu: Add devfreq tuning debugfs
     - [arm64] drm/msm/gpu: Bypass PM QoS constraint for idle clamp
     - [arm64] drm/msm/gpu: Check the status of registration to PM QoS
     - [arm64,armhf] drm/etnaviv: Request pages from DMA32 zone on
       addressing_limited
     - [arm64,armhf] drm/etnaviv: fix power register offset on GC300
     - [arm64,armhf] drm/etnaviv: hold GPU lock across perfmon sampling
     - wifi: wfx: Fix error handling in wfx_core_init()
     - [arm64] drm/msm/dpu: cast crtc_clk calculation to u64 in
       _dpu_core_perf_calc_clk()
     - netfilter: nf_tables: skip transaction if update object is not implemented
     - netfilter: nf_tables: must hold rcu read lock while iterating object type
       list
     - netlink: typographical error in nlmsg_type constants definition
     - bpf, sockmap: Several fixes to bpf_msg_push_data
     - bpf, sockmap: Several fixes to bpf_msg_pop_data
     - bpf, sockmap: Fix sk_msg_reset_curr
     - sock_diag: add module pointer to "struct sock_diag_handler"
     - sock_diag: allow concurrent operations
     - sock_diag: allow concurrent operation in sock_diag_rcv_msg()
     - net: use unrcu_pointer() helper
     - ipv6: release nexthop on device removal
     - net: rfkill: gpio: Add check for clk_enable()
     - ALSA: usx2y: Use snd_card_free_when_closed() at disconnection
     - ALSA: us122l: Use snd_card_free_when_closed() at disconnection
     - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection
     - ALSA: 6fire: Release resources at card release
     - Bluetooth: fix use-after-free in device_for_each_child()
     - netpoll: Use rcu_access_pointer() in netpoll_poll_lock
     - wireguard: selftests: load nf_conntrack if not present
     - bpf: fix recursive lock when verdict program return SK_PASS
     - unicode: Fix utf8_load() error path
     - trace/trace_event_perf: remove duplicate samples on the first tracepoint
       event
     - pinctrl: zynqmp: drop excess struct member description
     - [powerpc*] vdso: Flag VDSO64 entry points as functions
     - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race
     - mfd: da9052-spi: Change read-mask to write-mask
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices
     - cpufreq: loongson2: Unregister platform_driver on failure
     - [powerpc*] fadump: Refactor and prepare fadump_cma_init for late init
     - [powerpc*] fadump: Move fadump_cma_init to setup_arch() after
       initmem_init()
     - memory: renesas-rpc-if: Improve Runtime PM handling
     - memory: renesas-rpc-if: Pass device instead of rpcif to rpcif_*()
     - memory: renesas-rpc-if: Remove Runtime PM wrappers
     - mtd: hyperbus: rpc-if: Convert to platform remove callback returning void
     - mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE
     - mtd: rawnand: atmel: Fix possible memory leak
     - [powerpc*] mm/fault: Fix kfence page fault reporting
     - [powerpc*] pseries: Fix dtl_access_lock to be a rw_semaphore
     - cpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw()
     - cpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()
     - [arm64] RDMA/hns: Fix an AEQE overflow error caused by untimely update of
       eq_db_ci
     - [arm64] RDMA/hns: Add clear_hem return value to log
     - [arm64] RDMA/hns: Use dev_* printings in hem code instead of ibdev_*
     - [arm64] RDMA/hns: Remove unnecessary QP type checks
     - [arm64] RDMA/hns: Fix cpu stuck caused by printings during reset
     - RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey
     - clk: sunxi-ng: d1: Fix PLL_AUDIO0 preset
     - clk: renesas: rzg2l: Fix FOUTPOSTDIV clk
     - clk: imx: lpcg-scu: SW workaround for errata (e10858)
     - clk: imx: fracn-gppll: correct PLL initialization flow
     - clk: imx: fracn-gppll: fix pll power up
     - clk: imx: clk-scu: fix clk enable state save and restore
     - [amd64] iommu/vt-d: Fix checks and print in dmar_fault_dump_ptes()
     - [amd64] iommu/vt-d: Fix checks and print in pgtable_walk()
     - mfd: rt5033: Fix missing regmap_del_irq_chip()
     - fs/proc/kcore.c: fix coccinelle reported ERROR instances
     - scsi: bfa: Fix use-after-free in bfad_im_module_exit()
     - scsi: fusion: Remove unused variable 'rc'
     - scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()
     - scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()
     - [arm64] RDMA/hns: Fix out-of-order issue of requester when setting FENCE
     - [arm64] RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg()
     - cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_cost()
     - cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_power()
     - ocfs2: fix uninitialized value in ocfs2_file_read_iter()
     - dax: delete a stale directory pmem
     - KVM: PPC: Book3S HV: Stop using vc->dpdes for nested KVM guests
     - KVM: PPC: Book3S HV: Avoid returning to nested hypervisor on pending
       doorbells
     - [powerpc*] sstep: make emulate_vsx_load and emulate_vsx_store static
     - [powerpc*] kexec: Fix return of uninitialized variable
     - fbdev/sh7760fb: Alloc DMA memory from hardware device
     - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()
     - clk: clk-apple-nco: Add NULL check in applnco_probe
     - dt-bindings: clock: axi-clkgen: include AXI clk
     - clk: clk-axi-clkgen: make sure to enable the AXI bus clock
     - pinctrl: k210: Undef K210_PC_DEFAULT
     - smb: cached directories can be more than root file handle
     - mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb()
     - perf cs-etm: Don't flush when packet_queue fills up
     - PCI: Fix reset_method_store() memory leak
     - perf stat: Close cork_fd when create_perf_stat_counter() failed
     - perf stat: Fix affinity memory leaks on error path
     - f2fs: compress: fix inconsistent update of i_blocks in
       release_compress_blocks and reserve_compress_blocks
     - f2fs: fix to account dirty data in __get_secs_required()
     - perf probe: Fix libdw memory leak
     - perf probe: Correct demangled symbols in C++ program
     - PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads
     - PCI: cpqphp: Fix PCIBIOS_* return value confusion
     - perf ftrace latency: Fix unit on histogram first entry when using
       --use-nsec
     - f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block
     - f2fs: remove struct segment_allocation default_salloc_ops
     - f2fs: open code allocate_segment_by_default
     - f2fs: remove the unused flush argument to change_curseg
     - f2fs: check curseg->inited before write_sum_page in change_curseg
     - f2fs: fix to avoid use GC_AT when setting gc_mode as GC_URGENT_LOW or
       GC_URGENT_MID
     - f2fs: fix to avoid forcing direct write to use buffered IO on inline_data
       inode
     - perf trace: avoid garbage when not printing a trace event's arguments
     - svcrdma: Address an integer overflow
     - perf trace: Do not lose last events in a race
     - perf trace: Avoid garbage when not printing a syscall's arguments
     - remoteproc: qcom: q6v5: Use _clk_get_optional for aggre2_clk
     - remoteproc: qcom: pas: add minidump_id to SM8350 resources
     - rpmsg: glink: Fix GLINK command prefix
     - rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length
     - remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region
     - NFSD: Prevent NULL dereference in nfsd4_process_cb_update()
     - NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir()
     - sunrpc: simplify two-level sysctl registration for svcrdma_parm_table
     - svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()
     - NFSD: Fix nfsd4_shutdown_copy()
     - hwmon: (tps23861) Fix reporting of negative temperatures
     - vdpa/mlx5: Fix suboptimal range on iotlb iteration
     - vfio/pci: Properly hide first-in-list PCIe extended capability
     - fs_parser: update mount_api doc to match function signature
     - power: supply: core: Remove might_sleep() from power_supply_put()
     - power: supply: bq27xxx: Fix registers of bq27426
     - net: usb: lan78xx: Fix double free issue with interrupt buffer allocation
     - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device
     - tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets
     - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL
       configuration
     - [s390x] iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()
     - net/ipv6: delete temporary address if mngtmpaddr is removed or unmanaged
     - net: mdio-ipq4019: add missing error check
     - marvell: pxa168_eth: fix call balance of pep->clk handling routines
     - net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken
     - spi: atmel-quadspi: Fix register name in verbose logging function
     - net: hsr: fix hsr_init_sk() vs network/transport headers.
     - bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down
     - Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync
     - crypto: api - Add crypto_tfm_get
     - crypto: api - Add crypto_clone_tfm
     - llc: Improve setsockopt() handling of malformed user input
     - rxrpc: Improve setsockopt() handling of malformed user input
     - tcp: Fix use-after-free of nreq in reqsk_timer_handler().
     - ip6mr: fix tables suspicious RCU usage
     - ipmr: fix tables suspicious RCU usage
     - iio: light: al3010: Fix an error handling path in al3010_probe()
     - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read()
     - usb: yurex: make waiting on yurex_write interruptible
     - USB: chaoskey: fail open after removal
     - USB: chaoskey: Fix possible deadlock chaoskey_list_lock
     - misc: apds990x: Fix missing pm_runtime_disable()
     - counter: stm32-timer-cnt: Add check for clk_enable()
     - counter: ti-ecap-capture: Add check for clk_enable()
     - ALSA: hda/realtek: Update ALC256 depop procedure
     - apparmor: fix 'Do simple duplicate message elimination'
     - [x86] ASoC: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry
     - mailbox: mtk-cmdq: Move devm_mbox_controller_register() after
       devm_pm_runtime_enable()
     - fs/ntfs3: Fixed overflow check in mi_enum_attr() (CVE-2024-27407)
     - ntfs3: Add bounds checking to mi_enum_attr() (CVE-2024-50248)
     - scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata
       paths (CVE-2024-49891)
     - xfs: add bounds checking to xlog_recover_process_data (CVE-2024-41014)
     - xen: Fix the issue of resource not being properly released in
       xenbus_dev_probe()
     - ALSA: usb-audio: Fix out of bounds reads when finding clock sources
     - usb: ehci-spear: fix call balance of sehci clk handling routines
     - media: aspeed: Fix memory overwrite if timing is 1600x900 (CVE-2023-52916)
     - wifi: iwlwifi: mvm: avoid NULL pointer dereference (CVE-2024-49929)
     - drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in
       dcn30_init_hw (CVE-2024-49917)
     - drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw
       (CVE-2024-49915)
     - drm/amd/display: Add NULL check for function pointer in
       dcn20_set_output_transfer_func (CVE-2024-49911)
     - drm/amd/display: Check phantom_stream before it is used (CVE-2024-49897)
     - rcu-tasks: Fix access non-existent percpu rtpcp variable in
       rcu_tasks_need_gpcb()
     - btrfs: qgroup: fix qgroup prealloc rsv leak in subvolume operations
       (CVE-2024-35956)
     - [x86] perf/x86/intel: Hide Topdown metrics events if the feature is not
       enumerated
     - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox
       devices
     - Revert "arm64: dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as
       disabled"
     - [arm64] dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled
     - mm/slab: decouple ARCH_KMALLOC_MINALIGN from ARCH_DMA_MINALIGN
     - [powerpc*] move the ARCH_DMA_MINALIGN definition to asm/cache.h
     - dma: allow dma_get_cache_alignment() to be overridden by the arch code
     - [x86] ASoC: Intel: sst: Fix used of uninitialized ctx to log an error
     - soc: qcom: socinfo: fix revision check in qcom_socinfo_probe()
     - ext4: supress data-race warnings in ext4_free_inodes_{count,set}()
     - ext4: fix FS_IOC_GETFSMAP handling
     - jfs: xattr: check invalid xattr size more strictly
     - [x86] ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen
       5 21MES00B00
     - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata()
     - [x86] perf/x86/intel/pt: Fix buffer full but size is 0 case
     - crypto: x86/aegis128 - access 32-bit arguments as 32-bit
     - [x86] KVM: x86/mmu: Skip the "try unsync" path iff the old SPTE was a leaf
       SPTE
     - [powerpc*] pseries: Fix KVM guest detection for disabling hardlockup
       detector
     - [arm64] KVM: arm64: vgic-v3: Sanitise guest writes to GICR_INVLPIR
     - [arm64] KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow
       status
     - PCI: Fix use-after-free of slot->bus on hot remove
     - fsnotify: fix sending inotify event with unexpected filename
     - comedi: Flush partial mappings in error case
     - apparmor: test: Fix memory leak for aa_unpack_strdup()
     - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler
     - locking/lockdep: Avoid creating new name string literals in
       lockdep_set_subclass()
     - pinctrl: qcom: spmi: fix debugfs drive strength
     - dt-bindings: iio: dac: ad3552r: fix maximum spi speed
     - exfat: fix uninit-value in __exfat_get_dentry_set
     - Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}()
     - usb: xhci: Fix TD invalidation under pending Set TR Dequeue
     - driver core: bus: Fix double free in driver API bus_register()
       (CVE-2024-50055)
     - wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of
       failures
     - wifi: brcmfmac: release 'root' node in all execution paths
     - Revert "usb: gadget: composite: fix OS descriptors w_value logic"
     - serial: sh-sci: Clean sci_ports[0] after at earlycon exit
     - Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit"
     - gpio: exar: set value when external pull-up or pull-down is present
     - netfilter: ipset: add missing range check in bitmap_ip_uadt
       (CVE-2024-53141)
     - spi: Fix acpi deferred irq probe
     - mtd: spi-nor: core: replace dummy buswidth from addr to data
     - cpufreq: mediatek-hw: Fix wrong return value in
       mtk_cpufreq_get_cpu_power()
     - platform/chrome: cros_ec_typec: fix missing fwnode reference decrement
     - ubi: wl: Put source PEB into correct list if trying locking LEB failed
     - dt-bindings: serial: rs485: Fix rs485-rts-delay property
     - serial: 8250_fintek: Add support for F81216E
     - serial: 8250: omap: Move pm_runtime_get_sync
     - ublk: fix ublk_ch_mmap() for 64K page size
     - [arm64] tls: Fix context-switching of tpidrro_el0 when kpti is enabled
     - block: fix ordering between checking BLK_MQ_S_STOPPED request adding
     - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values
     - media: wl128x: Fix atomicity violation in fmc_send_cmd()
     - soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting()
     - media: v4l2-core: v4l2-dv-timings: check cvt/gtf result
     - ALSA: pcm: Add sanity NULL check for the default mmap fault handler
     - ALSA: hda/realtek: Update ALC225 depop procedure
     - ALSA: hda/realtek: Set PCBeep to default value for ALC274
     - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max
     - ALSA: hda/realtek: Apply quirk for Medion E15433
     - smb3: request handle caching when caching directories
     - usb: musb: Fix hardware lockup on first Rx endpoint request
     - usb: dwc3: gadget: Fix checking for number of TRBs left
     - usb: dwc3: gadget: Fix looping of queued SG entries
     - ublk: fix error code for unsupported command
     - lib: string_helpers: silence snprintf() output truncation warning
     - ipc: fix memleak if msg_init_ns failed in create_ipc_ns
     - NFSD: Prevent a potential integer overflow
     - SUNRPC: make sure cache entry active before cache_show
     - NFSv4.0: Fix a use-after-free problem in the asynchronous open()
     - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq()
     - rtc: abx80x: Fix WDT bit position of the status register
     - rtc: check if __rtc_read_time was successful in rtc_timer_do_work()
     - ubi: fastmap: wl: Schedule fm_work if wear-leveling pool is empty
     - ubifs: Correct the total block count by deducting journal reservation
     - ubi: fastmap: Fix duplicate slab cache names while attaching
     - ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit
     - jffs2: fix use of uninitialized variable
     - rtc: rzn1: fix BCD to rtc_time conversion errors
     - block: return unsigned int from bdev_io_min
     - 9p/xen: fix init sequence
     - 9p/xen: fix release of IRQ
     - [arm64] perf/arm-smmuv3: Fix lockdep assert in ->event_init()
     - [arm64] perf/arm-cmn: Ensure port and device id bits are set properly
     - rtc: ab-eoz9: don't fail temperature reads on undervoltage notification
     - modpost: remove incorrect code in do_eisa_entry()
     - nfs: ignore SB_RDONLY when mounting nfs
     - sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport
     - xfs: remove unknown compat feature check in superblock write validation
     - quota: flush quota_release_work upon quota writeback
     - btrfs: don't loop for nowait writes when checking for cross references
     - btrfs: add might_sleep() annotations
     - btrfs: add a sanity check for btrfs root in btrfs_search_slot()
     - btrfs: ref-verify: fix use-after-free after invalid ref action
     - [arm64] dts: allwinner: pinephone: Add mount matrix to accelerometer
     - [arm64] dts: freescale: imx8mm-verdin: Fix SD regulator startup delay
     - media: amphion: Set video drvdata before register video device
     - media: imx-jpeg: Set video drvdata before register video device
     - media: i2c: dw9768: Fix pm_runtime_set_suspended() with runtime pm enabled
     - [arm64] dts: freescale: imx8mp-verdin: Fix SD regulator startup delay
     - media: i2c: tc358743: Fix crash in the probe error path when using polling
     - media: imx-jpeg: Ensure power suppliers be suspended before detach them
     - media: ts2020: fix null-ptr-deref in ts2020_probe()
     - media: platform: exynos4-is: Fix an OF node reference leak in
       fimc_md_is_isp_available
     - media: amphion: Fix pm_runtime_set_suspended() with runtime pm enabled
     - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled
     - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate()
     - media: platform: allegro-dvt: Fix possible memory leak in
       allocate_buffers_internal()
     - media: uvcvideo: Stop stream during unregister
     - media: uvcvideo: Require entities to have a non-zero unique ID
     - ovl: Filter invalid inodes with missing lookup function
     - maple_tree: refine mas_store_root() on storing NULL
     - ftrace: Fix regression with module command in stack_trace_filter
     - vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event
     - [arm64,armhf] iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated
       tables
     - leds: lp55xx: Remove redundant test for invalid channel number
     - clk: qcom: gcc-qcs404: fix initial rate of GPLL3
     - ad7780: fix division by zero in ad7780_write_raw()
     - [armel,armhf] 9429/1: ioremap: Sync PGDs for VMALLOC shadow
     - [s390x] entry: Mark IRQ entries to fix stack depot warnings
     - [armel,armhf] 9430/1: entry: Do a dummy read from VMAP shadow
     - [armel,armhf] 9431/1: mm: Pair atomic_set_release() with _read_acquire()
     - ceph: extract entity name from device id
     - util_macros.h: fix/rework find_closest() macros
     - scsi: ufs: exynos: Fix hibern8 notify callbacks
     - i3c: master: svc: Fix pm_runtime_set_suspended() with runtime pm enabled
     - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()
     - PCI: keystone: Set mode as Root Complex for "ti,keystone-pcie" compatible
     - PCI: keystone: Add link up check to ks_pcie_other_map_bus()
     - fs/proc/kcore.c: Clear ret value in read_kcore_iter after successful
       iov_iter_zero
     - thermal: int3400: Fix reading of current_uuid for active policy
     - ovl: properly handle large files in ovl_security_fileattr
     - dm thin: Add missing destroy_work_on_stack()
     - PCI: rockchip-ep: Fix address translation unit programming
     - nfsd: make sure exp active before svc_export_show
     - nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur
     - iio: Fix fwnode_handle in __fwnode_iio_channel_get_by_name()
     - iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer
     - [powerpc*] Fix stack protector Kconfig test for clang
     - [powerpc*] Adjust adding stack protector flags to KBUILD_CLAGS for clang
     - btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in
       walk_down_proc()
     - drm/sti: avoid potential dereference of error pointers in
       sti_hqvdp_atomic_check
     - drm/sti: avoid potential dereference of error pointers in
       sti_gdp_atomic_check
     - drm/sti: avoid potential dereference of error pointers
     - [arm64,armhf] drm/etnaviv: flush shader L1 cache after user commandstream
     - drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu
       v13.0.7
     - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call
     - watchdog: apple: Actually flush writes after requesting watchdog restart
     - watchdog: mediatek: Make sure system reset gets asserted in
       mtk_wdt_restart()
     - can: gs_usb: remove leading space from goto labels
     - can: gs_usb: gs_usb_probe(): align block comment
     - can: gs_usb: uniformly use "parent" as variable name for struct gs_usb
     - can: gs_usb: add VID/PID for Xylanta SAINT3 product family
     - can: gs_usb: add usb endpoint address detection at driver probe step
     - can: c_can: c_can_handle_bus_err(): update statistics if skb allocation
       fails
     - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is
       NULL
     - can: hi311x: hi3110_can_ist(): fix potential use-after-free
     - can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics
     - can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics
     - can: hi311x: hi3110_can_ist(): fix {rx,tx}_errors statistics
     - can: sja1000: sja1000_err(): fix {rx,tx}_errors statistics
     - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics
     - can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics
     - ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init()
     - netfilter: x_tables: fix LED ID check in led_tg_check()
     - netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level
     - ptp: convert remaining drivers to adjfine interface
     - ptp: Add error handling for adjfine callback in ptp_clock_adjtime
     - net/sched: tbf: correct backlog statistic for GSO packets
     - net: hsr: avoid potential out-of-bound access in fill_frame_info()
     - can: j1939: j1939_session_new(): fix skb reference counting
     - net-timestamp: make sk_tskey more predictable in error path
     - net/ipv6: release expired exception dst cached in socket
     - dccp: Fix memory leak in dccp_feat_change_recv
     - tipc: Fix use-after-free of kernel socket in cleanup_bearer().
     - net/smc: fix LGR and link use-after-free issue
     - net/qed: allow old cards not supporting "num_images" to work
     - ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5
     - ixgbe: downgrade logging of unsupported VF API version to debug
     - igb: Fix potential invalid memory access in igb_init_module()
     - net: sched: fix erspan_opt settings in cls_flower
     - netfilter: ipset: Hold module reference while requesting a module
     - netfilter: nft_set_hash: skip duplicated elements pending gc run
     - ethtool: Fix wrong mod state in case of verbose and no_mask bitset
     - geneve: do not assume mac header is set in geneve_xmit_skb()
     - net/mlx5e: Remove workaround to avoid syndrome for internal port
     - [arm64] KVM: arm64: Change kvm_handle_mmio_return() return polarity
     - [arm64] KVM: arm64: Don't retire aborted MMIO instruction
     - gpio: grgpio: use a helper variable to store the address of ofdev->dev
     - gpio: grgpio: Add NULL check in grgpio_probe
     - serial: amba-pl011: Use port lock wrappers
     - serial: amba-pl011: Fix RX stall when DMA is used
     - usb: dwc3: gadget: Rewrite endpoint allocation flow
     - usb: dwc3: ep0: Don't reset resource alloc flag (including ep0)
     - usb: dwc3: ep0: Don't clear ep0 DWC3_EP_TRANSFER_STARTED
     - [powerpc*] vdso: Skip objtool from running on VDSO files
     - [powerpc*] vdso: Remove unused '-s' flag from ASFLAGS
     - [powerpc*] vdso: Improve linker flags
     - [powerpc*] vdso: Remove an unsupported flag from vgettimeofday-32.o with
       clang
     - [powerpc*] vdso: Include CLANG_FLAGS explicitly in ldflags-y
     - [powerpc*] vdso: Refactor CFLAGS for CVDSO build
     - [powerpc*] vdso: Drop -mstack-protector-guard flags in 32-bit files with
       clang
     - ntp: Remove invalid cast in time offset math
     - driver core: fw_devlink: Improve logs for cycle detection
     - driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link
     - driver core: fw_devlink: Stop trying to optimize cycle detection logic
     - i3c: Make i3c_master_unregister() return void
     - i3c: master: add enable(disable) hot join in sys entry
     - i3c: master: svc: add hot join support
     - i3c: master: fix kernel-doc check warning
     - i3c: master: support to adjust first broadcast address speed
     - i3c: master: svc: use slow speed for first broadcast address
     - i3c: master: svc: Modify enabled_events bit 7:0 to act as IBI enable
       counter
     - i3c: master: Replace hard code 2 with macro I3C_ADDR_SLOT_STATUS_BITS
     - i3c: master: Extend address status bit to 4 and add
       I3C_ADDR_SLOT_EXT_DESIRED
     - i3c: master: Fix dynamic address leak when 'assigned-address' is present
     - PCI: endpoint: Use a separate lock for protecting epc->pci_epf list
     - PCI: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf()
     - device property: Constify device child node APIs
     - device property: Add cleanup.h based fwnode_handle_put() scope based
       cleanup.
     - device property: Introduce device_for_each_child_node_scoped()
     - leds: flash: mt6360: Fix device_for_each_child_node() refcounting in error
       paths
     - drm/bridge: it6505: update usleep_range for RC circuit charge time
     - drm/bridge: it6505: Fix inverted reset polarity
     - xsk: always clear DMA mapping information when unmapping the pool
     - bpftool: Remove asserts from JIT disassembler
     - bpftool: fix potential NULL pointer dereferencing in prog_dump()
     - drm/sti: Add __iomem for mixer_dbg_mxn's parameter
     - tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg
     - ALSA: usb-audio: Notify xrun for low-latency mode
     - tools: Override makefile ARCH variable if defined, but empty
     - spi: mpc52xx: Add cancel_work_sync before module remove
     - scsi: scsi_debug: Fix hrtimer support for ndelay
     - [arm64] drm/v3d: Enable Performance Counters before clearing them
     - ocfs2: free inode when ocfs2_get_init_inode() fails
     - scatterlist: fix incorrect func name in kernel-doc
     - iio: magnetometer: yas530: use signed integer type for clamp limits
     - bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie
     - bpf: Remove unnecessary kfree(im_node) in lpm_trie_update_elem
     - bpf: Handle in-place update for full LPM trie correctly
     - bpf: Fix exact match conditions in trie_get_next_key()
     - mm: page_alloc: move mlocked flag clearance into free_pages_prepare()
       (CVE-2024-53105)
     - HID: wacom: fix when get product name maybe null pointer
     - ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read
     - ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write
     - watchdog: rti: of: honor timeout-sec property
     - can: dev: can_set_termination(): allow sleeping GPIOs
     - can: mcp251xfd: mcp251xfd_get_tef_len(): work around erratum DS80000789E
       6.
     - tracing: Fix cmp_entries_dup() to respect sort() comparison rules
     - [arm64] Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit
       ASIDs
     - [arm64] ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL
     - ALSA: usb-audio: add mixer mapping for Corsair HS80
     - ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8
     - ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG)
     - scsi: qla2xxx: Fix abort in bsg timeout
     - scsi: qla2xxx: Fix NVMe and NPIV connect issue
     - scsi: qla2xxx: Supported speed displayed incorrectly for VPorts
     - scsi: qla2xxx: Fix use after free on unload
     - scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt
     - scsi: ufs: core: sysfs: Prevent div by zero
     - scsi: ufs: core: Add missing post notify for power mode change
     - nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()
     - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again
     - drm/dp_mst: Fix MST sideband message body length check
     - drm/dp_mst: Verify request type in the corresponding down message reply
     - drm/dp_mst: Fix resetting msg rx state after topology removal
     - drm/amdgpu/hdp5.2: do a posting read when flushing HDP
     - modpost: Add .irqentry.text to OTHER_SECTIONS
     - bpf: fix OOB devmap writes when deleting elements
     - dma-buf: fix dma_fence_array_signaled v4
     - dma-fence: Fix reference leak on fence merge failure path
     - dma-fence: Use kernel's sort for merging fences
     - xsk: fix OOB map writes when deleting elements
     - regmap: detach regmap from dev on regmap_exit
     - mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10
       tablet
     - mmc: core: Further prevent card detect during shutdown
     - ocfs2: update seq_file index in ocfs2_dlm_seq_next
     - lib: stackinit: hide never-taken branch from compiler
     - [arm64] iommu/arm-smmu: Defer probe of clients after smmu device bound
     - epoll: annotate racy check
     - [s390x] cpum_sf: Handle CPU hotplug remove during sampling
     - btrfs: avoid unnecessary device path update for the same device
     - btrfs: do not clear read-only when adding sprout device
     - [x86] perf/x86/amd: Warn only on new bits set
     - media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera
     - media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108
     - mmc: core: Add SD card quirk for broken poweroff notification
     - soc: imx8m: Probe the SoC driver as platform driver
     - HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support
     - [arm64,armhf] drm/vc4: hdmi: Avoid log spam for audio start failure
     - [arm64,armhf] drm/vc4: hvs: Set AXI panic modes for the HVS
     - drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model
     - drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition
     - drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK
     - drm/bridge: it6505: Enable module autoloading
     - drm/mcde: Enable module autoloading
     - drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check()
     - drm/display: Fix building with GCC 15
     - r8169: don't apply UDP padding quirk on RTL8126A
     - net: fec_mpc52xx_phy: Use %pa to format resource_size_t
     - net: ethernet: fs_enet: Use %pa to format resource_size_t
     - net/sched: cbs: Fix integer overflow in cbs_set_port_rate()
     - af_packet: avoid erroring out after sock_init_data() in packet_create()
     - Bluetooth: L2CAP: do not leave dangling sk pointer on error in
       l2cap_sock_create()
     - Bluetooth: RFCOMM: avoid leaving dangling sk pointer in
       rfcomm_sock_alloc()
     - net: af_can: do not leave a dangling sk pointer in can_create()
     - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create()
     - net: inet: do not leave a dangling sk pointer in inet_create()
     - net: inet6: do not leave a dangling sk pointer in inet6_create()
     - wifi: ath5k: add PCI ID for SX76X
     - wifi: ath5k: add PCI ID for Arcadyan devices
     - drm/panel: simple: Add Microchip AC69T88A LVDS Display panel
     - net: sfp: change quirks for Alcatel Lucent G-010S-P
     - drm/sched: memset() 'job' in drm_sched_job_init()
     - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih
     - drm/amdgpu: Dereference the ATCS ACPI buffer
     - drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr
     - dma-debug: fix a possible deadlock on radix_lock
     - jfs: array-index-out-of-bounds fix in dtReadFirst
     - jfs: fix shift-out-of-bounds in dbSplit
     - jfs: fix array-index-out-of-bounds in jfs_readdir
     - jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree
     - drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov
     - ALSA: usb-audio: Make mic volume workarounds globally applicable
     - drm/amdgpu: set the right AMDGPU sg segment limitation
     - wifi: ipw2x00: libipw_rx_any(): fix bad alignment
     - wifi: brcmfmac: Fix oops due to NULL pointer dereference in
       brcmf_sdiod_sglist_rw()
     - dsa: qca8k: Use nested lock to avoid splat
     - Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables
     - Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet
     - ASoC: hdmi-codec: reorder channel allocation list
     - rocker: fix link status detection in rocker_carrier_init()
     - net/neighbor: clear error in case strict check is not set
     - netpoll: Use rcu_access_pointer() in __netpoll_setup
     - pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU
     - tracing/ftrace: disable preemption in syscall probe
     - tracing: Use atomic64_inc_return() in trace_clock_counter()
     - tools/rtla: fix collision with glibc sched_attr/sched_set_attr
     - scsi: hisi_sas: Add cond_resched() for no forced preemption model
     - scsi: ufs: core: Make DMA mask configuration more flexible
     - leds: class: Protect brightness_show() with led_cdev->led_access mutex
     - scsi: st: Don't modify unknown block number in MTIOCGET
     - scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset
     - pinctrl: qcom-pmic-gpio: add support for PM8937
     - pinctrl: qcom: spmi-mpp: Add PM8937 compatible
     - nvdimm: rectify the illogical code within nd_dax_probe()
     - smb: client: memcpy() with surrounding object base address
     - verification/dot2: Improve dot parser robustness
     - f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode.
     - i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request
     - PCI: Detect and trust built-in Thunderbolt chips
     - PCI: Add 'reset_subordinate' to reset hierarchy below bridge
     - PCI: Add ACS quirk for Wangxun FF5xxx NICs
     - i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to
       avoid deadlock
     - usb: chipidea: udc: handle USB Error Interrupt if IOC not set
     - iio: light: ltr501: Add LTER0303 to the supported devices
     - [x86] ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen
       6 21M1CTO1WW (Closes: #1087673)
     - [powerpc*] prom_init: Fixup missing powermac #size-cells
     - misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle
     - rtc: cmos: avoid taking rtc_lock for extended period of time
     - serial: 8250_dw: Add Sophgo SG2044 quirk
     - io_uring/tctx: work around xa_store() allocation error issue
     - sched/core: Remove the unnecessary need_resched() check in nohz_csd_func()
     - sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU
       turning busy
     - sched/core: Prevent wakeup of ksoftirqd during idle load balance
     - btrfs: fix missing snapshot drew unlock when root is dead during swap
       activation
     - tracing/eprobe: Fix to release eprobe when failed to add dyn_event
     - Revert "unicode: Don't special case ignorable code points"
     - vfio/mlx5: Align the page tracking max message size with the device
       capability
     - udf: Fold udf_getblk() into udf_bread()
     - [arm64] KVM: arm64: vgic-its: Add a data length check in vgic_its_save_*
     - [arm64] KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device
     - [arm64] KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE
     - [x86] KVM: x86/mmu: Ensure that kvm_release_pfn_clean() takes exact pfn
       from kvm_faultin_pfn()
     - jffs2: Prevent rtime decompress memory corruption
     - jffs2: Fix rtime decompressor
     - mm/damon/vaddr: fix issue in damon_va_evenly_split_region()
     - io_uring: wake up optimisations
     - xhci: dbc: Fix STALL transfer event handling
     - mmc: mtk-sd: Fix error handle of probe function
     - drm/amd/display: Check BIOS images before it is used (CVE-2024-46809)
     - ocfs2: Revert "ocfs2: fix the la space leak when unmounting an ocfs2
       volume"
     - Revert "drm/amdgpu: add missing size check in
       amdgpu_debugfs_gprwave_read()"
     - gve: Fixes for napi_poll when budget is 0
     - [arm64] sve: Discard stale CPU state when handling SVE traps
       (CVE-2024-50275)
     - [arm64] smccc: Remove broken support for SMCCCv1.3 SVE discard hint
     - [x86] ASoC: Intel: avs: Fix return status of avs_pcm_hw_constraints_init()
     - mm: call the security_mmap_file() LSM hook in remap_file_pages()
     - bpf: Fix helper writes to read-only maps (CVE-2024-49861)
     - net: Move {l,t,d}stats allocation to core and convert veth & vrf
     - bpf: Fix dev's rx stats for bpf_redirect_peer traffic
     - veth: Use tstats per-CPU traffic counters
     - drm/ttm: Make sure the mapped tt pages are decrypted when needed
     - drm/ttm: Print the memory decryption status just once
     - drm/amdgpu: rework resume handling for display (v2)
     - usb: dwc3: ep0: Don't reset resource alloc flag
     - serial: amba-pl011: fix build regression
     - i3c: master: Remove i3c_dev_disable_ibi_locked(olddev) on device hotjoin
     - i3c: master: svc: fix possible assignment of the same address to two
       devices
     - PM / devfreq: Fix build issues with devfreq disabled
     - [arm64] drm/msm: DEVFREQ_GOV_SIMPLE_ONDEMAND is no longer needed
     - fs/ntfs3: Sequential field availability check in mi_enum_attr()
     - i3c: master: svc: Fix use after free vulnerability in svc_i3c_master
       Driver Due to Race Condition
     - Bluetooth: MGMT: Fix possible deadlocks
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.121
     - bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors
     - ksmbd: fix racy issue from session lookup and expire
     - tcp: check space before adding MPTCP SYN options
     - blk-cgroup: Fix UAF in blkcg_unpin_online()
     - ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5
     - usb: host: max3421-hcd: Correctly abort a USB request.
     - ata: sata_highbank: fix OF node reference leak in
       highbank_initialize_phys()
     - usb: dwc2: Fix HCD resume
     - usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature
     - usb: dwc2: Fix HCD port connection race
     - usb: ehci-hcd: fix call balance of clocks handling routines
     - usb: typec: anx7411: fix fwnode_handle reference leak
     - usb: typec: anx7411: fix OF node reference leaks in
       anx7411_typec_switch_probe()
     - usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to
       accessing null pointer
     - usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode
     - [x86] drm/i915: Fix memory leak by correcting cache object name in error
       handler
     - xfs: update btree keys correctly when _insrec splits an inode root block
     - xfs: don't drop errno values when we fail to ficlone the entire range
     - xfs: return from xfs_symlink_verify early on V4 filesystems
     - xfs: fix scrub tracepoints when inode-rooted btrees are involved
     - xfs: only run precommits once per transaction object
     - bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog
     - bpf, sockmap: Fix update element with same
     - smb: client: fix UAF in smb2_reconnect_server() (CVE-2024-35870)
       (Closes: #1088733)
     - exfat: support dynamic allocate bh for exfat_entry_set_cache
     - exfat: fix potential deadlock on __exfat_get_dentry_set (CVE-2024-42315)
     - wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one
     - wifi: mac80211: clean up 'ret' in sta_link_apply_parameters()
     - wifi: mac80211: fix station NSS capability initialization order
     - acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl
     - amdgpu/uvd: get ring reference from rq scheduler
     - batman-adv: Do not send uninitialized TT changes
     - batman-adv: Remove uninitialized data in full table TT response
     - batman-adv: Do not let TT changes list grows indefinitely
     - tipc: fix NULL deref in cleanup_bearer()
     - net/mlx5: DR, prevent potential error pointer dereference
     - ptp: kvm: Use decrypted memory in confidential guest on x86
     - [x86] ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from
       kvm_arch_ptp_init()
     - net: lapb: increase LAPB_HEADER_LEN
     - net: defer final 'struct net' free in netns dismantle
     - [arm64] net: mscc: ocelot: fix memory leak on
       ocelot_port_add_txtstamp_skb()
     - [arm64] net: mscc: ocelot: improve handling of TX timestamp for unknown
       skb
     - [arm64] net: mscc: ocelot: ocelot->ts_id_lock and
       ocelot_port->tx_skbs.lock are IRQ-safe
     - [arm64] net: mscc: ocelot: be resilient to loss of PTP packets during
       transmission
     - [arm64] net: mscc: ocelot: perform error cleanup in ocelot_hwstamp_set()
     - [armhf] spi: aspeed: Fix an error handling path in
       aspeed_spi_[read|write]_user()
     - net: sparx5: fix FDMA performance issue
     - net: sparx5: fix the maximum frame length register
     - ACPI: resource: Fix memory resource type union access
     - cxgb4: use port number to set mac addr
     - qca_spi: Fix clock speed for multiple QCA7000
     - qca_spi: Make driver probing reliable
     - ASoC: amd: yc: Fix the wrong return value
     - Documentation: PM: Clarify pm_runtime_resume_and_get() return value
     - net: dsa: felix: fix stuck CPU-injected packets with short taprio windows
     - net/sched: netem: account for backlog updates from child qdisc
     - bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
     - team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
     - ACPICA: events/evxfregn: don't release the ContextMutex that was never
       acquired
     - Bluetooth: iso: Fix recursive locking warning
     - Bluetooth: SCO: Add support for 16 bits transparent voice setting
     - blk-iocost: Avoid using clamp() on inuse in __propagate_weights()
     - bpf: sync_linked_regs() must preserve subreg_def (CVE-2024-53125)
     - tracing/kprobes: Skip symbol counting logic for module symbols in
       create_local_trace_kprobe()
     - xen/netfront: fix crash when removing device (CVE-2024-53240)
     - [x86] make get_cpu_vendor() accessible from Xen code (CVE-2024-53241)
     - [x86] objtool/x86: allow syscall instruction (CVE-2024-53241)
     - [x86] static-call: provide a way to do very early static-call updates
       (CVE-2024-53241)
     - [x86] xen: don't do PV iret hypercall through hypercall page
       (CVE-2024-53241)
     - [x86] xen: add central hypercall functions (CVE-2024-53241)
     - [x86] xen: use new hypercall functions instead of hypercall page
       (CVE-2024-53241)
     - [x86] xen: remove hypercall page (CVE-2024-53241)
     - ALSA: usb-audio: Fix a DMA to stack memory bug
     - [x86] static-call: fix 32-bit build
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.122
     - net: sched: fix ordering of qlen adjustment (CVE-2024-53164)
     - PCI/AER: Disable AER service on suspend
     - PCI: Use preserve_config in place of pci_flags
     - PCI: vmd: Create domain symlink before pci_bus_add_devices()
     - usb: cdns3: Add quirk flag to enable suspend residency
     - [x86] ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP
     - [x86] ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C
     - PCI: Add ACS quirk for Broadcom BCM5760X NIC
     - [arm64,armhf] usb: dwc2: gadget: Don't write invalid mapped sg entries
       into dma_desc with iommu enabled
     - PCI: Introduce pci_resource_n()
     - [x86] platform/x86: p2sb: Make p2sb_get_devfn() return void
     - [x86] p2sb: Factor out p2sb_read_from_cache()
     - [x86] p2sb: Introduce the global flag p2sb_hidden_by_bios
     - [x86] p2sb: Move P2SB hide and unhide code to p2sb_scan_and_cache()
     - [x86] p2sb: Do not scan and remove the P2SB device when it is unhidden
     - i2c: pnx: Fix timeout in wait functions
     - cxl/region: Fix region creation for greater than x2 switches
     - net/smc: protect link down work from execute after lgr freed
       (CVE-2024-56718)
     - net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll
     - net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal
       msg
     - net/smc: check smcd_v2_ext_offset when receiving proposal msg
     - net/smc: check return value of sock_recvmsg when draining clc data
     - [arm64] net: mscc: ocelot: fix incorrect IFH SRC_PORT field in
       ocelot_ifh_set_basic()
     - ionic: Fix netdev notifier unregister on failure (CVE-2024-56715)
     - ionic: use ee->offset when returning sprom data
     - net: hinic: Fix cleanup in create_rxqs/txqs()
     - net: ethernet: bgmac-platform: fix an OF node reference leak
     - netfilter: ipset: Fix for recursive locking warning
     - net: mdiobus: fix an OF node reference leak
     - [arm64,armhf] mmc: sdhci-tegra: Remove
       SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk
     - [x86] KVM: x86: Cache CPUID.0xD XSTATE offsets+sizes during module init
     - i2c: riic: Always round-up when calculating bus period
     - efivarfs: Fix error on non-existent file
     - USB: serial: option: add TCL IK512 MBIM & ECM
     - USB: serial: option: add MeiG Smart SLM770A
     - USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready
     - USB: serial: option: add MediaTek T7XX compositions
     - USB: serial: option: add Telit FE910C04 rmnet compositions
     - [x86] thunderbolt: Improve redrive mode handling
     - drm/modes: Avoid divide by zero harder in drm_mode_vrefresh()
     - drm/panel: novatek-nt35950: fix return value check in nt35950_probe()
     - [x86] i915/guc: Reset engine utilization buffer before registration
     - [x86] i915/guc: Ensure busyness counter increases motonically
     - [x86] i915/guc: Accumulate active runtime on gt reset
     - drm/amdgpu: don't access invalid sched
     - hwmon: (tmp513) Don't use "proxy" headers
     - hwmon: (tmp513) Simplify with dev_err_probe()
     - hwmon: (tmp513) Use SI constants from units.h
     - hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit
       Registers
     - hwmon: (tmp513) Fix Current Register value interpretation
     - hwmon: (tmp513) Fix interpretation of values of Temperature Result and
       Limit Registers
     - zram: refuse to use zero sized block device as backing device
     - zram: fix uninitialized ZRAM not releasing backing device
     - btrfs: tree-checker: reject inline extent items with 0 ref count
     - Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet
     - [x86] KVM: x86: Play nice with protected guests in
       complete_hypercall_exit()
     - tracing: Fix test_event_printk() to process entire print argument
     - tracing: Add missing helper functions in event pointer dereference check
     - tracing: Add "%s" check in test_event_printk()
     - io_uring: Fix registered ring file refcount leak
     - io_uring: check if iowq is killed before queuing (CVE-2024-56709)
     - NFS/pnfs: Fix a live lock between recalled layouts and layoutget
     - of/irq: Fix interrupt-map cell length check in of_irq_parse_imap_parent()
     - of/irq: Fix using uninitialized variable @addr_len in API
       of_irq_parse_one()
     - nilfs2: fix buffer head leaks in calls to truncate_inode_pages()
     - nilfs2: prevent use of deleted inode
     - of: Fix error path in of_parse_phandle_with_args_map()
     - of: Fix refcount leakage for OF node returned by __of_get_dma_parent()
     - ceph: validate snapdirname option length when mounting
     - udf: Fix directory iteration for longer tail extents (Closes: #1089698)
     - epoll: Add synchronous wakeup support for ep_poll_callback
     - io_uring/rw: split io_read() into a helper
     - io_uring/rw: treat -EOPNOTSUPP for IOCB_NOWAIT like -EAGAIN
     - io_uring/rw: avoid punting to io-wq directly
     - drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.123
     - media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg
     - mm/vmstat: fix a W=1 clang compiler warning
     - tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress()
     - tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection
     - bpf: Check negative offsets in __bpf_skb_min_len()
     - nfsd: restore callback functionality for NFSv4.0
     - mtd: diskonchip: Cast an operand to prevent potential overflow
     - [arm64] phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP
     - phy: core: Fix an OF node refcount leakage in _of_phy_get()
     - phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup()
     - phy: core: Fix that API devm_phy_put() fails to release the phy
     - phy: core: Fix that API devm_of_phy_provider_unregister() fails to
       unregister the phy provider
     - phy: core: Fix that API devm_phy_destroy() fails to destroy the phy
     - phy: usb: Toggle the PHY power during init
     - [arm64] phy: rockchip: naneng-combphy: fix phy reset
     - [arm*] dmaengine: mv_xor: fix child node refcount handling in early exit
     - [x86] dmaengine: dw: Select only supported masters for ACPI devices
     - [powerpc*] pseries/vas: Add close() callback in vas_vm_ops struct
     - stddef: make __struct_group() UAPI C++-friendly
     - tracing/kprobe: Make trace_kprobe's module callback called after
       jump_label update
     - watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04
     - scsi: qla1280: Fix hw revision numbering for ISP1020/1040
     - scsi: megaraid_sas: Fix for a potential deadlock
     - ALSA: hda/conexant: fix Z60MR100 startup pop issue
     - smb: server: Fix building with GCC 15
     - regmap: Use correct format specifier for logging range errors
     - [x86] platform/x86: asus-nb-wmi: Ignore unknown event 0xCF
     - scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver
       load time
     - scsi: storvsc: Do not flag MAINTENANCE_IN return of
       SRB_STATUS_DATA_OVERRUN as an error
     - drm/dp_mst: Ensure mst_primary pointer is valid in
       drm_dp_mst_handle_up_req()
     - virtio-blk: don't keep queue frozen during system suspend
     - blk-mq: register cpuhp callback after hctx is added to xarray table
     - vmalloc: fix accounting with i915
     - [mips*] mipsregs: Set proper ISA level for virt extensions
     - net/mlx5e: Don't call cleanup on profile rollback failure (CVE-2024-50146)
     - bpf: Check validity of link->type in bpf_link_show_fdinfo()
       (CVE-2024-53099)
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook X G1i
     - ALSA: hda/realtek: fix micmute LEDs don't work on HP Laptops
     - pmdomain: core: Add missing put_device()
     - sched/core: Report correct state for TASK_IDLE | TASK_FREEZABLE
     - freezer, sched: Report frozen tasks as 'D' instead of 'R'
     - tracing: Constify string literal data member in struct trace_event_call
     - tracing: Prevent bad count for tracing_cpumask_write
     - io_uring/sqpoll: fix sqpoll error handling races
     - i2c: microchip-core: actually use repeated sends
     - i2c: imx: add imx7d compatible string for applying erratum ERR007805
     - i2c: microchip-core: fix "ghost" detections
     - power: supply: gpio-charger: Fix set charge current limits
     - btrfs: avoid monopolizing a core when activating a swap file
     - btrfs: sysfs: fix direct super block member reads
     - nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net
       (CVE-2024-50121)
     - Revert "rcu-tasks: Fix access non-existent percpu rtpcp variable in
       rcu_tasks_need_gpcb()"
     - ALSA: hda/realtek: Fix spelling mistake "Firelfy" -> "Firefly"
 .
   [ Salvatore Bonaccorso ]
   * d/salsa-ci.yml: Suppress aliased-location lintian errors
   * debian/salsa-ci.yml: Include run of .build-after-script from common
     pipeline.
   * debian/salsa-ci.yml: Reference .build-after-script from after_script
     section
   * Revert "[x86] Revert "x86: Increase brk randomness entropy for 64-bit
     systems""
     The root cause for the segfaults were actually in qemu, which re-enables
     --static-pie linking for qemu-user-static binaries. It was disabled by
     mistake in qemu versions in Debian. Details in #1087822 and #1053101.
   * Bump ABI to 29
   * [rt] Update to 6.1.120-rt47
linux-signed-arm64 (6.1.119+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.119-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.116
     - cpufreq: Generalize of_perf_domain_get_sharing_cpumask phandle format
     - cpufreq: Avoid a bad reference count on CPU node (CVE-2024-50012)
     - mm: remove kern_addr_valid() completely
     - fs/proc/kcore: avoid bounce buffer for ktext data
     - fs/proc/kcore: convert read_kcore() to read_kcore_iter()
     - fs/proc/kcore: reinstate bounce buffer for KCORE_TEXT regions
     - fs/proc/kcore.c: allow translation of physical memory addresses
     - cgroup: Fix potential overflow issue when checking max_depth
     - wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd()
       (Closes: #1062421)
     - mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING
     - wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys
     - wifi: ath11k: Fix invalid ring usage in full monitor mode
     - wifi: brcm80211: BRCM_TRACING should depend on TRACING
     - RDMA/cxgb4: Dump vendor specific QP details
     - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down
     - RDMA/bnxt_re: synchronize the qp-handle table array
     - wifi: iwlwifi: mvm: disconnect station vifs if recovery failed
     - wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
       (CVE-2024-53059)
     - [armel,armhf] ASoC: cs42l51: Fix some error handling paths in
       cs42l51_probe()
     - macsec: Fix use-after-free while sending the offloading packet
       (CVE-2024-50261)
     - net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data
       (CVE-2024-53058)
     - ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()
       (CVE-2024-53042)
     - gtp: allow -1 to be specified as file description from userspace
     - net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT (CVE-2024-53057)
     - netdevsim: Add trailing zero to terminate the string in
       nsim_nexthop_bucket_activity_write() (CVE-2024-50259)
     - bpf: Fix out-of-bounds write in trie_get_next_key() (CVE-2024-50262)
     - netfilter: Fix use-after-free in get_info() (CVE-2024-50257)
     - netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
       (CVE-2024-50256)
     - Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs
       (CVE-2024-50255)
     - net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension
     - netfilter: nft_payload: sanitize offset and length before calling
       skb_checksum() (CVE-2024-50251)
     - iomap: convert iomap_unshare_iter to use large folios
     - iomap: improve shared block detection in iomap_unshare_iter
     - iomap: don't bother unsharing delalloc extents
     - iomap: share iomap_unshare_iter predicate code with fsdax
     - fsdax: remove zeroing code from dax_unshare_iter
     - fsdax: dax_unshare_iter needs to copy entire blocks (CVE-2024-50250)
     - iomap: turn iomap_want_unshare_iter into an inline function
     - compiler-gcc: be consistent with underscores use for `no_sanitize`
     - compiler-gcc: remove attribute support check for `__no_sanitize_address__`
     - afs: Automatically generate trace tag enums
     - afs: Fix missing subdir edit when renamed between parent dirs
     - ACPI: CPPC: Make rmw_lock a raw_spin_lock (CVE-2024-50249)
     - fs/ntfs3: Check if more than chunk-size bytes are written (CVE-2024-50247)
     - fs/ntfs3: Fix warning possible deadlock in ntfs_set_state
     - fs/ntfs3: Stale inode instead of bad
     - fs/ntfs3: Fix possible deadlock in mi_read (CVE-2024-50245)
     - fs/ntfs3: Additional check in ni_clear() (CVE-2024-50244)
     - scsi: scsi_transport_fc: Allow setting rport state to current state
     - net: amd: mvme147: Fix probe banner message
     - NFS: remove revoked delegation from server's delegation list
     - misc: sgi-gru: Don't disable preemption in GRU driver
     - usb: gadget: dummy_hcd: Switch to hrtimer transfer scheduler
     - usb: gadget: dummy_hcd: Set transfer interval to 1 microframe
     - usb: gadget: dummy_hcd: execute hrtimer callback in softirq context
     - USB: gadget: dummy-hcd: Fix "task hung" problem
     - ALSA: usb-audio: Add quirks for Dell WD19 dock
     - usbip: tools: Fix detach_port() invalid port error path
     - usb: phy: Fix API devm_usb_put_phy() can not release the phy
     - usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes()
     - xhci: Fix Link TRB DMA in command ring stopped completion event
     - xhci: Use pm_runtime_get to prevent RPM on unsupported systems
     - Revert "driver core: Fix uevent_show() vs driver detach race"
     - wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
       (CVE-2024-50237)
     - wifi: ath10k: Fix memory leak in management tx (CVE-2024-50236)
     - wifi: cfg80211: clear wdev->cqm_config pointer on free (CVE-2024-50235)
     - wifi: iwlegacy: Clear stale interrupts before resuming device
       (CVE-2024-50234)
     - iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
       (CVE-2024-50232)
     - iio: light: veml6030: fix microlux value calculation
     - nilfs2: fix potential deadlock with newly created symlinks
       (CVE-2024-50229)
     - block: fix sanity checks in blk_rq_map_user_bvec
     - cgroup/bpf: use a dedicated workqueue for cgroup bpf destruction
       (CVE-2024-53054)
     - ALSA: hda/realtek: Limit internal Mic boost on Dell platform
     - cxl/acpi: Move rescan to the workqueue
     - cxl/port: Fix cxl_bus_rescan() vs bus_rescan_devices()
     - mm/page_alloc: rename ALLOC_HIGH to ALLOC_MIN_RESERVE
     - mm/page_alloc: treat RT tasks similar to __GFP_HIGH
     - mm/page_alloc: explicitly record high-order atomic allocations in
       alloc_flags
     - mm/page_alloc: explicitly define what alloc flags deplete min reserves
     - mm/page_alloc: explicitly define how __GFP_HIGH non-blocking allocations
       accesses reserves
     - mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves
     - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (CVE-2024-50218)
     - mctp i2c: handle NULL header address (CVE-2024-53043)
     - ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1
     - nvmet-auth: assign dh_key to NULL after kfree_sensitive (CVE-2024-50215)
     - io_uring: rename kiocb_end_write() local helper
     - fs: create kiocb_{start,end}_write() helpers
     - io_uring: use kiocb_{start,end}_write() helpers
     - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write
       (CVE-2024-53052)
     - mm: migrate: try again if THP split is failed due to page refcnt
     - migrate: convert unmap_and_move() to use folios
     - migrate: convert migrate_pages() to use folios
     - mm/migrate.c: stop using 0 as NULL pointer
     - migrate_pages: organize stats with struct migrate_pages_stats
     - migrate_pages: separate hugetlb folios migration
     - migrate_pages: restrict number of pages to migrate in batch
     - migrate_pages: split unmap_and_move() to _unmap() and _move()
     - vmscan,migrate: fix page count imbalance on node stats when demoting pages
     - io_uring: always lock __io_cqring_overflow_flush (Closes: #1087602)
     - [x86] bugs: Use code segment selector for VERW operand (CVE-2024-50072)
     - wifi: mac80211: fix NULL dereference at band check in starting tx ba
       session (CVE-2024-43911)
     - nilfs2: fix kernel bug due to missing clearing of checked flag
       (CVE-2024-50230)
     - wifi: iwlwifi: mvm: fix 6 GHz scan construction (CVE-2024-53055)
     - mm: shmem: fix data-race in shmem_getattr() (CVE-2024-50228)
     - mtd: spi-nor: winbond: fix w25q128 regression
     - drm/amd/display: Add null checks for 'stream' and 'plane' before
       dereferencing (CVE-2024-43904)
     - drm/amd/display: Skip on writeback when it's not applicable
       (CVE-2024-36914)
     - vt: prevent kernel-infoleak in con_font_get()
     - mm: avoid gcc complaint about pointer casting
     - migrate_pages_batch: fix statistics for longterm pin retry
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.117
     - [arm64] dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610
     - [arm64] dts: rockchip: Fix rt5651 compatible value on
       rk3399-sapphire-excavator
     - [arm64] dts: rockchip: Remove hdmi's 2nd interrupt on rk3328
     - [arm64] dts: rockchip: Fix wakeup prop names on PineNote BT node
     - [arm64] dts: rockchip: Fix bluetooth properties on Rock960 boards
     - [arm64] dts: rockchip: Remove #cooling-cells from fan on Theobroma lion
     - [arm64] dts: rockchip: Fix LED triggers on rk3308-roc-cc
     - [arm64] dts: imx8qm: Fix VPU core alias name
     - [arm64] dts: imx8qxp: Add VPU subsystem file
     - [arm64] dts: imx8-ss-vpu: Fix imx8qm VPU IRQs
     - [arm64] dts: imx8mp: correct sdhc ipg clk
     - [armhf] ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin
     - HID: core: zero-initialize the report buffer (CVE-2024-50302)
     - [x86] platform/x86/amd/pmc: Detect when STB is not available
       (CVE-2024-53072)
     - sunrpc: handle -ENOTCONN in xs_tcp_setup_socket()
     - NFSv3: only use NFS timeout for MOUNT when protocols are compatible
     - NFSv3: handle out-of-order write replies.
     - nfs: avoid i_lock contention in nfs_clear_invalid_mapping
     - security/keys: fix slab-out-of-bounds in key_task_permission
       (CVE-2024-50301)
     - [arm64] net: enetc: set MAC address to the VF net_device
     - sctp: properly validate chunk size in sctp_sf_ootb() (CVE-2024-50299)
     - can: c_can: fix {rx,tx}_errors statistics
     - ice: change q_index variable type to s16 to store -1 value
     - i40e: fix race condition by adding filter's intermediate sync state
       (CVE-2024-53088)
     - [arm64] net: hns3: fix kernel crash when uninstalling driver
       (CVE-2024-50296)
     - net: phy: ti: add PHY_RST_AFTER_CLK_EN flag
     - net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case
     - virtio_net: Add hash_key_length check (CVE-2024-53082)
     - Revert "ALSA: hda/conexant: Mute speakers at suspend / shutdown"
     - media: stb0899_algo: initialize cfr before using it
     - media: dvbdev: prevent the risk of out of memory access (CVE-2024-53063)
     - media: dvb_frontend: don't play tricks with underflow values
     - media: adv7604: prevent underflow condition when reporting colorspace
     - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer
     - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init()
     - [armhf] ASoC: stm32: spdifrx: fix dma channel release in
       stm32_spdifrx_remove
     - media: ar0521: don't overflow when checking PLL values (CVE-2024-53081)
     - media: s5p-jpeg: prevent buffer overflows (CVE-2024-53061)
     - media: cx24116: prevent overflows on SNR calculus (CVE-2024-50290)
     - media: pulse8-cec: fix data timestamp at pulse8_setup()
     - media: v4l2-tpg: prevent the risk of a division by zero (CVE-2024-50287)
     - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl()
     - can: mcp251xfd: mcp251xfd_get_tef_len(): fix length calculation
     - can: mcp251xfd: mcp251xfd_ring_alloc(): fix coalescing configuration when
       switching CAN modes
     - ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create
       (CVE-2024-50286)
     - ksmbd: Fix the missing xa_store error check (CVE-2024-50284)
     - ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (CVE-2024-50283)
     - pwm: imx-tpm: Use correct MODULO value for EPWM mode
     - drm/amdgpu: Adjust debugfs eviction and IB access permissions
     - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()
       (CVE-2024-50282)
     - drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported
       (CVE-2024-53060)
     - thermal/drivers/qcom/lmh: Remove false lockdep backtrace
     - dm cache: correct the number of origin blocks to match the target length
     - dm cache: fix flushing uninitialized delayed_work on cache_ctr error
       (CVE-2024-50280)
     - dm cache: fix out-of-bounds access to the dirty bitset when resizing
       (CVE-2024-50279)
     - dm cache: optimize dirty bit checking with find_next_bit when resizing
     - dm cache: fix potential out-of-bounds access on the first resume
       (CVE-2024-50278)
     - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t
       overflow
     - ALSA: usb-audio: Add quirk for HP 320 FHD Webcam
     - ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3
     - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone
     - nfs: Fix KMSAN warning in decode_getfattr_attrs() (CVE-2024-53066)
     - net: wwan: t7xx: Fix off-by-one error in t7xx_dpmaif_rx_buf_alloc()
     - net: vertexcom: mse102x: Fix possible double free of TX skb
       (CVE-2024-50276)
     - mptcp: use sock_kfree_s instead of kfree
     - btrfs: reinitialize delayed ref list after deleting it from the list
       (CVE-2024-50273)
     - bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq
       (CVE-2024-38540)
     - Revert "wifi: mac80211: fix RCU list iterations"
     - net: do not delay dst_entries_add() in dst_release() (CVE-2024-50036)
     - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in
       uvc_parse_format
     - filemap: Fix bounds checking in filemap_read() (CVE-2024-50272)
     - fs/proc: fix compile warning about variable 'vmcore_mmap_ops'
     - signal: restore the override_rlimit logic (CVE-2024-50271)
     - usb: musb: sunxi: Fix accessing an released usb phy (CVE-2024-50269)
     - usb: dwc3: fix fault at system suspend if device was already runtime
       suspended
     - usb: typec: fix potential out of bounds in
       ucsi_ccg_update_set_new_cam_cmd()
     - USB: serial: io_edgeport: fix use after free in debug printk
       (CVE-2024-50267)
     - USB: serial: qcserial: add support for Sierra Wireless EM86xx
     - USB: serial: option: add Fibocom FG132 0x0112 composition
     - USB: serial: option: add Quectel RG650V
     - irqchip/gic-v3: Force propagation of the active state with a read-back
     - ocfs2: remove entry once instead of null-ptr-dereference in
       ocfs2_xa_remove()
     - ucounts: fix counter leak in inc_rlimit_get_ucounts()
     - [x86] ASoC: amd: yc: fix internal mic on Xiaomi Book Pro 14 2022
     - net: sched: use RCU read-side critical section in taprio_dump()
       (CVE-2024-50126)
     - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer
     - vsock/virtio: Initialization of the dangling pointer occurring in
       vsk->trans
     - media: amphion: Fix VPU core alias name
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.118
     - Revert "Bluetooth: fix use-after-free in accessing skb after sending it"
     - Revert "Bluetooth: hci_sync: Fix overwriting request callback"
     - Revert "Bluetooth: af_bluetooth: Fix deadlock"
     - Revert "Bluetooth: hci_core: Fix possible buffer overflow"
     - Revert "Bluetooth: hci_conn: Consolidate code for aborting connections"
       (Closes: #1086447)
     - 9p: Avoid creating multiple slab caches with the same name
     - nvme: tcp: avoid race between queue_lock lock and destroy
     - block: Fix elevator_get_default() checking for NULL q->tag_set
     - HID: multitouch: Add support for B2402FVA track point
     - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad
     - nvme: disable CC.CRIME (NVME_CC_CRIME)
     - bpf: use kvzmalloc to allocate BPF verifier environment
     - crypto: api - Fix liveliness check in crypto_alg_tested
     - [arm*] crypto: marvell/cesa - Disable hash algorithms
     - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML
     - drm/vmwgfx: Limit display layout ioctl array size to
       VMWGFX_NUM_DISPLAY_UNITS
     - nvme-multipath: defer partition scanning (CVE-2024-53093)
     - [powerpc*] powernv: Free name on error in opal_event_init()
     - nvme: make keep-alive synchronous operation
     - bpf: Fix mismatched RCU unlock flavour in bpf_out_neigh_v6
     - fs: Fix uninitialized value issue in from_kuid and from_kgid
     - HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad
     - HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard
     - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition
     - md/raid10: improve code of mrdev in raid10_sync_request
     - io_uring: fix possible deadlock in io_register_iowq_max_workers()
       (CVE-2024-41080)
     - uprobes: encapsulate preparation of uprobe args buffer
     - uprobe: avoid out-of-bounds memory access of fetching args
       (CVE-2024-50067)
     - drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (CVE-2024-49991)
     - ext4: fix timer use-after-free on failed mount (CVE-2024-49960)
     - Bluetooth: L2CAP: Fix uaf in l2cap_connect (CVE-2024-49950)
     - mm: krealloc: Fix MTE false alarm in __do_krealloc
     - [x86] platform/x86: x86-android-tablets: Fix use after free on
       platform_device_register() errors (CVE-2024-49986)
     - fs/ntfs3: Fix general protection fault in run_is_mapped_full
       (CVE-2024-50243)
     - 9p: fix slab cache name creation for real
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.119
     - netlink: terminate outstanding dump on socket close
     - [arm64,armhf] drm/rockchip: vop: Fix a dereferenced before check warning
     - mptcp: error out earlier on disconnect
     - net/mlx5: fs, lock FTE when checking if active
     - net/mlx5e: kTLS, Fix incorrect page refcounting
     - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow
     - virtio/vsock: Fix accept_queue memory leak
     - Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS
     - Bluetooth: hci_core: Fix calling mgmt_device_connected
     - net/sched: cls_u32: replace int refcounts with proper refcounts
     - net: sched: cls_u32: Fix u32's systematic failure to free IDR entries for
       hnodes.
     - bonding: add ns target multicast address to slave device
     - [armel,armhf] 9419/1: mm: Fix kernel memory mapping for xip kernels
     - [x86] mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y
     - mm: fix NULL pointer dereference in alloc_pages_bulk_noprof
     - ocfs2: uncache inode which has failed entering the group
     - vdpa/mlx5: Fix PA offset with unaligned starting iotlb map
     - ima: fix buffer overrun in ima_eventdigest_init_common
     - [x86] KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID
       disabled
     - [x86] KVM: x86: Unconditionally set irr_pending when updating APICv state
     - [x86] KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind
       CONFIG_BROKEN
     - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint
     - ALSA: hda/realtek - Fixed Clevo platform headset Mic issue
     - ALSA: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10
     - ocfs2: fix UBSAN warning in ocfs2_verify_volume()
     - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
     - Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K"
     - mmc: sunxi-mmc: Fix A100 compatible description
     - drm/bridge: tc358768: Fix DSI command tx
     - drm/amd: Fix initialization mistake for NBIO 7.7.0
     - staging: vchiq_arm: Get the rid off struct vchiq_2835_state
     - staging: vchiq_arm: Use devm_kzalloc() for vchiq_arm_state allocation
     - fs/ntfs3: Additional check in ntfs_file_release (CVE-2024-50242)
     - Bluetooth: ISO: Fix not validating setsockopt user input (CVE-2024-35964)
     - lib/buildid: Fix build ID parsing logic
     - cxl/pci: fix error code in __cxl_hdm_decode_init()
     - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set
     - NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point
     - NFSD: Async COPY result needs to return a write verifier
     - NFSD: Limit the number of concurrent async COPY operations
       (CVE-2024-49974)
     - NFSD: Initialize struct nfsd4_copy earlier
     - NFSD: Never decrement pending_async_copies on error
     - mptcp: cope racing subflow creation in mptcp_rcv_space_adjust
     - mptcp: define more local variables sk
     - mptcp: add userspace_pm_lookup_addr_by_id helper
     - mptcp: update local address flags when setting it
     - mptcp: hold pm lock when deleting entry
     - mptcp: drop lookup_by_id in lookup_addr
     - mptcp: pm: use _rcu variant under rcu_read_lock
     - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-26954)
     - ksmbd: fix potencial out-of-bounds when buffer offset is invalid
       (CVE-2024-26952)
     - net: add copy_safe_from_sockptr() helper
     - nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies
     - fs/9p: fix uninitialized values during inode evict (CVE-2024-36923)
     - ipvs: properly dereference pe in ip_vs_add_service (CVE-2024-42322)
     - net/sched: taprio: extend minimum interval restriction to entire cycle too
       (CVE-2024-36244)
     - net: fec: remove .ndo_poll_controller to avoid deadlocks (CVE-2024-38553)
     - mm: revert "mm: shmem: fix data-race in shmem_getattr()"
     - mm: avoid unsafe VMA hook invocation when error arises on mmap hook
     - mm: unconditionally close VMAs on error
     - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling
     - mm: resolve faulty mmap_region() error path behaviour
     - drm/amd: check num of link levels when update pcie param (CVE-2023-52812)
     - char: xillybus: Prevent use-after-free due to race condition
       (CVE-2022-45888)
     - null_blk: Remove usage of the deprecated ida_simple_xx() API
     - null_blk: fix null-ptr-dereference while configuring 'power' and
       'submit_queues' (CVE-2024-36478)
     - null_blk: Fix return value of nullb_device_power_store()
     - parisc: fix a possible DMA corruption (CVE-2024-44949)
     - char: xillybus: Fix trivial bug with mutex
     - net: Make copy_safe_from_sockptr() match documentation
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 28
   * [x86] Revert "x86: Increase brk randomness entropy for 64-bit systems"
     (Closes: #1085762)

linux-signed-i386 (6.1.123+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.123-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.120
     - [x86] ASoC: Intel: bytcr_rt5640: Add support for non ACPI instantiated
       codec
     - [x86] ASoC: Intel: bytcr_rt5640: Add DMI quirk for Vexia Edu Atla 10
       tablet
     - [x86] ASoC: Intel: sst: Support LPE0F28 ACPI HID
     - wifi: iwlwifi: mvm: Use the sync timepoint API in suspend
     - mac80211: fix user-power when emulating chanctx
     - usb: add support for new USB device ID 0x17EF:0x3098 for the r8152 driver
     - ALSA: hda/realtek: Add subwoofer quirk for Infinix ZERO BOOK 13
     - bpf: fix filed access without lock
     - net: usb: qmi_wwan: add Quectel RG650V
     - soc: qcom: Add check devm_kasprintf() returned value
     - regulator: rk808: Add apply_bit for BUCK3 on RK809
     - [x86] platform/x86: dell-smbios-base: Extends support to Alienware
       products
     - [x86] platform/x86: dell-wmi-base: Handle META key Lock/Unlock events
     - tools/lib/thermal: Remove the thermal.h soft link when doing make clean
     - can: j1939: fix error in J1939 documentation.
     - [x86] platform/x86: thinkpad_acpi: Fix for ThinkPad's with ECFW showing
       incorrect fan speed
     - [x86] ASoC: amd: yc: Support dmic on another model of Lenovo Thinkpad E14
       Gen 6
     - [armhf] ASoC: stm: Prevent potential division by zero in
       stm32_sai_mclk_round_rate()
     - [armhf] ASoC: stm: Prevent potential division by zero in
       stm32_sai_get_clk_div()
     - drm: panel-orientation-quirks: Make Lenovo Yoga Tab 3 X90F DMI match less
       strict
     - proc/softirqs: replace seq_printf with seq_put_decimal_ull_width
     - ASoC: audio-graph-card2: Purge absent supplies for device tree nodes
     - ALSA: usb-audio: Fix Yamaha P-125 Quirk Entry
     - [armel,armhf] 9420/1: smp: Fix SMP for xip kernels
     - ipmr: Fix access to mfc_cache_list without lock held
     - closures: Change BUG_ON() to WARN_ON() (CVE-2024-42252)
     - net: fix crash when config small gso_max_size/gso_ipv4_max_size
       (CVE-2024-50258)
     - serial: sc16is7xx: fix invalid FIFO access with special register set
       (CVE-2024-44950)
     - cifs: Fix buffer overflow when parsing NFS reparse points (CVE-2024-49996)
     - fpga: bridge: add owner module and take its refcount (CVE-2024-36479)
     - fpga: manager: add owner module and take its refcount (CVE-2024-37021)
     - drm/amd/display: Add NULL check for function pointer in
       dcn32_set_output_transfer_func (CVE-2024-49909)
     - drm/amd/display: Check null-initialized variables (CVE-2024-49898)
     - Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue
     - Bluetooth: MGMT: Fix possible crash on mgmt_index_removed (CVE-2024-49951)
     - fbdev: efifb: Register sysfs groups through driver core (CVE-2024-49925)
     - mptcp: fix possible integer overflow in mptcp_reset_tout_timer
     - wifi: rtw89: avoid to add interface to list twice when SER
       (CVE-2024-49939)
     - drm/amd/display: Initialize denominators' default to 1 (CVE-2024-49899)
     - fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name
     - [x86] barrier: Do not serialize MSR accesses on AMD
     - [s390x] cio: Do not unregister the subchannel based on DNV
     - brd: defer automatic disk creation until module initialization succeeds
     - ext4: make 'abort' mount option handling standard
     - ext4: avoid remount errors with 'abort' mount option
     - [mips*] asm: fix warning when disabling MIPS_FP_SUPPORT
     - initramfs: avoid filename buffer overrun (CVE-2024-53142)
     - nvme-pci: fix freeing of the HMB descriptor table
     - [arm64] acpi/arm64: Adjust error handling procedure in
       gtdt_parse_timer_block()
     - cachefiles: Fix missing pos updates in cachefiles_ondemand_fd_write_iter()
     - netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING
     - block: fix bio_split_rw_at to take zone_write_granularity into account
     - [s390x] syscalls: Avoid creation of arch/arch/ directory
     - hfsplus: don't query the device logical block size multiple times
     - nvme-pci: reverse request order in nvme_queue_rqs
     - virtio_blk: reverse request order in virtio_queue_rqs
     - crypto: caam - Fix the pointer passed to caam_qi_shutdown()
     - firmware: google: Unregister driver_info on failure
     - EDAC/bluefield: Fix potential integer overflow
     - [x86] crypto: qat - remove faulty arbiter config reset
     - thermal: core: Initialize thermal zones before registering them
     - EDAC/fsl_ddr: Fix bad bit shift operations
     - crypto: pcrypt - Call crypto layer directly when padata_do_parallel()
       return -EBUSY
     - crypto: cavium - Fix the if condition to exit loop after timeout
     - crypto: hisilicon/qm - disable same error report before resetting
     - EDAC/igen6: Avoid segmentation fault on module unload
     - crypto: inside-secure - Fix the return value of
       safexcel_xcbcmac_cra_init()
     - doc: rcu: update printed dynticks counter bits
     - hwmon: (nct6775-core) Fix overflows seen when writing limit attributes
     - ACPI: CPPC: Fix _CPC register setting issue
     - crypto: caam - add error check to caam_rsa_set_priv_key_form
     - crypto: bcm - add error check in the ahash_hmac_init function
     - crypto: cavium - Fix an error handling path in cpt_ucode_load_fw()
     - tools/lib/thermal: Make more generic the command encoding function
     - thermal/lib: Fix memory leak on error in thermal_genl_auto()
     - time: Fix references to _msecs_to_jiffies() handling of values
     - seqlock/latch: Provide raw_read_seqcount_latch_retry()
     - clocksource/drivers:sp804: Make user selectable
     - clocksource/drivers/timer-ti-dm: Fix child node refcount handling
     - spi: spi-fsl-lpspi: downgrade log level for pio mode
     - spi: spi-fsl-lpspi: Use IRQF_NO_AUTOEN flag in request_irq()
     - drivers: soc: xilinx: add the missing kfree in xlnx_add_cb_for_suspend()
     - microblaze: Export xmb_manager functions
     - [arm64] dts: mt8195: Fix dtbs_check error for infracfg_ao node
     - soc: ti: smartreflex: Use IRQF_NO_AUTOEN flag in request_irq()
     - soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get()
     - mmc: mmc_spi: drop buggy snprintf()
     - tpm: fix signed/unsigned bug when checking event logs
     - [arm64] dts: mt8183: krane: Fix the address of eeprom at i2c4
     - [arm64] dts: mt8183: kukui: Fix the address of eeprom at i2c4
     - [arm64] dts: mediatek: mt8173-elm-hana: Add vdd-supply to second source
       trackpad
     - Revert "cgroup: Fix memory leak caused by missing cgroup_bpf_offline"
     - cgroup/bpf: only cgroup v2 can be attached by bpf programs
     - [arm64] dts: mt8183: fennel: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: burnet: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: cozmo: add i2c2's i2c-scl-internal-delay-ns
     - [arm64] dts: mt8183: Damu: add i2c2's i2c-scl-internal-delay-ns
     - pwm: imx27: Workaround of the pwm output bug when decrease the duty cycle
     - [armhf] dts: cubieboard4: Fix DCDC5 regulator constraints
     - pmdomain: ti-sci: Add missing of_node_put() for args.np
     - regmap: irq: Set lockdep class for hierarchical IRQ domains
     - [arm64] dts: mt8183: jacuzzi: Move panel under aux-bus
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Fix DP bridge supply names
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Add supplies for fixed
       regulators
     - [arm64] firmware: arm_scpi: Check the DVFS OPP count returned by the
       firmware
     - venus: venc: add handling for VIDIOC_ENCODER_CMD
     - media: venus: provide ctx queue lock for ioctl synchronization
     - media: atomisp: Add check for rgby_data memory allocation failure
     - [x86] platform/x86: panasonic-laptop: Return errno correctly in show
       callback
     - drm/mm: Mark drm_mm_interval_tree*() functions with __maybe_unused
     - [arm64,armhf] drm/vc4: hvs: Don't write gamma luts on 2711
     - [arm64,armhf] drm/vc4: hdmi: Avoid hang with debug registers when
       suspended
     - [arm64,armhf] drm/vc4: hvs: Fix dlist debug not resetting the next entry
       pointer
     - [arm64,armhf] drm/vc4: hvs: Remove incorrect limit from hvs_dlist debugfs
       function
     - [arm64,armhf] drm/vc4: hvs: Correct logic on stopping an HVS channel
     - wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()
     - drm/omap: Fix possible NULL dereference
     - drm/omap: Fix locking in omap_gem_new_dmabuf()
     - wifi: p54: Use IRQF_NO_AUTOEN flag in request_irq()
     - wifi: mwifiex: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/imx/dcss: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/imx/ipuv3: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/v3d: Address race-condition in MMU flush
     - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss1
     - wifi: ath10k: fix invalid VHT parameters in supported_vht_mcs_rate_nss2
     - dt-bindings: vendor-prefixes: Add NeoFidelity, Inc
     - ASoC: fsl_micfil: fix regmap_write_bits usage
     - ASoC: dt-bindings: mt6359: Update generic node name and dmic-mode
     - drm/bridge: anx7625: Drop EDID cache on bridge power off
     - libbpf: Fix output .symtab byte-order during linking
     - bpf: Fix the xdp_adjust_tail sample prog issue
     - libbpf: fix sym_is_subprog() logic for weak global subprogs
     - libbpf: never interpret subprogs in .text as entry programs
     - netdevsim: copy addresses for both in and out paths
     - drm/bridge: tc358767: Fix link properties discovery
     - wifi: mwifiex: Fix memcpy() field-spanning write warning in
       mwifiex_config_scan()
     - drm: fsl-dcu: enable PIXCLK on LS1021A
     - [arm64,armhf] drm/panfrost: Remove unused id_mask from struct
       panfrost_model
     - [arm64] bpf, arm64: Remove garbage frame for struct_ops trampoline
     - [arm64] drm/msm/adreno: Use IRQF_NO_AUTOEN flag in request_irq()
     - [arm64] drm/msm/gpu: Add devfreq tuning debugfs
     - [arm64] drm/msm/gpu: Bypass PM QoS constraint for idle clamp
     - [arm64] drm/msm/gpu: Check the status of registration to PM QoS
     - [arm64,armhf] drm/etnaviv: Request pages from DMA32 zone on
       addressing_limited
     - [arm64,armhf] drm/etnaviv: fix power register offset on GC300
     - [arm64,armhf] drm/etnaviv: hold GPU lock across perfmon sampling
     - wifi: wfx: Fix error handling in wfx_core_init()
     - [arm64] drm/msm/dpu: cast crtc_clk calculation to u64 in
       _dpu_core_perf_calc_clk()
     - netfilter: nf_tables: skip transaction if update object is not implemented
     - netfilter: nf_tables: must hold rcu read lock while iterating object type
       list
     - netlink: typographical error in nlmsg_type constants definition
     - bpf, sockmap: Several fixes to bpf_msg_push_data
     - bpf, sockmap: Several fixes to bpf_msg_pop_data
     - bpf, sockmap: Fix sk_msg_reset_curr
     - sock_diag: add module pointer to "struct sock_diag_handler"
     - sock_diag: allow concurrent operations
     - sock_diag: allow concurrent operation in sock_diag_rcv_msg()
     - net: use unrcu_pointer() helper
     - ipv6: release nexthop on device removal
     - net: rfkill: gpio: Add check for clk_enable()
     - ALSA: usx2y: Use snd_card_free_when_closed() at disconnection
     - ALSA: us122l: Use snd_card_free_when_closed() at disconnection
     - ALSA: caiaq: Use snd_card_free_when_closed() at disconnection
     - ALSA: 6fire: Release resources at card release
     - Bluetooth: fix use-after-free in device_for_each_child()
     - netpoll: Use rcu_access_pointer() in netpoll_poll_lock
     - wireguard: selftests: load nf_conntrack if not present
     - bpf: fix recursive lock when verdict program return SK_PASS
     - unicode: Fix utf8_load() error path
     - trace/trace_event_perf: remove duplicate samples on the first tracepoint
       event
     - pinctrl: zynqmp: drop excess struct member description
     - [powerpc*] vdso: Flag VDSO64 entry points as functions
     - mfd: tps65010: Use IRQF_NO_AUTOEN flag in request_irq() to fix race
     - mfd: da9052-spi: Change read-mask to write-mask
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for USB Type-C device
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for TMU device
     - mfd: intel_soc_pmic_bxtwc: Use IRQ domain for PMIC devices
     - cpufreq: loongson2: Unregister platform_driver on failure
     - [powerpc*] fadump: Refactor and prepare fadump_cma_init for late init
     - [powerpc*] fadump: Move fadump_cma_init to setup_arch() after
       initmem_init()
     - memory: renesas-rpc-if: Improve Runtime PM handling
     - memory: renesas-rpc-if: Pass device instead of rpcif to rpcif_*()
     - memory: renesas-rpc-if: Remove Runtime PM wrappers
     - mtd: hyperbus: rpc-if: Convert to platform remove callback returning void
     - mtd: hyperbus: rpc-if: Add missing MODULE_DEVICE_TABLE
     - mtd: rawnand: atmel: Fix possible memory leak
     - [powerpc*] mm/fault: Fix kfence page fault reporting
     - [powerpc*] pseries: Fix dtl_access_lock to be a rw_semaphore
     - cpufreq: CPPC: Fix possible null-ptr-deref for cpufreq_cpu_get_raw()
     - cpufreq: CPPC: Fix possible null-ptr-deref for cppc_get_cpu_cost()
     - [arm64] RDMA/hns: Fix an AEQE overflow error caused by untimely update of
       eq_db_ci
     - [arm64] RDMA/hns: Add clear_hem return value to log
     - [arm64] RDMA/hns: Use dev_* printings in hem code instead of ibdev_*
     - [arm64] RDMA/hns: Remove unnecessary QP type checks
     - [arm64] RDMA/hns: Fix cpu stuck caused by printings during reset
     - RDMA/bnxt_re: Check cqe flags to know imm_data vs inv_irkey
     - clk: sunxi-ng: d1: Fix PLL_AUDIO0 preset
     - clk: renesas: rzg2l: Fix FOUTPOSTDIV clk
     - clk: imx: lpcg-scu: SW workaround for errata (e10858)
     - clk: imx: fracn-gppll: correct PLL initialization flow
     - clk: imx: fracn-gppll: fix pll power up
     - clk: imx: clk-scu: fix clk enable state save and restore
     - [amd64] iommu/vt-d: Fix checks and print in dmar_fault_dump_ptes()
     - [amd64] iommu/vt-d: Fix checks and print in pgtable_walk()
     - mfd: rt5033: Fix missing regmap_del_irq_chip()
     - fs/proc/kcore.c: fix coccinelle reported ERROR instances
     - scsi: bfa: Fix use-after-free in bfad_im_module_exit()
     - scsi: fusion: Remove unused variable 'rc'
     - scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb()
     - scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb()
     - [arm64] RDMA/hns: Fix out-of-order issue of requester when setting FENCE
     - [arm64] RDMA/hns: Fix NULL pointer derefernce in hns_roce_map_mr_sg()
     - cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_cost()
     - cpufreq: CPPC: Fix wrong return value in cppc_get_cpu_power()
     - ocfs2: fix uninitialized value in ocfs2_file_read_iter()
     - dax: delete a stale directory pmem
     - KVM: PPC: Book3S HV: Stop using vc->dpdes for nested KVM guests
     - KVM: PPC: Book3S HV: Avoid returning to nested hypervisor on pending
       doorbells
     - [powerpc*] sstep: make emulate_vsx_load and emulate_vsx_store static
     - [powerpc*] kexec: Fix return of uninitialized variable
     - fbdev/sh7760fb: Alloc DMA memory from hardware device
     - fbdev: sh7760fb: Fix a possible memory leak in sh7760fb_alloc_mem()
     - clk: clk-apple-nco: Add NULL check in applnco_probe
     - dt-bindings: clock: axi-clkgen: include AXI clk
     - clk: clk-axi-clkgen: make sure to enable the AXI bus clock
     - pinctrl: k210: Undef K210_PC_DEFAULT
     - smb: cached directories can be more than root file handle
     - mailbox: arm_mhuv2: clean up loop in get_irq_chan_comb()
     - perf cs-etm: Don't flush when packet_queue fills up
     - PCI: Fix reset_method_store() memory leak
     - perf stat: Close cork_fd when create_perf_stat_counter() failed
     - perf stat: Fix affinity memory leaks on error path
     - f2fs: compress: fix inconsistent update of i_blocks in
       release_compress_blocks and reserve_compress_blocks
     - f2fs: fix to account dirty data in __get_secs_required()
     - perf probe: Fix libdw memory leak
     - perf probe: Correct demangled symbols in C++ program
     - PCI: cpqphp: Use PCI_POSSIBLE_ERROR() to check config reads
     - PCI: cpqphp: Fix PCIBIOS_* return value confusion
     - perf ftrace latency: Fix unit on histogram first entry when using
       --use-nsec
     - f2fs: fix the wrong f2fs_bug_on condition in f2fs_do_replace_block
     - f2fs: remove struct segment_allocation default_salloc_ops
     - f2fs: open code allocate_segment_by_default
     - f2fs: remove the unused flush argument to change_curseg
     - f2fs: check curseg->inited before write_sum_page in change_curseg
     - f2fs: fix to avoid use GC_AT when setting gc_mode as GC_URGENT_LOW or
       GC_URGENT_MID
     - f2fs: fix to avoid forcing direct write to use buffered IO on inline_data
       inode
     - perf trace: avoid garbage when not printing a trace event's arguments
     - svcrdma: Address an integer overflow
     - perf trace: Do not lose last events in a race
     - perf trace: Avoid garbage when not printing a syscall's arguments
     - remoteproc: qcom: q6v5: Use _clk_get_optional for aggre2_clk
     - remoteproc: qcom: pas: add minidump_id to SM8350 resources
     - rpmsg: glink: Fix GLINK command prefix
     - rpmsg: glink: use only lower 16-bits of param2 for CMD_OPEN name length
     - remoteproc: qcom_q6v5_mss: Re-order writes to the IMEM region
     - NFSD: Prevent NULL dereference in nfsd4_process_cb_update()
     - NFSD: Cap the number of bytes copied by nfs4_reset_recoverydir()
     - sunrpc: simplify two-level sysctl registration for svcrdma_parm_table
     - svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init()
     - NFSD: Fix nfsd4_shutdown_copy()
     - hwmon: (tps23861) Fix reporting of negative temperatures
     - vdpa/mlx5: Fix suboptimal range on iotlb iteration
     - vfio/pci: Properly hide first-in-list PCIe extended capability
     - fs_parser: update mount_api doc to match function signature
     - power: supply: core: Remove might_sleep() from power_supply_put()
     - power: supply: bq27xxx: Fix registers of bq27426
     - net: usb: lan78xx: Fix double free issue with interrupt buffer allocation
     - net: usb: lan78xx: Fix memory leak on device unplug by freeing PHY device
     - tg3: Set coherent DMA mask bits to 31 for BCM57766 chipsets
     - net: usb: lan78xx: Fix refcounting and autosuspend on invalid WoL
       configuration
     - [s390x] iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()
     - net/ipv6: delete temporary address if mngtmpaddr is removed or unmanaged
     - net: mdio-ipq4019: add missing error check
     - marvell: pxa168_eth: fix call balance of pep->clk handling routines
     - net: stmmac: dwmac-socfpga: Set RX watchdog interrupt as broken
     - spi: atmel-quadspi: Fix register name in verbose logging function
     - net: hsr: fix hsr_init_sk() vs network/transport headers.
     - bnxt_en: Reserve rings after PCIe AER recovery if NIC interface is down
     - Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync
     - crypto: api - Add crypto_tfm_get
     - crypto: api - Add crypto_clone_tfm
     - llc: Improve setsockopt() handling of malformed user input
     - rxrpc: Improve setsockopt() handling of malformed user input
     - tcp: Fix use-after-free of nreq in reqsk_timer_handler().
     - ip6mr: fix tables suspicious RCU usage
     - ipmr: fix tables suspicious RCU usage
     - iio: light: al3010: Fix an error handling path in al3010_probe()
     - usb: using mutex lock and supporting O_NONBLOCK flag in iowarrior_read()
     - usb: yurex: make waiting on yurex_write interruptible
     - USB: chaoskey: fail open after removal
     - USB: chaoskey: Fix possible deadlock chaoskey_list_lock
     - misc: apds990x: Fix missing pm_runtime_disable()
     - counter: stm32-timer-cnt: Add check for clk_enable()
     - counter: ti-ecap-capture: Add check for clk_enable()
     - ALSA: hda/realtek: Update ALC256 depop procedure
     - apparmor: fix 'Do simple duplicate message elimination'
     - [x86] ASoC: amd: yc: Fix for enabling DMIC on acp6x via _DSD entry
     - mailbox: mtk-cmdq: Move devm_mbox_controller_register() after
       devm_pm_runtime_enable()
     - fs/ntfs3: Fixed overflow check in mi_enum_attr() (CVE-2024-27407)
     - ntfs3: Add bounds checking to mi_enum_attr() (CVE-2024-50248)
     - scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata
       paths (CVE-2024-49891)
     - xfs: add bounds checking to xlog_recover_process_data (CVE-2024-41014)
     - xen: Fix the issue of resource not being properly released in
       xenbus_dev_probe()
     - ALSA: usb-audio: Fix out of bounds reads when finding clock sources
     - usb: ehci-spear: fix call balance of sehci clk handling routines
     - media: aspeed: Fix memory overwrite if timing is 1600x900 (CVE-2023-52916)
     - wifi: iwlwifi: mvm: avoid NULL pointer dereference (CVE-2024-49929)
     - drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in
       dcn30_init_hw (CVE-2024-49917)
     - drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw
       (CVE-2024-49915)
     - drm/amd/display: Add NULL check for function pointer in
       dcn20_set_output_transfer_func (CVE-2024-49911)
     - drm/amd/display: Check phantom_stream before it is used (CVE-2024-49897)
     - rcu-tasks: Fix access non-existent percpu rtpcp variable in
       rcu_tasks_need_gpcb()
     - btrfs: qgroup: fix qgroup prealloc rsv leak in subvolume operations
       (CVE-2024-35956)
     - [x86] perf/x86/intel: Hide Topdown metrics events if the feature is not
       enumerated
     - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox
       devices
     - Revert "arm64: dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as
       disabled"
     - [arm64] dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled
     - mm/slab: decouple ARCH_KMALLOC_MINALIGN from ARCH_DMA_MINALIGN
     - [powerpc*] move the ARCH_DMA_MINALIGN definition to asm/cache.h
     - dma: allow dma_get_cache_alignment() to be overridden by the arch code
     - [x86] ASoC: Intel: sst: Fix used of uninitialized ctx to log an error
     - soc: qcom: socinfo: fix revision check in qcom_socinfo_probe()
     - ext4: supress data-race warnings in ext4_free_inodes_{count,set}()
     - ext4: fix FS_IOC_GETFSMAP handling
     - jfs: xattr: check invalid xattr size more strictly
     - [x86] ASoC: amd: yc: Add a quirk for microfone on Lenovo ThinkPad P14s Gen
       5 21MES00B00
     - ASoC: codecs: Fix atomicity violation in snd_soc_component_get_drvdata()
     - [x86] perf/x86/intel/pt: Fix buffer full but size is 0 case
     - crypto: x86/aegis128 - access 32-bit arguments as 32-bit
     - [x86] KVM: x86/mmu: Skip the "try unsync" path iff the old SPTE was a leaf
       SPTE
     - [powerpc*] pseries: Fix KVM guest detection for disabling hardlockup
       detector
     - [arm64] KVM: arm64: vgic-v3: Sanitise guest writes to GICR_INVLPIR
     - [arm64] KVM: arm64: Ignore PMCNTENSET_EL0 while checking for overflow
       status
     - PCI: Fix use-after-free of slot->bus on hot remove
     - fsnotify: fix sending inotify event with unexpected filename
     - comedi: Flush partial mappings in error case
     - apparmor: test: Fix memory leak for aa_unpack_strdup()
     - tty: ldsic: fix tty_ldisc_autoload sysctl's proc_handler
     - locking/lockdep: Avoid creating new name string literals in
       lockdep_set_subclass()
     - pinctrl: qcom: spmi: fix debugfs drive strength
     - dt-bindings: iio: dac: ad3552r: fix maximum spi speed
     - exfat: fix uninit-value in __exfat_get_dentry_set
     - Bluetooth: Fix type of len in rfcomm_sock_getsockopt{,_old}()
     - usb: xhci: Fix TD invalidation under pending Set TR Dequeue
     - driver core: bus: Fix double free in driver API bus_register()
       (CVE-2024-50055)
     - wifi: rtlwifi: Drastically reduce the attempts to read efuse in case of
       failures
     - wifi: brcmfmac: release 'root' node in all execution paths
     - Revert "usb: gadget: composite: fix OS descriptors w_value logic"
     - serial: sh-sci: Clean sci_ports[0] after at earlycon exit
     - Revert "serial: sh-sci: Clean sci_ports[0] after at earlycon exit"
     - gpio: exar: set value when external pull-up or pull-down is present
     - netfilter: ipset: add missing range check in bitmap_ip_uadt
       (CVE-2024-53141)
     - spi: Fix acpi deferred irq probe
     - mtd: spi-nor: core: replace dummy buswidth from addr to data
     - cpufreq: mediatek-hw: Fix wrong return value in
       mtk_cpufreq_get_cpu_power()
     - platform/chrome: cros_ec_typec: fix missing fwnode reference decrement
     - ubi: wl: Put source PEB into correct list if trying locking LEB failed
     - dt-bindings: serial: rs485: Fix rs485-rts-delay property
     - serial: 8250_fintek: Add support for F81216E
     - serial: 8250: omap: Move pm_runtime_get_sync
     - ublk: fix ublk_ch_mmap() for 64K page size
     - [arm64] tls: Fix context-switching of tpidrro_el0 when kpti is enabled
     - block: fix ordering between checking BLK_MQ_S_STOPPED request adding
     - HID: wacom: Interpret tilt data from Intuos Pro BT as signed values
     - media: wl128x: Fix atomicity violation in fmc_send_cmd()
     - soc: fsl: rcpm: fix missing of_node_put() in copy_ippdexpcr1_setting()
     - media: v4l2-core: v4l2-dv-timings: check cvt/gtf result
     - ALSA: pcm: Add sanity NULL check for the default mmap fault handler
     - ALSA: hda/realtek: Update ALC225 depop procedure
     - ALSA: hda/realtek: Set PCBeep to default value for ALC274
     - ALSA: hda/realtek: Fix Internal Speaker and Mic boost of Infinix Y4 Max
     - ALSA: hda/realtek: Apply quirk for Medion E15433
     - smb3: request handle caching when caching directories
     - usb: musb: Fix hardware lockup on first Rx endpoint request
     - usb: dwc3: gadget: Fix checking for number of TRBs left
     - usb: dwc3: gadget: Fix looping of queued SG entries
     - ublk: fix error code for unsupported command
     - lib: string_helpers: silence snprintf() output truncation warning
     - ipc: fix memleak if msg_init_ns failed in create_ipc_ns
     - NFSD: Prevent a potential integer overflow
     - SUNRPC: make sure cache entry active before cache_show
     - NFSv4.0: Fix a use-after-free problem in the asynchronous open()
     - rtc: st-lpc: Use IRQF_NO_AUTOEN flag in request_irq()
     - rtc: abx80x: Fix WDT bit position of the status register
     - rtc: check if __rtc_read_time was successful in rtc_timer_do_work()
     - ubi: fastmap: wl: Schedule fm_work if wear-leveling pool is empty
     - ubifs: Correct the total block count by deducting journal reservation
     - ubi: fastmap: Fix duplicate slab cache names while attaching
     - ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit
     - jffs2: fix use of uninitialized variable
     - rtc: rzn1: fix BCD to rtc_time conversion errors
     - block: return unsigned int from bdev_io_min
     - 9p/xen: fix init sequence
     - 9p/xen: fix release of IRQ
     - [arm64] perf/arm-smmuv3: Fix lockdep assert in ->event_init()
     - [arm64] perf/arm-cmn: Ensure port and device id bits are set properly
     - rtc: ab-eoz9: don't fail temperature reads on undervoltage notification
     - modpost: remove incorrect code in do_eisa_entry()
     - nfs: ignore SB_RDONLY when mounting nfs
     - sunrpc: clear XPRT_SOCK_UPD_TIMEOUT when reset transport
     - xfs: remove unknown compat feature check in superblock write validation
     - quota: flush quota_release_work upon quota writeback
     - btrfs: don't loop for nowait writes when checking for cross references
     - btrfs: add might_sleep() annotations
     - btrfs: add a sanity check for btrfs root in btrfs_search_slot()
     - btrfs: ref-verify: fix use-after-free after invalid ref action
     - [arm64] dts: allwinner: pinephone: Add mount matrix to accelerometer
     - [arm64] dts: freescale: imx8mm-verdin: Fix SD regulator startup delay
     - media: amphion: Set video drvdata before register video device
     - media: imx-jpeg: Set video drvdata before register video device
     - media: i2c: dw9768: Fix pm_runtime_set_suspended() with runtime pm enabled
     - [arm64] dts: freescale: imx8mp-verdin: Fix SD regulator startup delay
     - media: i2c: tc358743: Fix crash in the probe error path when using polling
     - media: imx-jpeg: Ensure power suppliers be suspended before detach them
     - media: ts2020: fix null-ptr-deref in ts2020_probe()
     - media: platform: exynos4-is: Fix an OF node reference leak in
       fimc_md_is_isp_available
     - media: amphion: Fix pm_runtime_set_suspended() with runtime pm enabled
     - media: venus: Fix pm_runtime_set_suspended() with runtime pm enabled
     - media: gspca: ov534-ov772x: Fix off-by-one error in set_frame_rate()
     - media: platform: allegro-dvt: Fix possible memory leak in
       allocate_buffers_internal()
     - media: uvcvideo: Stop stream during unregister
     - media: uvcvideo: Require entities to have a non-zero unique ID
     - ovl: Filter invalid inodes with missing lookup function
     - maple_tree: refine mas_store_root() on storing NULL
     - ftrace: Fix regression with module command in stack_trace_filter
     - vmstat: call fold_vm_zone_numa_events() before show per zone NUMA event
     - [arm64,armhf] iommu/io-pgtable-arm: Fix stage-2 map/unmap for concatenated
       tables
     - leds: lp55xx: Remove redundant test for invalid channel number
     - clk: qcom: gcc-qcs404: fix initial rate of GPLL3
     - ad7780: fix division by zero in ad7780_write_raw()
     - [armel,armhf] 9429/1: ioremap: Sync PGDs for VMALLOC shadow
     - [s390x] entry: Mark IRQ entries to fix stack depot warnings
     - [armel,armhf] 9430/1: entry: Do a dummy read from VMAP shadow
     - [armel,armhf] 9431/1: mm: Pair atomic_set_release() with _read_acquire()
     - ceph: extract entity name from device id
     - util_macros.h: fix/rework find_closest() macros
     - scsi: ufs: exynos: Fix hibern8 notify callbacks
     - i3c: master: svc: Fix pm_runtime_set_suspended() with runtime pm enabled
     - i3c: master: Fix miss free init_dyn_addr at i3c_master_put_i3c_addrs()
     - PCI: keystone: Set mode as Root Complex for "ti,keystone-pcie" compatible
     - PCI: keystone: Add link up check to ks_pcie_other_map_bus()
     - fs/proc/kcore.c: Clear ret value in read_kcore_iter after successful
       iov_iter_zero
     - thermal: int3400: Fix reading of current_uuid for active policy
     - ovl: properly handle large files in ovl_security_fileattr
     - dm thin: Add missing destroy_work_on_stack()
     - PCI: rockchip-ep: Fix address translation unit programming
     - nfsd: make sure exp active before svc_export_show
     - nfsd: fix nfs4_openowner leak when concurrent nfsd4_open occur
     - iio: Fix fwnode_handle in __fwnode_iio_channel_get_by_name()
     - iio: adc: ad7923: Fix buffer overflow for tx_buf and ring_xfer
     - [powerpc*] Fix stack protector Kconfig test for clang
     - [powerpc*] Adjust adding stack protector flags to KBUILD_CLAGS for clang
     - btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in
       walk_down_proc()
     - drm/sti: avoid potential dereference of error pointers in
       sti_hqvdp_atomic_check
     - drm/sti: avoid potential dereference of error pointers in
       sti_gdp_atomic_check
     - drm/sti: avoid potential dereference of error pointers
     - [arm64,armhf] drm/etnaviv: flush shader L1 cache after user commandstream
     - drm/amd/pm: update current_socclk and current_uclk in gpu_metrics on smu
       v13.0.7
     - iTCO_wdt: mask NMI_NOW bit for update_no_reboot_bit() call
     - watchdog: apple: Actually flush writes after requesting watchdog restart
     - watchdog: mediatek: Make sure system reset gets asserted in
       mtk_wdt_restart()
     - can: gs_usb: remove leading space from goto labels
     - can: gs_usb: gs_usb_probe(): align block comment
     - can: gs_usb: uniformly use "parent" as variable name for struct gs_usb
     - can: gs_usb: add VID/PID for Xylanta SAINT3 product family
     - can: gs_usb: add usb endpoint address detection at driver probe step
     - can: c_can: c_can_handle_bus_err(): update statistics if skb allocation
       fails
     - can: sun4i_can: sun4i_can_err(): call can_change_state() even if cf is
       NULL
     - can: hi311x: hi3110_can_ist(): fix potential use-after-free
     - can: m_can: m_can_handle_lec_err(): fix {rx,tx}_errors statistics
     - can: ifi_canfd: ifi_canfd_handle_lec_err(): fix {rx,tx}_errors statistics
     - can: hi311x: hi3110_can_ist(): fix {rx,tx}_errors statistics
     - can: sja1000: sja1000_err(): fix {rx,tx}_errors statistics
     - can: sun4i_can: sun4i_can_err(): fix {rx,tx}_errors statistics
     - can: ems_usb: ems_usb_rx_err(): fix {rx,tx}_errors statistics
     - ipvs: fix UB due to uninitialized stack access in ip_vs_protocol_init()
     - netfilter: x_tables: fix LED ID check in led_tg_check()
     - netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level
     - ptp: convert remaining drivers to adjfine interface
     - ptp: Add error handling for adjfine callback in ptp_clock_adjtime
     - net/sched: tbf: correct backlog statistic for GSO packets
     - net: hsr: avoid potential out-of-bound access in fill_frame_info()
     - can: j1939: j1939_session_new(): fix skb reference counting
     - net-timestamp: make sk_tskey more predictable in error path
     - net/ipv6: release expired exception dst cached in socket
     - dccp: Fix memory leak in dccp_feat_change_recv
     - tipc: Fix use-after-free of kernel socket in cleanup_bearer().
     - net/smc: fix LGR and link use-after-free issue
     - net/qed: allow old cards not supporting "num_images" to work
     - ixgbevf: stop attempting IPSEC offload on Mailbox API 1.5
     - ixgbe: downgrade logging of unsupported VF API version to debug
     - igb: Fix potential invalid memory access in igb_init_module()
     - net: sched: fix erspan_opt settings in cls_flower
     - netfilter: ipset: Hold module reference while requesting a module
     - netfilter: nft_set_hash: skip duplicated elements pending gc run
     - ethtool: Fix wrong mod state in case of verbose and no_mask bitset
     - geneve: do not assume mac header is set in geneve_xmit_skb()
     - net/mlx5e: Remove workaround to avoid syndrome for internal port
     - [arm64] KVM: arm64: Change kvm_handle_mmio_return() return polarity
     - [arm64] KVM: arm64: Don't retire aborted MMIO instruction
     - gpio: grgpio: use a helper variable to store the address of ofdev->dev
     - gpio: grgpio: Add NULL check in grgpio_probe
     - serial: amba-pl011: Use port lock wrappers
     - serial: amba-pl011: Fix RX stall when DMA is used
     - usb: dwc3: gadget: Rewrite endpoint allocation flow
     - usb: dwc3: ep0: Don't reset resource alloc flag (including ep0)
     - usb: dwc3: ep0: Don't clear ep0 DWC3_EP_TRANSFER_STARTED
     - [powerpc*] vdso: Skip objtool from running on VDSO files
     - [powerpc*] vdso: Remove unused '-s' flag from ASFLAGS
     - [powerpc*] vdso: Improve linker flags
     - [powerpc*] vdso: Remove an unsupported flag from vgettimeofday-32.o with
       clang
     - [powerpc*] vdso: Include CLANG_FLAGS explicitly in ldflags-y
     - [powerpc*] vdso: Refactor CFLAGS for CVDSO build
     - [powerpc*] vdso: Drop -mstack-protector-guard flags in 32-bit files with
       clang
     - ntp: Remove invalid cast in time offset math
     - driver core: fw_devlink: Improve logs for cycle detection
     - driver core: Add FWLINK_FLAG_IGNORE to completely ignore a fwnode link
     - driver core: fw_devlink: Stop trying to optimize cycle detection logic
     - i3c: Make i3c_master_unregister() return void
     - i3c: master: add enable(disable) hot join in sys entry
     - i3c: master: svc: add hot join support
     - i3c: master: fix kernel-doc check warning
     - i3c: master: support to adjust first broadcast address speed
     - i3c: master: svc: use slow speed for first broadcast address
     - i3c: master: svc: Modify enabled_events bit 7:0 to act as IBI enable
       counter
     - i3c: master: Replace hard code 2 with macro I3C_ADDR_SLOT_STATUS_BITS
     - i3c: master: Extend address status bit to 4 and add
       I3C_ADDR_SLOT_EXT_DESIRED
     - i3c: master: Fix dynamic address leak when 'assigned-address' is present
     - PCI: endpoint: Use a separate lock for protecting epc->pci_epf list
     - PCI: endpoint: Clear secondary (not primary) EPC in pci_epc_remove_epf()
     - device property: Constify device child node APIs
     - device property: Add cleanup.h based fwnode_handle_put() scope based
       cleanup.
     - device property: Introduce device_for_each_child_node_scoped()
     - leds: flash: mt6360: Fix device_for_each_child_node() refcounting in error
       paths
     - drm/bridge: it6505: update usleep_range for RC circuit charge time
     - drm/bridge: it6505: Fix inverted reset polarity
     - xsk: always clear DMA mapping information when unmapping the pool
     - bpftool: Remove asserts from JIT disassembler
     - bpftool: fix potential NULL pointer dereferencing in prog_dump()
     - drm/sti: Add __iomem for mixer_dbg_mxn's parameter
     - tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg
     - ALSA: usb-audio: Notify xrun for low-latency mode
     - tools: Override makefile ARCH variable if defined, but empty
     - spi: mpc52xx: Add cancel_work_sync before module remove
     - scsi: scsi_debug: Fix hrtimer support for ndelay
     - [arm64] drm/v3d: Enable Performance Counters before clearing them
     - ocfs2: free inode when ocfs2_get_init_inode() fails
     - scatterlist: fix incorrect func name in kernel-doc
     - iio: magnetometer: yas530: use signed integer type for clamp limits
     - bpf: Handle BPF_EXIST and BPF_NOEXIST for LPM trie
     - bpf: Remove unnecessary kfree(im_node) in lpm_trie_update_elem
     - bpf: Handle in-place update for full LPM trie correctly
     - bpf: Fix exact match conditions in trie_get_next_key()
     - mm: page_alloc: move mlocked flag clearance into free_pages_prepare()
       (CVE-2024-53105)
     - HID: wacom: fix when get product name maybe null pointer
     - ksmbd: fix Out-of-Bounds Read in ksmbd_vfs_stream_read
     - ksmbd: fix Out-of-Bounds Write in ksmbd_vfs_stream_write
     - watchdog: rti: of: honor timeout-sec property
     - can: dev: can_set_termination(): allow sleeping GPIOs
     - can: mcp251xfd: mcp251xfd_get_tef_len(): work around erratum DS80000789E
       6.
     - tracing: Fix cmp_entries_dup() to respect sort() comparison rules
     - [arm64] Ensure bits ASID[15:8] are masked out when the kernel uses 8-bit
       ASIDs
     - [arm64] ptrace: fix partial SETREGSET for NT_ARM_TAGGED_ADDR_CTRL
     - ALSA: usb-audio: add mixer mapping for Corsair HS80
     - ALSA: hda/realtek: Enable mute and micmute LED on HP ProBook 430 G8
     - ALSA: hda/realtek: Add support for Samsung Galaxy Book3 360 (NP730QFG)
     - scsi: qla2xxx: Fix abort in bsg timeout
     - scsi: qla2xxx: Fix NVMe and NPIV connect issue
     - scsi: qla2xxx: Supported speed displayed incorrectly for VPorts
     - scsi: qla2xxx: Fix use after free on unload
     - scsi: qla2xxx: Remove check req_sg_cnt should be equal to rsp_sg_cnt
     - scsi: ufs: core: sysfs: Prevent div by zero
     - scsi: ufs: core: Add missing post notify for power mode change
     - nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()
     - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again
     - drm/dp_mst: Fix MST sideband message body length check
     - drm/dp_mst: Verify request type in the corresponding down message reply
     - drm/dp_mst: Fix resetting msg rx state after topology removal
     - drm/amdgpu/hdp5.2: do a posting read when flushing HDP
     - modpost: Add .irqentry.text to OTHER_SECTIONS
     - bpf: fix OOB devmap writes when deleting elements
     - dma-buf: fix dma_fence_array_signaled v4
     - dma-fence: Fix reference leak on fence merge failure path
     - dma-fence: Use kernel's sort for merging fences
     - xsk: fix OOB map writes when deleting elements
     - regmap: detach regmap from dev on regmap_exit
     - mmc: sdhci-pci: Add DMI quirk for missing CD GPIO on Vexia Edu Atla 10
       tablet
     - mmc: core: Further prevent card detect during shutdown
     - ocfs2: update seq_file index in ocfs2_dlm_seq_next
     - lib: stackinit: hide never-taken branch from compiler
     - [arm64] iommu/arm-smmu: Defer probe of clients after smmu device bound
     - epoll: annotate racy check
     - [s390x] cpum_sf: Handle CPU hotplug remove during sampling
     - btrfs: avoid unnecessary device path update for the same device
     - btrfs: do not clear read-only when adding sprout device
     - [x86] perf/x86/amd: Warn only on new bits set
     - media: uvcvideo: Add a quirk for the Kaiweets KTI-W02 infrared camera
     - media: cx231xx: Add support for Dexatek USB Video Grabber 1d19:6108
     - mmc: core: Add SD card quirk for broken poweroff notification
     - soc: imx8m: Probe the SoC driver as platform driver
     - HID: magicmouse: Apple Magic Trackpad 2 USB-C driver support
     - [arm64,armhf] drm/vc4: hdmi: Avoid log spam for audio start failure
     - [arm64,armhf] drm/vc4: hvs: Set AXI panic modes for the HVS
     - drm: panel-orientation-quirks: Add quirk for AYA NEO 2 model
     - drm: panel-orientation-quirks: Add quirk for AYA NEO Founder edition
     - drm: panel-orientation-quirks: Add quirk for AYA NEO GEEK
     - drm/bridge: it6505: Enable module autoloading
     - drm/mcde: Enable module autoloading
     - drm/radeon/r600_cs: Fix possible int overflow in r600_packet3_check()
     - drm/display: Fix building with GCC 15
     - r8169: don't apply UDP padding quirk on RTL8126A
     - net: fec_mpc52xx_phy: Use %pa to format resource_size_t
     - net: ethernet: fs_enet: Use %pa to format resource_size_t
     - net/sched: cbs: Fix integer overflow in cbs_set_port_rate()
     - af_packet: avoid erroring out after sock_init_data() in packet_create()
     - Bluetooth: L2CAP: do not leave dangling sk pointer on error in
       l2cap_sock_create()
     - Bluetooth: RFCOMM: avoid leaving dangling sk pointer in
       rfcomm_sock_alloc()
     - net: af_can: do not leave a dangling sk pointer in can_create()
     - net: ieee802154: do not leave a dangling sk pointer in ieee802154_create()
     - net: inet: do not leave a dangling sk pointer in inet_create()
     - net: inet6: do not leave a dangling sk pointer in inet6_create()
     - wifi: ath5k: add PCI ID for SX76X
     - wifi: ath5k: add PCI ID for Arcadyan devices
     - drm/panel: simple: Add Microchip AC69T88A LVDS Display panel
     - net: sfp: change quirks for Alcatel Lucent G-010S-P
     - drm/sched: memset() 'job' in drm_sched_job_init()
     - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts for vega20_ih
     - drm/amdgpu: Dereference the ATCS ACPI buffer
     - drm/amdgpu: refine error handling in amdgpu_ttm_tt_pin_userptr
     - dma-debug: fix a possible deadlock on radix_lock
     - jfs: array-index-out-of-bounds fix in dtReadFirst
     - jfs: fix shift-out-of-bounds in dbSplit
     - jfs: fix array-index-out-of-bounds in jfs_readdir
     - jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree
     - drm/amdgpu: skip amdgpu_device_cache_pci_state under sriov
     - ALSA: usb-audio: Make mic volume workarounds globally applicable
     - drm/amdgpu: set the right AMDGPU sg segment limitation
     - wifi: ipw2x00: libipw_rx_any(): fix bad alignment
     - wifi: brcmfmac: Fix oops due to NULL pointer dereference in
       brcmf_sdiod_sglist_rw()
     - dsa: qca8k: Use nested lock to avoid splat
     - Bluetooth: btusb: Add RTL8852BE device 0489:e123 to device tables
     - Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet
     - ASoC: hdmi-codec: reorder channel allocation list
     - rocker: fix link status detection in rocker_carrier_init()
     - net/neighbor: clear error in case strict check is not set
     - netpoll: Use rcu_access_pointer() in __netpoll_setup
     - pinctrl: freescale: fix COMPILE_TEST error with PINCTRL_IMX_SCU
     - tracing/ftrace: disable preemption in syscall probe
     - tracing: Use atomic64_inc_return() in trace_clock_counter()
     - tools/rtla: fix collision with glibc sched_attr/sched_set_attr
     - scsi: hisi_sas: Add cond_resched() for no forced preemption model
     - scsi: ufs: core: Make DMA mask configuration more flexible
     - leds: class: Protect brightness_show() with led_cdev->led_access mutex
     - scsi: st: Don't modify unknown block number in MTIOCGET
     - scsi: st: Add MTIOCGET and MTLOAD to ioctls allowed after device reset
     - pinctrl: qcom-pmic-gpio: add support for PM8937
     - pinctrl: qcom: spmi-mpp: Add PM8937 compatible
     - nvdimm: rectify the illogical code within nd_dax_probe()
     - smb: client: memcpy() with surrounding object base address
     - verification/dot2: Improve dot parser robustness
     - f2fs: fix f2fs_bug_on when uninstalling filesystem call f2fs_evict_inode.
     - i3c: mipi-i3c-hci: Mask ring interrupts before ring stop request
     - PCI: Detect and trust built-in Thunderbolt chips
     - PCI: Add 'reset_subordinate' to reset hierarchy below bridge
     - PCI: Add ACS quirk for Wangxun FF5xxx NICs
     - i3c: Use i3cdev->desc->info instead of calling i3c_device_get_info() to
       avoid deadlock
     - usb: chipidea: udc: handle USB Error Interrupt if IOC not set
     - iio: light: ltr501: Add LTER0303 to the supported devices
     - [x86] ASoC: amd: yc: Add quirk for microphone on Lenovo Thinkpad T14s Gen
       6 21M1CTO1WW (Closes: #1087673)
     - [powerpc*] prom_init: Fixup missing powermac #size-cells
     - misc: eeprom: eeprom_93cx6: Add quirk for extra read clock cycle
     - rtc: cmos: avoid taking rtc_lock for extended period of time
     - serial: 8250_dw: Add Sophgo SG2044 quirk
     - io_uring/tctx: work around xa_store() allocation error issue
     - sched/core: Remove the unnecessary need_resched() check in nohz_csd_func()
     - sched/fair: Check idle_cpu() before need_resched() to detect ilb CPU
       turning busy
     - sched/core: Prevent wakeup of ksoftirqd during idle load balance
     - btrfs: fix missing snapshot drew unlock when root is dead during swap
       activation
     - tracing/eprobe: Fix to release eprobe when failed to add dyn_event
     - Revert "unicode: Don't special case ignorable code points"
     - vfio/mlx5: Align the page tracking max message size with the device
       capability
     - udf: Fold udf_getblk() into udf_bread()
     - [arm64] KVM: arm64: vgic-its: Add a data length check in vgic_its_save_*
     - [arm64] KVM: arm64: vgic-its: Clear DTE when MAPD unmaps a device
     - [arm64] KVM: arm64: vgic-its: Clear ITE when DISCARD frees an ITE
     - [x86] KVM: x86/mmu: Ensure that kvm_release_pfn_clean() takes exact pfn
       from kvm_faultin_pfn()
     - jffs2: Prevent rtime decompress memory corruption
     - jffs2: Fix rtime decompressor
     - mm/damon/vaddr: fix issue in damon_va_evenly_split_region()
     - io_uring: wake up optimisations
     - xhci: dbc: Fix STALL transfer event handling
     - mmc: mtk-sd: Fix error handle of probe function
     - drm/amd/display: Check BIOS images before it is used (CVE-2024-46809)
     - ocfs2: Revert "ocfs2: fix the la space leak when unmounting an ocfs2
       volume"
     - Revert "drm/amdgpu: add missing size check in
       amdgpu_debugfs_gprwave_read()"
     - gve: Fixes for napi_poll when budget is 0
     - [arm64] sve: Discard stale CPU state when handling SVE traps
       (CVE-2024-50275)
     - [arm64] smccc: Remove broken support for SMCCCv1.3 SVE discard hint
     - [x86] ASoC: Intel: avs: Fix return status of avs_pcm_hw_constraints_init()
     - mm: call the security_mmap_file() LSM hook in remap_file_pages()
     - bpf: Fix helper writes to read-only maps (CVE-2024-49861)
     - net: Move {l,t,d}stats allocation to core and convert veth & vrf
     - bpf: Fix dev's rx stats for bpf_redirect_peer traffic
     - veth: Use tstats per-CPU traffic counters
     - drm/ttm: Make sure the mapped tt pages are decrypted when needed
     - drm/ttm: Print the memory decryption status just once
     - drm/amdgpu: rework resume handling for display (v2)
     - usb: dwc3: ep0: Don't reset resource alloc flag
     - serial: amba-pl011: fix build regression
     - i3c: master: Remove i3c_dev_disable_ibi_locked(olddev) on device hotjoin
     - i3c: master: svc: fix possible assignment of the same address to two
       devices
     - PM / devfreq: Fix build issues with devfreq disabled
     - [arm64] drm/msm: DEVFREQ_GOV_SIMPLE_ONDEMAND is no longer needed
     - fs/ntfs3: Sequential field availability check in mi_enum_attr()
     - i3c: master: svc: Fix use after free vulnerability in svc_i3c_master
       Driver Due to Race Condition
     - Bluetooth: MGMT: Fix possible deadlocks
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.121
     - bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors
     - ksmbd: fix racy issue from session lookup and expire
     - tcp: check space before adding MPTCP SYN options
     - blk-cgroup: Fix UAF in blkcg_unpin_online()
     - ALSA: usb-audio: Add implicit feedback quirk for Yamaha THR5
     - usb: host: max3421-hcd: Correctly abort a USB request.
     - ata: sata_highbank: fix OF node reference leak in
       highbank_initialize_phys()
     - usb: dwc2: Fix HCD resume
     - usb: dwc2: hcd: Fix GetPortStatus & SetPortFeature
     - usb: dwc2: Fix HCD port connection race
     - usb: ehci-hcd: fix call balance of clocks handling routines
     - usb: typec: anx7411: fix fwnode_handle reference leak
     - usb: typec: anx7411: fix OF node reference leaks in
       anx7411_typec_switch_probe()
     - usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to
       accessing null pointer
     - usb: dwc3: xilinx: make sure pipe clock is deselected in usb2 only mode
     - [x86] drm/i915: Fix memory leak by correcting cache object name in error
       handler
     - xfs: update btree keys correctly when _insrec splits an inode root block
     - xfs: don't drop errno values when we fail to ficlone the entire range
     - xfs: return from xfs_symlink_verify early on V4 filesystems
     - xfs: fix scrub tracepoints when inode-rooted btrees are involved
     - xfs: only run precommits once per transaction object
     - bpf,perf: Fix invalid prog_array access in perf_event_detach_bpf_prog
     - bpf, sockmap: Fix update element with same
     - smb: client: fix UAF in smb2_reconnect_server() (CVE-2024-35870)
       (Closes: #1088733)
     - exfat: support dynamic allocate bh for exfat_entry_set_cache
     - exfat: fix potential deadlock on __exfat_get_dentry_set (CVE-2024-42315)
     - wifi: nl80211: fix NL80211_ATTR_MLO_LINK_ID off-by-one
     - wifi: mac80211: clean up 'ret' in sta_link_apply_parameters()
     - wifi: mac80211: fix station NSS capability initialization order
     - acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl
     - amdgpu/uvd: get ring reference from rq scheduler
     - batman-adv: Do not send uninitialized TT changes
     - batman-adv: Remove uninitialized data in full table TT response
     - batman-adv: Do not let TT changes list grows indefinitely
     - tipc: fix NULL deref in cleanup_bearer()
     - net/mlx5: DR, prevent potential error pointer dereference
     - ptp: kvm: Use decrypted memory in confidential guest on x86
     - [x86] ptp: kvm: x86: Return EOPNOTSUPP instead of ENODEV from
       kvm_arch_ptp_init()
     - net: lapb: increase LAPB_HEADER_LEN
     - net: defer final 'struct net' free in netns dismantle
     - [arm64] net: mscc: ocelot: fix memory leak on
       ocelot_port_add_txtstamp_skb()
     - [arm64] net: mscc: ocelot: improve handling of TX timestamp for unknown
       skb
     - [arm64] net: mscc: ocelot: ocelot->ts_id_lock and
       ocelot_port->tx_skbs.lock are IRQ-safe
     - [arm64] net: mscc: ocelot: be resilient to loss of PTP packets during
       transmission
     - [arm64] net: mscc: ocelot: perform error cleanup in ocelot_hwstamp_set()
     - [armhf] spi: aspeed: Fix an error handling path in
       aspeed_spi_[read|write]_user()
     - net: sparx5: fix FDMA performance issue
     - net: sparx5: fix the maximum frame length register
     - ACPI: resource: Fix memory resource type union access
     - cxgb4: use port number to set mac addr
     - qca_spi: Fix clock speed for multiple QCA7000
     - qca_spi: Make driver probing reliable
     - ASoC: amd: yc: Fix the wrong return value
     - Documentation: PM: Clarify pm_runtime_resume_and_get() return value
     - net: dsa: felix: fix stuck CPU-injected packets with short taprio windows
     - net/sched: netem: account for backlog updates from child qdisc
     - bonding: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
     - team: Fix feature propagation of NETIF_F_GSO_ENCAP_ALL
     - ACPICA: events/evxfregn: don't release the ContextMutex that was never
       acquired
     - Bluetooth: iso: Fix recursive locking warning
     - Bluetooth: SCO: Add support for 16 bits transparent voice setting
     - blk-iocost: Avoid using clamp() on inuse in __propagate_weights()
     - bpf: sync_linked_regs() must preserve subreg_def (CVE-2024-53125)
     - tracing/kprobes: Skip symbol counting logic for module symbols in
       create_local_trace_kprobe()
     - xen/netfront: fix crash when removing device (CVE-2024-53240)
     - [x86] make get_cpu_vendor() accessible from Xen code (CVE-2024-53241)
     - [x86] objtool/x86: allow syscall instruction (CVE-2024-53241)
     - [x86] static-call: provide a way to do very early static-call updates
       (CVE-2024-53241)
     - [x86] xen: don't do PV iret hypercall through hypercall page
       (CVE-2024-53241)
     - [x86] xen: add central hypercall functions (CVE-2024-53241)
     - [x86] xen: use new hypercall functions instead of hypercall page
       (CVE-2024-53241)
     - [x86] xen: remove hypercall page (CVE-2024-53241)
     - ALSA: usb-audio: Fix a DMA to stack memory bug
     - [x86] static-call: fix 32-bit build
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.122
     - net: sched: fix ordering of qlen adjustment (CVE-2024-53164)
     - PCI/AER: Disable AER service on suspend
     - PCI: Use preserve_config in place of pci_flags
     - PCI: vmd: Create domain symlink before pci_bus_add_devices()
     - usb: cdns3: Add quirk flag to enable suspend residency
     - [x86] ASoC: Intel: sof_sdw: fix jack detection on ADL-N variant RVP
     - [x86] ASoC: Intel: sof_sdw: add quirk for Dell SKU 0B8C
     - PCI: Add ACS quirk for Broadcom BCM5760X NIC
     - [arm64,armhf] usb: dwc2: gadget: Don't write invalid mapped sg entries
       into dma_desc with iommu enabled
     - PCI: Introduce pci_resource_n()
     - [x86] platform/x86: p2sb: Make p2sb_get_devfn() return void
     - [x86] p2sb: Factor out p2sb_read_from_cache()
     - [x86] p2sb: Introduce the global flag p2sb_hidden_by_bios
     - [x86] p2sb: Move P2SB hide and unhide code to p2sb_scan_and_cache()
     - [x86] p2sb: Do not scan and remove the P2SB device when it is unhidden
     - i2c: pnx: Fix timeout in wait functions
     - cxl/region: Fix region creation for greater than x2 switches
     - net/smc: protect link down work from execute after lgr freed
       (CVE-2024-56718)
     - net/smc: check sndbuf_space again after NOSPACE flag is set in smc_poll
     - net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal
       msg
     - net/smc: check smcd_v2_ext_offset when receiving proposal msg
     - net/smc: check return value of sock_recvmsg when draining clc data
     - [arm64] net: mscc: ocelot: fix incorrect IFH SRC_PORT field in
       ocelot_ifh_set_basic()
     - ionic: Fix netdev notifier unregister on failure (CVE-2024-56715)
     - ionic: use ee->offset when returning sprom data
     - net: hinic: Fix cleanup in create_rxqs/txqs()
     - net: ethernet: bgmac-platform: fix an OF node reference leak
     - netfilter: ipset: Fix for recursive locking warning
     - net: mdiobus: fix an OF node reference leak
     - [arm64,armhf] mmc: sdhci-tegra: Remove
       SDHCI_QUIRK_BROKEN_ADMA_ZEROLEN_DESC quirk
     - [x86] KVM: x86: Cache CPUID.0xD XSTATE offsets+sizes during module init
     - i2c: riic: Always round-up when calculating bus period
     - efivarfs: Fix error on non-existent file
     - USB: serial: option: add TCL IK512 MBIM & ECM
     - USB: serial: option: add MeiG Smart SLM770A
     - USB: serial: option: add Netprisma LCUK54 modules for WWAN Ready
     - USB: serial: option: add MediaTek T7XX compositions
     - USB: serial: option: add Telit FE910C04 rmnet compositions
     - [x86] thunderbolt: Improve redrive mode handling
     - drm/modes: Avoid divide by zero harder in drm_mode_vrefresh()
     - drm/panel: novatek-nt35950: fix return value check in nt35950_probe()
     - [x86] i915/guc: Reset engine utilization buffer before registration
     - [x86] i915/guc: Ensure busyness counter increases motonically
     - [x86] i915/guc: Accumulate active runtime on gt reset
     - drm/amdgpu: don't access invalid sched
     - hwmon: (tmp513) Don't use "proxy" headers
     - hwmon: (tmp513) Simplify with dev_err_probe()
     - hwmon: (tmp513) Use SI constants from units.h
     - hwmon: (tmp513) Fix interpretation of values of Shunt Voltage and Limit
       Registers
     - hwmon: (tmp513) Fix Current Register value interpretation
     - hwmon: (tmp513) Fix interpretation of values of Temperature Result and
       Limit Registers
     - zram: refuse to use zero sized block device as backing device
     - zram: fix uninitialized ZRAM not releasing backing device
     - btrfs: tree-checker: reject inline extent items with 0 ref count
     - Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet
     - [x86] KVM: x86: Play nice with protected guests in
       complete_hypercall_exit()
     - tracing: Fix test_event_printk() to process entire print argument
     - tracing: Add missing helper functions in event pointer dereference check
     - tracing: Add "%s" check in test_event_printk()
     - io_uring: Fix registered ring file refcount leak
     - io_uring: check if iowq is killed before queuing (CVE-2024-56709)
     - NFS/pnfs: Fix a live lock between recalled layouts and layoutget
     - of/irq: Fix interrupt-map cell length check in of_irq_parse_imap_parent()
     - of/irq: Fix using uninitialized variable @addr_len in API
       of_irq_parse_one()
     - nilfs2: fix buffer head leaks in calls to truncate_inode_pages()
     - nilfs2: prevent use of deleted inode
     - of: Fix error path in of_parse_phandle_with_args_map()
     - of: Fix refcount leakage for OF node returned by __of_get_dma_parent()
     - ceph: validate snapdirname option length when mounting
     - udf: Fix directory iteration for longer tail extents (Closes: #1089698)
     - epoll: Add synchronous wakeup support for ep_poll_callback
     - io_uring/rw: split io_read() into a helper
     - io_uring/rw: treat -EOPNOTSUPP for IOCB_NOWAIT like -EAGAIN
     - io_uring/rw: avoid punting to io-wq directly
     - drm/amdgpu: Handle NULL bo->tbo.resource (again) in amdgpu_vm_bo_update
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.123
     - media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg
     - mm/vmstat: fix a W=1 clang compiler warning
     - tcp_bpf: Charge receive socket buffer in bpf_tcp_ingress()
     - tcp_bpf: Add sk_rmem_alloc related logic for tcp_bpf ingress redirection
     - bpf: Check negative offsets in __bpf_skb_min_len()
     - nfsd: restore callback functionality for NFSv4.0
     - mtd: diskonchip: Cast an operand to prevent potential overflow
     - [arm64] phy: qcom-qmp: Fix register name in RX Lane config of SC8280XP
     - phy: core: Fix an OF node refcount leakage in _of_phy_get()
     - phy: core: Fix an OF node refcount leakage in of_phy_provider_lookup()
     - phy: core: Fix that API devm_phy_put() fails to release the phy
     - phy: core: Fix that API devm_of_phy_provider_unregister() fails to
       unregister the phy provider
     - phy: core: Fix that API devm_phy_destroy() fails to destroy the phy
     - phy: usb: Toggle the PHY power during init
     - [arm64] phy: rockchip: naneng-combphy: fix phy reset
     - [arm*] dmaengine: mv_xor: fix child node refcount handling in early exit
     - [x86] dmaengine: dw: Select only supported masters for ACPI devices
     - [powerpc*] pseries/vas: Add close() callback in vas_vm_ops struct
     - stddef: make __struct_group() UAPI C++-friendly
     - tracing/kprobe: Make trace_kprobe's module callback called after
       jump_label update
     - watchdog: it87_wdt: add PWRGD enable quirk for Qotom QCML04
     - scsi: qla1280: Fix hw revision numbering for ISP1020/1040
     - scsi: megaraid_sas: Fix for a potential deadlock
     - ALSA: hda/conexant: fix Z60MR100 startup pop issue
     - smb: server: Fix building with GCC 15
     - regmap: Use correct format specifier for logging range errors
     - [x86] platform/x86: asus-nb-wmi: Ignore unknown event 0xCF
     - scsi: mpt3sas: Diag-Reset when Doorbell-In-Use bit is set during driver
       load time
     - scsi: storvsc: Do not flag MAINTENANCE_IN return of
       SRB_STATUS_DATA_OVERRUN as an error
     - drm/dp_mst: Ensure mst_primary pointer is valid in
       drm_dp_mst_handle_up_req()
     - virtio-blk: don't keep queue frozen during system suspend
     - blk-mq: register cpuhp callback after hctx is added to xarray table
     - vmalloc: fix accounting with i915
     - [mips*] mipsregs: Set proper ISA level for virt extensions
     - net/mlx5e: Don't call cleanup on profile rollback failure (CVE-2024-50146)
     - bpf: Check validity of link->type in bpf_link_show_fdinfo()
       (CVE-2024-53099)
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook X G1i
     - ALSA: hda/realtek: fix micmute LEDs don't work on HP Laptops
     - pmdomain: core: Add missing put_device()
     - sched/core: Report correct state for TASK_IDLE | TASK_FREEZABLE
     - freezer, sched: Report frozen tasks as 'D' instead of 'R'
     - tracing: Constify string literal data member in struct trace_event_call
     - tracing: Prevent bad count for tracing_cpumask_write
     - io_uring/sqpoll: fix sqpoll error handling races
     - i2c: microchip-core: actually use repeated sends
     - i2c: imx: add imx7d compatible string for applying erratum ERR007805
     - i2c: microchip-core: fix "ghost" detections
     - power: supply: gpio-charger: Fix set charge current limits
     - btrfs: avoid monopolizing a core when activating a swap file
     - btrfs: sysfs: fix direct super block member reads
     - nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net
       (CVE-2024-50121)
     - Revert "rcu-tasks: Fix access non-existent percpu rtpcp variable in
       rcu_tasks_need_gpcb()"
     - ALSA: hda/realtek: Fix spelling mistake "Firelfy" -> "Firefly"
 .
   [ Salvatore Bonaccorso ]
   * d/salsa-ci.yml: Suppress aliased-location lintian errors
   * debian/salsa-ci.yml: Include run of .build-after-script from common
     pipeline.
   * debian/salsa-ci.yml: Reference .build-after-script from after_script
     section
   * Revert "[x86] Revert "x86: Increase brk randomness entropy for 64-bit
     systems""
     The root cause for the segfaults were actually in qemu, which re-enables
     --static-pie linking for qemu-user-static binaries. It was disabled by
     mistake in qemu versions in Debian. Details in #1087822 and #1053101.
   * Bump ABI to 29
   * [rt] Update to 6.1.120-rt47
linux-signed-i386 (6.1.119+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.119-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.116
     - cpufreq: Generalize of_perf_domain_get_sharing_cpumask phandle format
     - cpufreq: Avoid a bad reference count on CPU node (CVE-2024-50012)
     - mm: remove kern_addr_valid() completely
     - fs/proc/kcore: avoid bounce buffer for ktext data
     - fs/proc/kcore: convert read_kcore() to read_kcore_iter()
     - fs/proc/kcore: reinstate bounce buffer for KCORE_TEXT regions
     - fs/proc/kcore.c: allow translation of physical memory addresses
     - cgroup: Fix potential overflow issue when checking max_depth
     - wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd()
       (Closes: #1062421)
     - mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING
     - wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys
     - wifi: ath11k: Fix invalid ring usage in full monitor mode
     - wifi: brcm80211: BRCM_TRACING should depend on TRACING
     - RDMA/cxgb4: Dump vendor specific QP details
     - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down
     - RDMA/bnxt_re: synchronize the qp-handle table array
     - wifi: iwlwifi: mvm: disconnect station vifs if recovery failed
     - wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
       (CVE-2024-53059)
     - [armel,armhf] ASoC: cs42l51: Fix some error handling paths in
       cs42l51_probe()
     - macsec: Fix use-after-free while sending the offloading packet
       (CVE-2024-50261)
     - net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data
       (CVE-2024-53058)
     - ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()
       (CVE-2024-53042)
     - gtp: allow -1 to be specified as file description from userspace
     - net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT (CVE-2024-53057)
     - netdevsim: Add trailing zero to terminate the string in
       nsim_nexthop_bucket_activity_write() (CVE-2024-50259)
     - bpf: Fix out-of-bounds write in trie_get_next_key() (CVE-2024-50262)
     - netfilter: Fix use-after-free in get_info() (CVE-2024-50257)
     - netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
       (CVE-2024-50256)
     - Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs
       (CVE-2024-50255)
     - net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension
     - netfilter: nft_payload: sanitize offset and length before calling
       skb_checksum() (CVE-2024-50251)
     - iomap: convert iomap_unshare_iter to use large folios
     - iomap: improve shared block detection in iomap_unshare_iter
     - iomap: don't bother unsharing delalloc extents
     - iomap: share iomap_unshare_iter predicate code with fsdax
     - fsdax: remove zeroing code from dax_unshare_iter
     - fsdax: dax_unshare_iter needs to copy entire blocks (CVE-2024-50250)
     - iomap: turn iomap_want_unshare_iter into an inline function
     - compiler-gcc: be consistent with underscores use for `no_sanitize`
     - compiler-gcc: remove attribute support check for `__no_sanitize_address__`
     - afs: Automatically generate trace tag enums
     - afs: Fix missing subdir edit when renamed between parent dirs
     - ACPI: CPPC: Make rmw_lock a raw_spin_lock (CVE-2024-50249)
     - fs/ntfs3: Check if more than chunk-size bytes are written (CVE-2024-50247)
     - fs/ntfs3: Fix warning possible deadlock in ntfs_set_state
     - fs/ntfs3: Stale inode instead of bad
     - fs/ntfs3: Fix possible deadlock in mi_read (CVE-2024-50245)
     - fs/ntfs3: Additional check in ni_clear() (CVE-2024-50244)
     - scsi: scsi_transport_fc: Allow setting rport state to current state
     - net: amd: mvme147: Fix probe banner message
     - NFS: remove revoked delegation from server's delegation list
     - misc: sgi-gru: Don't disable preemption in GRU driver
     - usb: gadget: dummy_hcd: Switch to hrtimer transfer scheduler
     - usb: gadget: dummy_hcd: Set transfer interval to 1 microframe
     - usb: gadget: dummy_hcd: execute hrtimer callback in softirq context
     - USB: gadget: dummy-hcd: Fix "task hung" problem
     - ALSA: usb-audio: Add quirks for Dell WD19 dock
     - usbip: tools: Fix detach_port() invalid port error path
     - usb: phy: Fix API devm_usb_put_phy() can not release the phy
     - usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes()
     - xhci: Fix Link TRB DMA in command ring stopped completion event
     - xhci: Use pm_runtime_get to prevent RPM on unsupported systems
     - Revert "driver core: Fix uevent_show() vs driver detach race"
     - wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
       (CVE-2024-50237)
     - wifi: ath10k: Fix memory leak in management tx (CVE-2024-50236)
     - wifi: cfg80211: clear wdev->cqm_config pointer on free (CVE-2024-50235)
     - wifi: iwlegacy: Clear stale interrupts before resuming device
       (CVE-2024-50234)
     - iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
       (CVE-2024-50232)
     - iio: light: veml6030: fix microlux value calculation
     - nilfs2: fix potential deadlock with newly created symlinks
       (CVE-2024-50229)
     - block: fix sanity checks in blk_rq_map_user_bvec
     - cgroup/bpf: use a dedicated workqueue for cgroup bpf destruction
       (CVE-2024-53054)
     - ALSA: hda/realtek: Limit internal Mic boost on Dell platform
     - cxl/acpi: Move rescan to the workqueue
     - cxl/port: Fix cxl_bus_rescan() vs bus_rescan_devices()
     - mm/page_alloc: rename ALLOC_HIGH to ALLOC_MIN_RESERVE
     - mm/page_alloc: treat RT tasks similar to __GFP_HIGH
     - mm/page_alloc: explicitly record high-order atomic allocations in
       alloc_flags
     - mm/page_alloc: explicitly define what alloc flags deplete min reserves
     - mm/page_alloc: explicitly define how __GFP_HIGH non-blocking allocations
       accesses reserves
     - mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves
     - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (CVE-2024-50218)
     - mctp i2c: handle NULL header address (CVE-2024-53043)
     - ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1
     - nvmet-auth: assign dh_key to NULL after kfree_sensitive (CVE-2024-50215)
     - io_uring: rename kiocb_end_write() local helper
     - fs: create kiocb_{start,end}_write() helpers
     - io_uring: use kiocb_{start,end}_write() helpers
     - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write
       (CVE-2024-53052)
     - mm: migrate: try again if THP split is failed due to page refcnt
     - migrate: convert unmap_and_move() to use folios
     - migrate: convert migrate_pages() to use folios
     - mm/migrate.c: stop using 0 as NULL pointer
     - migrate_pages: organize stats with struct migrate_pages_stats
     - migrate_pages: separate hugetlb folios migration
     - migrate_pages: restrict number of pages to migrate in batch
     - migrate_pages: split unmap_and_move() to _unmap() and _move()
     - vmscan,migrate: fix page count imbalance on node stats when demoting pages
     - io_uring: always lock __io_cqring_overflow_flush (Closes: #1087602)
     - [x86] bugs: Use code segment selector for VERW operand (CVE-2024-50072)
     - wifi: mac80211: fix NULL dereference at band check in starting tx ba
       session (CVE-2024-43911)
     - nilfs2: fix kernel bug due to missing clearing of checked flag
       (CVE-2024-50230)
     - wifi: iwlwifi: mvm: fix 6 GHz scan construction (CVE-2024-53055)
     - mm: shmem: fix data-race in shmem_getattr() (CVE-2024-50228)
     - mtd: spi-nor: winbond: fix w25q128 regression
     - drm/amd/display: Add null checks for 'stream' and 'plane' before
       dereferencing (CVE-2024-43904)
     - drm/amd/display: Skip on writeback when it's not applicable
       (CVE-2024-36914)
     - vt: prevent kernel-infoleak in con_font_get()
     - mm: avoid gcc complaint about pointer casting
     - migrate_pages_batch: fix statistics for longterm pin retry
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.117
     - [arm64] dts: rockchip: Fix rt5651 compatible value on rk3399-eaidk-610
     - [arm64] dts: rockchip: Fix rt5651 compatible value on
       rk3399-sapphire-excavator
     - [arm64] dts: rockchip: Remove hdmi's 2nd interrupt on rk3328
     - [arm64] dts: rockchip: Fix wakeup prop names on PineNote BT node
     - [arm64] dts: rockchip: Fix bluetooth properties on Rock960 boards
     - [arm64] dts: rockchip: Remove #cooling-cells from fan on Theobroma lion
     - [arm64] dts: rockchip: Fix LED triggers on rk3308-roc-cc
     - [arm64] dts: imx8qm: Fix VPU core alias name
     - [arm64] dts: imx8qxp: Add VPU subsystem file
     - [arm64] dts: imx8-ss-vpu: Fix imx8qm VPU IRQs
     - [arm64] dts: imx8mp: correct sdhc ipg clk
     - [armhf] ARM: dts: rockchip: Fix the realtek audio codec on rk3036-kylin
     - HID: core: zero-initialize the report buffer (CVE-2024-50302)
     - [x86] platform/x86/amd/pmc: Detect when STB is not available
       (CVE-2024-53072)
     - sunrpc: handle -ENOTCONN in xs_tcp_setup_socket()
     - NFSv3: only use NFS timeout for MOUNT when protocols are compatible
     - NFSv3: handle out-of-order write replies.
     - nfs: avoid i_lock contention in nfs_clear_invalid_mapping
     - security/keys: fix slab-out-of-bounds in key_task_permission
       (CVE-2024-50301)
     - [arm64] net: enetc: set MAC address to the VF net_device
     - sctp: properly validate chunk size in sctp_sf_ootb() (CVE-2024-50299)
     - can: c_can: fix {rx,tx}_errors statistics
     - ice: change q_index variable type to s16 to store -1 value
     - i40e: fix race condition by adding filter's intermediate sync state
       (CVE-2024-53088)
     - [arm64] net: hns3: fix kernel crash when uninstalling driver
       (CVE-2024-50296)
     - net: phy: ti: add PHY_RST_AFTER_CLK_EN flag
     - net: stmmac: Fix unbalanced IRQ wake disable warning on single irq case
     - virtio_net: Add hash_key_length check (CVE-2024-53082)
     - Revert "ALSA: hda/conexant: Mute speakers at suspend / shutdown"
     - media: stb0899_algo: initialize cfr before using it
     - media: dvbdev: prevent the risk of out of memory access (CVE-2024-53063)
     - media: dvb_frontend: don't play tricks with underflow values
     - media: adv7604: prevent underflow condition when reporting colorspace
     - scsi: sd_zbc: Use kvzalloc() to allocate REPORT ZONES buffer
     - ALSA: firewire-lib: fix return value on fail in amdtp_tscm_init()
     - [armhf] ASoC: stm32: spdifrx: fix dma channel release in
       stm32_spdifrx_remove
     - media: ar0521: don't overflow when checking PLL values (CVE-2024-53081)
     - media: s5p-jpeg: prevent buffer overflows (CVE-2024-53061)
     - media: cx24116: prevent overflows on SNR calculus (CVE-2024-50290)
     - media: pulse8-cec: fix data timestamp at pulse8_setup()
     - media: v4l2-tpg: prevent the risk of a division by zero (CVE-2024-50287)
     - media: v4l2-ctrls-api: fix error handling for v4l2_g_ctrl()
     - can: mcp251xfd: mcp251xfd_get_tef_len(): fix length calculation
     - can: mcp251xfd: mcp251xfd_ring_alloc(): fix coalescing configuration when
       switching CAN modes
     - ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create
       (CVE-2024-50286)
     - ksmbd: Fix the missing xa_store error check (CVE-2024-50284)
     - ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp (CVE-2024-50283)
     - pwm: imx-tpm: Use correct MODULO value for EPWM mode
     - drm/amdgpu: Adjust debugfs eviction and IB access permissions
     - drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read()
       (CVE-2024-50282)
     - drm/amdgpu: prevent NULL pointer dereference if ATIF is not supported
       (CVE-2024-53060)
     - thermal/drivers/qcom/lmh: Remove false lockdep backtrace
     - dm cache: correct the number of origin blocks to match the target length
     - dm cache: fix flushing uninitialized delayed_work on cache_ctr error
       (CVE-2024-50280)
     - dm cache: fix out-of-bounds access to the dirty bitset when resizing
       (CVE-2024-50279)
     - dm cache: optimize dirty bit checking with find_next_bit when resizing
     - dm cache: fix potential out-of-bounds access on the first resume
       (CVE-2024-50278)
     - dm-unstriped: cast an operand to sector_t to prevent potential uint32_t
       overflow
     - ALSA: usb-audio: Add quirk for HP 320 FHD Webcam
     - ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3
     - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone
     - nfs: Fix KMSAN warning in decode_getfattr_attrs() (CVE-2024-53066)
     - net: wwan: t7xx: Fix off-by-one error in t7xx_dpmaif_rx_buf_alloc()
     - net: vertexcom: mse102x: Fix possible double free of TX skb
       (CVE-2024-50276)
     - mptcp: use sock_kfree_s instead of kfree
     - btrfs: reinitialize delayed ref list after deleting it from the list
       (CVE-2024-50273)
     - bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq
       (CVE-2024-38540)
     - Revert "wifi: mac80211: fix RCU list iterations"
     - net: do not delay dst_entries_add() in dst_release() (CVE-2024-50036)
     - media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in
       uvc_parse_format
     - filemap: Fix bounds checking in filemap_read() (CVE-2024-50272)
     - fs/proc: fix compile warning about variable 'vmcore_mmap_ops'
     - signal: restore the override_rlimit logic (CVE-2024-50271)
     - usb: musb: sunxi: Fix accessing an released usb phy (CVE-2024-50269)
     - usb: dwc3: fix fault at system suspend if device was already runtime
       suspended
     - usb: typec: fix potential out of bounds in
       ucsi_ccg_update_set_new_cam_cmd()
     - USB: serial: io_edgeport: fix use after free in debug printk
       (CVE-2024-50267)
     - USB: serial: qcserial: add support for Sierra Wireless EM86xx
     - USB: serial: option: add Fibocom FG132 0x0112 composition
     - USB: serial: option: add Quectel RG650V
     - irqchip/gic-v3: Force propagation of the active state with a read-back
     - ocfs2: remove entry once instead of null-ptr-dereference in
       ocfs2_xa_remove()
     - ucounts: fix counter leak in inc_rlimit_get_ucounts()
     - [x86] ASoC: amd: yc: fix internal mic on Xiaomi Book Pro 14 2022
     - net: sched: use RCU read-side critical section in taprio_dump()
       (CVE-2024-50126)
     - hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer
     - vsock/virtio: Initialization of the dangling pointer occurring in
       vsk->trans
     - media: amphion: Fix VPU core alias name
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.118
     - Revert "Bluetooth: fix use-after-free in accessing skb after sending it"
     - Revert "Bluetooth: hci_sync: Fix overwriting request callback"
     - Revert "Bluetooth: af_bluetooth: Fix deadlock"
     - Revert "Bluetooth: hci_core: Fix possible buffer overflow"
     - Revert "Bluetooth: hci_conn: Consolidate code for aborting connections"
       (Closes: #1086447)
     - 9p: Avoid creating multiple slab caches with the same name
     - nvme: tcp: avoid race between queue_lock lock and destroy
     - block: Fix elevator_get_default() checking for NULL q->tag_set
     - HID: multitouch: Add support for B2402FVA track point
     - HID: multitouch: Add quirk for HONOR MagicBook Art 14 touchpad
     - nvme: disable CC.CRIME (NVME_CC_CRIME)
     - bpf: use kvzmalloc to allocate BPF verifier environment
     - crypto: api - Fix liveliness check in crypto_alg_tested
     - [arm*] crypto: marvell/cesa - Disable hash algorithms
     - sound: Make CONFIG_SND depend on INDIRECT_IOMEM instead of UML
     - drm/vmwgfx: Limit display layout ioctl array size to
       VMWGFX_NUM_DISPLAY_UNITS
     - nvme-multipath: defer partition scanning (CVE-2024-53093)
     - [powerpc*] powernv: Free name on error in opal_event_init()
     - nvme: make keep-alive synchronous operation
     - bpf: Fix mismatched RCU unlock flavour in bpf_out_neigh_v6
     - fs: Fix uninitialized value issue in from_kuid and from_kgid
     - HID: multitouch: Add quirk for Logitech Bolt receiver w/ Casa touchpad
     - HID: lenovo: Add support for Thinkpad X1 Tablet Gen 3 keyboard
     - net: usb: qmi_wwan: add Fibocom FG132 0x0112 composition
     - md/raid10: improve code of mrdev in raid10_sync_request
     - io_uring: fix possible deadlock in io_register_iowq_max_workers()
       (CVE-2024-41080)
     - uprobes: encapsulate preparation of uprobe args buffer
     - uprobe: avoid out-of-bounds memory access of fetching args
       (CVE-2024-50067)
     - drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer (CVE-2024-49991)
     - ext4: fix timer use-after-free on failed mount (CVE-2024-49960)
     - Bluetooth: L2CAP: Fix uaf in l2cap_connect (CVE-2024-49950)
     - mm: krealloc: Fix MTE false alarm in __do_krealloc
     - [x86] platform/x86: x86-android-tablets: Fix use after free on
       platform_device_register() errors (CVE-2024-49986)
     - fs/ntfs3: Fix general protection fault in run_is_mapped_full
       (CVE-2024-50243)
     - 9p: fix slab cache name creation for real
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.119
     - netlink: terminate outstanding dump on socket close
     - [arm64,armhf] drm/rockchip: vop: Fix a dereferenced before check warning
     - mptcp: error out earlier on disconnect
     - net/mlx5: fs, lock FTE when checking if active
     - net/mlx5e: kTLS, Fix incorrect page refcounting
     - net/mlx5e: CT: Fix null-ptr-deref in add rule err flow
     - virtio/vsock: Fix accept_queue memory leak
     - Bluetooth: hci_event: Remove code to removed CONFIG_BT_HS
     - Bluetooth: hci_core: Fix calling mgmt_device_connected
     - net/sched: cls_u32: replace int refcounts with proper refcounts
     - net: sched: cls_u32: Fix u32's systematic failure to free IDR entries for
       hnodes.
     - bonding: add ns target multicast address to slave device
     - [armel,armhf] 9419/1: mm: Fix kernel memory mapping for xip kernels
     - [x86] mm: Fix a kdump kernel failure on SME system when CONFIG_IMA_KEXEC=y
     - mm: fix NULL pointer dereference in alloc_pages_bulk_noprof
     - ocfs2: uncache inode which has failed entering the group
     - vdpa/mlx5: Fix PA offset with unaligned starting iotlb map
     - ima: fix buffer overrun in ima_eventdigest_init_common
     - [x86] KVM: nVMX: Treat vpid01 as current if L2 is active, but with VPID
       disabled
     - [x86] KVM: x86: Unconditionally set irr_pending when updating APICv state
     - [x86] KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind
       CONFIG_BROKEN
     - nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint
     - ALSA: hda/realtek - Fixed Clevo platform headset Mic issue
     - ALSA: hda/realtek: fix mute/micmute LEDs for a HP EliteBook 645 G10
     - ocfs2: fix UBSAN warning in ocfs2_verify_volume()
     - nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint
     - Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K"
     - mmc: sunxi-mmc: Fix A100 compatible description
     - drm/bridge: tc358768: Fix DSI command tx
     - drm/amd: Fix initialization mistake for NBIO 7.7.0
     - staging: vchiq_arm: Get the rid off struct vchiq_2835_state
     - staging: vchiq_arm: Use devm_kzalloc() for vchiq_arm_state allocation
     - fs/ntfs3: Additional check in ntfs_file_release (CVE-2024-50242)
     - Bluetooth: ISO: Fix not validating setsockopt user input (CVE-2024-35964)
     - lib/buildid: Fix build ID parsing logic
     - cxl/pci: fix error code in __cxl_hdm_decode_init()
     - media: dvbdev: fix the logic when DVB_DYNAMIC_MINORS is not set
     - NFSD: initialize copy->cp_clp early in nfsd4_copy for use by trace point
     - NFSD: Async COPY result needs to return a write verifier
     - NFSD: Limit the number of concurrent async COPY operations
       (CVE-2024-49974)
     - NFSD: Initialize struct nfsd4_copy earlier
     - NFSD: Never decrement pending_async_copies on error
     - mptcp: cope racing subflow creation in mptcp_rcv_space_adjust
     - mptcp: define more local variables sk
     - mptcp: add userspace_pm_lookup_addr_by_id helper
     - mptcp: update local address flags when setting it
     - mptcp: hold pm lock when deleting entry
     - mptcp: drop lookup_by_id in lookup_addr
     - mptcp: pm: use _rcu variant under rcu_read_lock
     - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-26954)
     - ksmbd: fix potencial out-of-bounds when buffer offset is invalid
       (CVE-2024-26952)
     - net: add copy_safe_from_sockptr() helper
     - nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies
     - fs/9p: fix uninitialized values during inode evict (CVE-2024-36923)
     - ipvs: properly dereference pe in ip_vs_add_service (CVE-2024-42322)
     - net/sched: taprio: extend minimum interval restriction to entire cycle too
       (CVE-2024-36244)
     - net: fec: remove .ndo_poll_controller to avoid deadlocks (CVE-2024-38553)
     - mm: revert "mm: shmem: fix data-race in shmem_getattr()"
     - mm: avoid unsafe VMA hook invocation when error arises on mmap hook
     - mm: unconditionally close VMAs on error
     - mm: refactor arch_calc_vm_flag_bits() and arm64 MTE handling
     - mm: resolve faulty mmap_region() error path behaviour
     - drm/amd: check num of link levels when update pcie param (CVE-2023-52812)
     - char: xillybus: Prevent use-after-free due to race condition
       (CVE-2022-45888)
     - null_blk: Remove usage of the deprecated ida_simple_xx() API
     - null_blk: fix null-ptr-dereference while configuring 'power' and
       'submit_queues' (CVE-2024-36478)
     - null_blk: Fix return value of nullb_device_power_store()
     - parisc: fix a possible DMA corruption (CVE-2024-44949)
     - char: xillybus: Fix trivial bug with mutex
     - net: Make copy_safe_from_sockptr() match documentation
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 28
   * [x86] Revert "x86: Increase brk randomness entropy for 64-bit systems"
     (Closes: #1085762)

live-boot (1:20230131+deb12u1) bookworm; urgency=medium
 .
   * Add fix to get DHCP from all nics, not only the first one seen with link
     up (Closes: #1069048).

llvm-toolchain-19 (1:19.1.4-1~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
   * Change build-dep from sid's llvm-spirv-19 to bookworm's llvm-spirv-14.
   * Add python3-myst-parser build-dep.
   * Use CMAKE_BUILD_PARALLEL_LEVEL rather than -j to ensure that we don't
     OOM during builds
     (https://salsa.debian.org/pkg-llvm-team/llvm-toolchain/-/merge_requests/157).
llvm-toolchain-19 (1:19.1.3-2) unstable; urgency=medium
 .
   * enable OpenMP (without offloading) on riscv64 (and mips64el and loong64)
     Thanks to Aurélien Jarno for this patch
     (Closes: #1087280)
llvm-toolchain-19 (1:19.1.3-1) unstable; urgency=medium
 .
   * New release
llvm-toolchain-19 (1:19.1.2-2) unstable; urgency=medium
 .
   [ Samuel Thibault ]
   * Disable time64_t ABI on hurd-i386 too.
 .
   [ Sylvestre Ledru ]
   * Use the | hello trick for g++-multilib for s390x / Ubuntu Oracular
   * Enable compiler-rt runtime again for 32bit time_t64 architectures.
     (Closes: #1085853)
   * Backport Ubuntu 25.04 - Plucky Puffin support
llvm-toolchain-19 (1:19.1.2-1) unstable; urgency=medium
 .
   [ Samuel Thibault ]
   * patches/hurd/hurd-f_type.diff: Fix hurd build against glibc ≥ 2.39.
   * libomp-X.Y-dev.install.in: Don't try to ship ompd gdb plugin on
     hurd-amd64 ; ship libomptarget.
   * libomp5-X.Y.install.in: Ship libomptarget.
   * libomp5-X.Y.symbols.in: Fix symbols on hurd-any.
   * rules: Fix syntax on non-linux.
 .
   [ John Paul Adrian Glaubitz ]
   * Don't try to install xray and profile headers on powerpc
 .
   [ Sylvestre Ledru ]
   * New release
   * Update Standards version to 4.7.0
llvm-toolchain-19 (1:19.1.1-1) unstable; urgency=medium
 .
   * New upstream release 19.1.1.
 .
   [ Sylvestre Ledru ]
   * Don't enable intel-pt on Ubuntu Bionic
   * Add disabled info in the build log
   * Disable LLVM libc on bionic
   * Fix the bootstrapping (Closes: #1082610)
     Thanks to Andrey Feofilaktov for the patch
   * clang provides objc++-compiler (Closes: #1082744)
 .
   [ Matthias Klose ]
   * Update watch file and add .git* files to exclude in the tarball.
llvm-toolchain-19 (1:19.1.0-4) unstable; urgency=medium
 .
   [ Sylvestre Ledru ]
   * Adjust the workaround for apt.llvm.org version upgrades
     https://github.com/llvm/llvm-project/issues/109276
   * Ensure that at least 1 CPU is used for build
     Thanks to Santiago Vila for the patch
     (Closes: #1082360)
 .
   [ Matthias Klose ]
   * Don't relax versioned shlibs dependencies for snapshot builds and
     prerelease versions.
   * libllvm19: No symlinks in the llvm-19 subdir. Closes: #1081192, #1082495.
llvm-toolchain-19 (1:19.1.0-3) unstable; urgency=medium
 .
   * Fix typo in dh_makeshlibs calls.
llvm-toolchain-19 (1:19.1.0-2) unstable; urgency=medium
 .
   * Call dh_makeshlibs with the version of the first upstream
     release (1:19.1.0). Looking back at the 1.18 release cycle,
     these libraries didn't see any instability in the ABIs.
   * debian/qualify-clang.sh: Fix typo.
llvm-toolchain-19 (1:19.1.0-1) unstable; urgency=medium
 .
   * New upstream release 19.1.0.
 .
   [ Matthias Klose ]
   * debian/qualify-clang.sh: Skip llvmlibc test, if libllvmlibc-dev is not
     available.
   * Build-depend on llvm-spirv-19.
 .
   [ YunQiang Su ]
   * also pass -mxgot in LDFLAGS.
   * d/p/mips-mlir-xgot.diff: Pass -mxgot for mlir.
llvm-toolchain-19 (1:19.1.0~++rc4-5) unstable; urgency=medium
 .
   * Move the libLLVM.so.1 symlink into llvm-19-dev. Closes: #1081192.
llvm-toolchain-19 (1:19.1.0~++rc4-4) unstable; urgency=medium
 .
   [ Matthias Klose ]
   * Consolidate disabling CMake's package validation checks a bit.
   * debian/qualify-clang.sh: Skip OpenMP test, if libomp-dev is not available.
   * Disable CMake's package validation check for libLLVM.so.1.
   * Limit lldb autopkg test to the lldb architectures.
   * Generate debian/tests/* files.
   * Disable the usage-wrapper/memory tracking by default.
   * Replace LLDB_DISABLE_ARCHS macro with LLDB_ARCHS macro.
   * Remove unused kfreebsd patches, and remove references to kfreebsd and s390.
   * Remove references to alpha, hppa, powerpcspe and sh4.
   * Fix usage-wrapper build dependency.
 .
   [ Aurelien Jarno ]
   * Enable lldb on riscv64.
   * Enable lldb autopkgtest on riscv64.
llvm-toolchain-19 (1:19.1.0~++rc4-3) unstable; urgency=medium
 .
   [ Matthias Klose ]
   * Consolidate disabling CMake's package validation checks a bit.
   * debian/qualify-clang.sh: Skip OpenMP test, if libomp-dev is not available.
   * Disable CMake's package validation check for libLLVM.so.1.
   * Limit lldb autopkg test to the lldb architectures.
   * Generate debian/tests/* files.
   * Disable the usage-wrapper/memory tracking by default.
   * Replace LLDB_DISABLE_ARCHS macro with LLDB_ARCHS macro.
   * Remove unused kfreebsd patches, and remove references to kfreebsd and s390.
   * Remove references to alpha, hppa, powerpcspe and sh4.
 .
   [ Aurelien Jarno ]
   * Enable lldb on riscv64.
   * Enable lldb autopkgtest on riscv64.
llvm-toolchain-19 (1:19.1.0~++rc4-2) unstable; urgency=medium
 .
   * Disable z3 again for Ubuntu, and make the libz3-dev (build) dependency
     conditional.
   * Use -mxgot on mips64el.
   * Disable tests on mips64el, they do timeout.
llvm-toolchain-19 (1:19.1.0~++rc4-1) unstable; urgency=medium
 .
   * New release candidate.
 .
   [ Matthias Klose ]
   * Also explicitly link with -latomic on mips64el.
   * Disable openmp on loong64 (ld: cannot find -lomptarget.rtl.host).
   * Build without z3 on sh4 (ftbfs).
   * Also configure with -DLLVM_EXPERIMENTAL_TARGETS_TO_BUILD="M68k;Xtensa".
   * debian/tests/*: s/18/19/.
   * debian/qualify-clang.sh: Don't check for libclang-cpp.so.$VERSION symlink.
   * libllvm19: Restore the symlink /usr/lib/llvm-19/lib/libLLVM.so.1, apparently
     CMake's LLVMExports.cmake requires it. But why?
 .
   [ Samuel Thibault ]
   * Add hurd-amd64 support.
 .
   [ Sylvestre Ledru ]
   * Remove the cmake dependency on libLibcTableGenUtil.a
     see https://github.com/llvm/llvm-project/issues/99819
   * New snapshot release
llvm-toolchain-19 (1:19.1.0~++rc3-2) unstable; urgency=medium
 .
   * Fix binary-indep build.
   * Disable openmp on mips64el (ld: cannot find -lomptarget.rtl.host).
   * Disable memory tracking on the Hurd and some ports architectures.
llvm-toolchain-19 (1:19.1.0~++rc3-1) unstable; urgency=medium
 .
   * Add a .gitignore file with all toplevel upstream files and directories.
   * Add some memory tracking, getting some information on memory hogs.
   * Don't require g++-multilib on s390x for newer Ubuntu releases.
   * Factor-out ocaml architectures.
   * Don't try to install xray and profile headers on armel and armhf.
   * Disable ocaml on armhf, requires ocamlopt.
   * Factor-out omp architectures.
   * Disable openmp on riscv64 (ld: cannot find -lomptarget.rtl.host).
   * Factor-out flang architectures.
   * Disable flang on mips64el (currently not supported).
   * Don't try to install hwasan_symbolize on x32.
   * Don't try to install xray and profile headers on x32.
   * Fix installation of the shared libllvm and libclang-cpp libraries
     under their soname. Closes: #1072200.
   * Drop some of the unnecessary libllvm symlinks.
   * debian/orig-tar.sh: Don't include .git/.github metadata.
   * debian/rules. Call again dh_ocaml. Closes: #1078234.
   * debian/rules: Don't create a stamp for the override_dh_auto_install target.
llvm-toolchain-19 (1:19.1.0~++rc3-1~exp1) experimental; urgency=medium
 .
   [ Matthias Klose ]
   * ld.lld: When no package-metadata option is given, fall-back
     to the envvar ELF_PACKAGE_METADATA.
 .
   [ Emanuele Rocca ]
   * Enable bolt on arm64, now supported upstream.
 .
   [ Sylvestre Ledru ]
   * remove llvm-cgdata - see 9e90c40564e21dc5f1a12e08cfdf29305aaf9f50
   * New snapshot release
llvm-toolchain-19 (1:19.1.0~++rc2-1~exp1) experimental; urgency=medium
 .
   * New testing release
llvm-toolchain-19 (1:19.1.0~++20240724103243+7af27be6633a-1~exp1) experimental; urgency=medium
 .
   [ John Paul Adrian Glaubitz ]
   * Disable LLVM testsuite on x32
   * Install liborc_rt-x86_64.a on x32
   * Install hwasan_symbolize on x32
 .
   [ Norbert Lange ]
   * build lldb with Intel PT support on x86, amd64
 .
   [ Sylvestre Ledru ]
   * Prepare upload to 19
   * Adjust the clang-X-doc path after the change
     d7dd778cde84110e38521a6b55dfeb4e1c649ec2
   * bring back clang-nvlink-wrapper
     following upstream commit: 37d0568a6593adfe791c1327d99731050540e97a
   * ship llvm-cgdata
 .
   [ Matthias Klose ]
   * Pass --package-metadata on distros with supporting linkers (starting
     with Debian trixie and Ubuntu noble).
     The package metadata is constructed from the environment variables
     ELF_PACKAGE_METADATA.
     Setting NO_PKG_METADATA=1 disables the generation of the package metadata.

lxc (1:5.0.2-1+deb12u3) bookworm; urgency=medium
 .
   * Cherry-pick upstream fix for null pointer dereference when using a shared
     rootfs (See #1085241)

mailmindr (1.7.1-1~deb12u1) bookworm; urgency=medium
 .
   * Prepared for bookworm proposed-update
mailmindr (1.6.1-1) unstable; urgency=medium
 .
   [ Mechtilde ]
   * [919abc8] New upstream version 1.6.1
   * [1891988] Bumped standard version - no changes needed;
               bumpd version of dependency
   * [f1ea3a7] Bumped year in d/copyright
mailmindr (1.6.0-1) unstable; urgency=medium
 .
   [ Mechtilde ]
   * [534d272] New upstream version 1.6.0

mariadb (1:10.11.9-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream version 10.11.9. Includes fixes for several severe regressions
     as noted at https://mariadb.com/kb/en/mariadb-10-11-9-release-notes/
   * This release includes upstream version 10.11.8, with fixes for regressions
     as noted at https://mariadb.com/kb/en/mariadb-10-11-8-release-notes/ as well
     as security issue:
     - CVE-2024-21096
   * Drop multiple patches dropped upstream, including PR#2541.
   * Remove libmariadb file no longer present in MariaDB Connector C v3.3
   * Update client program 'mariadb' trace to match new libmariadb v3.3
   * Update server trace to include new parameters and values from 10.11.7 and .8
   * Note that upstream dropped support for pmem as Red Hat does not support it,
     but we continue to use it in Debian Bookworm
   * Also note upstream updated the MariaDB Connector C library (libmariadb)
     from v3.2 to 3.3 in this stable maintenance release, but it does not cause
     any issues as the soname and list of public symbols continues to be exactly
     same as before
   * Update gdb.conf to be aligned with other branches and easier to maintain
   * Add NEWS item to explain new `mariadb-dump` option `--sandbox`
mariadb (1:10.11.8-1) unstable; urgency=medium
 .
   [ Otto Kekäläinen ]
   * New upstream version 10.11.8. Includes fixes for several severe regressions
     as noted at https://mariadb.com/kb/en/mariadb-10-11-8-release-notes/ as well
     as security issues:
     - CVE-2024-21096
   * Add CMake flag to ignore libfmt exit code so cross-building works
   * Extend skip test list for latest failures in reproducible builds on armhf
   * Disable tests that fail on armhf when full test suite is run
   * Remove temporary exceptions for bugs that should by now be fixed
   * MDEV-31530 Localizations for Swahili language
   * Update Innotop to be compatible with MariaDB 11.x series
   * Replace use of trailing line `| \` with just `|` in Bash scripts
   * Remove libmariadb file no longer present in MariaDB Connector C v3.3
   * Replace autopkgtest smoke test dependency hack with arch list
   * Update client program 'mariadb' trace to match new libmariadb v3.3
     - New parameter 'sandbox' to fix a vulnerability and new mariadb-dump
       output that always has the sandbox header and is backwards incompatible
   * Update server trace to include new parameters innodb-log-spin-wait-delay
     and innodb-snapshot-isolation
   [ Michael Biebl ]
   * Ensure debconf database is purged after it has been used in postrm
 .
   [ Svante Signell ]
   * Make hurd-i386 build fully pass (Closes: #1069094)
mariadb (1:10.11.7-4) unstable; urgency=medium
 .
   [ Michael Biebl ]
   * Drop unnecessary mariadb-server.prerm (Closes: #1067491)
   * Rely on dh_installsystemd to stop the service in postrm
 .
   [ Otto Kekäläinen ]
   * Remove direct dependencies on libcurl4 (Closes: #1068403, #1068404)
   * Make tests compatible with OpenSSL 3.2.0
mariadb (1:10.11.7-3) unstable; urgency=medium
 .
   * Add 'dpkg-dev (>= 1.22.5)' to Build-Depends for time_t transition
     (Closes: #1065275)
mariadb (1:10.11.7-2) unstable; urgency=medium
 .
   [ Graham Inggs ]
   * Rename libraries for 64-bit time_t transition (Closes: #1062841)
 .
   [ Otto Kekäläinen ]
   * Salsa-CI: Adopt new libmariadbd19t64 library name in CI
   * Remove obsolete Lintian override:
     package-supports-alternative-init-but-no-init.d-script
   * Disable more tests not passing for sparc64 on Debian
   * Add patch to fix hurd-i386 build failure (Closes: #1063739)
   * Add patch to partially revert upstream c432c9ef (Closes: #1063738)
   * Disable table_value_constr failing on armhf on Launchpad
   * Backport patch for MDEV-32975 (collation fix for PHP connector)
mariadb (1:10.11.7-1) unstable; urgency=medium
 .
   [ Otto Kekäläinen ]
   * New upstream version 10.11.7. Includes fixes for several regressions
     as noted at https://mariadb.com/kb/en/mariadb-10-11-7-release-notes/
   * Add missing ${misc:Depends} to Depends for mariadb-server-10.5
   * Re-export upstream signing key without extra signatures
   * Remove field Priority on binary package mariadb-server-10.5 that duplicates
     source
   * Update debian/copyright for 2024
   * Delete test plugin pam_mariadb_mtr.so to keep mariadb-test-data clean
   * Clean away unused Lintian overrides
   * Remove unneeded CMAKE_SYSTEM_PROCESSOR from debian/rules
   * Add patch to skip building AUTH_SOCKET on Hurd (Related: #1006531)
   * Use Pre-Depends to ensure init-system-helpers is present
 .
   [ Michael Biebl ]
   * Install PAM module and systemd files into /usr (Closes: #1061348)
   * Install .service files via .install and let dh_installinit/dh_systemd
     generate the maintscript code
   * Switch to dh_installsystemd and debhelper compat 13
mariadb (1:10.11.6-2.1~exp1) experimental; urgency=medium
 .
   * Non-maintainer upload.
   * Rename libraries for 64-bit time_t transition.
mariadb (1:10.11.6-2) unstable; urgency=medium
 .
   [ Otto Kekäläinen ]
   * Make the transitional dummy package description explicit
   * Ensure 'clean' target works
   * Use upstream patch to fix subselect test regressions (Closes: #1059904)
   * Disable innodb_ext_key crashing on ppc64el (Related: #1059904)
   * Apply upstream patch to use RDTIME in RISC-V (Closes: #1060007)
mariadb (1:10.11.6-1) unstable; urgency=medium
 .
   [ Otto Kekäläinen ]
   * New upstream version 10.11.6. Includes fixes for several severe regressions
     as noted at https://mariadb.com/kb/en/mariadb-10-11-6-release-notes/ as well
     as security issues:
     - CVE-2023-22084
   * Upstream MariaDB Server 10.11.6 included fix for fmtlib 10 compatibility
     (Closes: #1056387)
   * Drop STACK_DIRECTION customization as upstream CMake code now handles it
   * Update traces to match these changes in MariaDB 10.11.6:
     - New option 'ALL' to multiple parameters as a way to define that all
       possible values/options are selected
     - New variables log-slow-max-warnings, note-verbosity and
       optimizer-max-sel-args
     - Default value for innodb-purge-batch-size increased to 1000
     - Support for TLSv1.1 has been dropped
 .
   [ Guillem Jover ]
   * Remove tilegx support removed from dpkg 1.22.0 (Closes: #1056748)

mpg123 (1.31.2-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix buffer overflow (Frankenstein's Monster) (CVE-2024-10573)
     (Closes: #1086443)

needrestart (3.6-4+deb12u3) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * core: fix regression of false positives for processes running in chroot or
     mountns (Closes: #1087918, #1088047, #1088012, #1087917, #1087958,
     #1087957)
needrestart (3.6-4+deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Address local privilege escalation vulnerabilities from any unprivileged
     user to root (CVE-2024-48990, CVE-2024-48992, CVE-2024-48991,
     CVE-2024-11003):
     - core: prevent race condition on /proc/$PID/exec evaluation
     - interp: do not set PYTHONPATH environment variable to prevent a LPE
     - interp: do not set RUBYLIB environment variable to prevent a LPE
     - interp: chdir into empty directory to prevent python parsing arbitrary
       files
     - interp: drop usage of Module::ScanDeps to prevent LPE
   * debian/control: Drop Depends on libmodule-scandeps-perl

nfs-utils (1:2.6.2-4+deb12u1) bookworm; urgency=medium
 .
   * debian/salsa-ci.yml: Set release to bookworm
   * d/salsa-ci.yml: Suppress aliased-location lintian errors
   * exports: Fix referrals when --enable-junction=no
     (Closes: #1083098, #1035908)

nss (2:3.87.1-1+deb12u1) bookworm-security; urgency=medium
 .
   * nss: fix CVE-2024-6602, CVE-2024-6609 and CVE-2024-0743

nvidia-graphics-drivers (535.216.01-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (535.216.01-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.216.01 (2024-10-22).
     * Fixed CVE-2024-0126.  (Closes: #1085968)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5586
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * nvidia-detect: Add support for Tesla 535 drivers.
   * nvidia-detect: Restrict support to driver series in trixie.
   * Clean up packaging cruft in preparation for forking Tesla 535 drivers.
 .
 nvidia-graphics-drivers (535.183.06-2) unstable; urgency=medium
 .
   * Simplify using nv_pfn_valid() in virt_addr_valid() on ppc64el.
   * Backport nv_get_kern_phys_address() changes from 555.42.02 to fix kernel
     module build with gcc-14 on arm*.  (Closes: #1084844)
   * Regenerate debian/control with libdpkg-perl/bookworm.
 .
 nvidia-graphics-drivers (535.183.06-1) unstable; urgency=medium
 .
   * New upstream Tesla branch release 535.183.06 (2024-07-09).
 .
   [ Andreas Beckmann ]
   * Use dh_movetousr (if available) to relocate the firmware to /usr where
     needed.  (Closes: #1073744)
   * Log an error message if nvidia-peermem refuses to load because it was
     built without IB peer memory symbols present.  (Closes: #1074350)
   * Backport follow_pfn changes from 550.90.07 to fix kernel module build for
     Linux 6.10.  (Closes: #1077841, #1078425, #1078462, #1078489, #1078424)
   * Use pfn_valid() variant with rcu_read_{,un}lock_sched() from Linux 6.8-rc3
     in virt_addr_valid() for Linux 5.10.210 - 5.10.999 to avoid using GPL
     symbols on ppc64el.
   * bug-script: Report 'apt-cache policy'.
nvidia-graphics-drivers (535.183.06-2) unstable; urgency=medium
 .
   * Simplify using nv_pfn_valid() in virt_addr_valid() on ppc64el.
   * Backport nv_get_kern_phys_address() changes from 555.42.02 to fix kernel
     module build with gcc-14 on arm64.  (Closes: #1084844)
   * Regenerate debian/control with libdpkg-perl/bookworm.
nvidia-graphics-drivers (535.183.06-1) unstable; urgency=medium
 .
   * New upstream Tesla branch release 535.183.06 (2024-07-09).
 .
   [ Andreas Beckmann ]
   * Use dh_movetousr (if available) to relocate the firmware to /usr where
     needed.  (Closes: #1073744)
   * Log an error message if nvidia-peermem refuses to load because it was
     built without IB peer memory symbols present.  (Closes: #1074350)
   * Backport follow_pfn changes from 550.90.07 to fix kernel module build for
     Linux 6.10.  (Closes: #1077841, #1078425, #1078462, #1078489, #1078424)
   * ppc64el: Use pfn_valid() variant with rcu_read_{,un}lock_sched() for
     Linux 5.10 from 5.10.210 onwards to avoid using GPL symbols.
   * bug-script: Report 'apt-cache policy' (535.183.06-1).
   * Bump Standards-Version to 4.7.0. No changes needed.
nvidia-graphics-drivers (535.183.06-1~bpo12+1) bookworm-backports; urgency=medium
 .
   * Rebuild for bookworm-backports.
 .
 nvidia-graphics-drivers (535.183.06-1) unstable; urgency=medium
 .
   * New upstream Tesla branch release 535.183.06 (2024-07-09).
 .
   [ Andreas Beckmann ]
   * Use dh_movetousr (if available) to relocate the firmware to /usr where
     needed.  (Closes: #1073744)
   * Log an error message if nvidia-peermem refuses to load because it was
     built without IB peer memory symbols present.  (Closes: #1074350)
   * Backport follow_pfn changes from 550.90.07 to fix kernel module build for
     Linux 6.10.  (Closes: #1077841, #1078425, #1078462, #1078489, #1078424)
   * ppc64el: Use pfn_valid() variant with rcu_read_{,un}lock_sched() for
     Linux 5.10 from 5.10.210 onwards to avoid using GPL symbols.
   * bug-script: Report 'apt-cache policy' (535.183.06-1).
   * Bump Standards-Version to 4.7.0. No changes needed.
nvidia-graphics-drivers (535.183.01-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.183.01 (2024-06-04).
     * Fixed CVE-2024-0090, CVE-2024-0092.  (Closes: #1072792)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5551
     - Fixed a bug that could cause additional X screens to claim displays
       that should have been assigned to a prior X screen based on the given X
       configuration.
   * New upstream long term support branch release 535.179 (2024-05-09).
   * New upstream long term support branch release 535.171.04 (2024-03-21).
     - Fixed Xid error when playing Alan Wake 2 with ray tracing enabled.
     - Fixed a regression which prevented some Vulkan applications from
       receiving VK_DEVICE_LOST upon a VT switch, which could lead to the
       application hanging or behaving incorrectly.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.

nvidia-open-gpu-kernel-modules (535.216.01-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-open-gpu-kernel-modules (535.216.01-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.216.01 (2024-10-22).
     * Fixed CVE-2024-0126.  (Closes: #1085976)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5586
   * Sync with src:nvidia-graphics-drivers.
 .
 nvidia-open-gpu-kernel-modules (535.183.06-2) unstable; urgency=medium
 .
   * Sync with src:nvidia-graphics-drivers.
 .
 nvidia-open-gpu-kernel-modules (535.183.06-1) unstable; urgency=medium
 .
   * New upstream Tesla branch release 535.183.06 (2024-07-09).
   * Sync with src:nvidia-graphics-drivers.
   * Refresh patches.
   * Bump Standards-Version to 4.7.0. No changes needed.
nvidia-open-gpu-kernel-modules (535.183.06-2) unstable; urgency=medium
 .
   * Sync with src:nvidia-graphics-drivers.
nvidia-open-gpu-kernel-modules (535.183.06-1) unstable; urgency=medium
 .
   * New upstream Tesla branch release 535.183.06 (2024-07-09).
   * Sync with src:nvidia-graphics-drivers.
   * Refresh patches.
   * Bump Standards-Version to 4.7.0. No changes needed.
nvidia-open-gpu-kernel-modules (535.183.01-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.183.01 (2024-06-04).
     * Fixed CVE-2024-0090, CVE-2024-0092.  (Closes: #1072800)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5551
   * New upstream long term support branch release 535.179 (2024-05-09).
   * New upstream long term support branch release 535.171.04 (2024-03-21).
   * Sync with src:nvidia-graphics-drivers.
   * Refresh patches.

oar (2.5.9-1+deb12u1) bookworm; urgency=medium
 .
   [ Pierre Neyron ]
   * Fix Drawgantt-SVG with php8 (Closes: #1068444)
     - create_function does not exists anymore
     - static methods must be declared as such
   * Fix the oar user creation on new install (locked otherwise) (Closes:
     #1068713)
   * oar-web-status: add missing dependency to libcgi-fast-perl (Closes:
     #1068711)

opensc (0.23.0-0.3+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Fix CVE-2023-5992: Side-channel leaks while stripping encryption PKCS#1.5
     padding in OpenSC. (Closes: #1064189)
   * Fix CVE-2024-1454: Memory use after free in AuthentIC driver when updating
     token info.
   * Fix CVE-2024-8443: Heap buffer overflow in OpenPGP driver when generating
     key. (Closes: #1082853)
   * Fix CVE-2024-45615: Usage of uninitialized values in libopensc and
     pkcs15init. (Closes: #1082859)
   * Fix CVE-2024-45616: Uninitialized values after incorrect check or usage of
     APDU response values in libopensc. (Closes: #1082860)
   * Fix CVE-2024-45617: Uninitialized values after incorrect or missing
     checking return values of functions in libopensc. (Closes: #1082861)
   * Fix CVE-2024-45618: Uninitialized values after incorrect or missing
     checking return values of functions in pkcs15init. (Closes: #1082862)
   * Fix CVE-2024-45619: Incorrect handling length of buffers or files in
     libopensc. (Closes: #1082863)
   * Fix CVE-2024-45620: Incorrect handling length of buffers or files in
     pkcs15init. (Closes: #1082864)
   * Add d/salsa-ci.yml for Salsa CI.

openssh (1:9.2p1-2+deb12u4) bookworm; urgency=medium
 .
   * Always use the internal mkdtemp implementation, since it substitutes
     more randomness into the template string than glibc's version (closes:
     #1001186, #1064898).
   * Fix gssapi-keyex declaration, broken when rebasing onto 8.9p1
     (LP: #2053146).
   * Import ssh-gssapi autopkgtest from 1:9.8p1-4.
   * Don't prefer host-bound public key signatures if there was no initial
     host key, as is the case when using GSS-API key exchange (closes:
     #1041521, #1088248).
   * Make sntrup761x25519-sha512 key exchange algorithm available without the
     @openssh.com suffix too (closes: #1088873).

pgtcl (1:3.0.0-1+deb12u1) bookworm; urgency=medium
 .
   * Install library in default Tcl auto_path (Closes: #1089166).

php8.2 (8.2.26-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream version 8.2.26
    + Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface.
    + [CVE-2024-8929]: Leak partial content of the heap through heap buffer
      over-read.
    + [CVE-2024-8932]: OOB access in ldap_escape.
    + [CVE-2024-11233]: Single byte overread with
      convert.quoted-printable-decode filter.
    + [CVE-2024-11234]: Configuring a proxy in a stream context might allow
      for CRLF injection in URIs.
    + [CVE-2024-11236]: Integer overflow in the dblib quoter causing OOB
      writes.
    + [CVE-2024-11236]: Integer overflow in the firebird quoter causing OOB
      writes.
   * Revert "ext/gmp: gmp_pow fix FPE with large values" upstream patch
php8.2 (8.2.24-1) unstable; urgency=medium
 .
   * New upstream version 8.2.24
    + [CVE-2024-8926]: Bypass of CVE-2024-4577, Parameter Injection
      Vulnerability
    + [CVE-2024-8927]: cgi.force_redirect configuration is bypassable due
      to the environment variable collision
    + [CVE-2024-8927]: Logs from FPM childrens may be altered
    + [CVE-2024-8925]: Erroneous parsing of multipart form data

poco (1.11.0-3+deb12u1) bookworm; urgency=medium
 .
   * CVE-2023-52389

postgresql-15 (15.10-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 15.10.
 .
     + Repair ABI break for extensions that work with struct ResultRelInfo
 .
       Last week's minor releases unintentionally broke binary compatibility
       with timescaledb and several other extensions.  Restore the affected
       structure to its previous size, so that such extensions need not be
       rebuilt.
 .
     + Restore functionality of ALTER {ROLE|DATABASE} SET role
 .
       The fix for CVE-2024-10978 accidentally caused settings for role to not
       be applied if they come from non-interactive sources, including previous
       ALTER {ROLE|DATABASE} commands and the PGOPTIONS environment variable.
postgresql-15 (15.9-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 15.9.
 .
     + Ensure cached plans are marked as dependent on the calling role when RLS
       applies to a non-top-level table reference (Nathan Bossart)
 .
       If a CTE, subquery, sublink, security invoker view, or coercion
       projection in a query references a table with row-level security
       policies, we neglected to mark the resulting plan as potentially
       dependent on which role is executing it.  This could lead to later query
       executions in the same session using the wrong plan, and then returning
       or hiding rows that should have been hidden or returned instead.
 .
       The PostgreSQL Project thanks Wolfgang Walther for reporting this
       problem. (CVE-2024-10976)
 .
     + Make libpq discard error messages received during SSL or GSS protocol
       negotiation (Jacob Champion)
 .
       An error message received before encryption negotiation is completed
       might have been injected by a man-in-the-middle, rather than being real
       server output.  Reporting it opens the door to various security hazards;
       for example, the message might spoof a query result that a careless user
       could mistake for correct output.  The best answer seems to be to
       discard such data and rely only on libpq's own report of the connection
       failure.
 .
       The PostgreSQL Project thanks Jacob Champion for reporting this problem.
       (CVE-2024-10977)
 .
     + Fix unintended interactions between SET SESSION AUTHORIZATION and SET
       ROLE (Tom Lane)
 .
       The SQL standard mandates that SET SESSION AUTHORIZATION have a
       side-effect of doing SET ROLE NONE.  Our implementation of that was
       flawed, creating more interaction between the two settings than
       intended. Notably, rolling back a transaction that had done SET SESSION
       AUTHORIZATION would revert ROLE to NONE even if that had not been the
       previous state, so that the effective user ID might now be different
       from what it had been before the transaction.  Transiently setting
       session_authorization in a function SET clause had a similar effect. A
       related bug was that if a parallel worker inspected
       current_setting('role'), it saw none even when it should see something
       else.
 .
       The PostgreSQL Project thanks Tom Lane for reporting this problem.
       (CVE-2024-10978)
 .
     + Prevent trusted PL/Perl code from changing environment variables
       (Andrew Dunstan, Noah Misch)
 .
       The ability to manipulate process environment variables such as PATH
       gives an attacker opportunities to execute arbitrary code.  Therefore,
       trusted PLs must not offer the ability to do that.  To fix plperl,
       replace %ENV with a tied hash that rejects any modification attempt with
       a warning. Untrusted plperlu retains the ability to change the
       environment.
 .
       The PostgreSQL Project thanks Coby Abrams for reporting this problem.
       (CVE-2024-10979)

proftpd-dfsg (1.3.8+dfsg-4+deb12u4) bookworm-security; urgency=high
 .
   * Add my Debian E-Mail address to Field Uploaders.
   * Patch for issue Issue #1830 (Closes: #1082326).
     Supplemental Group Inheritance Grants Unintended Access to GID 0
     (CVE-2024-48651).

prometheus-node-exporter-collectors (0.0~git20230203.6f710f8-1+deb12u2) bookworm; urgency=medium
 .
   * Team upload
 .
   [ Antoine Beaupré ]
   * Add missing `apt_package_cache_timestamp_seconds` metrics ommitted from previous upload.
 .
   [ Reinhard Tartler ]
   * apt_info.py: fix apt_upgrades_pending and apt_upgrades_held, Closes: #1077694
   * backport another improvement to apt_package_cache_timestamp_seconds

pypy3 (7.3.11+dfsg-2+deb12u3) bookworm; urgency=medium
 .
   * Security patches to the standard library:
     - CVE-2023-27043: Parse email addresses with special characters,
       correctly.
     - CVE-2024-9287: Quote path names in venv activation scripts.
     - CVE-2024-4032: Fix private IP address ranges.
     - CVE-2024-6232: Fix ReDoS when parsing tarfile headers.
     - CVE-2024-8088: Avoid infinite loop in zip file parsing.
     - CVE-2024-6923: Encode newlines in headers in the email module.
     - CVE-2024-7592: Quadratic complexity parsing cookies with backslashes.
     - CVE-2024-11168: Ensure addresses in brackets are valid IPv6 addresses.
   * Clean the python 2.7 source tree.
   * Clean cffi modules C source, lex and yacc tabs.

python-aiohttp (3.8.4-1+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2023-47627
   * CVE-2023-49081 (Closes: #1057163)
   * CVE-2023-49082 (Closes: #1057164)
   * CVE-2024-23334 (Closes: #1062709)
   * CVE-2024-30251 (Closes: #1070364)
   * CVE-2024-52304 (Closes: #1088109)

python-asyncssh (2.10.1-2+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload by the Debian LTS team.
   * debian/patches/CVE-2023-46445-and-CVE-2023-46446.patch: Add patch to fix
     CVE-2023-46445 and CVE-2023-46446 (Rogue Session Attack, Rogue Extension
     Negotiation):
     - Put additional restrictions on when messages are accepted during the
       SSH handshake to avoid message injection attacks from a rogue client
       or server (closes: #1055999, #1056000).

python-tornado (6.2.0-3+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload by the Debian LTS team.
   * d/patches/CVE-2024-52804.patch: Fix CVE-2024-52804 (closes: #1088112).
     - The algorithm used for parsing HTTP cookies in Tornado versions prior to
       6.4.2 sometimes has quadratic complexity, leading to excessive CPU
       consumption when parsing maliciously-crafted cookie headers. This
       parsing occurs in the event loop thread and may block the processing of
       other requests.
   * d/patches/CVE-2023-28370-1.patch,
     d/patches/CVE-2023-28370-2.patch: Fix CVE-2023-28370 (closes: #1036875).
     - Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows
       a remote unauthenticated attacker to redirect a user to an arbitrary web
       site and conduct a phishing attack by having user access a specially
       crafted URL.

python-urllib3 (1.26.12-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Fix CVE-2023-43804: Cookie request header isn't stripped during
     cross-origin redirects. (Closes: #1053626)
   * Fix CVE-2023-45803: Request body not stripped after redirect from 303
     status changes request method to GET. (Closes: #1054226)
   * Fix CVE-2024-37891: Proxy-Authorization request header isn't stripped
     during cross-origin redirects. (Closes: #1074149)
   * Use system 'six' module in urllib3.util.ssltransport. (Closes: #1089507)
   * Fix test/test_connectionpool.py (currently ignored).
   * Adjust d/salsa-ci.yml for bookworm.
   * Adjust d/gbp.conf for bookworm.

python-werkzeug (2.2.2-3+deb12u1) bookworm; urgency=high
 .
   * Backport upstream fix for CVE-2023-46136
     (denial of service when file upload begins with CR or LF)
     (Closes: #1054553).
   * Backport upstream fixes for CVE-2024-34069
     (arbitrary code execution on developer's machine via the debugger)
     (Closes: #1070711).
   * Backport upstream fix for CVE-2024-49767
     (denial of service when processing multipart/form-data requests)
     (Closes: #1086062).

python3.11 (3.11.2-6+deb12u5) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2023-27043: Reject malformed addresses in email.parseaddr()
     (Closes: #1059298)
   * CVE-2024-6923: Encode newlines in headers in the email module
   * CVE-2024-7592: Quadratic complexity parsing cookies with backslashes
   * CVE-2024-9287: venv activation scripts did't quote paths
   * CVE-2024-11168: urllib functions improperly validated bracketed hosts

qemu (1:7.2+dfsg-7+deb12u12) bookworm; urgency=medium
 .
   * mark-internal-codegen-functions-hidden.patch:
     make GOT on AArch64 to fit. See comment in the patch for details.
   * Revert "d/rules: disable capstone for static-user build on aarch64"
     Re-enable capstone usage on aarch64, restore the status quo.
qemu (1:7.2+dfsg-7+deb12u11) bookworm; urgency=medium
 .
   * disable capstone for qemu-user-static buildi on arm64. See
     https://gitlab.com/qemu-project/qemu/-/issues/1129 for details.
     The choice is to disable either capstone or pie, and it is better
     to keep pie enabled because it helps with guest/host address conflicts.
     Capstone is used to produce disassembler output of guest code, it is
     nice to have it but it is not required for normal operations.
   * skip +deb12u11 release due to a typo
qemu (1:7.2+dfsg-7+deb12u10) bookworm; urgency=medium
 .
   * disable capstone for qemu-user-static build. See
     https://gitlab.com/qemu-project/qemu/-/issues/1129 for details.
     The choice is to disable either capstone or pie, and it is better
     to keep pie enabled because it helps with guest/host address conflicts.
     Capstone is used to produce disassembler output of guest code, it is
     nice to have it but it is not required for normal operations.
qemu (1:7.2+dfsg-7+deb12u9) bookworm; urgency=medium
 .
   * re-enable (upstream default) --static-pie linking for qemu-user-static
     binaries.  This has been disabled due to a mistake (LP:#1908331), has been
     re-enabled in later debian qemu releases.  Disabling static-pie leads to
     qemu binaries using fixed address which has high chance to clash with
     something in the emulated binary address space, and hence makes qemu-user
     generally crashy.  But this change has been forgotten in bookworm.  With
     recent bookworm kernel updates (6.1.112, with changes to KASLR), these
     qemu-user-static crashes has become too common.  Also add lintian-override
     about not-static-enough binaries.
     Closes: #1087822, #1053101
   * update to upstream 7.2.15 stable/bugfix release, v7.2.15.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.15 :
     - Update version for 7.2.15 release
     - usb-hub: Fix handling port power control messages
     - hw/audio/hda: fix memory leak on audio setup
     - hw/misc/mos6522: Fix bad class definition of the MOS6522 device
     - tcg: Allow top bit of SIMD_DATA_BITS to be set in simd_desc()
     - target/arm: Drop user-only special case in sve_stN_r
     - linux-user: Fix setreuid and setregid to use direct syscalls
     - target/i386: Fix legacy page table walk
     - 9pfs: fix crash on 'Treaddir' request
     - hw/nvme: fix handling of over-committed queues
     - target/arm: Fix SVE SDOT/UDOT/USDOT (4-way, indexed)
     - target/ppc: Set ctx->opcode for decode_insn32()
     - target/riscv: Fix vcompress with rvv_ta_all_1s
     - hw/intc/riscv_aplic: Check and update pending when write sourcecfg
     - hw/intc/riscv_aplic: Fix in_clrip[x] read emulation
     - target/riscv: Set vtype.vill on CPU reset
     - hw/intc: Don't clear pending bits on IRQ lowering
     - target/riscv: Correct SXL return value for RV32 in RV64 QEMU
     - target/riscv/csr.c: Fix an access to VXSAT
     - target/arm: Don't assert in regime_is_user() for E10 mmuidx values
     - net/tap-win32: Fix gcc 14 format truncation errors
     - Fix calculation of minimum in colo_compare_tcp
     - gitlab: make check-[dco|patch] a little more verbose
     - linux-user/ppc: Fix sigmask endianness issue in sigreturn
     - target/i386: Walk NPT in guest real mode
     - target/i386: Avoid unreachable variable declaration in mmu_translate()
     - tcg: Reset data_gen_ptr correctly
     - raw-format: Fix error message for invalid offset/size
     - tests: Wait for migration completion on destination QEMU
       to avoid failures
     - KVM: Dynamic sized kvm memslots array
     - hw/audio/hda: free timer on exit
     - hw/intc/arm_gicv3_cpuif: Add cast to match the documentation
     - scsi: fetch unit attention when creating the request
     - linux-user: Fix parse_elf_properties GNU0_MAGIC check
     - linux-user/flatload: Take mmap_lock in load_flt_binary()
     - tracetool: avoid invalid escape in Python string
     - fuzz: disable leak-detection for oss-fuzz builds
     - block/reqlist: allow adding overlapping requests
     - target/ppc: Fix lxvx/stxvx facility check
     - softmmu/physmem.c: Keep transaction attribute in address_space_map()
qemu (1:7.2+dfsg-7+deb12u8) bookworm; urgency=medium
 .
   * update to upstream 7.2.14 stable/bugfix release, v7.2.14.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.14 :
     - Update version for 7.2.14 release
     - hw/intc/arm_gic: fix spurious level triggered interrupts
     - tests/docker: remove debian-armel-cross
     - hw/display/vhost-user-gpu.c: fix vhost_user_gpu_chr_read()
     - crypto: check gnutls & gcrypt support the requested pbkdf hash
     - crypto: run qcrypto_pbkdf2_count_iters in a new thread
     - softmmu/physmem: fix memory leak in dirty_memory_extend()
     - gitlab: migrate the s390x custom machine to 22.04
     - crypto/tlscredspsk: Free username on finalize
     - module: Prevent crash by resetting local_err in module_load_qom_all()
     - target/i386: Do not apply REX to MMX operands
     - block/blkio: use FUA flag on write zeroes only if supported
     - hw/core/ptimer: fix timer zero period condition for freq > 1GHz
     - nbd/server: CVE-2024-7409: Avoid use-after-free when closing server
     - nbd/server: CVE-2024-7409: Close stray clients at server-stop
     - nbd/server: CVE-2024-7409: Drop non-negotiating clients
     - nbd/server: CVE-2024-7409: Cap default max-connections to 100
     - nbd/server: Plumb in new args to nbd_client_add()
     - iotests: Add `vvfat` tests
     - vvfat: Fix reading files with non-continuous clusters
     - vvfat: Fix wrong checks for cluster mappings invariant
     - vvfat: Fix usage of `info.file.offset`
     - vvfat: Fix bug in writing to middle of file
     - hw/sd/sdhci: Reset @data_count index on invalid ADMA transfers
     - virtio-net: Fix network stall at the host side waiting for kick
     - virtio-net: Ensure queue index fits with RSS
     - target/arm: Handle denormals correctly for FMOPA (widening)
     - hw/arm/mps2-tz.c: fix RX/TX interrupts order
     - hw/i386/amd_iommu: Don't leak memory in amdvi_update_iotlb()
     - docs/sphinx/depfile.py: Handle env.doc2path() returning a Path not a str
     - target/arm: Ignore SMCR_EL2.LEN and SVCR_EL2.LEN if EL2 is not enabled
     - target/arm: Avoid shifts by -1 in tszimm_shr() and tszimm_shl()
     - target/arm: Fix UMOPA/UMOPS of 16-bit values
     - target/arm: Don't assert for 128-bit tile accesses when SVL is 128
     - hw/misc/bcm2835_property: Fix handling of FRAMEBUFFER_SET_PALETTE
     - hw/char/bcm2835_aux: Fix assert when receive FIFO fills up
     - target/rx: Use target_ulong for address in LI
     - hw/virtio: Fix the de-initialization of vhost-user devices
     - util/async.c: Forbid negative min/max
       in aio_context_set_thread_pool_params()
     - hw/intc/loongson_ipi: Access memory in little endian
     - chardev/char-win-stdio.c: restore old console mode
     - target/i386: do not crash if microvm guest uses SGX CPUID leaves
     - intel_iommu: fix FRCD construction macro
     - hw/cxl/cxl-host: Fix segmentation fault when getting cxl-fmw property
     - hw/nvme: fix memory leak in nvme_dsm
     - target/arm: Use FPST_F16 for SME FMOPA (widening)
     - target/arm: Use float_status copy in sme_fmopa_s
     - qapi/qom: Document feature unstable of @x-vfio-user-server

quicktext (5.16-1~deb12u1) bookworm; urgency=medium
 .
   [ Mechtilde ]
   * [9d327fa] Prepared rebuild for bookworm
quicktext (5.10-1) unstable; urgency=medium
 .
   [ Mechtilde ]
   * [009df44] New upstream version 5.10
quicktext (5.6-1) unstable; urgency=medium
 .
   [ Mechtilde ]
   * [a859d0b] New upstream version 5.6
   * [0e8df4f] Bumped standard version - no changes needed
   * [9bc840e] Bumped min version of thunderbird

redis (5:7.0.15-1~deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2024-31227: DoS with malformed ACL selectors
   * CVE-2024-31228: unbounded pattern matching DoS
   * CVE-2024-31449: Lua bit library stack overflow
   * Closes: 1084805

renderdoc (1.24+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2023-33863: integer overflow
   * CVE-2023-33864: integer overflow
   * CVE-2023-33865: symlink attack
   * Closes: #1037208

ruby-doorkeeper (5.5.0-2+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2023-34246: Improper Authentication (Closes: #1038950)

setuptools (66.1.1-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload by the Debian LTS team.
   * debian/patches/CVE-2024-6345.patch: Fix CVE-2024-6345.
     - Replace the unsafe use of os.system to fix a possible remote code
       execution by supplying malicious URLs in a package index or via the
       command line.

simplesamlphp (1.19.7-1+deb12u1) bookworm-security; urgency=high
 .
   * Upload to the security archive.
   * Fix CVE-2024-52596

smarty3 (3.1.47-2+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * CVE-2023-28447 - JavaScript injection (Closes: #1033964)
   * CVE-2024-35226 - PHP Code injection by untrusted template authors
     (Closes: #1072530)
   * Add simple autopkgtests for the three CVEs.

smarty4 (4.3.0-1+deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2024-35226 (Closes: #1072529)

sqlparse (0.4.2-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Fix CVE-2023-30608: Parser contains a regular expression that is
     vulnerable to ReDOS. (Closes: #1034615)
   * Fix CVE-2024-4340: Parsing of heavily nested list leads to Denial of
     Service. (Closes: #1070148)
   * Adjust d/salsa-ci.yml for bookworm.

srt (1.5.1-1+deb12u1) bookworm; urgency=medium
 .
   * [1e9db13] d/control: correct hard dependencies for dev packages.
     Thanks to Laurent Bigonville <bigon@debian.org> (Closes: #1086751)

symfony (5.4.23+dfsg-1+deb12u4) bookworm-security; urgency=medium
 .
   * Backport security fixes from Symfony 5.4.47
     - [security-http] Check owner of persisted remember-me cookie
       [CVE-2024-51996]
     - [HttpClient] Resolve hostnames in NoPrivateNetworkHttpClient
       [CVE-2024-50342]
symfony (5.4.23+dfsg-1+deb12u3) bookworm-security; urgency=medium
 .
   * Backport security fixes from Symfony 5.4.46
     - [Validator] Add D regex modifier in relevant validators [CVE-2024-50343]
     - Do not read from argv on non-CLI SAPIs [CVE-2024-50340]
     - [HttpClient] Filter private IPs before connecting when Host == IP
       [CVE-2024-50342]
     - [HttpFoundation] Reject URIs that contain invalid characters
       [CVE-2024-50345]
   * Backport fixes to test suite

systemd (252.33-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.33
systemd (252.32-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.32

tango (9.3.4+dfsg1-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Make the property_* tables compatible with MariaDB 10.11 at install time.
     Thanks to Thomas Braun. Also update table modifications accordingly in
     dbconfig-common when upgrading from 9.3.4 (Closes: #1062979).
   * Add d/tests/starter-basic, including a test for #1062979.
   * Switch Salsa CI RELEASE variable from experimental to bookworm. Otherwise,
     Salsa CI runs the pipeline on experimental, and it has to be manually
     overriden.

tbsync (4.12-1~deb12u1) bookworm; urgency=medium
 .
   [ Mechtilde ]
   * [b716540] Merge branch 'debian/sid' into debian/bookworm
   * Prepared for release in bookworm (proposed-updates)
tbsync (4.8-1) unstable; urgency=medium
 .
   [ Mechtilde ]
   * [958ffe6] New upstream version 4.8
   * [2a36c0a] Bumped standard version - no changes needed;
               bumped version of dependencies
   * [fbee43b] Bumped year in d/copyright
tbsync (4.7-1) unstable; urgency=medium
 .
   [ Mechtilde ]
   * [c727b2e] New upstream version 4.7
   * [3187154] Compression is now tar.gz

texlive-bin (2022.20220321.62855-5.1+deb12u2) bookworm; urgency=medium
 .
   * Add patches from upstream for "luatex loses or changes text when
     discretionaries with priorities are used" (Closes: #1041441).
   * Add patch for CVE-2024-25262.

thunderbird (1:128.5.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:128.4.3esr-1) unstable; urgency=medium
 .
   * [0f444cd] New upstream version 128.4.3esr
     Fixed CVE issues in upstream version 128.4.3 (MFSA 2024-61):
     CVE-2024-11159: Potential disclosure of plaintext in OpenPGP encrypted
                     message
   * [a1da929] Rebuild patch queue from patch-queue branch
     Remove wrong metadata from patch
     fixes/Install-vaapitest-v4l2test-only-when-build.patch
thunderbird (1:128.4.3esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:128.4.2esr-1) unstable; urgency=medium
 .
   * [a203321] New upstream version 128.4.2esr
thunderbird (1:128.4.0esr-1) unstable; urgency=medium
 .
   * [33e8ca6] New upstream version 128.4.0esr
     Fixed CVE issues in upstream version 128.4 (MFSA 2024-58):
     CVE-2024-10458: Permission leak via embed or object elements
     CVE-2024-10459: Use-after-free in layout with accessibility
     CVE-2024-10460: Confusing display of origin for external protocol handler
                     prompt
     CVE-2024-10461: XSS due to Content-Disposition being ignored in
                     multipart/x-mixed-replace response
     CVE-2024-10462: Origin of permission prompt could be spoofed by long URL
     CVE-2024-10463: Cross origin video frame leak
     CVE-2024-10464: History interface could have been used to cause a Denial
                     of Service condition in the browser
     CVE-2024-10465: Clipboard "paste" button persisted across tabs
     CVE-2024-10466: DOM push subscription message could hang Firefox
     CVE-2024-10467: Memory safety bugs fixed in Firefox 132, Thunderbird 132,
                     Firefox ESR 128.4, and Thunderbird 128.4
thunderbird (1:128.4.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
 .
   [ Emilio Pozuelo Monfort ]
   * [3908929] Fix linker memory issues when building on bookworm/amd64
thunderbird (1:128.3.2esr-1) unstable; urgency=medium
 .
   * [ae355fe] New upstream version 128.3.2esr
     Fixed CVE issues in upstream version 128.3.1 (MFSA 2024-52):
     CVE-2024-9680: Use-after-free in Animation timeline
     (Closes: #1084989)
   * [d10c926] d/control: Remove s390x from architecture list
   * [02f107f] d/control: Fix VCS links so they point to debian/sid
thunderbird (1:128.3.0esr-1) unstable; urgency=medium
 .
   * [8f4b4a5] New upstream version 128.3.0esr
     Fixed CVE issues in upstream version 128.3 (MFSA 2024-49):
     CVE-2024-9392: Compromised content process can bypass site isolation
     CVE-2024-9393: Cross-origin access to PDF contents through multipart
                    responses
     CVE-2024-9394: Cross-origin access to JSON contents through multipart
                    responses
     CVE-2024-8900: Clipboard write permission bypass
     CVE-2024-9396: Potential memory corruption may occur when cloning certain
                    objects
     CVE-2024-9397: Potential directory upload bypass via clickjacking
     CVE-2024-9398: External protocol handlers could be enumerated via popups
     CVE-2024-9399: Specially crafted WebTransport requests could lead to
                    denial of service
     CVE-2024-9400: Potential memory corruption during JIT compilation
     CVE-2024-9401: Memory safety bugs fixed in Firefox 131/ESR 115.16/ESR
                    128.3 and Thunderbird 131/128.3
     CVE-2024-9402: Memory safety bugs fixed in Firefox 131/ESR 128.3 and
                    Thunderbird 131/128.3
thunderbird (1:128.2.3esr-1) unstable; urgency=medium
 .
   * [2c299bf] New upstream version 128.2.3esr
   * [95769b9] d/thunderbird.postinst: Correct misspelled THUNDERBIRD_LIBDIR
     (Closes: #1082842)
   * [c46440b] d/t-lintian-overrides: Drop librnp.so from list
   * [17dc3f3] d/s/lintian-overrides: Overhaul the list to ignore
thunderbird (1:128.2.1esr-1) unstable; urgency=medium
 .
   * [5d41f15] New upstream version 128.2.1esr
thunderbird (1:128.2.0esr-1) unstable; urgency=medium
 .
   * [33f11cd] d/create-upstream-tarballs.py: Ignore version 130.0
   * [56e8a06] New upstream version 128.2.0esr
     Fixed CVE issues in upstream version 128.2 (MFSA 2024-43):
     CVE-2024-8394: Crash when aborting verification of OTR chat
     CVE-2024-8385: WASM type confusion involving ArrayTypes
     CVE-2024-8381: Type confusion when looking up a property name in a
                    "with" block
     CVE-2024-8382: Internal event interfaces were exposed to web content
                    when browser EventHandler listener callbacks ran
     CVE-2024-8384: Garbage collection could mis-color cross-compartment
                    objects in OOM conditions
     CVE-2024-8386: SelectElements could be shown over another site if popups
                    are allowed
     CVE-2024-8387: Memory safety bugs fixed in Firefox 130, Firefox ESR 128.2,
                    and Thunderbird 128.2
thunderbird (1:128.1.1esr-1) unstable; urgency=medium
 .
   [ Michael Weghorn ]
   * [91e6069] Use app ID that matches the desktop file name
     (Closes: #1022037)
 .
   [ Carsten Schoenert ]
   * [b07a057] d/control: Drop B-D on libdbus-glib-1-dev
     (Closes: #955955)
   * [16531ce] d/create-upstream-tarballs.py: Ignore version 129.0
   * [544931b] d/control: Fix short description for thunderbird-l10n-lv
     (Closes: #1079029)
   * [9d65f1f] New upstream version 128.1.1esr
   * [1eff397] d/rules: Move/rename third party Python modul temporarly
thunderbird (1:128.1.0esr-1) unstable; urgency=medium
 .
   [ Carsten Schoenert ]
   * [a4bdee4] d/gbp.conf: Adjust upstream branch to new ESR cycle
   * [9909948] d/control: Readd dependencies on librnp{0,-dev}
   * [049ad32] d/thunderbird.install: Don't try installing rnp tools
   * [63b5a69] New upstream version 128.1.0esr
     Fixed CVE issues in upstream version 128.1 (MFSA 2024-37):
     CVE-2024-7518: Fullscreen notification dialog can be obscured by document
                    content
     CVE-2024-7519: Out of bounds memory access in graphics shared memory
                    handling
     CVE-2024-7520: Type confusion in WebAssembly
     CVE-2024-7521: Incomplete WebAssembly exception handing
     CVE-2024-7522: Out of bounds read in editor component
     CVE-2024-7525: Missing permission check when creating a StreamFilter
     CVE-2024-7526: Uninitialized memory used by WebGL
     CVE-2024-7527: Use-after-free in JavaScript garbage collection
     CVE-2024-7528: Use-after-free in IndexedDB
     CVE-2024-7529: Document content could partially obscure security prompts
thunderbird (1:128.0esr-1) experimental; urgency=medium
 .
   * [e6bbe24] d/create-upstream-tarballs.py: Need to check for esr now
   * [f27f6f8] New upstream version 128.0esr
thunderbird (1:128.0~b5-1) experimental; urgency=medium
 .
   * [30985b4] d/source.filter: Filter out comm/third_party/rust/winapi*/**/*.a
   * [d75c09c] New upstream version 128.0~b5
   * [d1adc7f] Rebuild patch queue from patch-queue branch
     Removed patches:
     debian-hacks/Relax-minimum-supported-rust-version-to-1.75.patch
     fixes/skia-Cast-SkEndian_SwapBE32-n-to-uint32_t-on-big-endian.patch
     Modified patches:
     porting-mips64el/skia-Disable-musttail-on-mips64.patch
     porting-ppc64el/skia-Disable-musttail-on-ppc64el.patch
   * [7042e2a] d/copyright: Update content due upstream changes
   * [9046790] d/s/lintian-overrides: Update data due upstream changes
thunderbird (1:127.0~b5-1) experimental; urgency=medium
 .
   * [5b073c7] New upstream version 127.0~b5
   * [3ab1f6c] Rebuild patch queue from patch-queue branch
     added patch:
     debian-hacks/Relax-minimum-supported-rust-version-to-1.75.patch
     Thanks Mike for working on this!
     removed patches:
     debian-hacks/Relax-minimum-supported-rust-version-to-1.70.patch
     debian-hacks/rnp-Fix-include-for-format-specifiers-for-uint32_t.patch
   * [5544dee] d/c-u-t.py: Ignore one more version
   * [ac6e99c] d/logo/thunderbird: Update PNG files from newer SVG
     (Closes: #1071824)
   * [cee6fb8] d/thunderbird.install: Install the newer correct SVG graphic
thunderbird (1:125.0~b3-1) experimental; urgency=medium
 .
   [ William Desportes ]
   * [afa7e77] Fix a typo in the wrapper file
 .
   [ Carsten Schoenert ]
   * [cd67758] New upstream version 125.0~b3
   * [2224a5f] Rebuild patch queue from patch-queue branch
     added patches:
     debian-hacks/Relax-minimum-supported-rust-version-to-1.70.patch
     Thanks Mike for working on this!
   * [f0b98c4] d/control: Move libotr5 to libotr5t64 for bin:thunderbird
     (Closes: #1069337)
   * [311f88e] d/control: Drop dependencies on librnp{0,-dev}
   * [7f50d91] d/control: Increase Standards-Version to 4.7.0
     No further changes needed.
   * [fd7d588] d/c-u-t.py: Ignore potentially non ESR versions
thunderbird (1:124.0~b5-1) experimental; urgency=medium
 .
   * [2189bc4] New upstream version 124.0~b5
   * [b943acc] d/control: Bump B-D for cbindgen libnss3-dev
thunderbird (1:122.0~b2-1) experimental; urgency=medium
 .
   * [7c0ec4b] d/source.filter: Update content to filter out
   * [f9cea81] New upstream version 122.0~b2
   * [00364f5] d/copyright: Update content due upstream changes
   * [5bd3edd] d/t.lintian-overrides: Update entries due build changes
   * [789a079] d/s/lintian-overrides: Update data due upstream changes
thunderbird (1:121.0~b3-1) experimental; urgency=medium
 .
   [ Christoph Goehre ]
   * [d770988] d/{rules,thunderbird.install}: install vaapitest/v4l2test
               only on some architectures
   * [a85c9bd] rebuild patch queue from patch-queue branch
     Added patch:
     fixes/Install-vaapitest-v4l2test-only-when-build.patch
 .
   [ intrigeri ]
   * [6c6d3ff] AppArmor: update profile from upstream at
               commit 9d3fa88cdab512e45f6fd80f067337f200d356bc
 .
   [ Carsten Schoenert ]
   * [35bd423] New upstream version 121.0~b3
thunderbird (1:120.0~b1-1) experimental; urgency=medium
 .
   * [6f842cd] New upstream version 120.0~b1
   * [9cb9ff0] Rebuild patch queue from patch-queue branch
     Added patch:
     debian-hacks/Relax-cargo-version-requirement.patch
     Dropped patches:
     debian-hacks/Relax-minimum-supporter-rust-version-to-1.63.patch
   * [f447eb6] d/control: Bump B-D for cbindgen and libnss3-dev
   * [546c436] d/thunderbird.install: Drop install of plugin-container
   * [e912f12] d/rules: Drop remaining lightning parts
thunderbird (1:117.0~b5-1) experimental; urgency=medium
 .
   [ Christoph Goehre ]
   * [35f24cb] ship glxtest and vaapitest binaries
     (Closes: #1043057)
 .
   [ Carsten Schoenert ]
   * [f8ce5fb] New upstream version 117.0~b5
   * [91f34ab] Rebuild patch queue from patch-queue branch
     Removed patches (included upstream):
     fixes/Bug-1842933-Use-NEON_FLAGS-instead-of-VPX_ASFLAGS-for-lib.patch
     porting-mips64el/Bug-1841201-Work-around-tail-call-optimization-not-happen.patch
     porting-ppc64el/Work-around-bz-1775202-to-fix-FTBFS-on-ppc64el.patch
   * [680d811] d/thunderbird.install: Use upstream graphics for icons
   * [0768e17] d/c-u-t.py: Use Version() from python3-packaging
   * [b463514] d/thunderbird.desktop: Sort MimeType entries alphabetically
   * [4ac761b] d/control: Bump the usual build dependencies
 .
   [ Max Nikulin ]
   * [83018ae] d/thunderbird.desktop: Add IANA MIME type for .vcf vcard
   * [615c2a0] d/thunderbird.desktop: Add mid: URI to MIME types
     (Closes: #1008159)
   * [f595e42] d/thunderbird.desktop: Add news: URI to MIME types
   * [7a2dde8] d/thunderbird.desktop: Add webcal: URI to MIME types
thunderbird (1:116.0~b7-1) experimental; urgency=medium
 .
   * [489b6a2] New upstream version 116.0~b7
   * [a6a2814] Rebuild patch queue from patch-queue branch
     Removed patches (included upstream):
     fixes/Bug-1840931-More-properly-handle-files-4GB-in-elfhack.-r-.patch
     porting-mips/Bug-1841197-Undefine-the-mips-builtin-macro-on-mips-in-sk.patch

tiff (4.5.0-6+deb12u2) bookworm; urgency=medium
 .
   * CVE-2023-2908
   * CVE-2023-3618 (Closes: #1040945)
   * CVE-2023-25433
   * CVE-2023-26965
   * CVE-2023-26966
   * CVE-2023-52356 (Closes: #1061524)
   * CVE-2024-7006 (Closes: #1078648)

tzdata (2024b-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream version 2024b
     - Improve historical data for Mexico, Mongolia, and Portugal.
     - Asia/Choibalsan is now an alias for Asia/Ulaanbaatar
     - No leap second on 2024-12-31
   * Add Asia/Choibalsan to INCLUDE_SYMLINKS
   * Revert System V names deprecation
tzdata (2024a-4) unstable; urgency=medium
 .
   * d/rules: Support creating symlinks pointing to symlinks
   * Fixup for avoid timezones being symlinks to symlinks (LP: #2062522)
tzdata (2024a-3) unstable; urgency=medium
 .
   * Avoid timezones being symlinks to symlinks to avoid breaking C++20 standard
     expectation (LP: #2062522)
tzdata (2024a-2) unstable; urgency=medium
 .
   * Update Italian debconf translation.
     Thanks to Ceppo <ceppo@oziosi.org> (Closes: #1063490)
   * Replace America/Godthab by America/Nuuk
   * Do not replace CET, CST6CDT, EET, EST*, HST, MET, MST*, PST8PDT, WET.
     The replacements differed in using daylight saving. (LP: #2055718)
   * Fix updating US/Indiana-Starke to America/Indiana/Knox
   * Allow ziguard.awk to generate timezone symlink that point to symlinks
     to fix (at least) the timezone symlinks Africa/Asmera,
     Antarctica/South_Pole, Iceland, Pacific/Ponape, and Pacific/Truk.
   * test_timezone_conversions: Check symlink targets
tzdata (2024a-1) unstable; urgency=medium
 .
   * New upstream version 2024a
      - Kazakhstan unifies on UTC+5 beginning 2024-03-01.
      - Palestine springs forward a week later after Ramadan.
   * Add autopkgtest test case for 2024a release

ucf (3.0043+nmu1+deb12u1) bookworm; urgency=medium
 .
   * Initialise variable subsequently passed to eval. (Closes: #1089015)

util-linux (2.38.1-5+deb12u3) bookworm; urgency=medium
 .
   * Fixup upstream patches from 2.38.1-5+deb12u2 so gbp-pq can apply them
   * Use upstream's new --disable-makeinstall-tty-setgid.
     This fixes our wider mitigation for CVE-2024-28085.

webkit2gtk (2.46.5-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * Disable sysprof profiling integration to avoid new dependencies:
     - debian/control.in: Don't depend on libsysprof-capture-4-dev.
     - debian/rules: Build with -DUSE_SYSPROF_CAPTURE=OFF.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
   * debian/rules:
     - Enable ENABLE_SOUP2, USE_OLD_DOC_PKG, USE_OLD_JSCBIN_PKG and
       USE_OLD_WEBDRIVER_PKG to keep using the old package names.
   * debian/control-common.in:
     - Make the -dev packages depend on the gir packages.
   * debian/control.in:
     - Build depend on ccache.
webkit2gtk (2.46.4-1) unstable; urgency=high
 .
   * New upstream release.
   * The WebKitGTK security advisory WSA-2024-0007 lists the following
     security fixes in the latest versions of WebKitGTK:
     - CVE-2024-44308, CVE-2024-44309 (fixed in 2.46.4).
webkit2gtk (2.46.4-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * Disable sysprof profiling integration to avoid new dependencies:
     - debian/control.in: Don't depend on libsysprof-capture-4-dev.
     - debian/rules: Build with -DUSE_SYSPROF_CAPTURE=OFF.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
   * debian/rules:
     - Enable ENABLE_SOUP2, USE_OLD_DOC_PKG, USE_OLD_JSCBIN_PKG and
       USE_OLD_WEBDRIVER_PKG to keep using the old package names.
   * debian/control-common.in:
     - Make the -dev packages depend on the gir packages.
   * debian/control.in:
     - Build depend on ccache.
webkit2gtk (2.46.3-1) unstable; urgency=medium
 .
   * New upstream release.
webkit2gtk (2.46.3-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * Disable sysprof profiling integration to avoid new dependencies:
     - debian/control.in: Don't depend on libsysprof-capture-4-dev.
     - debian/rules: Build with -DUSE_SYSPROF_CAPTURE=OFF.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
   * debian/rules:
     - Enable ENABLE_SOUP2, USE_OLD_DOC_PKG, USE_OLD_JSCBIN_PKG and
       USE_OLD_WEBDRIVER_PKG to keep using the old package names.
   * debian/control-common.in:
     - Make the -dev packages depend on the gir packages.
   * debian/control.in:
     - Build depend on ccache.
webkit2gtk (2.46.2-1) unstable; urgency=medium
 .
   * New upstream release.
   * Drop socket-monitor-crash.patch (included in this release).
   * debian/control-common.in:
     - The libwebkit*-dev packages are no longer Multi-Arch: same.
       The s390x versions of the WebKit*.gir files are different due to a
       change in a default value (WebKit bug #279220).
   * debian/copyright:
     - Update copyright information of all files.
   * debian/rules:
     - Stop disabling jpeg-xl in Ubuntu (Jeremy Bícha).
     - Remove the USE_PREBUILT_DOCS variable, we can always build the
       documentation now.
     - Fix build with -Nlibwebkitgtk-doc.
     - Disable Skia on loong64 (Closes: #1082740).
webkit2gtk (2.46.1-2) unstable; urgency=medium
 .
   * Make the package Linux-only.
     - debian/control*.in: Set Architecture: linux-any.
     - debian/rules: Remove non-Linux quirks.
   * debian/patches/socket-monitor-crash.patch:
     - Fix crash due to a regression in 2.46.1 (WebKit bug #281495).
   * debian/control.in:
     - Require cmake 3.20.
webkit2gtk (2.46.1-2~bpo12+1) bookworm-backports; urgency=medium
 .
   * Rebuild for bookworm-backports.
   * Disable sysprof profiling integration to avoid new dependencies:
     - debian/control.in: Don't depend on libsysprof-capture-4-dev.
     - debian/rules: Build with -DUSE_SYSPROF_CAPTURE=OFF.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
   * debian/rules:
     - Enable ENABLE_SOUP2, USE_OLD_DOC_PKG, USE_OLD_JSCBIN_PKG and
       USE_OLD_WEBDRIVER_PKG to keep using the old package names.
   * debian/control-common.in:
     - Make the -dev packages depend on the gir packages.
   * debian/control.in:
     - Build depend on ccache.
webkit2gtk (2.46.1-1) unstable; urgency=medium
 .
   * New upstream release.
   * debian/rules:
     - Remove compiler overrides for sh4 (Closes: #1082305)
       (thanks, John Paul Adrian Glaubitz).
     - Build with -DENALE_WEBGL=OFF in the Hurd.
   * Drop debian/patches/fix-epiphany-ftbfs.patch.
   * debian/copyright:
     - Update copyright information of all files.
webkit2gtk (2.46.0-2) unstable; urgency=medium
 .
   * debian/rules:
     - Use -DUSE_SYSPROF_CAPTURE=OFF in unsupported arches.
     - Enable bmalloc on armhf, using the system malloc is crashing the web
       process (Closes: #1082148)
   * debian/patches/fix-epiphany-ftbfs.patch:
     - Disable webkit_settings_set_enable_2d_canvas_acceleration on
       non-Skia builds. This fixes a FTBFS in epiphany-browser
       (Closes: #1082149).
   * debian/patches/disable-dmabuf-nvidia.patch:
     - Bring back this patch (Closes: #1082139), see also #1039720.
   * debian/patches/fix-bmalloc-armhf.patch:
     - Fix the armhf build if bmalloc is enabled.

xsane (0.999-12.1~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * debian/control: Recommends firefox-esr | firefox | www-browser rather
     than firefox | www-browser to avoid fallback to www-browser when
     package firefox is not available. (Closes: #1076101)

zfs-linux (2.1.11-1+deb12u1) bookworm; urgency=medium
 .
   * dch: typo fix
   * New symbols for libzfs4linux and libzpool5linux
   * d/patches: cherry-pick upstream fixes for stability issues
     + fix dnode dirty test (Closes: #1056752, #1063497, CVE-2023-49298)
     + fix sharenfx IPv6 address parsing (Closes: CVE-2013-20001)
     + and some fixes related to NULL pointer, memory allocation, etc.

zookeeper (3.8.0-11+deb12u2) bookworm; urgency=medium
 .
   * Team upload
   * Bug fix: CVE-2024-23944 (Closes: #1066947):
     An information disclosure in persistent watchers handling was found in
     Apache ZooKeeper due to missing ACL check.  It allows an attacker to
     monitor child znodes by attaching a persistent watcher (addWatch
     command) to a parent which the attacker has already access
     to. ZooKeeper server doesn't do ACL check when the persistent watcher
     is triggered and as a consequence, the full path of znodes that a
     watch event gets triggered upon is exposed to the owner of the
     watcher. It's important to note that only the path is exposed by this
     vulnerability, not the data of znode, but since znode path can contain
     sensitive information like user name or login ID, this issue is
     potentially critical.
   * Add salsa CI
=======================================
Sat, 09 Nov 2024 - Debian 12.8 released
=======================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:28:38 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
btrfs-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
cdrom-core-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
cdrom-core-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
crc-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
crc-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
crypto-dm-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
crypto-dm-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
crypto-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
crypto-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
dasd-extra-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
dasd-extra-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
dasd-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
dasd-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
ext4-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
ext4-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
f2fs-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
f2fs-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
fat-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
fat-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
fuse-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
fuse-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
isofs-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
isofs-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
kernel-image-6.1.0-22-s390x-di |   6.1.94-1 | s390x
kernel-image-6.1.0-26-s390x-di |  6.1.112-1 | s390x
linux-headers-6.1.0-22-s390x |   6.1.94-1 | s390x
linux-headers-6.1.0-26-s390x |  6.1.112-1 | s390x
linux-image-6.1.0-22-s390x |   6.1.94-1 | s390x
linux-image-6.1.0-22-s390x-dbg |   6.1.94-1 | s390x
linux-image-6.1.0-26-s390x |  6.1.112-1 | s390x
linux-image-6.1.0-26-s390x-dbg |  6.1.112-1 | s390x
loop-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
loop-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
md-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
md-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
mtd-core-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
mtd-core-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
multipath-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
multipath-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
nbd-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
nbd-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
nic-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
nic-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
scsi-core-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
scsi-core-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
scsi-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
scsi-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
udf-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
udf-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x
xfs-modules-6.1.0-22-s390x-di |   6.1.94-1 | s390x
xfs-modules-6.1.0-26-s390x-di |  6.1.112-1 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:30:48 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
affs-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
affs-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
affs-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
ata-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
ata-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
ata-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
ata-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
btrfs-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
btrfs-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
btrfs-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
btrfs-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
cdrom-core-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
cdrom-core-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
cdrom-core-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
cdrom-core-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
crc-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
crc-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
crc-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
crc-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
crypto-dm-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
crypto-dm-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
crypto-dm-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
crypto-dm-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
crypto-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
crypto-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
crypto-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
crypto-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
event-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
event-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
event-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
event-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
ext4-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
ext4-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
ext4-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
ext4-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
f2fs-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
f2fs-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
f2fs-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
f2fs-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
fat-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
fat-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
fat-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
fat-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
fb-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
fb-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
fb-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
fb-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
firewire-core-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
firewire-core-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
firewire-core-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
firewire-core-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
fuse-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
fuse-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
fuse-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
fuse-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
input-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
input-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
input-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
input-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
isofs-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
isofs-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
isofs-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
isofs-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
jfs-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
jfs-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
jfs-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
jfs-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
kernel-image-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
kernel-image-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
kernel-image-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
kernel-image-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
linux-headers-6.1.0-22-4kc-malta |   6.1.94-1 | mipsel
linux-headers-6.1.0-22-mips32r2el |   6.1.94-1 | mipsel
linux-headers-6.1.0-26-4kc-malta |  6.1.112-1 | mipsel
linux-headers-6.1.0-26-mips32r2el |  6.1.112-1 | mipsel
linux-image-6.1.0-22-4kc-malta |   6.1.94-1 | mipsel
linux-image-6.1.0-22-4kc-malta-dbg |   6.1.94-1 | mipsel
linux-image-6.1.0-22-mips32r2el |   6.1.94-1 | mipsel
linux-image-6.1.0-22-mips32r2el-dbg |   6.1.94-1 | mipsel
linux-image-6.1.0-26-4kc-malta |  6.1.112-1 | mipsel
linux-image-6.1.0-26-4kc-malta-dbg |  6.1.112-1 | mipsel
linux-image-6.1.0-26-mips32r2el |  6.1.112-1 | mipsel
linux-image-6.1.0-26-mips32r2el-dbg |  6.1.112-1 | mipsel
loop-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
loop-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
loop-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
loop-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
md-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
md-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
md-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
md-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
minix-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
minix-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
minix-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
minix-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
mmc-core-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
mmc-core-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
mmc-core-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
mmc-core-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
mmc-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
mmc-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
mmc-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
mmc-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
mouse-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
mouse-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
mouse-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
mouse-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
multipath-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
multipath-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
multipath-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
multipath-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
nbd-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
nbd-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
nbd-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
nbd-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
nfs-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
nfs-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
nfs-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
nfs-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
nic-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
nic-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
nic-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
nic-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
nic-shared-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
nic-shared-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
nic-shared-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
nic-shared-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
nic-usb-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
nic-usb-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
nic-usb-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
nic-usb-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
nic-wireless-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
nic-wireless-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
nic-wireless-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
nic-wireless-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
pata-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
pata-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
pata-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
pata-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
ppp-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
ppp-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
ppp-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
ppp-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
sata-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
sata-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
sata-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
sata-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
scsi-core-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
scsi-core-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
scsi-core-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
scsi-core-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
scsi-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
scsi-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
scsi-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
scsi-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
scsi-nic-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
scsi-nic-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
scsi-nic-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
scsi-nic-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
sound-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
sound-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
sound-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
sound-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
speakup-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
speakup-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
speakup-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
speakup-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
squashfs-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
squashfs-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
squashfs-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
squashfs-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
udf-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
udf-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
udf-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
udf-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
usb-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
usb-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
usb-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
usb-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
usb-serial-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
usb-serial-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
usb-serial-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
usb-serial-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
usb-storage-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
usb-storage-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
usb-storage-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
usb-storage-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel
xfs-modules-6.1.0-22-4kc-malta-di |   6.1.94-1 | mipsel
xfs-modules-6.1.0-22-mips32r2el-di |   6.1.94-1 | mipsel
xfs-modules-6.1.0-26-4kc-malta-di |  6.1.112-1 | mipsel
xfs-modules-6.1.0-26-mips32r2el-di |  6.1.112-1 | mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:31:00 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
ata-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
btrfs-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
btrfs-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
cdrom-core-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
cdrom-core-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
crc-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
crc-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
crypto-dm-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
crypto-dm-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
crypto-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
crypto-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
event-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
event-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
ext4-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
ext4-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
f2fs-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
f2fs-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
fancontrol-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
fancontrol-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
fat-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
fat-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
fb-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
fb-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
firewire-core-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
firewire-core-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
fuse-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
fuse-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
hypervisor-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
hypervisor-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
i2c-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
i2c-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
input-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
input-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
isofs-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
isofs-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
jfs-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
jfs-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
kernel-image-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
kernel-image-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
linux-headers-6.1.0-22-powerpc64le |   6.1.94-1 | ppc64el
linux-headers-6.1.0-26-powerpc64le |  6.1.112-1 | ppc64el
linux-image-6.1.0-22-powerpc64le |   6.1.94-1 | ppc64el
linux-image-6.1.0-22-powerpc64le-dbg |   6.1.94-1 | ppc64el
linux-image-6.1.0-26-powerpc64le |  6.1.112-1 | ppc64el
linux-image-6.1.0-26-powerpc64le-dbg |  6.1.112-1 | ppc64el
loop-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
loop-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
md-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
md-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
mouse-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
mouse-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
mtd-core-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
mtd-core-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
multipath-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
multipath-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
nbd-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
nbd-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
nic-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
nic-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
nic-shared-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
nic-shared-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
nic-usb-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
nic-usb-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
nic-wireless-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
nic-wireless-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
ppp-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
ppp-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
sata-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
sata-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
scsi-core-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
scsi-core-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
scsi-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
scsi-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
scsi-nic-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
scsi-nic-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
serial-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
serial-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
squashfs-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
squashfs-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
udf-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
udf-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
uinput-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
uinput-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
usb-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
usb-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
usb-serial-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
usb-serial-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
usb-storage-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
usb-storage-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el
xfs-modules-6.1.0-22-powerpc64le-di |   6.1.94-1 | ppc64el
xfs-modules-6.1.0-26-powerpc64le-di |  6.1.112-1 | ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:31:11 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-22-amd64 |   6.1.94-1 | amd64
linux-headers-6.1.0-22-cloud-amd64 |   6.1.94-1 | amd64
linux-headers-6.1.0-22-rt-amd64 |   6.1.94-1 | amd64
linux-headers-6.1.0-26-amd64 |  6.1.112-1 | amd64
linux-headers-6.1.0-26-cloud-amd64 |  6.1.112-1 | amd64
linux-headers-6.1.0-26-rt-amd64 |  6.1.112-1 | amd64
linux-image-6.1.0-22-amd64-dbg |   6.1.94-1 | amd64
linux-image-6.1.0-22-amd64-unsigned |   6.1.94-1 | amd64
linux-image-6.1.0-22-cloud-amd64-dbg |   6.1.94-1 | amd64
linux-image-6.1.0-22-cloud-amd64-unsigned |   6.1.94-1 | amd64
linux-image-6.1.0-22-rt-amd64-dbg |   6.1.94-1 | amd64
linux-image-6.1.0-22-rt-amd64-unsigned |   6.1.94-1 | amd64
linux-image-6.1.0-26-amd64-dbg |  6.1.112-1 | amd64
linux-image-6.1.0-26-amd64-unsigned |  6.1.112-1 | amd64
linux-image-6.1.0-26-cloud-amd64-dbg |  6.1.112-1 | amd64
linux-image-6.1.0-26-cloud-amd64-unsigned |  6.1.112-1 | amd64
linux-image-6.1.0-26-rt-amd64-dbg |  6.1.112-1 | amd64
linux-image-6.1.0-26-rt-amd64-unsigned |  6.1.112-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:31:22 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-22-arm64 |   6.1.94-1 | arm64
linux-headers-6.1.0-22-cloud-arm64 |   6.1.94-1 | arm64
linux-headers-6.1.0-22-rt-arm64 |   6.1.94-1 | arm64
linux-headers-6.1.0-26-arm64 |  6.1.112-1 | arm64
linux-headers-6.1.0-26-cloud-arm64 |  6.1.112-1 | arm64
linux-headers-6.1.0-26-rt-arm64 |  6.1.112-1 | arm64
linux-image-6.1.0-22-arm64-dbg |   6.1.94-1 | arm64
linux-image-6.1.0-22-arm64-unsigned |   6.1.94-1 | arm64
linux-image-6.1.0-22-cloud-arm64-dbg |   6.1.94-1 | arm64
linux-image-6.1.0-22-cloud-arm64-unsigned |   6.1.94-1 | arm64
linux-image-6.1.0-22-rt-arm64-dbg |   6.1.94-1 | arm64
linux-image-6.1.0-22-rt-arm64-unsigned |   6.1.94-1 | arm64
linux-image-6.1.0-26-arm64-dbg |  6.1.112-1 | arm64
linux-image-6.1.0-26-arm64-unsigned |  6.1.112-1 | arm64
linux-image-6.1.0-26-cloud-arm64-dbg |  6.1.112-1 | arm64
linux-image-6.1.0-26-cloud-arm64-unsigned |  6.1.112-1 | arm64
linux-image-6.1.0-26-rt-arm64-dbg |  6.1.112-1 | arm64
linux-image-6.1.0-26-rt-arm64-unsigned |  6.1.112-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:31:40 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
btrfs-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
cdrom-core-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
cdrom-core-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
crc-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
crc-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
crypto-dm-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
crypto-dm-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
crypto-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
crypto-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
event-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
event-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
ext4-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
ext4-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
f2fs-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
f2fs-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
fat-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
fat-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
fb-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
fb-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
fuse-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
fuse-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
input-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
input-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
ipv6-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
ipv6-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
isofs-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
isofs-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
jffs2-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
jffs2-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
jfs-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
jfs-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
kernel-image-6.1.0-22-marvell-di |   6.1.94-1 | armel
kernel-image-6.1.0-26-marvell-di |  6.1.112-1 | armel
leds-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
leds-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
linux-headers-6.1.0-22-marvell |   6.1.94-1 | armel
linux-headers-6.1.0-22-rpi |   6.1.94-1 | armel
linux-headers-6.1.0-26-marvell |  6.1.112-1 | armel
linux-headers-6.1.0-26-rpi |  6.1.112-1 | armel
linux-image-6.1.0-22-marvell |   6.1.94-1 | armel
linux-image-6.1.0-22-marvell-dbg |   6.1.94-1 | armel
linux-image-6.1.0-22-rpi |   6.1.94-1 | armel
linux-image-6.1.0-22-rpi-dbg |   6.1.94-1 | armel
linux-image-6.1.0-26-marvell |  6.1.112-1 | armel
linux-image-6.1.0-26-marvell-dbg |  6.1.112-1 | armel
linux-image-6.1.0-26-rpi |  6.1.112-1 | armel
linux-image-6.1.0-26-rpi-dbg |  6.1.112-1 | armel
loop-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
loop-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
md-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
md-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
minix-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
minix-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
mmc-core-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
mmc-core-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
mmc-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
mmc-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
mouse-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
mouse-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
mtd-core-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
mtd-core-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
mtd-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
mtd-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
multipath-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
multipath-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
nbd-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
nbd-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
nic-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
nic-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
nic-shared-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
nic-shared-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
nic-usb-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
nic-usb-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
ppp-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
ppp-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
sata-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
sata-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
scsi-core-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
scsi-core-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
squashfs-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
squashfs-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
udf-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
udf-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
uinput-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
uinput-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
usb-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
usb-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
usb-serial-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
usb-serial-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel
usb-storage-modules-6.1.0-22-marvell-di |   6.1.94-1 | armel
usb-storage-modules-6.1.0-26-marvell-di |  6.1.112-1 | armel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:31:55 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
ata-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
btrfs-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
btrfs-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
cdrom-core-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
cdrom-core-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
crc-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
crc-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
crypto-dm-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
crypto-dm-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
crypto-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
crypto-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
efi-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
efi-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
event-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
event-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
ext4-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
ext4-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
f2fs-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
f2fs-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
fat-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
fat-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
fb-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
fb-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
fuse-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
fuse-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
i2c-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
i2c-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
input-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
input-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
isofs-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
isofs-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
jfs-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
jfs-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
kernel-image-6.1.0-22-armmp-di |   6.1.94-1 | armhf
kernel-image-6.1.0-26-armmp-di |  6.1.112-1 | armhf
leds-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
leds-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
linux-headers-6.1.0-22-armmp |   6.1.94-1 | armhf
linux-headers-6.1.0-22-armmp-lpae |   6.1.94-1 | armhf
linux-headers-6.1.0-22-rt-armmp |   6.1.94-1 | armhf
linux-headers-6.1.0-26-armmp |  6.1.112-1 | armhf
linux-headers-6.1.0-26-armmp-lpae |  6.1.112-1 | armhf
linux-headers-6.1.0-26-rt-armmp |  6.1.112-1 | armhf
linux-image-6.1.0-22-armmp |   6.1.94-1 | armhf
linux-image-6.1.0-22-armmp-dbg |   6.1.94-1 | armhf
linux-image-6.1.0-22-armmp-lpae |   6.1.94-1 | armhf
linux-image-6.1.0-22-armmp-lpae-dbg |   6.1.94-1 | armhf
linux-image-6.1.0-22-rt-armmp |   6.1.94-1 | armhf
linux-image-6.1.0-22-rt-armmp-dbg |   6.1.94-1 | armhf
linux-image-6.1.0-26-armmp |  6.1.112-1 | armhf
linux-image-6.1.0-26-armmp-dbg |  6.1.112-1 | armhf
linux-image-6.1.0-26-armmp-lpae |  6.1.112-1 | armhf
linux-image-6.1.0-26-armmp-lpae-dbg |  6.1.112-1 | armhf
linux-image-6.1.0-26-rt-armmp |  6.1.112-1 | armhf
linux-image-6.1.0-26-rt-armmp-dbg |  6.1.112-1 | armhf
loop-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
loop-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
md-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
md-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
mmc-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
mmc-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
mtd-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
mtd-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
multipath-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
multipath-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
nbd-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
nbd-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
nic-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
nic-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
nic-shared-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
nic-shared-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
nic-usb-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
nic-usb-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
nic-wireless-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
nic-wireless-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
pata-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
pata-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
ppp-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
ppp-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
sata-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
sata-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
scsi-core-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
scsi-core-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
scsi-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
scsi-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
scsi-nic-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
scsi-nic-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
sound-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
sound-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
speakup-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
speakup-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
squashfs-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
squashfs-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
udf-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
udf-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
uinput-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
uinput-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
usb-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
usb-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
usb-serial-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
usb-serial-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf
usb-storage-modules-6.1.0-22-armmp-di |   6.1.94-1 | armhf
usb-storage-modules-6.1.0-26-armmp-di |  6.1.112-1 | armhf

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:32:36 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-22-686 |   6.1.94-1 | i386
linux-headers-6.1.0-22-686-pae |   6.1.94-1 | i386
linux-headers-6.1.0-22-rt-686-pae |   6.1.94-1 | i386
linux-headers-6.1.0-26-686 |  6.1.112-1 | i386
linux-headers-6.1.0-26-686-pae |  6.1.112-1 | i386
linux-headers-6.1.0-26-rt-686-pae |  6.1.112-1 | i386
linux-image-6.1.0-22-686-dbg |   6.1.94-1 | i386
linux-image-6.1.0-22-686-pae-dbg |   6.1.94-1 | i386
linux-image-6.1.0-22-686-pae-unsigned |   6.1.94-1 | i386
linux-image-6.1.0-22-686-unsigned |   6.1.94-1 | i386
linux-image-6.1.0-22-rt-686-pae-dbg |   6.1.94-1 | i386
linux-image-6.1.0-22-rt-686-pae-unsigned |   6.1.94-1 | i386
linux-image-6.1.0-26-686-dbg |  6.1.112-1 | i386
linux-image-6.1.0-26-686-pae-dbg |  6.1.112-1 | i386
linux-image-6.1.0-26-686-pae-unsigned |  6.1.112-1 | i386
linux-image-6.1.0-26-686-unsigned |  6.1.112-1 | i386
linux-image-6.1.0-26-rt-686-pae-dbg |  6.1.112-1 | i386
linux-image-6.1.0-26-rt-686-pae-unsigned |  6.1.112-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:32:47 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
affs-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
affs-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
affs-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
ata-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
ata-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
ata-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
ata-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
btrfs-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
btrfs-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
btrfs-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
btrfs-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
cdrom-core-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
cdrom-core-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
cdrom-core-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
cdrom-core-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
crc-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
crc-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
crc-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
crc-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
crypto-dm-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
crypto-dm-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
crypto-dm-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
crypto-dm-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
crypto-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
crypto-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
crypto-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
crypto-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
event-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
event-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
event-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
event-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
ext4-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
ext4-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
ext4-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
ext4-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
f2fs-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
f2fs-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
f2fs-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
f2fs-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
fat-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
fat-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
fat-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
fat-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
fb-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
fb-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
fb-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
fb-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
firewire-core-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
firewire-core-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
firewire-core-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
firewire-core-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
fuse-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
fuse-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
fuse-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
fuse-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
input-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
input-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
input-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
input-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
isofs-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
isofs-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
isofs-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
isofs-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
jfs-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
jfs-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
jfs-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
jfs-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
kernel-image-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
kernel-image-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
kernel-image-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
kernel-image-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
linux-headers-6.1.0-22-5kc-malta |   6.1.94-1 | mips64el
linux-headers-6.1.0-22-mips64r2el |   6.1.94-1 | mips64el
linux-headers-6.1.0-26-5kc-malta |  6.1.112-1 | mips64el
linux-headers-6.1.0-26-mips64r2el |  6.1.112-1 | mips64el
linux-image-6.1.0-22-5kc-malta |   6.1.94-1 | mips64el
linux-image-6.1.0-22-5kc-malta-dbg |   6.1.94-1 | mips64el
linux-image-6.1.0-22-mips64r2el |   6.1.94-1 | mips64el
linux-image-6.1.0-22-mips64r2el-dbg |   6.1.94-1 | mips64el
linux-image-6.1.0-26-5kc-malta |  6.1.112-1 | mips64el
linux-image-6.1.0-26-5kc-malta-dbg |  6.1.112-1 | mips64el
linux-image-6.1.0-26-mips64r2el |  6.1.112-1 | mips64el
linux-image-6.1.0-26-mips64r2el-dbg |  6.1.112-1 | mips64el
loop-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
loop-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
loop-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
loop-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
md-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
md-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
md-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
md-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
minix-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
minix-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
minix-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
minix-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
mmc-core-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
mmc-core-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
mmc-core-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
mmc-core-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
mmc-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
mmc-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
mmc-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
mmc-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
mouse-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
mouse-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
mouse-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
mouse-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
multipath-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
multipath-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
multipath-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
multipath-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
nbd-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
nbd-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
nbd-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
nbd-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
nfs-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
nfs-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
nfs-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
nfs-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
nic-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
nic-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
nic-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
nic-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
nic-shared-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
nic-shared-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
nic-shared-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
nic-shared-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
nic-usb-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
nic-usb-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
nic-usb-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
nic-usb-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
nic-wireless-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
nic-wireless-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
nic-wireless-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
nic-wireless-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
pata-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
pata-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
pata-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
pata-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
ppp-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
ppp-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
ppp-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
ppp-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
sata-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
sata-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
sata-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
sata-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
scsi-core-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
scsi-core-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
scsi-core-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
scsi-core-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
scsi-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
scsi-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
scsi-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
scsi-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
scsi-nic-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
scsi-nic-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
scsi-nic-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
scsi-nic-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
sound-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
sound-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
sound-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
sound-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
speakup-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
speakup-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
speakup-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
speakup-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
squashfs-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
squashfs-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
squashfs-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
squashfs-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
udf-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
udf-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
udf-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
udf-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
usb-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
usb-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
usb-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
usb-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
usb-serial-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
usb-serial-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
usb-serial-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
usb-serial-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
usb-storage-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
usb-storage-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
usb-storage-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
usb-storage-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el
xfs-modules-6.1.0-22-5kc-malta-di |   6.1.94-1 | mips64el
xfs-modules-6.1.0-22-mips64r2el-di |   6.1.94-1 | mips64el
xfs-modules-6.1.0-26-5kc-malta-di |  6.1.112-1 | mips64el
xfs-modules-6.1.0-26-mips64r2el-di |  6.1.112-1 | mips64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:33:08 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
affs-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
affs-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
affs-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
ata-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
ata-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
ata-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
ata-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
btrfs-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
btrfs-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
btrfs-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
btrfs-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
crc-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
crc-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
crc-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
crc-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
crypto-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
crypto-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
crypto-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
crypto-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
event-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
event-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
event-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
event-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
ext4-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
ext4-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
ext4-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
ext4-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
f2fs-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
f2fs-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
f2fs-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
f2fs-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
fat-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
fat-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
fat-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
fat-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
fb-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
fb-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
fb-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
fb-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
firewire-core-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
firewire-core-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
firewire-core-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
firewire-core-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
fuse-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
fuse-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
fuse-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
fuse-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
input-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
input-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
input-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
input-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
isofs-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
isofs-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
isofs-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
isofs-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
jfs-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
jfs-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
jfs-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
jfs-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
kernel-image-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
kernel-image-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
kernel-image-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
kernel-image-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
linux-headers-6.1.0-22-loongson-3 |   6.1.94-1 | mips64el, mipsel
linux-headers-6.1.0-22-octeon |   6.1.94-1 | mips64el, mipsel
linux-headers-6.1.0-26-loongson-3 |  6.1.112-1 | mips64el, mipsel
linux-headers-6.1.0-26-octeon |  6.1.112-1 | mips64el, mipsel
linux-image-6.1.0-22-loongson-3 |   6.1.94-1 | mips64el, mipsel
linux-image-6.1.0-22-loongson-3-dbg |   6.1.94-1 | mips64el, mipsel
linux-image-6.1.0-22-octeon |   6.1.94-1 | mips64el, mipsel
linux-image-6.1.0-22-octeon-dbg |   6.1.94-1 | mips64el, mipsel
linux-image-6.1.0-26-loongson-3 |  6.1.112-1 | mips64el, mipsel
linux-image-6.1.0-26-loongson-3-dbg |  6.1.112-1 | mips64el, mipsel
linux-image-6.1.0-26-octeon |  6.1.112-1 | mips64el, mipsel
linux-image-6.1.0-26-octeon-dbg |  6.1.112-1 | mips64el, mipsel
loop-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
loop-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
loop-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
loop-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
md-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
md-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
md-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
md-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
minix-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
minix-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
minix-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
minix-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
mmc-core-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
mmc-core-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
mmc-core-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
mmc-core-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
mmc-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
mmc-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
mmc-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
mmc-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
mouse-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
mouse-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
mouse-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
mouse-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
multipath-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
multipath-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
multipath-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
multipath-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
nbd-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
nbd-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
nbd-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
nbd-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
nfs-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
nfs-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
nfs-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
nfs-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
nic-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
nic-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
nic-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
nic-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
nic-shared-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
nic-shared-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
nic-shared-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
nic-shared-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
nic-usb-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
nic-usb-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
nic-usb-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
nic-usb-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
pata-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
pata-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
pata-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
pata-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
ppp-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
ppp-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
ppp-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
ppp-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
sata-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
sata-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
sata-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
sata-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
scsi-core-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
scsi-core-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
scsi-core-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
scsi-core-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
scsi-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
scsi-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
scsi-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
scsi-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
sound-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
sound-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
sound-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
sound-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
speakup-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
speakup-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
speakup-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
speakup-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
squashfs-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
squashfs-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
squashfs-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
squashfs-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
udf-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
udf-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
udf-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
udf-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
usb-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
usb-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
usb-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
usb-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
usb-serial-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
usb-serial-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
usb-serial-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
usb-serial-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
usb-storage-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
usb-storage-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
usb-storage-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
usb-storage-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel
xfs-modules-6.1.0-22-loongson-3-di |   6.1.94-1 | mips64el, mipsel
xfs-modules-6.1.0-22-octeon-di |   6.1.94-1 | mips64el, mipsel
xfs-modules-6.1.0-26-loongson-3-di |  6.1.112-1 | mips64el, mipsel
xfs-modules-6.1.0-26-octeon-di |  6.1.112-1 | mips64el, mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:33:22 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
acpi-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
ata-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
ata-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
btrfs-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
btrfs-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
cdrom-core-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
cdrom-core-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
crc-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
crc-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
crypto-dm-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
crypto-dm-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
crypto-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
crypto-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
efi-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
efi-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
event-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
event-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
ext4-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
ext4-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
f2fs-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
f2fs-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
fat-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
fat-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
fb-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
fb-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
firewire-core-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
firewire-core-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
fuse-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
fuse-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
i2c-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
i2c-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
input-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
input-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
isofs-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
isofs-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
jfs-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
jfs-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
kernel-image-6.1.0-22-amd64-di |   6.1.94-1 | amd64
kernel-image-6.1.0-26-amd64-di |  6.1.112-1 | amd64
linux-image-6.1.0-22-amd64 |   6.1.94-1 | amd64
linux-image-6.1.0-22-cloud-amd64 |   6.1.94-1 | amd64
linux-image-6.1.0-22-rt-amd64 |   6.1.94-1 | amd64
linux-image-6.1.0-26-amd64 |  6.1.112-1 | amd64
linux-image-6.1.0-26-cloud-amd64 |  6.1.112-1 | amd64
linux-image-6.1.0-26-rt-amd64 |  6.1.112-1 | amd64
loop-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
loop-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
md-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
md-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
mmc-core-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
mmc-core-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
mmc-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
mmc-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
mouse-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
mouse-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
mtd-core-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
mtd-core-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
multipath-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
multipath-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
nbd-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
nbd-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
nic-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
nic-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
nic-pcmcia-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
nic-pcmcia-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
nic-shared-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
nic-shared-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
nic-usb-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
nic-usb-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
nic-wireless-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
nic-wireless-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
pata-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
pata-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
pcmcia-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
pcmcia-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
pcmcia-storage-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
pcmcia-storage-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
ppp-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
ppp-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
rfkill-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
rfkill-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
sata-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
sata-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
scsi-core-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
scsi-core-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
scsi-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
scsi-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
scsi-nic-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
scsi-nic-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
serial-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
serial-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
sound-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
sound-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
speakup-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
speakup-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
squashfs-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
squashfs-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
udf-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
udf-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
uinput-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
uinput-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
usb-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
usb-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
usb-serial-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
usb-serial-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
usb-storage-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
usb-storage-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64
xfs-modules-6.1.0-22-amd64-di |   6.1.94-1 | amd64
xfs-modules-6.1.0-26-amd64-di |  6.1.112-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-amd64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:33:34 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
ata-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
btrfs-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
btrfs-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
cdrom-core-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
cdrom-core-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
crc-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
crc-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
crypto-dm-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
crypto-dm-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
crypto-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
crypto-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
efi-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
efi-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
event-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
event-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
ext4-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
ext4-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
f2fs-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
f2fs-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
fat-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
fat-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
fb-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
fb-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
fuse-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
fuse-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
i2c-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
i2c-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
input-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
input-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
isofs-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
isofs-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
jfs-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
jfs-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
kernel-image-6.1.0-22-arm64-di |   6.1.94-1 | arm64
kernel-image-6.1.0-26-arm64-di |  6.1.112-1 | arm64
leds-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
leds-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
linux-image-6.1.0-22-arm64 |   6.1.94-1 | arm64
linux-image-6.1.0-22-cloud-arm64 |   6.1.94-1 | arm64
linux-image-6.1.0-22-rt-arm64 |   6.1.94-1 | arm64
linux-image-6.1.0-26-arm64 |  6.1.112-1 | arm64
linux-image-6.1.0-26-cloud-arm64 |  6.1.112-1 | arm64
linux-image-6.1.0-26-rt-arm64 |  6.1.112-1 | arm64
loop-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
loop-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
md-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
md-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
mmc-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
mmc-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
mtd-core-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
mtd-core-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
multipath-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
multipath-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
nbd-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
nbd-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
nic-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
nic-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
nic-shared-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
nic-shared-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
nic-usb-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
nic-usb-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
nic-wireless-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
nic-wireless-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
ppp-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
ppp-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
sata-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
sata-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
scsi-core-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
scsi-core-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
scsi-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
scsi-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
scsi-nic-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
scsi-nic-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
sound-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
sound-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
speakup-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
speakup-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
squashfs-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
squashfs-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
udf-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
udf-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
uinput-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
uinput-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
usb-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
usb-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
usb-serial-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
usb-serial-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
usb-storage-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
usb-storage-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64
xfs-modules-6.1.0-22-arm64-di |   6.1.94-1 | arm64
xfs-modules-6.1.0-26-arm64-di |  6.1.112-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-arm64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:34:10 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-22-686-di |   6.1.94-1 | i386
acpi-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
acpi-modules-6.1.0-26-686-di |  6.1.112-1 | i386
acpi-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
ata-modules-6.1.0-22-686-di |   6.1.94-1 | i386
ata-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
ata-modules-6.1.0-26-686-di |  6.1.112-1 | i386
ata-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
btrfs-modules-6.1.0-22-686-di |   6.1.94-1 | i386
btrfs-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
btrfs-modules-6.1.0-26-686-di |  6.1.112-1 | i386
btrfs-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
cdrom-core-modules-6.1.0-22-686-di |   6.1.94-1 | i386
cdrom-core-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
cdrom-core-modules-6.1.0-26-686-di |  6.1.112-1 | i386
cdrom-core-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
crc-modules-6.1.0-22-686-di |   6.1.94-1 | i386
crc-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
crc-modules-6.1.0-26-686-di |  6.1.112-1 | i386
crc-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
crypto-dm-modules-6.1.0-22-686-di |   6.1.94-1 | i386
crypto-dm-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
crypto-dm-modules-6.1.0-26-686-di |  6.1.112-1 | i386
crypto-dm-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
crypto-modules-6.1.0-22-686-di |   6.1.94-1 | i386
crypto-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
crypto-modules-6.1.0-26-686-di |  6.1.112-1 | i386
crypto-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
efi-modules-6.1.0-22-686-di |   6.1.94-1 | i386
efi-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
efi-modules-6.1.0-26-686-di |  6.1.112-1 | i386
efi-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
event-modules-6.1.0-22-686-di |   6.1.94-1 | i386
event-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
event-modules-6.1.0-26-686-di |  6.1.112-1 | i386
event-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
ext4-modules-6.1.0-22-686-di |   6.1.94-1 | i386
ext4-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
ext4-modules-6.1.0-26-686-di |  6.1.112-1 | i386
ext4-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
f2fs-modules-6.1.0-22-686-di |   6.1.94-1 | i386
f2fs-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
f2fs-modules-6.1.0-26-686-di |  6.1.112-1 | i386
f2fs-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
fat-modules-6.1.0-22-686-di |   6.1.94-1 | i386
fat-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
fat-modules-6.1.0-26-686-di |  6.1.112-1 | i386
fat-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
fb-modules-6.1.0-22-686-di |   6.1.94-1 | i386
fb-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
fb-modules-6.1.0-26-686-di |  6.1.112-1 | i386
fb-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
firewire-core-modules-6.1.0-22-686-di |   6.1.94-1 | i386
firewire-core-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
firewire-core-modules-6.1.0-26-686-di |  6.1.112-1 | i386
firewire-core-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
fuse-modules-6.1.0-22-686-di |   6.1.94-1 | i386
fuse-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
fuse-modules-6.1.0-26-686-di |  6.1.112-1 | i386
fuse-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
i2c-modules-6.1.0-22-686-di |   6.1.94-1 | i386
i2c-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
i2c-modules-6.1.0-26-686-di |  6.1.112-1 | i386
i2c-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
input-modules-6.1.0-22-686-di |   6.1.94-1 | i386
input-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
input-modules-6.1.0-26-686-di |  6.1.112-1 | i386
input-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
isofs-modules-6.1.0-22-686-di |   6.1.94-1 | i386
isofs-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
isofs-modules-6.1.0-26-686-di |  6.1.112-1 | i386
isofs-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
jfs-modules-6.1.0-22-686-di |   6.1.94-1 | i386
jfs-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
jfs-modules-6.1.0-26-686-di |  6.1.112-1 | i386
jfs-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
kernel-image-6.1.0-22-686-di |   6.1.94-1 | i386
kernel-image-6.1.0-22-686-pae-di |   6.1.94-1 | i386
kernel-image-6.1.0-26-686-di |  6.1.112-1 | i386
kernel-image-6.1.0-26-686-pae-di |  6.1.112-1 | i386
linux-image-6.1.0-22-686 |   6.1.94-1 | i386
linux-image-6.1.0-22-686-pae |   6.1.94-1 | i386
linux-image-6.1.0-22-rt-686-pae |   6.1.94-1 | i386
linux-image-6.1.0-26-686 |  6.1.112-1 | i386
linux-image-6.1.0-26-686-pae |  6.1.112-1 | i386
linux-image-6.1.0-26-rt-686-pae |  6.1.112-1 | i386
loop-modules-6.1.0-22-686-di |   6.1.94-1 | i386
loop-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
loop-modules-6.1.0-26-686-di |  6.1.112-1 | i386
loop-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
md-modules-6.1.0-22-686-di |   6.1.94-1 | i386
md-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
md-modules-6.1.0-26-686-di |  6.1.112-1 | i386
md-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
mmc-core-modules-6.1.0-22-686-di |   6.1.94-1 | i386
mmc-core-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
mmc-core-modules-6.1.0-26-686-di |  6.1.112-1 | i386
mmc-core-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
mmc-modules-6.1.0-22-686-di |   6.1.94-1 | i386
mmc-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
mmc-modules-6.1.0-26-686-di |  6.1.112-1 | i386
mmc-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
mouse-modules-6.1.0-22-686-di |   6.1.94-1 | i386
mouse-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
mouse-modules-6.1.0-26-686-di |  6.1.112-1 | i386
mouse-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
mtd-core-modules-6.1.0-22-686-di |   6.1.94-1 | i386
mtd-core-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
mtd-core-modules-6.1.0-26-686-di |  6.1.112-1 | i386
mtd-core-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
multipath-modules-6.1.0-22-686-di |   6.1.94-1 | i386
multipath-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
multipath-modules-6.1.0-26-686-di |  6.1.112-1 | i386
multipath-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
nbd-modules-6.1.0-22-686-di |   6.1.94-1 | i386
nbd-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
nbd-modules-6.1.0-26-686-di |  6.1.112-1 | i386
nbd-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
nic-modules-6.1.0-22-686-di |   6.1.94-1 | i386
nic-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
nic-modules-6.1.0-26-686-di |  6.1.112-1 | i386
nic-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
nic-pcmcia-modules-6.1.0-22-686-di |   6.1.94-1 | i386
nic-pcmcia-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
nic-pcmcia-modules-6.1.0-26-686-di |  6.1.112-1 | i386
nic-pcmcia-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
nic-shared-modules-6.1.0-22-686-di |   6.1.94-1 | i386
nic-shared-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
nic-shared-modules-6.1.0-26-686-di |  6.1.112-1 | i386
nic-shared-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
nic-usb-modules-6.1.0-22-686-di |   6.1.94-1 | i386
nic-usb-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
nic-usb-modules-6.1.0-26-686-di |  6.1.112-1 | i386
nic-usb-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
nic-wireless-modules-6.1.0-22-686-di |   6.1.94-1 | i386
nic-wireless-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
nic-wireless-modules-6.1.0-26-686-di |  6.1.112-1 | i386
nic-wireless-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
pata-modules-6.1.0-22-686-di |   6.1.94-1 | i386
pata-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
pata-modules-6.1.0-26-686-di |  6.1.112-1 | i386
pata-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
pcmcia-modules-6.1.0-22-686-di |   6.1.94-1 | i386
pcmcia-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
pcmcia-modules-6.1.0-26-686-di |  6.1.112-1 | i386
pcmcia-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
pcmcia-storage-modules-6.1.0-22-686-di |   6.1.94-1 | i386
pcmcia-storage-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
pcmcia-storage-modules-6.1.0-26-686-di |  6.1.112-1 | i386
pcmcia-storage-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
ppp-modules-6.1.0-22-686-di |   6.1.94-1 | i386
ppp-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
ppp-modules-6.1.0-26-686-di |  6.1.112-1 | i386
ppp-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
rfkill-modules-6.1.0-22-686-di |   6.1.94-1 | i386
rfkill-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
rfkill-modules-6.1.0-26-686-di |  6.1.112-1 | i386
rfkill-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
sata-modules-6.1.0-22-686-di |   6.1.94-1 | i386
sata-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
sata-modules-6.1.0-26-686-di |  6.1.112-1 | i386
sata-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
scsi-core-modules-6.1.0-22-686-di |   6.1.94-1 | i386
scsi-core-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
scsi-core-modules-6.1.0-26-686-di |  6.1.112-1 | i386
scsi-core-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
scsi-modules-6.1.0-22-686-di |   6.1.94-1 | i386
scsi-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
scsi-modules-6.1.0-26-686-di |  6.1.112-1 | i386
scsi-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
scsi-nic-modules-6.1.0-22-686-di |   6.1.94-1 | i386
scsi-nic-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
scsi-nic-modules-6.1.0-26-686-di |  6.1.112-1 | i386
scsi-nic-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
serial-modules-6.1.0-22-686-di |   6.1.94-1 | i386
serial-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
serial-modules-6.1.0-26-686-di |  6.1.112-1 | i386
serial-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
sound-modules-6.1.0-22-686-di |   6.1.94-1 | i386
sound-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
sound-modules-6.1.0-26-686-di |  6.1.112-1 | i386
sound-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
speakup-modules-6.1.0-22-686-di |   6.1.94-1 | i386
speakup-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
speakup-modules-6.1.0-26-686-di |  6.1.112-1 | i386
speakup-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
squashfs-modules-6.1.0-22-686-di |   6.1.94-1 | i386
squashfs-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
squashfs-modules-6.1.0-26-686-di |  6.1.112-1 | i386
squashfs-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
udf-modules-6.1.0-22-686-di |   6.1.94-1 | i386
udf-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
udf-modules-6.1.0-26-686-di |  6.1.112-1 | i386
udf-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
uinput-modules-6.1.0-22-686-di |   6.1.94-1 | i386
uinput-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
uinput-modules-6.1.0-26-686-di |  6.1.112-1 | i386
uinput-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
usb-modules-6.1.0-22-686-di |   6.1.94-1 | i386
usb-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
usb-modules-6.1.0-26-686-di |  6.1.112-1 | i386
usb-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
usb-serial-modules-6.1.0-22-686-di |   6.1.94-1 | i386
usb-serial-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
usb-serial-modules-6.1.0-26-686-di |  6.1.112-1 | i386
usb-serial-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
usb-storage-modules-6.1.0-22-686-di |   6.1.94-1 | i386
usb-storage-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
usb-storage-modules-6.1.0-26-686-di |  6.1.112-1 | i386
usb-storage-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386
xfs-modules-6.1.0-22-686-di |   6.1.94-1 | i386
xfs-modules-6.1.0-22-686-pae-di |   6.1.94-1 | i386
xfs-modules-6.1.0-26-686-di |  6.1.112-1 | i386
xfs-modules-6.1.0-26-686-pae-di |  6.1.112-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-i386)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:34:40 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-22-common |   6.1.94-1 | all
linux-headers-6.1.0-22-common-rt |   6.1.94-1 | all
linux-headers-6.1.0-26-common |  6.1.112-1 | all
linux-headers-6.1.0-26-common-rt |  6.1.112-1 | all
linux-support-6.1.0-22 |   6.1.94-1 | all
linux-support-6.1.0-26 |  6.1.112-1 | all

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Nov 2024 09:36:02 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

librte-bpf23 | 22.11.5-1~deb12u1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by dpdk - based on source metadata)
----------------------------------------------
=========================================================================
7zip (22.01+dfsg-8+deb12u1) bookworm; urgency=medium
 .
   * Fix CVE-2023-52168 (buffer overflow) and CVE-2023-52169 (buffer over-read)
 .
     * CVE-2023-52168: heap-based buffer overflow
         NTFS handler allows an attacker to overwrite two bytes at multiple
         offsets beyond the allocated buffer size.
     * CVE-2023-52169: out-of-bounds read
         NTFS handler allows an attacker to read beyond the intended buffer.
         The bytes read beyond the intended buffer are presented as a part of
         a filename listed in the file system image. This has security relevance
         in some known web-service use cases where untrusted users can upload
         files and have them extracted by a server-side 7-Zip process.
 .
     Detailed report about these issues are available at:
     https://dfir.ru/2024/06/19/vulnerabilities-in-7-zip-and-ntfs3/

activemq (5.17.2+dfsg-2+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2022-41678: Potential arbitrary code execution via Jolokia
   * CVE-2023-46604: The Java OpenWire protocol marshaller is vulnerable to
     Remote Code Execution (Closes: #1054909).

amanda (1:3.5.1-11+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * The fix for CVE-2022-37704 was incomplete and also broke some
     xfsdump usecases. (Closes: #1081049)

apache2 (2.4.62-1~deb12u2) bookworm-security; urgency=medium
 .
   * Fix CVE-2024-38474 regression:
     Better question mark tracking to avoid UnsafeAllow3F
     (Closes: #1079172)
   * Fix CVE-2024-39884 regression:
     Trust strings from configuration in mod_proxy
     (Closes: #1079206)
   * Add myself as maintainer with Yadd agreement

apr (1.7.2-3+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Use 0600 perms for named shared mem consistently (CVE-2023-49582)
     (Closes: #1080375)

base-files (12.4+deb12u8) bookworm; urgency=medium
 .
   * Change /etc/debian_version to 12.8, for Debian 12.8 point release.

booth (1.0-283-g9d4029a-2+deb12u1) bookworm-security; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2024-3049: wrong hmac might be accepted (Closes: #1073249)

btrfs-progs (6.2-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Add patch to fix bad checksum in btrfs-convert (closes: #1085207).
     It will produce corrupted checksum when converting from ext4 fs
     with 64K block size.

calamares-settings-debian (12.0.9-1+deb12u2) bookworm; urgency=medium
 .
   * Fix missing calamares launcher on KDE desktops
     (Closes: #1057853)
   * Fix broken btrfs space_cache option
     (Closes: #1080158)

chromium (130.0.6723.91-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-10487: Out of bounds write in Dawn.
       Reported by Apple Security Engineering and Architecture (SEAR).
     - CVE-2024-10488: Use after free in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
chromium (130.0.6723.69-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-10229: Inappropriate implementation in Extensions.
       Reported by Vsevolod Kokorin (Slonser) of Solidlab.
     - CVE-2024-10230: Type Confusion in V8.
       Reported by Seunghyun Lee (@0x10n).
     - CVE-2024-10231: Type Confusion in V8.
       Reported by Seunghyun Lee (@0x10n).
chromium (130.0.6723.69-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-10229: Inappropriate implementation in Extensions.
       Reported by Vsevolod Kokorin (Slonser) of Solidlab.
     - CVE-2024-10230: Type Confusion in V8.
       Reported by Seunghyun Lee (@0x10n).
     - CVE-2024-10231: Type Confusion in V8.
       Reported by Seunghyun Lee (@0x10n).
 .
   [ Timothy Pearson ]
   * d/patches:
     - bookworm/partially-deployed-mseal-syscall.patch: Work around newly
       introduced `mseal` syscall being inconsistently available on Bookworm kernels
chromium (130.0.6723.58-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-9954: Use after free in AI. Reported by DarkNavy.
     - CVE-2024-9955: Use after free in Web Authentication.
       Reported by anonymous.
     - CVE-2024-9956: Inappropriate implementation in Web Authentication.
       Reported by mastersplinter.
     - CVE-2024-9957: Use after free in UI. Reported by lime(@limeSec_) and
       fmyy(@binary_fmyy) From TIANGONG Team of Legendsec at QI-ANXIN Group.
     - CVE-2024-9958: Inappropriate implementation in PictureInPicture.
       Reported by Lyra Rebane (rebane2001).
     - CVE-2024-9959: Use after free in DevTools. Reported by Sakana.S.
     - CVE-2024-9960: Use after free in Dawn. Reported by Anonymous.
     - CVE-2024-9961: Use after free in Parcel Tracking. Reported by
       lime(@limeSec_) and fmyy(@binary_fmyy) From TIANGONG Team of
       Legendsec at QI-ANXIN Group.
     - CVE-2024-9962: Inappropriate implementation in Permissions.
       Reported by Shaheen Fazim.
     - CVE-2024-9963: Insufficient data validation in Downloads.
       Reported by Anonymous.
     - CVE-2024-9964: Inappropriate implementation in Payments.
       Reported by Hafiizh.
     - CVE-2024-9965: Insufficient data validation in DevTools.
       Reported by Shaheen Fazim.
     - CVE-2024-9966: Inappropriate implementation in Navigations.
       Reported by Harry Chen.
   * d/copyright: rollup -> @rollup  deletion.
   * d/patches:
     - debianization/sandbox.patch: refresh.
     - fixes/bindgen.patch: refresh.
     - disable/catapult.patch: refresh.
     - system/zlib.patch: drop. Upstream removed courgette, and its
       replacement (zucchini) doesn't appear to use zlib.
     - system/rollup.patch: update path due to upstream renaming; call
       ./rollup/.../rollup instead of ./@rollup/wasm-node/.../rollup.
     - system/event.patch: drop half of patch due to upstream deletions.
     - upstream/mojo-null.patch: merged into mojo.patch.
     - upstream/mojo.patch: update based on 130 test files.
 .
   [ Daniel Richard G. ]
   * d/rules: Drop the clang-16 -I/-Wl,-rpath flags from CXXFLAGS/LDFLAGS as
     they are no longer needed.
 .
   [ Timothy Pearson ]
   * d/patches:
     - upstream/blink-fix-size-assertions.patch: Fix build on non-amd64
       platforms
     - fixes/fix-assert-in-vnc-sessions.patch: Fix assertion and SIGTRAP
       when starting Chromium from within a VNC session
   * d/patches/ppc64le:
     - core/add-ppc64-pthread-stack-size.patch: Define correct pthread
       stack size on ppc64 systems
     - core/cargo-add-ppc64.diff
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: Refresh for
       upstream changes
     - third_party/0001-Force-baseline-POWER8-AltiVec-VSX-CPU-features-when-
       .patch: Refresh for upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       Refresh for upstream changes
     - third_party/skia-vsx-instructions.patch: Refresh for upstream changes
     - workarounds/HACK-debian-clang-disable-skia-musttail.patch: Refresh
       for upstream changes
chromium (130.0.6723.58-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-9954: Use after free in AI. Reported by DarkNavy.
     - CVE-2024-9955: Use after free in Web Authentication.
       Reported by anonymous.
     - CVE-2024-9956: Inappropriate implementation in Web Authentication.
       Reported by mastersplinter.
     - CVE-2024-9957: Use after free in UI. Reported by lime(@limeSec_) and
       fmyy(@binary_fmyy) From TIANGONG Team of Legendsec at QI-ANXIN Group.
     - CVE-2024-9958: Inappropriate implementation in PictureInPicture.
       Reported by Lyra Rebane (rebane2001).
     - CVE-2024-9959: Use after free in DevTools. Reported by Sakana.S.
     - CVE-2024-9960: Use after free in Dawn. Reported by Anonymous.
     - CVE-2024-9961: Use after free in Parcel Tracking. Reported by
       lime(@limeSec_) and fmyy(@binary_fmyy) From TIANGONG Team of
       Legendsec at QI-ANXIN Group.
     - CVE-2024-9962: Inappropriate implementation in Permissions.
       Reported by Shaheen Fazim.
     - CVE-2024-9963: Insufficient data validation in Downloads.
       Reported by Anonymous.
     - CVE-2024-9964: Inappropriate implementation in Payments.
       Reported by Hafiizh.
     - CVE-2024-9965: Insufficient data validation in DevTools.
       Reported by Shaheen Fazim.
     - CVE-2024-9966: Inappropriate implementation in Navigations.
       Reported by Harry Chen.
   * d/copyright: rollup -> @rollup  deletion.
   * d/patches:
     - debianization/sandbox.patch: refresh.
     - fixes/bindgen.patch: refresh.
     - disable/catapult.patch: refresh.
     - system/zlib.patch: drop. Upstream removed courgette, and its
       replacement (zucchini) doesn't appear to use zlib.
     - system/rollup.patch: update path due to upstream renaming; call
       ./rollup/.../rollup instead of ./@rollup/wasm-node/.../rollup.
     - system/event.patch: drop half of patch due to upstream deletions.
     - upstream/mojo-null.patch: merged into mojo.patch.
     - upstream/mojo.patch: update based on 130 test files.
     - bookworm/gn-absl.patch: refresh.
     - bookworm/gn-funcs.patch: refresh.
     - bookworm/cacheline.patch: add patch to revert usage of
       std::hardware_destructive_interference_size, which clang-16 lacks.
     - bookworm/constexpr2.patch: add around clang16 build failure
       workaround related to constexpr.
     - upstream/stack-header.patch: add missing include.
 .
   [ Daniel Richard G. ]
   * d/rules: Drop the clang-16 -I/-Wl,-rpath flags from CXXFLAGS/LDFLAGS as
     they are no longer needed.
 .
   [ Timothy Pearson ]
   * d/patches:
     - upstream/blink-fix-size-assertions.patch: Fix build on non-amd64
       platforms
     - fixes/fix-assert-in-vnc-sessions.patch: Fix assertion and SIGTRAP
       when starting Chromium from within a VNC session
   * d/patches/ppc64le:
     - core/add-ppc64-pthread-stack-size.patch: Define correct pthread
       stack size on ppc64 systems
     - core/cargo-add-ppc64.diff
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: Refresh for
       upstream changes
     - third_party/0001-Force-baseline-POWER8-AltiVec-VSX-CPU-features-when-
       .patch: Refresh for upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       Refresh for upstream changes
     - third_party/skia-vsx-instructions.patch: Refresh for upstream changes
     - workarounds/HACK-debian-clang-disable-skia-musttail.patch: Refresh
       for upstream changes
chromium (129.0.6668.100-2) unstable; urgency=high
 .
   * Switch to using clang-19, and drop all d/patches/bookworm/ workarounds
     except for libxml-parsererr.patch (closes: #1081241).
chromium (129.0.6668.100-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-9602: Type Confusion in V8.
       Reported by Seunghyun Lee (@0x10n).
     - CVE-2024-9603: Type Confusion in V8.
       Reported by @WeShotTheMoon and @Nguyen Hoang Thach of starlabs.
chromium (129.0.6668.100-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-9602: Type Confusion in V8.
       Reported by Seunghyun Lee (@0x10n).
     - CVE-2024-9603: Type Confusion in V8.
       Reported by @WeShotTheMoon and @Nguyen Hoang Thach of starlabs.
chromium (129.0.6668.89-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-7025: Integer overflow in Layout.
       Reported by Tashita Software Security.
     - CVE-2024-9369: Insufficient data validation in Mojo.
       Reported by Xiantong Hou and Pisanbao of Wuheng Lab.
     - CVE-2024-9370: Inappropriate implementation in V8. Reported by
       Nguyễn Hoàng Thạch, Đỗ Minh Tuấn, and Wu JinLin of STAR Labs SG Pte Ltd.
   * d/patches:
     - bookworm/libxml-parseerr.patch: readd for downgraded libxml2 in
       unstable (closes: #1082907).
     - upstream/wayland-gbm-pixmap.patch: backport two patches to fix
       noisy wayland video playback (closes: #1077345).
   * Build against system libtiff, thanks to
     Soren Stoutner <soren@stoutner.com> for getting this fixed upstream
     (closes: #1033747).
chromium (129.0.6668.89-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-7025: Integer overflow in Layout.
       Reported by Tashita Software Security.
     - CVE-2024-9369: Insufficient data validation in Mojo.
       Reported by Xiantong Hou and Pisanbao of Wuheng Lab.
     - CVE-2024-9370: Inappropriate implementation in V8. Reported by
       Nguyễn Hoàng Thạch, Đỗ Minh Tuấn, and Wu JinLin of STAR Labs SG Pte Ltd.
   * d/patches:
     - bookworm/libxml-parseerr.patch: readd for downgraded libxml2 in
       unstable (closes: #1082907).
     - upstream/wayland-gbm-pixmap.patch: backport two patches to fix
       noisy wayland video playback (closes: #1077345).
   * Build against system libtiff, thanks to
     Soren Stoutner <soren@stoutner.com> for getting this fixed upstream
     (closes: #1033747).
chromium (129.0.6668.70-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-9120: Use after free in Dawn. Reported by Anonymous.
     - CVE-2024-9121: Inappropriate implementation in V8.
       Reported by Tashita Software Security.
     - CVE-2024-9122: Type Confusion in V8.
       Reported by Seunghyun Lee (@0x10n).
     - CVE-2024-9123: Integer overflow in Skia.
       Reported by raven at KunLun lab.
   * d/copyright: delete more upstream .clang, .git, and android residue.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/predictor-denial-of-service.patch: Work around upstream
       issue #368562245, which can cause denial of service of the entire
       browser process on specific types of Web sites.
chromium (129.0.6668.70-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-9120: Use after free in Dawn. Reported by Anonymous.
     - CVE-2024-9121: Inappropriate implementation in V8.
       Reported by Tashita Software Security.
     - CVE-2024-9122: Type Confusion in V8.
       Reported by Seunghyun Lee (@0x10n).
     - CVE-2024-9123: Integer overflow in Skia.
       Reported by raven at KunLun lab.
   * d/copyright: delete more upstream .clang, .git, and android residue.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/predictor-denial-of-service.patch: Work around upstream
       issue #368562245, which can cause denial of service of the entire
       browser process on specific types of Web sites.
chromium (129.0.6668.58-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-8904: Type Confusion in V8. Reported by Popax21.
     - CVE-2024-8905: Inappropriate implementation in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-8906: Incorrect security UI in Downloads.
       Reported by @retsew0x01.
     - CVE-2024-8907: Insufficient data validation in Omnibox.
       Reported by Muhammad Zaid Ghifari.
     - CVE-2024-8908: Inappropriate implementation in Autofill.
       Reported by Levit Nudi from Kenya.
     - CVE-2024-8909: Inappropriate implementation in UI.
       Reported by Shaheen Fazim.
   * d/patches:
     - debianization/sandbox.patch: refresh for upstream changes. Since we
       have some downstream users of this package, retain the Ubuntu wording.
     - disable/tests.patch: refresh.
     - disable/catapult.patch: refresh.
     - bookworm/clang16.patch: refresh, delete -Wno-dangling-assignment-gsl
     - ppc64le/crashpad/0001-Implement-support-for-PPC64-on-Linux.patch:
       refresh.
     - ppc64le/sandbox/Sandbox-linux-services-credentials.cc-PPC.patch:
       refresh.
     - ppc64le/third_party/dawn-fix-ppc64le-detection.patch: refresh.
     - bookworm/more-spaceships.patch: yet another clang-17 header
       backport for clang-16 inadequecies.
     - bookworm/signer-lambda.patch: clang-16 lambda bug workaround.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/dawn-fix-typos.patch: drop, applied upstream
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       refresh for upstream changes
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh
       for upstream changes
     - core/cargo-add-ppc64.diff: Add ppc64 to cargo architecture definitions
chromium (129.0.6668.58-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-8904: Type Confusion in V8. Reported by Popax21.
     - CVE-2024-8905: Inappropriate implementation in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-8906: Incorrect security UI in Downloads.
       Reported by @retsew0x01.
     - CVE-2024-8907: Insufficient data validation in Omnibox.
       Reported by Muhammad Zaid Ghifari.
     - CVE-2024-8908: Inappropriate implementation in Autofill.
       Reported by Levit Nudi from Kenya.
     - CVE-2024-8909: Inappropriate implementation in UI.
       Reported by Shaheen Fazim.
   * d/patches:
     - debianization/sandbox.patch: refresh for upstream changes. Since we
       have some downstream users of this package, retain the Ubuntu wording.
     - disable/tests.patch: refresh.
     - disable/catapult.patch: refresh.
     - bookworm/clang16.patch: refresh, delete -Wno-dangling-assignment-gsl
     - ppc64le/crashpad/0001-Implement-support-for-PPC64-on-Linux.patch:
       refresh.
     - ppc64le/sandbox/Sandbox-linux-services-credentials.cc-PPC.patch:
       refresh.
     - ppc64le/third_party/dawn-fix-ppc64le-detection.patch: refresh.
     - bookworm/more-spaceships.patch: yet another clang-17 header
       backport for clang-16 inadequecies.
     - bookworm/signer-lambda.patch: clang-16 lambda bug workaround.
     - bookworm/bubble-contents.patch: refresh.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/dawn-fix-typos.patch: drop, applied upstream
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       refresh for upstream changes
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh
       for upstream changes
     - core/cargo-add-ppc64.diff: Add ppc64 to cargo architecture definitions
chromium (128.0.6613.137-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-8636: Heap buffer overflow in Skia.
       Reported by Renan Rios (@hyhy_100).
     - CVE-2024-8637: Use after free in Media Router. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
     - CVE-2024-8638: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-8639: Use after free in Autofill. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - core/add-ppc64-architecture-string.patch
     - fixes/fix-study-crash.patch
 .
   [ Daniel Richard G. ]
   * d/copyright: Add some more Files-Excluded: entries.
   * d/rules: Ensure all files in orig source tarball are user-writable.
   * d/patches/disable:
     - tests.patch: Break out SwiftShader tests deletion to...
     - tests-swiftshader.patch: ...a separate file, to simplify resolving
       conflicts with the ungoogled-chromium patch series.
chromium (128.0.6613.137-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-8636: Heap buffer overflow in Skia.
       Reported by Renan Rios (@hyhy_100).
     - CVE-2024-8637: Use after free in Media Router. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
     - CVE-2024-8638: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-8639: Use after free in Autofill. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - core/add-ppc64-architecture-string.patch
     - fixes/fix-study-crash.patch
 .
   [ Daniel Richard G. ]
   * d/copyright: Add some more Files-Excluded: entries.
   * d/rules: Ensure all files in orig source tarball are user-writable.
   * d/patches/disable:
     - tests.patch: Break out SwiftShader tests deletion to...
     - tests-swiftshader.patch: ...a separate file, to simplify resolving
       conflicts with the ungoogled-chromium patch series.
chromium (128.0.6613.119-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-8362: Use after free in WebAudio.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-7970: Out of bounds write in V8.
       Reported by Cassidy Kim(@cassidy6564).
   * Enable swiftshader support; thanks to Charles Samuels for helping out
     on this (closes: #1064465).
   * d/patches:
     - disable/swiftshader.patch: drop.
     - disable/swiftshader-2.patch: drop.
     - disable/tests.patch: some swiftshader tests deletion needed.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/gpu-crash.patch: Fix GPU process crash (upstream issue #364568422)
     - ppc64le/third_party/0001-swiftshader-fix-build.patch: Fix SwiftShader
       build on ppc64el systems
chromium (128.0.6613.119-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-8362: Use after free in WebAudio.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-7970: Out of bounds write in V8.
       Reported by Cassidy Kim(@cassidy6564).
   * Enable swiftshader support; thanks to Charles Samuels for helping out
     on this (closes: #1064465).
   * d/patches:
     - disable/swiftshader.patch: drop.
     - disable/swiftshader-2.patch: drop.
     - disable/tests.patch: some swiftshader tests deletion needed.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/gpu-crash.patch: Fix GPU process crash (upstream issue #364568422)
     - ppc64le/third_party/0001-swiftshader-fix-build.patch: Fix SwiftShader
       build on ppc64el systems
chromium (128.0.6613.113-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-7969: Type Confusion in V8.
       Reported by CFF of Topsec Alpha Team.
     - CVE-2024-8193: Heap buffer overflow in Skia.
       Reported by Renan Rios (@hyhy_100).
     - CVE-2024-8194: Type Confusion in V8. Reported by Seunghyun Lee (@0x10n).
     - CVE-2024-8198: Heap buffer overflow in Skia.
       Reported by Renan Rios (@hyhy_100).
   * d/control:
     - Bump rustc build-dep up to >= 1.74.
   * d/patches:
     - bookworm/rust-downgrade-osstr-users.patch: drop, now that we have a
       newer rust in bookworm.
chromium (128.0.6613.113-1~deb13u1) trixie; urgency=high
 .
   * Rebuild for trixie.
   * Revert libxml2-dev versioned build-dep, and re-add
     d/patches/bookworm/libxml/parseerr.patch.
chromium (128.0.6613.113-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-7969: Type Confusion in V8.
       Reported by CFF of Topsec Alpha Team.
     - CVE-2024-8193: Heap buffer overflow in Skia.
       Reported by Renan Rios (@hyhy_100).
     - CVE-2024-8194: Type Confusion in V8. Reported by Seunghyun Lee (@0x10n).
     - CVE-2024-8198: Heap buffer overflow in Skia.
       Reported by Renan Rios (@hyhy_100).
   * d/control:
     - Bump rustc-web build-dep up to >= 1.74.
   * d/patches:
     - bookworm/rust-downgrade-osstr-users.patch: drop, now that we have a
       newer rust in bookworm.
     - bookworm/crabbyav1f.patch: drop, no longer needed w/ new rust.
     - bookworm/rust-no-thin-lto.patch: drop, we can now enable thinlto w/
       new rust.
     - fixes/clang-rust-target.patch: add, needed for thinlto in rust.
     - ppc64le/fixes/fix-different-data-layouts.patch: add, needed for
       mismatch between newer rust and older clang.
chromium (128.0.6613.84-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-7964: Use after free in Passwords. Reported by Anonymous.
     - CVE-2024-7965: Inappropriate implementation in V8. Reported by TheDog.
     - CVE-2024-7966: Out of bounds memory access in Skia.
       Reported by Renan Rios (@HyHy100).
     - CVE-2024-7967: Heap buffer overflow in Fonts.
       Reported by Tashita Software Security.
     - CVE-2024-7968: Use after free in Autofill.
       Reported by Han Zheng (HexHive).
     - CVE-2024-7969: Type Confusion in V8.
       Reported by CFF of Topsec Alpha Team.
     - CVE-2024-7971: Type confusion in V8. Reported by Microsoft Threat
       Intelligence Center (MSTIC), Microsoft Security Response Center (MSRC).
     - CVE-2024-7972: Inappropriate implementation in V8.
       Reported by Simon Gerst (intrigus-lgtm).
     - CVE-2024-7973: Heap buffer overflow in PDFium. Reported by soiax.
     - CVE-2024-7974: Insufficient data validation in V8 API.
       Reported by bowu(@gocrashed).
     - CVE-2024-7975: Inappropriate implementation in Permissions.
       Reported by Thomas Orlita.
     - CVE-2024-7976: Inappropriate implementation in FedCM.
       Reported by Alesandro Ortiz.
     - CVE-2024-7977: Insufficient data validation in Installer.
       Reported by Kim Dong-uk (@justlikebono).
     - CVE-2024-7978: Insufficient policy enforcement in Data Transfer.
       Reported by NDevTK.
     - CVE-2024-7979: Insufficient data validation in Installer.
       Reported by VulnNoob.
     - CVE-2024-7980: Insufficient data validation in Installer.
       Reported by VulnNoob.
     - CVE-2024-7981: Inappropriate implementation in Views.
       Reported by Thomas Orlita.
     - CVE-2024-8033: Inappropriate implementation in WebApp Installs.
       Reported by Lijo A.T.
     - CVE-2024-8034: Inappropriate implementation in Custom Tabs.
       Reported by Bharat (mrnoob).
     - CVE-2024-8035: Inappropriate implementation in Extensions.
       Reported by Microsoft.
   * d/copyright: delete third_party/siso/ which contains binaries.
   * d/rules: set safe_browsing_use_unrar=false to disable unrar.
   * d/patches:
     - fixes/blink-frags.patch: drop, merged upstream.
     - fixes/stats-collector.patch: drop, upstream deleted broken code.
     - fixes/chromium-browser-ui-missing-deps.patch: drop, fixed upstream.
     - upstream/armhf-ftbfs.patch: drop, merged upstream.
     - upstream/containers-header.patch: drop, merged upstream.
     - upstream/crabbyav1f.patch: drop, merged upstream.
     - upstream/lock-impl.patch: drop, merged upstream.
     - upstream/paint-layer-header.patch: drop, merged upstream.
     - disable/unrar.patch: drop, merged upstream w/ build arg.
     - bookworm/nvt.patch: drop, no longer needed.
     - fixes/ps-print.patch: refresh.
     - system/openjpeg.patch: refresh.
     - bookworm/clang16.patch: refresh & remove another unsupported option.
     - bookworm/constexpr.patch: refresh & add more fixes.
     - bookworm/lex-3way.patch: pull in another STL function from clang-17.
     - bookworm/blink-attrib.patch: add build fix to reorder __attribute__.
     - fixes/highway-include-path.patch: upstream fixed the original issue
       in a broken way, making this worse. Add more to this patch to work
       around that.
 .
   [ Daniel Richard G. ]
   * d/rules: Parameterize Rust sysroot to simplify using a different one.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/dawn-fix-typos.patch: Refresh for upstream changes
     - third_party/use-sysconf-page-size-on-ppc64.patch: Refresh for upstream
       changes
     - third_party/0002-Add-PPC64-generated-files-for-boringssl.patch:
       Refresh for upstream changes
     - workarounds/HACK-debian-clang-disable-base-musttail.patch: Disable
       musttail on ppc64el platforms

cjson (1.7.15-1+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Backport patch to add NULL check to cJSON_SetValuestring (CVE-2024-31755)
     (Closes: #1071742)

clamav (1.0.7+dfsg-1~deb12u1) bookworm; urgency=medium
 .
   * Import 1.0.7 (Closes: #1080962)
     - CVE-2024-20506 (Changed the logging module to disable following symlinks
       on Linux)
     - CVE-2024-20505 (Fixed a possible out-of-bounds read bug in the PDF file
       parser).
clamav (1.0.6+dfsg-1) unstable; urgency=medium
 .
   * Import 1.0.6
   * Bump standards-version to 4.7.0 without changes.
clamav (1.0.5+dfsg-1.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Rename libraries for 64-bit time_t transition.  Closes: #1062072
clamav (1.0.5+dfsg-1) unstable; urgency=medium
 .
   * Import 1.0.4 (Closes: #1063479).
     - Update symbols.
     - CVE-2024-20290 (Fixed a possible heap overflow read bug in the OLE2 file
       parser that could cause a denial-of-service (DoS) condition.)
     - CVE-2024-20328 (Fixed a possible command injection vulnerability in the
       "VirusEvent" feature of ClamAV's ClamD service.

cloud-init (22.4.2-1+deb12u2) bookworm; urgency=medium
 .
   * networkd: Add support for multiple [Route] sections (Closes: #1052535)

cloud-initramfs-tools (0.18.debian13+deb12u1) bookworm; urgency=medium
 .
   * growroot: add missing dependencies (Closes: #1037914)

cups (2.4.2-3+deb12u8) bookworm-security; urgency=high
 .
   * CVE-2024-47175
     Fix CVE and upstream also added some extra hardening to patch
     - validate URIs, attribute names, and capabilities
       in cups/ppd-cache.c, scheduler/ipp.c
     - sanitize make and model in cups/ppd-cache.c
     - PPDize preset and template names in cups/ppd-cache.c
     - quote PPD localized strings in  cups/ppd-cache.c
     - fix warnings in cups/ppd-cache.c

cups-filters (1.28.17-3+deb12u1) bookworm-security; urgency=high
 .
   * CVE-2024-47076 (Closes: #1082827)
     cfGetPrinterAttributes5(): Validate response attributes before return
   * CVE-2024-47176 (Closes: #1082820)
     Default BrowseRemoteProtocols should not include "cups" protocol

curl (7.88.1-10+deb12u8) bookworm; urgency=medium
 .
   * Team upload.
   * Import patch for CVE-2024-8096
     - CVE-2024-8096: When the TLS backend is GnuTLS, curl may incorrectly
       handle OCSP stapling. If the OCSP status reports an error other than
       "revoked" (e.g., "unauthorized"), it is not treated as a bad certificate,
       potentially allowing invalid certificates to be considered valid.

debian-installer (20230607+deb12u8) bookworm; urgency=medium
 .
   * Reinstate some armel netboot targets, as suggested by Martin
     Michlmayr (Closes: #1068898) and tested by Rick Thomas (thanks!):
      - openrd-base
      - openrd-client
      - openrd-ultimate
   * Bump Linux kernel ABI to 6.1.0-27.
   * Adjust linux-image build-deps as well.

debian-installer-netboot-images (20230607+deb12u8) bookworm; urgency=medium
 .
   * Update to 20230607+deb12u8, from bookworm-proposed-updates.

devscripts (2.23.4+deb12u2) bookworm; urgency=medium
 .
   [ Lee Garrett ]
   * bts: Fix regression when using Auth on 587/tcp.  Closes: #1079730
 .
   [ Cyril Brulebois ]
   * build-rdeps: Add support for non-free-firmware
   * chdist: Update sources.list examples with non-free-firmware
 .
   [ Gioele Barabucci ]
   * build-rdeps: Use all available distros by default.  Closes: #1032396

diffoscope (240+deb12u1) stable; urgency=medium
 .
   [ Chris Lamb ]
   * Backport a patch by FC (Fay) Stegerman to fix a FTBFS caused by a
     .zip-related security fix that was included in Debian's own upload of
     python3.11 3.11.2-6+deb12u2 (see #1070133). Diffoscope's testsuite
     deliberately excercises a Mozilla-style ZIP file that has its Central
     Directory secton at the beginning of the file, rather than at the end. This
     breaks the new overlap check in Python's built-in zipfile.py library as
     that checks that every entry ends before the Central Directory begins. Many
     thanks to Fay for both the patch and related guidance. (Closes: #1078883)
   * Do not call marshal.loads() on precompiled Python bytecode as it is
     inherently unsafe. The loads() method can easily cause the CPython process
     running diffoscope to irretrievably crash (e.g. when presented with a newer
     .pyc format), and potentially permit of arbitrary code execution. Replace,
     for now, with a brief textual summary of the code section of .pyc files
     instead. For more information, see:
     <https://salsa.debian.org/reproducible-builds/diffoscope/-/issues/371>

distro-info-data (0.58+deb12u3) bookworm; urgency=medium
 .
   * Update data to 0.63:
     - Add Ubuntu 25.04 "Plucky Puffin" (LP: #2084572)

docker.io (20.10.24+dfsg1-1+deb12u1) bookworm; urgency=high
 .
   * Team upload
   * Fix CVE-2024-41110: Authz zero length regression
     A security vulnerability has been detected in Docker Engine,
     which could allow an attacker
     to bypass authorization plugins (AuthZ) under specific
     circumstances. The base likelihood of this being exploited is low.
     (Closes: #1084993)

dpdk (22.11.6-1~deb12u1) bookworm; urgency=medium
 .
   [ Christian Ehrhardt ]
   * fix reprotest for parallel sphinx
   * d/p/disable-parallel-sphinx.patch: mention forwarding
 .
   [ Luca Boccassi ]
   * salsa-ci: run Lintian on stable and suppress two warnings
   * Update upstream source from tag 'upstream/22.11.6'
   * Refresh patches to remove fuzz from 22.11.6
   * BPF library is now disabled on i386

exim4 (4.96-15+deb12u6) bookworm; urgency=medium
 .
   * Fix crash in dbmnz when looking up keys with no content.
     Closes: #1080472

expat (2.5.0-1+deb12u1) bookworm-security; urgency=medium
 .
   * Backport security fix for CVE-2024-45490: reject negative len for
     XML_ParseBuffer() (closes: #1080149).
   * Backport security fix for CVE-2024-45491: detect integer overflow in
     dtdCopy() (closes: #1080150).
   * Backport security fix for CVE-2024-45492: detect integer overflow in
     function nextScaffoldPart() (closes: #1080152).

fcgiwrap (1.1.0-14+deb12u1) bookworm; urgency=medium
 .
   [ Mitchell Dzurick ]
   * d/t/git-http-backend: make www-data own $AUTOPKGTEST_TMP/test1/.git
     git introduced more aggressive security checking, so the dep8 test needs
     to explicitly change ownership of the new git directory.
     (LP: #2067942, Closes: #1072394)

firefox-esr (128.3.1esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-51, also known as CVE-2024-9680.
 .
   * js/src/jit/mips-shared/MacroAssembler-mips-shared-inl.h,
     js/src/jit/mips-shared/MacroAssembler-mips-shared.cpp,
     js/src/jit/mips-shared/MacroAssembler-mips-shared.h,
     js/src/jit/mips64/MacroAssembler-mips64.cpp,
     js/src/jit/mips64/MacroAssembler-mips64.h,
     js/src/wasm/WasmGenerator.cpp, js/src/wasm/WasmSummarizeInsn.cpp: Fix
     FTBFS on mipsel64. bz#1855960.
firefox-esr (128.3.0esr-2) unstable; urgency=medium
 .
   * debian/watch: Refreshed for firefox-esr.
   * debian/rules:
     - Fixed manual page header for firefox-esr.
     - Use a single virtualenv for preprocessing and build.
   * debian/iceweasel.*: Remove the remaining iceweasel files.
   * debian/control*:
     - Remove unnecessary dependency on autotools-dev.
     - Remove explicit dependency on dpkg-dev.
     - Remove Breaks: xul-ext-torbutton. The package was removed in bug
       #796316, 9 years ago.
   * debian/browser.lintian-overrides.in: Updated.
   * debian/source/lintian-overrides: Updated.
   * debian/copyright: Updated.
 .
   * js/src/jit/mips-shared/MacroAssembler-mips-shared-inl.h,
     js/src/jit/mips-shared/MacroAssembler-mips-shared.cpp,
     js/src/jit/mips-shared/MacroAssembler-mips-shared.h,
     js/src/jit/mips64/MacroAssembler-mips64.cpp,
     js/src/jit/mips64/MacroAssembler-mips64.h,
     js/src/wasm/WasmGenerator.cpp, js/src/wasm/WasmSummarizeInsn.cpp: Fix
     FTBFS on mipsel64. bz#1855960.
firefox-esr (128.3.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-47, also known as:
     CVE-2024-9392, CVE-2024-9393, CVE-2024-9394, CVE-2024-8900,
     CVE-2024-9396, CVE-2024-9397, CVE-2024-9398, CVE-2024-9399,
     CVE-2024-9400, CVE-2024-9401, CVE-2024-9402.
 .
   * debian/control.in: Use rustc-web and cbindgen-web on bookworm and bullseye.
   * debian/control.in, debian/rules: Use gcc-11 on bookworm, working around
     #1056561.
   * debian/browser.mozconfig.in, debian/browser.preinst.in, debian/control.in,
     debian/l10n/browser-l10n.control, debian/l10n/browser-l10n.control.in,
     debian/l10n/gen, debian/rules, debian/upstream.mk: Remove support for
     buster.
firefox-esr (128.3.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-47, also known as:
     CVE-2024-9392, CVE-2024-9393, CVE-2024-9394, CVE-2024-8900,
     CVE-2024-9396, CVE-2024-9397, CVE-2024-9398, CVE-2024-9399,
     CVE-2024-9400, CVE-2024-9401, CVE-2024-9402.
 .
   * debian/control.in: Use rustc-web and cbindgen-web on bookworm and bullseye.
   * debian/control.in, debian/rules: Use gcc-11 on bookworm, working around
     #1056561.
   * debian/browser.mozconfig.in, debian/browser.preinst.in, debian/control.in,
     debian/l10n/browser-l10n.control, debian/l10n/browser-l10n.control.in,
     debian/l10n/gen, debian/rules, debian/upstream.mk: Remove support for
     buster.
firefox-esr (128.3.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * Backport to bullseye.
firefox-esr (115.15.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-41, also known as:
     CVE-2024-8381, CVE-2024-8382, CVE-2024-8383, CVE-2024-8384.
firefox-esr (115.15.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-41, also known as:
     CVE-2024-8381, CVE-2024-8382, CVE-2024-8383, CVE-2024-8384.
firefox-esr (115.14.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-34, also known as:
     CVE-2024-7519, CVE-2024-7521, CVE-2024-7522, CVE-2024-7524,
     CVE-2024-7525, CVE-2024-7526, CVE-2024-7527, CVE-2024-7529,
     CVE-2024-7531.

galera-4 (26.4.20-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream release 26.4.20. Includes multiple bug fixes, see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.20.txt
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.19.txt
   * Adopt gbp.conf from 'debian/latest' but adopt it for 'debian/12-bookworm'
galera-4 (26.4.19-1) unstable; urgency=medium
 .
   * New upstream release 26.4.19. Includes multiple bug fixes, see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.19.txt
galera-4 (26.4.18-1) unstable; urgency=medium
 .
   * Switch to upstream aware DEP-14 branch structure in gbp.conf
   * New upstream release 26.4.18. Includes multiple bug fixes, see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.18.txt
   * For previous release details see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.17.txt
   * New upstream signing key 3D53839A70BC938B08CDD47F45460A518DA84635,
     verified from 26.4.17 release notes
   * Move service file from /lib to /usr/lib to conform with usrmerge
galera-4 (26.4.18-1~exp1) experimental; urgency=medium
 .
   * Switch to upstream aware DEP-14 branch structure in gbp.conf
   * New upstream signing key 3D53839A70BC938B08CDD47F45460A518DA84635
   * Move service file from /lib to /usr/lib to conform with usrmerge

ghostscript (10.0.0~dfsg-11+deb12u5) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * review printing of pointers (CVE-2024-29508)
   * Fix compiler warning in optimised build
   * Coverity IDs 414141 & 414145
   * Don't allow PDF files with bad Filters to overflow the debug buffer
     (CVE-2024-29506)
   * Don't use strlen on passwords (CVE-2024-29509)
   * Bounds checks when using CIDFont related params (CVE-2024-29507)

git (1:2.39.5-0+deb12u1) bookworm-security; urgency=medium
 .
   * new upstream point release (see RelNotes/2.39.3.txt,
     RelNotes/2.39.4.txt, RelNotes/2.39.5.txt).  Addresses
     CVE-2023-25652, CVE-2023-25815, CVE-2023-29007, CVE-2024-32002,
     CVE-2024-32004, CVE-2024-32020, CVE-2023-32021 (closes:
     #1071160).
git (1:2.39.2+next.20230215-1) experimental; urgency=low
 .
   * new snapshot, taken from upstream commit 279f198d.
   * merge branch debian-sid.

glib2.0 (2.74.6-2+deb12u4) bookworm; urgency=medium
 .
   [ Helmut Grohne ]
   * Provide libgio-2.0-dev from libglib2.0-dev in bookworm.
     In unstable, libgio-2.0-dev has been split off from
     libglib2.0-dev. Some of the build dependencies on libglib2.0-dev
     will be switched over to libgio-2.0-dev. This causes them to
     be unsatisfiable in bookworm-backports, unless a bookworm update
     provides forward compatibility by providing libgio-2.0-dev (which
     has never been mentioned in bookworm).
 .
   [ Simon McVittie ]
   * d/control.in: libglib2.0-dev-bin Provides libgio-2.0-dev-bin.
     Packages backported from trixie/sid might build-depend on
     libgio-2.0-dev-bin if they participate in bootstrapping and need to
     run utilities like glib-mkenums or gdbus-codegen during their build.
   * d/control.in: Freeze Uploaders at the value it previously had in bookworm.
     This allows `debian/rules clean` to be run without altering d/control.

glibc (2.36-9+deb12u9) bookworm; urgency=medium
 .
   * debian/testsuite-xfail-debian.mk: mark tst-support_descriptors as XFAIL,
     due to sbuild bug #1070003.
   * debian/patches/localedata/git-locale-hr_HR-euro.diff: change Croatian
     locale to use Euro as currency.
   * debian/patches/git-updates.diff: update from upstream stable branch:
     - resolv: do not ignore short error responses (as generated by e.g.
       Unbound) to avoid timeouts.
     - resolv: fix timeouts when single-request mode is enabled in resolv.conf.
     - resolv: fix reloading resolv.conf when a nameserver has been
       automatically switched to single-request mode.
     - mremap(): fix support for the MREMAP_DONTUNMAP option.
     - fortification: fix name space violation in fortify wrappers.
     - vfscanf(): fix matches longer than INT_MAX.
     - ungetc(): fix uninitialized read when putting into unused streams.
     - ungetc(): fix backup buffer leak on program exit.
   * patches/arm64/local-revert-aarch64-check-kernel-version-for-sve-ifuncs.diff:
     revert upstream commit as it changes the GLIBC_PRIVATE ABI, causing
     crashes with static binaries using dlopened NSS functions.  Closes:
     #1083095.

gtk+3.0 (3.24.38-2~deb12u3) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * d/p/atk_focus_tracker_notify.deprecated.patch: Fix letting Orca announce
     initial focus (Closes: #1084489)

ikiwiki-hosting (0.20220716-2+deb12u1) bookworm; urgency=medium
 .
   [ Simon McVittie ]
   * d/ikiwiki-hosting-web.{init,service}: Allow reading other users' repositories.
     Each website's git repository is owned by its own uid, and the
     git-daemon running as ikiwiki-anon needs to be able to read them all.
     (Closes: #1076751)

intel-microcode (3.20240910.1~deb12u1) bookworm; urgency=medium
 .
   * Build for bookworm
   * All trixie-only changes (from 3.20240813.2) are reverted on this branch
 .
 intel-microcode (3.20240910.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240910 (closes: #1081363)
     - Mitigations for INTEL-SA-01103 (CVE-2024-23984)
       A potential security vulnerability in the Running Average Power Limit
       (RAPL) interface for some Intel Processors may allow information
       disclosure.
     - Mitigations for INTEL-SA-01097 (CVE-2024-24968)
       A potential security vulnerability in some Intel Processors may allow
       denial of service.
     - Fixes for unspecified functional issues on several processor models
     - The processor voltage limit issue on Core 13rd/14th gen REQUIRES A
       FIRMWARE UPDATE.  It is present in this release for sig 0xb0671, but
       THE VOLTAGE ISSUE FIX ONLY WORKS WHEN THE MICROCODE UPDATE IS LOADED
       THROUGH THE FIT TABLE IN FIRMWARE.  Contact your system vendor for a
       firmware update that includes the appropriate microcode update for
       your processor.
   * Updated Microcodes:
     sig 0x00090672, pf_mask 0x07, 2024-02-22, rev 0x0036, size 224256
     sig 0x00090675, pf_mask 0x07, 2024-02-22, rev 0x0036
     sig 0x000b06f2, pf_mask 0x07, 2024-02-22, rev 0x0036
     sig 0x000b06f5, pf_mask 0x07, 2024-02-22, rev 0x0036
     sig 0x000906a3, pf_mask 0x80, 2024-02-22, rev 0x0434, size 222208
     sig 0x000906a4, pf_mask 0x80, 2024-02-22, rev 0x0434
     sig 0x000a06a4, pf_mask 0xe6, 2024-06-17, rev 0x001f, size 137216
     sig 0x000b0671, pf_mask 0x32, 2024-07-18, rev 0x0129, size 215040
     sig 0x000b06a2, pf_mask 0xe0, 2024-02-22, rev 0x4122, size 220160
     sig 0x000b06a3, pf_mask 0xe0, 2024-02-22, rev 0x4122
     sig 0x000b06a8, pf_mask 0xe0, 2024-02-22, rev 0x4122
     sig 0x000b06e0, pf_mask 0x19, 2024-03-25, rev 0x001a, size 138240
   * Update changelog for 3.20240813.1 with new information
   * Update changelog for 3.20240514.1 with new information
   * source: update symlinks to reflect id of the latest release, 20240910
intel-microcode (3.20240813.2) unstable; urgency=high
 .
   * Merge changes from intel-microcode/3.20240531.1+nmu1, which were left out
     from 3.20240813.1 by an oversight, regressing merged-usr. Closes: #1060200
intel-microcode (3.20240813.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240813 (closes: #1078742)
     - Mitigations for INTEL-SA-01083 (CVE-2024-24853)
       Incorrect behavior order in transition between executive monitor and SMI
       transfer monitor (STM) in some Intel Processors may allow a privileged
       user to potentially enable escalation of privilege via local access.
     - Mitigations for INTEL-SA-01118 (CVE-2024-25939)
       Mirrored regions with different values in 3rd Generation Intel Xeon
       Scalable Processors may allow a privileged user to potentially enable
       denial of service via local access.
     - Mitigations for INTEL-SA-01100 (CVE-2024-24980)
       Protection mechanism failure in some 3rd, 4th, and 5th Generation Intel
       Xeon Processors may allow a privileged user to potentially enable
       escalation of privilege via local access.
     - Mitigations for INTEL-SA-01038 (CVE-2023-42667)
       Improper isolation in the Intel Core Ultra Processor stream cache
       mechanism may allow an authenticated user to potentially enable
       escalation of privilege via local access.
     - Mitigations for INTEL-SA-01046 (CVE-2023-49141)
       Improper isolation in some Intel® Processors stream cache mechanism may
       allow an authenticated user to potentially enable escalation of
       privilege via local access.
     - Fix for unspecified functional issues on several processor models
   * Updated microcodes:
     sig 0x00050657, pf_mask 0xbf, 2024-03-01, rev 0x5003707, size 39936
     sig 0x0005065b, pf_mask 0xbf, 2024-04-01, rev 0x7002904, size 30720
     sig 0x000606a6, pf_mask 0x87, 2024-04-01, rev 0xd0003e7, size 308224
     sig 0x000606c1, pf_mask 0x10, 2024-04-03, rev 0x10002b0, size 300032
     sig 0x000706e5, pf_mask 0x80, 2024-02-15, rev 0x00c6, size 114688
     sig 0x000806c1, pf_mask 0x80, 2024-02-15, rev 0x00b8, size 112640
     sig 0x000806c2, pf_mask 0xc2, 2024-02-15, rev 0x0038, size 99328
     sig 0x000806d1, pf_mask 0xc2, 2024-02-15, rev 0x0052, size 104448
     sig 0x000806e9, pf_mask 0xc0, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000806e9, pf_mask 0x10, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000806ea, pf_mask 0xc0, 2024-02-01, rev 0x00f6, size 105472
     sig 0x000806eb, pf_mask 0xd0, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000806ec, pf_mask 0x94, 2024-02-05, rev 0x00fc, size 106496
     sig 0x00090661, pf_mask 0x01, 2024-04-05, rev 0x001a, size 20480
     sig 0x000906ea, pf_mask 0x22, 2024-02-01, rev 0x00f8, size 105472
     sig 0x000906eb, pf_mask 0x02, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000906ec, pf_mask 0x22, 2024-02-01, rev 0x00f8, size 106496
     sig 0x000906ed, pf_mask 0x22, 2024-02-05, rev 0x0100, size 106496
     sig 0x000a0652, pf_mask 0x20, 2024-02-01, rev 0x00fc, size 97280
     sig 0x000a0653, pf_mask 0x22, 2024-02-01, rev 0x00fc, size 98304
     sig 0x000a0655, pf_mask 0x22, 2024-02-01, rev 0x00fc, size 97280
     sig 0x000a0660, pf_mask 0x80, 2024-02-01, rev 0x00fe, size 97280
     sig 0x000a0661, pf_mask 0x80, 2024-02-01, rev 0x00fc, size 97280
     sig 0x000a0671, pf_mask 0x02, 2024-03-07, rev 0x0062, size 108544
     sig 0x000a06a4, pf_mask 0xe6, 2024-04-15, rev 0x001e, size 137216
   * source: update symlinks to reflect id of the latest release, 20240813
   * postinst, postrm: switch to dpkg-trigger to run update-initramfs

ipmitool (1.8.19-4+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * d/control: Remove obsolete lsb-base from Depends
   * d/patches: backport several important fixes from upstream
     + fix a buffer overrun in `open` interface
     + fix lan print fails on unsupported parameters (closes: #1061770)
     + fix parameter passed to read temperature sensors
     + fix using hex values when sending raw data (closes: #1082101)

iputils (3:20221126-1+deb12u1) bookworm; urgency=medium
 .
   * Import upstream fix for incorrect ping receiving packets intended for other
     processes (Closes: #1040313)

kexec-tools (1:2.0.25-3+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Add a systemd mask to kexec.service, to prevent the init script from
     handling kexec process on a systemd enabled system. (Closes: #1028416)

lemonldap-ng (2.16.1+ds-deb12u3) bookworm; urgency=medium
 .
   * Fix XSS issue (Closes: #1084979, CVE-2024-48933)

lgogdownloader (3.9-2+deb12u1) bookworm; urgency=medium
 .
   * Apply upstream fixes for parsing Galaxy URLs. Closes: #1085527.

libgsf (1.14.50-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * OLE2: Fix allocation problems (CVE-2024-42415, CVE-2024-36474)
     (Closes: #1084056)

libheif (1.15.1-1+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2024-41311
   * CVE-2023-49462 (Closes: #1059151)
   * CVE-2023-29659 (Closes: #1035607)

libreoffice (4:7.4.7-1+deb12u5) bookworm-security; urgency=medium
 .
   * debian/patches/debian/patches/do-not-trust-any-signature-on-repaired-package.diff:
     as name says (CVE-2024-7788)

libskk (1.0.5-2+deb12u1) bookworm; urgency=medium
 .
   * debian/patches/a2936e865fcc00e6e0c0bfc6c1d62db19e49fe74.patch:
     Cherry-pick upstream patch to fix invalid escape in json file that
     triggered crash. (Closes: #1081915)

libvirt (9.0.0-4+deb12u2) bookworm; urgency=medium
 .
   * [275099d] patches: Add backports
     - backport/apparmor-Allow-running-i686-VMs-on-Debian-12.patch
       - Closes: #1030926
     - backport/qemu_process-Skip-over-non-virtio-non-TAP-NIC-[...]
       - Prevents certain guests from becoming unbootable or
         disappearing during upgrade

linux (6.1.115-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.113
     - wifi: rtw88: always wait for both firmware loading attempts
       (CVE-2024-47718)
     - crypto: xor - fix template benchmarking
     - ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe()
     - wifi: ath9k: fix parameter check in ath9k_init_debug()
     - wifi: ath9k: Remove error checks when creating debugfs entries
     - wifi: rtw88: remove CPT execution branch never used
     - fs/namespace: fnic: Switch to use %ptTd
     - mount: handle OOM on mnt_warn_timestamp_expiry
     - drivers/perf: Fix ali_drw_pmu driver interrupt status clearing
       (CVE-2024-47731)
     - wifi: mac80211: don't use rate mask for offchannel TX either
       (CVE-2024-47738)
     - wifi: iwlwifi: mvm: increase the time between ranging measurements
     - ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE
     - ACPICA: executer/exsystem: Don't nag user about every Stall() violating
       the spec
     - padata: Honor the caller's alignment in case of chunk_size 0
     - drivers/perf: hisi_pcie: Record hardware counts correctly
     - can: j1939: use correct function name in comment
     - ACPI: CPPC: Fix MASK_VAL() usage
     - netfilter: nf_tables: elements with timeout below CONFIG_HZ never expire
     - netfilter: nf_tables: reject element expiration with no timeout
     - netfilter: nf_tables: reject expiration higher than timeout
     - netfilter: nf_tables: remove annotation to access set timeout while
       holding lock
     - [arm64] perf/arm-cmn: Rework DTC counters (again)
     - [arm64] perf/arm-cmn: Improve debugfs pretty-printing for large configs
     - [arm64] perf/arm-cmn: Refactor node ID handling. Again.
     - [arm64] perf/arm-cmn: Ensure dtm_idx is big enough
     - cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately
     - [x86] sgx: Fix deadlock in SGX NUMA node search (CVE-2024-49856)
     - crypto: hisilicon/hpre - enable sva error interrupt event
     - crypto: hisilicon/hpre - mask cluster timeout error
     - crypto: hisilicon/qm - fix coding style issues
     - crypto: hisilicon/qm - reset device before enabling it
     - crypto: hisilicon/qm - inject error before stopping queue (CVE-2024-47730)
     - wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan()
     - wifi: mt76: mt7915: fix rx filter setting for bfee functionality
     - wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors
     - wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()
       (CVE-2024-47713)
     - wifi: wilc1000: fix potential RCU dereference issue in
       wilc_parse_join_bss_param (CVE-2024-47712)
     - Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED
     - Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL
     - sock_map: Add a cond_resched() in sock_hash_free()
     - can: bcm: Clear bo->bcm_proc_read after remove_proc_entry().
       (CVE-2024-47709)
     - can: m_can: Remove repeated check for is_peripheral
     - can: m_can: enable NAPI before enabling interrupts
     - can: m_can: m_can_close(): stop clocks after device has been shut down
     - Bluetooth: btusb: Fix not handling ZPL/short-transfer
     - bareudp: Pull inner IP header in bareudp_udp_encap_recv().
     - bareudp: Pull inner IP header on xmit.
     - net: enetc: Use IRQF_NO_AUTOEN flag in request_irq()
     - r8169: disable ALDPS per default for RTL8125
     - net: ipv6: rpl_iptunnel: Fix memory leak in rpl_input
     - net: tipc: avoid possible garbage value
     - ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()
       (CVE-2024-47707)
     - nbd: fix race between timeout and normal completion (CVE-2024-49855)
     - block, bfq: fix possible UAF for bfqq->bic with merge chain
       (CVE-2024-47706)
     - block, bfq: choose the last bfqq from merge chain in
       bfq_setup_cooperator()
     - block, bfq: don't break merge chain in bfq_split_bfqq()
     - block: print symbolic error name instead of error code
     - block: fix potential invalid pointer dereference in blk_add_partition
       (CVE-2024-47705)
     - spi: ppc4xx: handle irq_of_parse_and_map() errors
     - [arm64] dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB
     - firmware: arm_scmi: Fix double free in OPTEE transport (CVE-2024-49853)
     - spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ
     - regulator: Return actual error in of_regulator_bulk_get_all()
     - [arm64] dts: renesas: r9a07g043u: Correct GICD and GICR sizes
     - [arm64] dts: renesas: r9a07g054: Correct GICD and GICR sizes
     - [arm64] dts: renesas: r9a07g044: Correct GICD and GICR sizes
     - [arm64] dts: ti: k3-j721e-sk: Fix reversed C6x carveout locations
     - reset: berlin: fix OF node leak in probe() error path
     - reset: k210: fix OF node leak in probe() error path
     - clocksource/drivers/qcom: Add missing iounmap() on errors in
       msm_dt_timer_init()
     - ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error
     - ALSA: hda: cs35l41: fix module autoloading
     - hwmon: (max16065) Fix overflows seen when writing limits
     - i2c: Add i2c_get_match_data()
     - hwmon: (max16065) Remove use of i2c_match_id()
     - hwmon: (max16065) Fix alarm attributes
     - mtd: slram: insert break after errors in parsing the map
     - hwmon: (ntc_thermistor) fix module autoloading
     - power: supply: axp20x_battery: Remove design from min and max voltage
     - power: supply: max17042_battery: Fix SOC threshold calc w/ no current
       sense
     - fbdev: hpfb: Fix an error handling path in hpfb_dio_probe()
     - [amd64] iommu/amd: Do not set the D bit on AMD v2 table entries
     - mtd: powernv: Add check devm_kasprintf() returned value
     - rcu/nocb: Fix RT throttling hrtimer armed from offline CPU
     - mtd: rawnand: mtk: Use for_each_child_of_node_scoped()
     - mtd: rawnand: mtk: Factorize out the logic cleaning mtk chips
     - mtd: rawnand: mtk: Fix init error path
     - pmdomain: core: Harden inter-column space in debug summary
     - drm/stm: Fix an error handling path in stm_drm_platform_probe()
     - drm/stm: ltdc: check memory returned by devm_kzalloc()
     - drm/amd/display: Add null check for set_output_gamma in
       dcn30_set_output_transfer_func (CVE-2024-47720)
     - drm/amdgpu: Replace one-element array with flexible-array member
     - drm/amdgpu: properly handle vbios fake edid sizing
     - drm/radeon: Replace one-element array with flexible-array member
     - drm/radeon: properly handle vbios fake edid sizing
     - scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly
     - scsi: NCR5380: Check for phase match during PDMA fixup
     - drm/amd/amdgpu: Properly tune the size of struct
     - drm/rockchip: vop: Allow 4096px width scaling
     - drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode
     - drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets
     - drm/bridge: lontium-lt8912b: Validate mode in
       drm_bridge_funcs::mode_valid()
     - drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get
     - scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()
       (CVE-2024-49852)
     - jfs: fix out-of-bounds in dbNextAG() and diAlloc()
     - drm/mediatek: Fix missing configuration flags in mtk_crtc_ddp_config()
     - drm/mediatek: Use spin_lock_irqsave() for CRTC event lock
     - [powerpc*] 8xx: Fix initial memory mapping
     - [powerpc*] 8xx: Fix kernel vs user address comparison
     - drm/msm: Fix incorrect file name output in adreno_request_fw()
     - drm/msm/a5xx: disable preemption in submits by default
     - drm/msm/a5xx: properly clear preemption records on resume
     - drm/msm/a5xx: fix races in preemption evaluation stage
     - drm/msm/a5xx: workaround early ring-buffer emptiness check
     - ipmi: docs: don't advertise deprecated sysfs entries
     - drm/msm: fix %s null argument error
     - drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind()
     - xen: use correct end address of kernel for conflict checking
     - HID: wacom: Support sequence numbers smaller than 16-bit
     - HID: wacom: Do not warn about dropped packets for first packet
     - xen/swiotlb: add alignment check for dma buffers
     - xen/swiotlb: fix allocated size
     - tpm: Clean up TPM space after command failure (CVE-2024-49851)
     - bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos
       (CVE-2024-49850)
     - xz: cleanup CRC32 edits from 2018
     - kthread: fix task state in kthread worker if being frozen
     - ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard
     - smackfs: Use rcu_assign_pointer() to ensure safe assignment in
       smk_set_cipso
     - ext4: avoid buffer_head leak in ext4_mark_inode_used()
     - ext4: avoid potential buffer_head leak in __ext4_new_inode()
     - ext4: avoid negative min_clusters in find_group_orlov()
     - ext4: return error on ext4_find_inline_entry
     - ext4: avoid OOB when system.data xattr changes underneath the filesystem
       (CVE-2024-47701)
     - nilfs2: fix potential null-ptr-deref in nilfs_btree_insert()
       (CVE-2024-47699)
     - nilfs2: determine empty node blocks as corrupted
     - nilfs2: fix potential oob read in nilfs_btree_check_delete()
       (CVE-2024-47757)
     - bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit
     - bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types
     - bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error
       (CVE-2024-47728)
     - perf mem: Free the allocated sort string, fixing a leak
     - perf inject: Fix leader sampling inserting additional samples
     - perf sched timehist: Fix missing free of session in perf_sched__timehist()
     - perf stat: Display iostat headers correctly
     - perf sched timehist: Fixed timestamp error when unable to confirm event
       sched_in time
     - perf time-utils: Fix 32-bit nsec parsing
     - clk: imx: composite-8m: Less function calls in __imx8m_clk_hw_composite()
       after error detection
     - clk: imx: composite-8m: Enable gate clk with mcore_booted
     - clk: imx: composite-7ulp: Check the PCC present bit
     - clk: imx: fracn-gppll: support integer pll
     - clk: imx: fracn-gppll: fix fractional part of PLL getting lost
     - clk: imx: imx8mp: fix clock tree update of TF-A managed clocks
     - clk: imx: imx8qxp: Register dc0_bypass0_clk before disp clk
     - clk: imx: imx8qxp: Parent should be initialized earlier than the clock
     - remoteproc: imx_rproc: Correct ddr alias for i.MX8M
     - remoteproc: imx_rproc: Initialize workqueue earlier
     - clk: rockchip: Set parent rate for DCLK_VOP clock on RK3228
     - Input: ilitek_ts_i2c - avoid wrong input subsystem sync
     - Input: ilitek_ts_i2c - add report id message validation
     - drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error
       (CVE-2024-47698)
     - drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error
       (CVE-2024-47697)
     - PCI/PM: Increase wait time after resume
     - PCI/PM: Drop pci_bridge_wait_for_secondary_bus() timeout parameter
     - PCI: Wait for Link before restoring Downstream Buses
     - PCI: keystone: Fix if-statement expression in ks_pcie_quirk()
       (CVE-2024-47756)
     - clk: qcom: dispcc-sm8250: use special function for Lucid 5LPE PLL
     - nvdimm: Fix devs leaks in scan_labels()
     - PCI: xilinx-nwl: Fix register misspelling
     - PCI: xilinx-nwl: Clean up clock on probe failure/removal
     - RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency
       (CVE-2024-47696)
     - pinctrl: single: fix missing error code in pcs_probe()
     - RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer
     - RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (CVE-2024-47695)
     - clk: ti: dra7-atl: Fix leak of of_nodes
     - nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire
     - nfsd: fix refcount leak when file is unhashed after being found
     - pinctrl: mvebu: Use devm_platform_get_and_ioremap_resource()
     - pinctrl: mvebu: Fix devinit_dove_pinctrl_probe function
     - IB/core: Fix ib_cache_setup_one error flow cleanup (CVE-2024-47693)
     - PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port()
       (CVE-2024-47751)
     - RDMA/erdma: Return QP state in erdma_query_qp
     - watchdog: imx_sc_wdt: Don't disable WDT in suspend
     - [arm64] RDMA/hns: Don't modify rq next block addr in HIP09 QPC
     - [arm64] RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (CVE-2024-47750)
     - [arm64] RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range()
     - [arm64] RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled
     - [arm64] RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler
     - [arm64] RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS
     - [arm64] RDMA/hns: Optimize hem allocation performance
     - RDMA/cxgb4: Added NULL check for lookup_atid (CVE-2024-47749)
     - RDMA/irdma: fix error message in irdma_modify_qp_roce()
     - ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir()
     - ntb_perf: Fix printk format
     - ntb: Force physically contiguous allocation of rx ring buffers
     - nfsd: call cache_put if xdr_reserve_space returns NULL (CVE-2024-47737)
     - nfsd: return -EINVAL when namelen is 0 (CVE-2024-47692)
     - f2fs: fix to update i_ctime in __f2fs_setxattr()
     - f2fs: remove unneeded check condition in __f2fs_setxattr()
     - f2fs: reduce expensive checkpoint trigger frequency
     - f2fs: factor the read/write tracing logic into a helper
     - f2fs: fix to avoid racing in between read and OPU dio write
     - f2fs: fix to wait page writeback before setting gcing flag
     - f2fs: atomic: fix to truncate pagecache before on-disk metadata truncation
     - f2fs: clean up w/ dotdot_name
     - f2fs: get rid of online repaire on corrupted directory (CVE-2024-47690)
     - spi: atmel-quadspi: Undo runtime PM changes at driver exit time
     - spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time
     - lib/sbitmap: define swap_lock as raw_spinlock_t
     - nvme-multipath: system fails to create generic nvme device
     - iio: adc: ad7606: fix oversampling gpio array
     - iio: adc: ad7606: fix standby gpio state to match the documentation
     - ABI: testing: fix admv8818 attr description
     - iio: chemical: bme680: Fix read/write ops to device by adding mutexes
     - iio: magnetometer: ak8975: Convert enum->pointer for data in the match
       tables
     - iio: magnetometer: ak8975: drop incorrect AK09116 compatible
     - dt-bindings: iio: asahi-kasei,ak8975: drop incorrect AK09116 compatible
     - coresight: tmc: sg: Do not leak sg_table
     - cxl/pci: Break out range register decoding from cxl_hdm_decode_init()
     - cxl/pci: Fix to record only non-zero ranges
     - vdpa: Add eventfd for the vdpa callback
     - vhost_vdpa: assign irq bypass producer token correctly (CVE-2024-47748)
     - ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (CVE-2024-47686)
     - Revert "dm: requeue IO if mapping table not yet available"
     - net: xilinx: axienet: Schedule NAPI in two steps
     - net: xilinx: axienet: Fix packet counting
     - netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (CVE-2024-47685)
     - net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race
       Condition (CVE-2024-47747)
     - net: ipv6: select DST_CACHE from IPV6_RPL_LWTUNNEL
     - tcp: check skb is non-NULL in tcp_rto_delta_us() (CVE-2024-47684)
     - net: qrtr: Update packets cloning when broadcasting
     - bonding: Fix unnecessary warnings and logs from bond_xdp_get_xmit_slave()
       (CVE-2024-47734)
     - net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled
     - netfilter: nf_tables: Keep deleted flowtable hooks until after RCU
     - netfilter: ctnetlink: compile ctnetlink_label_size with
       CONFIG_NF_CONNTRACK_EVENTS
     - io_uring/sqpoll: do not allow pinning outside of cpuset
     - drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination
     - io_uring/io-wq: do not allow pinning outside of cpuset
     - io_uring/io-wq: inherit cpuset of cgroup in io worker
     - vfio/pci: fix potential memory leak in vfio_intx_enable() (CVE-2024-38632)
     - selinux,smack: don't bypass permissions check in inode_setsecctx hook
       (CVE-2024-46695)
     - drm/vmwgfx: Prevent unmapping active read buffers (CVE-2024-46710)
     - io_uring/sqpoll: retain test for whether the CPU is valid
     - io_uring/sqpoll: do not put cpumask on stack
     - Remove *.orig pattern from .gitignore
     - PCI: imx6: Fix missing call to phy_power_off() in error handling
     - PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler
     - ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error
     - soc: versatile: integrator: fix OF node leak in probe() error path
     - Revert "media: tuners: fix error return code of
       hybrid_tuner_request_state()"
     - Input: adp5588-keys - fix check on return code
     - Input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table
     - Input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table
     - Input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line
     - [x86] KVM: x86: Enforce x2APIC's must-be-zero reserved ICR bits
     - [x86] KVM: x86: Move x2APIC ICR helper above kvm_apic_write_nodecode()
     - drm/amd/display: Skip Recompute DSC Params if no Stream on Link
       (CVE-2024-47683)
     - drm/amd/display: Round calculated vtotal
     - drm/amd/display: Validate backlight caps are sane
     - KEYS: prevent NULL pointer dereference in find_asymmetric_key()
       (CVE-2024-47743)
     - fs: Create a generic is_dot_dotdot() utility
     - ksmbd: make __dir_empty() compatible with POSIX
     - ksmbd: allow write with FILE_APPEND_DATA
     - ksmbd: handle caseless file creation
     - scsi: sd: Fix off-by-one error in sd_read_block_characteristics()
       (CVE-2024-47682)
     - scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages
     - scsi: mac_scsi: Refactor polling loop
     - scsi: mac_scsi: Disallow bus errors during PDMA send
     - usbnet: fix cyclical race on disconnect with work queue
     - [arm64] dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled
     - USB: appledisplay: close race between probe and completion handler
     - USB: misc: cypress_cy7c63: check for short transfer
     - USB: class: CDC-ACM: fix race between get_serial and set_serial
     - usb: cdnsp: Fix incorrect usb_request status
     - usb: dwc2: drd: fix clock gating on USB role switch
     - bus: integrator-lm: fix OF node leak in probe()
     - bus: mhi: host: pci_generic: Fix the name for the Telit FE990A
     - firmware_loader: Block path traversal (CVE-2024-47742)
     - tty: rp2: Fix reset with non forgiving PCIe host bridges
     - xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them.
     - crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure
     - drbd: Fix atomicity violation in drbd_uuid_set_bm()
     - drbd: Add NULL check for net_conf to prevent dereference in state
       validation
     - ACPI: sysfs: validate return type of _STR method (CVE-2024-49860)
     - ACPI: resource: Add another DMI match for the TongFang GMxXGxx
     - efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption
       (CVE-2024-49858)
     - perf/x86/intel/pt: Fix sampling synchronization
     - wifi: rtw88: 8822c: Fix reported RX band width
     - wifi: mt76: mt7615: check devm_kasprintf() returned value
     - debugobjects: Fix conditions in fill_pool()
     - f2fs: fix several potential integer overflows in file offsets
     - f2fs: prevent possible int overflow in dir_block_index()
     - f2fs: avoid potential int overflow in sanity_check_area_boundary()
     - f2fs: fix to check atomic_file in f2fs ioctl interfaces (CVE-2024-49859)
     - hwrng: mtk - Use devm_pm_runtime_enable
     - hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init
     - hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume
     - [arm64] dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency
     - [arm64] dts: rockchip: Correct the Pinebook Pro battery design capacity
     - vfs: fix race between evice_inodes() and find_inode()&iput()
     - fs: Fix file_set_fowner LSM hook inconsistencies
     - nfs: fix memory leak in error path of nfs4_do_reclaim
     - EDAC/igen6: Fix conversion of system address to physical memory address
     - padata: use integer wrap around to prevent deadlock on seq_nr overflow
       (CVE-2024-47739)
     - soc: versatile: realview: fix memory leak during device remove
     - soc: versatile: realview: fix soc_dev leak during device remove
     - [powerpc*] 64: Option to build big-endian with ELFv2 ABI
     - [powerpc*] 64: Add support to build with prefixed instructions
     - [powerpc*] atomic: Use YZ constraints for DS-form instructions
     - usb: yurex: Replace snprintf() with the safer scnprintf() variant
     - USB: misc: yurex: fix race between read and write
     - xhci: fix event ring segment table related masks and variables in header
     - xhci: remove xhci_test_trb_in_td_math early development check
     - xhci: Refactor interrupter code for initial multi interrupter support.
     - xhci: Preserve RsvdP bits in ERSTBA register correctly
     - xhci: Add a quirk for writing ERST in high-low order
     - usb: xhci: fix loss of data on Cadence xHC
     - pps: remove usage of the deprecated ida_simple_xx() API
     - pps: add an error check in parport_attach
     - [x86] idtentry: Incorporate definitions/declarations of the FRED entries
     - [x86] entry: Remove unwanted instrumentation in common_interrupt()
     - mm/filemap: return early if failed to allocate memory for split
     - lib/xarray: introduce a new helper xas_get_order
     - mm/filemap: optimize filemap folio adding
     - icmp: Add counters for rate limits
     - icmp: change the order of rate limits (CVE-2024-47678)
     - bpf: lsm: Set bpf_lsm_blob_sizes.lbs_task to 0
     - lockdep: fix deadlock issue between lockdep and rcu
     - mm: only enforce minimum stack gap size if it's sensible
     - module: Fix KCOV-ignored file name
     - mm/damon/vaddr: protect vma traversal in __damon_va_thre_regions() with
       rcu read lock
     - i2c: aspeed: Update the stop sw state when the bus recovery occurs
     - i2c: isch: Add missed 'else'
     - usb: yurex: Fix inconsistent locking bug in yurex_read()
     - perf/arm-cmn: Fail DTC counter allocation correctly
     - iio: magnetometer: ak8975: Fix 'Unexpected device' error
     - [powerpc*] Allow CONFIG_PPC64_BIG_ENDIAN_ELF_ABI_V2 with ld.lld 15+
     - PCI/PM: Mark devices disconnected if upstream PCIe link is down on resume
     - [x86*] tdx: Fix "in-kernel MMIO" check (CVE-2024-47727)
     - static_call: Handle module init failure correctly in
       static_call_del_module() (CVE-2024-50002)
     - static_call: Replace pointless WARN_ON() in static_call_module_notify()
     - jump_label: Simplify and clarify static_key_fast_inc_cpus_locked()
     - jump_label: Fix static_key_slow_dec() yet again
     - scsi: pm8001: Do not overwrite PCI queue mapping
     - mailbox: rockchip: fix a typo in module autoloading
     - mailbox: bcm2835: Fix timeout during suspend mode (CVE-2024-49963)
     - ceph: remove the incorrect Fw reference check when dirtying pages
     - ieee802154: Fix build error
     - net: sparx5: Fix invalid timestamps
     - net/mlx5: Fix error path in multi-packet WQE transmit (CVE-2024-50001)
     - net/mlx5: Added cond_resched() to crdump collection
     - net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (CVE-2024-50000)
     - netfilter: uapi: NFTA_FLOWTABLE_HOOK is NLA_NESTED
     - net: ieee802154: mcr20a: Use IRQF_NO_AUTOEN flag in request_irq()
     - net: wwan: qcom_bam_dmux: Fix missing pm_runtime_disable()
     - netfilter: nf_tables: prevent nf_skb_duplicated corruption
       (CVE-2024-49952)
     - Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq()
     - net: ethernet: lantiq_etop: fix memory disclosure (CVE-2024-49997)
     - net: avoid potential underflow in qdisc_pkt_len_init() with UFO
     - net: add more sanity checks to qdisc_pkt_len_init() (CVE-2024-49948)
     - net: stmmac: dwmac4: extend timeout for VLAN Tag register busy bit check
     - ipv4: ip_gre: Fix drops of small packets in ipgre_xmit
     - ppp: do not assume bh is held in ppp_channel_bridge_input()
       (CVE-2024-49946)
     - fsdax,xfs: port unshare to fsdax
     - iomap: constrain the file range passed to iomap_file_unshare
     - sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start
       (CVE-2024-49944)
     - i2c: xiic: improve error message when transfer fails to start
     - i2c: xiic: Try re-initialization on bus busy timeout
     - loop: don't set QUEUE_FLAG_NOMERGES
     - Bluetooth: hci_sock: Fix not validating setsockopt user input
       (CVE-2024-35963)
     - media: usbtv: Remove useless locks in usbtv_video_free() (CVE-2024-27072)
     - ASoC: atmel: mchp-pdmc: Skip ALSA restoration if substream runtime is
       uninitialized
     - ALSA: mixer_oss: Remove some incorrect kfree_const() usages
     - ALSA: hda/realtek: Fix the push button function for the ALC257
     - ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs
     - ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m
     - ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin
     - f2fs: Require FMODE_WRITE for atomic write ioctls (CVE-2024-47740)
     - wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats()
     - wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit
     - ice: Adjust over allocation of memory in ice_sched_add_root_node() and
       ice_sched_add_node()
     - wifi: iwlwifi: mvm: Fix a race in scan abort flow
     - wifi: cfg80211: Set correct chandef when starting CAC (CVE-2024-49937)
     - net/xen-netback: prevent UAF in xenvif_flush_hash() (CVE-2024-49936)
     - net: hisilicon: hip04: fix OF node leak in probe()
     - net: hisilicon: hns_dsaf_mac: fix OF node leak in hns_mac_get_info()
     - net: hisilicon: hns_mdio: fix OF node leak in probe()
     - ACPI: PAD: fix crash in exit_round_robin() (CVE-2024-49935)
     - ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails
     - ACPICA: Fix memory leak if acpi_ps_get_next_field() fails
     - wifi: mt76: mt7915: disable tx worker during tx BA session enable/disable
     - net: sched: consistently use rcu_replace_pointer() in taprio_change()
     - Bluetooth: btusb: Add Realtek RTL8852C support ID 0x0489:0xe122
     - ACPI: video: Add force_vendor quirk for Panasonic Toughbook CF-18
     - blk_iocost: fix more out of bound shifts (CVE-2024-49933)
     - nvme-pci: qdepth 1 quirk
     - wifi: ath11k: fix array out-of-bound access in SoC stats (CVE-2024-49930)
     - wifi: rtw88: select WANT_DEV_COREDUMP
     - ACPI: EC: Do not release locks during operation region accesses
     - ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in
       acpi_db_convert_to_package()
     - tipc: guard against string buffer overrun (CVE-2024-49995)
     - net: mvpp2: Increase size of queue_name buffer
     - bnxt_en: Extend maximum length of version string by 1 byte
     - ipv4: Check !in_dev earlier for ioctl(SIOCSIFADDR).
     - wifi: rtw89: correct base HT rate mask for firmware
     - ipv4: Mask upper DSCP bits and ECN bits in NETLINK_FIB_LOOKUP family
     - net: atlantic: Avoid warning about potential string truncation
     - crypto: simd - Do not call crypto_alloc_tfm during registration
     - tcp: avoid reusing FIN_WAIT2 when trying to find port in connect() process
     - wifi: mac80211: fix RCU list iterations
     - ACPICA: iasl: handle empty connection_node
     - proc: add config & param to block forcing mem writes
     - wifi: mt76: mt7915: hold dev->mt76.mutex while disabling tx worker
     - wifi: mwifiex: Fix memcpy() field-spanning write warning in
       mwifiex_cmd_802_11_scan_ext()
     - nfp: Use IRQF_NO_AUTOEN flag in request_irq()
     - ALSA: usb-audio: Add input value sanity checks for standard types
     - [x86] ioapic: Handle allocation failures gracefully (CVE-2024-49927)
     - ALSA: usb-audio: Define macros for quirk table entries
     - ALSA: usb-audio: Replace complex quirk lines with macros
     - ALSA: usb-audio: Add logitech Audio profile quirk
     - ASoC: codecs: wsa883x: Handle reading version failure
     - [x86] kexec: Add EFI config table identity mapping for kexec kernel
     - ALSA: asihpi: Fix potential OOB array access (CVE-2024-50007)
     - ALSA: hdsp: Break infinite MIDI input flush loop
     - [x86] syscall: Avoid memcpy() for ia32 syscall_get_arguments()
     - fbdev: pxafb: Fix possible use after free in pxafb_task() (CVE-2024-49924)
     - rcuscale: Provide clear error when async specified without primitives
     - [arm64] iommu/arm-smmu-qcom: hide last LPASS SMMU context bank from linux
     - power: reset: brcmstb: Do not go into infinite loop if reset fails
     - [amd64] iommu/vt-d: Always reserve a domain ID for identity setup
     - [amd64] iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0
       count (CVE-2024-49993)
     - drm/stm: Avoid use-after-free issues with crtc and plane (CVE-2024-49992)
     - drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit
     - drm/amd/display: Add null check for top_pipe_to_program in
       commit_planes_for_stream (CVE-2024-49913)
     - ata: pata_serverworks: Do not use the term blacklist
     - ata: sata_sil: Rename sil_blacklist to sil_quirks
     - drm/amd/display: Handle null 'stream_status' in
       'planes_changed_for_existing_stream' (CVE-2024-49912)
     - drm/amd/display: Check null pointers before using dc->clk_mgr
       (CVE-2024-49907)
     - drm/amd/display: Add null check for 'afb' in
       amdgpu_dm_plane_handle_cursor_update (v2)
     - jfs: UBSAN: shift-out-of-bounds in dbFindBits
     - jfs: Fix uaf in dbFreeBits (CVE-2024-49903)
     - jfs: check if leafidx greater than num leaves per dmap tree
       (CVE-2024-49902)
     - scsi: smartpqi: correct stream detection
     - jfs: Fix uninit-value access of new_ea in ea_buffer (CVE-2024-49900)
     - drm/amdgpu: add raven1 gfxoff quirk
     - drm/amdgpu: enable gfxoff quirk on HP 705G4
     - HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio
     - [x86] platform/x86: touchscreen_dmi: add nanote-next quirk
     - drm/stm: ltdc: reset plane transparency after plane disable
     - drm/amd/display: Check stream before comparing them (CVE-2024-49896)
     - drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format
       translation (CVE-2024-49895)
     - drm/amd/display: Fix index out of bounds in degamma hardware format
       translation (CVE-2024-49894)
     - drm/amd/display: Fix index out of bounds in DCN30 color transformation
       (CVE-2024-49969)
     - drm/amd/display: Initialize get_bytes_per_element's default to 1
       (CVE-2024-49892)
     - drm/printer: Allow NULL data in devcoredump printer
     - [x86] perf,x86: avoid missing caller address in stack traces captured in
       uprobe
     - scsi: aacraid: Rearrange order of struct aac_srb_unit
     - scsi: lpfc: Update PRLO handling in direct attached topology
     - drm/amdgpu: fix unchecked return value warning for amdgpu_gfx
     - scsi: NCR5380: Initialize buffer for MSG IN and STATUS transfers
     - drm/radeon/r100: Handle unknown family in r100_cp_init_microcode()
     - drm/amd/pm: ensure the fw_info is not null before using it
       (CVE-2024-49890)
     - of/irq: Refer to actual buffer size in of_irq_parse_one()
     - [powerpc*] pseries: Use correct data types from pseries_hp_errorlog struct
     - ext4: ext4_search_dir should return a proper error
     - ext4: avoid use-after-free in ext4_ext_show_leaf() (CVE-2024-49889)
     - ext4: fix i_data_sem unlock order in ext4_ind_migrate() (CVE-2024-50006)
     - iomap: handle a post-direct I/O invalidate race in
       iomap_write_delalloc_release
     - blk-integrity: use sysfs_emit
     - blk-integrity: convert to struct device_attribute
     - blk-integrity: register sysfs attributes on struct device
     - spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled
     - spi: s3c64xx: fix timeout counters in flush_fifo
     - [powerpc*] vdso: Fix VDSO data access when running in a non-root time
       namespace
     - Revert "ALSA: hda: Conditionally use snooping for AMD HDMI"
       (Closes: #1081833)
     - [x86] platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug
       (CVE-2024-49886)
     - i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume
       (CVE-2024-49985)
     - i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq()
     - i2c: xiic: Wait for TX empty to avoid missed TX NAKs
     - media: i2c: ar0521: Use cansleep version of gpiod_set_value()
       (CVE-2024-49961)
     - firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp()
     - spi: bcm63xx: Fix module autoloading
     - power: supply: hwmon: Fix missing temp1_max_alarm attribute
     - perf/core: Fix small negative period being ignored
     - drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS
     - ALSA: core: add isascii() check to card ID generator
     - ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET
     - ALSA: usb-audio: Add native DSD support for Luxman D-08u
     - ALSA: line6: add hw monitor volume control to POD HD500X
     - ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9
     - ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200
     - ext4: no need to continue when the number of entries is 1 (CVE-2024-49967)
     - ext4: correct encrypted dentry name hash when not casefolded
     - ext4: fix slab-use-after-free in ext4_split_extent_at() (CVE-2024-49884)
     - ext4: propagate errors from ext4_find_extent() in ext4_insert_range()
     - ext4: fix incorrect tid assumption in ext4_fc_mark_ineligible()
     - ext4: dax: fix overflowing extents beyond inode size when partially
       writing (CVE-2024-50015)
     - ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space()
     - ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free
     - ext4: aovid use-after-free in ext4_ext_insert_extent() (CVE-2024-49883)
     - ext4: fix double brelse() the buffer of the extents path
     - ext4: update orig_path in ext4_find_extent() (CVE-2024-49881)
     - ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit()
     - ext4: fix incorrect tid assumption in
       jbd2_journal_shrink_checkpoint_list()
     - ext4: fix fast commit inode enqueueing during a full journal commit
     - ext4: use handle to mark fc as ineligible in __track_dentry_update()
     - ext4: mark fc as ineligible using an handle in ext4_xattr_set()
     - drm/rockchip: vop: clear DMA stop bit on RK3066
     - of/irq: Support #msi-cells=<0> in of_msi_get_domain
     - drm: omapdrm: Add missing check for alloc_ordered_workqueue
       (CVE-2024-49879)
     - resource: fix region_intersects() vs add_memory_driver_managed()
     - jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns
       error
     - jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit
     - mm: krealloc: consider spare memory for __GFP_ZERO
     - ocfs2: fix the la space leak when unmounting an ocfs2 volume
     - ocfs2: fix uninit-value in ocfs2_get_block()
     - ocfs2: reserve space for inline xattr before attaching reflink tree
       (CVE-2024-49958)
     - ocfs2: cancel dqi_sync_work before freeing oinfo (CVE-2024-49966)
     - ocfs2: remove unreasonable unlock in ocfs2_read_blocks (CVE-2024-49965)
     - ocfs2: fix null-ptr-deref when journal load failed. (CVE-2024-49957)
     - ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate
       (CVE-2024-49877)
     - exfat: fix memory leak in exfat_load_bitmap() (CVE-2024-50013)
     - perf hist: Update hist symbol when updating maps
     - nfsd: fix delegation_blocked() to block correctly for at least 30 seconds
     - nfsd: map the EBADMSG to nfserr_io to avoid warning (CVE-2024-49875)
     - NFSD: Fix NFSv4's PUTPUBFH operation
     - aoe: fix the potential use-after-free problem in more places
       (CVE-2024-49982)
     - clk: rockchip: fix error for unknown clocks
     - remoteproc: k3-r5: Fix error handling when power-up failed
     - clk: qcom: dispcc-sm8250: use CLK_SET_RATE_PARENT for branch clocks
     - media: sun4i_csi: Implement link validate for sun4i_csi subdev
     - clk: qcom: gcc-sm8450: Do not turn off PCIe GDSCs during gdsc_disable()
     - media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags
     - clk: qcom: clk-rpmh: Fix overflow in BCM vote
     - clk: qcom: gcc-sm8150: De-register gcc_cpuss_ahb_clk_src
     - media: venus: fix use after free bug in venus_remove due to race condition
       (CVE-2024-49981)
     - clk: qcom: gcc-sm8250: Do not turn off PCIe GDSCs during gdsc_disable()
     - media: qcom: camss: Fix ordering of pm_runtime_enable
     - clk: qcom: gcc-sc8180x: Fix the sdcc2 and sdcc4 clocks freq table
     - clk: qcom: clk-alpha-pll: Fix CAL_L_VAL override for LUCID EVO PLL
     - smb: client: use actual path when queryfs
     - iio: magnetometer: ak8975: Fix reading for ak099xx sensors
     - gso: fix udp gso fraglist segmentation after pull from frag_list
       (CVE-2024-49978)
     - tomoyo: fallback to realpath if symlink's pathname does not exist
       (Closes: #1082001)
     - net: stmmac: Fix zero-division error when disabling tc cbs
       (CVE-2024-49977)
     - rtc: at91sam9: fix OF node leak in probe() error path
     - Input: adp5589-keys - fix NULL pointer dereference (CVE-2024-49871)
     - Input: adp5589-keys - fix adp5589_gpio_get_value()
     - cachefiles: fix dentry leak in cachefiles_open_file() (CVE-2024-49870)
     - ACPI: resource: Add Asus Vivobook X1704VAP to
       irq1_level_low_skip_override[] (Closes: #1078696)
     - ACPI: resource: Add Asus ExpertBook B2502CVA to
       irq1_level_low_skip_override[]
     - btrfs: fix a NULL pointer dereference when failed to start a new
       trasacntion (CVE-2024-49868)
     - btrfs: send: fix invalid clone operation for file that got its size
       decreased
     - btrfs: wait for fixup workers before stopping cleaner kthread during
       umount (CVE-2024-49867)
     - gpio: davinci: fix lazy disable
     - Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE
       (CVE-2024-8805)
     - ceph: fix cap ref leak via netfs init_request
     - tracing/hwlat: Fix a race during cpuhp processing
     - tracing/timerlat: Fix a race during cpuhp processing (CVE-2024-49866)
     - close_range(): fix the logics in descriptor table trimming
     - [x86] drm/i915/gem: fix bitwise and logical AND mixup
     - drm/sched: Add locking to drm_sched_entity_modify_sched
     - drm/amd/display: Fix system hang while resume with TBT monitor
       (CVE-2024-50003)
     - cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock
       (Closes: #1076483)
     - kconfig: qconf: fix buffer overflow in debug links
     - i2c: create debugfs entry per adapter
     - i2c: core: Lock address during client device instantiation
     - i2c: xiic: Use devm_clk_get_enabled()
     - i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled
     - dt-bindings: clock: exynos7885: Fix duplicated binding
     - spi: bcm63xx: Fix missing pm_runtime_disable()
     - [arm64] Add Cortex-715 CPU part definition
     - [arm64] cputype: Add Neoverse-N3 definitions
     - [arm64] errata: Expand speculative SSBS workaround once more
     - io_uring/net: harden multishot termination case for recv
     - uprobes: fix kernel info leak via "[uprobes]" vma
     - mm: z3fold: deprecate CONFIG_Z3FOLD
     - drm/amd/display: Allow backlight to go below
       `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT`
     - build-id: require program headers to be right after ELF header
     - lib/buildid: harden build ID parsing logic
     - docs/zh_CN: Update the translation of delay-accounting to 6.1-rc8
     - delayacct: improve the average delay precision of getdelay tool to
       microsecond
     - sched: psi: fix bogus pressure spikes from aggregation race
     - media: i2c: imx335: Enable regulator supplies
     - media: imx335: Fix reset-gpio handling
     - remoteproc: k3-r5: Acquire mailbox handle during probe routine
     - remoteproc: k3-r5: Delay notification of wakeup event
     - dt-bindings: clock: qcom: Add missing UFS QREF clocks
     - dt-bindings: clock: qcom: Add GPLL9 support on gcc-sc8180x
     - clk: samsung: exynos7885: do not define number of clocks in bindings
     - clk: samsung: exynos7885: Update CLKS_NR_FSYS after bindings fix
     - r8169: Fix spelling mistake: "tx_underun" -> "tx_underrun"
     - r8169: add tally counter fields added with RTL8125 (CVE-2024-49973)
     - clk: qcom: gcc-sc8180x: Add GPLL9 support
     - ACPI: battery: Simplify battery hook locking
     - ACPI: battery: Fix possible crash when unregistering a battery hook
       (CVE-2024-49955)
     - Revert "arm64: dts: qcom: sm8250: switch UFS QMP PHY to new style of
       bindings"
     - erofs: get rid of erofs_inode_datablocks()
     - erofs: get rid of z_erofs_do_map_blocks() forward declaration
     - erofs: avoid hardcoded blocksize for subpage block support
     - erofs: set block size to the on-disk block size
     - erofs: fix incorrect symlink detection in fast symlink
     - vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (CVE-2024-49863)
     - perf report: Fix segfault when 'sym' sort key is not used
     - fsdax: dax_unshare_iter() should return a valid length
     - fsdax: unshare: zero destination if srcmap is HOLE or UNWRITTEN
     - unicode: Don't special case ignorable code points
     - net: ethernet: cortina: Drop TSO support
     - tracing: Remove precision vsnprintf() check from print event
     - ALSA: hda/realtek: cs35l41: Fix order and duplicates in quirks table
     - ALSA: hda/realtek: cs35l41: Fix device ID / model name
     - drm/crtc: fix uninitialized variable use even harder
     - tracing: Have saved_cmdlines arrays all in one allocation
     - bootconfig: Fix the kerneldoc of _xbc_exit()
     - perf lock: Dynamically allocate lockhash_table
     - perf sched: Avoid large stack allocations
     - perf sched: Move start_work_mutex and work_done_wait_mutex initialization
       to perf_sched__replay()
     - perf sched: Fix memory leak in perf_sched__map()
     - perf sched: Move curr_thread initialization to perf_sched__map()
     - perf sched: Move curr_pid and cpu_last_switched initialization to
       perf_sched__{lat|map|replay}()
     - libsubcmd: Don't free the usage string
     - Bluetooth: Fix usage of __hci_cmd_sync_status
     - virtio_console: fix misc probe bugs
     - Input: synaptics-rmi4 - fix UAF of IRQ domain on driver removal
     - bpf: Check percpu map value size first
     - [s390x] facility: Disable compile time optimization for decompressor code
     - [s390x] mm: Add cond_resched() to cmm_alloc/free_pages()
     - bpf, x64: Fix a jit convergence issue
     - ext4: don't set SB_RDONLY after filesystem errors
     - ext4: nested locking for xattr inode
     - [s390x] cpum_sf: Remove WARN_ON_ONCE statements
     - RDMA/mad: Improve handling of timed out WRs of mad agent
     - PCI: Add function 0 DMA alias quirk for Glenfly Arise chip
     - RDMA/rtrs-srv: Avoid null pointer deref during path establishment
       (CVE-2024-50062)
     - clk: bcm: bcm53573: fix OF node leak in init
     - PCI: Add ACS quirk for Qualcomm SA8775P
     - i2c: i801: Use a different adapter-name for IDF adapters
     - PCI: Mark Creative Labs EMU20k2 INTx masking as broken
     - io_uring: check if we need to reschedule during overflow flush
       (CVE-2024-50060)
     - ntb: ntb_hw_switchtec: Fix use after free vulnerability in
       switchtec_ntb_remove due to race condition (CVE-2024-50059)
     - RDMA/mlx5: Enforce umem boundaries for explicit ODP page faults
     - media: videobuf2-core: clear memory related fields in
       __vb2_plane_dmabuf_put()
     - remoteproc: imx_rproc: Use imx specific hook for find_loaded_rsc_table
     - clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D
     - usb: chipidea: udc: enable suspend interrupt after usb reset
     - usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the
       Crashkernel Scenario
     - comedi: ni_routing: tools: Check when the file could not be opened
     - netfilter: nf_reject: Fix build warning when CONFIG_BRIDGE_NETFILTER=n
     - virtio_pmem: Check device status before requesting flush
     - tools/iio: Add memory allocation failure check for trigger_name
     - staging: vme_user: added bound check to geoid
     - driver core: bus: Return -EIO instead of 0 when show/store invalid bus
       attribute
     - scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in
       lpfc_els_flush_cmd()
     - scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV
       instance
     - drm/amd/display: Check null pointer before dereferencing se
       (CVE-2024-50049)
     - fbcon: Fix a NULL pointer dereference issue in fbcon_putcs
       (CVE-2024-50048)
     - fbdev: sisfb: Fix strbuf array overflow
     - drm/rockchip: vop: limit maximum resolution to hardware capabilities
     - drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066
     - NFSD: Mark filecache "down" if init fails
     - ice: fix VLAN replay after reset
     - SUNRPC: Fix integer overflow in decode_rc_list()
     - NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()
       (CVE-2024-50046)
     - net: phy: dp83869: fix memory corruption when enabling fiber
     - tcp: fix to allow timestamp undo if no retransmits were sent
     - tcp: fix tcp_enter_recovery() to zero retrans_stamp when it's safe
     - netfilter: br_netfilter: fix panic with metadata_dst skb (CVE-2024-50045)
     - Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change
       (CVE-2024-50044)
     - net: phy: bcm84881: Fix some error handling paths
     - thermal: int340x: processor_thermal: Set feature mask before
       proc_thermal_add
     - thermal: intel: int340x: processor: Fix warning during module unload
     - Revert "net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled"
     - net: ethernet: adi: adin1110: Fix some error handling path in
       adin1110_read_fifo()
     - net: dsa: b53: fix jumbo frame mtu check
     - net: dsa: b53: fix max MTU for 1g switches
     - net: dsa: b53: fix max MTU for BCM5325/BCM5365
     - net: dsa: b53: allow lower MTUs on BCM5325/5365
     - net: dsa: b53: fix jumbo frames on 10/100 ports
     - gpio: aspeed: Add the flush write to ensure the write complete.
     - gpio: aspeed: Use devm_clk api to manage clock source
     - ice: Fix netif_is_ice() in Safe Mode
     - i40e: Fix macvlan leak by synchronizing access to mac_filter_hash
       (CVE-2024-50041)
     - igb: Do not bring the device up after non-fatal error (CVE-2024-50040)
     - net/sched: accept TCA_STAB only for root qdisc (CVE-2024-50039)
     - net: ibm: emac: mal: fix wrong goto
     - btrfs: zoned: fix missing RCU locking in error message when loading zone
       info
     - sctp: ensure sk_state is set to CLOSED if hashing fails in
       sctp_listen_start
     - netfilter: xtables: avoid NFPROTO_UNSPEC where needed (CVE-2024-50038)
     - netfilter: fib: check correct rtable in vrf setups
     - net: ibm/emac: allocate dummy net_device dynamically
     - net: ibm: emac: mal: add dcr_unmap to _remove
     - rtnetlink: Add bulk registration helpers for rtnetlink message handlers.
     - vxlan: Handle error of rtnl_register_module().
     - mctp: Handle error of rtnl_register_module().
     - ppp: fix ppp_async_encode() illegal access
     - slip: make slhc_remember() more robust against malicious packets
     - rust: macros: provide correct provenance when constructing THIS_MODULE
     - HID: multitouch: Add support for lenovo Y9000P Touchpad
     - net/mlx5: Always drain health in shutdown callback (CVE-2024-43866)
     - wifi: mac80211: Avoid address calculations via out of bounds array
       indexing (CVE-2024-41071)
     - hwmon: (tmp513) Add missing dependency on REGMAP_I2C
     - hwmon: (adm9240) Add missing dependency on REGMAP_I2C
     - hwmon: (adt7470) Add missing dependency on REGMAP_I2C
     - Revert "net: ibm/emac: allocate dummy net_device dynamically"
     - HID: amd_sfh: Switch to device-managed dmam_alloc_coherent()
     - HID: plantronics: Workaround for an unexcepted opposite volume key
     - Revert "usb: yurex: Replace snprintf() with the safer scnprintf() variant"
     - usb: dwc3: core: Stop processing of pending events if controller is halted
     - usb: xhci: Fix problem with xhci resume from suspend
     - usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip
     - usb: gadget: core: force synchronous registration
     - hid: intel-ish-hid: Fix uninitialized variable 'rv' in
       ish_fw_xfer_direct_dma
     - drm/v3d: Stop the active perfmon before being destroyed (CVE-2024-50031)
     - drm/vc4: Stop the active perfmon before being destroyed
     - scsi: wd33c93: Don't use stale scsi_pointer value (CVE-2024-50026)
     - mptcp: fallback when MPTCP opts are dropped after 1st data
     - ata: libata: avoid superfluous disk spin down + spin up during hibernation
     - net: explicitly clear the sk pointer, when pf->create fails
     - net: Fix an unsafe loop on the list (CVE-2024-50024)
     - net: dsa: lan9303: ensure chip reset and wait for READY status
     - mptcp: handle consistently DSS corruption
     - mptcp: pm: do not remove closing subflows
     - device-dax: correct pgoff align in dax_set_mapping() (CVE-2024-50022)
     - nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error
     - kthread: unpark only parked kthread (CVE-2024-50019)
     - secretmem: disable memfd_secret() if arch cannot set direct map
     - net: ethernet: cortina: Restore TSO support
     - perf lock: Don't pass an ERR_PTR() directly to perf_session__delete()
     - block, bfq: fix uaf for accessing waker_bfqq after splitting
       (CVE-2024-49854)
     - Revert "iommu/vt-d: Retrieve IOMMU perfmon capability information"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.114
     - btrfs: fix uninitialized pointer free in add_inode_ref() (CVE-2024-50088)
     - btrfs: fix uninitialized pointer free on read_alloc_one_name() error
     - ksmbd: fix user-after-free from session log off (CVE-2024-50086)
     - ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2
     - mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow (CVE-2024-50085)
     - udf: New directory iteration code
     - udf: Convert udf_expand_dir_adinicb() to new directory iteration
     - udf: Move udf_expand_dir_adinicb() to its callsite
     - udf: Implement searching for directory entry using new iteration code
     - udf: Provide function to mark entry as deleted using new directory
       iteration code
     - udf: Convert udf_rename() to new directory iteration code
     - udf: Convert udf_readdir() to new directory iteration
     - udf: Convert udf_lookup() to use new directory iteration code
     - udf: Convert udf_get_parent() to new directory iteration code
     - udf: Convert empty_dir() to new directory iteration code
     - udf: Convert udf_rmdir() to new directory iteration code
     - udf: Convert udf_unlink() to new directory iteration code
     - udf: Implement adding of dir entries using new iteration code
     - udf: Convert udf_add_nondir() to new directory iteration
     - udf: Convert udf_mkdir() to new directory iteration code
     - udf: Convert udf_link() to new directory iteration code
     - udf: Remove old directory iteration code
     - udf: Handle error when expanding directory
     - udf: Don't return bh from udf_expand_dir_adinicb()
     - net: enetc: remove xdp_drops statistic from enetc_xdp_drop()
     - net: enetc: add missing static descriptor and inline keyword
     - posix-clock: Fix missing timespec64 check in pc_clock_settime()
     - [arm64] probes: Remove broken LDR (literal) uprobe support
     - [arm64] probes: Fix simulate_ldr*_literal()
     - net: macb: Avoid 20s boot delay by skipping MDIO bus registration for
       fixed-link PHY
     - irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1
     - fat: fix uninitialized variable
     - mm/swapfile: skip HugeTLB pages for unuse_vma
     - devlink: drop the filter argument from devlinks_xa_find_get
     - devlink: bump the instance index directly when iterating
     - maple_tree: correct tree corruption on spanning store
     - drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE)
       (CVE-2024-39497)
     - [amd64] iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI
       devices
     - [s390x] sclp: Deactivate sclp after all its users
     - [s390x] sclp_vt220: Convert newlines to CRLF instead of LFCR
     - [s390x] KVM: s390: gaccess: Check if guest address is in memslot
     - [s390x] KVM: s390: Change virtual to physical address access in diag 0x258
       handler
     - [x86] cpufeatures: Define X86_FEATURE_AMD_IBPB_RET
     - [x86] cpufeatures: Add a IBPB_NO_RET BUG flag
     - [x86] entry: Have entry_ibpb() invalidate return predictions
     - [x86] bugs: Skip RSB fill at VMEXIT
     - [x86] bugs: Do not use UNTRAIN_RET with IBPB on entry
     - blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race
       (CVE-2024-50082)
     - io_uring/sqpoll: close race on waiting for sqring entries
     - scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down
     - drm/radeon: Fix encoder->possible_clones
     - drm/vmwgfx: Handle surface check failure correctly
     - drm/amdgpu/swsmu: Only force workload setup on init
     - drm/amdgpu: prevent BO_HANDLES error from being overwritten
     - iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig
     - iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig
     - iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig
     - iio: adc: ti-ads8688: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: hid-sensors: Fix an error handling path in
       _hid_sensor_set_report_latency()
     - iio: light: veml6030: fix ALS sensor resolution
     - iio: light: veml6030: fix IIO device retrieval from embedded device
     - iio: light: opt3001: add missing full-scale range value
     - iio: amplifiers: ada4250: add missing select REGMAP_SPI in Kconfig
     - iio: dac: ad5766: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in
       Kconfig
     - iio: dac: ad3552r: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: adc: ti-ads124s08: add missing select IIO_(TRIGGERED_)BUFFER in
       Kconfig
     - Bluetooth: Call iso_exit() on module unload
     - Bluetooth: Remove debugfs directory on module init failure
     - Bluetooth: ISO: Fix multiple init when debugfs is disabled
       (CVE-2024-50077)
     - Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001
     - xhci: Fix incorrect stream context type macro
     - xhci: Mitigate failed set dequeue pointer commands
     - USB: serial: option: add support for Quectel EG916Q-GL
     - USB: serial: option: add Telit FN920C04 MBIM compositions
     - usb: dwc3: Wait for EndXfer completion before restoring GUSB2PHYCFG
     - parport: Proper fix for array out-of-bounds access (CVE-2024-50074)
     - [x86] resctrl: Annotate get_mem_config() functions as __init
     - [x86] apic: Always explicitly disarm TSC-deadline timer
     - [x86] entry_32: Do not clobber user EFLAGS.ZF
     - [x86] entry_32: Clear CPU buffers after register restore in NMI return
     - tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (CVE-2024-50073)
     - pinctrl: ocelot: fix system hang on level based interrupts
     - pinctrl: apple: check devm_kasprintf() returned value
     - irqchip/gic-v4: Don't allow a VMOVP on a dying VPE
     - irqchip/sifive-plic: Unmask interrupt in plic_irq_enable()
     - tcp: fix mptcp DSS corruption due to large pmtu xmit (CVE-2024-50083)
     - mptcp: prevent MPC handshake on port-based signal endpoints
     - nilfs2: propagate directory read errors from nilfs_find_entry()
     - [powerpc*] 64: Add big-endian ELFv2 flavour to crypto VMX asm generation
     - ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne
       1000 G2
     - udf: Allocate name buffer in directory iterator on heap
     - udf: Avoid directory type conversion failure due to ENOMEM
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.115
     - bpf: Use raw_spinlock_t in ringbuf
     - iio: accel: bma400: Fix uninitialized variable field_value in tap event
       handling.
     - bpf: Make sure internal and UAPI bpf_redirect flags don't overlap
     - bpf: devmap: provide rxq after redirect
     - bpf: Fix memory leak in bpf_core_apply
     - RDMA/bnxt_re: Fix incorrect AVID type in WQE structure
     - RDMA/bnxt_re: Add a check for memory allocation
     - [x86] resctrl: Avoid overflow in MB settings in bw_validate()
     - [armhf] dts: bcm2837-rpi-cm3-io3: Fix HDMI hpd-gpio pin
     - [s390x] pci: Handle PCI error codes other than 0x3a
     - bpf: fix kfunc btf caching for modules
     - drm/vmwgfx: Handle possible ENOMEM in vmw_stdu_connector_atomic_check
     - ALSA: hda/cs8409: Fix possible NULL dereference
     - RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP
     - RDMA/irdma: Fix misspelling of "accept*"
     - RDMA/srpt: Make slab cache names unique
     - ipv4: give an IPv4 dev to blackhole_netdev
     - RDMA/bnxt_re: Return more meaningful error
     - RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages
     - [arm64] drm/msm/dpu: make sure phys resources are properly initialized
     - [arm64] drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate
       calculation
     - [arm64] drm/msm: Avoid NULL dereference in msm_disp_state_print_regs()
     - [arm64] drm/msm: Allocate memory for disp snapshot with kvzalloc()
     - net: usb: usbnet: fix race in probe failure
     - drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring
     - macsec: don't increment counters for an unrelated SA
     - netdevsim: use cond_resched() in nsim_dev_trap_report_work()
     - net: ethernet: aeroflex: fix potential memory leak in
       greth_start_xmit_gbit()
     - net/smc: Fix searching in list of known pnetids in smc_pnet_add_pnetid
     - net: xilinx: axienet: fix potential memory leak in axienet_start_xmit()
     - net: systemport: fix potential memory leak in bcm_sysport_xmit()
     - [arm64] drm/msm/dpu: Wire up DSC mask for active CTL configuration
     - [arm64] drm/msm/dpu: don't always program merge_3d block
     - tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink().
     - genetlink: hold RCU in genlmsg_mcast()
     - ravb: Remove setting of RX software timestamp
     - net: ravb: Only advertise Rx/Tx timestamps if hardware supports it
     - scsi: target: core: Fix null-ptr-deref in target_alloc_device()
     - smb: client: fix OOBs when building SMB2_IOCTL request
     - usb: typec: altmode should keep reference to parent
     - [s390x] Initialize psw mask in perf_arch_fetch_caller_regs()
     - Bluetooth: bnep: fix wild-memory-access in proto_unregister
     - net/mlx5: Remove redundant cmdif revision check
     - net/mlx5: split mlx5_cmd_init() to probe and reload routines
     - net/mlx5: Fix command bitmask initialization
     - net/mlx5: Unregister notifier on eswitch init failure
     - bpf: Fix iter/task tid filtering
     - [arm64] uprobe fix the uprobe SWBP_INSN in big-endian
     - [arm64] probes: Fix uprobes for big-endian kernels
     - usb: gadget: f_uac2: Replace snprintf() with the safer scnprintf() variant
     - usb: gadget: f_uac2: fix non-newline-terminated function name
     - usb: gadget: f_uac2: fix return value for UAC2_ATTRIBUTE_STRING store
     - usb: gadget: Add function wakeup support
     - XHCI: Separate PORT and CAPs macros into dedicated file
     - [arm64,armhf] usb: dwc3: core: Fix system suspend on TI AM62 platforms
     - tty/serial: Make ->dcd_change()+uart_handle_dcd_change() status bool
       active
     - serial: Make uart_handle_cts_change() status param bool active
     - serial: imx: Update mctrl old_status on RTSD interrupt
     - block, bfq: fix procress reference leakage for bfqq in merge chain
     - exec: don't WARN for racy path_noexec check (CVE-2024-50010)
     - fs/ntfs3: Add more attributes checks in mi_enum_attr() (CVE-2023-45896)
     - [x86] drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape
       with real VLA
     - ASoC: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to
       default regs values
     - [arm64] ASoC: fsl_sai: Enable 'FIFO continue on error' FCONT bit
     - [arm64] Force position-independent veneers
     - udf: refactor udf_current_aext() to handle error
     - udf: fix uninit-value use in udf_get_fileshortad
     - [x86] platform/x86: dell-sysman: add support for alienware products
     - jfs: Fix sanity check in dbMount
     - tracing: Consider the NULL character when validating the event length
     - xfrm: extract dst lookup parameters into a struct
     - xfrm: respect ip protocols rules criteria when performing dst lookups
     - be2net: fix potential memory leak in be_xmit()
     - net: plip: fix break; causing plip to never transmit
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix error when setting port policy on
       mv88e6393x
     - netfilter: xtables: fix typo causing some targets not to load on IPv6
     - net: wwan: fix global oob in wwan_rtnl_policy
     - docs: net: reformat driver.rst from a list to sections
     - net: provide macros for commonly copied lockless queue stop/wake code
     - net/sched: adjust device watchdog timer to detect stopped queue at right
       time
     - net: fix races in netdev_tx_sent_queue()/dev_watchdog()
     - net: usb: usbnet: fix name regression
     - net/sched: act_api: deny mismatched skip_sw/skip_hw flags for actions
       created by classifiers
     - net: sched: fix use-after-free in taprio_change()
     - r8169: avoid unsolicited interrupts
     - posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime()
     - Bluetooth: SCO: Fix UAF on sco_sock_timeout
     - Bluetooth: ISO: Fix UAF on iso_sock_timeout
     - bpf,perf: Fix perf_event_detach_bpf_prog error handling
     - ASoC: dt-bindings: davinci-mcasp: Fix interrupts property
     - ASoC: dt-bindings: davinci-mcasp: Fix interrupt properties
     - ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size()
     - powercap: dtpm_devfreq: Fix error check against dev_pm_qos_add_request()
     - ALSA: hda/realtek: Update default depop procedure
     - cpufreq/cppc: Move and rename cppc_cpufreq_{perf_to_khz|khz_to_perf}()
     - cpufreq: CPPC: fix perf_to_khz/khz_to_perf conversion exception
     - btrfs: fix passing 0 to ERR_PTR in btrfs_search_dir_index_item()
     - btrfs: zoned: fix zone unusable accounting for freed reserved extent
     - drm/amd: Guard against bad data for ATIF ACPI method
     - ACPI: resource: Add LG 16T90SP to irq1_level_low_skip_override[]
     - ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context
     - ACPI: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid
       detection issue
     - nilfs2: fix kernel bug due to missing clearing of buffer delay flag
     - openat2: explicitly return -E2BIG for (usize > PAGE_SIZE)
     - [x86] KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
     - [arm64] KVM: arm64: Don't eagerly teardown the vgic on init error
     - ALSA: hda/realtek: Add subwoofer quirk for Acer Predator G9-593
     - xfrm: fix one more kernel-infoleak in algo dumping
     - hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event
     - drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too
     - selinux: improve error checking in sel_write_load()
     - serial: protect uart_port_dtr_rts() in uart_shutdown() too
       (CVE-2024-50058)
     - net: phy: dp83822: Fix reset pin definitions
     - [arm64] ASoC: qcom: Fix NULL Dereference in
       asoc_qcom_lpass_cpu_platform_probe()
     - [x86] platform/x86: dell-wmi: Ignore suspend notifications
     - ACPI: PRM: Clean up guid type in struct prm_handler_info
     - [arm64] uprobes: change the uprobe_opcode_t typedef to fix the sparse
       warning
     - xfrm: validate new SA's prefixlen using SA family when sel.family is unset
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 27
   * d/config: Update with the help of kconfigeditor2
     - mm: Enable Z3FOLD_DEPRECATED instead of Z3FOLD
linux (6.1.112-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.107
     - tty: atmel_serial: use the correct RTS flag.
     - fuse: Initialize beyond-EOF page contents before setting uptodate
     - ALSA: usb-audio: Add delay quirk for VIVO USB-C-XE710 HEADSET
     - ALSA: usb-audio: Support Yamaha P-125 quirk entry
     - xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration
     - [x86] thunderbolt: Mark XDomain as unplugged when router is removed
     - [s390x] dasd: fix error recovery leading to data corruption on ESE devices
     - [arm64] ACPI: NUMA: initialize all values of acpi_early_node_map to
       NUMA_NO_NODE
     - dm resume: don't return EINVAL when signalled
     - dm persistent data: fix memory allocation failure
     - vfs: Don't evict inode under the inode lru traversing context
     - [s390x] cio: rename bitmap_size() -> idset_bitmap_size()
     - btrfs: rename bitmap_set_bits() -> btrfs_bitmap_set_bits()
     - bitmap: introduce generic optimized bitmap_size()
     - fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE
     - i2c: qcom-geni: Add missing geni_icc_disable in geni_i2c_runtime_resume
     - rtla/osnoise: Prevent NULL dereference in error handling
     - fs/netfs/fscache_cookie: add missing "n_accesses" check
     - selinux: fix potential counting error in avc_add_xperms_decision()
     - mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu
     - btrfs: zoned: properly take lock to read/update block group's zoned
       variables
     - btrfs: tree-checker: add dev extent item checks
     - drm/amdgpu: Actually check flags for all context ops.
     - memcg_write_event_control(): fix a user-triggerable oops
     - drm/amdgpu/jpeg2: properly set atomics vmid field
     - [s390x] uv: Panic for set and remove shared access UVC errors
     - bpf: Fix updating attached freplace prog in prog_array map
     - nilfs2: prevent WARNING in nilfs_dat_commit_end()
     - ext4, jbd2: add an optimized bmap for the journal inode
     - 9P FS: Fix wild-memory-access write in v9fs_get_acl
     - nilfs2: initialize "struct nilfs_binfo_dat"->bi_pad field
     - mm: khugepaged: fix kernel BUG in hpage_collapse_scan_file()
     - bpf: Split off basic BPF verifier log into separate file
     - bpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log
     - posix-timers: Ensure timer ID search-loop limit is valid
     - pid: Replace struct pid 1-element array with flex-array
     - gfs2: Rename remaining "transaction" glock references
     - gfs2: Rename the {freeze,thaw}_super callbacks
     - gfs2: Rename gfs2_freeze_lock{ => _shared }
     - gfs2: Rename SDF_{FS_FROZEN => FREEZE_INITIATOR}
     - gfs2: Rework freeze / thaw logic
     - gfs2: Stop using gfs2_make_fs_ro for withdraw
     - Bluetooth: Fix hci_link_tx_to RCU lock usage
     - wifi: mac80211: take wiphy lock for MAC addr change
     - wifi: mac80211: fix change_address deadlock during unregister
     - net: sched: Print msecs when transmit queue time out
     - net: don't dump stack on queue timeout
     - jfs: fix shift-out-of-bounds in dbJoin
     - squashfs: squashfs_read_data need to check if the length is 0
     - Squashfs: fix variable overflow triggered by sysbot
     - reiserfs: fix uninit-value in comp_keys
     - erofs: avoid debugging output for (de)compressed data
     - quota: Detect loops in quota tree
     - net:rds: Fix possible deadlock in rds_message_put
     - net: sctp: fix skb leak in sctp_inq_free()
     - pppoe: Fix memory leak in pppoe_sendmsg()
     - wifi: mac80211: fix and simplify unencrypted drop check for mesh
     - wifi: cfg80211: move A-MSDU check in ieee80211_data_to_8023_exthdr
     - wifi: cfg80211: factor out bridge tunnel / RFC1042 header check
     - wifi: mac80211: remove mesh forwarding congestion check
     - wifi: mac80211: fix receiving A-MSDU frames on mesh interfaces
     - wifi: mac80211: add a workaround for receiving non-standard mesh A-MSDU
     - wifi: cfg80211: check A-MSDU format more carefully (CVE-2024-35937)
     - docs/bpf: Document BPF_MAP_TYPE_LPM_TRIE map
     - bpf: Replace bpf_lpm_trie_key 0-length array with flexible array
     - bpf: Avoid kfree_rcu() under lock in bpf_lpm_trie.
     - Bluetooth: RFCOMM: Fix not validating setsockopt user input
       (CVE-2024-35966)
     - ext4: check the return value of ext4_xattr_inode_dec_ref()
     - ext4: fold quota accounting into ext4_xattr_inode_lookup_create()
     - ext4: do not create EA inode under buffer lock (CVE-2024-40972)
     - udf: Fix bogus checksum computation in udf_rename()
     - bpf, net: Use DEV_STAT_INC()
     - fou: remove warn in gue_gro_receive on unsupported protocol
       (CVE-2024-44940)
     - jfs: fix null ptr deref in dtInsertEntry (CVE-2024-44939)
     - jfs: Fix shift-out-of-bounds in dbDiscardAG (CVE-2024-44938)
     - ALSA: usb: Fix UBSAN warning in parse_audio_unit()
     - igc: Correct the launchtime offset
     - igc: Fix packet still tx after gate close by reducing i226 MAC retry
       buffer
     - net/mlx5e: Take state lock during tx timeout reporter
     - net/mlx5e: Correctly report errors for ethtool rx flows
     - atm: idt77252: prevent use after free in dequeue_rx()
     - mlxbf_gige: Remove two unused function declarations
     - mlxbf_gige: disable RX filters until RX path initialized
     - mptcp: correct MPTCP_SUBFLOW_ATTR_SSN_OFFSET reserved size
     - netfilter: allow ipv6 fragments to arrive on different devices
     - netfilter: flowtable: initialise extack before use
     - netfilter: nf_queue: drop packets with cloned unconfirmed conntracks
       (Closes: #1070685)
     - netfilter: nf_tables: Audit log dump reset after the fact
     - netfilter: nf_tables: Drop pointless memset in nf_tables_dump_obj
     - netfilter: nf_tables: Unconditionally allocate nft_obj_filter
     - netfilter: nf_tables: A better name for nft_obj_filter
     - netfilter: nf_tables: Carry s_idx in nft_obj_dump_ctx
     - netfilter: nf_tables: nft_obj_filter fits into cb->ctx
     - netfilter: nf_tables: Carry reset boolean in nft_obj_dump_ctx
     - netfilter: nf_tables: Introduce nf_tables_getobj_single
     - netfilter: nf_tables: Add locking for NFT_MSG_GETOBJ_RESET requests
     - [arm64] net: hns3: fix wrong use of semaphore up
     - [arm64] net: hns3: use the user's cfg after reset
     - [arm64] net: hns3: fix a deadlock problem when config TC during resetting
     - ALSA: hda/realtek: Fix noise from speakers on Lenovo IdeaPad 3 15IAU7
     - drm/amd/amdgpu/imu_v11_0: Increase buffer size to ensure all possible
       values can be stored
     - ssb: Fix division by zero issue in ssb_calc_clock_rate
     - wifi: cfg80211: check wiphy mutex is held for wdev mutex
     - wifi: mac80211: fix BA session teardown race
     - mm: Remove kmem_valid_obj()
     - rcu: Dump memory object info if callback function is invalid
     - rcu: Eliminate rcu_gp_slow_unregister() false positive
     - wifi: cw1200: Avoid processing an invalid TIM IE
     - cgroup: Avoid extra dereference in css_populate_dir()
     - i2c: riic: avoid potential division by zero
     - RDMA/rtrs: Fix the problem of variable not initialized fully
     - [s390x] smp,mcck: fix early IPI handling
     - drm/bridge: tc358768: Attempt to fix DSI horizontal timings
     - media: radio-isa: use dev_name to fill in bus_info
     - staging: iio: resolver: ad2s1210: fix use before initialization
     - usb: gadget: uvc: cleanup request when not in correct state
     - drm/amd/display: Validate hw_points_num before using it
     - staging: ks7010: disable bh on tx_dev_lock
     - media: s5p-mfc: Fix potential deadlock on condlock
     - md/raid5-cache: use READ_ONCE/WRITE_ONCE for 'conf->log'
     - binfmt_misc: cleanup on filesystem umount
     - [arm64,armhf] drm/tegra: Zero-initialize iosys_map
     - media: qcom: venus: fix incorrect return value
     - scsi: spi: Fix sshdr use
     - gfs2: setattr_chown: Add missing initialization
     - wifi: iwlwifi: abort scan when rfkill on but device enabled
     - wifi: iwlwifi: fw: Fix debugfs command sending
     - clk: visconti: Add bounds-checking coverage for struct
       visconti_pll_provider
     - [amd64] IB/hfi1: Fix potential deadlock on &irq_src_lock and
       &dd->uctxt_lock
     - kbuild: rust_is_available: normalize version matching
     - kbuild: rust_is_available: handle failures calling `$RUSTC`/`$BINDGEN`
     - [arm64] Fix KASAN random tag seed initialization
     - block: Fix lockdep warning in blk_mq_mark_tag_wait
     - [arm64] drm/msm: Reduce fallout of fence signaling vs reclaim hangs
     - memory: tegra: Skip SID programming if SID registers aren't set
     - [powerpc*] xics: Check return value of kasprintf in icp_native_map_one_cpu
     - [x86] ASoC: SOF: ipc4: check return value of snd_sof_ipc_msg_data
     - [x86] hwmon: (pc87360) Bounds check data->innr usage
     - drm/rockchip: vop2: clear afbc en and transform bit for cluster window at
       linear mode
     - Bluetooth: hci_conn: Check non NULL function before calling for HFP
       offload
     - gfs2: Refcounting fix in gfs2_thaw_super
     - nvmet-trace: avoid dereferencing pointer too early
     - ext4: do not trim the group with corrupted block bitmap
     - afs: fix __afs_break_callback() / afs_drop_open_mmap() race
     - fuse: fix UAF in rcu pathwalks
     - quota: Remove BUG_ON from dqget()
     - kernfs: fix false-positive WARN(nr_mmapped) in kernfs_drain_open_files
     - media: pci: cx23885: check cx23885_vdev_init() return
     - fs: binfmt_elf_efpic: don't use missing interpreter's properties
     - scsi: lpfc: Initialize status local variable in
       lpfc_sli4_repost_sgl_list()
     - media: drivers/media/dvb-core: copy user arrays safely
     - net/sun3_82586: Avoid reading past buffer in debug output
     - drm/lima: set gp bus_stop bit before hard reset
     - hrtimer: Select housekeeping CPU during migration
     - virtiofs: forbid newlines in tags
     - clocksource/drivers/arm_global_timer: Guard against division by zero
     - netlink: hold nlk->cb_mutex longer in __netlink_dump_start()
     - md: clean up invalid BUG_ON in md_ioctl
     - [x86] Increase brk randomness entropy for 64-bit systems
     - memory: stm32-fmc2-ebi: check regmap_read return value
     - [powerpc*] boot: Handle allocation failure in simple_realloc()
     - [powerpc*] boot: Only free if realloc() succeeds
     - btrfs: delayed-inode: drop pointless BUG_ON in
       __btrfs_remove_delayed_item()
     - btrfs: change BUG_ON to assertion when checking for delayed_node root
     - btrfs: tests: allocate dummy fs_info and root in test_find_delalloc()
     - btrfs: handle invalid root reference found in may_destroy_subvol()
     - btrfs: send: handle unexpected data in header buffer in begin_cmd()
     - btrfs: change BUG_ON to assertion in tree_move_down()
     - btrfs: delete pointless BUG_ON check on quota root in
       btrfs_qgroup_account_extent()
     - f2fs: fix to do sanity check in update_sit_entry
     - usb: gadget: fsl: Increase size of name buffer for endpoints
     - nvme: clear caller pointer on identify failure
     - Bluetooth: bnep: Fix out-of-bound access
     - firmware: cirrus: cs_dsp: Initialize debugfs_root to invalid
     - rtc: nct3018y: fix possible NULL dereference
     - [arm64] net: hns3: add checking for vf id of mailbox
     - nvmet-tcp: do not continue for invalid icreq
     - NFS: avoid infinite loop in pnfs_update_layout.
     - [s390x] iucv: fix receive buffer virtual vs physical address confusion
     - irqchip/renesas-rzg2l: Do not set TIEN and TINT source at the same time
     - clocksource: Make watchdog and suspend-timing multiplication overflow safe
     - [x86] platform/x86: lg-laptop: fix %s null argument warning
     - usb: dwc3: core: Skip setting event buffers for host only controllers
     - fbdev: offb: replace of_node_put with __free(device_node)
     - irqchip/gic-v3-its: Remove BUG_ON in its_vpe_irq_domain_alloc
     - ext4: set the type of max_zeroout to unsigned int to avoid overflow
     - nvmet-rdma: fix possible bad dereference when freeing rsps
     - drm/amdgpu: fix dereference null return value for the function
       amdgpu_vm_pt_parent
     - hrtimer: Prevent queuing of hrtimer without a function callback
     - gtp: pull network headers in gtp_dev_xmit()
     - [arm64,armhf] i2c: tegra: allow DVC support to be compiled out
     - [arm64,armhf] i2c: tegra: allow VI support to be compiled out
     - [arm64,armhf] i2c: tegra: Do not mark ACPI devices as irq safe
     - dm suspend: return -ERESTARTSYS instead of -EINTR
     - net: mana: Fix doorbell out of order violation and avoid unnecessary
       doorbell rings
     - btrfs: replace sb::s_blocksize by fs_info::sectorsize
     - btrfs: send: allow cloning non-aligned extent if it ends at i_size
     - drm/amd/display: Adjust cursor position
     - platform/surface: aggregator: Fix warning when controller is destroyed in
       probe
     - Bluetooth: hci_core: Fix LE quote calculation
     - Bluetooth: SMP: Fix assumption of Central always being Initiator
     - [arm64] net: dsa: tag_ocelot: do not rely on skb_mac_header() for VLAN
       xmit
     - [arm64] net: dsa: tag_ocelot: call only the relevant portion of
       __skb_vlan_pop() on TX
     - [arm64] net: mscc: ocelot: use ocelot_xmit_get_vlan_info() also for FDMA
       and register injection
     - [arm64] net: mscc: ocelot: fix QoS class for injected packets with
       "ocelot-8021q"
     - [arm64] net: mscc: ocelot: serialize access to the injection/extraction
       groups
     - tc-testing: don't access non-existent variable on exception
     - tcp/dccp: bypass empty buckets in inet_twsk_purge()
     - tcp/dccp: do not care about families in inet_twsk_purge()
     - tcp: prevent concurrent execution of tcp_sk_exit_batch
     - net: mctp: test: Use correct skb for route input check
     - kcm: Serialise kcm_sendmsg() for the same socket.
     - netfilter: nft_counter: Disable BH in nft_counter_offload_stats().
     - netfilter: nft_counter: Synchronize nft_counter_reset() against reader.
     - ip6_tunnel: Fix broken GRO
     - bonding: fix bond_ipsec_offload_ok return type
     - bonding: fix null pointer deref in bond_ipsec_offload_ok
     - bonding: fix xfrm real_dev null pointer dereference
     - bonding: fix xfrm state handling when clearing active slave
     - ice: Prepare legacy-rx for upcoming XDP multi-buffer support
     - ice: Add xdp_buff to ice_rx_ring struct
     - ice: Store page count inside ice_rx_buf
     - ice: Pull out next_to_clean bump out of ice_put_rx_buf()
     - ice: fix page reuse when PAGE_SIZE is over 8k
     - ice: fix ICE_LAST_OFFSET formula
     - dpaa2-switch: Fix error checking in dpaa2_switch_seed_bp()
     - net: dsa: mv88e6xxx: Fix out-of-bound access
     - netem: fix return value if duplicate enqueue fails
     - ipv6: prevent UAF in ip6_send_skb()
     - ipv6: fix possible UAF in ip6_finish_output2()
     - ipv6: prevent possible UAF in ip6_xmit()
     - netfilter: flowtable: validate vlan header
     - [arm64] drm/msm/dpu: don't play tricks with debug macros
     - [arm64] drm/msm/dp: fix the max supported bpp logic
     - [arm64] drm/msm/dp: reset the link phy params before link training
     - [arm64] drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails
     - mmc: mmc_test: Fix NULL dereference on allocation failure
     - Bluetooth: MGMT: Add error handling to pair_device() (CVE-2024-43884)
     - scsi: core: Fix the return value of scsi_logical_block_count()
     - ksmbd: the buffer of smb2 query dir response has at least 1 byte
     - drm/amdgpu: Validate TA binary size
     - HID: wacom: Defer calculation of resolution until resolution_code is known
     - HID: microsoft: Add rumble support to latest xbox controllers
     - Input: i8042 - add forcenorestore quirk to leave controller untouched even
       on s3
     - Input: i8042 - use new forcenorestore quirk to replace old buggy quirk
       combination
     - cxgb4: add forgotten u64 ivlan cast before shift
     - [arm64] KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3
     - mmc: dw_mmc: allow biu and ciu clocks to defer
     - pmdomain: imx: wait SSAR when i.MX93 power domain on
     - mptcp: pm: re-using ID of unused removed ADD_ADDR
     - mptcp: pm: re-using ID of unused removed subflows
     - mptcp: pm: re-using ID of unused flushed subflows
     - mptcp: pm: only decrement add_addr_accepted for MPJ req
     - Revert "usb: gadget: uvc: cleanup request when not in correct state"
     - Revert "drm/amd/display: Validate hw_points_num before using it"
     - tcp: do not export tcp_twsk_purge()
     - hwmon: (ltc2992) Fix memory leak in ltc2992_parse_dt()
     - ALSA: timer: Relax start tick time check for slave timer elements
     - mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order
       fallback to order 0
     - mm/numa: no task_numa_fault() call if PMD is changed
     - mm/numa: no task_numa_fault() call if PTE is changed
     - nfsd: Simplify code around svc_exit_thread() call in nfsd()
     - nfsd: separate nfsd_last_thread() from nfsd_put()
     - NFSD: simplify error paths in nfsd_svc()
     - nfsd: call nfsd_last_thread() before final nfsd_put()
     - nfsd: drop the nfsd_put helper
     - nfsd: don't call locks_release_private() twice concurrently
     - nfsd: Fix a regression in nfsd_setattr()
     - Bluetooth: hci_ldisc: check HCI_UART_PROTO_READY flag in HCIUARTGETPROTO
     - drm/amdgpu/vcn: identify unified queue in sw init
     - drm/amdgpu/vcn: not pause dpg for unified queue
     - [x86] KVM: x86: fire timer when it is migrated and expired, and in oneshot
       mode
     - Revert "s390/dasd: Establish DMA alignment"
     - wifi: mac80211: add documentation for amsdu_mesh_control
     - wifi: mac80211: fix mesh path discovery based on unicast packets
     - wifi: mac80211: fix mesh forwarding
     - wifi: mac80211: fix flow dissection for forwarded packets
     - wifi: mac80211: fix receiving mesh packets in forwarding=0 networks
     - wifi: mac80211: drop bogus static keywords in A-MSDU rx
     - wifi: mac80211: fix potential null pointer dereference
     - wifi: cfg80211: fix receiving mesh packets without RFC1042 header
     - gfs2: Fix another freeze/thaw hang
     - gfs2: don't withdraw if init_threads() got interrupted
     - gfs2: Remove LM_FLAG_PRIORITY flag
     - gfs2: Remove freeze_go_demote_ok
     - udp: fix receiving fraglist GSO packets
     - ice: fix W=1 headers mismatch
     - Revert "jfs: fix shift-out-of-bounds in dbJoin"
     - net: change maximum number of UDP segments to 128
     - selftests: net: more strict check in net_helper
     - Input: MT - limit max slots
     - tools: move alignment-related macros to new <linux/align.h>
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.108
     - drm/amdgpu: Using uninitialized value *size when calling
       amdgpu_vce_cs_reloc (CVE-2024-42228)
     - btrfs: run delayed iputs when flushing delalloc
     - smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()
     - pinctrl: rockchip: correct RK3328 iomux width flag for GPIO2-B pins
     - pinctrl: single: fix potential NULL dereference in pcs_get_function()
     - of: Add cleanup.h based auto release via __free(device_node) markings
     - wifi: wfx: repair open network AP mode
     - wifi: mwifiex: duplicate static structs used in driver instances
     - net: mana: Fix race of mana_hwc_post_rx_wqe and new hwc response
     - mptcp: close subflow when receiving TCP+FIN
     - mptcp: sched: check both backup in retrans
     - mptcp: pm: skip connecting to already established sf
     - mptcp: pm: reset MPC endp ID when re-added
     - mptcp: pm: send ACK on an active subflow
     - mptcp: pm: do not remove already closed subflows
     - mptcp: pm: ADD_ADDR 0 is not a new address
     - drm/amdgpu: align pp_power_profile_mode with kernel docs
     - drm/amdgpu/swsmu: always force a state reprogram on init
     - ata: libata-core: Fix null pointer dereference on error (CVE-2024-41098)
     - usb: typec: fix up incorrectly backported "usb: typec: tcpm: unregister
       existing source caps before re-registration"
     - mmc: Avoid open coding by using mmc_op_tuning()
     - mmc: mtk-sd: receive cmd8 data when hs400 tuning fail
     - mptcp: unify pm get_local_id interfaces
     - mptcp: pm: remove mptcp_pm_remove_subflow()
     - mptcp: pm: only mark 'subflow' endp as available
     - mptcp: pm: check add_addr_accept_max before accepting new ADD_ADDR
     - of: Introduce for_each_*_child_of_node_scoped() to automate of_node_put()
       handling
     - thermal: of: Fix OF node leak in thermal_of_trips_init() error path
     - thermal: of: Fix OF node leak in of_thermal_zone_find() error paths
     - ASoC: amd: acp: fix module autoloading
     - ASoC: SOF: amd: Fix for acp init sequence
     - pinctrl: mediatek: common-v2: Fix broken bias-disable for
       PULL_PU_PD_RSEL_TYPE
     - btrfs: fix extent map use-after-free when adding pages to compressed bio
       (CVE-2024-42314)
     - soundwire: stream: fix programming slave ports for non-continous port maps
     - [arm64] phy: xilinx: add runtime PM support
     - [arm64] phy: xilinx: phy-zynqmp: dynamic clock support for power-save
     - [arm64] phy: xilinx: phy-zynqmp: Fix SGMII linkup failure on resume
     - [x86] dmaengine: dw: Add peripheral bus width verification
     - [x86] dmaengine: dw: Add memory bus width verification
     - Bluetooth: hci_core: Fix not handling hibernation actions
     - iommu: Do not return 0 from map_pages if it doesn't do anything
     - netfilter: nf_tables: restore IP sanity checks for netdev/egress
     - wifi: iwlwifi: fw: fix wgds rev 3 exact size
     - ethtool: check device is present when getting link settings
     - netfilter: nf_tables_ipv6: consider network offset in netdev/egress
       validation
     - bonding: implement xdo_dev_state_free and call it after deletion
     - gtp: fix a potential NULL pointer dereference
     - sctp: fix association labeling in the duplicate COOKIE-ECHO case
     - drm/amd/display: avoid using null object of framebuffer
     - net: busy-poll: use ktime_get_ns() instead of local_clock()
     - nfc: pn533: Add poll mod list filling check
     - [arm64] soc: qcom: cmd-db: Map shared memory as WC, not WB
     - cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller
     - USB: serial: option: add MeiG Smart SRM825L
     - [armhf] usb: dwc3: omap: add missing depopulate in probe error path
     - [arm64,armhf] usb: dwc3: core: Prevent USB core invalid event buffer
       address access
     - usb: core: sysfs: Unmerge @usb3_hardware_lpm_attr_group in
       remove_power_attributes()
     - usb: cdnsp: fix incorrect index in cdnsp_get_hw_deq function
     - usb: cdnsp: fix for Link TRB with TC
     - [arm64] phy: zynqmp: Enable reference clock correctly
     - igc: Fix reset adapter logics when tx mode change
     - igc: Fix qbv tx latency by setting gtxoffset
     - scsi: aacraid: Fix double-free on probe failure
     - apparmor: fix policy_unpack_test on big endian systems
     - fbdev: offb: fix up missing cleanup.h
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.109
     - drm: panel-orientation-quirks: Add quirk for OrangePi Neo
     - scsi: ufs: core: Bypass quick recovery if force reset is needed
     - ALSA: hda/generic: Add a helper to mute speakers at suspend/shutdown
     - ALSA: hda/conexant: Mute speakers at suspend / shutdown
     - i2c: Fix conditional for substituting empty ACPI functions
     - dma-debug: avoid deadlock between dma debug vs printk and netconsole
     - net: usb: qmi_wwan: add MeiG Smart SRM825L
     - [x86] ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6
     - mptcp: make pm_remove_addrs_and_subflows static
     - mptcp: pm: fix RM_ADDR ID for the initial subflow
     - PCI/MSI: Fix UAF in msi_capability_init (CVE-2024-41096)
     - f2fs: fix to truncate preallocated blocks in f2fs_file_open()
       (CVE-2024-43859)
     - mptcp: pm: fullmesh: select the right ID later
     - mptcp: pm: avoid possible UaF when selecting endp (CVE-2024-44974)
     - mptcp: pm: reuse ID 0 after delete and re-add
     - mptcp: pm: fix ID 0 endp usage after multiple re-creations
     - mptcp: pr_debug: add missing \n at the end
     - mptcp: avoid duplicated SUB_CLOSED events
     - drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr
     - drm/amd/display: Assign linear_pitch_alignment even for VM
     - drm/amdgpu: fix overflowed array index read warning
     - drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc
     - drm/amd/pm: fix uninitialized variable warning
     - drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr
     - drm/amd/pm: fix warning using uninitialized value of max_vid_step
     - drm/amd/pm: Fix negative array index read
     - drm/amd/pm: fix the Out-of-bounds read warning
     - drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr
     - drm/amdgpu: avoid reading vf2pf info size from FB
     - drm/amd/display: Check gpio_id before used as array index
     - drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6
     - drm/amd/display: Add array index check for hdcp ddc access
     - drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[]
     - drm/amd/display: Check msg_id before processing transcation
     - drm/amd/display: Fix Coverity INTEGER_OVERFLOW within
       dal_gpio_service_create
     - drm/amd/display: Spinlock before reading event
     - drm/amd/display: Ensure index calculation will not overflow
     - drm/amd/display: Skip inactive planes within
       ModeSupportAndSystemConfiguration
     - drm/amd/amdgpu: Check tbo resource pointer
     - drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt
     - drm/amdgpu/pm: Fix uninitialized variable warning for smu10
     - drm/amdgpu/pm: Fix uninitialized variable agc_btc_response
     - drm/amdgpu: Fix out-of-bounds write warning
     - drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number
     - drm/amdgpu: fix ucode out-of-bounds read warning
     - drm/amdgpu: fix mc_data out-of-bounds read warning
     - apparmor: fix possible NULL pointer dereference
     - wifi: ath11k: initialize 'ret' in ath11k_qmi_load_file_target_mem()
     - drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy
       SOCs
     - drm/amdgpu: fix dereference after null check
     - drm/amdgpu: fix the waring dereferencing hive
     - drm/amd/pm: check specific index for aldebaran
     - drm/amdgpu: the warning dereferencing obj for nbio_v7_4
     - drm/amd/pm: check negtive return for table entries
     - wifi: rtw89: ser: avoid multiple deinit on same CAM
     - drm/amdgpu: update type of buf size to u32 for eeprom functions
     - wifi: iwlwifi: remove fw_running op
     - cpufreq: scmi: Avoid overflow of target_freq in fast switch
     - PCI: al: Check IORESOURCE_BUS existence during probe
     - hwspinlock: Introduce hwspin_lock_bust()
     - RDMA/efa: Properly handle unexpected AQ completions
     - ionic: fix potential irq name truncation
     - pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode.
     - rcu/nocb: Remove buggy bypass lock contention mitigation
     - usbip: Don't submit special requests twice
     - usb: typec: ucsi: Fix null pointer dereference in trace
     - fsnotify: clear PARENT_WATCHED flags lazily
     - regmap: spi: Fix potential off-by-one when calculating reserved size
     - smack: tcp: ipv4, fix incorrect labeling
     - net/mlx5e: SHAMPO, Fix incorrect page release
     - [arm64] drm/meson: plane: Add error handling
     - [x86] hwmon: (k10temp) Check return value of amd_smn_read()
     - wifi: cfg80211: make hash table duplicates more survivable
     - driver: iio: add missing checks on iio_info's callback access
     - block: remove the blk_flush_integrity call in blk_integrity_unregister
     - drm/amd/display: added NULL check at start of dc_validate_stream
     - drm/amd/display: Correct the defined value for
       AMDGPU_DMUB_NOTIFICATION_MAX
     - drm/amd/display: Skip wbscl_set_scaler_filter if filter is null
     - media: uvcvideo: Enforce alignment of frame and interval
     - virtio_net: Fix napi_skb_cache_put warning (CVE-2024-43835)
     - Bluetooth: SCO: Fix possible circular locking dependency on
       sco_connect_cfm
     - Bluetooth: SCO: fix sco_conn related locking and validity issues
     - ext4: fix inode tree inconsistency caused by ENOMEM
     - udf: Limit file size to 4TB
     - ext4: reject casefold inode flag without casefold feature
     - ext4: handle redirtying in ext4_bio_write_page()
     - i2c: Use IS_REACHABLE() for substituting empty ACPI functions
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.110
     - sch/netem: fix use after free in netem_dequeue
     - ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object
     - [x86] KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS
     - [x86] KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and
       MSR_GS_BASE
     - [x86] KVM: SVM: Don't advertise Bus Lock Detect to guest if SVM support is
       missing
     - ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius
       devices
     - ALSA: hda/realtek: add patch for internal mic in Lenovo V145
     - ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx
     - ksmbd: unset the binding mark of a reused connection
     - ksmbd: Unlock on in ksmbd_tcp_set_interfaces()
     - ata: libata: Fix memory leak for error path in ata_host_alloc()
     - [x86] tdx: Fix data leak in mmio_read()
     - [x86] perf/x86/intel: Limit the period on Haswell
     - [arm64,armhf] irqchip/gic-v2m: Fix refcount leak in gicv2m_of_init()
     - [x86] kaslr: Expose and use the end of the physical memory address space
     - rtmutex: Drop rt_mutex::wait_lock before scheduling
     - nvme-pci: Add sleep quirk for Samsung 990 Evo
     - Revert "Bluetooth: MGMT/SMP: Fix address type when using SMP over
       BREDR/LE"
     - Bluetooth: MGMT: Ignore keys being loaded with invalid type
     - mmc: core: apply SD quirks earlier during probe
     - mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K
     - mmc: sdhci-of-aspeed: fix module autoloading
     - mmc: cqhci: Fix checking of CQHCI_HALT state
     - fuse: update stats for pages in dropped aux writeback list
     - fuse: use unsigned type for getxattr/listxattr size truncation
     - [arm64] clk: qcom: clk-alpha-pll: Fix the pll post div mask
     - [arm64] clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API
     - can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open
     - spi: rockchip: Resolve unbalanced runtime PM / system PM handling
     - tracing: Avoid possible softlockup in tracing_iter_reset()
     - net: mctp-serial: Fix missing escapes on transmit
     - [x86] fpu: Avoid writing LBR bit to IA32_XSS unless supported
     - Revert "drm/amdgpu: align pp_power_profile_mode with kernel docs"
     - tcp_bpf: fix return value of tcp_bpf_sendmsg()
     - ila: call nf_unregister_net_hooks() sooner
     - sched: sch_cake: fix bulk flow accounting logic for host fairness
     - nilfs2: fix missing cleanup on rollforward recovery error
     - nilfs2: protect references to superblock parameters exposed in sysfs
     - nilfs2: fix state management in error path of log writing function
     - ALSA: control: Apply sanity check of input values for user elements
     - ALSA: hda: Add input value sanity checks to HDMI channel map controls
     - smack: unix sockets: fix accept()ed socket label
     - ELF: fix kernel.randomize_va_space double read
     - [armhf] irqchip/armada-370-xp: Do not allow mapping IRQ 0 and 1
     - af_unix: Remove put_pid()/put_cred() in copy_peercred().
     - [x86] kmsan: Fix hook for unaligned accesses
     - netfilter: nf_conncount: fix wrong variable type
     - udf: Avoid excessive partition lengths
     - media: vivid: fix wrong sizeimage value for mplane
     - leds: spi-byte: Call of_node_put() on error path
     - wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3
     - usb: uas: set host status byte on data completion error
     - usb: gadget: aspeed_udc: validate endpoint index for ast udc
     - drm/amd/display: Check HDCP returned status
     - drm/amdgpu: Fix smatch static checker warning
     - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts
     - media: vivid: don't set HDMI TX controls if there are no HDMI outputs
     - PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0)
     - Input: ili210x - use kvmalloc() to allocate buffer for firmware update
     - media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse
     - pcmcia: Use resource_size function on resource object
     - drm/amd/display: Check denominator pbn_div before used
     - drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6
     - can: bcm: Remove proc entry when dev is unregistered.
     - [arm64] can: m_can: Release irq on error in m_can_open
     - can: mcp251xfd: fix ring configuration when switching from CAN-CC to
       CAN-FD mode
     - cifs: Fix FALLOC_FL_ZERO_RANGE to preflush buffered part of target region
     - igb: Fix not clearing TimeSync interrupts for 82580
     - ice: Add netif_device_attach/detach into PF reset flow
     - [x86] platform/x86: dell-smbios: Fix error path in dell_smbios_init()
     - regulator: Add of_regulator_bulk_get_all
     - regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR
     - igc: Unlock on error in igc_io_resume()
     - ice: Use ice_max_xdp_frame_size() in ice_xdp_setup_prog()
     - ice: allow hot-swapping XDP programs
     - ice: do not bring the VSI up, if it was down before the XDP setup
     - usbnet: modern method to get random MAC
     - bareudp: Fix device stats updates.
     - fou: Fix null-ptr-deref in GRO.
     - net: bridge: br_fdb_external_learn_add(): always set EXT_LEARN
     - net: dsa: vsc73xx: fix possible subblocks range of CAPT block
     - firmware: cs_dsp: Don't allow writes to read-only controls
     - [arm64] phy: zynqmp: Take the phy mutex in xlate
     - [x86] ASoC: topology: Properly initialize soc_enum values
     - dm init: Handle minors larger than 255
     - [amd64] iommu/vt-d: Handle volatile descriptor status read
     - cgroup: Protect css->cgroup write under css_set_lock
     - devres: Initialize an uninitialized struct member
     - pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv
     - [x86] crypto: qat - fix unintentional re-enabling of error interrupts
     - hwmon: (nct6775-core) Fix underflows seen when writing limit attributes
     - hwmon: (w83627ehf) Fix underflows seen when writing limit attributes
     - libbpf: Add NULL checks to bpf_object__{prev_map,next_map}
     - drm/amdgpu: Set no_hw_access when VF request full GPU fails
     - ext4: fix possible tid_t sequence overflows
     - dma-mapping: benchmark: Don't starve others when doing the test
     - wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()
     - smp: Add missing destroy_work_on_stack() call in smp_call_on_cpu()
     - btrfs: replace BUG_ON with ASSERT in walk_down_proc()
     - btrfs: clean up our handling of refs == 0 in snapshot delete
     - btrfs: replace BUG_ON() with error handling at update_ref_for_cow()
     - PCI: Add missing bridge lock to pci_bus_lock()
     - tcp: Don't drop SYN+ACK for simultaneous connect().
     - net: dpaa: avoid on-stack arrays of NR_CPUS elements
     - i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup
     - btrfs: initialize location to fix -Wmaybe-uninitialized in
       btrfs_lookup_dentry()
     - [s390x] vmlinux.lds.S: Move ro_after_init section behind rodata section
     - HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup
     - [amd64] HID: amd_sfh: free driver_data after destroying hid device
     - Input: uinput - reject requests with unreasonable number of slots
     - usbnet: ipheth: race between ipheth_close and error handling
     - Squashfs: sanity check symbolic link size
     - of/irq: Prevent device address out-of-bounds read in interrupt map walk
     - lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()
     - [mips*] cevt-r4k: Don't call get_c0_compare_int if timer irq is installed
     - ata: pata_macio: Use WARN instead of BUG
     - NFSv4: Add missing rescheduling points in
       nfs_client_return_marked_delegations
     - io_uring/io-wq: stop setting PF_NO_SETAFFINITY on io-wq workers
     - io_uring/sqpoll: Do not set PF_NO_SETAFFINITY on sqpoll threads
     - tcp: process the 3rd ACK with sk_socket for TFO/MPTCP
     - iio: buffer-dmaengine: fix releasing dma channel on error
     - iio: fix scale application in iio_convert_raw_to_processed_unlocked
     - iio: adc: ad7124: fix config comparison
     - iio: adc: ad7606: remove frstdata check for serial mode
     - iio: adc: ad7124: fix chip ID mismatch
     - [arm64,armhf] usb: dwc3: core: update LC timer as per USB Spec V3.2
     - [arm*] binder: fix UAF caused by offsets overwrite
     - nvmem: Fix return type of devm_nvmem_device_get() in kerneldoc
     - uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind
     - Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic
     - VMCI: Fix use-after-free when removing resource in vmci_resource_remove()
     - clocksource/drivers/timer-of: Remove percpu irq related code
     - uprobes: Use kzalloc to allocate xol area
     - perf/aux: Fix AUX buffer serialization (CVE-2024-46713)
     - fuse: add "expire only" mode to FUSE_NOTIFY_INVAL_ENTRY
     - fuse: allow non-extending parallel direct writes on the same file
     - fuse: add request extension
     - fuse: fix memory leak in fuse_create_open
     - net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup
     - workqueue: wq_watchdog_touch is always called with valid CPU
     - workqueue: Improve scalability of workqueue watchdog touch
     - ACPI: processor: Return an error if acpi_processor_get_info() fails in
       processor_add()
     - ACPI: processor: Fix memory leaks in error paths of processor_add()
     - [arm64] acpi: Move get_cpu_for_acpi_id() to a header
     - [arm64] acpi: Harden get_cpu_for_acpi_id() against missing CPU entry
     - can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate
       function
     - can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index
       erratum
     - can: mcp251xfd: clarify the meaning of timestamp
     - can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd
     - drm/amd: Add gfx12 swizzle mode defs
     - drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes
     - [powerpc*] 64e: remove unused IBM HTW code
     - [powerpc*] 64e: split out nohash Book3E 64-bit code
     - [powerpc*] 64e: Define mmu_pte_psize static
     - nvmet-tcp: fix kernel crash if commands allocation fails
     - [x86] ASoc: SOF: topology: Clear SOF link platform name upon unload
     - [arm64,armhf] ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode
     - [x86] drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused
     - [x86] drm/i915/fence: Mark debug_fence_free() with __maybe_unused
     - [arm64,armhf] gpio: rockchip: fix OF node leak in probe()
     - [arm64] gpio: modepin: Enable module autoloading
     - [x86] mm: Fix PTI for i386 some more
     - btrfs: fix race between direct IO write and fsync when using same fd
     - bpf: Silence a warning in btf_type_id_size()
     - memcg: protect concurrent access to mem_cgroup_idr (CVE-2024-43892)
     - regulator: of: fix a NULL vs IS_ERR() check in of_regulator_bulk_get_all()
     - fuse: add feature flag for expire-only
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.111
     - ksmbd: override fsids for share path check
     - ksmbd: override fsids for smb2_query_info()
     - usbnet: ipheth: fix carrier detection in modes 1 and 4
     - net: ethernet: use ip_hdrlen() instead of bit shift
     - drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero
     - drm: panel-orientation-quirks: Add quirk for Ayn Loki Max
     - net: phy: vitesse: repair vsc73xx autonegotiation
     - [powerpc*] mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL
     - btrfs: update target inode's ctime on unlink
     - Input: ads7846 - ratelimit the spi_sync error message
     - Input: synaptics - enable SMBus for HP Elitebook 840 G2
     - HID: multitouch: Add support for GT7868Q
     - scripts: kconfig: merge_config: config files: add a trailing newline
     - [x86] platform/surface: aggregator_registry: Add Support for Surface Pro
       10
     - [x86] platform/surface: aggregator_registry: Add support for Surface
       Laptop Go 3
     - [arm64] drm/msm/adreno: Fix error return if missing firmware-name
     - Input: i8042 - add Fujitsu Lifebook E756 to i8042 quirk table
     - smb/server: fix return value of smb2_open()
     - NFSv4: Fix clearing of layout segments in layoutreturn
     - NFS: Avoid unnecessary rescanning of the per-server delegation list
     - [x86] platform/x86: panasonic-laptop: Fix SINF array out of bounds
       accesses
     - [x86] platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf
       array
     - mptcp: pm: Fix uaf in __timer_delete_sync
     - [arm64] dts: rockchip: fix eMMC/SPI corruption when audio has been used on
       RK3399 Puma
     - [arm64] dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399
       Puma
     - net: tighten bad gso csum offset check in virtio_net_hdr
     - dm-integrity: fix a race condition when accessing recalc_sector
     - mm: avoid leaving partial pfn mappings around in error case
     - pmdomain: ti: Add a null pointer check to the omap_prm_domain_init
       (CVE-2024-35943)
     - [arm64] dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E
     - eeprom: digsy_mtc: Fix 93xx46 driver probe failure
     - cxl/core: Fix incorrect vendor debug UUID define
     - [armhf] hwmon: (pmbus) Conditionally clear individual status bits for
       pmbus rev >= 1.2
     - ice: fix accounting for filters shared by multiple VSIs
     - igb: Always call igb_xdp_ring_update_tail() under Tx lock
     - net/mlx5: Update the list of the PCI supported devices
     - net/mlx5e: Add missing link modes to ptys2ethtool_map
     - net/mlx5: Explicitly set scheduling element and TSAR type
     - net/mlx5: Add missing masks and QoS bit masks for scheduling elements
     - net/mlx5: Correct TASR typo into TSAR
     - net/mlx5: Verify support for scheduling element and TSAR type
     - net/mlx5: Fix bridge mode operations when there are no VFs
     - fou: fix initialization of grc
     - netfilter: nft_socket: fix sk refcount leaks
     - net: dpaa: Pad packets to ETH_ZLEN
     - [arm64] spi: nxp-fspi: fix the KASAN report out-of-bounds bug
     - soundwire: stream: Revert "soundwire: stream: fix programming slave ports
       for non-continous port maps"
     - dma-buf: heaps: Fix off-by-one in CMA heap fault handler
     - drm/amdgpu/atomfirmware: Silence UBSAN warning
     - [x86] drm/i915/guc: prevent a possible int overflow in wq offsets
     - pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID
     - [arm64] ASoC: meson: axg-card: fix 'use-after-free'
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.112
     - ALSA: hda/realtek - Fixed ALC256 headphone no sound
     - ALSA: hda/realtek - FIxed ALC285 headphone no sound
     - scsi: lpfc: Fix overflow build issue
     - [x86] hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING
     - [armhf] net: ftgmac100: Ensure tx descriptor updates are visible
     - wifi: iwlwifi: lower message level for FW buffer destination
     - wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation
     - wifi: iwlwifi: mvm: pause TCM when the firmware is stopped
     - wifi: iwlwifi: mvm: don't wait for tx queues if firmware is dead
     - wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap()
     - wifi: iwlwifi: clear trans->state earlier upon error
     - can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration
     - [x86] ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match
       less strict
     - [x86] ASoC: intel: fix module autoloading
     - spi: spidev: Add an entry for elgin,jg10309-01
     - spi: bcm63xx: Enable module autoloading
     - smb: client: fix hang in wait_for_response() for negproto
     - [x86] hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides
       frequency
     - tools: hv: rm .*.cmd when make clean
     - block: Fix where bio IO priority gets set
     - spi: spidev: Add missing spi_device_id for jg10309-01
     - ocfs2: add bounds checking to ocfs2_xattr_find_entry()
     - ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()
       (CVE-2024-41016)
     - xfs: dquot shrinker doesn't check for XFS_DQFLAG_FREEING
     - xfs: Fix deadlock on xfs_inodegc_worker
     - xfs: fix extent busy updating
     - xfs: don't use BMBT btree split workers for IO completion
     - xfs: fix low space alloc deadlock
     - xfs: prefer free inodes at ENOSPC over chunk allocation
     - xfs: block reservation too large for minleft allocation
     - xfs: fix uninitialized variable access
     - xfs: quotacheck failure can race with background inode inactivation
     - xfs: fix BUG_ON in xfs_getbmap()
     - xfs: buffer pins need to hold a buffer reference
     - xfs: defered work could create precommits
     - xfs: fix AGF vs inode cluster buffer deadlock
     - xfs: collect errors from inodegc for unlinked inode recovery
     - xfs: fix ag count overflow during growfs
     - xfs: remove WARN when dquot cache insertion fails
     - xfs: fix the calculation for "end" and "length"
     - xfs: load uncached unlinked inodes into memory on demand
     - xfs: fix negative array access in xfs_getbmap
     - xfs: fix unlink vs cluster buffer instantiation race
     - xfs: correct calculation for agend and blockcount
     - xfs: use i_prev_unlinked to distinguish inodes that are not on the
       unlinked list
     - xfs: reload entire unlinked bucket lists
     - xfs: make inode unlinked bucket recovery work with quotacheck
     - xfs: fix reloading entire unlinked bucket lists
     - xfs: set bnobt/cntbt numrecs correctly when formatting new AGs
     - xfs: journal geometry is not properly bounds checked
     - netfilter: nft_socket: make cgroupsv2 matching work with namespaces
     - netfilter: nft_socket: Fix a NULL vs IS_ERR() bug in
       nft_socket_cgroup_subtree_level()
     - netfilter: nft_set_pipapo: walk over current view on netlink dump
       (CVE-2024-27017)
     - netfilter: nf_tables: missing iterator type in lookup walk
     - Revert "wifi: cfg80211: check wiphy mutex is held for wdev mutex"
     - gpiolib: cdev: Ignore reconfiguration without direction
     - gpio: prevent potential speculation leaks in gpio_device_get_desc()
       (CVE-2024-44931)
     - can: mcp251xfd: properly indent labels
     - can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into
       mcp251xfd_chip_start/stop()
     - btrfs: calculate the right space for delayed refs when updating global
       reserve
     - [x86] powercap: RAPL: fix invalid initialization for pl4_supported field
     - [x86] mm: Switch to new Intel CPU model defines
     - USB: serial: pl2303: add device id for Macrosilicon MS3020
     - USB: usbtmc: prevent kernel-usb-infoleak
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 26
   * [rt] Update to 6.1.107-rt39
   * [rt] Update to 6.1.111-rt42

linux-signed-amd64 (6.1.115+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.115-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.113
     - wifi: rtw88: always wait for both firmware loading attempts
       (CVE-2024-47718)
     - crypto: xor - fix template benchmarking
     - ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe()
     - wifi: ath9k: fix parameter check in ath9k_init_debug()
     - wifi: ath9k: Remove error checks when creating debugfs entries
     - wifi: rtw88: remove CPT execution branch never used
     - fs/namespace: fnic: Switch to use %ptTd
     - mount: handle OOM on mnt_warn_timestamp_expiry
     - drivers/perf: Fix ali_drw_pmu driver interrupt status clearing
       (CVE-2024-47731)
     - wifi: mac80211: don't use rate mask for offchannel TX either
       (CVE-2024-47738)
     - wifi: iwlwifi: mvm: increase the time between ranging measurements
     - ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE
     - ACPICA: executer/exsystem: Don't nag user about every Stall() violating
       the spec
     - padata: Honor the caller's alignment in case of chunk_size 0
     - drivers/perf: hisi_pcie: Record hardware counts correctly
     - can: j1939: use correct function name in comment
     - ACPI: CPPC: Fix MASK_VAL() usage
     - netfilter: nf_tables: elements with timeout below CONFIG_HZ never expire
     - netfilter: nf_tables: reject element expiration with no timeout
     - netfilter: nf_tables: reject expiration higher than timeout
     - netfilter: nf_tables: remove annotation to access set timeout while
       holding lock
     - [arm64] perf/arm-cmn: Rework DTC counters (again)
     - [arm64] perf/arm-cmn: Improve debugfs pretty-printing for large configs
     - [arm64] perf/arm-cmn: Refactor node ID handling. Again.
     - [arm64] perf/arm-cmn: Ensure dtm_idx is big enough
     - cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately
     - [x86] sgx: Fix deadlock in SGX NUMA node search (CVE-2024-49856)
     - crypto: hisilicon/hpre - enable sva error interrupt event
     - crypto: hisilicon/hpre - mask cluster timeout error
     - crypto: hisilicon/qm - fix coding style issues
     - crypto: hisilicon/qm - reset device before enabling it
     - crypto: hisilicon/qm - inject error before stopping queue (CVE-2024-47730)
     - wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan()
     - wifi: mt76: mt7915: fix rx filter setting for bfee functionality
     - wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors
     - wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()
       (CVE-2024-47713)
     - wifi: wilc1000: fix potential RCU dereference issue in
       wilc_parse_join_bss_param (CVE-2024-47712)
     - Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED
     - Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL
     - sock_map: Add a cond_resched() in sock_hash_free()
     - can: bcm: Clear bo->bcm_proc_read after remove_proc_entry().
       (CVE-2024-47709)
     - can: m_can: Remove repeated check for is_peripheral
     - can: m_can: enable NAPI before enabling interrupts
     - can: m_can: m_can_close(): stop clocks after device has been shut down
     - Bluetooth: btusb: Fix not handling ZPL/short-transfer
     - bareudp: Pull inner IP header in bareudp_udp_encap_recv().
     - bareudp: Pull inner IP header on xmit.
     - net: enetc: Use IRQF_NO_AUTOEN flag in request_irq()
     - r8169: disable ALDPS per default for RTL8125
     - net: ipv6: rpl_iptunnel: Fix memory leak in rpl_input
     - net: tipc: avoid possible garbage value
     - ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()
       (CVE-2024-47707)
     - nbd: fix race between timeout and normal completion (CVE-2024-49855)
     - block, bfq: fix possible UAF for bfqq->bic with merge chain
       (CVE-2024-47706)
     - block, bfq: choose the last bfqq from merge chain in
       bfq_setup_cooperator()
     - block, bfq: don't break merge chain in bfq_split_bfqq()
     - block: print symbolic error name instead of error code
     - block: fix potential invalid pointer dereference in blk_add_partition
       (CVE-2024-47705)
     - spi: ppc4xx: handle irq_of_parse_and_map() errors
     - [arm64] dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB
     - firmware: arm_scmi: Fix double free in OPTEE transport (CVE-2024-49853)
     - spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ
     - regulator: Return actual error in of_regulator_bulk_get_all()
     - [arm64] dts: renesas: r9a07g043u: Correct GICD and GICR sizes
     - [arm64] dts: renesas: r9a07g054: Correct GICD and GICR sizes
     - [arm64] dts: renesas: r9a07g044: Correct GICD and GICR sizes
     - [arm64] dts: ti: k3-j721e-sk: Fix reversed C6x carveout locations
     - reset: berlin: fix OF node leak in probe() error path
     - reset: k210: fix OF node leak in probe() error path
     - clocksource/drivers/qcom: Add missing iounmap() on errors in
       msm_dt_timer_init()
     - ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error
     - ALSA: hda: cs35l41: fix module autoloading
     - hwmon: (max16065) Fix overflows seen when writing limits
     - i2c: Add i2c_get_match_data()
     - hwmon: (max16065) Remove use of i2c_match_id()
     - hwmon: (max16065) Fix alarm attributes
     - mtd: slram: insert break after errors in parsing the map
     - hwmon: (ntc_thermistor) fix module autoloading
     - power: supply: axp20x_battery: Remove design from min and max voltage
     - power: supply: max17042_battery: Fix SOC threshold calc w/ no current
       sense
     - fbdev: hpfb: Fix an error handling path in hpfb_dio_probe()
     - [amd64] iommu/amd: Do not set the D bit on AMD v2 table entries
     - mtd: powernv: Add check devm_kasprintf() returned value
     - rcu/nocb: Fix RT throttling hrtimer armed from offline CPU
     - mtd: rawnand: mtk: Use for_each_child_of_node_scoped()
     - mtd: rawnand: mtk: Factorize out the logic cleaning mtk chips
     - mtd: rawnand: mtk: Fix init error path
     - pmdomain: core: Harden inter-column space in debug summary
     - drm/stm: Fix an error handling path in stm_drm_platform_probe()
     - drm/stm: ltdc: check memory returned by devm_kzalloc()
     - drm/amd/display: Add null check for set_output_gamma in
       dcn30_set_output_transfer_func (CVE-2024-47720)
     - drm/amdgpu: Replace one-element array with flexible-array member
     - drm/amdgpu: properly handle vbios fake edid sizing
     - drm/radeon: Replace one-element array with flexible-array member
     - drm/radeon: properly handle vbios fake edid sizing
     - scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly
     - scsi: NCR5380: Check for phase match during PDMA fixup
     - drm/amd/amdgpu: Properly tune the size of struct
     - drm/rockchip: vop: Allow 4096px width scaling
     - drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode
     - drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets
     - drm/bridge: lontium-lt8912b: Validate mode in
       drm_bridge_funcs::mode_valid()
     - drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get
     - scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()
       (CVE-2024-49852)
     - jfs: fix out-of-bounds in dbNextAG() and diAlloc()
     - drm/mediatek: Fix missing configuration flags in mtk_crtc_ddp_config()
     - drm/mediatek: Use spin_lock_irqsave() for CRTC event lock
     - [powerpc*] 8xx: Fix initial memory mapping
     - [powerpc*] 8xx: Fix kernel vs user address comparison
     - drm/msm: Fix incorrect file name output in adreno_request_fw()
     - drm/msm/a5xx: disable preemption in submits by default
     - drm/msm/a5xx: properly clear preemption records on resume
     - drm/msm/a5xx: fix races in preemption evaluation stage
     - drm/msm/a5xx: workaround early ring-buffer emptiness check
     - ipmi: docs: don't advertise deprecated sysfs entries
     - drm/msm: fix %s null argument error
     - drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind()
     - xen: use correct end address of kernel for conflict checking
     - HID: wacom: Support sequence numbers smaller than 16-bit
     - HID: wacom: Do not warn about dropped packets for first packet
     - xen/swiotlb: add alignment check for dma buffers
     - xen/swiotlb: fix allocated size
     - tpm: Clean up TPM space after command failure (CVE-2024-49851)
     - bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos
       (CVE-2024-49850)
     - xz: cleanup CRC32 edits from 2018
     - kthread: fix task state in kthread worker if being frozen
     - ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard
     - smackfs: Use rcu_assign_pointer() to ensure safe assignment in
       smk_set_cipso
     - ext4: avoid buffer_head leak in ext4_mark_inode_used()
     - ext4: avoid potential buffer_head leak in __ext4_new_inode()
     - ext4: avoid negative min_clusters in find_group_orlov()
     - ext4: return error on ext4_find_inline_entry
     - ext4: avoid OOB when system.data xattr changes underneath the filesystem
       (CVE-2024-47701)
     - nilfs2: fix potential null-ptr-deref in nilfs_btree_insert()
       (CVE-2024-47699)
     - nilfs2: determine empty node blocks as corrupted
     - nilfs2: fix potential oob read in nilfs_btree_check_delete()
       (CVE-2024-47757)
     - bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit
     - bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types
     - bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error
       (CVE-2024-47728)
     - perf mem: Free the allocated sort string, fixing a leak
     - perf inject: Fix leader sampling inserting additional samples
     - perf sched timehist: Fix missing free of session in perf_sched__timehist()
     - perf stat: Display iostat headers correctly
     - perf sched timehist: Fixed timestamp error when unable to confirm event
       sched_in time
     - perf time-utils: Fix 32-bit nsec parsing
     - clk: imx: composite-8m: Less function calls in __imx8m_clk_hw_composite()
       after error detection
     - clk: imx: composite-8m: Enable gate clk with mcore_booted
     - clk: imx: composite-7ulp: Check the PCC present bit
     - clk: imx: fracn-gppll: support integer pll
     - clk: imx: fracn-gppll: fix fractional part of PLL getting lost
     - clk: imx: imx8mp: fix clock tree update of TF-A managed clocks
     - clk: imx: imx8qxp: Register dc0_bypass0_clk before disp clk
     - clk: imx: imx8qxp: Parent should be initialized earlier than the clock
     - remoteproc: imx_rproc: Correct ddr alias for i.MX8M
     - remoteproc: imx_rproc: Initialize workqueue earlier
     - clk: rockchip: Set parent rate for DCLK_VOP clock on RK3228
     - Input: ilitek_ts_i2c - avoid wrong input subsystem sync
     - Input: ilitek_ts_i2c - add report id message validation
     - drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error
       (CVE-2024-47698)
     - drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error
       (CVE-2024-47697)
     - PCI/PM: Increase wait time after resume
     - PCI/PM: Drop pci_bridge_wait_for_secondary_bus() timeout parameter
     - PCI: Wait for Link before restoring Downstream Buses
     - PCI: keystone: Fix if-statement expression in ks_pcie_quirk()
       (CVE-2024-47756)
     - clk: qcom: dispcc-sm8250: use special function for Lucid 5LPE PLL
     - nvdimm: Fix devs leaks in scan_labels()
     - PCI: xilinx-nwl: Fix register misspelling
     - PCI: xilinx-nwl: Clean up clock on probe failure/removal
     - RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency
       (CVE-2024-47696)
     - pinctrl: single: fix missing error code in pcs_probe()
     - RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer
     - RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (CVE-2024-47695)
     - clk: ti: dra7-atl: Fix leak of of_nodes
     - nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire
     - nfsd: fix refcount leak when file is unhashed after being found
     - pinctrl: mvebu: Use devm_platform_get_and_ioremap_resource()
     - pinctrl: mvebu: Fix devinit_dove_pinctrl_probe function
     - IB/core: Fix ib_cache_setup_one error flow cleanup (CVE-2024-47693)
     - PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port()
       (CVE-2024-47751)
     - RDMA/erdma: Return QP state in erdma_query_qp
     - watchdog: imx_sc_wdt: Don't disable WDT in suspend
     - [arm64] RDMA/hns: Don't modify rq next block addr in HIP09 QPC
     - [arm64] RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (CVE-2024-47750)
     - [arm64] RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range()
     - [arm64] RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled
     - [arm64] RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler
     - [arm64] RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS
     - [arm64] RDMA/hns: Optimize hem allocation performance
     - RDMA/cxgb4: Added NULL check for lookup_atid (CVE-2024-47749)
     - RDMA/irdma: fix error message in irdma_modify_qp_roce()
     - ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir()
     - ntb_perf: Fix printk format
     - ntb: Force physically contiguous allocation of rx ring buffers
     - nfsd: call cache_put if xdr_reserve_space returns NULL (CVE-2024-47737)
     - nfsd: return -EINVAL when namelen is 0 (CVE-2024-47692)
     - f2fs: fix to update i_ctime in __f2fs_setxattr()
     - f2fs: remove unneeded check condition in __f2fs_setxattr()
     - f2fs: reduce expensive checkpoint trigger frequency
     - f2fs: factor the read/write tracing logic into a helper
     - f2fs: fix to avoid racing in between read and OPU dio write
     - f2fs: fix to wait page writeback before setting gcing flag
     - f2fs: atomic: fix to truncate pagecache before on-disk metadata truncation
     - f2fs: clean up w/ dotdot_name
     - f2fs: get rid of online repaire on corrupted directory (CVE-2024-47690)
     - spi: atmel-quadspi: Undo runtime PM changes at driver exit time
     - spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time
     - lib/sbitmap: define swap_lock as raw_spinlock_t
     - nvme-multipath: system fails to create generic nvme device
     - iio: adc: ad7606: fix oversampling gpio array
     - iio: adc: ad7606: fix standby gpio state to match the documentation
     - ABI: testing: fix admv8818 attr description
     - iio: chemical: bme680: Fix read/write ops to device by adding mutexes
     - iio: magnetometer: ak8975: Convert enum->pointer for data in the match
       tables
     - iio: magnetometer: ak8975: drop incorrect AK09116 compatible
     - dt-bindings: iio: asahi-kasei,ak8975: drop incorrect AK09116 compatible
     - coresight: tmc: sg: Do not leak sg_table
     - cxl/pci: Break out range register decoding from cxl_hdm_decode_init()
     - cxl/pci: Fix to record only non-zero ranges
     - vdpa: Add eventfd for the vdpa callback
     - vhost_vdpa: assign irq bypass producer token correctly (CVE-2024-47748)
     - ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (CVE-2024-47686)
     - Revert "dm: requeue IO if mapping table not yet available"
     - net: xilinx: axienet: Schedule NAPI in two steps
     - net: xilinx: axienet: Fix packet counting
     - netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (CVE-2024-47685)
     - net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race
       Condition (CVE-2024-47747)
     - net: ipv6: select DST_CACHE from IPV6_RPL_LWTUNNEL
     - tcp: check skb is non-NULL in tcp_rto_delta_us() (CVE-2024-47684)
     - net: qrtr: Update packets cloning when broadcasting
     - bonding: Fix unnecessary warnings and logs from bond_xdp_get_xmit_slave()
       (CVE-2024-47734)
     - net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled
     - netfilter: nf_tables: Keep deleted flowtable hooks until after RCU
     - netfilter: ctnetlink: compile ctnetlink_label_size with
       CONFIG_NF_CONNTRACK_EVENTS
     - io_uring/sqpoll: do not allow pinning outside of cpuset
     - drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination
     - io_uring/io-wq: do not allow pinning outside of cpuset
     - io_uring/io-wq: inherit cpuset of cgroup in io worker
     - vfio/pci: fix potential memory leak in vfio_intx_enable() (CVE-2024-38632)
     - selinux,smack: don't bypass permissions check in inode_setsecctx hook
       (CVE-2024-46695)
     - drm/vmwgfx: Prevent unmapping active read buffers (CVE-2024-46710)
     - io_uring/sqpoll: retain test for whether the CPU is valid
     - io_uring/sqpoll: do not put cpumask on stack
     - Remove *.orig pattern from .gitignore
     - PCI: imx6: Fix missing call to phy_power_off() in error handling
     - PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler
     - ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error
     - soc: versatile: integrator: fix OF node leak in probe() error path
     - Revert "media: tuners: fix error return code of
       hybrid_tuner_request_state()"
     - Input: adp5588-keys - fix check on return code
     - Input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table
     - Input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table
     - Input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line
     - [x86] KVM: x86: Enforce x2APIC's must-be-zero reserved ICR bits
     - [x86] KVM: x86: Move x2APIC ICR helper above kvm_apic_write_nodecode()
     - drm/amd/display: Skip Recompute DSC Params if no Stream on Link
       (CVE-2024-47683)
     - drm/amd/display: Round calculated vtotal
     - drm/amd/display: Validate backlight caps are sane
     - KEYS: prevent NULL pointer dereference in find_asymmetric_key()
       (CVE-2024-47743)
     - fs: Create a generic is_dot_dotdot() utility
     - ksmbd: make __dir_empty() compatible with POSIX
     - ksmbd: allow write with FILE_APPEND_DATA
     - ksmbd: handle caseless file creation
     - scsi: sd: Fix off-by-one error in sd_read_block_characteristics()
       (CVE-2024-47682)
     - scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages
     - scsi: mac_scsi: Refactor polling loop
     - scsi: mac_scsi: Disallow bus errors during PDMA send
     - usbnet: fix cyclical race on disconnect with work queue
     - [arm64] dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled
     - USB: appledisplay: close race between probe and completion handler
     - USB: misc: cypress_cy7c63: check for short transfer
     - USB: class: CDC-ACM: fix race between get_serial and set_serial
     - usb: cdnsp: Fix incorrect usb_request status
     - usb: dwc2: drd: fix clock gating on USB role switch
     - bus: integrator-lm: fix OF node leak in probe()
     - bus: mhi: host: pci_generic: Fix the name for the Telit FE990A
     - firmware_loader: Block path traversal (CVE-2024-47742)
     - tty: rp2: Fix reset with non forgiving PCIe host bridges
     - xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them.
     - crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure
     - drbd: Fix atomicity violation in drbd_uuid_set_bm()
     - drbd: Add NULL check for net_conf to prevent dereference in state
       validation
     - ACPI: sysfs: validate return type of _STR method (CVE-2024-49860)
     - ACPI: resource: Add another DMI match for the TongFang GMxXGxx
     - efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption
       (CVE-2024-49858)
     - perf/x86/intel/pt: Fix sampling synchronization
     - wifi: rtw88: 8822c: Fix reported RX band width
     - wifi: mt76: mt7615: check devm_kasprintf() returned value
     - debugobjects: Fix conditions in fill_pool()
     - f2fs: fix several potential integer overflows in file offsets
     - f2fs: prevent possible int overflow in dir_block_index()
     - f2fs: avoid potential int overflow in sanity_check_area_boundary()
     - f2fs: fix to check atomic_file in f2fs ioctl interfaces (CVE-2024-49859)
     - hwrng: mtk - Use devm_pm_runtime_enable
     - hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init
     - hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume
     - [arm64] dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency
     - [arm64] dts: rockchip: Correct the Pinebook Pro battery design capacity
     - vfs: fix race between evice_inodes() and find_inode()&iput()
     - fs: Fix file_set_fowner LSM hook inconsistencies
     - nfs: fix memory leak in error path of nfs4_do_reclaim
     - EDAC/igen6: Fix conversion of system address to physical memory address
     - padata: use integer wrap around to prevent deadlock on seq_nr overflow
       (CVE-2024-47739)
     - soc: versatile: realview: fix memory leak during device remove
     - soc: versatile: realview: fix soc_dev leak during device remove
     - [powerpc*] 64: Option to build big-endian with ELFv2 ABI
     - [powerpc*] 64: Add support to build with prefixed instructions
     - [powerpc*] atomic: Use YZ constraints for DS-form instructions
     - usb: yurex: Replace snprintf() with the safer scnprintf() variant
     - USB: misc: yurex: fix race between read and write
     - xhci: fix event ring segment table related masks and variables in header
     - xhci: remove xhci_test_trb_in_td_math early development check
     - xhci: Refactor interrupter code for initial multi interrupter support.
     - xhci: Preserve RsvdP bits in ERSTBA register correctly
     - xhci: Add a quirk for writing ERST in high-low order
     - usb: xhci: fix loss of data on Cadence xHC
     - pps: remove usage of the deprecated ida_simple_xx() API
     - pps: add an error check in parport_attach
     - [x86] idtentry: Incorporate definitions/declarations of the FRED entries
     - [x86] entry: Remove unwanted instrumentation in common_interrupt()
     - mm/filemap: return early if failed to allocate memory for split
     - lib/xarray: introduce a new helper xas_get_order
     - mm/filemap: optimize filemap folio adding
     - icmp: Add counters for rate limits
     - icmp: change the order of rate limits (CVE-2024-47678)
     - bpf: lsm: Set bpf_lsm_blob_sizes.lbs_task to 0
     - lockdep: fix deadlock issue between lockdep and rcu
     - mm: only enforce minimum stack gap size if it's sensible
     - module: Fix KCOV-ignored file name
     - mm/damon/vaddr: protect vma traversal in __damon_va_thre_regions() with
       rcu read lock
     - i2c: aspeed: Update the stop sw state when the bus recovery occurs
     - i2c: isch: Add missed 'else'
     - usb: yurex: Fix inconsistent locking bug in yurex_read()
     - perf/arm-cmn: Fail DTC counter allocation correctly
     - iio: magnetometer: ak8975: Fix 'Unexpected device' error
     - [powerpc*] Allow CONFIG_PPC64_BIG_ENDIAN_ELF_ABI_V2 with ld.lld 15+
     - PCI/PM: Mark devices disconnected if upstream PCIe link is down on resume
     - [x86*] tdx: Fix "in-kernel MMIO" check (CVE-2024-47727)
     - static_call: Handle module init failure correctly in
       static_call_del_module() (CVE-2024-50002)
     - static_call: Replace pointless WARN_ON() in static_call_module_notify()
     - jump_label: Simplify and clarify static_key_fast_inc_cpus_locked()
     - jump_label: Fix static_key_slow_dec() yet again
     - scsi: pm8001: Do not overwrite PCI queue mapping
     - mailbox: rockchip: fix a typo in module autoloading
     - mailbox: bcm2835: Fix timeout during suspend mode (CVE-2024-49963)
     - ceph: remove the incorrect Fw reference check when dirtying pages
     - ieee802154: Fix build error
     - net: sparx5: Fix invalid timestamps
     - net/mlx5: Fix error path in multi-packet WQE transmit (CVE-2024-50001)
     - net/mlx5: Added cond_resched() to crdump collection
     - net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (CVE-2024-50000)
     - netfilter: uapi: NFTA_FLOWTABLE_HOOK is NLA_NESTED
     - net: ieee802154: mcr20a: Use IRQF_NO_AUTOEN flag in request_irq()
     - net: wwan: qcom_bam_dmux: Fix missing pm_runtime_disable()
     - netfilter: nf_tables: prevent nf_skb_duplicated corruption
       (CVE-2024-49952)
     - Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq()
     - net: ethernet: lantiq_etop: fix memory disclosure (CVE-2024-49997)
     - net: avoid potential underflow in qdisc_pkt_len_init() with UFO
     - net: add more sanity checks to qdisc_pkt_len_init() (CVE-2024-49948)
     - net: stmmac: dwmac4: extend timeout for VLAN Tag register busy bit check
     - ipv4: ip_gre: Fix drops of small packets in ipgre_xmit
     - ppp: do not assume bh is held in ppp_channel_bridge_input()
       (CVE-2024-49946)
     - fsdax,xfs: port unshare to fsdax
     - iomap: constrain the file range passed to iomap_file_unshare
     - sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start
       (CVE-2024-49944)
     - i2c: xiic: improve error message when transfer fails to start
     - i2c: xiic: Try re-initialization on bus busy timeout
     - loop: don't set QUEUE_FLAG_NOMERGES
     - Bluetooth: hci_sock: Fix not validating setsockopt user input
       (CVE-2024-35963)
     - media: usbtv: Remove useless locks in usbtv_video_free() (CVE-2024-27072)
     - ASoC: atmel: mchp-pdmc: Skip ALSA restoration if substream runtime is
       uninitialized
     - ALSA: mixer_oss: Remove some incorrect kfree_const() usages
     - ALSA: hda/realtek: Fix the push button function for the ALC257
     - ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs
     - ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m
     - ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin
     - f2fs: Require FMODE_WRITE for atomic write ioctls (CVE-2024-47740)
     - wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats()
     - wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit
     - ice: Adjust over allocation of memory in ice_sched_add_root_node() and
       ice_sched_add_node()
     - wifi: iwlwifi: mvm: Fix a race in scan abort flow
     - wifi: cfg80211: Set correct chandef when starting CAC (CVE-2024-49937)
     - net/xen-netback: prevent UAF in xenvif_flush_hash() (CVE-2024-49936)
     - net: hisilicon: hip04: fix OF node leak in probe()
     - net: hisilicon: hns_dsaf_mac: fix OF node leak in hns_mac_get_info()
     - net: hisilicon: hns_mdio: fix OF node leak in probe()
     - ACPI: PAD: fix crash in exit_round_robin() (CVE-2024-49935)
     - ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails
     - ACPICA: Fix memory leak if acpi_ps_get_next_field() fails
     - wifi: mt76: mt7915: disable tx worker during tx BA session enable/disable
     - net: sched: consistently use rcu_replace_pointer() in taprio_change()
     - Bluetooth: btusb: Add Realtek RTL8852C support ID 0x0489:0xe122
     - ACPI: video: Add force_vendor quirk for Panasonic Toughbook CF-18
     - blk_iocost: fix more out of bound shifts (CVE-2024-49933)
     - nvme-pci: qdepth 1 quirk
     - wifi: ath11k: fix array out-of-bound access in SoC stats (CVE-2024-49930)
     - wifi: rtw88: select WANT_DEV_COREDUMP
     - ACPI: EC: Do not release locks during operation region accesses
     - ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in
       acpi_db_convert_to_package()
     - tipc: guard against string buffer overrun (CVE-2024-49995)
     - net: mvpp2: Increase size of queue_name buffer
     - bnxt_en: Extend maximum length of version string by 1 byte
     - ipv4: Check !in_dev earlier for ioctl(SIOCSIFADDR).
     - wifi: rtw89: correct base HT rate mask for firmware
     - ipv4: Mask upper DSCP bits and ECN bits in NETLINK_FIB_LOOKUP family
     - net: atlantic: Avoid warning about potential string truncation
     - crypto: simd - Do not call crypto_alloc_tfm during registration
     - tcp: avoid reusing FIN_WAIT2 when trying to find port in connect() process
     - wifi: mac80211: fix RCU list iterations
     - ACPICA: iasl: handle empty connection_node
     - proc: add config & param to block forcing mem writes
     - wifi: mt76: mt7915: hold dev->mt76.mutex while disabling tx worker
     - wifi: mwifiex: Fix memcpy() field-spanning write warning in
       mwifiex_cmd_802_11_scan_ext()
     - nfp: Use IRQF_NO_AUTOEN flag in request_irq()
     - ALSA: usb-audio: Add input value sanity checks for standard types
     - [x86] ioapic: Handle allocation failures gracefully (CVE-2024-49927)
     - ALSA: usb-audio: Define macros for quirk table entries
     - ALSA: usb-audio: Replace complex quirk lines with macros
     - ALSA: usb-audio: Add logitech Audio profile quirk
     - ASoC: codecs: wsa883x: Handle reading version failure
     - [x86] kexec: Add EFI config table identity mapping for kexec kernel
     - ALSA: asihpi: Fix potential OOB array access (CVE-2024-50007)
     - ALSA: hdsp: Break infinite MIDI input flush loop
     - [x86] syscall: Avoid memcpy() for ia32 syscall_get_arguments()
     - fbdev: pxafb: Fix possible use after free in pxafb_task() (CVE-2024-49924)
     - rcuscale: Provide clear error when async specified without primitives
     - [arm64] iommu/arm-smmu-qcom: hide last LPASS SMMU context bank from linux
     - power: reset: brcmstb: Do not go into infinite loop if reset fails
     - [amd64] iommu/vt-d: Always reserve a domain ID for identity setup
     - [amd64] iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0
       count (CVE-2024-49993)
     - drm/stm: Avoid use-after-free issues with crtc and plane (CVE-2024-49992)
     - drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit
     - drm/amd/display: Add null check for top_pipe_to_program in
       commit_planes_for_stream (CVE-2024-49913)
     - ata: pata_serverworks: Do not use the term blacklist
     - ata: sata_sil: Rename sil_blacklist to sil_quirks
     - drm/amd/display: Handle null 'stream_status' in
       'planes_changed_for_existing_stream' (CVE-2024-49912)
     - drm/amd/display: Check null pointers before using dc->clk_mgr
       (CVE-2024-49907)
     - drm/amd/display: Add null check for 'afb' in
       amdgpu_dm_plane_handle_cursor_update (v2)
     - jfs: UBSAN: shift-out-of-bounds in dbFindBits
     - jfs: Fix uaf in dbFreeBits (CVE-2024-49903)
     - jfs: check if leafidx greater than num leaves per dmap tree
       (CVE-2024-49902)
     - scsi: smartpqi: correct stream detection
     - jfs: Fix uninit-value access of new_ea in ea_buffer (CVE-2024-49900)
     - drm/amdgpu: add raven1 gfxoff quirk
     - drm/amdgpu: enable gfxoff quirk on HP 705G4
     - HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio
     - [x86] platform/x86: touchscreen_dmi: add nanote-next quirk
     - drm/stm: ltdc: reset plane transparency after plane disable
     - drm/amd/display: Check stream before comparing them (CVE-2024-49896)
     - drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format
       translation (CVE-2024-49895)
     - drm/amd/display: Fix index out of bounds in degamma hardware format
       translation (CVE-2024-49894)
     - drm/amd/display: Fix index out of bounds in DCN30 color transformation
       (CVE-2024-49969)
     - drm/amd/display: Initialize get_bytes_per_element's default to 1
       (CVE-2024-49892)
     - drm/printer: Allow NULL data in devcoredump printer
     - [x86] perf,x86: avoid missing caller address in stack traces captured in
       uprobe
     - scsi: aacraid: Rearrange order of struct aac_srb_unit
     - scsi: lpfc: Update PRLO handling in direct attached topology
     - drm/amdgpu: fix unchecked return value warning for amdgpu_gfx
     - scsi: NCR5380: Initialize buffer for MSG IN and STATUS transfers
     - drm/radeon/r100: Handle unknown family in r100_cp_init_microcode()
     - drm/amd/pm: ensure the fw_info is not null before using it
       (CVE-2024-49890)
     - of/irq: Refer to actual buffer size in of_irq_parse_one()
     - [powerpc*] pseries: Use correct data types from pseries_hp_errorlog struct
     - ext4: ext4_search_dir should return a proper error
     - ext4: avoid use-after-free in ext4_ext_show_leaf() (CVE-2024-49889)
     - ext4: fix i_data_sem unlock order in ext4_ind_migrate() (CVE-2024-50006)
     - iomap: handle a post-direct I/O invalidate race in
       iomap_write_delalloc_release
     - blk-integrity: use sysfs_emit
     - blk-integrity: convert to struct device_attribute
     - blk-integrity: register sysfs attributes on struct device
     - spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled
     - spi: s3c64xx: fix timeout counters in flush_fifo
     - [powerpc*] vdso: Fix VDSO data access when running in a non-root time
       namespace
     - Revert "ALSA: hda: Conditionally use snooping for AMD HDMI"
       (Closes: #1081833)
     - [x86] platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug
       (CVE-2024-49886)
     - i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume
       (CVE-2024-49985)
     - i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq()
     - i2c: xiic: Wait for TX empty to avoid missed TX NAKs
     - media: i2c: ar0521: Use cansleep version of gpiod_set_value()
       (CVE-2024-49961)
     - firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp()
     - spi: bcm63xx: Fix module autoloading
     - power: supply: hwmon: Fix missing temp1_max_alarm attribute
     - perf/core: Fix small negative period being ignored
     - drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS
     - ALSA: core: add isascii() check to card ID generator
     - ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET
     - ALSA: usb-audio: Add native DSD support for Luxman D-08u
     - ALSA: line6: add hw monitor volume control to POD HD500X
     - ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9
     - ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200
     - ext4: no need to continue when the number of entries is 1 (CVE-2024-49967)
     - ext4: correct encrypted dentry name hash when not casefolded
     - ext4: fix slab-use-after-free in ext4_split_extent_at() (CVE-2024-49884)
     - ext4: propagate errors from ext4_find_extent() in ext4_insert_range()
     - ext4: fix incorrect tid assumption in ext4_fc_mark_ineligible()
     - ext4: dax: fix overflowing extents beyond inode size when partially
       writing (CVE-2024-50015)
     - ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space()
     - ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free
     - ext4: aovid use-after-free in ext4_ext_insert_extent() (CVE-2024-49883)
     - ext4: fix double brelse() the buffer of the extents path
     - ext4: update orig_path in ext4_find_extent() (CVE-2024-49881)
     - ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit()
     - ext4: fix incorrect tid assumption in
       jbd2_journal_shrink_checkpoint_list()
     - ext4: fix fast commit inode enqueueing during a full journal commit
     - ext4: use handle to mark fc as ineligible in __track_dentry_update()
     - ext4: mark fc as ineligible using an handle in ext4_xattr_set()
     - drm/rockchip: vop: clear DMA stop bit on RK3066
     - of/irq: Support #msi-cells=<0> in of_msi_get_domain
     - drm: omapdrm: Add missing check for alloc_ordered_workqueue
       (CVE-2024-49879)
     - resource: fix region_intersects() vs add_memory_driver_managed()
     - jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns
       error
     - jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit
     - mm: krealloc: consider spare memory for __GFP_ZERO
     - ocfs2: fix the la space leak when unmounting an ocfs2 volume
     - ocfs2: fix uninit-value in ocfs2_get_block()
     - ocfs2: reserve space for inline xattr before attaching reflink tree
       (CVE-2024-49958)
     - ocfs2: cancel dqi_sync_work before freeing oinfo (CVE-2024-49966)
     - ocfs2: remove unreasonable unlock in ocfs2_read_blocks (CVE-2024-49965)
     - ocfs2: fix null-ptr-deref when journal load failed. (CVE-2024-49957)
     - ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate
       (CVE-2024-49877)
     - exfat: fix memory leak in exfat_load_bitmap() (CVE-2024-50013)
     - perf hist: Update hist symbol when updating maps
     - nfsd: fix delegation_blocked() to block correctly for at least 30 seconds
     - nfsd: map the EBADMSG to nfserr_io to avoid warning (CVE-2024-49875)
     - NFSD: Fix NFSv4's PUTPUBFH operation
     - aoe: fix the potential use-after-free problem in more places
       (CVE-2024-49982)
     - clk: rockchip: fix error for unknown clocks
     - remoteproc: k3-r5: Fix error handling when power-up failed
     - clk: qcom: dispcc-sm8250: use CLK_SET_RATE_PARENT for branch clocks
     - media: sun4i_csi: Implement link validate for sun4i_csi subdev
     - clk: qcom: gcc-sm8450: Do not turn off PCIe GDSCs during gdsc_disable()
     - media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags
     - clk: qcom: clk-rpmh: Fix overflow in BCM vote
     - clk: qcom: gcc-sm8150: De-register gcc_cpuss_ahb_clk_src
     - media: venus: fix use after free bug in venus_remove due to race condition
       (CVE-2024-49981)
     - clk: qcom: gcc-sm8250: Do not turn off PCIe GDSCs during gdsc_disable()
     - media: qcom: camss: Fix ordering of pm_runtime_enable
     - clk: qcom: gcc-sc8180x: Fix the sdcc2 and sdcc4 clocks freq table
     - clk: qcom: clk-alpha-pll: Fix CAL_L_VAL override for LUCID EVO PLL
     - smb: client: use actual path when queryfs
     - iio: magnetometer: ak8975: Fix reading for ak099xx sensors
     - gso: fix udp gso fraglist segmentation after pull from frag_list
       (CVE-2024-49978)
     - tomoyo: fallback to realpath if symlink's pathname does not exist
       (Closes: #1082001)
     - net: stmmac: Fix zero-division error when disabling tc cbs
       (CVE-2024-49977)
     - rtc: at91sam9: fix OF node leak in probe() error path
     - Input: adp5589-keys - fix NULL pointer dereference (CVE-2024-49871)
     - Input: adp5589-keys - fix adp5589_gpio_get_value()
     - cachefiles: fix dentry leak in cachefiles_open_file() (CVE-2024-49870)
     - ACPI: resource: Add Asus Vivobook X1704VAP to
       irq1_level_low_skip_override[] (Closes: #1078696)
     - ACPI: resource: Add Asus ExpertBook B2502CVA to
       irq1_level_low_skip_override[]
     - btrfs: fix a NULL pointer dereference when failed to start a new
       trasacntion (CVE-2024-49868)
     - btrfs: send: fix invalid clone operation for file that got its size
       decreased
     - btrfs: wait for fixup workers before stopping cleaner kthread during
       umount (CVE-2024-49867)
     - gpio: davinci: fix lazy disable
     - Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE
       (CVE-2024-8805)
     - ceph: fix cap ref leak via netfs init_request
     - tracing/hwlat: Fix a race during cpuhp processing
     - tracing/timerlat: Fix a race during cpuhp processing (CVE-2024-49866)
     - close_range(): fix the logics in descriptor table trimming
     - [x86] drm/i915/gem: fix bitwise and logical AND mixup
     - drm/sched: Add locking to drm_sched_entity_modify_sched
     - drm/amd/display: Fix system hang while resume with TBT monitor
       (CVE-2024-50003)
     - cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock
       (Closes: #1076483)
     - kconfig: qconf: fix buffer overflow in debug links
     - i2c: create debugfs entry per adapter
     - i2c: core: Lock address during client device instantiation
     - i2c: xiic: Use devm_clk_get_enabled()
     - i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled
     - dt-bindings: clock: exynos7885: Fix duplicated binding
     - spi: bcm63xx: Fix missing pm_runtime_disable()
     - [arm64] Add Cortex-715 CPU part definition
     - [arm64] cputype: Add Neoverse-N3 definitions
     - [arm64] errata: Expand speculative SSBS workaround once more
     - io_uring/net: harden multishot termination case for recv
     - uprobes: fix kernel info leak via "[uprobes]" vma
     - mm: z3fold: deprecate CONFIG_Z3FOLD
     - drm/amd/display: Allow backlight to go below
       `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT`
     - build-id: require program headers to be right after ELF header
     - lib/buildid: harden build ID parsing logic
     - docs/zh_CN: Update the translation of delay-accounting to 6.1-rc8
     - delayacct: improve the average delay precision of getdelay tool to
       microsecond
     - sched: psi: fix bogus pressure spikes from aggregation race
     - media: i2c: imx335: Enable regulator supplies
     - media: imx335: Fix reset-gpio handling
     - remoteproc: k3-r5: Acquire mailbox handle during probe routine
     - remoteproc: k3-r5: Delay notification of wakeup event
     - dt-bindings: clock: qcom: Add missing UFS QREF clocks
     - dt-bindings: clock: qcom: Add GPLL9 support on gcc-sc8180x
     - clk: samsung: exynos7885: do not define number of clocks in bindings
     - clk: samsung: exynos7885: Update CLKS_NR_FSYS after bindings fix
     - r8169: Fix spelling mistake: "tx_underun" -> "tx_underrun"
     - r8169: add tally counter fields added with RTL8125 (CVE-2024-49973)
     - clk: qcom: gcc-sc8180x: Add GPLL9 support
     - ACPI: battery: Simplify battery hook locking
     - ACPI: battery: Fix possible crash when unregistering a battery hook
       (CVE-2024-49955)
     - Revert "arm64: dts: qcom: sm8250: switch UFS QMP PHY to new style of
       bindings"
     - erofs: get rid of erofs_inode_datablocks()
     - erofs: get rid of z_erofs_do_map_blocks() forward declaration
     - erofs: avoid hardcoded blocksize for subpage block support
     - erofs: set block size to the on-disk block size
     - erofs: fix incorrect symlink detection in fast symlink
     - vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (CVE-2024-49863)
     - perf report: Fix segfault when 'sym' sort key is not used
     - fsdax: dax_unshare_iter() should return a valid length
     - fsdax: unshare: zero destination if srcmap is HOLE or UNWRITTEN
     - unicode: Don't special case ignorable code points
     - net: ethernet: cortina: Drop TSO support
     - tracing: Remove precision vsnprintf() check from print event
     - ALSA: hda/realtek: cs35l41: Fix order and duplicates in quirks table
     - ALSA: hda/realtek: cs35l41: Fix device ID / model name
     - drm/crtc: fix uninitialized variable use even harder
     - tracing: Have saved_cmdlines arrays all in one allocation
     - bootconfig: Fix the kerneldoc of _xbc_exit()
     - perf lock: Dynamically allocate lockhash_table
     - perf sched: Avoid large stack allocations
     - perf sched: Move start_work_mutex and work_done_wait_mutex initialization
       to perf_sched__replay()
     - perf sched: Fix memory leak in perf_sched__map()
     - perf sched: Move curr_thread initialization to perf_sched__map()
     - perf sched: Move curr_pid and cpu_last_switched initialization to
       perf_sched__{lat|map|replay}()
     - libsubcmd: Don't free the usage string
     - Bluetooth: Fix usage of __hci_cmd_sync_status
     - virtio_console: fix misc probe bugs
     - Input: synaptics-rmi4 - fix UAF of IRQ domain on driver removal
     - bpf: Check percpu map value size first
     - [s390x] facility: Disable compile time optimization for decompressor code
     - [s390x] mm: Add cond_resched() to cmm_alloc/free_pages()
     - bpf, x64: Fix a jit convergence issue
     - ext4: don't set SB_RDONLY after filesystem errors
     - ext4: nested locking for xattr inode
     - [s390x] cpum_sf: Remove WARN_ON_ONCE statements
     - RDMA/mad: Improve handling of timed out WRs of mad agent
     - PCI: Add function 0 DMA alias quirk for Glenfly Arise chip
     - RDMA/rtrs-srv: Avoid null pointer deref during path establishment
       (CVE-2024-50062)
     - clk: bcm: bcm53573: fix OF node leak in init
     - PCI: Add ACS quirk for Qualcomm SA8775P
     - i2c: i801: Use a different adapter-name for IDF adapters
     - PCI: Mark Creative Labs EMU20k2 INTx masking as broken
     - io_uring: check if we need to reschedule during overflow flush
       (CVE-2024-50060)
     - ntb: ntb_hw_switchtec: Fix use after free vulnerability in
       switchtec_ntb_remove due to race condition (CVE-2024-50059)
     - RDMA/mlx5: Enforce umem boundaries for explicit ODP page faults
     - media: videobuf2-core: clear memory related fields in
       __vb2_plane_dmabuf_put()
     - remoteproc: imx_rproc: Use imx specific hook for find_loaded_rsc_table
     - clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D
     - usb: chipidea: udc: enable suspend interrupt after usb reset
     - usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the
       Crashkernel Scenario
     - comedi: ni_routing: tools: Check when the file could not be opened
     - netfilter: nf_reject: Fix build warning when CONFIG_BRIDGE_NETFILTER=n
     - virtio_pmem: Check device status before requesting flush
     - tools/iio: Add memory allocation failure check for trigger_name
     - staging: vme_user: added bound check to geoid
     - driver core: bus: Return -EIO instead of 0 when show/store invalid bus
       attribute
     - scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in
       lpfc_els_flush_cmd()
     - scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV
       instance
     - drm/amd/display: Check null pointer before dereferencing se
       (CVE-2024-50049)
     - fbcon: Fix a NULL pointer dereference issue in fbcon_putcs
       (CVE-2024-50048)
     - fbdev: sisfb: Fix strbuf array overflow
     - drm/rockchip: vop: limit maximum resolution to hardware capabilities
     - drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066
     - NFSD: Mark filecache "down" if init fails
     - ice: fix VLAN replay after reset
     - SUNRPC: Fix integer overflow in decode_rc_list()
     - NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()
       (CVE-2024-50046)
     - net: phy: dp83869: fix memory corruption when enabling fiber
     - tcp: fix to allow timestamp undo if no retransmits were sent
     - tcp: fix tcp_enter_recovery() to zero retrans_stamp when it's safe
     - netfilter: br_netfilter: fix panic with metadata_dst skb (CVE-2024-50045)
     - Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change
       (CVE-2024-50044)
     - net: phy: bcm84881: Fix some error handling paths
     - thermal: int340x: processor_thermal: Set feature mask before
       proc_thermal_add
     - thermal: intel: int340x: processor: Fix warning during module unload
     - Revert "net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled"
     - net: ethernet: adi: adin1110: Fix some error handling path in
       adin1110_read_fifo()
     - net: dsa: b53: fix jumbo frame mtu check
     - net: dsa: b53: fix max MTU for 1g switches
     - net: dsa: b53: fix max MTU for BCM5325/BCM5365
     - net: dsa: b53: allow lower MTUs on BCM5325/5365
     - net: dsa: b53: fix jumbo frames on 10/100 ports
     - gpio: aspeed: Add the flush write to ensure the write complete.
     - gpio: aspeed: Use devm_clk api to manage clock source
     - ice: Fix netif_is_ice() in Safe Mode
     - i40e: Fix macvlan leak by synchronizing access to mac_filter_hash
       (CVE-2024-50041)
     - igb: Do not bring the device up after non-fatal error (CVE-2024-50040)
     - net/sched: accept TCA_STAB only for root qdisc (CVE-2024-50039)
     - net: ibm: emac: mal: fix wrong goto
     - btrfs: zoned: fix missing RCU locking in error message when loading zone
       info
     - sctp: ensure sk_state is set to CLOSED if hashing fails in
       sctp_listen_start
     - netfilter: xtables: avoid NFPROTO_UNSPEC where needed (CVE-2024-50038)
     - netfilter: fib: check correct rtable in vrf setups
     - net: ibm/emac: allocate dummy net_device dynamically
     - net: ibm: emac: mal: add dcr_unmap to _remove
     - rtnetlink: Add bulk registration helpers for rtnetlink message handlers.
     - vxlan: Handle error of rtnl_register_module().
     - mctp: Handle error of rtnl_register_module().
     - ppp: fix ppp_async_encode() illegal access
     - slip: make slhc_remember() more robust against malicious packets
     - rust: macros: provide correct provenance when constructing THIS_MODULE
     - HID: multitouch: Add support for lenovo Y9000P Touchpad
     - net/mlx5: Always drain health in shutdown callback (CVE-2024-43866)
     - wifi: mac80211: Avoid address calculations via out of bounds array
       indexing (CVE-2024-41071)
     - hwmon: (tmp513) Add missing dependency on REGMAP_I2C
     - hwmon: (adm9240) Add missing dependency on REGMAP_I2C
     - hwmon: (adt7470) Add missing dependency on REGMAP_I2C
     - Revert "net: ibm/emac: allocate dummy net_device dynamically"
     - HID: amd_sfh: Switch to device-managed dmam_alloc_coherent()
     - HID: plantronics: Workaround for an unexcepted opposite volume key
     - Revert "usb: yurex: Replace snprintf() with the safer scnprintf() variant"
     - usb: dwc3: core: Stop processing of pending events if controller is halted
     - usb: xhci: Fix problem with xhci resume from suspend
     - usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip
     - usb: gadget: core: force synchronous registration
     - hid: intel-ish-hid: Fix uninitialized variable 'rv' in
       ish_fw_xfer_direct_dma
     - drm/v3d: Stop the active perfmon before being destroyed (CVE-2024-50031)
     - drm/vc4: Stop the active perfmon before being destroyed
     - scsi: wd33c93: Don't use stale scsi_pointer value (CVE-2024-50026)
     - mptcp: fallback when MPTCP opts are dropped after 1st data
     - ata: libata: avoid superfluous disk spin down + spin up during hibernation
     - net: explicitly clear the sk pointer, when pf->create fails
     - net: Fix an unsafe loop on the list (CVE-2024-50024)
     - net: dsa: lan9303: ensure chip reset and wait for READY status
     - mptcp: handle consistently DSS corruption
     - mptcp: pm: do not remove closing subflows
     - device-dax: correct pgoff align in dax_set_mapping() (CVE-2024-50022)
     - nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error
     - kthread: unpark only parked kthread (CVE-2024-50019)
     - secretmem: disable memfd_secret() if arch cannot set direct map
     - net: ethernet: cortina: Restore TSO support
     - perf lock: Don't pass an ERR_PTR() directly to perf_session__delete()
     - block, bfq: fix uaf for accessing waker_bfqq after splitting
       (CVE-2024-49854)
     - Revert "iommu/vt-d: Retrieve IOMMU perfmon capability information"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.114
     - btrfs: fix uninitialized pointer free in add_inode_ref() (CVE-2024-50088)
     - btrfs: fix uninitialized pointer free on read_alloc_one_name() error
     - ksmbd: fix user-after-free from session log off (CVE-2024-50086)
     - ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2
     - mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow (CVE-2024-50085)
     - udf: New directory iteration code
     - udf: Convert udf_expand_dir_adinicb() to new directory iteration
     - udf: Move udf_expand_dir_adinicb() to its callsite
     - udf: Implement searching for directory entry using new iteration code
     - udf: Provide function to mark entry as deleted using new directory
       iteration code
     - udf: Convert udf_rename() to new directory iteration code
     - udf: Convert udf_readdir() to new directory iteration
     - udf: Convert udf_lookup() to use new directory iteration code
     - udf: Convert udf_get_parent() to new directory iteration code
     - udf: Convert empty_dir() to new directory iteration code
     - udf: Convert udf_rmdir() to new directory iteration code
     - udf: Convert udf_unlink() to new directory iteration code
     - udf: Implement adding of dir entries using new iteration code
     - udf: Convert udf_add_nondir() to new directory iteration
     - udf: Convert udf_mkdir() to new directory iteration code
     - udf: Convert udf_link() to new directory iteration code
     - udf: Remove old directory iteration code
     - udf: Handle error when expanding directory
     - udf: Don't return bh from udf_expand_dir_adinicb()
     - net: enetc: remove xdp_drops statistic from enetc_xdp_drop()
     - net: enetc: add missing static descriptor and inline keyword
     - posix-clock: Fix missing timespec64 check in pc_clock_settime()
     - [arm64] probes: Remove broken LDR (literal) uprobe support
     - [arm64] probes: Fix simulate_ldr*_literal()
     - net: macb: Avoid 20s boot delay by skipping MDIO bus registration for
       fixed-link PHY
     - irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1
     - fat: fix uninitialized variable
     - mm/swapfile: skip HugeTLB pages for unuse_vma
     - devlink: drop the filter argument from devlinks_xa_find_get
     - devlink: bump the instance index directly when iterating
     - maple_tree: correct tree corruption on spanning store
     - drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE)
       (CVE-2024-39497)
     - [amd64] iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI
       devices
     - [s390x] sclp: Deactivate sclp after all its users
     - [s390x] sclp_vt220: Convert newlines to CRLF instead of LFCR
     - [s390x] KVM: s390: gaccess: Check if guest address is in memslot
     - [s390x] KVM: s390: Change virtual to physical address access in diag 0x258
       handler
     - [x86] cpufeatures: Define X86_FEATURE_AMD_IBPB_RET
     - [x86] cpufeatures: Add a IBPB_NO_RET BUG flag
     - [x86] entry: Have entry_ibpb() invalidate return predictions
     - [x86] bugs: Skip RSB fill at VMEXIT
     - [x86] bugs: Do not use UNTRAIN_RET with IBPB on entry
     - blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race
       (CVE-2024-50082)
     - io_uring/sqpoll: close race on waiting for sqring entries
     - scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down
     - drm/radeon: Fix encoder->possible_clones
     - drm/vmwgfx: Handle surface check failure correctly
     - drm/amdgpu/swsmu: Only force workload setup on init
     - drm/amdgpu: prevent BO_HANDLES error from being overwritten
     - iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig
     - iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig
     - iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig
     - iio: adc: ti-ads8688: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: hid-sensors: Fix an error handling path in
       _hid_sensor_set_report_latency()
     - iio: light: veml6030: fix ALS sensor resolution
     - iio: light: veml6030: fix IIO device retrieval from embedded device
     - iio: light: opt3001: add missing full-scale range value
     - iio: amplifiers: ada4250: add missing select REGMAP_SPI in Kconfig
     - iio: dac: ad5766: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in
       Kconfig
     - iio: dac: ad3552r: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: adc: ti-ads124s08: add missing select IIO_(TRIGGERED_)BUFFER in
       Kconfig
     - Bluetooth: Call iso_exit() on module unload
     - Bluetooth: Remove debugfs directory on module init failure
     - Bluetooth: ISO: Fix multiple init when debugfs is disabled
       (CVE-2024-50077)
     - Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001
     - xhci: Fix incorrect stream context type macro
     - xhci: Mitigate failed set dequeue pointer commands
     - USB: serial: option: add support for Quectel EG916Q-GL
     - USB: serial: option: add Telit FN920C04 MBIM compositions
     - usb: dwc3: Wait for EndXfer completion before restoring GUSB2PHYCFG
     - parport: Proper fix for array out-of-bounds access (CVE-2024-50074)
     - [x86] resctrl: Annotate get_mem_config() functions as __init
     - [x86] apic: Always explicitly disarm TSC-deadline timer
     - [x86] entry_32: Do not clobber user EFLAGS.ZF
     - [x86] entry_32: Clear CPU buffers after register restore in NMI return
     - tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (CVE-2024-50073)
     - pinctrl: ocelot: fix system hang on level based interrupts
     - pinctrl: apple: check devm_kasprintf() returned value
     - irqchip/gic-v4: Don't allow a VMOVP on a dying VPE
     - irqchip/sifive-plic: Unmask interrupt in plic_irq_enable()
     - tcp: fix mptcp DSS corruption due to large pmtu xmit (CVE-2024-50083)
     - mptcp: prevent MPC handshake on port-based signal endpoints
     - nilfs2: propagate directory read errors from nilfs_find_entry()
     - [powerpc*] 64: Add big-endian ELFv2 flavour to crypto VMX asm generation
     - ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne
       1000 G2
     - udf: Allocate name buffer in directory iterator on heap
     - udf: Avoid directory type conversion failure due to ENOMEM
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.115
     - bpf: Use raw_spinlock_t in ringbuf
     - iio: accel: bma400: Fix uninitialized variable field_value in tap event
       handling.
     - bpf: Make sure internal and UAPI bpf_redirect flags don't overlap
     - bpf: devmap: provide rxq after redirect
     - bpf: Fix memory leak in bpf_core_apply
     - RDMA/bnxt_re: Fix incorrect AVID type in WQE structure
     - RDMA/bnxt_re: Add a check for memory allocation
     - [x86] resctrl: Avoid overflow in MB settings in bw_validate()
     - [armhf] dts: bcm2837-rpi-cm3-io3: Fix HDMI hpd-gpio pin
     - [s390x] pci: Handle PCI error codes other than 0x3a
     - bpf: fix kfunc btf caching for modules
     - drm/vmwgfx: Handle possible ENOMEM in vmw_stdu_connector_atomic_check
     - ALSA: hda/cs8409: Fix possible NULL dereference
     - RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP
     - RDMA/irdma: Fix misspelling of "accept*"
     - RDMA/srpt: Make slab cache names unique
     - ipv4: give an IPv4 dev to blackhole_netdev
     - RDMA/bnxt_re: Return more meaningful error
     - RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages
     - [arm64] drm/msm/dpu: make sure phys resources are properly initialized
     - [arm64] drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate
       calculation
     - [arm64] drm/msm: Avoid NULL dereference in msm_disp_state_print_regs()
     - [arm64] drm/msm: Allocate memory for disp snapshot with kvzalloc()
     - net: usb: usbnet: fix race in probe failure
     - drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring
     - macsec: don't increment counters for an unrelated SA
     - netdevsim: use cond_resched() in nsim_dev_trap_report_work()
     - net: ethernet: aeroflex: fix potential memory leak in
       greth_start_xmit_gbit()
     - net/smc: Fix searching in list of known pnetids in smc_pnet_add_pnetid
     - net: xilinx: axienet: fix potential memory leak in axienet_start_xmit()
     - net: systemport: fix potential memory leak in bcm_sysport_xmit()
     - [arm64] drm/msm/dpu: Wire up DSC mask for active CTL configuration
     - [arm64] drm/msm/dpu: don't always program merge_3d block
     - tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink().
     - genetlink: hold RCU in genlmsg_mcast()
     - ravb: Remove setting of RX software timestamp
     - net: ravb: Only advertise Rx/Tx timestamps if hardware supports it
     - scsi: target: core: Fix null-ptr-deref in target_alloc_device()
     - smb: client: fix OOBs when building SMB2_IOCTL request
     - usb: typec: altmode should keep reference to parent
     - [s390x] Initialize psw mask in perf_arch_fetch_caller_regs()
     - Bluetooth: bnep: fix wild-memory-access in proto_unregister
     - net/mlx5: Remove redundant cmdif revision check
     - net/mlx5: split mlx5_cmd_init() to probe and reload routines
     - net/mlx5: Fix command bitmask initialization
     - net/mlx5: Unregister notifier on eswitch init failure
     - bpf: Fix iter/task tid filtering
     - [arm64] uprobe fix the uprobe SWBP_INSN in big-endian
     - [arm64] probes: Fix uprobes for big-endian kernels
     - usb: gadget: f_uac2: Replace snprintf() with the safer scnprintf() variant
     - usb: gadget: f_uac2: fix non-newline-terminated function name
     - usb: gadget: f_uac2: fix return value for UAC2_ATTRIBUTE_STRING store
     - usb: gadget: Add function wakeup support
     - XHCI: Separate PORT and CAPs macros into dedicated file
     - [arm64,armhf] usb: dwc3: core: Fix system suspend on TI AM62 platforms
     - tty/serial: Make ->dcd_change()+uart_handle_dcd_change() status bool
       active
     - serial: Make uart_handle_cts_change() status param bool active
     - serial: imx: Update mctrl old_status on RTSD interrupt
     - block, bfq: fix procress reference leakage for bfqq in merge chain
     - exec: don't WARN for racy path_noexec check (CVE-2024-50010)
     - fs/ntfs3: Add more attributes checks in mi_enum_attr() (CVE-2023-45896)
     - [x86] drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape
       with real VLA
     - ASoC: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to
       default regs values
     - [arm64] ASoC: fsl_sai: Enable 'FIFO continue on error' FCONT bit
     - [arm64] Force position-independent veneers
     - udf: refactor udf_current_aext() to handle error
     - udf: fix uninit-value use in udf_get_fileshortad
     - [x86] platform/x86: dell-sysman: add support for alienware products
     - jfs: Fix sanity check in dbMount
     - tracing: Consider the NULL character when validating the event length
     - xfrm: extract dst lookup parameters into a struct
     - xfrm: respect ip protocols rules criteria when performing dst lookups
     - be2net: fix potential memory leak in be_xmit()
     - net: plip: fix break; causing plip to never transmit
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix error when setting port policy on
       mv88e6393x
     - netfilter: xtables: fix typo causing some targets not to load on IPv6
     - net: wwan: fix global oob in wwan_rtnl_policy
     - docs: net: reformat driver.rst from a list to sections
     - net: provide macros for commonly copied lockless queue stop/wake code
     - net/sched: adjust device watchdog timer to detect stopped queue at right
       time
     - net: fix races in netdev_tx_sent_queue()/dev_watchdog()
     - net: usb: usbnet: fix name regression
     - net/sched: act_api: deny mismatched skip_sw/skip_hw flags for actions
       created by classifiers
     - net: sched: fix use-after-free in taprio_change()
     - r8169: avoid unsolicited interrupts
     - posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime()
     - Bluetooth: SCO: Fix UAF on sco_sock_timeout
     - Bluetooth: ISO: Fix UAF on iso_sock_timeout
     - bpf,perf: Fix perf_event_detach_bpf_prog error handling
     - ASoC: dt-bindings: davinci-mcasp: Fix interrupts property
     - ASoC: dt-bindings: davinci-mcasp: Fix interrupt properties
     - ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size()
     - powercap: dtpm_devfreq: Fix error check against dev_pm_qos_add_request()
     - ALSA: hda/realtek: Update default depop procedure
     - cpufreq/cppc: Move and rename cppc_cpufreq_{perf_to_khz|khz_to_perf}()
     - cpufreq: CPPC: fix perf_to_khz/khz_to_perf conversion exception
     - btrfs: fix passing 0 to ERR_PTR in btrfs_search_dir_index_item()
     - btrfs: zoned: fix zone unusable accounting for freed reserved extent
     - drm/amd: Guard against bad data for ATIF ACPI method
     - ACPI: resource: Add LG 16T90SP to irq1_level_low_skip_override[]
     - ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context
     - ACPI: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid
       detection issue
     - nilfs2: fix kernel bug due to missing clearing of buffer delay flag
     - openat2: explicitly return -E2BIG for (usize > PAGE_SIZE)
     - [x86] KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
     - [arm64] KVM: arm64: Don't eagerly teardown the vgic on init error
     - ALSA: hda/realtek: Add subwoofer quirk for Acer Predator G9-593
     - xfrm: fix one more kernel-infoleak in algo dumping
     - hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event
     - drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too
     - selinux: improve error checking in sel_write_load()
     - serial: protect uart_port_dtr_rts() in uart_shutdown() too
       (CVE-2024-50058)
     - net: phy: dp83822: Fix reset pin definitions
     - [arm64] ASoC: qcom: Fix NULL Dereference in
       asoc_qcom_lpass_cpu_platform_probe()
     - [x86] platform/x86: dell-wmi: Ignore suspend notifications
     - ACPI: PRM: Clean up guid type in struct prm_handler_info
     - [arm64] uprobes: change the uprobe_opcode_t typedef to fix the sparse
       warning
     - xfrm: validate new SA's prefixlen using SA family when sel.family is unset
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 27
   * d/config: Update with the help of kconfigeditor2
     - mm: Enable Z3FOLD_DEPRECATED instead of Z3FOLD
linux-signed-amd64 (6.1.112+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.112-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.107
     - tty: atmel_serial: use the correct RTS flag.
     - fuse: Initialize beyond-EOF page contents before setting uptodate
     - ALSA: usb-audio: Add delay quirk for VIVO USB-C-XE710 HEADSET
     - ALSA: usb-audio: Support Yamaha P-125 quirk entry
     - xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration
     - [x86] thunderbolt: Mark XDomain as unplugged when router is removed
     - [s390x] dasd: fix error recovery leading to data corruption on ESE devices
     - [arm64] ACPI: NUMA: initialize all values of acpi_early_node_map to
       NUMA_NO_NODE
     - dm resume: don't return EINVAL when signalled
     - dm persistent data: fix memory allocation failure
     - vfs: Don't evict inode under the inode lru traversing context
     - [s390x] cio: rename bitmap_size() -> idset_bitmap_size()
     - btrfs: rename bitmap_set_bits() -> btrfs_bitmap_set_bits()
     - bitmap: introduce generic optimized bitmap_size()
     - fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE
     - i2c: qcom-geni: Add missing geni_icc_disable in geni_i2c_runtime_resume
     - rtla/osnoise: Prevent NULL dereference in error handling
     - fs/netfs/fscache_cookie: add missing "n_accesses" check
     - selinux: fix potential counting error in avc_add_xperms_decision()
     - mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu
     - btrfs: zoned: properly take lock to read/update block group's zoned
       variables
     - btrfs: tree-checker: add dev extent item checks
     - drm/amdgpu: Actually check flags for all context ops.
     - memcg_write_event_control(): fix a user-triggerable oops
     - drm/amdgpu/jpeg2: properly set atomics vmid field
     - [s390x] uv: Panic for set and remove shared access UVC errors
     - bpf: Fix updating attached freplace prog in prog_array map
     - nilfs2: prevent WARNING in nilfs_dat_commit_end()
     - ext4, jbd2: add an optimized bmap for the journal inode
     - 9P FS: Fix wild-memory-access write in v9fs_get_acl
     - nilfs2: initialize "struct nilfs_binfo_dat"->bi_pad field
     - mm: khugepaged: fix kernel BUG in hpage_collapse_scan_file()
     - bpf: Split off basic BPF verifier log into separate file
     - bpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log
     - posix-timers: Ensure timer ID search-loop limit is valid
     - pid: Replace struct pid 1-element array with flex-array
     - gfs2: Rename remaining "transaction" glock references
     - gfs2: Rename the {freeze,thaw}_super callbacks
     - gfs2: Rename gfs2_freeze_lock{ => _shared }
     - gfs2: Rename SDF_{FS_FROZEN => FREEZE_INITIATOR}
     - gfs2: Rework freeze / thaw logic
     - gfs2: Stop using gfs2_make_fs_ro for withdraw
     - Bluetooth: Fix hci_link_tx_to RCU lock usage
     - wifi: mac80211: take wiphy lock for MAC addr change
     - wifi: mac80211: fix change_address deadlock during unregister
     - net: sched: Print msecs when transmit queue time out
     - net: don't dump stack on queue timeout
     - jfs: fix shift-out-of-bounds in dbJoin
     - squashfs: squashfs_read_data need to check if the length is 0
     - Squashfs: fix variable overflow triggered by sysbot
     - reiserfs: fix uninit-value in comp_keys
     - erofs: avoid debugging output for (de)compressed data
     - quota: Detect loops in quota tree
     - net:rds: Fix possible deadlock in rds_message_put
     - net: sctp: fix skb leak in sctp_inq_free()
     - pppoe: Fix memory leak in pppoe_sendmsg()
     - wifi: mac80211: fix and simplify unencrypted drop check for mesh
     - wifi: cfg80211: move A-MSDU check in ieee80211_data_to_8023_exthdr
     - wifi: cfg80211: factor out bridge tunnel / RFC1042 header check
     - wifi: mac80211: remove mesh forwarding congestion check
     - wifi: mac80211: fix receiving A-MSDU frames on mesh interfaces
     - wifi: mac80211: add a workaround for receiving non-standard mesh A-MSDU
     - wifi: cfg80211: check A-MSDU format more carefully (CVE-2024-35937)
     - docs/bpf: Document BPF_MAP_TYPE_LPM_TRIE map
     - bpf: Replace bpf_lpm_trie_key 0-length array with flexible array
     - bpf: Avoid kfree_rcu() under lock in bpf_lpm_trie.
     - Bluetooth: RFCOMM: Fix not validating setsockopt user input
       (CVE-2024-35966)
     - ext4: check the return value of ext4_xattr_inode_dec_ref()
     - ext4: fold quota accounting into ext4_xattr_inode_lookup_create()
     - ext4: do not create EA inode under buffer lock (CVE-2024-40972)
     - udf: Fix bogus checksum computation in udf_rename()
     - bpf, net: Use DEV_STAT_INC()
     - fou: remove warn in gue_gro_receive on unsupported protocol
       (CVE-2024-44940)
     - jfs: fix null ptr deref in dtInsertEntry (CVE-2024-44939)
     - jfs: Fix shift-out-of-bounds in dbDiscardAG (CVE-2024-44938)
     - ALSA: usb: Fix UBSAN warning in parse_audio_unit()
     - igc: Correct the launchtime offset
     - igc: Fix packet still tx after gate close by reducing i226 MAC retry
       buffer
     - net/mlx5e: Take state lock during tx timeout reporter
     - net/mlx5e: Correctly report errors for ethtool rx flows
     - atm: idt77252: prevent use after free in dequeue_rx()
     - mlxbf_gige: Remove two unused function declarations
     - mlxbf_gige: disable RX filters until RX path initialized
     - mptcp: correct MPTCP_SUBFLOW_ATTR_SSN_OFFSET reserved size
     - netfilter: allow ipv6 fragments to arrive on different devices
     - netfilter: flowtable: initialise extack before use
     - netfilter: nf_queue: drop packets with cloned unconfirmed conntracks
       (Closes: #1070685)
     - netfilter: nf_tables: Audit log dump reset after the fact
     - netfilter: nf_tables: Drop pointless memset in nf_tables_dump_obj
     - netfilter: nf_tables: Unconditionally allocate nft_obj_filter
     - netfilter: nf_tables: A better name for nft_obj_filter
     - netfilter: nf_tables: Carry s_idx in nft_obj_dump_ctx
     - netfilter: nf_tables: nft_obj_filter fits into cb->ctx
     - netfilter: nf_tables: Carry reset boolean in nft_obj_dump_ctx
     - netfilter: nf_tables: Introduce nf_tables_getobj_single
     - netfilter: nf_tables: Add locking for NFT_MSG_GETOBJ_RESET requests
     - [arm64] net: hns3: fix wrong use of semaphore up
     - [arm64] net: hns3: use the user's cfg after reset
     - [arm64] net: hns3: fix a deadlock problem when config TC during resetting
     - ALSA: hda/realtek: Fix noise from speakers on Lenovo IdeaPad 3 15IAU7
     - drm/amd/amdgpu/imu_v11_0: Increase buffer size to ensure all possible
       values can be stored
     - ssb: Fix division by zero issue in ssb_calc_clock_rate
     - wifi: cfg80211: check wiphy mutex is held for wdev mutex
     - wifi: mac80211: fix BA session teardown race
     - mm: Remove kmem_valid_obj()
     - rcu: Dump memory object info if callback function is invalid
     - rcu: Eliminate rcu_gp_slow_unregister() false positive
     - wifi: cw1200: Avoid processing an invalid TIM IE
     - cgroup: Avoid extra dereference in css_populate_dir()
     - i2c: riic: avoid potential division by zero
     - RDMA/rtrs: Fix the problem of variable not initialized fully
     - [s390x] smp,mcck: fix early IPI handling
     - drm/bridge: tc358768: Attempt to fix DSI horizontal timings
     - media: radio-isa: use dev_name to fill in bus_info
     - staging: iio: resolver: ad2s1210: fix use before initialization
     - usb: gadget: uvc: cleanup request when not in correct state
     - drm/amd/display: Validate hw_points_num before using it
     - staging: ks7010: disable bh on tx_dev_lock
     - media: s5p-mfc: Fix potential deadlock on condlock
     - md/raid5-cache: use READ_ONCE/WRITE_ONCE for 'conf->log'
     - binfmt_misc: cleanup on filesystem umount
     - [arm64,armhf] drm/tegra: Zero-initialize iosys_map
     - media: qcom: venus: fix incorrect return value
     - scsi: spi: Fix sshdr use
     - gfs2: setattr_chown: Add missing initialization
     - wifi: iwlwifi: abort scan when rfkill on but device enabled
     - wifi: iwlwifi: fw: Fix debugfs command sending
     - clk: visconti: Add bounds-checking coverage for struct
       visconti_pll_provider
     - [amd64] IB/hfi1: Fix potential deadlock on &irq_src_lock and
       &dd->uctxt_lock
     - kbuild: rust_is_available: normalize version matching
     - kbuild: rust_is_available: handle failures calling `$RUSTC`/`$BINDGEN`
     - [arm64] Fix KASAN random tag seed initialization
     - block: Fix lockdep warning in blk_mq_mark_tag_wait
     - [arm64] drm/msm: Reduce fallout of fence signaling vs reclaim hangs
     - memory: tegra: Skip SID programming if SID registers aren't set
     - [powerpc*] xics: Check return value of kasprintf in icp_native_map_one_cpu
     - [x86] ASoC: SOF: ipc4: check return value of snd_sof_ipc_msg_data
     - [x86] hwmon: (pc87360) Bounds check data->innr usage
     - drm/rockchip: vop2: clear afbc en and transform bit for cluster window at
       linear mode
     - Bluetooth: hci_conn: Check non NULL function before calling for HFP
       offload
     - gfs2: Refcounting fix in gfs2_thaw_super
     - nvmet-trace: avoid dereferencing pointer too early
     - ext4: do not trim the group with corrupted block bitmap
     - afs: fix __afs_break_callback() / afs_drop_open_mmap() race
     - fuse: fix UAF in rcu pathwalks
     - quota: Remove BUG_ON from dqget()
     - kernfs: fix false-positive WARN(nr_mmapped) in kernfs_drain_open_files
     - media: pci: cx23885: check cx23885_vdev_init() return
     - fs: binfmt_elf_efpic: don't use missing interpreter's properties
     - scsi: lpfc: Initialize status local variable in
       lpfc_sli4_repost_sgl_list()
     - media: drivers/media/dvb-core: copy user arrays safely
     - net/sun3_82586: Avoid reading past buffer in debug output
     - drm/lima: set gp bus_stop bit before hard reset
     - hrtimer: Select housekeeping CPU during migration
     - virtiofs: forbid newlines in tags
     - clocksource/drivers/arm_global_timer: Guard against division by zero
     - netlink: hold nlk->cb_mutex longer in __netlink_dump_start()
     - md: clean up invalid BUG_ON in md_ioctl
     - [x86] Increase brk randomness entropy for 64-bit systems
     - memory: stm32-fmc2-ebi: check regmap_read return value
     - [powerpc*] boot: Handle allocation failure in simple_realloc()
     - [powerpc*] boot: Only free if realloc() succeeds
     - btrfs: delayed-inode: drop pointless BUG_ON in
       __btrfs_remove_delayed_item()
     - btrfs: change BUG_ON to assertion when checking for delayed_node root
     - btrfs: tests: allocate dummy fs_info and root in test_find_delalloc()
     - btrfs: handle invalid root reference found in may_destroy_subvol()
     - btrfs: send: handle unexpected data in header buffer in begin_cmd()
     - btrfs: change BUG_ON to assertion in tree_move_down()
     - btrfs: delete pointless BUG_ON check on quota root in
       btrfs_qgroup_account_extent()
     - f2fs: fix to do sanity check in update_sit_entry
     - usb: gadget: fsl: Increase size of name buffer for endpoints
     - nvme: clear caller pointer on identify failure
     - Bluetooth: bnep: Fix out-of-bound access
     - firmware: cirrus: cs_dsp: Initialize debugfs_root to invalid
     - rtc: nct3018y: fix possible NULL dereference
     - [arm64] net: hns3: add checking for vf id of mailbox
     - nvmet-tcp: do not continue for invalid icreq
     - NFS: avoid infinite loop in pnfs_update_layout.
     - [s390x] iucv: fix receive buffer virtual vs physical address confusion
     - irqchip/renesas-rzg2l: Do not set TIEN and TINT source at the same time
     - clocksource: Make watchdog and suspend-timing multiplication overflow safe
     - [x86] platform/x86: lg-laptop: fix %s null argument warning
     - usb: dwc3: core: Skip setting event buffers for host only controllers
     - fbdev: offb: replace of_node_put with __free(device_node)
     - irqchip/gic-v3-its: Remove BUG_ON in its_vpe_irq_domain_alloc
     - ext4: set the type of max_zeroout to unsigned int to avoid overflow
     - nvmet-rdma: fix possible bad dereference when freeing rsps
     - drm/amdgpu: fix dereference null return value for the function
       amdgpu_vm_pt_parent
     - hrtimer: Prevent queuing of hrtimer without a function callback
     - gtp: pull network headers in gtp_dev_xmit()
     - [arm64,armhf] i2c: tegra: allow DVC support to be compiled out
     - [arm64,armhf] i2c: tegra: allow VI support to be compiled out
     - [arm64,armhf] i2c: tegra: Do not mark ACPI devices as irq safe
     - dm suspend: return -ERESTARTSYS instead of -EINTR
     - net: mana: Fix doorbell out of order violation and avoid unnecessary
       doorbell rings
     - btrfs: replace sb::s_blocksize by fs_info::sectorsize
     - btrfs: send: allow cloning non-aligned extent if it ends at i_size
     - drm/amd/display: Adjust cursor position
     - platform/surface: aggregator: Fix warning when controller is destroyed in
       probe
     - Bluetooth: hci_core: Fix LE quote calculation
     - Bluetooth: SMP: Fix assumption of Central always being Initiator
     - [arm64] net: dsa: tag_ocelot: do not rely on skb_mac_header() for VLAN
       xmit
     - [arm64] net: dsa: tag_ocelot: call only the relevant portion of
       __skb_vlan_pop() on TX
     - [arm64] net: mscc: ocelot: use ocelot_xmit_get_vlan_info() also for FDMA
       and register injection
     - [arm64] net: mscc: ocelot: fix QoS class for injected packets with
       "ocelot-8021q"
     - [arm64] net: mscc: ocelot: serialize access to the injection/extraction
       groups
     - tc-testing: don't access non-existent variable on exception
     - tcp/dccp: bypass empty buckets in inet_twsk_purge()
     - tcp/dccp: do not care about families in inet_twsk_purge()
     - tcp: prevent concurrent execution of tcp_sk_exit_batch
     - net: mctp: test: Use correct skb for route input check
     - kcm: Serialise kcm_sendmsg() for the same socket.
     - netfilter: nft_counter: Disable BH in nft_counter_offload_stats().
     - netfilter: nft_counter: Synchronize nft_counter_reset() against reader.
     - ip6_tunnel: Fix broken GRO
     - bonding: fix bond_ipsec_offload_ok return type
     - bonding: fix null pointer deref in bond_ipsec_offload_ok
     - bonding: fix xfrm real_dev null pointer dereference
     - bonding: fix xfrm state handling when clearing active slave
     - ice: Prepare legacy-rx for upcoming XDP multi-buffer support
     - ice: Add xdp_buff to ice_rx_ring struct
     - ice: Store page count inside ice_rx_buf
     - ice: Pull out next_to_clean bump out of ice_put_rx_buf()
     - ice: fix page reuse when PAGE_SIZE is over 8k
     - ice: fix ICE_LAST_OFFSET formula
     - dpaa2-switch: Fix error checking in dpaa2_switch_seed_bp()
     - net: dsa: mv88e6xxx: Fix out-of-bound access
     - netem: fix return value if duplicate enqueue fails
     - ipv6: prevent UAF in ip6_send_skb()
     - ipv6: fix possible UAF in ip6_finish_output2()
     - ipv6: prevent possible UAF in ip6_xmit()
     - netfilter: flowtable: validate vlan header
     - [arm64] drm/msm/dpu: don't play tricks with debug macros
     - [arm64] drm/msm/dp: fix the max supported bpp logic
     - [arm64] drm/msm/dp: reset the link phy params before link training
     - [arm64] drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails
     - mmc: mmc_test: Fix NULL dereference on allocation failure
     - Bluetooth: MGMT: Add error handling to pair_device() (CVE-2024-43884)
     - scsi: core: Fix the return value of scsi_logical_block_count()
     - ksmbd: the buffer of smb2 query dir response has at least 1 byte
     - drm/amdgpu: Validate TA binary size
     - HID: wacom: Defer calculation of resolution until resolution_code is known
     - HID: microsoft: Add rumble support to latest xbox controllers
     - Input: i8042 - add forcenorestore quirk to leave controller untouched even
       on s3
     - Input: i8042 - use new forcenorestore quirk to replace old buggy quirk
       combination
     - cxgb4: add forgotten u64 ivlan cast before shift
     - [arm64] KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3
     - mmc: dw_mmc: allow biu and ciu clocks to defer
     - pmdomain: imx: wait SSAR when i.MX93 power domain on
     - mptcp: pm: re-using ID of unused removed ADD_ADDR
     - mptcp: pm: re-using ID of unused removed subflows
     - mptcp: pm: re-using ID of unused flushed subflows
     - mptcp: pm: only decrement add_addr_accepted for MPJ req
     - Revert "usb: gadget: uvc: cleanup request when not in correct state"
     - Revert "drm/amd/display: Validate hw_points_num before using it"
     - tcp: do not export tcp_twsk_purge()
     - hwmon: (ltc2992) Fix memory leak in ltc2992_parse_dt()
     - ALSA: timer: Relax start tick time check for slave timer elements
     - mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order
       fallback to order 0
     - mm/numa: no task_numa_fault() call if PMD is changed
     - mm/numa: no task_numa_fault() call if PTE is changed
     - nfsd: Simplify code around svc_exit_thread() call in nfsd()
     - nfsd: separate nfsd_last_thread() from nfsd_put()
     - NFSD: simplify error paths in nfsd_svc()
     - nfsd: call nfsd_last_thread() before final nfsd_put()
     - nfsd: drop the nfsd_put helper
     - nfsd: don't call locks_release_private() twice concurrently
     - nfsd: Fix a regression in nfsd_setattr()
     - Bluetooth: hci_ldisc: check HCI_UART_PROTO_READY flag in HCIUARTGETPROTO
     - drm/amdgpu/vcn: identify unified queue in sw init
     - drm/amdgpu/vcn: not pause dpg for unified queue
     - [x86] KVM: x86: fire timer when it is migrated and expired, and in oneshot
       mode
     - Revert "s390/dasd: Establish DMA alignment"
     - wifi: mac80211: add documentation for amsdu_mesh_control
     - wifi: mac80211: fix mesh path discovery based on unicast packets
     - wifi: mac80211: fix mesh forwarding
     - wifi: mac80211: fix flow dissection for forwarded packets
     - wifi: mac80211: fix receiving mesh packets in forwarding=0 networks
     - wifi: mac80211: drop bogus static keywords in A-MSDU rx
     - wifi: mac80211: fix potential null pointer dereference
     - wifi: cfg80211: fix receiving mesh packets without RFC1042 header
     - gfs2: Fix another freeze/thaw hang
     - gfs2: don't withdraw if init_threads() got interrupted
     - gfs2: Remove LM_FLAG_PRIORITY flag
     - gfs2: Remove freeze_go_demote_ok
     - udp: fix receiving fraglist GSO packets
     - ice: fix W=1 headers mismatch
     - Revert "jfs: fix shift-out-of-bounds in dbJoin"
     - net: change maximum number of UDP segments to 128
     - selftests: net: more strict check in net_helper
     - Input: MT - limit max slots
     - tools: move alignment-related macros to new <linux/align.h>
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.108
     - drm/amdgpu: Using uninitialized value *size when calling
       amdgpu_vce_cs_reloc (CVE-2024-42228)
     - btrfs: run delayed iputs when flushing delalloc
     - smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()
     - pinctrl: rockchip: correct RK3328 iomux width flag for GPIO2-B pins
     - pinctrl: single: fix potential NULL dereference in pcs_get_function()
     - of: Add cleanup.h based auto release via __free(device_node) markings
     - wifi: wfx: repair open network AP mode
     - wifi: mwifiex: duplicate static structs used in driver instances
     - net: mana: Fix race of mana_hwc_post_rx_wqe and new hwc response
     - mptcp: close subflow when receiving TCP+FIN
     - mptcp: sched: check both backup in retrans
     - mptcp: pm: skip connecting to already established sf
     - mptcp: pm: reset MPC endp ID when re-added
     - mptcp: pm: send ACK on an active subflow
     - mptcp: pm: do not remove already closed subflows
     - mptcp: pm: ADD_ADDR 0 is not a new address
     - drm/amdgpu: align pp_power_profile_mode with kernel docs
     - drm/amdgpu/swsmu: always force a state reprogram on init
     - ata: libata-core: Fix null pointer dereference on error (CVE-2024-41098)
     - usb: typec: fix up incorrectly backported "usb: typec: tcpm: unregister
       existing source caps before re-registration"
     - mmc: Avoid open coding by using mmc_op_tuning()
     - mmc: mtk-sd: receive cmd8 data when hs400 tuning fail
     - mptcp: unify pm get_local_id interfaces
     - mptcp: pm: remove mptcp_pm_remove_subflow()
     - mptcp: pm: only mark 'subflow' endp as available
     - mptcp: pm: check add_addr_accept_max before accepting new ADD_ADDR
     - of: Introduce for_each_*_child_of_node_scoped() to automate of_node_put()
       handling
     - thermal: of: Fix OF node leak in thermal_of_trips_init() error path
     - thermal: of: Fix OF node leak in of_thermal_zone_find() error paths
     - ASoC: amd: acp: fix module autoloading
     - ASoC: SOF: amd: Fix for acp init sequence
     - pinctrl: mediatek: common-v2: Fix broken bias-disable for
       PULL_PU_PD_RSEL_TYPE
     - btrfs: fix extent map use-after-free when adding pages to compressed bio
       (CVE-2024-42314)
     - soundwire: stream: fix programming slave ports for non-continous port maps
     - [arm64] phy: xilinx: add runtime PM support
     - [arm64] phy: xilinx: phy-zynqmp: dynamic clock support for power-save
     - [arm64] phy: xilinx: phy-zynqmp: Fix SGMII linkup failure on resume
     - [x86] dmaengine: dw: Add peripheral bus width verification
     - [x86] dmaengine: dw: Add memory bus width verification
     - Bluetooth: hci_core: Fix not handling hibernation actions
     - iommu: Do not return 0 from map_pages if it doesn't do anything
     - netfilter: nf_tables: restore IP sanity checks for netdev/egress
     - wifi: iwlwifi: fw: fix wgds rev 3 exact size
     - ethtool: check device is present when getting link settings
     - netfilter: nf_tables_ipv6: consider network offset in netdev/egress
       validation
     - bonding: implement xdo_dev_state_free and call it after deletion
     - gtp: fix a potential NULL pointer dereference
     - sctp: fix association labeling in the duplicate COOKIE-ECHO case
     - drm/amd/display: avoid using null object of framebuffer
     - net: busy-poll: use ktime_get_ns() instead of local_clock()
     - nfc: pn533: Add poll mod list filling check
     - [arm64] soc: qcom: cmd-db: Map shared memory as WC, not WB
     - cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller
     - USB: serial: option: add MeiG Smart SRM825L
     - [armhf] usb: dwc3: omap: add missing depopulate in probe error path
     - [arm64,armhf] usb: dwc3: core: Prevent USB core invalid event buffer
       address access
     - usb: core: sysfs: Unmerge @usb3_hardware_lpm_attr_group in
       remove_power_attributes()
     - usb: cdnsp: fix incorrect index in cdnsp_get_hw_deq function
     - usb: cdnsp: fix for Link TRB with TC
     - [arm64] phy: zynqmp: Enable reference clock correctly
     - igc: Fix reset adapter logics when tx mode change
     - igc: Fix qbv tx latency by setting gtxoffset
     - scsi: aacraid: Fix double-free on probe failure
     - apparmor: fix policy_unpack_test on big endian systems
     - fbdev: offb: fix up missing cleanup.h
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.109
     - drm: panel-orientation-quirks: Add quirk for OrangePi Neo
     - scsi: ufs: core: Bypass quick recovery if force reset is needed
     - ALSA: hda/generic: Add a helper to mute speakers at suspend/shutdown
     - ALSA: hda/conexant: Mute speakers at suspend / shutdown
     - i2c: Fix conditional for substituting empty ACPI functions
     - dma-debug: avoid deadlock between dma debug vs printk and netconsole
     - net: usb: qmi_wwan: add MeiG Smart SRM825L
     - [x86] ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6
     - mptcp: make pm_remove_addrs_and_subflows static
     - mptcp: pm: fix RM_ADDR ID for the initial subflow
     - PCI/MSI: Fix UAF in msi_capability_init (CVE-2024-41096)
     - f2fs: fix to truncate preallocated blocks in f2fs_file_open()
       (CVE-2024-43859)
     - mptcp: pm: fullmesh: select the right ID later
     - mptcp: pm: avoid possible UaF when selecting endp (CVE-2024-44974)
     - mptcp: pm: reuse ID 0 after delete and re-add
     - mptcp: pm: fix ID 0 endp usage after multiple re-creations
     - mptcp: pr_debug: add missing \n at the end
     - mptcp: avoid duplicated SUB_CLOSED events
     - drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr
     - drm/amd/display: Assign linear_pitch_alignment even for VM
     - drm/amdgpu: fix overflowed array index read warning
     - drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc
     - drm/amd/pm: fix uninitialized variable warning
     - drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr
     - drm/amd/pm: fix warning using uninitialized value of max_vid_step
     - drm/amd/pm: Fix negative array index read
     - drm/amd/pm: fix the Out-of-bounds read warning
     - drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr
     - drm/amdgpu: avoid reading vf2pf info size from FB
     - drm/amd/display: Check gpio_id before used as array index
     - drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6
     - drm/amd/display: Add array index check for hdcp ddc access
     - drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[]
     - drm/amd/display: Check msg_id before processing transcation
     - drm/amd/display: Fix Coverity INTEGER_OVERFLOW within
       dal_gpio_service_create
     - drm/amd/display: Spinlock before reading event
     - drm/amd/display: Ensure index calculation will not overflow
     - drm/amd/display: Skip inactive planes within
       ModeSupportAndSystemConfiguration
     - drm/amd/amdgpu: Check tbo resource pointer
     - drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt
     - drm/amdgpu/pm: Fix uninitialized variable warning for smu10
     - drm/amdgpu/pm: Fix uninitialized variable agc_btc_response
     - drm/amdgpu: Fix out-of-bounds write warning
     - drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number
     - drm/amdgpu: fix ucode out-of-bounds read warning
     - drm/amdgpu: fix mc_data out-of-bounds read warning
     - apparmor: fix possible NULL pointer dereference
     - wifi: ath11k: initialize 'ret' in ath11k_qmi_load_file_target_mem()
     - drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy
       SOCs
     - drm/amdgpu: fix dereference after null check
     - drm/amdgpu: fix the waring dereferencing hive
     - drm/amd/pm: check specific index for aldebaran
     - drm/amdgpu: the warning dereferencing obj for nbio_v7_4
     - drm/amd/pm: check negtive return for table entries
     - wifi: rtw89: ser: avoid multiple deinit on same CAM
     - drm/amdgpu: update type of buf size to u32 for eeprom functions
     - wifi: iwlwifi: remove fw_running op
     - cpufreq: scmi: Avoid overflow of target_freq in fast switch
     - PCI: al: Check IORESOURCE_BUS existence during probe
     - hwspinlock: Introduce hwspin_lock_bust()
     - RDMA/efa: Properly handle unexpected AQ completions
     - ionic: fix potential irq name truncation
     - pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode.
     - rcu/nocb: Remove buggy bypass lock contention mitigation
     - usbip: Don't submit special requests twice
     - usb: typec: ucsi: Fix null pointer dereference in trace
     - fsnotify: clear PARENT_WATCHED flags lazily
     - regmap: spi: Fix potential off-by-one when calculating reserved size
     - smack: tcp: ipv4, fix incorrect labeling
     - net/mlx5e: SHAMPO, Fix incorrect page release
     - [arm64] drm/meson: plane: Add error handling
     - [x86] hwmon: (k10temp) Check return value of amd_smn_read()
     - wifi: cfg80211: make hash table duplicates more survivable
     - driver: iio: add missing checks on iio_info's callback access
     - block: remove the blk_flush_integrity call in blk_integrity_unregister
     - drm/amd/display: added NULL check at start of dc_validate_stream
     - drm/amd/display: Correct the defined value for
       AMDGPU_DMUB_NOTIFICATION_MAX
     - drm/amd/display: Skip wbscl_set_scaler_filter if filter is null
     - media: uvcvideo: Enforce alignment of frame and interval
     - virtio_net: Fix napi_skb_cache_put warning (CVE-2024-43835)
     - Bluetooth: SCO: Fix possible circular locking dependency on
       sco_connect_cfm
     - Bluetooth: SCO: fix sco_conn related locking and validity issues
     - ext4: fix inode tree inconsistency caused by ENOMEM
     - udf: Limit file size to 4TB
     - ext4: reject casefold inode flag without casefold feature
     - ext4: handle redirtying in ext4_bio_write_page()
     - i2c: Use IS_REACHABLE() for substituting empty ACPI functions
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.110
     - sch/netem: fix use after free in netem_dequeue
     - ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object
     - [x86] KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS
     - [x86] KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and
       MSR_GS_BASE
     - [x86] KVM: SVM: Don't advertise Bus Lock Detect to guest if SVM support is
       missing
     - ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius
       devices
     - ALSA: hda/realtek: add patch for internal mic in Lenovo V145
     - ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx
     - ksmbd: unset the binding mark of a reused connection
     - ksmbd: Unlock on in ksmbd_tcp_set_interfaces()
     - ata: libata: Fix memory leak for error path in ata_host_alloc()
     - [x86] tdx: Fix data leak in mmio_read()
     - [x86] perf/x86/intel: Limit the period on Haswell
     - [arm64,armhf] irqchip/gic-v2m: Fix refcount leak in gicv2m_of_init()
     - [x86] kaslr: Expose and use the end of the physical memory address space
     - rtmutex: Drop rt_mutex::wait_lock before scheduling
     - nvme-pci: Add sleep quirk for Samsung 990 Evo
     - Revert "Bluetooth: MGMT/SMP: Fix address type when using SMP over
       BREDR/LE"
     - Bluetooth: MGMT: Ignore keys being loaded with invalid type
     - mmc: core: apply SD quirks earlier during probe
     - mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K
     - mmc: sdhci-of-aspeed: fix module autoloading
     - mmc: cqhci: Fix checking of CQHCI_HALT state
     - fuse: update stats for pages in dropped aux writeback list
     - fuse: use unsigned type for getxattr/listxattr size truncation
     - [arm64] clk: qcom: clk-alpha-pll: Fix the pll post div mask
     - [arm64] clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API
     - can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open
     - spi: rockchip: Resolve unbalanced runtime PM / system PM handling
     - tracing: Avoid possible softlockup in tracing_iter_reset()
     - net: mctp-serial: Fix missing escapes on transmit
     - [x86] fpu: Avoid writing LBR bit to IA32_XSS unless supported
     - Revert "drm/amdgpu: align pp_power_profile_mode with kernel docs"
     - tcp_bpf: fix return value of tcp_bpf_sendmsg()
     - ila: call nf_unregister_net_hooks() sooner
     - sched: sch_cake: fix bulk flow accounting logic for host fairness
     - nilfs2: fix missing cleanup on rollforward recovery error
     - nilfs2: protect references to superblock parameters exposed in sysfs
     - nilfs2: fix state management in error path of log writing function
     - ALSA: control: Apply sanity check of input values for user elements
     - ALSA: hda: Add input value sanity checks to HDMI channel map controls
     - smack: unix sockets: fix accept()ed socket label
     - ELF: fix kernel.randomize_va_space double read
     - [armhf] irqchip/armada-370-xp: Do not allow mapping IRQ 0 and 1
     - af_unix: Remove put_pid()/put_cred() in copy_peercred().
     - [x86] kmsan: Fix hook for unaligned accesses
     - netfilter: nf_conncount: fix wrong variable type
     - udf: Avoid excessive partition lengths
     - media: vivid: fix wrong sizeimage value for mplane
     - leds: spi-byte: Call of_node_put() on error path
     - wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3
     - usb: uas: set host status byte on data completion error
     - usb: gadget: aspeed_udc: validate endpoint index for ast udc
     - drm/amd/display: Check HDCP returned status
     - drm/amdgpu: Fix smatch static checker warning
     - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts
     - media: vivid: don't set HDMI TX controls if there are no HDMI outputs
     - PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0)
     - Input: ili210x - use kvmalloc() to allocate buffer for firmware update
     - media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse
     - pcmcia: Use resource_size function on resource object
     - drm/amd/display: Check denominator pbn_div before used
     - drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6
     - can: bcm: Remove proc entry when dev is unregistered.
     - [arm64] can: m_can: Release irq on error in m_can_open
     - can: mcp251xfd: fix ring configuration when switching from CAN-CC to
       CAN-FD mode
     - cifs: Fix FALLOC_FL_ZERO_RANGE to preflush buffered part of target region
     - igb: Fix not clearing TimeSync interrupts for 82580
     - ice: Add netif_device_attach/detach into PF reset flow
     - [x86] platform/x86: dell-smbios: Fix error path in dell_smbios_init()
     - regulator: Add of_regulator_bulk_get_all
     - regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR
     - igc: Unlock on error in igc_io_resume()
     - ice: Use ice_max_xdp_frame_size() in ice_xdp_setup_prog()
     - ice: allow hot-swapping XDP programs
     - ice: do not bring the VSI up, if it was down before the XDP setup
     - usbnet: modern method to get random MAC
     - bareudp: Fix device stats updates.
     - fou: Fix null-ptr-deref in GRO.
     - net: bridge: br_fdb_external_learn_add(): always set EXT_LEARN
     - net: dsa: vsc73xx: fix possible subblocks range of CAPT block
     - firmware: cs_dsp: Don't allow writes to read-only controls
     - [arm64] phy: zynqmp: Take the phy mutex in xlate
     - [x86] ASoC: topology: Properly initialize soc_enum values
     - dm init: Handle minors larger than 255
     - [amd64] iommu/vt-d: Handle volatile descriptor status read
     - cgroup: Protect css->cgroup write under css_set_lock
     - devres: Initialize an uninitialized struct member
     - pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv
     - [x86] crypto: qat - fix unintentional re-enabling of error interrupts
     - hwmon: (nct6775-core) Fix underflows seen when writing limit attributes
     - hwmon: (w83627ehf) Fix underflows seen when writing limit attributes
     - libbpf: Add NULL checks to bpf_object__{prev_map,next_map}
     - drm/amdgpu: Set no_hw_access when VF request full GPU fails
     - ext4: fix possible tid_t sequence overflows
     - dma-mapping: benchmark: Don't starve others when doing the test
     - wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()
     - smp: Add missing destroy_work_on_stack() call in smp_call_on_cpu()
     - btrfs: replace BUG_ON with ASSERT in walk_down_proc()
     - btrfs: clean up our handling of refs == 0 in snapshot delete
     - btrfs: replace BUG_ON() with error handling at update_ref_for_cow()
     - PCI: Add missing bridge lock to pci_bus_lock()
     - tcp: Don't drop SYN+ACK for simultaneous connect().
     - net: dpaa: avoid on-stack arrays of NR_CPUS elements
     - i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup
     - btrfs: initialize location to fix -Wmaybe-uninitialized in
       btrfs_lookup_dentry()
     - [s390x] vmlinux.lds.S: Move ro_after_init section behind rodata section
     - HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup
     - [amd64] HID: amd_sfh: free driver_data after destroying hid device
     - Input: uinput - reject requests with unreasonable number of slots
     - usbnet: ipheth: race between ipheth_close and error handling
     - Squashfs: sanity check symbolic link size
     - of/irq: Prevent device address out-of-bounds read in interrupt map walk
     - lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()
     - [mips*] cevt-r4k: Don't call get_c0_compare_int if timer irq is installed
     - ata: pata_macio: Use WARN instead of BUG
     - NFSv4: Add missing rescheduling points in
       nfs_client_return_marked_delegations
     - io_uring/io-wq: stop setting PF_NO_SETAFFINITY on io-wq workers
     - io_uring/sqpoll: Do not set PF_NO_SETAFFINITY on sqpoll threads
     - tcp: process the 3rd ACK with sk_socket for TFO/MPTCP
     - iio: buffer-dmaengine: fix releasing dma channel on error
     - iio: fix scale application in iio_convert_raw_to_processed_unlocked
     - iio: adc: ad7124: fix config comparison
     - iio: adc: ad7606: remove frstdata check for serial mode
     - iio: adc: ad7124: fix chip ID mismatch
     - [arm64,armhf] usb: dwc3: core: update LC timer as per USB Spec V3.2
     - [arm*] binder: fix UAF caused by offsets overwrite
     - nvmem: Fix return type of devm_nvmem_device_get() in kerneldoc
     - uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind
     - Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic
     - VMCI: Fix use-after-free when removing resource in vmci_resource_remove()
     - clocksource/drivers/timer-of: Remove percpu irq related code
     - uprobes: Use kzalloc to allocate xol area
     - perf/aux: Fix AUX buffer serialization (CVE-2024-46713)
     - fuse: add "expire only" mode to FUSE_NOTIFY_INVAL_ENTRY
     - fuse: allow non-extending parallel direct writes on the same file
     - fuse: add request extension
     - fuse: fix memory leak in fuse_create_open
     - net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup
     - workqueue: wq_watchdog_touch is always called with valid CPU
     - workqueue: Improve scalability of workqueue watchdog touch
     - ACPI: processor: Return an error if acpi_processor_get_info() fails in
       processor_add()
     - ACPI: processor: Fix memory leaks in error paths of processor_add()
     - [arm64] acpi: Move get_cpu_for_acpi_id() to a header
     - [arm64] acpi: Harden get_cpu_for_acpi_id() against missing CPU entry
     - can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate
       function
     - can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index
       erratum
     - can: mcp251xfd: clarify the meaning of timestamp
     - can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd
     - drm/amd: Add gfx12 swizzle mode defs
     - drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes
     - [powerpc*] 64e: remove unused IBM HTW code
     - [powerpc*] 64e: split out nohash Book3E 64-bit code
     - [powerpc*] 64e: Define mmu_pte_psize static
     - nvmet-tcp: fix kernel crash if commands allocation fails
     - [x86] ASoc: SOF: topology: Clear SOF link platform name upon unload
     - [arm64,armhf] ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode
     - [x86] drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused
     - [x86] drm/i915/fence: Mark debug_fence_free() with __maybe_unused
     - [arm64,armhf] gpio: rockchip: fix OF node leak in probe()
     - [arm64] gpio: modepin: Enable module autoloading
     - [x86] mm: Fix PTI for i386 some more
     - btrfs: fix race between direct IO write and fsync when using same fd
     - bpf: Silence a warning in btf_type_id_size()
     - memcg: protect concurrent access to mem_cgroup_idr (CVE-2024-43892)
     - regulator: of: fix a NULL vs IS_ERR() check in of_regulator_bulk_get_all()
     - fuse: add feature flag for expire-only
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.111
     - ksmbd: override fsids for share path check
     - ksmbd: override fsids for smb2_query_info()
     - usbnet: ipheth: fix carrier detection in modes 1 and 4
     - net: ethernet: use ip_hdrlen() instead of bit shift
     - drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero
     - drm: panel-orientation-quirks: Add quirk for Ayn Loki Max
     - net: phy: vitesse: repair vsc73xx autonegotiation
     - [powerpc*] mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL
     - btrfs: update target inode's ctime on unlink
     - Input: ads7846 - ratelimit the spi_sync error message
     - Input: synaptics - enable SMBus for HP Elitebook 840 G2
     - HID: multitouch: Add support for GT7868Q
     - scripts: kconfig: merge_config: config files: add a trailing newline
     - [x86] platform/surface: aggregator_registry: Add Support for Surface Pro
       10
     - [x86] platform/surface: aggregator_registry: Add support for Surface
       Laptop Go 3
     - [arm64] drm/msm/adreno: Fix error return if missing firmware-name
     - Input: i8042 - add Fujitsu Lifebook E756 to i8042 quirk table
     - smb/server: fix return value of smb2_open()
     - NFSv4: Fix clearing of layout segments in layoutreturn
     - NFS: Avoid unnecessary rescanning of the per-server delegation list
     - [x86] platform/x86: panasonic-laptop: Fix SINF array out of bounds
       accesses
     - [x86] platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf
       array
     - mptcp: pm: Fix uaf in __timer_delete_sync
     - [arm64] dts: rockchip: fix eMMC/SPI corruption when audio has been used on
       RK3399 Puma
     - [arm64] dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399
       Puma
     - net: tighten bad gso csum offset check in virtio_net_hdr
     - dm-integrity: fix a race condition when accessing recalc_sector
     - mm: avoid leaving partial pfn mappings around in error case
     - pmdomain: ti: Add a null pointer check to the omap_prm_domain_init
       (CVE-2024-35943)
     - [arm64] dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E
     - eeprom: digsy_mtc: Fix 93xx46 driver probe failure
     - cxl/core: Fix incorrect vendor debug UUID define
     - [armhf] hwmon: (pmbus) Conditionally clear individual status bits for
       pmbus rev >= 1.2
     - ice: fix accounting for filters shared by multiple VSIs
     - igb: Always call igb_xdp_ring_update_tail() under Tx lock
     - net/mlx5: Update the list of the PCI supported devices
     - net/mlx5e: Add missing link modes to ptys2ethtool_map
     - net/mlx5: Explicitly set scheduling element and TSAR type
     - net/mlx5: Add missing masks and QoS bit masks for scheduling elements
     - net/mlx5: Correct TASR typo into TSAR
     - net/mlx5: Verify support for scheduling element and TSAR type
     - net/mlx5: Fix bridge mode operations when there are no VFs
     - fou: fix initialization of grc
     - netfilter: nft_socket: fix sk refcount leaks
     - net: dpaa: Pad packets to ETH_ZLEN
     - [arm64] spi: nxp-fspi: fix the KASAN report out-of-bounds bug
     - soundwire: stream: Revert "soundwire: stream: fix programming slave ports
       for non-continous port maps"
     - dma-buf: heaps: Fix off-by-one in CMA heap fault handler
     - drm/amdgpu/atomfirmware: Silence UBSAN warning
     - [x86] drm/i915/guc: prevent a possible int overflow in wq offsets
     - pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID
     - [arm64] ASoC: meson: axg-card: fix 'use-after-free'
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.112
     - ALSA: hda/realtek - Fixed ALC256 headphone no sound
     - ALSA: hda/realtek - FIxed ALC285 headphone no sound
     - scsi: lpfc: Fix overflow build issue
     - [x86] hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING
     - [armhf] net: ftgmac100: Ensure tx descriptor updates are visible
     - wifi: iwlwifi: lower message level for FW buffer destination
     - wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation
     - wifi: iwlwifi: mvm: pause TCM when the firmware is stopped
     - wifi: iwlwifi: mvm: don't wait for tx queues if firmware is dead
     - wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap()
     - wifi: iwlwifi: clear trans->state earlier upon error
     - can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration
     - [x86] ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match
       less strict
     - [x86] ASoC: intel: fix module autoloading
     - spi: spidev: Add an entry for elgin,jg10309-01
     - spi: bcm63xx: Enable module autoloading
     - smb: client: fix hang in wait_for_response() for negproto
     - [x86] hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides
       frequency
     - tools: hv: rm .*.cmd when make clean
     - block: Fix where bio IO priority gets set
     - spi: spidev: Add missing spi_device_id for jg10309-01
     - ocfs2: add bounds checking to ocfs2_xattr_find_entry()
     - ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()
       (CVE-2024-41016)
     - xfs: dquot shrinker doesn't check for XFS_DQFLAG_FREEING
     - xfs: Fix deadlock on xfs_inodegc_worker
     - xfs: fix extent busy updating
     - xfs: don't use BMBT btree split workers for IO completion
     - xfs: fix low space alloc deadlock
     - xfs: prefer free inodes at ENOSPC over chunk allocation
     - xfs: block reservation too large for minleft allocation
     - xfs: fix uninitialized variable access
     - xfs: quotacheck failure can race with background inode inactivation
     - xfs: fix BUG_ON in xfs_getbmap()
     - xfs: buffer pins need to hold a buffer reference
     - xfs: defered work could create precommits
     - xfs: fix AGF vs inode cluster buffer deadlock
     - xfs: collect errors from inodegc for unlinked inode recovery
     - xfs: fix ag count overflow during growfs
     - xfs: remove WARN when dquot cache insertion fails
     - xfs: fix the calculation for "end" and "length"
     - xfs: load uncached unlinked inodes into memory on demand
     - xfs: fix negative array access in xfs_getbmap
     - xfs: fix unlink vs cluster buffer instantiation race
     - xfs: correct calculation for agend and blockcount
     - xfs: use i_prev_unlinked to distinguish inodes that are not on the
       unlinked list
     - xfs: reload entire unlinked bucket lists
     - xfs: make inode unlinked bucket recovery work with quotacheck
     - xfs: fix reloading entire unlinked bucket lists
     - xfs: set bnobt/cntbt numrecs correctly when formatting new AGs
     - xfs: journal geometry is not properly bounds checked
     - netfilter: nft_socket: make cgroupsv2 matching work with namespaces
     - netfilter: nft_socket: Fix a NULL vs IS_ERR() bug in
       nft_socket_cgroup_subtree_level()
     - netfilter: nft_set_pipapo: walk over current view on netlink dump
       (CVE-2024-27017)
     - netfilter: nf_tables: missing iterator type in lookup walk
     - Revert "wifi: cfg80211: check wiphy mutex is held for wdev mutex"
     - gpiolib: cdev: Ignore reconfiguration without direction
     - gpio: prevent potential speculation leaks in gpio_device_get_desc()
       (CVE-2024-44931)
     - can: mcp251xfd: properly indent labels
     - can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into
       mcp251xfd_chip_start/stop()
     - btrfs: calculate the right space for delayed refs when updating global
       reserve
     - [x86] powercap: RAPL: fix invalid initialization for pl4_supported field
     - [x86] mm: Switch to new Intel CPU model defines
     - USB: serial: pl2303: add device id for Macrosilicon MS3020
     - USB: usbtmc: prevent kernel-usb-infoleak
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 26
   * [rt] Update to 6.1.107-rt39
   * [rt] Update to 6.1.111-rt42

linux-signed-arm64 (6.1.115+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.115-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.113
     - wifi: rtw88: always wait for both firmware loading attempts
       (CVE-2024-47718)
     - crypto: xor - fix template benchmarking
     - ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe()
     - wifi: ath9k: fix parameter check in ath9k_init_debug()
     - wifi: ath9k: Remove error checks when creating debugfs entries
     - wifi: rtw88: remove CPT execution branch never used
     - fs/namespace: fnic: Switch to use %ptTd
     - mount: handle OOM on mnt_warn_timestamp_expiry
     - drivers/perf: Fix ali_drw_pmu driver interrupt status clearing
       (CVE-2024-47731)
     - wifi: mac80211: don't use rate mask for offchannel TX either
       (CVE-2024-47738)
     - wifi: iwlwifi: mvm: increase the time between ranging measurements
     - ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE
     - ACPICA: executer/exsystem: Don't nag user about every Stall() violating
       the spec
     - padata: Honor the caller's alignment in case of chunk_size 0
     - drivers/perf: hisi_pcie: Record hardware counts correctly
     - can: j1939: use correct function name in comment
     - ACPI: CPPC: Fix MASK_VAL() usage
     - netfilter: nf_tables: elements with timeout below CONFIG_HZ never expire
     - netfilter: nf_tables: reject element expiration with no timeout
     - netfilter: nf_tables: reject expiration higher than timeout
     - netfilter: nf_tables: remove annotation to access set timeout while
       holding lock
     - [arm64] perf/arm-cmn: Rework DTC counters (again)
     - [arm64] perf/arm-cmn: Improve debugfs pretty-printing for large configs
     - [arm64] perf/arm-cmn: Refactor node ID handling. Again.
     - [arm64] perf/arm-cmn: Ensure dtm_idx is big enough
     - cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately
     - [x86] sgx: Fix deadlock in SGX NUMA node search (CVE-2024-49856)
     - crypto: hisilicon/hpre - enable sva error interrupt event
     - crypto: hisilicon/hpre - mask cluster timeout error
     - crypto: hisilicon/qm - fix coding style issues
     - crypto: hisilicon/qm - reset device before enabling it
     - crypto: hisilicon/qm - inject error before stopping queue (CVE-2024-47730)
     - wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan()
     - wifi: mt76: mt7915: fix rx filter setting for bfee functionality
     - wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors
     - wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()
       (CVE-2024-47713)
     - wifi: wilc1000: fix potential RCU dereference issue in
       wilc_parse_join_bss_param (CVE-2024-47712)
     - Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED
     - Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL
     - sock_map: Add a cond_resched() in sock_hash_free()
     - can: bcm: Clear bo->bcm_proc_read after remove_proc_entry().
       (CVE-2024-47709)
     - can: m_can: Remove repeated check for is_peripheral
     - can: m_can: enable NAPI before enabling interrupts
     - can: m_can: m_can_close(): stop clocks after device has been shut down
     - Bluetooth: btusb: Fix not handling ZPL/short-transfer
     - bareudp: Pull inner IP header in bareudp_udp_encap_recv().
     - bareudp: Pull inner IP header on xmit.
     - net: enetc: Use IRQF_NO_AUTOEN flag in request_irq()
     - r8169: disable ALDPS per default for RTL8125
     - net: ipv6: rpl_iptunnel: Fix memory leak in rpl_input
     - net: tipc: avoid possible garbage value
     - ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()
       (CVE-2024-47707)
     - nbd: fix race between timeout and normal completion (CVE-2024-49855)
     - block, bfq: fix possible UAF for bfqq->bic with merge chain
       (CVE-2024-47706)
     - block, bfq: choose the last bfqq from merge chain in
       bfq_setup_cooperator()
     - block, bfq: don't break merge chain in bfq_split_bfqq()
     - block: print symbolic error name instead of error code
     - block: fix potential invalid pointer dereference in blk_add_partition
       (CVE-2024-47705)
     - spi: ppc4xx: handle irq_of_parse_and_map() errors
     - [arm64] dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB
     - firmware: arm_scmi: Fix double free in OPTEE transport (CVE-2024-49853)
     - spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ
     - regulator: Return actual error in of_regulator_bulk_get_all()
     - [arm64] dts: renesas: r9a07g043u: Correct GICD and GICR sizes
     - [arm64] dts: renesas: r9a07g054: Correct GICD and GICR sizes
     - [arm64] dts: renesas: r9a07g044: Correct GICD and GICR sizes
     - [arm64] dts: ti: k3-j721e-sk: Fix reversed C6x carveout locations
     - reset: berlin: fix OF node leak in probe() error path
     - reset: k210: fix OF node leak in probe() error path
     - clocksource/drivers/qcom: Add missing iounmap() on errors in
       msm_dt_timer_init()
     - ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error
     - ALSA: hda: cs35l41: fix module autoloading
     - hwmon: (max16065) Fix overflows seen when writing limits
     - i2c: Add i2c_get_match_data()
     - hwmon: (max16065) Remove use of i2c_match_id()
     - hwmon: (max16065) Fix alarm attributes
     - mtd: slram: insert break after errors in parsing the map
     - hwmon: (ntc_thermistor) fix module autoloading
     - power: supply: axp20x_battery: Remove design from min and max voltage
     - power: supply: max17042_battery: Fix SOC threshold calc w/ no current
       sense
     - fbdev: hpfb: Fix an error handling path in hpfb_dio_probe()
     - [amd64] iommu/amd: Do not set the D bit on AMD v2 table entries
     - mtd: powernv: Add check devm_kasprintf() returned value
     - rcu/nocb: Fix RT throttling hrtimer armed from offline CPU
     - mtd: rawnand: mtk: Use for_each_child_of_node_scoped()
     - mtd: rawnand: mtk: Factorize out the logic cleaning mtk chips
     - mtd: rawnand: mtk: Fix init error path
     - pmdomain: core: Harden inter-column space in debug summary
     - drm/stm: Fix an error handling path in stm_drm_platform_probe()
     - drm/stm: ltdc: check memory returned by devm_kzalloc()
     - drm/amd/display: Add null check for set_output_gamma in
       dcn30_set_output_transfer_func (CVE-2024-47720)
     - drm/amdgpu: Replace one-element array with flexible-array member
     - drm/amdgpu: properly handle vbios fake edid sizing
     - drm/radeon: Replace one-element array with flexible-array member
     - drm/radeon: properly handle vbios fake edid sizing
     - scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly
     - scsi: NCR5380: Check for phase match during PDMA fixup
     - drm/amd/amdgpu: Properly tune the size of struct
     - drm/rockchip: vop: Allow 4096px width scaling
     - drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode
     - drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets
     - drm/bridge: lontium-lt8912b: Validate mode in
       drm_bridge_funcs::mode_valid()
     - drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get
     - scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()
       (CVE-2024-49852)
     - jfs: fix out-of-bounds in dbNextAG() and diAlloc()
     - drm/mediatek: Fix missing configuration flags in mtk_crtc_ddp_config()
     - drm/mediatek: Use spin_lock_irqsave() for CRTC event lock
     - [powerpc*] 8xx: Fix initial memory mapping
     - [powerpc*] 8xx: Fix kernel vs user address comparison
     - drm/msm: Fix incorrect file name output in adreno_request_fw()
     - drm/msm/a5xx: disable preemption in submits by default
     - drm/msm/a5xx: properly clear preemption records on resume
     - drm/msm/a5xx: fix races in preemption evaluation stage
     - drm/msm/a5xx: workaround early ring-buffer emptiness check
     - ipmi: docs: don't advertise deprecated sysfs entries
     - drm/msm: fix %s null argument error
     - drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind()
     - xen: use correct end address of kernel for conflict checking
     - HID: wacom: Support sequence numbers smaller than 16-bit
     - HID: wacom: Do not warn about dropped packets for first packet
     - xen/swiotlb: add alignment check for dma buffers
     - xen/swiotlb: fix allocated size
     - tpm: Clean up TPM space after command failure (CVE-2024-49851)
     - bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos
       (CVE-2024-49850)
     - xz: cleanup CRC32 edits from 2018
     - kthread: fix task state in kthread worker if being frozen
     - ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard
     - smackfs: Use rcu_assign_pointer() to ensure safe assignment in
       smk_set_cipso
     - ext4: avoid buffer_head leak in ext4_mark_inode_used()
     - ext4: avoid potential buffer_head leak in __ext4_new_inode()
     - ext4: avoid negative min_clusters in find_group_orlov()
     - ext4: return error on ext4_find_inline_entry
     - ext4: avoid OOB when system.data xattr changes underneath the filesystem
       (CVE-2024-47701)
     - nilfs2: fix potential null-ptr-deref in nilfs_btree_insert()
       (CVE-2024-47699)
     - nilfs2: determine empty node blocks as corrupted
     - nilfs2: fix potential oob read in nilfs_btree_check_delete()
       (CVE-2024-47757)
     - bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit
     - bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types
     - bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error
       (CVE-2024-47728)
     - perf mem: Free the allocated sort string, fixing a leak
     - perf inject: Fix leader sampling inserting additional samples
     - perf sched timehist: Fix missing free of session in perf_sched__timehist()
     - perf stat: Display iostat headers correctly
     - perf sched timehist: Fixed timestamp error when unable to confirm event
       sched_in time
     - perf time-utils: Fix 32-bit nsec parsing
     - clk: imx: composite-8m: Less function calls in __imx8m_clk_hw_composite()
       after error detection
     - clk: imx: composite-8m: Enable gate clk with mcore_booted
     - clk: imx: composite-7ulp: Check the PCC present bit
     - clk: imx: fracn-gppll: support integer pll
     - clk: imx: fracn-gppll: fix fractional part of PLL getting lost
     - clk: imx: imx8mp: fix clock tree update of TF-A managed clocks
     - clk: imx: imx8qxp: Register dc0_bypass0_clk before disp clk
     - clk: imx: imx8qxp: Parent should be initialized earlier than the clock
     - remoteproc: imx_rproc: Correct ddr alias for i.MX8M
     - remoteproc: imx_rproc: Initialize workqueue earlier
     - clk: rockchip: Set parent rate for DCLK_VOP clock on RK3228
     - Input: ilitek_ts_i2c - avoid wrong input subsystem sync
     - Input: ilitek_ts_i2c - add report id message validation
     - drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error
       (CVE-2024-47698)
     - drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error
       (CVE-2024-47697)
     - PCI/PM: Increase wait time after resume
     - PCI/PM: Drop pci_bridge_wait_for_secondary_bus() timeout parameter
     - PCI: Wait for Link before restoring Downstream Buses
     - PCI: keystone: Fix if-statement expression in ks_pcie_quirk()
       (CVE-2024-47756)
     - clk: qcom: dispcc-sm8250: use special function for Lucid 5LPE PLL
     - nvdimm: Fix devs leaks in scan_labels()
     - PCI: xilinx-nwl: Fix register misspelling
     - PCI: xilinx-nwl: Clean up clock on probe failure/removal
     - RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency
       (CVE-2024-47696)
     - pinctrl: single: fix missing error code in pcs_probe()
     - RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer
     - RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (CVE-2024-47695)
     - clk: ti: dra7-atl: Fix leak of of_nodes
     - nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire
     - nfsd: fix refcount leak when file is unhashed after being found
     - pinctrl: mvebu: Use devm_platform_get_and_ioremap_resource()
     - pinctrl: mvebu: Fix devinit_dove_pinctrl_probe function
     - IB/core: Fix ib_cache_setup_one error flow cleanup (CVE-2024-47693)
     - PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port()
       (CVE-2024-47751)
     - RDMA/erdma: Return QP state in erdma_query_qp
     - watchdog: imx_sc_wdt: Don't disable WDT in suspend
     - [arm64] RDMA/hns: Don't modify rq next block addr in HIP09 QPC
     - [arm64] RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (CVE-2024-47750)
     - [arm64] RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range()
     - [arm64] RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled
     - [arm64] RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler
     - [arm64] RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS
     - [arm64] RDMA/hns: Optimize hem allocation performance
     - RDMA/cxgb4: Added NULL check for lookup_atid (CVE-2024-47749)
     - RDMA/irdma: fix error message in irdma_modify_qp_roce()
     - ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir()
     - ntb_perf: Fix printk format
     - ntb: Force physically contiguous allocation of rx ring buffers
     - nfsd: call cache_put if xdr_reserve_space returns NULL (CVE-2024-47737)
     - nfsd: return -EINVAL when namelen is 0 (CVE-2024-47692)
     - f2fs: fix to update i_ctime in __f2fs_setxattr()
     - f2fs: remove unneeded check condition in __f2fs_setxattr()
     - f2fs: reduce expensive checkpoint trigger frequency
     - f2fs: factor the read/write tracing logic into a helper
     - f2fs: fix to avoid racing in between read and OPU dio write
     - f2fs: fix to wait page writeback before setting gcing flag
     - f2fs: atomic: fix to truncate pagecache before on-disk metadata truncation
     - f2fs: clean up w/ dotdot_name
     - f2fs: get rid of online repaire on corrupted directory (CVE-2024-47690)
     - spi: atmel-quadspi: Undo runtime PM changes at driver exit time
     - spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time
     - lib/sbitmap: define swap_lock as raw_spinlock_t
     - nvme-multipath: system fails to create generic nvme device
     - iio: adc: ad7606: fix oversampling gpio array
     - iio: adc: ad7606: fix standby gpio state to match the documentation
     - ABI: testing: fix admv8818 attr description
     - iio: chemical: bme680: Fix read/write ops to device by adding mutexes
     - iio: magnetometer: ak8975: Convert enum->pointer for data in the match
       tables
     - iio: magnetometer: ak8975: drop incorrect AK09116 compatible
     - dt-bindings: iio: asahi-kasei,ak8975: drop incorrect AK09116 compatible
     - coresight: tmc: sg: Do not leak sg_table
     - cxl/pci: Break out range register decoding from cxl_hdm_decode_init()
     - cxl/pci: Fix to record only non-zero ranges
     - vdpa: Add eventfd for the vdpa callback
     - vhost_vdpa: assign irq bypass producer token correctly (CVE-2024-47748)
     - ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (CVE-2024-47686)
     - Revert "dm: requeue IO if mapping table not yet available"
     - net: xilinx: axienet: Schedule NAPI in two steps
     - net: xilinx: axienet: Fix packet counting
     - netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (CVE-2024-47685)
     - net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race
       Condition (CVE-2024-47747)
     - net: ipv6: select DST_CACHE from IPV6_RPL_LWTUNNEL
     - tcp: check skb is non-NULL in tcp_rto_delta_us() (CVE-2024-47684)
     - net: qrtr: Update packets cloning when broadcasting
     - bonding: Fix unnecessary warnings and logs from bond_xdp_get_xmit_slave()
       (CVE-2024-47734)
     - net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled
     - netfilter: nf_tables: Keep deleted flowtable hooks until after RCU
     - netfilter: ctnetlink: compile ctnetlink_label_size with
       CONFIG_NF_CONNTRACK_EVENTS
     - io_uring/sqpoll: do not allow pinning outside of cpuset
     - drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination
     - io_uring/io-wq: do not allow pinning outside of cpuset
     - io_uring/io-wq: inherit cpuset of cgroup in io worker
     - vfio/pci: fix potential memory leak in vfio_intx_enable() (CVE-2024-38632)
     - selinux,smack: don't bypass permissions check in inode_setsecctx hook
       (CVE-2024-46695)
     - drm/vmwgfx: Prevent unmapping active read buffers (CVE-2024-46710)
     - io_uring/sqpoll: retain test for whether the CPU is valid
     - io_uring/sqpoll: do not put cpumask on stack
     - Remove *.orig pattern from .gitignore
     - PCI: imx6: Fix missing call to phy_power_off() in error handling
     - PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler
     - ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error
     - soc: versatile: integrator: fix OF node leak in probe() error path
     - Revert "media: tuners: fix error return code of
       hybrid_tuner_request_state()"
     - Input: adp5588-keys - fix check on return code
     - Input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table
     - Input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table
     - Input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line
     - [x86] KVM: x86: Enforce x2APIC's must-be-zero reserved ICR bits
     - [x86] KVM: x86: Move x2APIC ICR helper above kvm_apic_write_nodecode()
     - drm/amd/display: Skip Recompute DSC Params if no Stream on Link
       (CVE-2024-47683)
     - drm/amd/display: Round calculated vtotal
     - drm/amd/display: Validate backlight caps are sane
     - KEYS: prevent NULL pointer dereference in find_asymmetric_key()
       (CVE-2024-47743)
     - fs: Create a generic is_dot_dotdot() utility
     - ksmbd: make __dir_empty() compatible with POSIX
     - ksmbd: allow write with FILE_APPEND_DATA
     - ksmbd: handle caseless file creation
     - scsi: sd: Fix off-by-one error in sd_read_block_characteristics()
       (CVE-2024-47682)
     - scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages
     - scsi: mac_scsi: Refactor polling loop
     - scsi: mac_scsi: Disallow bus errors during PDMA send
     - usbnet: fix cyclical race on disconnect with work queue
     - [arm64] dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled
     - USB: appledisplay: close race between probe and completion handler
     - USB: misc: cypress_cy7c63: check for short transfer
     - USB: class: CDC-ACM: fix race between get_serial and set_serial
     - usb: cdnsp: Fix incorrect usb_request status
     - usb: dwc2: drd: fix clock gating on USB role switch
     - bus: integrator-lm: fix OF node leak in probe()
     - bus: mhi: host: pci_generic: Fix the name for the Telit FE990A
     - firmware_loader: Block path traversal (CVE-2024-47742)
     - tty: rp2: Fix reset with non forgiving PCIe host bridges
     - xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them.
     - crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure
     - drbd: Fix atomicity violation in drbd_uuid_set_bm()
     - drbd: Add NULL check for net_conf to prevent dereference in state
       validation
     - ACPI: sysfs: validate return type of _STR method (CVE-2024-49860)
     - ACPI: resource: Add another DMI match for the TongFang GMxXGxx
     - efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption
       (CVE-2024-49858)
     - perf/x86/intel/pt: Fix sampling synchronization
     - wifi: rtw88: 8822c: Fix reported RX band width
     - wifi: mt76: mt7615: check devm_kasprintf() returned value
     - debugobjects: Fix conditions in fill_pool()
     - f2fs: fix several potential integer overflows in file offsets
     - f2fs: prevent possible int overflow in dir_block_index()
     - f2fs: avoid potential int overflow in sanity_check_area_boundary()
     - f2fs: fix to check atomic_file in f2fs ioctl interfaces (CVE-2024-49859)
     - hwrng: mtk - Use devm_pm_runtime_enable
     - hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init
     - hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume
     - [arm64] dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency
     - [arm64] dts: rockchip: Correct the Pinebook Pro battery design capacity
     - vfs: fix race between evice_inodes() and find_inode()&iput()
     - fs: Fix file_set_fowner LSM hook inconsistencies
     - nfs: fix memory leak in error path of nfs4_do_reclaim
     - EDAC/igen6: Fix conversion of system address to physical memory address
     - padata: use integer wrap around to prevent deadlock on seq_nr overflow
       (CVE-2024-47739)
     - soc: versatile: realview: fix memory leak during device remove
     - soc: versatile: realview: fix soc_dev leak during device remove
     - [powerpc*] 64: Option to build big-endian with ELFv2 ABI
     - [powerpc*] 64: Add support to build with prefixed instructions
     - [powerpc*] atomic: Use YZ constraints for DS-form instructions
     - usb: yurex: Replace snprintf() with the safer scnprintf() variant
     - USB: misc: yurex: fix race between read and write
     - xhci: fix event ring segment table related masks and variables in header
     - xhci: remove xhci_test_trb_in_td_math early development check
     - xhci: Refactor interrupter code for initial multi interrupter support.
     - xhci: Preserve RsvdP bits in ERSTBA register correctly
     - xhci: Add a quirk for writing ERST in high-low order
     - usb: xhci: fix loss of data on Cadence xHC
     - pps: remove usage of the deprecated ida_simple_xx() API
     - pps: add an error check in parport_attach
     - [x86] idtentry: Incorporate definitions/declarations of the FRED entries
     - [x86] entry: Remove unwanted instrumentation in common_interrupt()
     - mm/filemap: return early if failed to allocate memory for split
     - lib/xarray: introduce a new helper xas_get_order
     - mm/filemap: optimize filemap folio adding
     - icmp: Add counters for rate limits
     - icmp: change the order of rate limits (CVE-2024-47678)
     - bpf: lsm: Set bpf_lsm_blob_sizes.lbs_task to 0
     - lockdep: fix deadlock issue between lockdep and rcu
     - mm: only enforce minimum stack gap size if it's sensible
     - module: Fix KCOV-ignored file name
     - mm/damon/vaddr: protect vma traversal in __damon_va_thre_regions() with
       rcu read lock
     - i2c: aspeed: Update the stop sw state when the bus recovery occurs
     - i2c: isch: Add missed 'else'
     - usb: yurex: Fix inconsistent locking bug in yurex_read()
     - perf/arm-cmn: Fail DTC counter allocation correctly
     - iio: magnetometer: ak8975: Fix 'Unexpected device' error
     - [powerpc*] Allow CONFIG_PPC64_BIG_ENDIAN_ELF_ABI_V2 with ld.lld 15+
     - PCI/PM: Mark devices disconnected if upstream PCIe link is down on resume
     - [x86*] tdx: Fix "in-kernel MMIO" check (CVE-2024-47727)
     - static_call: Handle module init failure correctly in
       static_call_del_module() (CVE-2024-50002)
     - static_call: Replace pointless WARN_ON() in static_call_module_notify()
     - jump_label: Simplify and clarify static_key_fast_inc_cpus_locked()
     - jump_label: Fix static_key_slow_dec() yet again
     - scsi: pm8001: Do not overwrite PCI queue mapping
     - mailbox: rockchip: fix a typo in module autoloading
     - mailbox: bcm2835: Fix timeout during suspend mode (CVE-2024-49963)
     - ceph: remove the incorrect Fw reference check when dirtying pages
     - ieee802154: Fix build error
     - net: sparx5: Fix invalid timestamps
     - net/mlx5: Fix error path in multi-packet WQE transmit (CVE-2024-50001)
     - net/mlx5: Added cond_resched() to crdump collection
     - net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (CVE-2024-50000)
     - netfilter: uapi: NFTA_FLOWTABLE_HOOK is NLA_NESTED
     - net: ieee802154: mcr20a: Use IRQF_NO_AUTOEN flag in request_irq()
     - net: wwan: qcom_bam_dmux: Fix missing pm_runtime_disable()
     - netfilter: nf_tables: prevent nf_skb_duplicated corruption
       (CVE-2024-49952)
     - Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq()
     - net: ethernet: lantiq_etop: fix memory disclosure (CVE-2024-49997)
     - net: avoid potential underflow in qdisc_pkt_len_init() with UFO
     - net: add more sanity checks to qdisc_pkt_len_init() (CVE-2024-49948)
     - net: stmmac: dwmac4: extend timeout for VLAN Tag register busy bit check
     - ipv4: ip_gre: Fix drops of small packets in ipgre_xmit
     - ppp: do not assume bh is held in ppp_channel_bridge_input()
       (CVE-2024-49946)
     - fsdax,xfs: port unshare to fsdax
     - iomap: constrain the file range passed to iomap_file_unshare
     - sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start
       (CVE-2024-49944)
     - i2c: xiic: improve error message when transfer fails to start
     - i2c: xiic: Try re-initialization on bus busy timeout
     - loop: don't set QUEUE_FLAG_NOMERGES
     - Bluetooth: hci_sock: Fix not validating setsockopt user input
       (CVE-2024-35963)
     - media: usbtv: Remove useless locks in usbtv_video_free() (CVE-2024-27072)
     - ASoC: atmel: mchp-pdmc: Skip ALSA restoration if substream runtime is
       uninitialized
     - ALSA: mixer_oss: Remove some incorrect kfree_const() usages
     - ALSA: hda/realtek: Fix the push button function for the ALC257
     - ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs
     - ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m
     - ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin
     - f2fs: Require FMODE_WRITE for atomic write ioctls (CVE-2024-47740)
     - wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats()
     - wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit
     - ice: Adjust over allocation of memory in ice_sched_add_root_node() and
       ice_sched_add_node()
     - wifi: iwlwifi: mvm: Fix a race in scan abort flow
     - wifi: cfg80211: Set correct chandef when starting CAC (CVE-2024-49937)
     - net/xen-netback: prevent UAF in xenvif_flush_hash() (CVE-2024-49936)
     - net: hisilicon: hip04: fix OF node leak in probe()
     - net: hisilicon: hns_dsaf_mac: fix OF node leak in hns_mac_get_info()
     - net: hisilicon: hns_mdio: fix OF node leak in probe()
     - ACPI: PAD: fix crash in exit_round_robin() (CVE-2024-49935)
     - ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails
     - ACPICA: Fix memory leak if acpi_ps_get_next_field() fails
     - wifi: mt76: mt7915: disable tx worker during tx BA session enable/disable
     - net: sched: consistently use rcu_replace_pointer() in taprio_change()
     - Bluetooth: btusb: Add Realtek RTL8852C support ID 0x0489:0xe122
     - ACPI: video: Add force_vendor quirk for Panasonic Toughbook CF-18
     - blk_iocost: fix more out of bound shifts (CVE-2024-49933)
     - nvme-pci: qdepth 1 quirk
     - wifi: ath11k: fix array out-of-bound access in SoC stats (CVE-2024-49930)
     - wifi: rtw88: select WANT_DEV_COREDUMP
     - ACPI: EC: Do not release locks during operation region accesses
     - ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in
       acpi_db_convert_to_package()
     - tipc: guard against string buffer overrun (CVE-2024-49995)
     - net: mvpp2: Increase size of queue_name buffer
     - bnxt_en: Extend maximum length of version string by 1 byte
     - ipv4: Check !in_dev earlier for ioctl(SIOCSIFADDR).
     - wifi: rtw89: correct base HT rate mask for firmware
     - ipv4: Mask upper DSCP bits and ECN bits in NETLINK_FIB_LOOKUP family
     - net: atlantic: Avoid warning about potential string truncation
     - crypto: simd - Do not call crypto_alloc_tfm during registration
     - tcp: avoid reusing FIN_WAIT2 when trying to find port in connect() process
     - wifi: mac80211: fix RCU list iterations
     - ACPICA: iasl: handle empty connection_node
     - proc: add config & param to block forcing mem writes
     - wifi: mt76: mt7915: hold dev->mt76.mutex while disabling tx worker
     - wifi: mwifiex: Fix memcpy() field-spanning write warning in
       mwifiex_cmd_802_11_scan_ext()
     - nfp: Use IRQF_NO_AUTOEN flag in request_irq()
     - ALSA: usb-audio: Add input value sanity checks for standard types
     - [x86] ioapic: Handle allocation failures gracefully (CVE-2024-49927)
     - ALSA: usb-audio: Define macros for quirk table entries
     - ALSA: usb-audio: Replace complex quirk lines with macros
     - ALSA: usb-audio: Add logitech Audio profile quirk
     - ASoC: codecs: wsa883x: Handle reading version failure
     - [x86] kexec: Add EFI config table identity mapping for kexec kernel
     - ALSA: asihpi: Fix potential OOB array access (CVE-2024-50007)
     - ALSA: hdsp: Break infinite MIDI input flush loop
     - [x86] syscall: Avoid memcpy() for ia32 syscall_get_arguments()
     - fbdev: pxafb: Fix possible use after free in pxafb_task() (CVE-2024-49924)
     - rcuscale: Provide clear error when async specified without primitives
     - [arm64] iommu/arm-smmu-qcom: hide last LPASS SMMU context bank from linux
     - power: reset: brcmstb: Do not go into infinite loop if reset fails
     - [amd64] iommu/vt-d: Always reserve a domain ID for identity setup
     - [amd64] iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0
       count (CVE-2024-49993)
     - drm/stm: Avoid use-after-free issues with crtc and plane (CVE-2024-49992)
     - drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit
     - drm/amd/display: Add null check for top_pipe_to_program in
       commit_planes_for_stream (CVE-2024-49913)
     - ata: pata_serverworks: Do not use the term blacklist
     - ata: sata_sil: Rename sil_blacklist to sil_quirks
     - drm/amd/display: Handle null 'stream_status' in
       'planes_changed_for_existing_stream' (CVE-2024-49912)
     - drm/amd/display: Check null pointers before using dc->clk_mgr
       (CVE-2024-49907)
     - drm/amd/display: Add null check for 'afb' in
       amdgpu_dm_plane_handle_cursor_update (v2)
     - jfs: UBSAN: shift-out-of-bounds in dbFindBits
     - jfs: Fix uaf in dbFreeBits (CVE-2024-49903)
     - jfs: check if leafidx greater than num leaves per dmap tree
       (CVE-2024-49902)
     - scsi: smartpqi: correct stream detection
     - jfs: Fix uninit-value access of new_ea in ea_buffer (CVE-2024-49900)
     - drm/amdgpu: add raven1 gfxoff quirk
     - drm/amdgpu: enable gfxoff quirk on HP 705G4
     - HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio
     - [x86] platform/x86: touchscreen_dmi: add nanote-next quirk
     - drm/stm: ltdc: reset plane transparency after plane disable
     - drm/amd/display: Check stream before comparing them (CVE-2024-49896)
     - drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format
       translation (CVE-2024-49895)
     - drm/amd/display: Fix index out of bounds in degamma hardware format
       translation (CVE-2024-49894)
     - drm/amd/display: Fix index out of bounds in DCN30 color transformation
       (CVE-2024-49969)
     - drm/amd/display: Initialize get_bytes_per_element's default to 1
       (CVE-2024-49892)
     - drm/printer: Allow NULL data in devcoredump printer
     - [x86] perf,x86: avoid missing caller address in stack traces captured in
       uprobe
     - scsi: aacraid: Rearrange order of struct aac_srb_unit
     - scsi: lpfc: Update PRLO handling in direct attached topology
     - drm/amdgpu: fix unchecked return value warning for amdgpu_gfx
     - scsi: NCR5380: Initialize buffer for MSG IN and STATUS transfers
     - drm/radeon/r100: Handle unknown family in r100_cp_init_microcode()
     - drm/amd/pm: ensure the fw_info is not null before using it
       (CVE-2024-49890)
     - of/irq: Refer to actual buffer size in of_irq_parse_one()
     - [powerpc*] pseries: Use correct data types from pseries_hp_errorlog struct
     - ext4: ext4_search_dir should return a proper error
     - ext4: avoid use-after-free in ext4_ext_show_leaf() (CVE-2024-49889)
     - ext4: fix i_data_sem unlock order in ext4_ind_migrate() (CVE-2024-50006)
     - iomap: handle a post-direct I/O invalidate race in
       iomap_write_delalloc_release
     - blk-integrity: use sysfs_emit
     - blk-integrity: convert to struct device_attribute
     - blk-integrity: register sysfs attributes on struct device
     - spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled
     - spi: s3c64xx: fix timeout counters in flush_fifo
     - [powerpc*] vdso: Fix VDSO data access when running in a non-root time
       namespace
     - Revert "ALSA: hda: Conditionally use snooping for AMD HDMI"
       (Closes: #1081833)
     - [x86] platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug
       (CVE-2024-49886)
     - i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume
       (CVE-2024-49985)
     - i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq()
     - i2c: xiic: Wait for TX empty to avoid missed TX NAKs
     - media: i2c: ar0521: Use cansleep version of gpiod_set_value()
       (CVE-2024-49961)
     - firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp()
     - spi: bcm63xx: Fix module autoloading
     - power: supply: hwmon: Fix missing temp1_max_alarm attribute
     - perf/core: Fix small negative period being ignored
     - drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS
     - ALSA: core: add isascii() check to card ID generator
     - ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET
     - ALSA: usb-audio: Add native DSD support for Luxman D-08u
     - ALSA: line6: add hw monitor volume control to POD HD500X
     - ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9
     - ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200
     - ext4: no need to continue when the number of entries is 1 (CVE-2024-49967)
     - ext4: correct encrypted dentry name hash when not casefolded
     - ext4: fix slab-use-after-free in ext4_split_extent_at() (CVE-2024-49884)
     - ext4: propagate errors from ext4_find_extent() in ext4_insert_range()
     - ext4: fix incorrect tid assumption in ext4_fc_mark_ineligible()
     - ext4: dax: fix overflowing extents beyond inode size when partially
       writing (CVE-2024-50015)
     - ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space()
     - ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free
     - ext4: aovid use-after-free in ext4_ext_insert_extent() (CVE-2024-49883)
     - ext4: fix double brelse() the buffer of the extents path
     - ext4: update orig_path in ext4_find_extent() (CVE-2024-49881)
     - ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit()
     - ext4: fix incorrect tid assumption in
       jbd2_journal_shrink_checkpoint_list()
     - ext4: fix fast commit inode enqueueing during a full journal commit
     - ext4: use handle to mark fc as ineligible in __track_dentry_update()
     - ext4: mark fc as ineligible using an handle in ext4_xattr_set()
     - drm/rockchip: vop: clear DMA stop bit on RK3066
     - of/irq: Support #msi-cells=<0> in of_msi_get_domain
     - drm: omapdrm: Add missing check for alloc_ordered_workqueue
       (CVE-2024-49879)
     - resource: fix region_intersects() vs add_memory_driver_managed()
     - jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns
       error
     - jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit
     - mm: krealloc: consider spare memory for __GFP_ZERO
     - ocfs2: fix the la space leak when unmounting an ocfs2 volume
     - ocfs2: fix uninit-value in ocfs2_get_block()
     - ocfs2: reserve space for inline xattr before attaching reflink tree
       (CVE-2024-49958)
     - ocfs2: cancel dqi_sync_work before freeing oinfo (CVE-2024-49966)
     - ocfs2: remove unreasonable unlock in ocfs2_read_blocks (CVE-2024-49965)
     - ocfs2: fix null-ptr-deref when journal load failed. (CVE-2024-49957)
     - ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate
       (CVE-2024-49877)
     - exfat: fix memory leak in exfat_load_bitmap() (CVE-2024-50013)
     - perf hist: Update hist symbol when updating maps
     - nfsd: fix delegation_blocked() to block correctly for at least 30 seconds
     - nfsd: map the EBADMSG to nfserr_io to avoid warning (CVE-2024-49875)
     - NFSD: Fix NFSv4's PUTPUBFH operation
     - aoe: fix the potential use-after-free problem in more places
       (CVE-2024-49982)
     - clk: rockchip: fix error for unknown clocks
     - remoteproc: k3-r5: Fix error handling when power-up failed
     - clk: qcom: dispcc-sm8250: use CLK_SET_RATE_PARENT for branch clocks
     - media: sun4i_csi: Implement link validate for sun4i_csi subdev
     - clk: qcom: gcc-sm8450: Do not turn off PCIe GDSCs during gdsc_disable()
     - media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags
     - clk: qcom: clk-rpmh: Fix overflow in BCM vote
     - clk: qcom: gcc-sm8150: De-register gcc_cpuss_ahb_clk_src
     - media: venus: fix use after free bug in venus_remove due to race condition
       (CVE-2024-49981)
     - clk: qcom: gcc-sm8250: Do not turn off PCIe GDSCs during gdsc_disable()
     - media: qcom: camss: Fix ordering of pm_runtime_enable
     - clk: qcom: gcc-sc8180x: Fix the sdcc2 and sdcc4 clocks freq table
     - clk: qcom: clk-alpha-pll: Fix CAL_L_VAL override for LUCID EVO PLL
     - smb: client: use actual path when queryfs
     - iio: magnetometer: ak8975: Fix reading for ak099xx sensors
     - gso: fix udp gso fraglist segmentation after pull from frag_list
       (CVE-2024-49978)
     - tomoyo: fallback to realpath if symlink's pathname does not exist
       (Closes: #1082001)
     - net: stmmac: Fix zero-division error when disabling tc cbs
       (CVE-2024-49977)
     - rtc: at91sam9: fix OF node leak in probe() error path
     - Input: adp5589-keys - fix NULL pointer dereference (CVE-2024-49871)
     - Input: adp5589-keys - fix adp5589_gpio_get_value()
     - cachefiles: fix dentry leak in cachefiles_open_file() (CVE-2024-49870)
     - ACPI: resource: Add Asus Vivobook X1704VAP to
       irq1_level_low_skip_override[] (Closes: #1078696)
     - ACPI: resource: Add Asus ExpertBook B2502CVA to
       irq1_level_low_skip_override[]
     - btrfs: fix a NULL pointer dereference when failed to start a new
       trasacntion (CVE-2024-49868)
     - btrfs: send: fix invalid clone operation for file that got its size
       decreased
     - btrfs: wait for fixup workers before stopping cleaner kthread during
       umount (CVE-2024-49867)
     - gpio: davinci: fix lazy disable
     - Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE
       (CVE-2024-8805)
     - ceph: fix cap ref leak via netfs init_request
     - tracing/hwlat: Fix a race during cpuhp processing
     - tracing/timerlat: Fix a race during cpuhp processing (CVE-2024-49866)
     - close_range(): fix the logics in descriptor table trimming
     - [x86] drm/i915/gem: fix bitwise and logical AND mixup
     - drm/sched: Add locking to drm_sched_entity_modify_sched
     - drm/amd/display: Fix system hang while resume with TBT monitor
       (CVE-2024-50003)
     - cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock
       (Closes: #1076483)
     - kconfig: qconf: fix buffer overflow in debug links
     - i2c: create debugfs entry per adapter
     - i2c: core: Lock address during client device instantiation
     - i2c: xiic: Use devm_clk_get_enabled()
     - i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled
     - dt-bindings: clock: exynos7885: Fix duplicated binding
     - spi: bcm63xx: Fix missing pm_runtime_disable()
     - [arm64] Add Cortex-715 CPU part definition
     - [arm64] cputype: Add Neoverse-N3 definitions
     - [arm64] errata: Expand speculative SSBS workaround once more
     - io_uring/net: harden multishot termination case for recv
     - uprobes: fix kernel info leak via "[uprobes]" vma
     - mm: z3fold: deprecate CONFIG_Z3FOLD
     - drm/amd/display: Allow backlight to go below
       `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT`
     - build-id: require program headers to be right after ELF header
     - lib/buildid: harden build ID parsing logic
     - docs/zh_CN: Update the translation of delay-accounting to 6.1-rc8
     - delayacct: improve the average delay precision of getdelay tool to
       microsecond
     - sched: psi: fix bogus pressure spikes from aggregation race
     - media: i2c: imx335: Enable regulator supplies
     - media: imx335: Fix reset-gpio handling
     - remoteproc: k3-r5: Acquire mailbox handle during probe routine
     - remoteproc: k3-r5: Delay notification of wakeup event
     - dt-bindings: clock: qcom: Add missing UFS QREF clocks
     - dt-bindings: clock: qcom: Add GPLL9 support on gcc-sc8180x
     - clk: samsung: exynos7885: do not define number of clocks in bindings
     - clk: samsung: exynos7885: Update CLKS_NR_FSYS after bindings fix
     - r8169: Fix spelling mistake: "tx_underun" -> "tx_underrun"
     - r8169: add tally counter fields added with RTL8125 (CVE-2024-49973)
     - clk: qcom: gcc-sc8180x: Add GPLL9 support
     - ACPI: battery: Simplify battery hook locking
     - ACPI: battery: Fix possible crash when unregistering a battery hook
       (CVE-2024-49955)
     - Revert "arm64: dts: qcom: sm8250: switch UFS QMP PHY to new style of
       bindings"
     - erofs: get rid of erofs_inode_datablocks()
     - erofs: get rid of z_erofs_do_map_blocks() forward declaration
     - erofs: avoid hardcoded blocksize for subpage block support
     - erofs: set block size to the on-disk block size
     - erofs: fix incorrect symlink detection in fast symlink
     - vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (CVE-2024-49863)
     - perf report: Fix segfault when 'sym' sort key is not used
     - fsdax: dax_unshare_iter() should return a valid length
     - fsdax: unshare: zero destination if srcmap is HOLE or UNWRITTEN
     - unicode: Don't special case ignorable code points
     - net: ethernet: cortina: Drop TSO support
     - tracing: Remove precision vsnprintf() check from print event
     - ALSA: hda/realtek: cs35l41: Fix order and duplicates in quirks table
     - ALSA: hda/realtek: cs35l41: Fix device ID / model name
     - drm/crtc: fix uninitialized variable use even harder
     - tracing: Have saved_cmdlines arrays all in one allocation
     - bootconfig: Fix the kerneldoc of _xbc_exit()
     - perf lock: Dynamically allocate lockhash_table
     - perf sched: Avoid large stack allocations
     - perf sched: Move start_work_mutex and work_done_wait_mutex initialization
       to perf_sched__replay()
     - perf sched: Fix memory leak in perf_sched__map()
     - perf sched: Move curr_thread initialization to perf_sched__map()
     - perf sched: Move curr_pid and cpu_last_switched initialization to
       perf_sched__{lat|map|replay}()
     - libsubcmd: Don't free the usage string
     - Bluetooth: Fix usage of __hci_cmd_sync_status
     - virtio_console: fix misc probe bugs
     - Input: synaptics-rmi4 - fix UAF of IRQ domain on driver removal
     - bpf: Check percpu map value size first
     - [s390x] facility: Disable compile time optimization for decompressor code
     - [s390x] mm: Add cond_resched() to cmm_alloc/free_pages()
     - bpf, x64: Fix a jit convergence issue
     - ext4: don't set SB_RDONLY after filesystem errors
     - ext4: nested locking for xattr inode
     - [s390x] cpum_sf: Remove WARN_ON_ONCE statements
     - RDMA/mad: Improve handling of timed out WRs of mad agent
     - PCI: Add function 0 DMA alias quirk for Glenfly Arise chip
     - RDMA/rtrs-srv: Avoid null pointer deref during path establishment
       (CVE-2024-50062)
     - clk: bcm: bcm53573: fix OF node leak in init
     - PCI: Add ACS quirk for Qualcomm SA8775P
     - i2c: i801: Use a different adapter-name for IDF adapters
     - PCI: Mark Creative Labs EMU20k2 INTx masking as broken
     - io_uring: check if we need to reschedule during overflow flush
       (CVE-2024-50060)
     - ntb: ntb_hw_switchtec: Fix use after free vulnerability in
       switchtec_ntb_remove due to race condition (CVE-2024-50059)
     - RDMA/mlx5: Enforce umem boundaries for explicit ODP page faults
     - media: videobuf2-core: clear memory related fields in
       __vb2_plane_dmabuf_put()
     - remoteproc: imx_rproc: Use imx specific hook for find_loaded_rsc_table
     - clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D
     - usb: chipidea: udc: enable suspend interrupt after usb reset
     - usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the
       Crashkernel Scenario
     - comedi: ni_routing: tools: Check when the file could not be opened
     - netfilter: nf_reject: Fix build warning when CONFIG_BRIDGE_NETFILTER=n
     - virtio_pmem: Check device status before requesting flush
     - tools/iio: Add memory allocation failure check for trigger_name
     - staging: vme_user: added bound check to geoid
     - driver core: bus: Return -EIO instead of 0 when show/store invalid bus
       attribute
     - scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in
       lpfc_els_flush_cmd()
     - scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV
       instance
     - drm/amd/display: Check null pointer before dereferencing se
       (CVE-2024-50049)
     - fbcon: Fix a NULL pointer dereference issue in fbcon_putcs
       (CVE-2024-50048)
     - fbdev: sisfb: Fix strbuf array overflow
     - drm/rockchip: vop: limit maximum resolution to hardware capabilities
     - drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066
     - NFSD: Mark filecache "down" if init fails
     - ice: fix VLAN replay after reset
     - SUNRPC: Fix integer overflow in decode_rc_list()
     - NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()
       (CVE-2024-50046)
     - net: phy: dp83869: fix memory corruption when enabling fiber
     - tcp: fix to allow timestamp undo if no retransmits were sent
     - tcp: fix tcp_enter_recovery() to zero retrans_stamp when it's safe
     - netfilter: br_netfilter: fix panic with metadata_dst skb (CVE-2024-50045)
     - Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change
       (CVE-2024-50044)
     - net: phy: bcm84881: Fix some error handling paths
     - thermal: int340x: processor_thermal: Set feature mask before
       proc_thermal_add
     - thermal: intel: int340x: processor: Fix warning during module unload
     - Revert "net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled"
     - net: ethernet: adi: adin1110: Fix some error handling path in
       adin1110_read_fifo()
     - net: dsa: b53: fix jumbo frame mtu check
     - net: dsa: b53: fix max MTU for 1g switches
     - net: dsa: b53: fix max MTU for BCM5325/BCM5365
     - net: dsa: b53: allow lower MTUs on BCM5325/5365
     - net: dsa: b53: fix jumbo frames on 10/100 ports
     - gpio: aspeed: Add the flush write to ensure the write complete.
     - gpio: aspeed: Use devm_clk api to manage clock source
     - ice: Fix netif_is_ice() in Safe Mode
     - i40e: Fix macvlan leak by synchronizing access to mac_filter_hash
       (CVE-2024-50041)
     - igb: Do not bring the device up after non-fatal error (CVE-2024-50040)
     - net/sched: accept TCA_STAB only for root qdisc (CVE-2024-50039)
     - net: ibm: emac: mal: fix wrong goto
     - btrfs: zoned: fix missing RCU locking in error message when loading zone
       info
     - sctp: ensure sk_state is set to CLOSED if hashing fails in
       sctp_listen_start
     - netfilter: xtables: avoid NFPROTO_UNSPEC where needed (CVE-2024-50038)
     - netfilter: fib: check correct rtable in vrf setups
     - net: ibm/emac: allocate dummy net_device dynamically
     - net: ibm: emac: mal: add dcr_unmap to _remove
     - rtnetlink: Add bulk registration helpers for rtnetlink message handlers.
     - vxlan: Handle error of rtnl_register_module().
     - mctp: Handle error of rtnl_register_module().
     - ppp: fix ppp_async_encode() illegal access
     - slip: make slhc_remember() more robust against malicious packets
     - rust: macros: provide correct provenance when constructing THIS_MODULE
     - HID: multitouch: Add support for lenovo Y9000P Touchpad
     - net/mlx5: Always drain health in shutdown callback (CVE-2024-43866)
     - wifi: mac80211: Avoid address calculations via out of bounds array
       indexing (CVE-2024-41071)
     - hwmon: (tmp513) Add missing dependency on REGMAP_I2C
     - hwmon: (adm9240) Add missing dependency on REGMAP_I2C
     - hwmon: (adt7470) Add missing dependency on REGMAP_I2C
     - Revert "net: ibm/emac: allocate dummy net_device dynamically"
     - HID: amd_sfh: Switch to device-managed dmam_alloc_coherent()
     - HID: plantronics: Workaround for an unexcepted opposite volume key
     - Revert "usb: yurex: Replace snprintf() with the safer scnprintf() variant"
     - usb: dwc3: core: Stop processing of pending events if controller is halted
     - usb: xhci: Fix problem with xhci resume from suspend
     - usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip
     - usb: gadget: core: force synchronous registration
     - hid: intel-ish-hid: Fix uninitialized variable 'rv' in
       ish_fw_xfer_direct_dma
     - drm/v3d: Stop the active perfmon before being destroyed (CVE-2024-50031)
     - drm/vc4: Stop the active perfmon before being destroyed
     - scsi: wd33c93: Don't use stale scsi_pointer value (CVE-2024-50026)
     - mptcp: fallback when MPTCP opts are dropped after 1st data
     - ata: libata: avoid superfluous disk spin down + spin up during hibernation
     - net: explicitly clear the sk pointer, when pf->create fails
     - net: Fix an unsafe loop on the list (CVE-2024-50024)
     - net: dsa: lan9303: ensure chip reset and wait for READY status
     - mptcp: handle consistently DSS corruption
     - mptcp: pm: do not remove closing subflows
     - device-dax: correct pgoff align in dax_set_mapping() (CVE-2024-50022)
     - nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error
     - kthread: unpark only parked kthread (CVE-2024-50019)
     - secretmem: disable memfd_secret() if arch cannot set direct map
     - net: ethernet: cortina: Restore TSO support
     - perf lock: Don't pass an ERR_PTR() directly to perf_session__delete()
     - block, bfq: fix uaf for accessing waker_bfqq after splitting
       (CVE-2024-49854)
     - Revert "iommu/vt-d: Retrieve IOMMU perfmon capability information"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.114
     - btrfs: fix uninitialized pointer free in add_inode_ref() (CVE-2024-50088)
     - btrfs: fix uninitialized pointer free on read_alloc_one_name() error
     - ksmbd: fix user-after-free from session log off (CVE-2024-50086)
     - ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2
     - mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow (CVE-2024-50085)
     - udf: New directory iteration code
     - udf: Convert udf_expand_dir_adinicb() to new directory iteration
     - udf: Move udf_expand_dir_adinicb() to its callsite
     - udf: Implement searching for directory entry using new iteration code
     - udf: Provide function to mark entry as deleted using new directory
       iteration code
     - udf: Convert udf_rename() to new directory iteration code
     - udf: Convert udf_readdir() to new directory iteration
     - udf: Convert udf_lookup() to use new directory iteration code
     - udf: Convert udf_get_parent() to new directory iteration code
     - udf: Convert empty_dir() to new directory iteration code
     - udf: Convert udf_rmdir() to new directory iteration code
     - udf: Convert udf_unlink() to new directory iteration code
     - udf: Implement adding of dir entries using new iteration code
     - udf: Convert udf_add_nondir() to new directory iteration
     - udf: Convert udf_mkdir() to new directory iteration code
     - udf: Convert udf_link() to new directory iteration code
     - udf: Remove old directory iteration code
     - udf: Handle error when expanding directory
     - udf: Don't return bh from udf_expand_dir_adinicb()
     - net: enetc: remove xdp_drops statistic from enetc_xdp_drop()
     - net: enetc: add missing static descriptor and inline keyword
     - posix-clock: Fix missing timespec64 check in pc_clock_settime()
     - [arm64] probes: Remove broken LDR (literal) uprobe support
     - [arm64] probes: Fix simulate_ldr*_literal()
     - net: macb: Avoid 20s boot delay by skipping MDIO bus registration for
       fixed-link PHY
     - irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1
     - fat: fix uninitialized variable
     - mm/swapfile: skip HugeTLB pages for unuse_vma
     - devlink: drop the filter argument from devlinks_xa_find_get
     - devlink: bump the instance index directly when iterating
     - maple_tree: correct tree corruption on spanning store
     - drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE)
       (CVE-2024-39497)
     - [amd64] iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI
       devices
     - [s390x] sclp: Deactivate sclp after all its users
     - [s390x] sclp_vt220: Convert newlines to CRLF instead of LFCR
     - [s390x] KVM: s390: gaccess: Check if guest address is in memslot
     - [s390x] KVM: s390: Change virtual to physical address access in diag 0x258
       handler
     - [x86] cpufeatures: Define X86_FEATURE_AMD_IBPB_RET
     - [x86] cpufeatures: Add a IBPB_NO_RET BUG flag
     - [x86] entry: Have entry_ibpb() invalidate return predictions
     - [x86] bugs: Skip RSB fill at VMEXIT
     - [x86] bugs: Do not use UNTRAIN_RET with IBPB on entry
     - blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race
       (CVE-2024-50082)
     - io_uring/sqpoll: close race on waiting for sqring entries
     - scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down
     - drm/radeon: Fix encoder->possible_clones
     - drm/vmwgfx: Handle surface check failure correctly
     - drm/amdgpu/swsmu: Only force workload setup on init
     - drm/amdgpu: prevent BO_HANDLES error from being overwritten
     - iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig
     - iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig
     - iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig
     - iio: adc: ti-ads8688: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: hid-sensors: Fix an error handling path in
       _hid_sensor_set_report_latency()
     - iio: light: veml6030: fix ALS sensor resolution
     - iio: light: veml6030: fix IIO device retrieval from embedded device
     - iio: light: opt3001: add missing full-scale range value
     - iio: amplifiers: ada4250: add missing select REGMAP_SPI in Kconfig
     - iio: dac: ad5766: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in
       Kconfig
     - iio: dac: ad3552r: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: adc: ti-ads124s08: add missing select IIO_(TRIGGERED_)BUFFER in
       Kconfig
     - Bluetooth: Call iso_exit() on module unload
     - Bluetooth: Remove debugfs directory on module init failure
     - Bluetooth: ISO: Fix multiple init when debugfs is disabled
       (CVE-2024-50077)
     - Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001
     - xhci: Fix incorrect stream context type macro
     - xhci: Mitigate failed set dequeue pointer commands
     - USB: serial: option: add support for Quectel EG916Q-GL
     - USB: serial: option: add Telit FN920C04 MBIM compositions
     - usb: dwc3: Wait for EndXfer completion before restoring GUSB2PHYCFG
     - parport: Proper fix for array out-of-bounds access (CVE-2024-50074)
     - [x86] resctrl: Annotate get_mem_config() functions as __init
     - [x86] apic: Always explicitly disarm TSC-deadline timer
     - [x86] entry_32: Do not clobber user EFLAGS.ZF
     - [x86] entry_32: Clear CPU buffers after register restore in NMI return
     - tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (CVE-2024-50073)
     - pinctrl: ocelot: fix system hang on level based interrupts
     - pinctrl: apple: check devm_kasprintf() returned value
     - irqchip/gic-v4: Don't allow a VMOVP on a dying VPE
     - irqchip/sifive-plic: Unmask interrupt in plic_irq_enable()
     - tcp: fix mptcp DSS corruption due to large pmtu xmit (CVE-2024-50083)
     - mptcp: prevent MPC handshake on port-based signal endpoints
     - nilfs2: propagate directory read errors from nilfs_find_entry()
     - [powerpc*] 64: Add big-endian ELFv2 flavour to crypto VMX asm generation
     - ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne
       1000 G2
     - udf: Allocate name buffer in directory iterator on heap
     - udf: Avoid directory type conversion failure due to ENOMEM
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.115
     - bpf: Use raw_spinlock_t in ringbuf
     - iio: accel: bma400: Fix uninitialized variable field_value in tap event
       handling.
     - bpf: Make sure internal and UAPI bpf_redirect flags don't overlap
     - bpf: devmap: provide rxq after redirect
     - bpf: Fix memory leak in bpf_core_apply
     - RDMA/bnxt_re: Fix incorrect AVID type in WQE structure
     - RDMA/bnxt_re: Add a check for memory allocation
     - [x86] resctrl: Avoid overflow in MB settings in bw_validate()
     - [armhf] dts: bcm2837-rpi-cm3-io3: Fix HDMI hpd-gpio pin
     - [s390x] pci: Handle PCI error codes other than 0x3a
     - bpf: fix kfunc btf caching for modules
     - drm/vmwgfx: Handle possible ENOMEM in vmw_stdu_connector_atomic_check
     - ALSA: hda/cs8409: Fix possible NULL dereference
     - RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP
     - RDMA/irdma: Fix misspelling of "accept*"
     - RDMA/srpt: Make slab cache names unique
     - ipv4: give an IPv4 dev to blackhole_netdev
     - RDMA/bnxt_re: Return more meaningful error
     - RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages
     - [arm64] drm/msm/dpu: make sure phys resources are properly initialized
     - [arm64] drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate
       calculation
     - [arm64] drm/msm: Avoid NULL dereference in msm_disp_state_print_regs()
     - [arm64] drm/msm: Allocate memory for disp snapshot with kvzalloc()
     - net: usb: usbnet: fix race in probe failure
     - drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring
     - macsec: don't increment counters for an unrelated SA
     - netdevsim: use cond_resched() in nsim_dev_trap_report_work()
     - net: ethernet: aeroflex: fix potential memory leak in
       greth_start_xmit_gbit()
     - net/smc: Fix searching in list of known pnetids in smc_pnet_add_pnetid
     - net: xilinx: axienet: fix potential memory leak in axienet_start_xmit()
     - net: systemport: fix potential memory leak in bcm_sysport_xmit()
     - [arm64] drm/msm/dpu: Wire up DSC mask for active CTL configuration
     - [arm64] drm/msm/dpu: don't always program merge_3d block
     - tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink().
     - genetlink: hold RCU in genlmsg_mcast()
     - ravb: Remove setting of RX software timestamp
     - net: ravb: Only advertise Rx/Tx timestamps if hardware supports it
     - scsi: target: core: Fix null-ptr-deref in target_alloc_device()
     - smb: client: fix OOBs when building SMB2_IOCTL request
     - usb: typec: altmode should keep reference to parent
     - [s390x] Initialize psw mask in perf_arch_fetch_caller_regs()
     - Bluetooth: bnep: fix wild-memory-access in proto_unregister
     - net/mlx5: Remove redundant cmdif revision check
     - net/mlx5: split mlx5_cmd_init() to probe and reload routines
     - net/mlx5: Fix command bitmask initialization
     - net/mlx5: Unregister notifier on eswitch init failure
     - bpf: Fix iter/task tid filtering
     - [arm64] uprobe fix the uprobe SWBP_INSN in big-endian
     - [arm64] probes: Fix uprobes for big-endian kernels
     - usb: gadget: f_uac2: Replace snprintf() with the safer scnprintf() variant
     - usb: gadget: f_uac2: fix non-newline-terminated function name
     - usb: gadget: f_uac2: fix return value for UAC2_ATTRIBUTE_STRING store
     - usb: gadget: Add function wakeup support
     - XHCI: Separate PORT and CAPs macros into dedicated file
     - [arm64,armhf] usb: dwc3: core: Fix system suspend on TI AM62 platforms
     - tty/serial: Make ->dcd_change()+uart_handle_dcd_change() status bool
       active
     - serial: Make uart_handle_cts_change() status param bool active
     - serial: imx: Update mctrl old_status on RTSD interrupt
     - block, bfq: fix procress reference leakage for bfqq in merge chain
     - exec: don't WARN for racy path_noexec check (CVE-2024-50010)
     - fs/ntfs3: Add more attributes checks in mi_enum_attr() (CVE-2023-45896)
     - [x86] drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape
       with real VLA
     - ASoC: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to
       default regs values
     - [arm64] ASoC: fsl_sai: Enable 'FIFO continue on error' FCONT bit
     - [arm64] Force position-independent veneers
     - udf: refactor udf_current_aext() to handle error
     - udf: fix uninit-value use in udf_get_fileshortad
     - [x86] platform/x86: dell-sysman: add support for alienware products
     - jfs: Fix sanity check in dbMount
     - tracing: Consider the NULL character when validating the event length
     - xfrm: extract dst lookup parameters into a struct
     - xfrm: respect ip protocols rules criteria when performing dst lookups
     - be2net: fix potential memory leak in be_xmit()
     - net: plip: fix break; causing plip to never transmit
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix error when setting port policy on
       mv88e6393x
     - netfilter: xtables: fix typo causing some targets not to load on IPv6
     - net: wwan: fix global oob in wwan_rtnl_policy
     - docs: net: reformat driver.rst from a list to sections
     - net: provide macros for commonly copied lockless queue stop/wake code
     - net/sched: adjust device watchdog timer to detect stopped queue at right
       time
     - net: fix races in netdev_tx_sent_queue()/dev_watchdog()
     - net: usb: usbnet: fix name regression
     - net/sched: act_api: deny mismatched skip_sw/skip_hw flags for actions
       created by classifiers
     - net: sched: fix use-after-free in taprio_change()
     - r8169: avoid unsolicited interrupts
     - posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime()
     - Bluetooth: SCO: Fix UAF on sco_sock_timeout
     - Bluetooth: ISO: Fix UAF on iso_sock_timeout
     - bpf,perf: Fix perf_event_detach_bpf_prog error handling
     - ASoC: dt-bindings: davinci-mcasp: Fix interrupts property
     - ASoC: dt-bindings: davinci-mcasp: Fix interrupt properties
     - ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size()
     - powercap: dtpm_devfreq: Fix error check against dev_pm_qos_add_request()
     - ALSA: hda/realtek: Update default depop procedure
     - cpufreq/cppc: Move and rename cppc_cpufreq_{perf_to_khz|khz_to_perf}()
     - cpufreq: CPPC: fix perf_to_khz/khz_to_perf conversion exception
     - btrfs: fix passing 0 to ERR_PTR in btrfs_search_dir_index_item()
     - btrfs: zoned: fix zone unusable accounting for freed reserved extent
     - drm/amd: Guard against bad data for ATIF ACPI method
     - ACPI: resource: Add LG 16T90SP to irq1_level_low_skip_override[]
     - ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context
     - ACPI: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid
       detection issue
     - nilfs2: fix kernel bug due to missing clearing of buffer delay flag
     - openat2: explicitly return -E2BIG for (usize > PAGE_SIZE)
     - [x86] KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
     - [arm64] KVM: arm64: Don't eagerly teardown the vgic on init error
     - ALSA: hda/realtek: Add subwoofer quirk for Acer Predator G9-593
     - xfrm: fix one more kernel-infoleak in algo dumping
     - hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event
     - drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too
     - selinux: improve error checking in sel_write_load()
     - serial: protect uart_port_dtr_rts() in uart_shutdown() too
       (CVE-2024-50058)
     - net: phy: dp83822: Fix reset pin definitions
     - [arm64] ASoC: qcom: Fix NULL Dereference in
       asoc_qcom_lpass_cpu_platform_probe()
     - [x86] platform/x86: dell-wmi: Ignore suspend notifications
     - ACPI: PRM: Clean up guid type in struct prm_handler_info
     - [arm64] uprobes: change the uprobe_opcode_t typedef to fix the sparse
       warning
     - xfrm: validate new SA's prefixlen using SA family when sel.family is unset
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 27
   * d/config: Update with the help of kconfigeditor2
     - mm: Enable Z3FOLD_DEPRECATED instead of Z3FOLD
linux-signed-arm64 (6.1.112+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.112-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.107
     - tty: atmel_serial: use the correct RTS flag.
     - fuse: Initialize beyond-EOF page contents before setting uptodate
     - ALSA: usb-audio: Add delay quirk for VIVO USB-C-XE710 HEADSET
     - ALSA: usb-audio: Support Yamaha P-125 quirk entry
     - xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration
     - [x86] thunderbolt: Mark XDomain as unplugged when router is removed
     - [s390x] dasd: fix error recovery leading to data corruption on ESE devices
     - [arm64] ACPI: NUMA: initialize all values of acpi_early_node_map to
       NUMA_NO_NODE
     - dm resume: don't return EINVAL when signalled
     - dm persistent data: fix memory allocation failure
     - vfs: Don't evict inode under the inode lru traversing context
     - [s390x] cio: rename bitmap_size() -> idset_bitmap_size()
     - btrfs: rename bitmap_set_bits() -> btrfs_bitmap_set_bits()
     - bitmap: introduce generic optimized bitmap_size()
     - fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE
     - i2c: qcom-geni: Add missing geni_icc_disable in geni_i2c_runtime_resume
     - rtla/osnoise: Prevent NULL dereference in error handling
     - fs/netfs/fscache_cookie: add missing "n_accesses" check
     - selinux: fix potential counting error in avc_add_xperms_decision()
     - mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu
     - btrfs: zoned: properly take lock to read/update block group's zoned
       variables
     - btrfs: tree-checker: add dev extent item checks
     - drm/amdgpu: Actually check flags for all context ops.
     - memcg_write_event_control(): fix a user-triggerable oops
     - drm/amdgpu/jpeg2: properly set atomics vmid field
     - [s390x] uv: Panic for set and remove shared access UVC errors
     - bpf: Fix updating attached freplace prog in prog_array map
     - nilfs2: prevent WARNING in nilfs_dat_commit_end()
     - ext4, jbd2: add an optimized bmap for the journal inode
     - 9P FS: Fix wild-memory-access write in v9fs_get_acl
     - nilfs2: initialize "struct nilfs_binfo_dat"->bi_pad field
     - mm: khugepaged: fix kernel BUG in hpage_collapse_scan_file()
     - bpf: Split off basic BPF verifier log into separate file
     - bpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log
     - posix-timers: Ensure timer ID search-loop limit is valid
     - pid: Replace struct pid 1-element array with flex-array
     - gfs2: Rename remaining "transaction" glock references
     - gfs2: Rename the {freeze,thaw}_super callbacks
     - gfs2: Rename gfs2_freeze_lock{ => _shared }
     - gfs2: Rename SDF_{FS_FROZEN => FREEZE_INITIATOR}
     - gfs2: Rework freeze / thaw logic
     - gfs2: Stop using gfs2_make_fs_ro for withdraw
     - Bluetooth: Fix hci_link_tx_to RCU lock usage
     - wifi: mac80211: take wiphy lock for MAC addr change
     - wifi: mac80211: fix change_address deadlock during unregister
     - net: sched: Print msecs when transmit queue time out
     - net: don't dump stack on queue timeout
     - jfs: fix shift-out-of-bounds in dbJoin
     - squashfs: squashfs_read_data need to check if the length is 0
     - Squashfs: fix variable overflow triggered by sysbot
     - reiserfs: fix uninit-value in comp_keys
     - erofs: avoid debugging output for (de)compressed data
     - quota: Detect loops in quota tree
     - net:rds: Fix possible deadlock in rds_message_put
     - net: sctp: fix skb leak in sctp_inq_free()
     - pppoe: Fix memory leak in pppoe_sendmsg()
     - wifi: mac80211: fix and simplify unencrypted drop check for mesh
     - wifi: cfg80211: move A-MSDU check in ieee80211_data_to_8023_exthdr
     - wifi: cfg80211: factor out bridge tunnel / RFC1042 header check
     - wifi: mac80211: remove mesh forwarding congestion check
     - wifi: mac80211: fix receiving A-MSDU frames on mesh interfaces
     - wifi: mac80211: add a workaround for receiving non-standard mesh A-MSDU
     - wifi: cfg80211: check A-MSDU format more carefully (CVE-2024-35937)
     - docs/bpf: Document BPF_MAP_TYPE_LPM_TRIE map
     - bpf: Replace bpf_lpm_trie_key 0-length array with flexible array
     - bpf: Avoid kfree_rcu() under lock in bpf_lpm_trie.
     - Bluetooth: RFCOMM: Fix not validating setsockopt user input
       (CVE-2024-35966)
     - ext4: check the return value of ext4_xattr_inode_dec_ref()
     - ext4: fold quota accounting into ext4_xattr_inode_lookup_create()
     - ext4: do not create EA inode under buffer lock (CVE-2024-40972)
     - udf: Fix bogus checksum computation in udf_rename()
     - bpf, net: Use DEV_STAT_INC()
     - fou: remove warn in gue_gro_receive on unsupported protocol
       (CVE-2024-44940)
     - jfs: fix null ptr deref in dtInsertEntry (CVE-2024-44939)
     - jfs: Fix shift-out-of-bounds in dbDiscardAG (CVE-2024-44938)
     - ALSA: usb: Fix UBSAN warning in parse_audio_unit()
     - igc: Correct the launchtime offset
     - igc: Fix packet still tx after gate close by reducing i226 MAC retry
       buffer
     - net/mlx5e: Take state lock during tx timeout reporter
     - net/mlx5e: Correctly report errors for ethtool rx flows
     - atm: idt77252: prevent use after free in dequeue_rx()
     - mlxbf_gige: Remove two unused function declarations
     - mlxbf_gige: disable RX filters until RX path initialized
     - mptcp: correct MPTCP_SUBFLOW_ATTR_SSN_OFFSET reserved size
     - netfilter: allow ipv6 fragments to arrive on different devices
     - netfilter: flowtable: initialise extack before use
     - netfilter: nf_queue: drop packets with cloned unconfirmed conntracks
       (Closes: #1070685)
     - netfilter: nf_tables: Audit log dump reset after the fact
     - netfilter: nf_tables: Drop pointless memset in nf_tables_dump_obj
     - netfilter: nf_tables: Unconditionally allocate nft_obj_filter
     - netfilter: nf_tables: A better name for nft_obj_filter
     - netfilter: nf_tables: Carry s_idx in nft_obj_dump_ctx
     - netfilter: nf_tables: nft_obj_filter fits into cb->ctx
     - netfilter: nf_tables: Carry reset boolean in nft_obj_dump_ctx
     - netfilter: nf_tables: Introduce nf_tables_getobj_single
     - netfilter: nf_tables: Add locking for NFT_MSG_GETOBJ_RESET requests
     - [arm64] net: hns3: fix wrong use of semaphore up
     - [arm64] net: hns3: use the user's cfg after reset
     - [arm64] net: hns3: fix a deadlock problem when config TC during resetting
     - ALSA: hda/realtek: Fix noise from speakers on Lenovo IdeaPad 3 15IAU7
     - drm/amd/amdgpu/imu_v11_0: Increase buffer size to ensure all possible
       values can be stored
     - ssb: Fix division by zero issue in ssb_calc_clock_rate
     - wifi: cfg80211: check wiphy mutex is held for wdev mutex
     - wifi: mac80211: fix BA session teardown race
     - mm: Remove kmem_valid_obj()
     - rcu: Dump memory object info if callback function is invalid
     - rcu: Eliminate rcu_gp_slow_unregister() false positive
     - wifi: cw1200: Avoid processing an invalid TIM IE
     - cgroup: Avoid extra dereference in css_populate_dir()
     - i2c: riic: avoid potential division by zero
     - RDMA/rtrs: Fix the problem of variable not initialized fully
     - [s390x] smp,mcck: fix early IPI handling
     - drm/bridge: tc358768: Attempt to fix DSI horizontal timings
     - media: radio-isa: use dev_name to fill in bus_info
     - staging: iio: resolver: ad2s1210: fix use before initialization
     - usb: gadget: uvc: cleanup request when not in correct state
     - drm/amd/display: Validate hw_points_num before using it
     - staging: ks7010: disable bh on tx_dev_lock
     - media: s5p-mfc: Fix potential deadlock on condlock
     - md/raid5-cache: use READ_ONCE/WRITE_ONCE for 'conf->log'
     - binfmt_misc: cleanup on filesystem umount
     - [arm64,armhf] drm/tegra: Zero-initialize iosys_map
     - media: qcom: venus: fix incorrect return value
     - scsi: spi: Fix sshdr use
     - gfs2: setattr_chown: Add missing initialization
     - wifi: iwlwifi: abort scan when rfkill on but device enabled
     - wifi: iwlwifi: fw: Fix debugfs command sending
     - clk: visconti: Add bounds-checking coverage for struct
       visconti_pll_provider
     - [amd64] IB/hfi1: Fix potential deadlock on &irq_src_lock and
       &dd->uctxt_lock
     - kbuild: rust_is_available: normalize version matching
     - kbuild: rust_is_available: handle failures calling `$RUSTC`/`$BINDGEN`
     - [arm64] Fix KASAN random tag seed initialization
     - block: Fix lockdep warning in blk_mq_mark_tag_wait
     - [arm64] drm/msm: Reduce fallout of fence signaling vs reclaim hangs
     - memory: tegra: Skip SID programming if SID registers aren't set
     - [powerpc*] xics: Check return value of kasprintf in icp_native_map_one_cpu
     - [x86] ASoC: SOF: ipc4: check return value of snd_sof_ipc_msg_data
     - [x86] hwmon: (pc87360) Bounds check data->innr usage
     - drm/rockchip: vop2: clear afbc en and transform bit for cluster window at
       linear mode
     - Bluetooth: hci_conn: Check non NULL function before calling for HFP
       offload
     - gfs2: Refcounting fix in gfs2_thaw_super
     - nvmet-trace: avoid dereferencing pointer too early
     - ext4: do not trim the group with corrupted block bitmap
     - afs: fix __afs_break_callback() / afs_drop_open_mmap() race
     - fuse: fix UAF in rcu pathwalks
     - quota: Remove BUG_ON from dqget()
     - kernfs: fix false-positive WARN(nr_mmapped) in kernfs_drain_open_files
     - media: pci: cx23885: check cx23885_vdev_init() return
     - fs: binfmt_elf_efpic: don't use missing interpreter's properties
     - scsi: lpfc: Initialize status local variable in
       lpfc_sli4_repost_sgl_list()
     - media: drivers/media/dvb-core: copy user arrays safely
     - net/sun3_82586: Avoid reading past buffer in debug output
     - drm/lima: set gp bus_stop bit before hard reset
     - hrtimer: Select housekeeping CPU during migration
     - virtiofs: forbid newlines in tags
     - clocksource/drivers/arm_global_timer: Guard against division by zero
     - netlink: hold nlk->cb_mutex longer in __netlink_dump_start()
     - md: clean up invalid BUG_ON in md_ioctl
     - [x86] Increase brk randomness entropy for 64-bit systems
     - memory: stm32-fmc2-ebi: check regmap_read return value
     - [powerpc*] boot: Handle allocation failure in simple_realloc()
     - [powerpc*] boot: Only free if realloc() succeeds
     - btrfs: delayed-inode: drop pointless BUG_ON in
       __btrfs_remove_delayed_item()
     - btrfs: change BUG_ON to assertion when checking for delayed_node root
     - btrfs: tests: allocate dummy fs_info and root in test_find_delalloc()
     - btrfs: handle invalid root reference found in may_destroy_subvol()
     - btrfs: send: handle unexpected data in header buffer in begin_cmd()
     - btrfs: change BUG_ON to assertion in tree_move_down()
     - btrfs: delete pointless BUG_ON check on quota root in
       btrfs_qgroup_account_extent()
     - f2fs: fix to do sanity check in update_sit_entry
     - usb: gadget: fsl: Increase size of name buffer for endpoints
     - nvme: clear caller pointer on identify failure
     - Bluetooth: bnep: Fix out-of-bound access
     - firmware: cirrus: cs_dsp: Initialize debugfs_root to invalid
     - rtc: nct3018y: fix possible NULL dereference
     - [arm64] net: hns3: add checking for vf id of mailbox
     - nvmet-tcp: do not continue for invalid icreq
     - NFS: avoid infinite loop in pnfs_update_layout.
     - [s390x] iucv: fix receive buffer virtual vs physical address confusion
     - irqchip/renesas-rzg2l: Do not set TIEN and TINT source at the same time
     - clocksource: Make watchdog and suspend-timing multiplication overflow safe
     - [x86] platform/x86: lg-laptop: fix %s null argument warning
     - usb: dwc3: core: Skip setting event buffers for host only controllers
     - fbdev: offb: replace of_node_put with __free(device_node)
     - irqchip/gic-v3-its: Remove BUG_ON in its_vpe_irq_domain_alloc
     - ext4: set the type of max_zeroout to unsigned int to avoid overflow
     - nvmet-rdma: fix possible bad dereference when freeing rsps
     - drm/amdgpu: fix dereference null return value for the function
       amdgpu_vm_pt_parent
     - hrtimer: Prevent queuing of hrtimer without a function callback
     - gtp: pull network headers in gtp_dev_xmit()
     - [arm64,armhf] i2c: tegra: allow DVC support to be compiled out
     - [arm64,armhf] i2c: tegra: allow VI support to be compiled out
     - [arm64,armhf] i2c: tegra: Do not mark ACPI devices as irq safe
     - dm suspend: return -ERESTARTSYS instead of -EINTR
     - net: mana: Fix doorbell out of order violation and avoid unnecessary
       doorbell rings
     - btrfs: replace sb::s_blocksize by fs_info::sectorsize
     - btrfs: send: allow cloning non-aligned extent if it ends at i_size
     - drm/amd/display: Adjust cursor position
     - platform/surface: aggregator: Fix warning when controller is destroyed in
       probe
     - Bluetooth: hci_core: Fix LE quote calculation
     - Bluetooth: SMP: Fix assumption of Central always being Initiator
     - [arm64] net: dsa: tag_ocelot: do not rely on skb_mac_header() for VLAN
       xmit
     - [arm64] net: dsa: tag_ocelot: call only the relevant portion of
       __skb_vlan_pop() on TX
     - [arm64] net: mscc: ocelot: use ocelot_xmit_get_vlan_info() also for FDMA
       and register injection
     - [arm64] net: mscc: ocelot: fix QoS class for injected packets with
       "ocelot-8021q"
     - [arm64] net: mscc: ocelot: serialize access to the injection/extraction
       groups
     - tc-testing: don't access non-existent variable on exception
     - tcp/dccp: bypass empty buckets in inet_twsk_purge()
     - tcp/dccp: do not care about families in inet_twsk_purge()
     - tcp: prevent concurrent execution of tcp_sk_exit_batch
     - net: mctp: test: Use correct skb for route input check
     - kcm: Serialise kcm_sendmsg() for the same socket.
     - netfilter: nft_counter: Disable BH in nft_counter_offload_stats().
     - netfilter: nft_counter: Synchronize nft_counter_reset() against reader.
     - ip6_tunnel: Fix broken GRO
     - bonding: fix bond_ipsec_offload_ok return type
     - bonding: fix null pointer deref in bond_ipsec_offload_ok
     - bonding: fix xfrm real_dev null pointer dereference
     - bonding: fix xfrm state handling when clearing active slave
     - ice: Prepare legacy-rx for upcoming XDP multi-buffer support
     - ice: Add xdp_buff to ice_rx_ring struct
     - ice: Store page count inside ice_rx_buf
     - ice: Pull out next_to_clean bump out of ice_put_rx_buf()
     - ice: fix page reuse when PAGE_SIZE is over 8k
     - ice: fix ICE_LAST_OFFSET formula
     - dpaa2-switch: Fix error checking in dpaa2_switch_seed_bp()
     - net: dsa: mv88e6xxx: Fix out-of-bound access
     - netem: fix return value if duplicate enqueue fails
     - ipv6: prevent UAF in ip6_send_skb()
     - ipv6: fix possible UAF in ip6_finish_output2()
     - ipv6: prevent possible UAF in ip6_xmit()
     - netfilter: flowtable: validate vlan header
     - [arm64] drm/msm/dpu: don't play tricks with debug macros
     - [arm64] drm/msm/dp: fix the max supported bpp logic
     - [arm64] drm/msm/dp: reset the link phy params before link training
     - [arm64] drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails
     - mmc: mmc_test: Fix NULL dereference on allocation failure
     - Bluetooth: MGMT: Add error handling to pair_device() (CVE-2024-43884)
     - scsi: core: Fix the return value of scsi_logical_block_count()
     - ksmbd: the buffer of smb2 query dir response has at least 1 byte
     - drm/amdgpu: Validate TA binary size
     - HID: wacom: Defer calculation of resolution until resolution_code is known
     - HID: microsoft: Add rumble support to latest xbox controllers
     - Input: i8042 - add forcenorestore quirk to leave controller untouched even
       on s3
     - Input: i8042 - use new forcenorestore quirk to replace old buggy quirk
       combination
     - cxgb4: add forgotten u64 ivlan cast before shift
     - [arm64] KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3
     - mmc: dw_mmc: allow biu and ciu clocks to defer
     - pmdomain: imx: wait SSAR when i.MX93 power domain on
     - mptcp: pm: re-using ID of unused removed ADD_ADDR
     - mptcp: pm: re-using ID of unused removed subflows
     - mptcp: pm: re-using ID of unused flushed subflows
     - mptcp: pm: only decrement add_addr_accepted for MPJ req
     - Revert "usb: gadget: uvc: cleanup request when not in correct state"
     - Revert "drm/amd/display: Validate hw_points_num before using it"
     - tcp: do not export tcp_twsk_purge()
     - hwmon: (ltc2992) Fix memory leak in ltc2992_parse_dt()
     - ALSA: timer: Relax start tick time check for slave timer elements
     - mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order
       fallback to order 0
     - mm/numa: no task_numa_fault() call if PMD is changed
     - mm/numa: no task_numa_fault() call if PTE is changed
     - nfsd: Simplify code around svc_exit_thread() call in nfsd()
     - nfsd: separate nfsd_last_thread() from nfsd_put()
     - NFSD: simplify error paths in nfsd_svc()
     - nfsd: call nfsd_last_thread() before final nfsd_put()
     - nfsd: drop the nfsd_put helper
     - nfsd: don't call locks_release_private() twice concurrently
     - nfsd: Fix a regression in nfsd_setattr()
     - Bluetooth: hci_ldisc: check HCI_UART_PROTO_READY flag in HCIUARTGETPROTO
     - drm/amdgpu/vcn: identify unified queue in sw init
     - drm/amdgpu/vcn: not pause dpg for unified queue
     - [x86] KVM: x86: fire timer when it is migrated and expired, and in oneshot
       mode
     - Revert "s390/dasd: Establish DMA alignment"
     - wifi: mac80211: add documentation for amsdu_mesh_control
     - wifi: mac80211: fix mesh path discovery based on unicast packets
     - wifi: mac80211: fix mesh forwarding
     - wifi: mac80211: fix flow dissection for forwarded packets
     - wifi: mac80211: fix receiving mesh packets in forwarding=0 networks
     - wifi: mac80211: drop bogus static keywords in A-MSDU rx
     - wifi: mac80211: fix potential null pointer dereference
     - wifi: cfg80211: fix receiving mesh packets without RFC1042 header
     - gfs2: Fix another freeze/thaw hang
     - gfs2: don't withdraw if init_threads() got interrupted
     - gfs2: Remove LM_FLAG_PRIORITY flag
     - gfs2: Remove freeze_go_demote_ok
     - udp: fix receiving fraglist GSO packets
     - ice: fix W=1 headers mismatch
     - Revert "jfs: fix shift-out-of-bounds in dbJoin"
     - net: change maximum number of UDP segments to 128
     - selftests: net: more strict check in net_helper
     - Input: MT - limit max slots
     - tools: move alignment-related macros to new <linux/align.h>
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.108
     - drm/amdgpu: Using uninitialized value *size when calling
       amdgpu_vce_cs_reloc (CVE-2024-42228)
     - btrfs: run delayed iputs when flushing delalloc
     - smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()
     - pinctrl: rockchip: correct RK3328 iomux width flag for GPIO2-B pins
     - pinctrl: single: fix potential NULL dereference in pcs_get_function()
     - of: Add cleanup.h based auto release via __free(device_node) markings
     - wifi: wfx: repair open network AP mode
     - wifi: mwifiex: duplicate static structs used in driver instances
     - net: mana: Fix race of mana_hwc_post_rx_wqe and new hwc response
     - mptcp: close subflow when receiving TCP+FIN
     - mptcp: sched: check both backup in retrans
     - mptcp: pm: skip connecting to already established sf
     - mptcp: pm: reset MPC endp ID when re-added
     - mptcp: pm: send ACK on an active subflow
     - mptcp: pm: do not remove already closed subflows
     - mptcp: pm: ADD_ADDR 0 is not a new address
     - drm/amdgpu: align pp_power_profile_mode with kernel docs
     - drm/amdgpu/swsmu: always force a state reprogram on init
     - ata: libata-core: Fix null pointer dereference on error (CVE-2024-41098)
     - usb: typec: fix up incorrectly backported "usb: typec: tcpm: unregister
       existing source caps before re-registration"
     - mmc: Avoid open coding by using mmc_op_tuning()
     - mmc: mtk-sd: receive cmd8 data when hs400 tuning fail
     - mptcp: unify pm get_local_id interfaces
     - mptcp: pm: remove mptcp_pm_remove_subflow()
     - mptcp: pm: only mark 'subflow' endp as available
     - mptcp: pm: check add_addr_accept_max before accepting new ADD_ADDR
     - of: Introduce for_each_*_child_of_node_scoped() to automate of_node_put()
       handling
     - thermal: of: Fix OF node leak in thermal_of_trips_init() error path
     - thermal: of: Fix OF node leak in of_thermal_zone_find() error paths
     - ASoC: amd: acp: fix module autoloading
     - ASoC: SOF: amd: Fix for acp init sequence
     - pinctrl: mediatek: common-v2: Fix broken bias-disable for
       PULL_PU_PD_RSEL_TYPE
     - btrfs: fix extent map use-after-free when adding pages to compressed bio
       (CVE-2024-42314)
     - soundwire: stream: fix programming slave ports for non-continous port maps
     - [arm64] phy: xilinx: add runtime PM support
     - [arm64] phy: xilinx: phy-zynqmp: dynamic clock support for power-save
     - [arm64] phy: xilinx: phy-zynqmp: Fix SGMII linkup failure on resume
     - [x86] dmaengine: dw: Add peripheral bus width verification
     - [x86] dmaengine: dw: Add memory bus width verification
     - Bluetooth: hci_core: Fix not handling hibernation actions
     - iommu: Do not return 0 from map_pages if it doesn't do anything
     - netfilter: nf_tables: restore IP sanity checks for netdev/egress
     - wifi: iwlwifi: fw: fix wgds rev 3 exact size
     - ethtool: check device is present when getting link settings
     - netfilter: nf_tables_ipv6: consider network offset in netdev/egress
       validation
     - bonding: implement xdo_dev_state_free and call it after deletion
     - gtp: fix a potential NULL pointer dereference
     - sctp: fix association labeling in the duplicate COOKIE-ECHO case
     - drm/amd/display: avoid using null object of framebuffer
     - net: busy-poll: use ktime_get_ns() instead of local_clock()
     - nfc: pn533: Add poll mod list filling check
     - [arm64] soc: qcom: cmd-db: Map shared memory as WC, not WB
     - cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller
     - USB: serial: option: add MeiG Smart SRM825L
     - [armhf] usb: dwc3: omap: add missing depopulate in probe error path
     - [arm64,armhf] usb: dwc3: core: Prevent USB core invalid event buffer
       address access
     - usb: core: sysfs: Unmerge @usb3_hardware_lpm_attr_group in
       remove_power_attributes()
     - usb: cdnsp: fix incorrect index in cdnsp_get_hw_deq function
     - usb: cdnsp: fix for Link TRB with TC
     - [arm64] phy: zynqmp: Enable reference clock correctly
     - igc: Fix reset adapter logics when tx mode change
     - igc: Fix qbv tx latency by setting gtxoffset
     - scsi: aacraid: Fix double-free on probe failure
     - apparmor: fix policy_unpack_test on big endian systems
     - fbdev: offb: fix up missing cleanup.h
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.109
     - drm: panel-orientation-quirks: Add quirk for OrangePi Neo
     - scsi: ufs: core: Bypass quick recovery if force reset is needed
     - ALSA: hda/generic: Add a helper to mute speakers at suspend/shutdown
     - ALSA: hda/conexant: Mute speakers at suspend / shutdown
     - i2c: Fix conditional for substituting empty ACPI functions
     - dma-debug: avoid deadlock between dma debug vs printk and netconsole
     - net: usb: qmi_wwan: add MeiG Smart SRM825L
     - [x86] ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6
     - mptcp: make pm_remove_addrs_and_subflows static
     - mptcp: pm: fix RM_ADDR ID for the initial subflow
     - PCI/MSI: Fix UAF in msi_capability_init (CVE-2024-41096)
     - f2fs: fix to truncate preallocated blocks in f2fs_file_open()
       (CVE-2024-43859)
     - mptcp: pm: fullmesh: select the right ID later
     - mptcp: pm: avoid possible UaF when selecting endp (CVE-2024-44974)
     - mptcp: pm: reuse ID 0 after delete and re-add
     - mptcp: pm: fix ID 0 endp usage after multiple re-creations
     - mptcp: pr_debug: add missing \n at the end
     - mptcp: avoid duplicated SUB_CLOSED events
     - drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr
     - drm/amd/display: Assign linear_pitch_alignment even for VM
     - drm/amdgpu: fix overflowed array index read warning
     - drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc
     - drm/amd/pm: fix uninitialized variable warning
     - drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr
     - drm/amd/pm: fix warning using uninitialized value of max_vid_step
     - drm/amd/pm: Fix negative array index read
     - drm/amd/pm: fix the Out-of-bounds read warning
     - drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr
     - drm/amdgpu: avoid reading vf2pf info size from FB
     - drm/amd/display: Check gpio_id before used as array index
     - drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6
     - drm/amd/display: Add array index check for hdcp ddc access
     - drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[]
     - drm/amd/display: Check msg_id before processing transcation
     - drm/amd/display: Fix Coverity INTEGER_OVERFLOW within
       dal_gpio_service_create
     - drm/amd/display: Spinlock before reading event
     - drm/amd/display: Ensure index calculation will not overflow
     - drm/amd/display: Skip inactive planes within
       ModeSupportAndSystemConfiguration
     - drm/amd/amdgpu: Check tbo resource pointer
     - drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt
     - drm/amdgpu/pm: Fix uninitialized variable warning for smu10
     - drm/amdgpu/pm: Fix uninitialized variable agc_btc_response
     - drm/amdgpu: Fix out-of-bounds write warning
     - drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number
     - drm/amdgpu: fix ucode out-of-bounds read warning
     - drm/amdgpu: fix mc_data out-of-bounds read warning
     - apparmor: fix possible NULL pointer dereference
     - wifi: ath11k: initialize 'ret' in ath11k_qmi_load_file_target_mem()
     - drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy
       SOCs
     - drm/amdgpu: fix dereference after null check
     - drm/amdgpu: fix the waring dereferencing hive
     - drm/amd/pm: check specific index for aldebaran
     - drm/amdgpu: the warning dereferencing obj for nbio_v7_4
     - drm/amd/pm: check negtive return for table entries
     - wifi: rtw89: ser: avoid multiple deinit on same CAM
     - drm/amdgpu: update type of buf size to u32 for eeprom functions
     - wifi: iwlwifi: remove fw_running op
     - cpufreq: scmi: Avoid overflow of target_freq in fast switch
     - PCI: al: Check IORESOURCE_BUS existence during probe
     - hwspinlock: Introduce hwspin_lock_bust()
     - RDMA/efa: Properly handle unexpected AQ completions
     - ionic: fix potential irq name truncation
     - pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode.
     - rcu/nocb: Remove buggy bypass lock contention mitigation
     - usbip: Don't submit special requests twice
     - usb: typec: ucsi: Fix null pointer dereference in trace
     - fsnotify: clear PARENT_WATCHED flags lazily
     - regmap: spi: Fix potential off-by-one when calculating reserved size
     - smack: tcp: ipv4, fix incorrect labeling
     - net/mlx5e: SHAMPO, Fix incorrect page release
     - [arm64] drm/meson: plane: Add error handling
     - [x86] hwmon: (k10temp) Check return value of amd_smn_read()
     - wifi: cfg80211: make hash table duplicates more survivable
     - driver: iio: add missing checks on iio_info's callback access
     - block: remove the blk_flush_integrity call in blk_integrity_unregister
     - drm/amd/display: added NULL check at start of dc_validate_stream
     - drm/amd/display: Correct the defined value for
       AMDGPU_DMUB_NOTIFICATION_MAX
     - drm/amd/display: Skip wbscl_set_scaler_filter if filter is null
     - media: uvcvideo: Enforce alignment of frame and interval
     - virtio_net: Fix napi_skb_cache_put warning (CVE-2024-43835)
     - Bluetooth: SCO: Fix possible circular locking dependency on
       sco_connect_cfm
     - Bluetooth: SCO: fix sco_conn related locking and validity issues
     - ext4: fix inode tree inconsistency caused by ENOMEM
     - udf: Limit file size to 4TB
     - ext4: reject casefold inode flag without casefold feature
     - ext4: handle redirtying in ext4_bio_write_page()
     - i2c: Use IS_REACHABLE() for substituting empty ACPI functions
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.110
     - sch/netem: fix use after free in netem_dequeue
     - ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object
     - [x86] KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS
     - [x86] KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and
       MSR_GS_BASE
     - [x86] KVM: SVM: Don't advertise Bus Lock Detect to guest if SVM support is
       missing
     - ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius
       devices
     - ALSA: hda/realtek: add patch for internal mic in Lenovo V145
     - ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx
     - ksmbd: unset the binding mark of a reused connection
     - ksmbd: Unlock on in ksmbd_tcp_set_interfaces()
     - ata: libata: Fix memory leak for error path in ata_host_alloc()
     - [x86] tdx: Fix data leak in mmio_read()
     - [x86] perf/x86/intel: Limit the period on Haswell
     - [arm64,armhf] irqchip/gic-v2m: Fix refcount leak in gicv2m_of_init()
     - [x86] kaslr: Expose and use the end of the physical memory address space
     - rtmutex: Drop rt_mutex::wait_lock before scheduling
     - nvme-pci: Add sleep quirk for Samsung 990 Evo
     - Revert "Bluetooth: MGMT/SMP: Fix address type when using SMP over
       BREDR/LE"
     - Bluetooth: MGMT: Ignore keys being loaded with invalid type
     - mmc: core: apply SD quirks earlier during probe
     - mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K
     - mmc: sdhci-of-aspeed: fix module autoloading
     - mmc: cqhci: Fix checking of CQHCI_HALT state
     - fuse: update stats for pages in dropped aux writeback list
     - fuse: use unsigned type for getxattr/listxattr size truncation
     - [arm64] clk: qcom: clk-alpha-pll: Fix the pll post div mask
     - [arm64] clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API
     - can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open
     - spi: rockchip: Resolve unbalanced runtime PM / system PM handling
     - tracing: Avoid possible softlockup in tracing_iter_reset()
     - net: mctp-serial: Fix missing escapes on transmit
     - [x86] fpu: Avoid writing LBR bit to IA32_XSS unless supported
     - Revert "drm/amdgpu: align pp_power_profile_mode with kernel docs"
     - tcp_bpf: fix return value of tcp_bpf_sendmsg()
     - ila: call nf_unregister_net_hooks() sooner
     - sched: sch_cake: fix bulk flow accounting logic for host fairness
     - nilfs2: fix missing cleanup on rollforward recovery error
     - nilfs2: protect references to superblock parameters exposed in sysfs
     - nilfs2: fix state management in error path of log writing function
     - ALSA: control: Apply sanity check of input values for user elements
     - ALSA: hda: Add input value sanity checks to HDMI channel map controls
     - smack: unix sockets: fix accept()ed socket label
     - ELF: fix kernel.randomize_va_space double read
     - [armhf] irqchip/armada-370-xp: Do not allow mapping IRQ 0 and 1
     - af_unix: Remove put_pid()/put_cred() in copy_peercred().
     - [x86] kmsan: Fix hook for unaligned accesses
     - netfilter: nf_conncount: fix wrong variable type
     - udf: Avoid excessive partition lengths
     - media: vivid: fix wrong sizeimage value for mplane
     - leds: spi-byte: Call of_node_put() on error path
     - wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3
     - usb: uas: set host status byte on data completion error
     - usb: gadget: aspeed_udc: validate endpoint index for ast udc
     - drm/amd/display: Check HDCP returned status
     - drm/amdgpu: Fix smatch static checker warning
     - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts
     - media: vivid: don't set HDMI TX controls if there are no HDMI outputs
     - PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0)
     - Input: ili210x - use kvmalloc() to allocate buffer for firmware update
     - media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse
     - pcmcia: Use resource_size function on resource object
     - drm/amd/display: Check denominator pbn_div before used
     - drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6
     - can: bcm: Remove proc entry when dev is unregistered.
     - [arm64] can: m_can: Release irq on error in m_can_open
     - can: mcp251xfd: fix ring configuration when switching from CAN-CC to
       CAN-FD mode
     - cifs: Fix FALLOC_FL_ZERO_RANGE to preflush buffered part of target region
     - igb: Fix not clearing TimeSync interrupts for 82580
     - ice: Add netif_device_attach/detach into PF reset flow
     - [x86] platform/x86: dell-smbios: Fix error path in dell_smbios_init()
     - regulator: Add of_regulator_bulk_get_all
     - regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR
     - igc: Unlock on error in igc_io_resume()
     - ice: Use ice_max_xdp_frame_size() in ice_xdp_setup_prog()
     - ice: allow hot-swapping XDP programs
     - ice: do not bring the VSI up, if it was down before the XDP setup
     - usbnet: modern method to get random MAC
     - bareudp: Fix device stats updates.
     - fou: Fix null-ptr-deref in GRO.
     - net: bridge: br_fdb_external_learn_add(): always set EXT_LEARN
     - net: dsa: vsc73xx: fix possible subblocks range of CAPT block
     - firmware: cs_dsp: Don't allow writes to read-only controls
     - [arm64] phy: zynqmp: Take the phy mutex in xlate
     - [x86] ASoC: topology: Properly initialize soc_enum values
     - dm init: Handle minors larger than 255
     - [amd64] iommu/vt-d: Handle volatile descriptor status read
     - cgroup: Protect css->cgroup write under css_set_lock
     - devres: Initialize an uninitialized struct member
     - pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv
     - [x86] crypto: qat - fix unintentional re-enabling of error interrupts
     - hwmon: (nct6775-core) Fix underflows seen when writing limit attributes
     - hwmon: (w83627ehf) Fix underflows seen when writing limit attributes
     - libbpf: Add NULL checks to bpf_object__{prev_map,next_map}
     - drm/amdgpu: Set no_hw_access when VF request full GPU fails
     - ext4: fix possible tid_t sequence overflows
     - dma-mapping: benchmark: Don't starve others when doing the test
     - wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()
     - smp: Add missing destroy_work_on_stack() call in smp_call_on_cpu()
     - btrfs: replace BUG_ON with ASSERT in walk_down_proc()
     - btrfs: clean up our handling of refs == 0 in snapshot delete
     - btrfs: replace BUG_ON() with error handling at update_ref_for_cow()
     - PCI: Add missing bridge lock to pci_bus_lock()
     - tcp: Don't drop SYN+ACK for simultaneous connect().
     - net: dpaa: avoid on-stack arrays of NR_CPUS elements
     - i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup
     - btrfs: initialize location to fix -Wmaybe-uninitialized in
       btrfs_lookup_dentry()
     - [s390x] vmlinux.lds.S: Move ro_after_init section behind rodata section
     - HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup
     - [amd64] HID: amd_sfh: free driver_data after destroying hid device
     - Input: uinput - reject requests with unreasonable number of slots
     - usbnet: ipheth: race between ipheth_close and error handling
     - Squashfs: sanity check symbolic link size
     - of/irq: Prevent device address out-of-bounds read in interrupt map walk
     - lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()
     - [mips*] cevt-r4k: Don't call get_c0_compare_int if timer irq is installed
     - ata: pata_macio: Use WARN instead of BUG
     - NFSv4: Add missing rescheduling points in
       nfs_client_return_marked_delegations
     - io_uring/io-wq: stop setting PF_NO_SETAFFINITY on io-wq workers
     - io_uring/sqpoll: Do not set PF_NO_SETAFFINITY on sqpoll threads
     - tcp: process the 3rd ACK with sk_socket for TFO/MPTCP
     - iio: buffer-dmaengine: fix releasing dma channel on error
     - iio: fix scale application in iio_convert_raw_to_processed_unlocked
     - iio: adc: ad7124: fix config comparison
     - iio: adc: ad7606: remove frstdata check for serial mode
     - iio: adc: ad7124: fix chip ID mismatch
     - [arm64,armhf] usb: dwc3: core: update LC timer as per USB Spec V3.2
     - [arm*] binder: fix UAF caused by offsets overwrite
     - nvmem: Fix return type of devm_nvmem_device_get() in kerneldoc
     - uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind
     - Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic
     - VMCI: Fix use-after-free when removing resource in vmci_resource_remove()
     - clocksource/drivers/timer-of: Remove percpu irq related code
     - uprobes: Use kzalloc to allocate xol area
     - perf/aux: Fix AUX buffer serialization (CVE-2024-46713)
     - fuse: add "expire only" mode to FUSE_NOTIFY_INVAL_ENTRY
     - fuse: allow non-extending parallel direct writes on the same file
     - fuse: add request extension
     - fuse: fix memory leak in fuse_create_open
     - net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup
     - workqueue: wq_watchdog_touch is always called with valid CPU
     - workqueue: Improve scalability of workqueue watchdog touch
     - ACPI: processor: Return an error if acpi_processor_get_info() fails in
       processor_add()
     - ACPI: processor: Fix memory leaks in error paths of processor_add()
     - [arm64] acpi: Move get_cpu_for_acpi_id() to a header
     - [arm64] acpi: Harden get_cpu_for_acpi_id() against missing CPU entry
     - can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate
       function
     - can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index
       erratum
     - can: mcp251xfd: clarify the meaning of timestamp
     - can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd
     - drm/amd: Add gfx12 swizzle mode defs
     - drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes
     - [powerpc*] 64e: remove unused IBM HTW code
     - [powerpc*] 64e: split out nohash Book3E 64-bit code
     - [powerpc*] 64e: Define mmu_pte_psize static
     - nvmet-tcp: fix kernel crash if commands allocation fails
     - [x86] ASoc: SOF: topology: Clear SOF link platform name upon unload
     - [arm64,armhf] ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode
     - [x86] drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused
     - [x86] drm/i915/fence: Mark debug_fence_free() with __maybe_unused
     - [arm64,armhf] gpio: rockchip: fix OF node leak in probe()
     - [arm64] gpio: modepin: Enable module autoloading
     - [x86] mm: Fix PTI for i386 some more
     - btrfs: fix race between direct IO write and fsync when using same fd
     - bpf: Silence a warning in btf_type_id_size()
     - memcg: protect concurrent access to mem_cgroup_idr (CVE-2024-43892)
     - regulator: of: fix a NULL vs IS_ERR() check in of_regulator_bulk_get_all()
     - fuse: add feature flag for expire-only
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.111
     - ksmbd: override fsids for share path check
     - ksmbd: override fsids for smb2_query_info()
     - usbnet: ipheth: fix carrier detection in modes 1 and 4
     - net: ethernet: use ip_hdrlen() instead of bit shift
     - drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero
     - drm: panel-orientation-quirks: Add quirk for Ayn Loki Max
     - net: phy: vitesse: repair vsc73xx autonegotiation
     - [powerpc*] mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL
     - btrfs: update target inode's ctime on unlink
     - Input: ads7846 - ratelimit the spi_sync error message
     - Input: synaptics - enable SMBus for HP Elitebook 840 G2
     - HID: multitouch: Add support for GT7868Q
     - scripts: kconfig: merge_config: config files: add a trailing newline
     - [x86] platform/surface: aggregator_registry: Add Support for Surface Pro
       10
     - [x86] platform/surface: aggregator_registry: Add support for Surface
       Laptop Go 3
     - [arm64] drm/msm/adreno: Fix error return if missing firmware-name
     - Input: i8042 - add Fujitsu Lifebook E756 to i8042 quirk table
     - smb/server: fix return value of smb2_open()
     - NFSv4: Fix clearing of layout segments in layoutreturn
     - NFS: Avoid unnecessary rescanning of the per-server delegation list
     - [x86] platform/x86: panasonic-laptop: Fix SINF array out of bounds
       accesses
     - [x86] platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf
       array
     - mptcp: pm: Fix uaf in __timer_delete_sync
     - [arm64] dts: rockchip: fix eMMC/SPI corruption when audio has been used on
       RK3399 Puma
     - [arm64] dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399
       Puma
     - net: tighten bad gso csum offset check in virtio_net_hdr
     - dm-integrity: fix a race condition when accessing recalc_sector
     - mm: avoid leaving partial pfn mappings around in error case
     - pmdomain: ti: Add a null pointer check to the omap_prm_domain_init
       (CVE-2024-35943)
     - [arm64] dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E
     - eeprom: digsy_mtc: Fix 93xx46 driver probe failure
     - cxl/core: Fix incorrect vendor debug UUID define
     - [armhf] hwmon: (pmbus) Conditionally clear individual status bits for
       pmbus rev >= 1.2
     - ice: fix accounting for filters shared by multiple VSIs
     - igb: Always call igb_xdp_ring_update_tail() under Tx lock
     - net/mlx5: Update the list of the PCI supported devices
     - net/mlx5e: Add missing link modes to ptys2ethtool_map
     - net/mlx5: Explicitly set scheduling element and TSAR type
     - net/mlx5: Add missing masks and QoS bit masks for scheduling elements
     - net/mlx5: Correct TASR typo into TSAR
     - net/mlx5: Verify support for scheduling element and TSAR type
     - net/mlx5: Fix bridge mode operations when there are no VFs
     - fou: fix initialization of grc
     - netfilter: nft_socket: fix sk refcount leaks
     - net: dpaa: Pad packets to ETH_ZLEN
     - [arm64] spi: nxp-fspi: fix the KASAN report out-of-bounds bug
     - soundwire: stream: Revert "soundwire: stream: fix programming slave ports
       for non-continous port maps"
     - dma-buf: heaps: Fix off-by-one in CMA heap fault handler
     - drm/amdgpu/atomfirmware: Silence UBSAN warning
     - [x86] drm/i915/guc: prevent a possible int overflow in wq offsets
     - pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID
     - [arm64] ASoC: meson: axg-card: fix 'use-after-free'
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.112
     - ALSA: hda/realtek - Fixed ALC256 headphone no sound
     - ALSA: hda/realtek - FIxed ALC285 headphone no sound
     - scsi: lpfc: Fix overflow build issue
     - [x86] hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING
     - [armhf] net: ftgmac100: Ensure tx descriptor updates are visible
     - wifi: iwlwifi: lower message level for FW buffer destination
     - wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation
     - wifi: iwlwifi: mvm: pause TCM when the firmware is stopped
     - wifi: iwlwifi: mvm: don't wait for tx queues if firmware is dead
     - wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap()
     - wifi: iwlwifi: clear trans->state earlier upon error
     - can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration
     - [x86] ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match
       less strict
     - [x86] ASoC: intel: fix module autoloading
     - spi: spidev: Add an entry for elgin,jg10309-01
     - spi: bcm63xx: Enable module autoloading
     - smb: client: fix hang in wait_for_response() for negproto
     - [x86] hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides
       frequency
     - tools: hv: rm .*.cmd when make clean
     - block: Fix where bio IO priority gets set
     - spi: spidev: Add missing spi_device_id for jg10309-01
     - ocfs2: add bounds checking to ocfs2_xattr_find_entry()
     - ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()
       (CVE-2024-41016)
     - xfs: dquot shrinker doesn't check for XFS_DQFLAG_FREEING
     - xfs: Fix deadlock on xfs_inodegc_worker
     - xfs: fix extent busy updating
     - xfs: don't use BMBT btree split workers for IO completion
     - xfs: fix low space alloc deadlock
     - xfs: prefer free inodes at ENOSPC over chunk allocation
     - xfs: block reservation too large for minleft allocation
     - xfs: fix uninitialized variable access
     - xfs: quotacheck failure can race with background inode inactivation
     - xfs: fix BUG_ON in xfs_getbmap()
     - xfs: buffer pins need to hold a buffer reference
     - xfs: defered work could create precommits
     - xfs: fix AGF vs inode cluster buffer deadlock
     - xfs: collect errors from inodegc for unlinked inode recovery
     - xfs: fix ag count overflow during growfs
     - xfs: remove WARN when dquot cache insertion fails
     - xfs: fix the calculation for "end" and "length"
     - xfs: load uncached unlinked inodes into memory on demand
     - xfs: fix negative array access in xfs_getbmap
     - xfs: fix unlink vs cluster buffer instantiation race
     - xfs: correct calculation for agend and blockcount
     - xfs: use i_prev_unlinked to distinguish inodes that are not on the
       unlinked list
     - xfs: reload entire unlinked bucket lists
     - xfs: make inode unlinked bucket recovery work with quotacheck
     - xfs: fix reloading entire unlinked bucket lists
     - xfs: set bnobt/cntbt numrecs correctly when formatting new AGs
     - xfs: journal geometry is not properly bounds checked
     - netfilter: nft_socket: make cgroupsv2 matching work with namespaces
     - netfilter: nft_socket: Fix a NULL vs IS_ERR() bug in
       nft_socket_cgroup_subtree_level()
     - netfilter: nft_set_pipapo: walk over current view on netlink dump
       (CVE-2024-27017)
     - netfilter: nf_tables: missing iterator type in lookup walk
     - Revert "wifi: cfg80211: check wiphy mutex is held for wdev mutex"
     - gpiolib: cdev: Ignore reconfiguration without direction
     - gpio: prevent potential speculation leaks in gpio_device_get_desc()
       (CVE-2024-44931)
     - can: mcp251xfd: properly indent labels
     - can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into
       mcp251xfd_chip_start/stop()
     - btrfs: calculate the right space for delayed refs when updating global
       reserve
     - [x86] powercap: RAPL: fix invalid initialization for pl4_supported field
     - [x86] mm: Switch to new Intel CPU model defines
     - USB: serial: pl2303: add device id for Macrosilicon MS3020
     - USB: usbtmc: prevent kernel-usb-infoleak
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 26
   * [rt] Update to 6.1.107-rt39
   * [rt] Update to 6.1.111-rt42

linux-signed-i386 (6.1.115+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.115-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.113
     - wifi: rtw88: always wait for both firmware loading attempts
       (CVE-2024-47718)
     - crypto: xor - fix template benchmarking
     - ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe()
     - wifi: ath9k: fix parameter check in ath9k_init_debug()
     - wifi: ath9k: Remove error checks when creating debugfs entries
     - wifi: rtw88: remove CPT execution branch never used
     - fs/namespace: fnic: Switch to use %ptTd
     - mount: handle OOM on mnt_warn_timestamp_expiry
     - drivers/perf: Fix ali_drw_pmu driver interrupt status clearing
       (CVE-2024-47731)
     - wifi: mac80211: don't use rate mask for offchannel TX either
       (CVE-2024-47738)
     - wifi: iwlwifi: mvm: increase the time between ranging measurements
     - ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE
     - ACPICA: executer/exsystem: Don't nag user about every Stall() violating
       the spec
     - padata: Honor the caller's alignment in case of chunk_size 0
     - drivers/perf: hisi_pcie: Record hardware counts correctly
     - can: j1939: use correct function name in comment
     - ACPI: CPPC: Fix MASK_VAL() usage
     - netfilter: nf_tables: elements with timeout below CONFIG_HZ never expire
     - netfilter: nf_tables: reject element expiration with no timeout
     - netfilter: nf_tables: reject expiration higher than timeout
     - netfilter: nf_tables: remove annotation to access set timeout while
       holding lock
     - [arm64] perf/arm-cmn: Rework DTC counters (again)
     - [arm64] perf/arm-cmn: Improve debugfs pretty-printing for large configs
     - [arm64] perf/arm-cmn: Refactor node ID handling. Again.
     - [arm64] perf/arm-cmn: Ensure dtm_idx is big enough
     - cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately
     - [x86] sgx: Fix deadlock in SGX NUMA node search (CVE-2024-49856)
     - crypto: hisilicon/hpre - enable sva error interrupt event
     - crypto: hisilicon/hpre - mask cluster timeout error
     - crypto: hisilicon/qm - fix coding style issues
     - crypto: hisilicon/qm - reset device before enabling it
     - crypto: hisilicon/qm - inject error before stopping queue (CVE-2024-47730)
     - wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan()
     - wifi: mt76: mt7915: fix rx filter setting for bfee functionality
     - wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors
     - wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()
       (CVE-2024-47713)
     - wifi: wilc1000: fix potential RCU dereference issue in
       wilc_parse_join_bss_param (CVE-2024-47712)
     - Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED
     - Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL
     - sock_map: Add a cond_resched() in sock_hash_free()
     - can: bcm: Clear bo->bcm_proc_read after remove_proc_entry().
       (CVE-2024-47709)
     - can: m_can: Remove repeated check for is_peripheral
     - can: m_can: enable NAPI before enabling interrupts
     - can: m_can: m_can_close(): stop clocks after device has been shut down
     - Bluetooth: btusb: Fix not handling ZPL/short-transfer
     - bareudp: Pull inner IP header in bareudp_udp_encap_recv().
     - bareudp: Pull inner IP header on xmit.
     - net: enetc: Use IRQF_NO_AUTOEN flag in request_irq()
     - r8169: disable ALDPS per default for RTL8125
     - net: ipv6: rpl_iptunnel: Fix memory leak in rpl_input
     - net: tipc: avoid possible garbage value
     - ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev()
       (CVE-2024-47707)
     - nbd: fix race between timeout and normal completion (CVE-2024-49855)
     - block, bfq: fix possible UAF for bfqq->bic with merge chain
       (CVE-2024-47706)
     - block, bfq: choose the last bfqq from merge chain in
       bfq_setup_cooperator()
     - block, bfq: don't break merge chain in bfq_split_bfqq()
     - block: print symbolic error name instead of error code
     - block: fix potential invalid pointer dereference in blk_add_partition
       (CVE-2024-47705)
     - spi: ppc4xx: handle irq_of_parse_and_map() errors
     - [arm64] dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB
     - firmware: arm_scmi: Fix double free in OPTEE transport (CVE-2024-49853)
     - spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ
     - regulator: Return actual error in of_regulator_bulk_get_all()
     - [arm64] dts: renesas: r9a07g043u: Correct GICD and GICR sizes
     - [arm64] dts: renesas: r9a07g054: Correct GICD and GICR sizes
     - [arm64] dts: renesas: r9a07g044: Correct GICD and GICR sizes
     - [arm64] dts: ti: k3-j721e-sk: Fix reversed C6x carveout locations
     - reset: berlin: fix OF node leak in probe() error path
     - reset: k210: fix OF node leak in probe() error path
     - clocksource/drivers/qcom: Add missing iounmap() on errors in
       msm_dt_timer_init()
     - ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error
     - ALSA: hda: cs35l41: fix module autoloading
     - hwmon: (max16065) Fix overflows seen when writing limits
     - i2c: Add i2c_get_match_data()
     - hwmon: (max16065) Remove use of i2c_match_id()
     - hwmon: (max16065) Fix alarm attributes
     - mtd: slram: insert break after errors in parsing the map
     - hwmon: (ntc_thermistor) fix module autoloading
     - power: supply: axp20x_battery: Remove design from min and max voltage
     - power: supply: max17042_battery: Fix SOC threshold calc w/ no current
       sense
     - fbdev: hpfb: Fix an error handling path in hpfb_dio_probe()
     - [amd64] iommu/amd: Do not set the D bit on AMD v2 table entries
     - mtd: powernv: Add check devm_kasprintf() returned value
     - rcu/nocb: Fix RT throttling hrtimer armed from offline CPU
     - mtd: rawnand: mtk: Use for_each_child_of_node_scoped()
     - mtd: rawnand: mtk: Factorize out the logic cleaning mtk chips
     - mtd: rawnand: mtk: Fix init error path
     - pmdomain: core: Harden inter-column space in debug summary
     - drm/stm: Fix an error handling path in stm_drm_platform_probe()
     - drm/stm: ltdc: check memory returned by devm_kzalloc()
     - drm/amd/display: Add null check for set_output_gamma in
       dcn30_set_output_transfer_func (CVE-2024-47720)
     - drm/amdgpu: Replace one-element array with flexible-array member
     - drm/amdgpu: properly handle vbios fake edid sizing
     - drm/radeon: Replace one-element array with flexible-array member
     - drm/radeon: properly handle vbios fake edid sizing
     - scsi: smartpqi: revert propagate-the-multipath-failure-to-SML-quickly
     - scsi: NCR5380: Check for phase match during PDMA fixup
     - drm/amd/amdgpu: Properly tune the size of struct
     - drm/rockchip: vop: Allow 4096px width scaling
     - drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode
     - drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets
     - drm/bridge: lontium-lt8912b: Validate mode in
       drm_bridge_funcs::mode_valid()
     - drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get
     - scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()
       (CVE-2024-49852)
     - jfs: fix out-of-bounds in dbNextAG() and diAlloc()
     - drm/mediatek: Fix missing configuration flags in mtk_crtc_ddp_config()
     - drm/mediatek: Use spin_lock_irqsave() for CRTC event lock
     - [powerpc*] 8xx: Fix initial memory mapping
     - [powerpc*] 8xx: Fix kernel vs user address comparison
     - drm/msm: Fix incorrect file name output in adreno_request_fw()
     - drm/msm/a5xx: disable preemption in submits by default
     - drm/msm/a5xx: properly clear preemption records on resume
     - drm/msm/a5xx: fix races in preemption evaluation stage
     - drm/msm/a5xx: workaround early ring-buffer emptiness check
     - ipmi: docs: don't advertise deprecated sysfs entries
     - drm/msm: fix %s null argument error
     - drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind()
     - xen: use correct end address of kernel for conflict checking
     - HID: wacom: Support sequence numbers smaller than 16-bit
     - HID: wacom: Do not warn about dropped packets for first packet
     - xen/swiotlb: add alignment check for dma buffers
     - xen/swiotlb: fix allocated size
     - tpm: Clean up TPM space after command failure (CVE-2024-49851)
     - bpf: correctly handle malformed BPF_CORE_TYPE_ID_LOCAL relos
       (CVE-2024-49850)
     - xz: cleanup CRC32 edits from 2018
     - kthread: fix task state in kthread worker if being frozen
     - ext4: clear EXT4_GROUP_INFO_WAS_TRIMMED_BIT even mount with discard
     - smackfs: Use rcu_assign_pointer() to ensure safe assignment in
       smk_set_cipso
     - ext4: avoid buffer_head leak in ext4_mark_inode_used()
     - ext4: avoid potential buffer_head leak in __ext4_new_inode()
     - ext4: avoid negative min_clusters in find_group_orlov()
     - ext4: return error on ext4_find_inline_entry
     - ext4: avoid OOB when system.data xattr changes underneath the filesystem
       (CVE-2024-47701)
     - nilfs2: fix potential null-ptr-deref in nilfs_btree_insert()
       (CVE-2024-47699)
     - nilfs2: determine empty node blocks as corrupted
     - nilfs2: fix potential oob read in nilfs_btree_check_delete()
       (CVE-2024-47757)
     - bpf: Fix bpf_strtol and bpf_strtoul helpers for 32bit
     - bpf: Improve check_raw_mode_ok test for MEM_UNINIT-tagged types
     - bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error
       (CVE-2024-47728)
     - perf mem: Free the allocated sort string, fixing a leak
     - perf inject: Fix leader sampling inserting additional samples
     - perf sched timehist: Fix missing free of session in perf_sched__timehist()
     - perf stat: Display iostat headers correctly
     - perf sched timehist: Fixed timestamp error when unable to confirm event
       sched_in time
     - perf time-utils: Fix 32-bit nsec parsing
     - clk: imx: composite-8m: Less function calls in __imx8m_clk_hw_composite()
       after error detection
     - clk: imx: composite-8m: Enable gate clk with mcore_booted
     - clk: imx: composite-7ulp: Check the PCC present bit
     - clk: imx: fracn-gppll: support integer pll
     - clk: imx: fracn-gppll: fix fractional part of PLL getting lost
     - clk: imx: imx8mp: fix clock tree update of TF-A managed clocks
     - clk: imx: imx8qxp: Register dc0_bypass0_clk before disp clk
     - clk: imx: imx8qxp: Parent should be initialized earlier than the clock
     - remoteproc: imx_rproc: Correct ddr alias for i.MX8M
     - remoteproc: imx_rproc: Initialize workqueue earlier
     - clk: rockchip: Set parent rate for DCLK_VOP clock on RK3228
     - Input: ilitek_ts_i2c - avoid wrong input subsystem sync
     - Input: ilitek_ts_i2c - add report id message validation
     - drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error
       (CVE-2024-47698)
     - drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error
       (CVE-2024-47697)
     - PCI/PM: Increase wait time after resume
     - PCI/PM: Drop pci_bridge_wait_for_secondary_bus() timeout parameter
     - PCI: Wait for Link before restoring Downstream Buses
     - PCI: keystone: Fix if-statement expression in ks_pcie_quirk()
       (CVE-2024-47756)
     - clk: qcom: dispcc-sm8250: use special function for Lucid 5LPE PLL
     - nvdimm: Fix devs leaks in scan_labels()
     - PCI: xilinx-nwl: Fix register misspelling
     - PCI: xilinx-nwl: Clean up clock on probe failure/removal
     - RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency
       (CVE-2024-47696)
     - pinctrl: single: fix missing error code in pcs_probe()
     - RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer
     - RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (CVE-2024-47695)
     - clk: ti: dra7-atl: Fix leak of of_nodes
     - nfsd: remove unneeded EEXIST error check in nfsd_do_file_acquire
     - nfsd: fix refcount leak when file is unhashed after being found
     - pinctrl: mvebu: Use devm_platform_get_and_ioremap_resource()
     - pinctrl: mvebu: Fix devinit_dove_pinctrl_probe function
     - IB/core: Fix ib_cache_setup_one error flow cleanup (CVE-2024-47693)
     - PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port()
       (CVE-2024-47751)
     - RDMA/erdma: Return QP state in erdma_query_qp
     - watchdog: imx_sc_wdt: Don't disable WDT in suspend
     - [arm64] RDMA/hns: Don't modify rq next block addr in HIP09 QPC
     - [arm64] RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (CVE-2024-47750)
     - [arm64] RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range()
     - [arm64] RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled
     - [arm64] RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler
     - [arm64] RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS
     - [arm64] RDMA/hns: Optimize hem allocation performance
     - RDMA/cxgb4: Added NULL check for lookup_atid (CVE-2024-47749)
     - RDMA/irdma: fix error message in irdma_modify_qp_roce()
     - ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir()
     - ntb_perf: Fix printk format
     - ntb: Force physically contiguous allocation of rx ring buffers
     - nfsd: call cache_put if xdr_reserve_space returns NULL (CVE-2024-47737)
     - nfsd: return -EINVAL when namelen is 0 (CVE-2024-47692)
     - f2fs: fix to update i_ctime in __f2fs_setxattr()
     - f2fs: remove unneeded check condition in __f2fs_setxattr()
     - f2fs: reduce expensive checkpoint trigger frequency
     - f2fs: factor the read/write tracing logic into a helper
     - f2fs: fix to avoid racing in between read and OPU dio write
     - f2fs: fix to wait page writeback before setting gcing flag
     - f2fs: atomic: fix to truncate pagecache before on-disk metadata truncation
     - f2fs: clean up w/ dotdot_name
     - f2fs: get rid of online repaire on corrupted directory (CVE-2024-47690)
     - spi: atmel-quadspi: Undo runtime PM changes at driver exit time
     - spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time
     - lib/sbitmap: define swap_lock as raw_spinlock_t
     - nvme-multipath: system fails to create generic nvme device
     - iio: adc: ad7606: fix oversampling gpio array
     - iio: adc: ad7606: fix standby gpio state to match the documentation
     - ABI: testing: fix admv8818 attr description
     - iio: chemical: bme680: Fix read/write ops to device by adding mutexes
     - iio: magnetometer: ak8975: Convert enum->pointer for data in the match
       tables
     - iio: magnetometer: ak8975: drop incorrect AK09116 compatible
     - dt-bindings: iio: asahi-kasei,ak8975: drop incorrect AK09116 compatible
     - coresight: tmc: sg: Do not leak sg_table
     - cxl/pci: Break out range register decoding from cxl_hdm_decode_init()
     - cxl/pci: Fix to record only non-zero ranges
     - vdpa: Add eventfd for the vdpa callback
     - vhost_vdpa: assign irq bypass producer token correctly (CVE-2024-47748)
     - ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (CVE-2024-47686)
     - Revert "dm: requeue IO if mapping table not yet available"
     - net: xilinx: axienet: Schedule NAPI in two steps
     - net: xilinx: axienet: Fix packet counting
     - netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() (CVE-2024-47685)
     - net: seeq: Fix use after free vulnerability in ether3 Driver Due to Race
       Condition (CVE-2024-47747)
     - net: ipv6: select DST_CACHE from IPV6_RPL_LWTUNNEL
     - tcp: check skb is non-NULL in tcp_rto_delta_us() (CVE-2024-47684)
     - net: qrtr: Update packets cloning when broadcasting
     - bonding: Fix unnecessary warnings and logs from bond_xdp_get_xmit_slave()
       (CVE-2024-47734)
     - net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled
     - netfilter: nf_tables: Keep deleted flowtable hooks until after RCU
     - netfilter: ctnetlink: compile ctnetlink_label_size with
       CONFIG_NF_CONNTRACK_EVENTS
     - io_uring/sqpoll: do not allow pinning outside of cpuset
     - drm/amd/display: Fix Synaptics Cascaded Panamera DSC Determination
     - io_uring/io-wq: do not allow pinning outside of cpuset
     - io_uring/io-wq: inherit cpuset of cgroup in io worker
     - vfio/pci: fix potential memory leak in vfio_intx_enable() (CVE-2024-38632)
     - selinux,smack: don't bypass permissions check in inode_setsecctx hook
       (CVE-2024-46695)
     - drm/vmwgfx: Prevent unmapping active read buffers (CVE-2024-46710)
     - io_uring/sqpoll: retain test for whether the CPU is valid
     - io_uring/sqpoll: do not put cpumask on stack
     - Remove *.orig pattern from .gitignore
     - PCI: imx6: Fix missing call to phy_power_off() in error handling
     - PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler
     - ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error
     - soc: versatile: integrator: fix OF node leak in probe() error path
     - Revert "media: tuners: fix error return code of
       hybrid_tuner_request_state()"
     - Input: adp5588-keys - fix check on return code
     - Input: i8042 - add TUXEDO Stellaris 16 Gen5 AMD to i8042 quirk table
     - Input: i8042 - add TUXEDO Stellaris 15 Slim Gen6 AMD to i8042 quirk table
     - Input: i8042 - add another board name for TUXEDO Stellaris Gen5 AMD line
     - [x86] KVM: x86: Enforce x2APIC's must-be-zero reserved ICR bits
     - [x86] KVM: x86: Move x2APIC ICR helper above kvm_apic_write_nodecode()
     - drm/amd/display: Skip Recompute DSC Params if no Stream on Link
       (CVE-2024-47683)
     - drm/amd/display: Round calculated vtotal
     - drm/amd/display: Validate backlight caps are sane
     - KEYS: prevent NULL pointer dereference in find_asymmetric_key()
       (CVE-2024-47743)
     - fs: Create a generic is_dot_dotdot() utility
     - ksmbd: make __dir_empty() compatible with POSIX
     - ksmbd: allow write with FILE_APPEND_DATA
     - ksmbd: handle caseless file creation
     - scsi: sd: Fix off-by-one error in sd_read_block_characteristics()
       (CVE-2024-47682)
     - scsi: mac_scsi: Revise printk(KERN_DEBUG ...) messages
     - scsi: mac_scsi: Refactor polling loop
     - scsi: mac_scsi: Disallow bus errors during PDMA send
     - usbnet: fix cyclical race on disconnect with work queue
     - [arm64] dts: mediatek: mt8195-cherry: Mark USB 3.0 on xhci1 as disabled
     - USB: appledisplay: close race between probe and completion handler
     - USB: misc: cypress_cy7c63: check for short transfer
     - USB: class: CDC-ACM: fix race between get_serial and set_serial
     - usb: cdnsp: Fix incorrect usb_request status
     - usb: dwc2: drd: fix clock gating on USB role switch
     - bus: integrator-lm: fix OF node leak in probe()
     - bus: mhi: host: pci_generic: Fix the name for the Telit FE990A
     - firmware_loader: Block path traversal (CVE-2024-47742)
     - tty: rp2: Fix reset with non forgiving PCIe host bridges
     - xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them.
     - crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure
     - drbd: Fix atomicity violation in drbd_uuid_set_bm()
     - drbd: Add NULL check for net_conf to prevent dereference in state
       validation
     - ACPI: sysfs: validate return type of _STR method (CVE-2024-49860)
     - ACPI: resource: Add another DMI match for the TongFang GMxXGxx
     - efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption
       (CVE-2024-49858)
     - perf/x86/intel/pt: Fix sampling synchronization
     - wifi: rtw88: 8822c: Fix reported RX band width
     - wifi: mt76: mt7615: check devm_kasprintf() returned value
     - debugobjects: Fix conditions in fill_pool()
     - f2fs: fix several potential integer overflows in file offsets
     - f2fs: prevent possible int overflow in dir_block_index()
     - f2fs: avoid potential int overflow in sanity_check_area_boundary()
     - f2fs: fix to check atomic_file in f2fs ioctl interfaces (CVE-2024-49859)
     - hwrng: mtk - Use devm_pm_runtime_enable
     - hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init
     - hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume
     - [arm64] dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency
     - [arm64] dts: rockchip: Correct the Pinebook Pro battery design capacity
     - vfs: fix race between evice_inodes() and find_inode()&iput()
     - fs: Fix file_set_fowner LSM hook inconsistencies
     - nfs: fix memory leak in error path of nfs4_do_reclaim
     - EDAC/igen6: Fix conversion of system address to physical memory address
     - padata: use integer wrap around to prevent deadlock on seq_nr overflow
       (CVE-2024-47739)
     - soc: versatile: realview: fix memory leak during device remove
     - soc: versatile: realview: fix soc_dev leak during device remove
     - [powerpc*] 64: Option to build big-endian with ELFv2 ABI
     - [powerpc*] 64: Add support to build with prefixed instructions
     - [powerpc*] atomic: Use YZ constraints for DS-form instructions
     - usb: yurex: Replace snprintf() with the safer scnprintf() variant
     - USB: misc: yurex: fix race between read and write
     - xhci: fix event ring segment table related masks and variables in header
     - xhci: remove xhci_test_trb_in_td_math early development check
     - xhci: Refactor interrupter code for initial multi interrupter support.
     - xhci: Preserve RsvdP bits in ERSTBA register correctly
     - xhci: Add a quirk for writing ERST in high-low order
     - usb: xhci: fix loss of data on Cadence xHC
     - pps: remove usage of the deprecated ida_simple_xx() API
     - pps: add an error check in parport_attach
     - [x86] idtentry: Incorporate definitions/declarations of the FRED entries
     - [x86] entry: Remove unwanted instrumentation in common_interrupt()
     - mm/filemap: return early if failed to allocate memory for split
     - lib/xarray: introduce a new helper xas_get_order
     - mm/filemap: optimize filemap folio adding
     - icmp: Add counters for rate limits
     - icmp: change the order of rate limits (CVE-2024-47678)
     - bpf: lsm: Set bpf_lsm_blob_sizes.lbs_task to 0
     - lockdep: fix deadlock issue between lockdep and rcu
     - mm: only enforce minimum stack gap size if it's sensible
     - module: Fix KCOV-ignored file name
     - mm/damon/vaddr: protect vma traversal in __damon_va_thre_regions() with
       rcu read lock
     - i2c: aspeed: Update the stop sw state when the bus recovery occurs
     - i2c: isch: Add missed 'else'
     - usb: yurex: Fix inconsistent locking bug in yurex_read()
     - perf/arm-cmn: Fail DTC counter allocation correctly
     - iio: magnetometer: ak8975: Fix 'Unexpected device' error
     - [powerpc*] Allow CONFIG_PPC64_BIG_ENDIAN_ELF_ABI_V2 with ld.lld 15+
     - PCI/PM: Mark devices disconnected if upstream PCIe link is down on resume
     - [x86*] tdx: Fix "in-kernel MMIO" check (CVE-2024-47727)
     - static_call: Handle module init failure correctly in
       static_call_del_module() (CVE-2024-50002)
     - static_call: Replace pointless WARN_ON() in static_call_module_notify()
     - jump_label: Simplify and clarify static_key_fast_inc_cpus_locked()
     - jump_label: Fix static_key_slow_dec() yet again
     - scsi: pm8001: Do not overwrite PCI queue mapping
     - mailbox: rockchip: fix a typo in module autoloading
     - mailbox: bcm2835: Fix timeout during suspend mode (CVE-2024-49963)
     - ceph: remove the incorrect Fw reference check when dirtying pages
     - ieee802154: Fix build error
     - net: sparx5: Fix invalid timestamps
     - net/mlx5: Fix error path in multi-packet WQE transmit (CVE-2024-50001)
     - net/mlx5: Added cond_resched() to crdump collection
     - net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc() (CVE-2024-50000)
     - netfilter: uapi: NFTA_FLOWTABLE_HOOK is NLA_NESTED
     - net: ieee802154: mcr20a: Use IRQF_NO_AUTOEN flag in request_irq()
     - net: wwan: qcom_bam_dmux: Fix missing pm_runtime_disable()
     - netfilter: nf_tables: prevent nf_skb_duplicated corruption
       (CVE-2024-49952)
     - Bluetooth: btmrvl: Use IRQF_NO_AUTOEN flag in request_irq()
     - net: ethernet: lantiq_etop: fix memory disclosure (CVE-2024-49997)
     - net: avoid potential underflow in qdisc_pkt_len_init() with UFO
     - net: add more sanity checks to qdisc_pkt_len_init() (CVE-2024-49948)
     - net: stmmac: dwmac4: extend timeout for VLAN Tag register busy bit check
     - ipv4: ip_gre: Fix drops of small packets in ipgre_xmit
     - ppp: do not assume bh is held in ppp_channel_bridge_input()
       (CVE-2024-49946)
     - fsdax,xfs: port unshare to fsdax
     - iomap: constrain the file range passed to iomap_file_unshare
     - sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start
       (CVE-2024-49944)
     - i2c: xiic: improve error message when transfer fails to start
     - i2c: xiic: Try re-initialization on bus busy timeout
     - loop: don't set QUEUE_FLAG_NOMERGES
     - Bluetooth: hci_sock: Fix not validating setsockopt user input
       (CVE-2024-35963)
     - media: usbtv: Remove useless locks in usbtv_video_free() (CVE-2024-27072)
     - ASoC: atmel: mchp-pdmc: Skip ALSA restoration if substream runtime is
       uninitialized
     - ALSA: mixer_oss: Remove some incorrect kfree_const() usages
     - ALSA: hda/realtek: Fix the push button function for the ALC257
     - ALSA: hda/generic: Unconditionally prefer preferred_dacs pairs
     - ASoC: imx-card: Set card.owner to avoid a warning calltrace if SND=m
     - ALSA: hda/conexant: Fix conflicting quirk for System76 Pangolin
     - f2fs: Require FMODE_WRITE for atomic write ioctls (CVE-2024-47740)
     - wifi: ath9k: fix possible integer overflow in ath9k_get_et_stats()
     - wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit
     - ice: Adjust over allocation of memory in ice_sched_add_root_node() and
       ice_sched_add_node()
     - wifi: iwlwifi: mvm: Fix a race in scan abort flow
     - wifi: cfg80211: Set correct chandef when starting CAC (CVE-2024-49937)
     - net/xen-netback: prevent UAF in xenvif_flush_hash() (CVE-2024-49936)
     - net: hisilicon: hip04: fix OF node leak in probe()
     - net: hisilicon: hns_dsaf_mac: fix OF node leak in hns_mac_get_info()
     - net: hisilicon: hns_mdio: fix OF node leak in probe()
     - ACPI: PAD: fix crash in exit_round_robin() (CVE-2024-49935)
     - ACPICA: Fix memory leak if acpi_ps_get_next_namepath() fails
     - ACPICA: Fix memory leak if acpi_ps_get_next_field() fails
     - wifi: mt76: mt7915: disable tx worker during tx BA session enable/disable
     - net: sched: consistently use rcu_replace_pointer() in taprio_change()
     - Bluetooth: btusb: Add Realtek RTL8852C support ID 0x0489:0xe122
     - ACPI: video: Add force_vendor quirk for Panasonic Toughbook CF-18
     - blk_iocost: fix more out of bound shifts (CVE-2024-49933)
     - nvme-pci: qdepth 1 quirk
     - wifi: ath11k: fix array out-of-bound access in SoC stats (CVE-2024-49930)
     - wifi: rtw88: select WANT_DEV_COREDUMP
     - ACPI: EC: Do not release locks during operation region accesses
     - ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in
       acpi_db_convert_to_package()
     - tipc: guard against string buffer overrun (CVE-2024-49995)
     - net: mvpp2: Increase size of queue_name buffer
     - bnxt_en: Extend maximum length of version string by 1 byte
     - ipv4: Check !in_dev earlier for ioctl(SIOCSIFADDR).
     - wifi: rtw89: correct base HT rate mask for firmware
     - ipv4: Mask upper DSCP bits and ECN bits in NETLINK_FIB_LOOKUP family
     - net: atlantic: Avoid warning about potential string truncation
     - crypto: simd - Do not call crypto_alloc_tfm during registration
     - tcp: avoid reusing FIN_WAIT2 when trying to find port in connect() process
     - wifi: mac80211: fix RCU list iterations
     - ACPICA: iasl: handle empty connection_node
     - proc: add config & param to block forcing mem writes
     - wifi: mt76: mt7915: hold dev->mt76.mutex while disabling tx worker
     - wifi: mwifiex: Fix memcpy() field-spanning write warning in
       mwifiex_cmd_802_11_scan_ext()
     - nfp: Use IRQF_NO_AUTOEN flag in request_irq()
     - ALSA: usb-audio: Add input value sanity checks for standard types
     - [x86] ioapic: Handle allocation failures gracefully (CVE-2024-49927)
     - ALSA: usb-audio: Define macros for quirk table entries
     - ALSA: usb-audio: Replace complex quirk lines with macros
     - ALSA: usb-audio: Add logitech Audio profile quirk
     - ASoC: codecs: wsa883x: Handle reading version failure
     - [x86] kexec: Add EFI config table identity mapping for kexec kernel
     - ALSA: asihpi: Fix potential OOB array access (CVE-2024-50007)
     - ALSA: hdsp: Break infinite MIDI input flush loop
     - [x86] syscall: Avoid memcpy() for ia32 syscall_get_arguments()
     - fbdev: pxafb: Fix possible use after free in pxafb_task() (CVE-2024-49924)
     - rcuscale: Provide clear error when async specified without primitives
     - [arm64] iommu/arm-smmu-qcom: hide last LPASS SMMU context bank from linux
     - power: reset: brcmstb: Do not go into infinite loop if reset fails
     - [amd64] iommu/vt-d: Always reserve a domain ID for identity setup
     - [amd64] iommu/vt-d: Fix potential lockup if qi_submit_sync called with 0
       count (CVE-2024-49993)
     - drm/stm: Avoid use-after-free issues with crtc and plane (CVE-2024-49992)
     - drm/amdgpu: disallow multiple BO_HANDLES chunks in one submit
     - drm/amd/display: Add null check for top_pipe_to_program in
       commit_planes_for_stream (CVE-2024-49913)
     - ata: pata_serverworks: Do not use the term blacklist
     - ata: sata_sil: Rename sil_blacklist to sil_quirks
     - drm/amd/display: Handle null 'stream_status' in
       'planes_changed_for_existing_stream' (CVE-2024-49912)
     - drm/amd/display: Check null pointers before using dc->clk_mgr
       (CVE-2024-49907)
     - drm/amd/display: Add null check for 'afb' in
       amdgpu_dm_plane_handle_cursor_update (v2)
     - jfs: UBSAN: shift-out-of-bounds in dbFindBits
     - jfs: Fix uaf in dbFreeBits (CVE-2024-49903)
     - jfs: check if leafidx greater than num leaves per dmap tree
       (CVE-2024-49902)
     - scsi: smartpqi: correct stream detection
     - jfs: Fix uninit-value access of new_ea in ea_buffer (CVE-2024-49900)
     - drm/amdgpu: add raven1 gfxoff quirk
     - drm/amdgpu: enable gfxoff quirk on HP 705G4
     - HID: multitouch: Add support for Thinkpad X12 Gen 2 Kbd Portfolio
     - [x86] platform/x86: touchscreen_dmi: add nanote-next quirk
     - drm/stm: ltdc: reset plane transparency after plane disable
     - drm/amd/display: Check stream before comparing them (CVE-2024-49896)
     - drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format
       translation (CVE-2024-49895)
     - drm/amd/display: Fix index out of bounds in degamma hardware format
       translation (CVE-2024-49894)
     - drm/amd/display: Fix index out of bounds in DCN30 color transformation
       (CVE-2024-49969)
     - drm/amd/display: Initialize get_bytes_per_element's default to 1
       (CVE-2024-49892)
     - drm/printer: Allow NULL data in devcoredump printer
     - [x86] perf,x86: avoid missing caller address in stack traces captured in
       uprobe
     - scsi: aacraid: Rearrange order of struct aac_srb_unit
     - scsi: lpfc: Update PRLO handling in direct attached topology
     - drm/amdgpu: fix unchecked return value warning for amdgpu_gfx
     - scsi: NCR5380: Initialize buffer for MSG IN and STATUS transfers
     - drm/radeon/r100: Handle unknown family in r100_cp_init_microcode()
     - drm/amd/pm: ensure the fw_info is not null before using it
       (CVE-2024-49890)
     - of/irq: Refer to actual buffer size in of_irq_parse_one()
     - [powerpc*] pseries: Use correct data types from pseries_hp_errorlog struct
     - ext4: ext4_search_dir should return a proper error
     - ext4: avoid use-after-free in ext4_ext_show_leaf() (CVE-2024-49889)
     - ext4: fix i_data_sem unlock order in ext4_ind_migrate() (CVE-2024-50006)
     - iomap: handle a post-direct I/O invalidate race in
       iomap_write_delalloc_release
     - blk-integrity: use sysfs_emit
     - blk-integrity: convert to struct device_attribute
     - blk-integrity: register sysfs attributes on struct device
     - spi: spi-imx: Fix pm_runtime_set_suspended() with runtime pm enabled
     - spi: s3c64xx: fix timeout counters in flush_fifo
     - [powerpc*] vdso: Fix VDSO data access when running in a non-root time
       namespace
     - Revert "ALSA: hda: Conditionally use snooping for AMD HDMI"
       (Closes: #1081833)
     - [x86] platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug
       (CVE-2024-49886)
     - i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume
       (CVE-2024-49985)
     - i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq()
     - i2c: xiic: Wait for TX empty to avoid missed TX NAKs
     - media: i2c: ar0521: Use cansleep version of gpiod_set_value()
       (CVE-2024-49961)
     - firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp()
     - spi: bcm63xx: Fix module autoloading
     - power: supply: hwmon: Fix missing temp1_max_alarm attribute
     - perf/core: Fix small negative period being ignored
     - drm: Consistently use struct drm_mode_rect for FB_DAMAGE_CLIPS
     - ALSA: core: add isascii() check to card ID generator
     - ALSA: usb-audio: Add delay quirk for VIVO USB-C HEADSET
     - ALSA: usb-audio: Add native DSD support for Luxman D-08u
     - ALSA: line6: add hw monitor volume control to POD HD500X
     - ALSA: hda/realtek: Add quirk for Huawei MateBook 13 KLV-WX9
     - ALSA: hda/realtek: Add a quirk for HP Pavilion 15z-ec200
     - ext4: no need to continue when the number of entries is 1 (CVE-2024-49967)
     - ext4: correct encrypted dentry name hash when not casefolded
     - ext4: fix slab-use-after-free in ext4_split_extent_at() (CVE-2024-49884)
     - ext4: propagate errors from ext4_find_extent() in ext4_insert_range()
     - ext4: fix incorrect tid assumption in ext4_fc_mark_ineligible()
     - ext4: dax: fix overflowing extents beyond inode size when partially
       writing (CVE-2024-50015)
     - ext4: fix incorrect tid assumption in __jbd2_log_wait_for_space()
     - ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free
     - ext4: aovid use-after-free in ext4_ext_insert_extent() (CVE-2024-49883)
     - ext4: fix double brelse() the buffer of the extents path
     - ext4: update orig_path in ext4_find_extent() (CVE-2024-49881)
     - ext4: fix incorrect tid assumption in ext4_wait_for_tail_page_commit()
     - ext4: fix incorrect tid assumption in
       jbd2_journal_shrink_checkpoint_list()
     - ext4: fix fast commit inode enqueueing during a full journal commit
     - ext4: use handle to mark fc as ineligible in __track_dentry_update()
     - ext4: mark fc as ineligible using an handle in ext4_xattr_set()
     - drm/rockchip: vop: clear DMA stop bit on RK3066
     - of/irq: Support #msi-cells=<0> in of_msi_get_domain
     - drm: omapdrm: Add missing check for alloc_ordered_workqueue
       (CVE-2024-49879)
     - resource: fix region_intersects() vs add_memory_driver_managed()
     - jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns
       error
     - jbd2: correctly compare tids with tid_geq function in jbd2_fc_begin_commit
     - mm: krealloc: consider spare memory for __GFP_ZERO
     - ocfs2: fix the la space leak when unmounting an ocfs2 volume
     - ocfs2: fix uninit-value in ocfs2_get_block()
     - ocfs2: reserve space for inline xattr before attaching reflink tree
       (CVE-2024-49958)
     - ocfs2: cancel dqi_sync_work before freeing oinfo (CVE-2024-49966)
     - ocfs2: remove unreasonable unlock in ocfs2_read_blocks (CVE-2024-49965)
     - ocfs2: fix null-ptr-deref when journal load failed. (CVE-2024-49957)
     - ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate
       (CVE-2024-49877)
     - exfat: fix memory leak in exfat_load_bitmap() (CVE-2024-50013)
     - perf hist: Update hist symbol when updating maps
     - nfsd: fix delegation_blocked() to block correctly for at least 30 seconds
     - nfsd: map the EBADMSG to nfserr_io to avoid warning (CVE-2024-49875)
     - NFSD: Fix NFSv4's PUTPUBFH operation
     - aoe: fix the potential use-after-free problem in more places
       (CVE-2024-49982)
     - clk: rockchip: fix error for unknown clocks
     - remoteproc: k3-r5: Fix error handling when power-up failed
     - clk: qcom: dispcc-sm8250: use CLK_SET_RATE_PARENT for branch clocks
     - media: sun4i_csi: Implement link validate for sun4i_csi subdev
     - clk: qcom: gcc-sm8450: Do not turn off PCIe GDSCs during gdsc_disable()
     - media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags
     - clk: qcom: clk-rpmh: Fix overflow in BCM vote
     - clk: qcom: gcc-sm8150: De-register gcc_cpuss_ahb_clk_src
     - media: venus: fix use after free bug in venus_remove due to race condition
       (CVE-2024-49981)
     - clk: qcom: gcc-sm8250: Do not turn off PCIe GDSCs during gdsc_disable()
     - media: qcom: camss: Fix ordering of pm_runtime_enable
     - clk: qcom: gcc-sc8180x: Fix the sdcc2 and sdcc4 clocks freq table
     - clk: qcom: clk-alpha-pll: Fix CAL_L_VAL override for LUCID EVO PLL
     - smb: client: use actual path when queryfs
     - iio: magnetometer: ak8975: Fix reading for ak099xx sensors
     - gso: fix udp gso fraglist segmentation after pull from frag_list
       (CVE-2024-49978)
     - tomoyo: fallback to realpath if symlink's pathname does not exist
       (Closes: #1082001)
     - net: stmmac: Fix zero-division error when disabling tc cbs
       (CVE-2024-49977)
     - rtc: at91sam9: fix OF node leak in probe() error path
     - Input: adp5589-keys - fix NULL pointer dereference (CVE-2024-49871)
     - Input: adp5589-keys - fix adp5589_gpio_get_value()
     - cachefiles: fix dentry leak in cachefiles_open_file() (CVE-2024-49870)
     - ACPI: resource: Add Asus Vivobook X1704VAP to
       irq1_level_low_skip_override[] (Closes: #1078696)
     - ACPI: resource: Add Asus ExpertBook B2502CVA to
       irq1_level_low_skip_override[]
     - btrfs: fix a NULL pointer dereference when failed to start a new
       trasacntion (CVE-2024-49868)
     - btrfs: send: fix invalid clone operation for file that got its size
       decreased
     - btrfs: wait for fixup workers before stopping cleaner kthread during
       umount (CVE-2024-49867)
     - gpio: davinci: fix lazy disable
     - Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE
       (CVE-2024-8805)
     - ceph: fix cap ref leak via netfs init_request
     - tracing/hwlat: Fix a race during cpuhp processing
     - tracing/timerlat: Fix a race during cpuhp processing (CVE-2024-49866)
     - close_range(): fix the logics in descriptor table trimming
     - [x86] drm/i915/gem: fix bitwise and logical AND mixup
     - drm/sched: Add locking to drm_sched_entity_modify_sched
     - drm/amd/display: Fix system hang while resume with TBT monitor
       (CVE-2024-50003)
     - cpufreq: intel_pstate: Make hwp_notify_lock a raw spinlock
       (Closes: #1076483)
     - kconfig: qconf: fix buffer overflow in debug links
     - i2c: create debugfs entry per adapter
     - i2c: core: Lock address during client device instantiation
     - i2c: xiic: Use devm_clk_get_enabled()
     - i2c: xiic: Fix pm_runtime_set_suspended() with runtime pm enabled
     - dt-bindings: clock: exynos7885: Fix duplicated binding
     - spi: bcm63xx: Fix missing pm_runtime_disable()
     - [arm64] Add Cortex-715 CPU part definition
     - [arm64] cputype: Add Neoverse-N3 definitions
     - [arm64] errata: Expand speculative SSBS workaround once more
     - io_uring/net: harden multishot termination case for recv
     - uprobes: fix kernel info leak via "[uprobes]" vma
     - mm: z3fold: deprecate CONFIG_Z3FOLD
     - drm/amd/display: Allow backlight to go below
       `AMDGPU_DM_DEFAULT_MIN_BACKLIGHT`
     - build-id: require program headers to be right after ELF header
     - lib/buildid: harden build ID parsing logic
     - docs/zh_CN: Update the translation of delay-accounting to 6.1-rc8
     - delayacct: improve the average delay precision of getdelay tool to
       microsecond
     - sched: psi: fix bogus pressure spikes from aggregation race
     - media: i2c: imx335: Enable regulator supplies
     - media: imx335: Fix reset-gpio handling
     - remoteproc: k3-r5: Acquire mailbox handle during probe routine
     - remoteproc: k3-r5: Delay notification of wakeup event
     - dt-bindings: clock: qcom: Add missing UFS QREF clocks
     - dt-bindings: clock: qcom: Add GPLL9 support on gcc-sc8180x
     - clk: samsung: exynos7885: do not define number of clocks in bindings
     - clk: samsung: exynos7885: Update CLKS_NR_FSYS after bindings fix
     - r8169: Fix spelling mistake: "tx_underun" -> "tx_underrun"
     - r8169: add tally counter fields added with RTL8125 (CVE-2024-49973)
     - clk: qcom: gcc-sc8180x: Add GPLL9 support
     - ACPI: battery: Simplify battery hook locking
     - ACPI: battery: Fix possible crash when unregistering a battery hook
       (CVE-2024-49955)
     - Revert "arm64: dts: qcom: sm8250: switch UFS QMP PHY to new style of
       bindings"
     - erofs: get rid of erofs_inode_datablocks()
     - erofs: get rid of z_erofs_do_map_blocks() forward declaration
     - erofs: avoid hardcoded blocksize for subpage block support
     - erofs: set block size to the on-disk block size
     - erofs: fix incorrect symlink detection in fast symlink
     - vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() (CVE-2024-49863)
     - perf report: Fix segfault when 'sym' sort key is not used
     - fsdax: dax_unshare_iter() should return a valid length
     - fsdax: unshare: zero destination if srcmap is HOLE or UNWRITTEN
     - unicode: Don't special case ignorable code points
     - net: ethernet: cortina: Drop TSO support
     - tracing: Remove precision vsnprintf() check from print event
     - ALSA: hda/realtek: cs35l41: Fix order and duplicates in quirks table
     - ALSA: hda/realtek: cs35l41: Fix device ID / model name
     - drm/crtc: fix uninitialized variable use even harder
     - tracing: Have saved_cmdlines arrays all in one allocation
     - bootconfig: Fix the kerneldoc of _xbc_exit()
     - perf lock: Dynamically allocate lockhash_table
     - perf sched: Avoid large stack allocations
     - perf sched: Move start_work_mutex and work_done_wait_mutex initialization
       to perf_sched__replay()
     - perf sched: Fix memory leak in perf_sched__map()
     - perf sched: Move curr_thread initialization to perf_sched__map()
     - perf sched: Move curr_pid and cpu_last_switched initialization to
       perf_sched__{lat|map|replay}()
     - libsubcmd: Don't free the usage string
     - Bluetooth: Fix usage of __hci_cmd_sync_status
     - virtio_console: fix misc probe bugs
     - Input: synaptics-rmi4 - fix UAF of IRQ domain on driver removal
     - bpf: Check percpu map value size first
     - [s390x] facility: Disable compile time optimization for decompressor code
     - [s390x] mm: Add cond_resched() to cmm_alloc/free_pages()
     - bpf, x64: Fix a jit convergence issue
     - ext4: don't set SB_RDONLY after filesystem errors
     - ext4: nested locking for xattr inode
     - [s390x] cpum_sf: Remove WARN_ON_ONCE statements
     - RDMA/mad: Improve handling of timed out WRs of mad agent
     - PCI: Add function 0 DMA alias quirk for Glenfly Arise chip
     - RDMA/rtrs-srv: Avoid null pointer deref during path establishment
       (CVE-2024-50062)
     - clk: bcm: bcm53573: fix OF node leak in init
     - PCI: Add ACS quirk for Qualcomm SA8775P
     - i2c: i801: Use a different adapter-name for IDF adapters
     - PCI: Mark Creative Labs EMU20k2 INTx masking as broken
     - io_uring: check if we need to reschedule during overflow flush
       (CVE-2024-50060)
     - ntb: ntb_hw_switchtec: Fix use after free vulnerability in
       switchtec_ntb_remove due to race condition (CVE-2024-50059)
     - RDMA/mlx5: Enforce umem boundaries for explicit ODP page faults
     - media: videobuf2-core: clear memory related fields in
       __vb2_plane_dmabuf_put()
     - remoteproc: imx_rproc: Use imx specific hook for find_loaded_rsc_table
     - clk: imx: Remove CLK_SET_PARENT_GATE for DRAM mux for i.MX7D
     - usb: chipidea: udc: enable suspend interrupt after usb reset
     - usb: dwc2: Adjust the timing of USB Driver Interrupt Registration in the
       Crashkernel Scenario
     - comedi: ni_routing: tools: Check when the file could not be opened
     - netfilter: nf_reject: Fix build warning when CONFIG_BRIDGE_NETFILTER=n
     - virtio_pmem: Check device status before requesting flush
     - tools/iio: Add memory allocation failure check for trigger_name
     - staging: vme_user: added bound check to geoid
     - driver core: bus: Return -EIO instead of 0 when show/store invalid bus
       attribute
     - scsi: lpfc: Add ELS_RSP cmd to the list of WQEs to flush in
       lpfc_els_flush_cmd()
     - scsi: lpfc: Ensure DA_ID handling completion before deleting an NPIV
       instance
     - drm/amd/display: Check null pointer before dereferencing se
       (CVE-2024-50049)
     - fbcon: Fix a NULL pointer dereference issue in fbcon_putcs
       (CVE-2024-50048)
     - fbdev: sisfb: Fix strbuf array overflow
     - drm/rockchip: vop: limit maximum resolution to hardware capabilities
     - drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066
     - NFSD: Mark filecache "down" if init fails
     - ice: fix VLAN replay after reset
     - SUNRPC: Fix integer overflow in decode_rc_list()
     - NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies()
       (CVE-2024-50046)
     - net: phy: dp83869: fix memory corruption when enabling fiber
     - tcp: fix to allow timestamp undo if no retransmits were sent
     - tcp: fix tcp_enter_recovery() to zero retrans_stamp when it's safe
     - netfilter: br_netfilter: fix panic with metadata_dst skb (CVE-2024-50045)
     - Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change
       (CVE-2024-50044)
     - net: phy: bcm84881: Fix some error handling paths
     - thermal: int340x: processor_thermal: Set feature mask before
       proc_thermal_add
     - thermal: intel: int340x: processor: Fix warning during module unload
     - Revert "net: stmmac: set PP_FLAG_DMA_SYNC_DEV only if XDP is enabled"
     - net: ethernet: adi: adin1110: Fix some error handling path in
       adin1110_read_fifo()
     - net: dsa: b53: fix jumbo frame mtu check
     - net: dsa: b53: fix max MTU for 1g switches
     - net: dsa: b53: fix max MTU for BCM5325/BCM5365
     - net: dsa: b53: allow lower MTUs on BCM5325/5365
     - net: dsa: b53: fix jumbo frames on 10/100 ports
     - gpio: aspeed: Add the flush write to ensure the write complete.
     - gpio: aspeed: Use devm_clk api to manage clock source
     - ice: Fix netif_is_ice() in Safe Mode
     - i40e: Fix macvlan leak by synchronizing access to mac_filter_hash
       (CVE-2024-50041)
     - igb: Do not bring the device up after non-fatal error (CVE-2024-50040)
     - net/sched: accept TCA_STAB only for root qdisc (CVE-2024-50039)
     - net: ibm: emac: mal: fix wrong goto
     - btrfs: zoned: fix missing RCU locking in error message when loading zone
       info
     - sctp: ensure sk_state is set to CLOSED if hashing fails in
       sctp_listen_start
     - netfilter: xtables: avoid NFPROTO_UNSPEC where needed (CVE-2024-50038)
     - netfilter: fib: check correct rtable in vrf setups
     - net: ibm/emac: allocate dummy net_device dynamically
     - net: ibm: emac: mal: add dcr_unmap to _remove
     - rtnetlink: Add bulk registration helpers for rtnetlink message handlers.
     - vxlan: Handle error of rtnl_register_module().
     - mctp: Handle error of rtnl_register_module().
     - ppp: fix ppp_async_encode() illegal access
     - slip: make slhc_remember() more robust against malicious packets
     - rust: macros: provide correct provenance when constructing THIS_MODULE
     - HID: multitouch: Add support for lenovo Y9000P Touchpad
     - net/mlx5: Always drain health in shutdown callback (CVE-2024-43866)
     - wifi: mac80211: Avoid address calculations via out of bounds array
       indexing (CVE-2024-41071)
     - hwmon: (tmp513) Add missing dependency on REGMAP_I2C
     - hwmon: (adm9240) Add missing dependency on REGMAP_I2C
     - hwmon: (adt7470) Add missing dependency on REGMAP_I2C
     - Revert "net: ibm/emac: allocate dummy net_device dynamically"
     - HID: amd_sfh: Switch to device-managed dmam_alloc_coherent()
     - HID: plantronics: Workaround for an unexcepted opposite volume key
     - Revert "usb: yurex: Replace snprintf() with the safer scnprintf() variant"
     - usb: dwc3: core: Stop processing of pending events if controller is halted
     - usb: xhci: Fix problem with xhci resume from suspend
     - usb: storage: ignore bogus device raised by JieLi BR21 USB sound chip
     - usb: gadget: core: force synchronous registration
     - hid: intel-ish-hid: Fix uninitialized variable 'rv' in
       ish_fw_xfer_direct_dma
     - drm/v3d: Stop the active perfmon before being destroyed (CVE-2024-50031)
     - drm/vc4: Stop the active perfmon before being destroyed
     - scsi: wd33c93: Don't use stale scsi_pointer value (CVE-2024-50026)
     - mptcp: fallback when MPTCP opts are dropped after 1st data
     - ata: libata: avoid superfluous disk spin down + spin up during hibernation
     - net: explicitly clear the sk pointer, when pf->create fails
     - net: Fix an unsafe loop on the list (CVE-2024-50024)
     - net: dsa: lan9303: ensure chip reset and wait for READY status
     - mptcp: handle consistently DSS corruption
     - mptcp: pm: do not remove closing subflows
     - device-dax: correct pgoff align in dax_set_mapping() (CVE-2024-50022)
     - nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error
     - kthread: unpark only parked kthread (CVE-2024-50019)
     - secretmem: disable memfd_secret() if arch cannot set direct map
     - net: ethernet: cortina: Restore TSO support
     - perf lock: Don't pass an ERR_PTR() directly to perf_session__delete()
     - block, bfq: fix uaf for accessing waker_bfqq after splitting
       (CVE-2024-49854)
     - Revert "iommu/vt-d: Retrieve IOMMU perfmon capability information"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.114
     - btrfs: fix uninitialized pointer free in add_inode_ref() (CVE-2024-50088)
     - btrfs: fix uninitialized pointer free on read_alloc_one_name() error
     - ksmbd: fix user-after-free from session log off (CVE-2024-50086)
     - ALSA: hda/conexant - Fix audio routing for HP EliteOne 1000 G2
     - mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow (CVE-2024-50085)
     - udf: New directory iteration code
     - udf: Convert udf_expand_dir_adinicb() to new directory iteration
     - udf: Move udf_expand_dir_adinicb() to its callsite
     - udf: Implement searching for directory entry using new iteration code
     - udf: Provide function to mark entry as deleted using new directory
       iteration code
     - udf: Convert udf_rename() to new directory iteration code
     - udf: Convert udf_readdir() to new directory iteration
     - udf: Convert udf_lookup() to use new directory iteration code
     - udf: Convert udf_get_parent() to new directory iteration code
     - udf: Convert empty_dir() to new directory iteration code
     - udf: Convert udf_rmdir() to new directory iteration code
     - udf: Convert udf_unlink() to new directory iteration code
     - udf: Implement adding of dir entries using new iteration code
     - udf: Convert udf_add_nondir() to new directory iteration
     - udf: Convert udf_mkdir() to new directory iteration code
     - udf: Convert udf_link() to new directory iteration code
     - udf: Remove old directory iteration code
     - udf: Handle error when expanding directory
     - udf: Don't return bh from udf_expand_dir_adinicb()
     - net: enetc: remove xdp_drops statistic from enetc_xdp_drop()
     - net: enetc: add missing static descriptor and inline keyword
     - posix-clock: Fix missing timespec64 check in pc_clock_settime()
     - [arm64] probes: Remove broken LDR (literal) uprobe support
     - [arm64] probes: Fix simulate_ldr*_literal()
     - net: macb: Avoid 20s boot delay by skipping MDIO bus registration for
       fixed-link PHY
     - irqchip/gic-v3-its: Fix VSYNC referencing an unmapped VPE on GIC v4.1
     - fat: fix uninitialized variable
     - mm/swapfile: skip HugeTLB pages for unuse_vma
     - devlink: drop the filter argument from devlinks_xa_find_get
     - devlink: bump the instance index directly when iterating
     - maple_tree: correct tree corruption on spanning store
     - drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE)
       (CVE-2024-39497)
     - [amd64] iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI
       devices
     - [s390x] sclp: Deactivate sclp after all its users
     - [s390x] sclp_vt220: Convert newlines to CRLF instead of LFCR
     - [s390x] KVM: s390: gaccess: Check if guest address is in memslot
     - [s390x] KVM: s390: Change virtual to physical address access in diag 0x258
       handler
     - [x86] cpufeatures: Define X86_FEATURE_AMD_IBPB_RET
     - [x86] cpufeatures: Add a IBPB_NO_RET BUG flag
     - [x86] entry: Have entry_ibpb() invalidate return predictions
     - [x86] bugs: Skip RSB fill at VMEXIT
     - [x86] bugs: Do not use UNTRAIN_RET with IBPB on entry
     - blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race
       (CVE-2024-50082)
     - io_uring/sqpoll: close race on waiting for sqring entries
     - scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down
     - drm/radeon: Fix encoder->possible_clones
     - drm/vmwgfx: Handle surface check failure correctly
     - drm/amdgpu/swsmu: Only force workload setup on init
     - drm/amdgpu: prevent BO_HANDLES error from being overwritten
     - iio: dac: ad5770r: add missing select REGMAP_SPI in Kconfig
     - iio: dac: ltc1660: add missing select REGMAP_SPI in Kconfig
     - iio: dac: stm32-dac-core: add missing select REGMAP_MMIO in Kconfig
     - iio: adc: ti-ads8688: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: hid-sensors: Fix an error handling path in
       _hid_sensor_set_report_latency()
     - iio: light: veml6030: fix ALS sensor resolution
     - iio: light: veml6030: fix IIO device retrieval from embedded device
     - iio: light: opt3001: add missing full-scale range value
     - iio: amplifiers: ada4250: add missing select REGMAP_SPI in Kconfig
     - iio: dac: ad5766: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: proximity: mb1232: add missing select IIO_(TRIGGERED_)BUFFER in
       Kconfig
     - iio: dac: ad3552r: add missing select IIO_(TRIGGERED_)BUFFER in Kconfig
     - iio: adc: ti-ads124s08: add missing select IIO_(TRIGGERED_)BUFFER in
       Kconfig
     - Bluetooth: Call iso_exit() on module unload
     - Bluetooth: Remove debugfs directory on module init failure
     - Bluetooth: ISO: Fix multiple init when debugfs is disabled
       (CVE-2024-50077)
     - Bluetooth: btusb: Fix regression with fake CSR controllers 0a12:0001
     - xhci: Fix incorrect stream context type macro
     - xhci: Mitigate failed set dequeue pointer commands
     - USB: serial: option: add support for Quectel EG916Q-GL
     - USB: serial: option: add Telit FN920C04 MBIM compositions
     - usb: dwc3: Wait for EndXfer completion before restoring GUSB2PHYCFG
     - parport: Proper fix for array out-of-bounds access (CVE-2024-50074)
     - [x86] resctrl: Annotate get_mem_config() functions as __init
     - [x86] apic: Always explicitly disarm TSC-deadline timer
     - [x86] entry_32: Do not clobber user EFLAGS.ZF
     - [x86] entry_32: Clear CPU buffers after register restore in NMI return
     - tty: n_gsm: Fix use-after-free in gsm_cleanup_mux (CVE-2024-50073)
     - pinctrl: ocelot: fix system hang on level based interrupts
     - pinctrl: apple: check devm_kasprintf() returned value
     - irqchip/gic-v4: Don't allow a VMOVP on a dying VPE
     - irqchip/sifive-plic: Unmask interrupt in plic_irq_enable()
     - tcp: fix mptcp DSS corruption due to large pmtu xmit (CVE-2024-50083)
     - mptcp: prevent MPC handshake on port-based signal endpoints
     - nilfs2: propagate directory read errors from nilfs_find_entry()
     - [powerpc*] 64: Add big-endian ELFv2 flavour to crypto VMX asm generation
     - ALSA: hda/conexant - Use cached pin control for Node 0x1d on HP EliteOne
       1000 G2
     - udf: Allocate name buffer in directory iterator on heap
     - udf: Avoid directory type conversion failure due to ENOMEM
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.115
     - bpf: Use raw_spinlock_t in ringbuf
     - iio: accel: bma400: Fix uninitialized variable field_value in tap event
       handling.
     - bpf: Make sure internal and UAPI bpf_redirect flags don't overlap
     - bpf: devmap: provide rxq after redirect
     - bpf: Fix memory leak in bpf_core_apply
     - RDMA/bnxt_re: Fix incorrect AVID type in WQE structure
     - RDMA/bnxt_re: Add a check for memory allocation
     - [x86] resctrl: Avoid overflow in MB settings in bw_validate()
     - [armhf] dts: bcm2837-rpi-cm3-io3: Fix HDMI hpd-gpio pin
     - [s390x] pci: Handle PCI error codes other than 0x3a
     - bpf: fix kfunc btf caching for modules
     - drm/vmwgfx: Handle possible ENOMEM in vmw_stdu_connector_atomic_check
     - ALSA: hda/cs8409: Fix possible NULL dereference
     - RDMA/cxgb4: Fix RDMA_CM_EVENT_UNREACHABLE error for iWARP
     - RDMA/irdma: Fix misspelling of "accept*"
     - RDMA/srpt: Make slab cache names unique
     - ipv4: give an IPv4 dev to blackhole_netdev
     - RDMA/bnxt_re: Return more meaningful error
     - RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages
     - [arm64] drm/msm/dpu: make sure phys resources are properly initialized
     - [arm64] drm/msm/dsi: fix 32-bit signed integer extension in pclk_rate
       calculation
     - [arm64] drm/msm: Avoid NULL dereference in msm_disp_state_print_regs()
     - [arm64] drm/msm: Allocate memory for disp snapshot with kvzalloc()
     - net: usb: usbnet: fix race in probe failure
     - drm/amd/amdgpu: Fix double unlock in amdgpu_mes_add_ring
     - macsec: don't increment counters for an unrelated SA
     - netdevsim: use cond_resched() in nsim_dev_trap_report_work()
     - net: ethernet: aeroflex: fix potential memory leak in
       greth_start_xmit_gbit()
     - net/smc: Fix searching in list of known pnetids in smc_pnet_add_pnetid
     - net: xilinx: axienet: fix potential memory leak in axienet_start_xmit()
     - net: systemport: fix potential memory leak in bcm_sysport_xmit()
     - [arm64] drm/msm/dpu: Wire up DSC mask for active CTL configuration
     - [arm64] drm/msm/dpu: don't always program merge_3d block
     - tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink().
     - genetlink: hold RCU in genlmsg_mcast()
     - ravb: Remove setting of RX software timestamp
     - net: ravb: Only advertise Rx/Tx timestamps if hardware supports it
     - scsi: target: core: Fix null-ptr-deref in target_alloc_device()
     - smb: client: fix OOBs when building SMB2_IOCTL request
     - usb: typec: altmode should keep reference to parent
     - [s390x] Initialize psw mask in perf_arch_fetch_caller_regs()
     - Bluetooth: bnep: fix wild-memory-access in proto_unregister
     - net/mlx5: Remove redundant cmdif revision check
     - net/mlx5: split mlx5_cmd_init() to probe and reload routines
     - net/mlx5: Fix command bitmask initialization
     - net/mlx5: Unregister notifier on eswitch init failure
     - bpf: Fix iter/task tid filtering
     - [arm64] uprobe fix the uprobe SWBP_INSN in big-endian
     - [arm64] probes: Fix uprobes for big-endian kernels
     - usb: gadget: f_uac2: Replace snprintf() with the safer scnprintf() variant
     - usb: gadget: f_uac2: fix non-newline-terminated function name
     - usb: gadget: f_uac2: fix return value for UAC2_ATTRIBUTE_STRING store
     - usb: gadget: Add function wakeup support
     - XHCI: Separate PORT and CAPs macros into dedicated file
     - [arm64,armhf] usb: dwc3: core: Fix system suspend on TI AM62 platforms
     - tty/serial: Make ->dcd_change()+uart_handle_dcd_change() status bool
       active
     - serial: Make uart_handle_cts_change() status param bool active
     - serial: imx: Update mctrl old_status on RTSD interrupt
     - block, bfq: fix procress reference leakage for bfqq in merge chain
     - exec: don't WARN for racy path_noexec check (CVE-2024-50010)
     - fs/ntfs3: Add more attributes checks in mi_enum_attr() (CVE-2023-45896)
     - [x86] drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape
       with real VLA
     - ASoC: codecs: lpass-rx-macro: add missing CDC_RX_BCL_VBAT_RF_PROC2 to
       default regs values
     - [arm64] ASoC: fsl_sai: Enable 'FIFO continue on error' FCONT bit
     - [arm64] Force position-independent veneers
     - udf: refactor udf_current_aext() to handle error
     - udf: fix uninit-value use in udf_get_fileshortad
     - [x86] platform/x86: dell-sysman: add support for alienware products
     - jfs: Fix sanity check in dbMount
     - tracing: Consider the NULL character when validating the event length
     - xfrm: extract dst lookup parameters into a struct
     - xfrm: respect ip protocols rules criteria when performing dst lookups
     - be2net: fix potential memory leak in be_xmit()
     - net: plip: fix break; causing plip to never transmit
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix error when setting port policy on
       mv88e6393x
     - netfilter: xtables: fix typo causing some targets not to load on IPv6
     - net: wwan: fix global oob in wwan_rtnl_policy
     - docs: net: reformat driver.rst from a list to sections
     - net: provide macros for commonly copied lockless queue stop/wake code
     - net/sched: adjust device watchdog timer to detect stopped queue at right
       time
     - net: fix races in netdev_tx_sent_queue()/dev_watchdog()
     - net: usb: usbnet: fix name regression
     - net/sched: act_api: deny mismatched skip_sw/skip_hw flags for actions
       created by classifiers
     - net: sched: fix use-after-free in taprio_change()
     - r8169: avoid unsolicited interrupts
     - posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime()
     - Bluetooth: SCO: Fix UAF on sco_sock_timeout
     - Bluetooth: ISO: Fix UAF on iso_sock_timeout
     - bpf,perf: Fix perf_event_detach_bpf_prog error handling
     - ASoC: dt-bindings: davinci-mcasp: Fix interrupts property
     - ASoC: dt-bindings: davinci-mcasp: Fix interrupt properties
     - ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size()
     - powercap: dtpm_devfreq: Fix error check against dev_pm_qos_add_request()
     - ALSA: hda/realtek: Update default depop procedure
     - cpufreq/cppc: Move and rename cppc_cpufreq_{perf_to_khz|khz_to_perf}()
     - cpufreq: CPPC: fix perf_to_khz/khz_to_perf conversion exception
     - btrfs: fix passing 0 to ERR_PTR in btrfs_search_dir_index_item()
     - btrfs: zoned: fix zone unusable accounting for freed reserved extent
     - drm/amd: Guard against bad data for ATIF ACPI method
     - ACPI: resource: Add LG 16T90SP to irq1_level_low_skip_override[]
     - ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context
     - ACPI: button: Add DMI quirk for Samsung Galaxy Book2 to fix initial lid
       detection issue
     - nilfs2: fix kernel bug due to missing clearing of buffer delay flag
     - openat2: explicitly return -E2BIG for (usize > PAGE_SIZE)
     - [x86] KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
     - [arm64] KVM: arm64: Don't eagerly teardown the vgic on init error
     - ALSA: hda/realtek: Add subwoofer quirk for Acer Predator G9-593
     - xfrm: fix one more kernel-infoleak in algo dumping
     - hv_netvsc: Fix VF namespace also in synthetic NIC NETDEV_REGISTER event
     - drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too
     - selinux: improve error checking in sel_write_load()
     - serial: protect uart_port_dtr_rts() in uart_shutdown() too
       (CVE-2024-50058)
     - net: phy: dp83822: Fix reset pin definitions
     - [arm64] ASoC: qcom: Fix NULL Dereference in
       asoc_qcom_lpass_cpu_platform_probe()
     - [x86] platform/x86: dell-wmi: Ignore suspend notifications
     - ACPI: PRM: Clean up guid type in struct prm_handler_info
     - [arm64] uprobes: change the uprobe_opcode_t typedef to fix the sparse
       warning
     - xfrm: validate new SA's prefixlen using SA family when sel.family is unset
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 27
   * d/config: Update with the help of kconfigeditor2
     - mm: Enable Z3FOLD_DEPRECATED instead of Z3FOLD
linux-signed-i386 (6.1.112+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.112-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.107
     - tty: atmel_serial: use the correct RTS flag.
     - fuse: Initialize beyond-EOF page contents before setting uptodate
     - ALSA: usb-audio: Add delay quirk for VIVO USB-C-XE710 HEADSET
     - ALSA: usb-audio: Support Yamaha P-125 quirk entry
     - xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration
     - [x86] thunderbolt: Mark XDomain as unplugged when router is removed
     - [s390x] dasd: fix error recovery leading to data corruption on ESE devices
     - [arm64] ACPI: NUMA: initialize all values of acpi_early_node_map to
       NUMA_NO_NODE
     - dm resume: don't return EINVAL when signalled
     - dm persistent data: fix memory allocation failure
     - vfs: Don't evict inode under the inode lru traversing context
     - [s390x] cio: rename bitmap_size() -> idset_bitmap_size()
     - btrfs: rename bitmap_set_bits() -> btrfs_bitmap_set_bits()
     - bitmap: introduce generic optimized bitmap_size()
     - fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE
     - i2c: qcom-geni: Add missing geni_icc_disable in geni_i2c_runtime_resume
     - rtla/osnoise: Prevent NULL dereference in error handling
     - fs/netfs/fscache_cookie: add missing "n_accesses" check
     - selinux: fix potential counting error in avc_add_xperms_decision()
     - mm/memory-failure: use raw_spinlock_t in struct memory_failure_cpu
     - btrfs: zoned: properly take lock to read/update block group's zoned
       variables
     - btrfs: tree-checker: add dev extent item checks
     - drm/amdgpu: Actually check flags for all context ops.
     - memcg_write_event_control(): fix a user-triggerable oops
     - drm/amdgpu/jpeg2: properly set atomics vmid field
     - [s390x] uv: Panic for set and remove shared access UVC errors
     - bpf: Fix updating attached freplace prog in prog_array map
     - nilfs2: prevent WARNING in nilfs_dat_commit_end()
     - ext4, jbd2: add an optimized bmap for the journal inode
     - 9P FS: Fix wild-memory-access write in v9fs_get_acl
     - nilfs2: initialize "struct nilfs_binfo_dat"->bi_pad field
     - mm: khugepaged: fix kernel BUG in hpage_collapse_scan_file()
     - bpf: Split off basic BPF verifier log into separate file
     - bpf: drop unnecessary user-triggerable WARN_ONCE in verifierl log
     - posix-timers: Ensure timer ID search-loop limit is valid
     - pid: Replace struct pid 1-element array with flex-array
     - gfs2: Rename remaining "transaction" glock references
     - gfs2: Rename the {freeze,thaw}_super callbacks
     - gfs2: Rename gfs2_freeze_lock{ => _shared }
     - gfs2: Rename SDF_{FS_FROZEN => FREEZE_INITIATOR}
     - gfs2: Rework freeze / thaw logic
     - gfs2: Stop using gfs2_make_fs_ro for withdraw
     - Bluetooth: Fix hci_link_tx_to RCU lock usage
     - wifi: mac80211: take wiphy lock for MAC addr change
     - wifi: mac80211: fix change_address deadlock during unregister
     - net: sched: Print msecs when transmit queue time out
     - net: don't dump stack on queue timeout
     - jfs: fix shift-out-of-bounds in dbJoin
     - squashfs: squashfs_read_data need to check if the length is 0
     - Squashfs: fix variable overflow triggered by sysbot
     - reiserfs: fix uninit-value in comp_keys
     - erofs: avoid debugging output for (de)compressed data
     - quota: Detect loops in quota tree
     - net:rds: Fix possible deadlock in rds_message_put
     - net: sctp: fix skb leak in sctp_inq_free()
     - pppoe: Fix memory leak in pppoe_sendmsg()
     - wifi: mac80211: fix and simplify unencrypted drop check for mesh
     - wifi: cfg80211: move A-MSDU check in ieee80211_data_to_8023_exthdr
     - wifi: cfg80211: factor out bridge tunnel / RFC1042 header check
     - wifi: mac80211: remove mesh forwarding congestion check
     - wifi: mac80211: fix receiving A-MSDU frames on mesh interfaces
     - wifi: mac80211: add a workaround for receiving non-standard mesh A-MSDU
     - wifi: cfg80211: check A-MSDU format more carefully (CVE-2024-35937)
     - docs/bpf: Document BPF_MAP_TYPE_LPM_TRIE map
     - bpf: Replace bpf_lpm_trie_key 0-length array with flexible array
     - bpf: Avoid kfree_rcu() under lock in bpf_lpm_trie.
     - Bluetooth: RFCOMM: Fix not validating setsockopt user input
       (CVE-2024-35966)
     - ext4: check the return value of ext4_xattr_inode_dec_ref()
     - ext4: fold quota accounting into ext4_xattr_inode_lookup_create()
     - ext4: do not create EA inode under buffer lock (CVE-2024-40972)
     - udf: Fix bogus checksum computation in udf_rename()
     - bpf, net: Use DEV_STAT_INC()
     - fou: remove warn in gue_gro_receive on unsupported protocol
       (CVE-2024-44940)
     - jfs: fix null ptr deref in dtInsertEntry (CVE-2024-44939)
     - jfs: Fix shift-out-of-bounds in dbDiscardAG (CVE-2024-44938)
     - ALSA: usb: Fix UBSAN warning in parse_audio_unit()
     - igc: Correct the launchtime offset
     - igc: Fix packet still tx after gate close by reducing i226 MAC retry
       buffer
     - net/mlx5e: Take state lock during tx timeout reporter
     - net/mlx5e: Correctly report errors for ethtool rx flows
     - atm: idt77252: prevent use after free in dequeue_rx()
     - mlxbf_gige: Remove two unused function declarations
     - mlxbf_gige: disable RX filters until RX path initialized
     - mptcp: correct MPTCP_SUBFLOW_ATTR_SSN_OFFSET reserved size
     - netfilter: allow ipv6 fragments to arrive on different devices
     - netfilter: flowtable: initialise extack before use
     - netfilter: nf_queue: drop packets with cloned unconfirmed conntracks
       (Closes: #1070685)
     - netfilter: nf_tables: Audit log dump reset after the fact
     - netfilter: nf_tables: Drop pointless memset in nf_tables_dump_obj
     - netfilter: nf_tables: Unconditionally allocate nft_obj_filter
     - netfilter: nf_tables: A better name for nft_obj_filter
     - netfilter: nf_tables: Carry s_idx in nft_obj_dump_ctx
     - netfilter: nf_tables: nft_obj_filter fits into cb->ctx
     - netfilter: nf_tables: Carry reset boolean in nft_obj_dump_ctx
     - netfilter: nf_tables: Introduce nf_tables_getobj_single
     - netfilter: nf_tables: Add locking for NFT_MSG_GETOBJ_RESET requests
     - [arm64] net: hns3: fix wrong use of semaphore up
     - [arm64] net: hns3: use the user's cfg after reset
     - [arm64] net: hns3: fix a deadlock problem when config TC during resetting
     - ALSA: hda/realtek: Fix noise from speakers on Lenovo IdeaPad 3 15IAU7
     - drm/amd/amdgpu/imu_v11_0: Increase buffer size to ensure all possible
       values can be stored
     - ssb: Fix division by zero issue in ssb_calc_clock_rate
     - wifi: cfg80211: check wiphy mutex is held for wdev mutex
     - wifi: mac80211: fix BA session teardown race
     - mm: Remove kmem_valid_obj()
     - rcu: Dump memory object info if callback function is invalid
     - rcu: Eliminate rcu_gp_slow_unregister() false positive
     - wifi: cw1200: Avoid processing an invalid TIM IE
     - cgroup: Avoid extra dereference in css_populate_dir()
     - i2c: riic: avoid potential division by zero
     - RDMA/rtrs: Fix the problem of variable not initialized fully
     - [s390x] smp,mcck: fix early IPI handling
     - drm/bridge: tc358768: Attempt to fix DSI horizontal timings
     - media: radio-isa: use dev_name to fill in bus_info
     - staging: iio: resolver: ad2s1210: fix use before initialization
     - usb: gadget: uvc: cleanup request when not in correct state
     - drm/amd/display: Validate hw_points_num before using it
     - staging: ks7010: disable bh on tx_dev_lock
     - media: s5p-mfc: Fix potential deadlock on condlock
     - md/raid5-cache: use READ_ONCE/WRITE_ONCE for 'conf->log'
     - binfmt_misc: cleanup on filesystem umount
     - [arm64,armhf] drm/tegra: Zero-initialize iosys_map
     - media: qcom: venus: fix incorrect return value
     - scsi: spi: Fix sshdr use
     - gfs2: setattr_chown: Add missing initialization
     - wifi: iwlwifi: abort scan when rfkill on but device enabled
     - wifi: iwlwifi: fw: Fix debugfs command sending
     - clk: visconti: Add bounds-checking coverage for struct
       visconti_pll_provider
     - [amd64] IB/hfi1: Fix potential deadlock on &irq_src_lock and
       &dd->uctxt_lock
     - kbuild: rust_is_available: normalize version matching
     - kbuild: rust_is_available: handle failures calling `$RUSTC`/`$BINDGEN`
     - [arm64] Fix KASAN random tag seed initialization
     - block: Fix lockdep warning in blk_mq_mark_tag_wait
     - [arm64] drm/msm: Reduce fallout of fence signaling vs reclaim hangs
     - memory: tegra: Skip SID programming if SID registers aren't set
     - [powerpc*] xics: Check return value of kasprintf in icp_native_map_one_cpu
     - [x86] ASoC: SOF: ipc4: check return value of snd_sof_ipc_msg_data
     - [x86] hwmon: (pc87360) Bounds check data->innr usage
     - drm/rockchip: vop2: clear afbc en and transform bit for cluster window at
       linear mode
     - Bluetooth: hci_conn: Check non NULL function before calling for HFP
       offload
     - gfs2: Refcounting fix in gfs2_thaw_super
     - nvmet-trace: avoid dereferencing pointer too early
     - ext4: do not trim the group with corrupted block bitmap
     - afs: fix __afs_break_callback() / afs_drop_open_mmap() race
     - fuse: fix UAF in rcu pathwalks
     - quota: Remove BUG_ON from dqget()
     - kernfs: fix false-positive WARN(nr_mmapped) in kernfs_drain_open_files
     - media: pci: cx23885: check cx23885_vdev_init() return
     - fs: binfmt_elf_efpic: don't use missing interpreter's properties
     - scsi: lpfc: Initialize status local variable in
       lpfc_sli4_repost_sgl_list()
     - media: drivers/media/dvb-core: copy user arrays safely
     - net/sun3_82586: Avoid reading past buffer in debug output
     - drm/lima: set gp bus_stop bit before hard reset
     - hrtimer: Select housekeeping CPU during migration
     - virtiofs: forbid newlines in tags
     - clocksource/drivers/arm_global_timer: Guard against division by zero
     - netlink: hold nlk->cb_mutex longer in __netlink_dump_start()
     - md: clean up invalid BUG_ON in md_ioctl
     - [x86] Increase brk randomness entropy for 64-bit systems
     - memory: stm32-fmc2-ebi: check regmap_read return value
     - [powerpc*] boot: Handle allocation failure in simple_realloc()
     - [powerpc*] boot: Only free if realloc() succeeds
     - btrfs: delayed-inode: drop pointless BUG_ON in
       __btrfs_remove_delayed_item()
     - btrfs: change BUG_ON to assertion when checking for delayed_node root
     - btrfs: tests: allocate dummy fs_info and root in test_find_delalloc()
     - btrfs: handle invalid root reference found in may_destroy_subvol()
     - btrfs: send: handle unexpected data in header buffer in begin_cmd()
     - btrfs: change BUG_ON to assertion in tree_move_down()
     - btrfs: delete pointless BUG_ON check on quota root in
       btrfs_qgroup_account_extent()
     - f2fs: fix to do sanity check in update_sit_entry
     - usb: gadget: fsl: Increase size of name buffer for endpoints
     - nvme: clear caller pointer on identify failure
     - Bluetooth: bnep: Fix out-of-bound access
     - firmware: cirrus: cs_dsp: Initialize debugfs_root to invalid
     - rtc: nct3018y: fix possible NULL dereference
     - [arm64] net: hns3: add checking for vf id of mailbox
     - nvmet-tcp: do not continue for invalid icreq
     - NFS: avoid infinite loop in pnfs_update_layout.
     - [s390x] iucv: fix receive buffer virtual vs physical address confusion
     - irqchip/renesas-rzg2l: Do not set TIEN and TINT source at the same time
     - clocksource: Make watchdog and suspend-timing multiplication overflow safe
     - [x86] platform/x86: lg-laptop: fix %s null argument warning
     - usb: dwc3: core: Skip setting event buffers for host only controllers
     - fbdev: offb: replace of_node_put with __free(device_node)
     - irqchip/gic-v3-its: Remove BUG_ON in its_vpe_irq_domain_alloc
     - ext4: set the type of max_zeroout to unsigned int to avoid overflow
     - nvmet-rdma: fix possible bad dereference when freeing rsps
     - drm/amdgpu: fix dereference null return value for the function
       amdgpu_vm_pt_parent
     - hrtimer: Prevent queuing of hrtimer without a function callback
     - gtp: pull network headers in gtp_dev_xmit()
     - [arm64,armhf] i2c: tegra: allow DVC support to be compiled out
     - [arm64,armhf] i2c: tegra: allow VI support to be compiled out
     - [arm64,armhf] i2c: tegra: Do not mark ACPI devices as irq safe
     - dm suspend: return -ERESTARTSYS instead of -EINTR
     - net: mana: Fix doorbell out of order violation and avoid unnecessary
       doorbell rings
     - btrfs: replace sb::s_blocksize by fs_info::sectorsize
     - btrfs: send: allow cloning non-aligned extent if it ends at i_size
     - drm/amd/display: Adjust cursor position
     - platform/surface: aggregator: Fix warning when controller is destroyed in
       probe
     - Bluetooth: hci_core: Fix LE quote calculation
     - Bluetooth: SMP: Fix assumption of Central always being Initiator
     - [arm64] net: dsa: tag_ocelot: do not rely on skb_mac_header() for VLAN
       xmit
     - [arm64] net: dsa: tag_ocelot: call only the relevant portion of
       __skb_vlan_pop() on TX
     - [arm64] net: mscc: ocelot: use ocelot_xmit_get_vlan_info() also for FDMA
       and register injection
     - [arm64] net: mscc: ocelot: fix QoS class for injected packets with
       "ocelot-8021q"
     - [arm64] net: mscc: ocelot: serialize access to the injection/extraction
       groups
     - tc-testing: don't access non-existent variable on exception
     - tcp/dccp: bypass empty buckets in inet_twsk_purge()
     - tcp/dccp: do not care about families in inet_twsk_purge()
     - tcp: prevent concurrent execution of tcp_sk_exit_batch
     - net: mctp: test: Use correct skb for route input check
     - kcm: Serialise kcm_sendmsg() for the same socket.
     - netfilter: nft_counter: Disable BH in nft_counter_offload_stats().
     - netfilter: nft_counter: Synchronize nft_counter_reset() against reader.
     - ip6_tunnel: Fix broken GRO
     - bonding: fix bond_ipsec_offload_ok return type
     - bonding: fix null pointer deref in bond_ipsec_offload_ok
     - bonding: fix xfrm real_dev null pointer dereference
     - bonding: fix xfrm state handling when clearing active slave
     - ice: Prepare legacy-rx for upcoming XDP multi-buffer support
     - ice: Add xdp_buff to ice_rx_ring struct
     - ice: Store page count inside ice_rx_buf
     - ice: Pull out next_to_clean bump out of ice_put_rx_buf()
     - ice: fix page reuse when PAGE_SIZE is over 8k
     - ice: fix ICE_LAST_OFFSET formula
     - dpaa2-switch: Fix error checking in dpaa2_switch_seed_bp()
     - net: dsa: mv88e6xxx: Fix out-of-bound access
     - netem: fix return value if duplicate enqueue fails
     - ipv6: prevent UAF in ip6_send_skb()
     - ipv6: fix possible UAF in ip6_finish_output2()
     - ipv6: prevent possible UAF in ip6_xmit()
     - netfilter: flowtable: validate vlan header
     - [arm64] drm/msm/dpu: don't play tricks with debug macros
     - [arm64] drm/msm/dp: fix the max supported bpp logic
     - [arm64] drm/msm/dp: reset the link phy params before link training
     - [arm64] drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails
     - mmc: mmc_test: Fix NULL dereference on allocation failure
     - Bluetooth: MGMT: Add error handling to pair_device() (CVE-2024-43884)
     - scsi: core: Fix the return value of scsi_logical_block_count()
     - ksmbd: the buffer of smb2 query dir response has at least 1 byte
     - drm/amdgpu: Validate TA binary size
     - HID: wacom: Defer calculation of resolution until resolution_code is known
     - HID: microsoft: Add rumble support to latest xbox controllers
     - Input: i8042 - add forcenorestore quirk to leave controller untouched even
       on s3
     - Input: i8042 - use new forcenorestore quirk to replace old buggy quirk
       combination
     - cxgb4: add forgotten u64 ivlan cast before shift
     - [arm64] KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3
     - mmc: dw_mmc: allow biu and ciu clocks to defer
     - pmdomain: imx: wait SSAR when i.MX93 power domain on
     - mptcp: pm: re-using ID of unused removed ADD_ADDR
     - mptcp: pm: re-using ID of unused removed subflows
     - mptcp: pm: re-using ID of unused flushed subflows
     - mptcp: pm: only decrement add_addr_accepted for MPJ req
     - Revert "usb: gadget: uvc: cleanup request when not in correct state"
     - Revert "drm/amd/display: Validate hw_points_num before using it"
     - tcp: do not export tcp_twsk_purge()
     - hwmon: (ltc2992) Fix memory leak in ltc2992_parse_dt()
     - ALSA: timer: Relax start tick time check for slave timer elements
     - mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order
       fallback to order 0
     - mm/numa: no task_numa_fault() call if PMD is changed
     - mm/numa: no task_numa_fault() call if PTE is changed
     - nfsd: Simplify code around svc_exit_thread() call in nfsd()
     - nfsd: separate nfsd_last_thread() from nfsd_put()
     - NFSD: simplify error paths in nfsd_svc()
     - nfsd: call nfsd_last_thread() before final nfsd_put()
     - nfsd: drop the nfsd_put helper
     - nfsd: don't call locks_release_private() twice concurrently
     - nfsd: Fix a regression in nfsd_setattr()
     - Bluetooth: hci_ldisc: check HCI_UART_PROTO_READY flag in HCIUARTGETPROTO
     - drm/amdgpu/vcn: identify unified queue in sw init
     - drm/amdgpu/vcn: not pause dpg for unified queue
     - [x86] KVM: x86: fire timer when it is migrated and expired, and in oneshot
       mode
     - Revert "s390/dasd: Establish DMA alignment"
     - wifi: mac80211: add documentation for amsdu_mesh_control
     - wifi: mac80211: fix mesh path discovery based on unicast packets
     - wifi: mac80211: fix mesh forwarding
     - wifi: mac80211: fix flow dissection for forwarded packets
     - wifi: mac80211: fix receiving mesh packets in forwarding=0 networks
     - wifi: mac80211: drop bogus static keywords in A-MSDU rx
     - wifi: mac80211: fix potential null pointer dereference
     - wifi: cfg80211: fix receiving mesh packets without RFC1042 header
     - gfs2: Fix another freeze/thaw hang
     - gfs2: don't withdraw if init_threads() got interrupted
     - gfs2: Remove LM_FLAG_PRIORITY flag
     - gfs2: Remove freeze_go_demote_ok
     - udp: fix receiving fraglist GSO packets
     - ice: fix W=1 headers mismatch
     - Revert "jfs: fix shift-out-of-bounds in dbJoin"
     - net: change maximum number of UDP segments to 128
     - selftests: net: more strict check in net_helper
     - Input: MT - limit max slots
     - tools: move alignment-related macros to new <linux/align.h>
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.108
     - drm/amdgpu: Using uninitialized value *size when calling
       amdgpu_vce_cs_reloc (CVE-2024-42228)
     - btrfs: run delayed iputs when flushing delalloc
     - smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req()
     - pinctrl: rockchip: correct RK3328 iomux width flag for GPIO2-B pins
     - pinctrl: single: fix potential NULL dereference in pcs_get_function()
     - of: Add cleanup.h based auto release via __free(device_node) markings
     - wifi: wfx: repair open network AP mode
     - wifi: mwifiex: duplicate static structs used in driver instances
     - net: mana: Fix race of mana_hwc_post_rx_wqe and new hwc response
     - mptcp: close subflow when receiving TCP+FIN
     - mptcp: sched: check both backup in retrans
     - mptcp: pm: skip connecting to already established sf
     - mptcp: pm: reset MPC endp ID when re-added
     - mptcp: pm: send ACK on an active subflow
     - mptcp: pm: do not remove already closed subflows
     - mptcp: pm: ADD_ADDR 0 is not a new address
     - drm/amdgpu: align pp_power_profile_mode with kernel docs
     - drm/amdgpu/swsmu: always force a state reprogram on init
     - ata: libata-core: Fix null pointer dereference on error (CVE-2024-41098)
     - usb: typec: fix up incorrectly backported "usb: typec: tcpm: unregister
       existing source caps before re-registration"
     - mmc: Avoid open coding by using mmc_op_tuning()
     - mmc: mtk-sd: receive cmd8 data when hs400 tuning fail
     - mptcp: unify pm get_local_id interfaces
     - mptcp: pm: remove mptcp_pm_remove_subflow()
     - mptcp: pm: only mark 'subflow' endp as available
     - mptcp: pm: check add_addr_accept_max before accepting new ADD_ADDR
     - of: Introduce for_each_*_child_of_node_scoped() to automate of_node_put()
       handling
     - thermal: of: Fix OF node leak in thermal_of_trips_init() error path
     - thermal: of: Fix OF node leak in of_thermal_zone_find() error paths
     - ASoC: amd: acp: fix module autoloading
     - ASoC: SOF: amd: Fix for acp init sequence
     - pinctrl: mediatek: common-v2: Fix broken bias-disable for
       PULL_PU_PD_RSEL_TYPE
     - btrfs: fix extent map use-after-free when adding pages to compressed bio
       (CVE-2024-42314)
     - soundwire: stream: fix programming slave ports for non-continous port maps
     - [arm64] phy: xilinx: add runtime PM support
     - [arm64] phy: xilinx: phy-zynqmp: dynamic clock support for power-save
     - [arm64] phy: xilinx: phy-zynqmp: Fix SGMII linkup failure on resume
     - [x86] dmaengine: dw: Add peripheral bus width verification
     - [x86] dmaengine: dw: Add memory bus width verification
     - Bluetooth: hci_core: Fix not handling hibernation actions
     - iommu: Do not return 0 from map_pages if it doesn't do anything
     - netfilter: nf_tables: restore IP sanity checks for netdev/egress
     - wifi: iwlwifi: fw: fix wgds rev 3 exact size
     - ethtool: check device is present when getting link settings
     - netfilter: nf_tables_ipv6: consider network offset in netdev/egress
       validation
     - bonding: implement xdo_dev_state_free and call it after deletion
     - gtp: fix a potential NULL pointer dereference
     - sctp: fix association labeling in the duplicate COOKIE-ECHO case
     - drm/amd/display: avoid using null object of framebuffer
     - net: busy-poll: use ktime_get_ns() instead of local_clock()
     - nfc: pn533: Add poll mod list filling check
     - [arm64] soc: qcom: cmd-db: Map shared memory as WC, not WB
     - cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller
     - USB: serial: option: add MeiG Smart SRM825L
     - [armhf] usb: dwc3: omap: add missing depopulate in probe error path
     - [arm64,armhf] usb: dwc3: core: Prevent USB core invalid event buffer
       address access
     - usb: core: sysfs: Unmerge @usb3_hardware_lpm_attr_group in
       remove_power_attributes()
     - usb: cdnsp: fix incorrect index in cdnsp_get_hw_deq function
     - usb: cdnsp: fix for Link TRB with TC
     - [arm64] phy: zynqmp: Enable reference clock correctly
     - igc: Fix reset adapter logics when tx mode change
     - igc: Fix qbv tx latency by setting gtxoffset
     - scsi: aacraid: Fix double-free on probe failure
     - apparmor: fix policy_unpack_test on big endian systems
     - fbdev: offb: fix up missing cleanup.h
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.109
     - drm: panel-orientation-quirks: Add quirk for OrangePi Neo
     - scsi: ufs: core: Bypass quick recovery if force reset is needed
     - ALSA: hda/generic: Add a helper to mute speakers at suspend/shutdown
     - ALSA: hda/conexant: Mute speakers at suspend / shutdown
     - i2c: Fix conditional for substituting empty ACPI functions
     - dma-debug: avoid deadlock between dma debug vs printk and netconsole
     - net: usb: qmi_wwan: add MeiG Smart SRM825L
     - [x86] ASoC: amd: yc: Support mic on Lenovo Thinkpad E14 Gen 6
     - mptcp: make pm_remove_addrs_and_subflows static
     - mptcp: pm: fix RM_ADDR ID for the initial subflow
     - PCI/MSI: Fix UAF in msi_capability_init (CVE-2024-41096)
     - f2fs: fix to truncate preallocated blocks in f2fs_file_open()
       (CVE-2024-43859)
     - mptcp: pm: fullmesh: select the right ID later
     - mptcp: pm: avoid possible UaF when selecting endp (CVE-2024-44974)
     - mptcp: pm: reuse ID 0 after delete and re-add
     - mptcp: pm: fix ID 0 endp usage after multiple re-creations
     - mptcp: pr_debug: add missing \n at the end
     - mptcp: avoid duplicated SUB_CLOSED events
     - drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr
     - drm/amd/display: Assign linear_pitch_alignment even for VM
     - drm/amdgpu: fix overflowed array index read warning
     - drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc
     - drm/amd/pm: fix uninitialized variable warning
     - drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr
     - drm/amd/pm: fix warning using uninitialized value of max_vid_step
     - drm/amd/pm: Fix negative array index read
     - drm/amd/pm: fix the Out-of-bounds read warning
     - drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr
     - drm/amdgpu: avoid reading vf2pf info size from FB
     - drm/amd/display: Check gpio_id before used as array index
     - drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6
     - drm/amd/display: Add array index check for hdcp ddc access
     - drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[]
     - drm/amd/display: Check msg_id before processing transcation
     - drm/amd/display: Fix Coverity INTEGER_OVERFLOW within
       dal_gpio_service_create
     - drm/amd/display: Spinlock before reading event
     - drm/amd/display: Ensure index calculation will not overflow
     - drm/amd/display: Skip inactive planes within
       ModeSupportAndSystemConfiguration
     - drm/amd/amdgpu: Check tbo resource pointer
     - drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt
     - drm/amdgpu/pm: Fix uninitialized variable warning for smu10
     - drm/amdgpu/pm: Fix uninitialized variable agc_btc_response
     - drm/amdgpu: Fix out-of-bounds write warning
     - drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number
     - drm/amdgpu: fix ucode out-of-bounds read warning
     - drm/amdgpu: fix mc_data out-of-bounds read warning
     - apparmor: fix possible NULL pointer dereference
     - wifi: ath11k: initialize 'ret' in ath11k_qmi_load_file_target_mem()
     - drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy
       SOCs
     - drm/amdgpu: fix dereference after null check
     - drm/amdgpu: fix the waring dereferencing hive
     - drm/amd/pm: check specific index for aldebaran
     - drm/amdgpu: the warning dereferencing obj for nbio_v7_4
     - drm/amd/pm: check negtive return for table entries
     - wifi: rtw89: ser: avoid multiple deinit on same CAM
     - drm/amdgpu: update type of buf size to u32 for eeprom functions
     - wifi: iwlwifi: remove fw_running op
     - cpufreq: scmi: Avoid overflow of target_freq in fast switch
     - PCI: al: Check IORESOURCE_BUS existence during probe
     - hwspinlock: Introduce hwspin_lock_bust()
     - RDMA/efa: Properly handle unexpected AQ completions
     - ionic: fix potential irq name truncation
     - pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode.
     - rcu/nocb: Remove buggy bypass lock contention mitigation
     - usbip: Don't submit special requests twice
     - usb: typec: ucsi: Fix null pointer dereference in trace
     - fsnotify: clear PARENT_WATCHED flags lazily
     - regmap: spi: Fix potential off-by-one when calculating reserved size
     - smack: tcp: ipv4, fix incorrect labeling
     - net/mlx5e: SHAMPO, Fix incorrect page release
     - [arm64] drm/meson: plane: Add error handling
     - [x86] hwmon: (k10temp) Check return value of amd_smn_read()
     - wifi: cfg80211: make hash table duplicates more survivable
     - driver: iio: add missing checks on iio_info's callback access
     - block: remove the blk_flush_integrity call in blk_integrity_unregister
     - drm/amd/display: added NULL check at start of dc_validate_stream
     - drm/amd/display: Correct the defined value for
       AMDGPU_DMUB_NOTIFICATION_MAX
     - drm/amd/display: Skip wbscl_set_scaler_filter if filter is null
     - media: uvcvideo: Enforce alignment of frame and interval
     - virtio_net: Fix napi_skb_cache_put warning (CVE-2024-43835)
     - Bluetooth: SCO: Fix possible circular locking dependency on
       sco_connect_cfm
     - Bluetooth: SCO: fix sco_conn related locking and validity issues
     - ext4: fix inode tree inconsistency caused by ENOMEM
     - udf: Limit file size to 4TB
     - ext4: reject casefold inode flag without casefold feature
     - ext4: handle redirtying in ext4_bio_write_page()
     - i2c: Use IS_REACHABLE() for substituting empty ACPI functions
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.110
     - sch/netem: fix use after free in netem_dequeue
     - ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object
     - [x86] KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS
     - [x86] KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and
       MSR_GS_BASE
     - [x86] KVM: SVM: Don't advertise Bus Lock Detect to guest if SVM support is
       missing
     - ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius
       devices
     - ALSA: hda/realtek: add patch for internal mic in Lenovo V145
     - ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx
     - ksmbd: unset the binding mark of a reused connection
     - ksmbd: Unlock on in ksmbd_tcp_set_interfaces()
     - ata: libata: Fix memory leak for error path in ata_host_alloc()
     - [x86] tdx: Fix data leak in mmio_read()
     - [x86] perf/x86/intel: Limit the period on Haswell
     - [arm64,armhf] irqchip/gic-v2m: Fix refcount leak in gicv2m_of_init()
     - [x86] kaslr: Expose and use the end of the physical memory address space
     - rtmutex: Drop rt_mutex::wait_lock before scheduling
     - nvme-pci: Add sleep quirk for Samsung 990 Evo
     - Revert "Bluetooth: MGMT/SMP: Fix address type when using SMP over
       BREDR/LE"
     - Bluetooth: MGMT: Ignore keys being loaded with invalid type
     - mmc: core: apply SD quirks earlier during probe
     - mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K
     - mmc: sdhci-of-aspeed: fix module autoloading
     - mmc: cqhci: Fix checking of CQHCI_HALT state
     - fuse: update stats for pages in dropped aux writeback list
     - fuse: use unsigned type for getxattr/listxattr size truncation
     - [arm64] clk: qcom: clk-alpha-pll: Fix the pll post div mask
     - [arm64] clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API
     - can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open
     - spi: rockchip: Resolve unbalanced runtime PM / system PM handling
     - tracing: Avoid possible softlockup in tracing_iter_reset()
     - net: mctp-serial: Fix missing escapes on transmit
     - [x86] fpu: Avoid writing LBR bit to IA32_XSS unless supported
     - Revert "drm/amdgpu: align pp_power_profile_mode with kernel docs"
     - tcp_bpf: fix return value of tcp_bpf_sendmsg()
     - ila: call nf_unregister_net_hooks() sooner
     - sched: sch_cake: fix bulk flow accounting logic for host fairness
     - nilfs2: fix missing cleanup on rollforward recovery error
     - nilfs2: protect references to superblock parameters exposed in sysfs
     - nilfs2: fix state management in error path of log writing function
     - ALSA: control: Apply sanity check of input values for user elements
     - ALSA: hda: Add input value sanity checks to HDMI channel map controls
     - smack: unix sockets: fix accept()ed socket label
     - ELF: fix kernel.randomize_va_space double read
     - [armhf] irqchip/armada-370-xp: Do not allow mapping IRQ 0 and 1
     - af_unix: Remove put_pid()/put_cred() in copy_peercred().
     - [x86] kmsan: Fix hook for unaligned accesses
     - netfilter: nf_conncount: fix wrong variable type
     - udf: Avoid excessive partition lengths
     - media: vivid: fix wrong sizeimage value for mplane
     - leds: spi-byte: Call of_node_put() on error path
     - wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3
     - usb: uas: set host status byte on data completion error
     - usb: gadget: aspeed_udc: validate endpoint index for ast udc
     - drm/amd/display: Check HDCP returned status
     - drm/amdgpu: Fix smatch static checker warning
     - drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts
     - media: vivid: don't set HDMI TX controls if there are no HDMI outputs
     - PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0)
     - Input: ili210x - use kvmalloc() to allocate buffer for firmware update
     - media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse
     - pcmcia: Use resource_size function on resource object
     - drm/amd/display: Check denominator pbn_div before used
     - drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6
     - can: bcm: Remove proc entry when dev is unregistered.
     - [arm64] can: m_can: Release irq on error in m_can_open
     - can: mcp251xfd: fix ring configuration when switching from CAN-CC to
       CAN-FD mode
     - cifs: Fix FALLOC_FL_ZERO_RANGE to preflush buffered part of target region
     - igb: Fix not clearing TimeSync interrupts for 82580
     - ice: Add netif_device_attach/detach into PF reset flow
     - [x86] platform/x86: dell-smbios: Fix error path in dell_smbios_init()
     - regulator: Add of_regulator_bulk_get_all
     - regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR
     - igc: Unlock on error in igc_io_resume()
     - ice: Use ice_max_xdp_frame_size() in ice_xdp_setup_prog()
     - ice: allow hot-swapping XDP programs
     - ice: do not bring the VSI up, if it was down before the XDP setup
     - usbnet: modern method to get random MAC
     - bareudp: Fix device stats updates.
     - fou: Fix null-ptr-deref in GRO.
     - net: bridge: br_fdb_external_learn_add(): always set EXT_LEARN
     - net: dsa: vsc73xx: fix possible subblocks range of CAPT block
     - firmware: cs_dsp: Don't allow writes to read-only controls
     - [arm64] phy: zynqmp: Take the phy mutex in xlate
     - [x86] ASoC: topology: Properly initialize soc_enum values
     - dm init: Handle minors larger than 255
     - [amd64] iommu/vt-d: Handle volatile descriptor status read
     - cgroup: Protect css->cgroup write under css_set_lock
     - devres: Initialize an uninitialized struct member
     - pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv
     - [x86] crypto: qat - fix unintentional re-enabling of error interrupts
     - hwmon: (nct6775-core) Fix underflows seen when writing limit attributes
     - hwmon: (w83627ehf) Fix underflows seen when writing limit attributes
     - libbpf: Add NULL checks to bpf_object__{prev_map,next_map}
     - drm/amdgpu: Set no_hw_access when VF request full GPU fails
     - ext4: fix possible tid_t sequence overflows
     - dma-mapping: benchmark: Don't starve others when doing the test
     - wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()
     - smp: Add missing destroy_work_on_stack() call in smp_call_on_cpu()
     - btrfs: replace BUG_ON with ASSERT in walk_down_proc()
     - btrfs: clean up our handling of refs == 0 in snapshot delete
     - btrfs: replace BUG_ON() with error handling at update_ref_for_cow()
     - PCI: Add missing bridge lock to pci_bus_lock()
     - tcp: Don't drop SYN+ACK for simultaneous connect().
     - net: dpaa: avoid on-stack arrays of NR_CPUS elements
     - i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup
     - btrfs: initialize location to fix -Wmaybe-uninitialized in
       btrfs_lookup_dentry()
     - [s390x] vmlinux.lds.S: Move ro_after_init section behind rodata section
     - HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup
     - [amd64] HID: amd_sfh: free driver_data after destroying hid device
     - Input: uinput - reject requests with unreasonable number of slots
     - usbnet: ipheth: race between ipheth_close and error handling
     - Squashfs: sanity check symbolic link size
     - of/irq: Prevent device address out-of-bounds read in interrupt map walk
     - lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()
     - [mips*] cevt-r4k: Don't call get_c0_compare_int if timer irq is installed
     - ata: pata_macio: Use WARN instead of BUG
     - NFSv4: Add missing rescheduling points in
       nfs_client_return_marked_delegations
     - io_uring/io-wq: stop setting PF_NO_SETAFFINITY on io-wq workers
     - io_uring/sqpoll: Do not set PF_NO_SETAFFINITY on sqpoll threads
     - tcp: process the 3rd ACK with sk_socket for TFO/MPTCP
     - iio: buffer-dmaengine: fix releasing dma channel on error
     - iio: fix scale application in iio_convert_raw_to_processed_unlocked
     - iio: adc: ad7124: fix config comparison
     - iio: adc: ad7606: remove frstdata check for serial mode
     - iio: adc: ad7124: fix chip ID mismatch
     - [arm64,armhf] usb: dwc3: core: update LC timer as per USB Spec V3.2
     - [arm*] binder: fix UAF caused by offsets overwrite
     - nvmem: Fix return type of devm_nvmem_device_get() in kerneldoc
     - uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind
     - Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic
     - VMCI: Fix use-after-free when removing resource in vmci_resource_remove()
     - clocksource/drivers/timer-of: Remove percpu irq related code
     - uprobes: Use kzalloc to allocate xol area
     - perf/aux: Fix AUX buffer serialization (CVE-2024-46713)
     - fuse: add "expire only" mode to FUSE_NOTIFY_INVAL_ENTRY
     - fuse: allow non-extending parallel direct writes on the same file
     - fuse: add request extension
     - fuse: fix memory leak in fuse_create_open
     - net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup
     - workqueue: wq_watchdog_touch is always called with valid CPU
     - workqueue: Improve scalability of workqueue watchdog touch
     - ACPI: processor: Return an error if acpi_processor_get_info() fails in
       processor_add()
     - ACPI: processor: Fix memory leaks in error paths of processor_add()
     - [arm64] acpi: Move get_cpu_for_acpi_id() to a header
     - [arm64] acpi: Harden get_cpu_for_acpi_id() against missing CPU entry
     - can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate
       function
     - can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index
       erratum
     - can: mcp251xfd: clarify the meaning of timestamp
     - can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd
     - drm/amd: Add gfx12 swizzle mode defs
     - drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes
     - [powerpc*] 64e: remove unused IBM HTW code
     - [powerpc*] 64e: split out nohash Book3E 64-bit code
     - [powerpc*] 64e: Define mmu_pte_psize static
     - nvmet-tcp: fix kernel crash if commands allocation fails
     - [x86] ASoc: SOF: topology: Clear SOF link platform name upon unload
     - [arm64,armhf] ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode
     - [x86] drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused
     - [x86] drm/i915/fence: Mark debug_fence_free() with __maybe_unused
     - [arm64,armhf] gpio: rockchip: fix OF node leak in probe()
     - [arm64] gpio: modepin: Enable module autoloading
     - [x86] mm: Fix PTI for i386 some more
     - btrfs: fix race between direct IO write and fsync when using same fd
     - bpf: Silence a warning in btf_type_id_size()
     - memcg: protect concurrent access to mem_cgroup_idr (CVE-2024-43892)
     - regulator: of: fix a NULL vs IS_ERR() check in of_regulator_bulk_get_all()
     - fuse: add feature flag for expire-only
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.111
     - ksmbd: override fsids for share path check
     - ksmbd: override fsids for smb2_query_info()
     - usbnet: ipheth: fix carrier detection in modes 1 and 4
     - net: ethernet: use ip_hdrlen() instead of bit shift
     - drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero
     - drm: panel-orientation-quirks: Add quirk for Ayn Loki Max
     - net: phy: vitesse: repair vsc73xx autonegotiation
     - [powerpc*] mm: Fix boot warning with hugepages and CONFIG_DEBUG_VIRTUAL
     - btrfs: update target inode's ctime on unlink
     - Input: ads7846 - ratelimit the spi_sync error message
     - Input: synaptics - enable SMBus for HP Elitebook 840 G2
     - HID: multitouch: Add support for GT7868Q
     - scripts: kconfig: merge_config: config files: add a trailing newline
     - [x86] platform/surface: aggregator_registry: Add Support for Surface Pro
       10
     - [x86] platform/surface: aggregator_registry: Add support for Surface
       Laptop Go 3
     - [arm64] drm/msm/adreno: Fix error return if missing firmware-name
     - Input: i8042 - add Fujitsu Lifebook E756 to i8042 quirk table
     - smb/server: fix return value of smb2_open()
     - NFSv4: Fix clearing of layout segments in layoutreturn
     - NFS: Avoid unnecessary rescanning of the per-server delegation list
     - [x86] platform/x86: panasonic-laptop: Fix SINF array out of bounds
       accesses
     - [x86] platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf
       array
     - mptcp: pm: Fix uaf in __timer_delete_sync
     - [arm64] dts: rockchip: fix eMMC/SPI corruption when audio has been used on
       RK3399 Puma
     - [arm64] dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399
       Puma
     - net: tighten bad gso csum offset check in virtio_net_hdr
     - dm-integrity: fix a race condition when accessing recalc_sector
     - mm: avoid leaving partial pfn mappings around in error case
     - pmdomain: ti: Add a null pointer check to the omap_prm_domain_init
       (CVE-2024-35943)
     - [arm64] dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E
     - eeprom: digsy_mtc: Fix 93xx46 driver probe failure
     - cxl/core: Fix incorrect vendor debug UUID define
     - [armhf] hwmon: (pmbus) Conditionally clear individual status bits for
       pmbus rev >= 1.2
     - ice: fix accounting for filters shared by multiple VSIs
     - igb: Always call igb_xdp_ring_update_tail() under Tx lock
     - net/mlx5: Update the list of the PCI supported devices
     - net/mlx5e: Add missing link modes to ptys2ethtool_map
     - net/mlx5: Explicitly set scheduling element and TSAR type
     - net/mlx5: Add missing masks and QoS bit masks for scheduling elements
     - net/mlx5: Correct TASR typo into TSAR
     - net/mlx5: Verify support for scheduling element and TSAR type
     - net/mlx5: Fix bridge mode operations when there are no VFs
     - fou: fix initialization of grc
     - netfilter: nft_socket: fix sk refcount leaks
     - net: dpaa: Pad packets to ETH_ZLEN
     - [arm64] spi: nxp-fspi: fix the KASAN report out-of-bounds bug
     - soundwire: stream: Revert "soundwire: stream: fix programming slave ports
       for non-continous port maps"
     - dma-buf: heaps: Fix off-by-one in CMA heap fault handler
     - drm/amdgpu/atomfirmware: Silence UBSAN warning
     - [x86] drm/i915/guc: prevent a possible int overflow in wq offsets
     - pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID
     - [arm64] ASoC: meson: axg-card: fix 'use-after-free'
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.112
     - ALSA: hda/realtek - Fixed ALC256 headphone no sound
     - ALSA: hda/realtek - FIxed ALC285 headphone no sound
     - scsi: lpfc: Fix overflow build issue
     - [x86] hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING
     - [armhf] net: ftgmac100: Ensure tx descriptor updates are visible
     - wifi: iwlwifi: lower message level for FW buffer destination
     - wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation
     - wifi: iwlwifi: mvm: pause TCM when the firmware is stopped
     - wifi: iwlwifi: mvm: don't wait for tx queues if firmware is dead
     - wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap()
     - wifi: iwlwifi: clear trans->state earlier upon error
     - can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration
     - [x86] ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match
       less strict
     - [x86] ASoC: intel: fix module autoloading
     - spi: spidev: Add an entry for elgin,jg10309-01
     - spi: bcm63xx: Enable module autoloading
     - smb: client: fix hang in wait_for_response() for negproto
     - [x86] hyperv: Set X86_FEATURE_TSC_KNOWN_FREQ when Hyper-V provides
       frequency
     - tools: hv: rm .*.cmd when make clean
     - block: Fix where bio IO priority gets set
     - spi: spidev: Add missing spi_device_id for jg10309-01
     - ocfs2: add bounds checking to ocfs2_xattr_find_entry()
     - ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()
       (CVE-2024-41016)
     - xfs: dquot shrinker doesn't check for XFS_DQFLAG_FREEING
     - xfs: Fix deadlock on xfs_inodegc_worker
     - xfs: fix extent busy updating
     - xfs: don't use BMBT btree split workers for IO completion
     - xfs: fix low space alloc deadlock
     - xfs: prefer free inodes at ENOSPC over chunk allocation
     - xfs: block reservation too large for minleft allocation
     - xfs: fix uninitialized variable access
     - xfs: quotacheck failure can race with background inode inactivation
     - xfs: fix BUG_ON in xfs_getbmap()
     - xfs: buffer pins need to hold a buffer reference
     - xfs: defered work could create precommits
     - xfs: fix AGF vs inode cluster buffer deadlock
     - xfs: collect errors from inodegc for unlinked inode recovery
     - xfs: fix ag count overflow during growfs
     - xfs: remove WARN when dquot cache insertion fails
     - xfs: fix the calculation for "end" and "length"
     - xfs: load uncached unlinked inodes into memory on demand
     - xfs: fix negative array access in xfs_getbmap
     - xfs: fix unlink vs cluster buffer instantiation race
     - xfs: correct calculation for agend and blockcount
     - xfs: use i_prev_unlinked to distinguish inodes that are not on the
       unlinked list
     - xfs: reload entire unlinked bucket lists
     - xfs: make inode unlinked bucket recovery work with quotacheck
     - xfs: fix reloading entire unlinked bucket lists
     - xfs: set bnobt/cntbt numrecs correctly when formatting new AGs
     - xfs: journal geometry is not properly bounds checked
     - netfilter: nft_socket: make cgroupsv2 matching work with namespaces
     - netfilter: nft_socket: Fix a NULL vs IS_ERR() bug in
       nft_socket_cgroup_subtree_level()
     - netfilter: nft_set_pipapo: walk over current view on netlink dump
       (CVE-2024-27017)
     - netfilter: nf_tables: missing iterator type in lookup walk
     - Revert "wifi: cfg80211: check wiphy mutex is held for wdev mutex"
     - gpiolib: cdev: Ignore reconfiguration without direction
     - gpio: prevent potential speculation leaks in gpio_device_get_desc()
       (CVE-2024-44931)
     - can: mcp251xfd: properly indent labels
     - can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into
       mcp251xfd_chip_start/stop()
     - btrfs: calculate the right space for delayed refs when updating global
       reserve
     - [x86] powercap: RAPL: fix invalid initialization for pl4_supported field
     - [x86] mm: Switch to new Intel CPU model defines
     - USB: serial: pl2303: add device id for Macrosilicon MS3020
     - USB: usbtmc: prevent kernel-usb-infoleak
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 26
   * [rt] Update to 6.1.107-rt39
   * [rt] Update to 6.1.111-rt42

mediawiki (1:1.39.10-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 1.39.10, fixing T372998 (AbuseFilter API not
     properly checking permissions, CVE pending).
mediawiki (1:1.39.8-1) unstable; urgency=medium
 .
   [ Taavi Väänänen ]
   * Update my email address
 .
   [ Kunal Mehta ]
   * New upstream version 1.39.8
mediawiki (1:1.39.7-1) unstable; urgency=medium
 .
   * New upstream version 1.39.7. (Closes: #1064797)
   * Drop obsolete Lintian override for
     package-supports-alternative-init-but-no-init.d-script.
   * Fix ordering in debian/changelog to fix the
     globbing-patterns-out-of-order lintian warning.

nghttp2 (1.52.0-1+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2024-28182: unbounded number of HTTP/2 CONTINUATION frames DoS
     (Closes: #1068415)
   * nghttp2_option_set_stream_reset_rate_limit was added in
     1.52.0-1+deb12u1, add to debian/libnghttp2-14.symbols

ninja-build (1.11.1-2~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 ninja-build (1.11.1-2) unstable; urgency=medium
 .
   * Support large inode numbers on 32-bit systems. (Closes: #1041897)
     - Cherry-pick upstream commit as support_32bit_system_like_i386.patch

node-dompurify (2.4.1+dfsg+~2.4.0-2+deb12u1) bookworm; urgency=medium
 .
   * Fix prototype pollutions (Closes: CVE-2024-45801, CVE-2024-48910)
node-dompurify (2.4.1+dfsg+~2.4.0-2) bookworm-security; urgency=medium
 .
   * Team upload
   * Fix mXSS issue (Closes: #1084983, CVE-2024-47875)

node-es-module-lexer (1.1.0+dfsg-2+deb12u1) bookworm; urgency=medium
 .
   * Backport: update build command (Closes: #1078885)

node-globby (13.1.3+~cs16.25.40-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Upload to bookworm
   * Backport patch to fix build with node 18. Closes: #1072599.

node-mdn-browser-compat-data (5.2.20+~3.33.0-1+deb12u1) bookworm; urgency=medium
 .
   * Backport workaround ts-node bug (Closes: #1078890)

node-rollup-plugin-node-polyfills (0.2.1+dfsg+~0.11.0-1+deb12u1) bookworm; urgency=medium
 .
   * Backport: update build (Closes: #1078896)

node-tap (16.3.2+ds1+~cs50.8.16-1+deb12u1) bookworm; urgency=medium
 .
   * Backport patch to support tsnode imports by default.
     Closes: #1078897.

node-xterm (3.8.1+~cs0.9.0-1+deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm
   * Team upload
   * Fix Typescript declarations with new stable Node.js (Closes: #1076378)

node-y-protocols (1.0.5-6+deb12u1) bookworm; urgency=medium
 .
   * gbp: switch to debian/bookworm
   * Fix build links (Closes: #1078898)

node-y-websocket (1.4.5-4+deb12u1) bookworm; urgency=medium
 .
   * gbp: debian/bookworm
   * Backport fix build links (Closes: #1078900)

node-ytdl-core (4.11.2+dfsg+~cs4.10.8-1+deb12u1) bookworm; urgency=medium
 .
   * Backport tsc patch (Closes: #1078899)

notify-osd (0.9.35+15.04.20150126-3+deb12u1) bookworm; urgency=medium
 .
   * debian/rules, debian/notify-osd.desktop{,in}: Dynamically generate
     the Exec path in notify-osd.desktop with DEB_HOST_MULTIARCH to fix
     the incorrect executable path in /etc/xdg/autostart/notify-osd.desktop.
     (Closes: #1027272)

ntfs-3g (1:2022.10.3-1+deb12u2) bookworm; urgency=medium
 .
   * Move fuse to simple dependency (closes: #983359).
ntfs-3g (1:2022.10.3-1+deb12u1) bookworm; urgency=medium
 .
   * Fix use-after-free in 'ntfs_uppercase_mbs' (CVE-2023-52890)
     (closes: #1073248).

oath-toolkit (2.6.7-3.1+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2024-47191 (pam_oath priv escalation with usersfile ${HOME}).

openjdk-17 (17.0.13+11-2~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm
openjdk-17 (17.0.13+11-1) unstable; urgency=high
 .
   * OpenJDK 17.0.13 release, build 11.
     - CVE-2024-21208
     - CVE-2024-21210
     - CVE-2024-21217
     - CVE-2024-21235
 .
   [ Vladimir Petko ]
   * d/rules: do not include dtrace support for S390x (JDK-8305174).
   * d/t/problems.csv: Disable jdk/sun/security/util/Debug/DebugOptions.java
     due to JDK-8339713.
openjdk-17 (17.0.13+11-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm
openjdk-17 (17.0.13~6ea-1) unstable; urgency=medium
 .
   * OpenJDK 17.0.13 early access, build 6.
 .
   [ Vladimir Petko ]
   * d/copyright-generator/strip-common-licenses.sh: Add GPLv3 to the
     list of common licenses.
   * d/JB-*.override.in: Update lintian overrides.
   * d/s/lintian-override: Add source-contains-prebuilt-javascript-object
     due to LP: 2032992.
   * d/p/jdk-8334895-proposed.patch: Fix typo in the patch description.
   * d/t/problemlist.csv: Update problemlist.csv for July release
   * d/t/jtreg-autopkgtest.{in,sh}: Increase jtreg test timeouts.
   * Enable dtrace support.
openjdk-17 (17.0.12+7-2) unstable; urgency=medium
 .
   [ Vladimir Petko ]
   * d/p/jdk-8312488.patch: Add upstream patch to resolve jpackage crash.
   * d/copyright: Regenerate copyright.
   * d/rules, d/t/*: Collate all excluded tests into d/t/problemlist.csv.
   * d/rules: Enable fallback linker for Foreign Function and Memory API
     on i386 and armhf.
   * d/watch: Use fixed googletest version.
   * d/p/jdk-8336529-proposed.patch: Fix time_t migration issue on armhf.
     openjdk is unable to set file last modified timestamp.
   * d/p/jdk-8334895-proposed.patch: Refresh patch.
   * d/rules: Relax jtreg7 version condition for backports.
   * d/rules, d/control.in: Depend on pkgconf rather than pkg-config in
     bookworm and later releases. This resolves lintian warning
     build-depends-on-obsolete-package Build-Depends: pkg-config => pkgconf.
   * d/rules: Drop autotools-dev dependency for the modern debhelper.
     This resolves obsolete autotools-dev dependency lintian warning.
     See #844191.

openssl (3.0.15-1~deb12u1) bookworm; urgency=medium
 .
   * Import 3.0.15
     - CVE-2024-5535 (SSL_select_next_proto buffer overread)
       (Closes: #1074487).
     - CVE-2024-9143 (Low-level invalid GF(2^m) parameters lead to OOB memory
       access) (Closes: #1085378).
openssl (3.0.14-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2024-6119 (Possible denial of service in X.509 name checks).

ostree (2022.7-2+deb12u1) bookworm; urgency=medium
 .
   * d/control, d/gbp.conf: Configure for stable updates
   * d/p/curl-Assert-that-curl_multi_assign-worked.patch,
     d/p/curl-Make-socket-callback-during-cleanup-into-no-op.patch:
     Add patches from upstream 2024.8 to avoid libflatpak crash with an
     assertion failure when using curl 8.10.x.
     This was originally reported in testing/unstable, but can affect
     bookworm if using libcurl3-gnutls from bookworm-backports.
     (Closes: #1082121)

php-twig (3.5.1-1+deb12u1) bookworm-security; urgency=medium
 .
   * Fix a security issue when an included sandboxed template has been loaded
     before without the sandbox context [CVE-2024-45411] (Closes: #1081561)
   * Track bookworm

php8.2 (8.2.24-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream version 8.2.24
    + [CVE-2024-8926]: Bypass of CVE-2024-4577, Parameter Injection
      Vulnerability
    + [CVE-2024-8927]: cgi.force_redirect configuration is bypassable due
      to the environment variable collision
    + [CVE-2024-8927]: Logs from FPM childrens may be altered
    + [CVE-2024-8925]: Erroneous parsing of multipart form data
php8.2 (8.2.23-1) unstable; urgency=medium
 .
   * New upstream version 8.2.23
php8.2 (8.2.21-1) unstable; urgency=medium
 .
   * New upstream version 8.2.21
   * Add Restart=on-failure to the systemd service file
   * Remove the patch that fixed GH-14480 (merged upstream)
php8.2 (8.2.20-3) unstable; urgency=medium
 .
   * Add Breaks on extensions using php_strlcpy (Closes: #1074167)
php8.2 (8.2.20-2) unstable; urgency=medium
 .
   * Fix GH-14480: Method visibility issue introduced in version 8.3.8 (#14484)

puppetserver (7.9.5-2+deb12u1) bookworm; urgency=medium
 .
   * ship cronjob to clean up reportdir automatically (Closes: #1078911,
     #1080489)

puredata (0.53.1+ds-2+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2023-47480: Terminate if canceling setuid() privilege fails

pymatgen (2022.11.7+dfsg1-11+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2024-23346 (Closes: #1064514)

python-cryptography (38.0.4-3+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2023-49083: NULL dereference when loading PKCS7 certificates
     (Closes: #1057108)
   * CVE-2024-26130: NULL dereference when PKCS#12 key and cert don't match
     (Closes: #1064778)

python-reportlab (3.6.12-1+deb12u1) bookworm-security; urgency=high
 .
   * Team upload
   * Fix CVE-2023-33733
     Reportlab was vulnerable to Remote Code Execution (RCE)
     via crafted PDF file.
   * Add SalsaCI

python-sql (1.4.0-1+deb12u1) bookworm-security; urgency=high
 .
   * Add 01-escape_non_expressions.patch.
     Description: Escape non expressions for unary operators
     This patch fixes CVE-2024-9774 vulnerability for SQL injection attacks
     from https://discuss.tryton.org/t/security-release-for-issue-93

python3.11 (3.11.2-6+deb12u4) bookworm; urgency=medium
 .
   * Fix zipfile.Path regression introduced by 3.11.2-6+deb12u3
     (Closes: 1080245)
   * Fix CVE-2024-6232: Regular expressions that allowed excessive backtracking
     during tarfile.TarFile header parsing are vulnerable to ReDoS via
     specifically-crafted tar archives
python3.11 (3.11.2-6+deb12u3) bookworm-security; urgency=medium
 .
   * CVE-2024-0397
   * CVE-2024-4032
   * CVE-2024-8088

reprepro (5.3.1-1+deb12u2) bookworm; urgency=medium
 .
   * uncompress: prevent reprepro from hanging on unzstd
     (Closes: #1056380, LP: #2047775)

ruby-saml (1.13.0-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * SAML authentication bypass via Incorrect XPath selector (CVE-2024-45409)
     (Closes: #1081560)

sqlite3 (3.40.1-2+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2023-7104: Session extension buffer overread
   * Backport fix for a stack overflow that could be caused by a
     recursively defined WINDOW() with a strategically embedded error.
   * Backport fix for a technically undefined signed integer overflow
     in fts5.

sumo (1.15.0+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Remove bashism from CMakeLists.txt. Closes: #1082135.

systemd (252.31-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.31
   * Drop journald.conf patch merged upstream
   * Refresh patches to remove fuzz from update

tgt (1:1.0.85-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * chap: Use proper entropy source (CVE-2024-45751) (Closes: #1081158)

thunderbird (1:115.16.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * [3801b51] New upstream version 115.16.0esr
     Fixed CVE issues in upstream version 115.16 (MFSA 2024-52):
     CVE-2024-9680: Use-after-free in Animation timeline
thunderbird (1:115.15.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * [912dd3c] New upstream version 115.15.0
     Fixed CVE issues in upstream version 115.15 (MFSA 2024-44):
     CVE-2024-8381: Type confusion when looking up a property name in a
                    &quot;with&quot; block
     CVE-2024-8382: Internal event interfaces were exposed to web content
                    when browser EventHandler listener callbacks ran
     CVE-2024-8383: Thunderbird did not ask before openings news: links in
                    an external application
     CVE-2024-8384: Garbage collection could mis-color cross-compartment
                    objects in OOM conditions
   * [1b87bc9] d/changelog: Fix version number (connected to MFSA 2024-38)
thunderbird (1:115.14.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * [d608c75] New upstream version 115.14.0
     Fixed CVE issues in upstream version 115.1 (MFSA 2024-38):
     CVE-2024-7519: Out of bounds memory access in graphics shared memory
                    handling
     CVE-2024-7521: Incomplete WebAssembly exception handing
     CVE-2024-7522: Out of bounds read in editor component
     CVE-2024-7525: Missing permission check when creating a StreamFilter
     CVE-2024-7526: Uninitialized memory used by WebGL
     CVE-2024-7527: Use-after-free in JavaScript garbage collection
     CVE-2024-7529: Document content could partially obscure security prompts
thunderbird (1:115.14.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.13.0-1) unstable; urgency=medium
 .
   * [83b5833] d/create-upstream-tarballs.py: Need to check for esr now
   * [5268d14] New upstream version 115.13.0
     Fixed CVE issues in upstream version 115.13 (MFSA 2024-31):
     CVE-2024-6600: Memory corruption in WebGL API
     CVE-2024-6601: Race condition in permission assignment
     CVE-2024-6602: Memory corruption in NSS
     CVE-2024-6603: Memory corruption in thread creation
     CVE-2024-6604: Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13,
                    Thunderbird 128, and Thunderbird 115.13
   * [8097b55] Rebuild patch queue from patch-queue branch
     Dropped patch (not needed anymore):
     debian-hacks/rnp-Fix-include-for-format-specifiers-for-uint32_t.patch
   * [eab5143] d/watch: Now watch out for 'esr' suffixed versions
thunderbird (1:115.13.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:115.13.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.12.0-1) unstable; urgency=medium
 .
   * [3d303c4] d/c-u-t.py: Ignore one more version
   * [2e7f143] New upstream version 115.12.0
     Fixed CVE issues in upstream version 115.12 (MFSA 2024-28):
     CVE-2024-5702: Use-after-free in networking
     CVE-2024-5688: Use-after-free in JavaScript object transplant
     CVE-2024-5690: External protocol handlers leaked by timing attack
     CVE-2024-5691: Sandboxed iframes were able to bypass sandbox restrictions
                    to open a new window
     CVE-2024-5692: Bypass of file name restrictions during saving
     CVE-2024-5693: Cross-Origin Image leak via Offscreen Canvas
     CVE-2024-5696: Memory Corruption in Text Fragments
     CVE-2024-5700: Memory safety bugs fixed in Firefox 127, Firefox ESR 115.12,
                    and Thunderbird 115.12
   * [9afc3a0] d/logo/thunderbird: Update PNG files from newer SVG
     (Closes: #1071824)
   * [a92c8d1] d/thunderbird.install: Install the newer correct SVG graphic

timeshift (22.11.2-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * debian/control: Add missing dependency on pkexec. (Closes: #1069676)

trafficserver (9.2.5+ds-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 9.2.5+ds
   * CVEs fix (Closes: #1077141)
     - CVE-2023-38522: Incomplete field name check allows request smuggling
     - CVE-2024-35161: Incomplete check for chunked trailer section allows
       request smuggling
     - CVE-2024-35296: Invalid Accept-Encoding can force forwarding requests
trafficserver (9.2.4+ds-2) unstable; urgency=medium
 .
   * Disable plugin dynamic reload by default (Closes: #1020989)
   * Improve d/trafficserver.service security
   * Update d/copyright to fix lintian warning
trafficserver (9.2.4+ds-1) unstable; urgency=medium
 .
   * New upstream version 9.2.4+ds
   * Refresh d/patches for 9.2.4 release
   * Update Debian Policy version
   * Update d/copyright fixing lintian superfluous-file-pattern warning
   * Update d/control to fix lintian build-depends-on-obsolete-package warning
   * CVEs fix (Closes: #1068417)
     - CVE-2024-31309: HTTP/2 CONTINUATION DoS attack

tryton-server (6.0.29-2+deb12u3) bookworm-security; urgency=high
 .
   * Add patches for security release
     https://discuss.tryton.org/t/security-release-for-
     issues-13505-and-13506.
     - Add 04_check_read_access_of_reports_records_13505.patch:
      Check read access of report records.
      Since 982a131026e7 the access rights are no more checked on instances.
      So anyone who has access to the report action, can execute the report
      for any records.
 .
     - Add 05_retrieve_groups_actions_wo_check_access_13506.patch:
      Check read access of report records.
      get_groups does not always returns the group of the action.
      When the method is called with access checked as there is a record rule
      on ir.action, the method returns an empty set of group ids. This is
      because no actions were found if the user does not share a group.
      This makes that check access of Report and Wizard never raise an error.

twisted (22.4.0-4+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2024-41671 (Closes: #1077679)
   * CVE-2024-41810 (Closes: #1077680)
   * CVE-2023-46137 (Closes: #1054913)

util-linux (2.38.1-5+deb12u2) bookworm; urgency=medium
 .
   * Add the following upstream patches to identify new Arm cores:
     - 0027-lscpu-Add-Neoverse-V2-Cortex-R82.patch
     - 0028-lscpu-Add-2023-Cortex.patch
     - 0029-lscpu-Add-Neoverse-V3-N3.patch

vmdb2 (0.27+really.0.26-1+deb12u1) bookworm; urgency=medium
 .
   * Set the locale to UTF-8, as Ansible fails otherwise (Closes: #1032363)

webkit2gtk (2.46.0-2~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * Disable sysprof profiling integration to avoid new dependencies:
     - debian/control.in: Don't depend on libsysprof-capture-4-dev.
     - debian/rules: Build with -DUSE_SYSPROF_CAPTURE=OFF.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
   * debian/rules:
     - Enable ENABLE_SOUP2, USE_OLD_DOC_PKG, USE_OLD_JSCBIN_PKG and
       USE_OLD_WEBDRIVER_PKG to keep using the old package names.
   * debian/control-common.in:
     - Make the -dev packages depend on the gir packages.
   * debian/control.in:
     - Build depend on ccache.
webkit2gtk (2.46.0-1) unstable; urgency=medium
 .
   * New upstream release.
   * Bring all changes from the 2.45 (experimental) branch.
   * Enable sysprof profiling integration on available architectures.
   * Rename webkit2gtk-driver to webkitgtk-webdriver.
     - debian/control.in: add the necessary Conflicts / Breaks / Replaces.
     - debian/control-webdriver.in: control file for the transitional
       package.
     - debian/rules: Add USE_OLD_WEBDRIVER_PKG and the logic to decide
       which packages to build.
   * debian/rules:
     - Disable bmalloc in armhf (WebKit bug #278858).
     - Stop limiting parallel builds on Ubuntu.
   * debian/copyright:
     - Update copyright information of all files.
   * debian/gbp.conf:
     - Update upstream branch name.
   * debian/libwebkit2gtk-4.0-37.symbols:
     - Update symbols.
   * debian/patches/dont-detect-sse2.patch:
     - Update this patch.
   * Remove the following patches:
     - disable-dmabuf-nvidia.patch: all Nvidia-related bugs are supposed to
       be fixed upstream.
     - prefer-pthread.patch: this should not be needed anymore.
     - reduce-memory-overheads.patch: Override LDFLAGS instead.
   * debian/source/lintian-overrides:
     - Update source-is-missing overrides.
webkit2gtk (2.45.92-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Refresh all patches.
   * Disable dont-detect-sse2.patch since it breaks the i386 build
     (WebKit bug #278661).
   * debian/rules:
     - Disable bmalloc in armhf (WebKit bug #278858).
webkit2gtk (2.45.91-1) experimental; urgency=medium
 .
   [ Alberto Garcia ]
   * New upstream development release.
   * Refresh all patches.
   * debian/copyright:
     - Update copyright information of all files.
 .
   [ Jeremy Bícha ]
   * Enable sysprof profiling integration on available architectures.
webkit2gtk (2.45.6-1) experimental; urgency=medium
 .
   * New upstream development release.
   * debian/copyright:
     - Update copyright information of all files.
   * debian/control.in:
     - Update Standards-Version to 4.7.0 (no changes).
     - Replace gobject-introspection-bin with gobject-introspection. This
       fixes a lintian error: missing-build-dependency-for-dh-addon gir
       (does not satisfy gobject-introspection:any | dh-sequence-gir:any)
webkit2gtk (2.45.5-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Refresh all patches.
   * debian/copyright:
     - Update copyright information of all files.
   * Rename webkit2gtk-driver to webkitgtk-webdriver.
     - debian/control.in: add the necessary Conflicts / Breaks / Replaces.
     - debian/control-webdriver.in: control file for the transitional
       package.
     - debian/rules: Add USE_OLD_WEBDRIVER_PKG and the logic to decide
       which packages to build.
   * debian/source/lintian-overrides:
     - Update source-is-missing overrides.
webkit2gtk (2.45.4-1) experimental; urgency=medium
 .
   [ Alberto Garcia ]
   * New upstream development release.
   * debian/source/lintian-overrides:
     - Update source-is-missing overrides.
   * debian/libwebkit2gtk-4.0-37.symbols:
     - Update symbols.
   * Disable clang in all architectures since it fails to build this
     release (WebKit bug #275872).
 .
   [ Jeremy Bicha ]
   * Treat riscv64 as an unknown CPU (again!) to fix a FTBFS (see webkit
     bugs #274826 and #271371).
webkit2gtk (2.45.3-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Building with clang failed in armel, armhf, mips64el, ppc64el and
     riscv64, so use gcc again in those.
   * Refresh all patches and remove fix-riscv-include.patch.
   * debian/libwebkit2gtk-4.0-37.symbols:
     - Update symbols.
webkit2gtk (2.45.2-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Remove disable-skia-big-endian.patch and fix-riscv-include.patch.
   * debian/patches/fix-clang-build.patch:
     - Fix build with clang in (at least) i386 and s390x.
   * Use clang in all architectures where it's available.
   * debian/copyright:
     - Update copyright information of all files.
   * debian/libwebkit2gtk-4.0-37.symbols:
     - Update symbols.
webkit2gtk (2.45.1-2) experimental; urgency=medium
 .
   * debian/patches/disable-skia-big-endian.patch:
     - Don't use Skia on big-endian machines since it's not supported
       (Closes: #1070865)
   * debian/patches/fix-riscv-include.patch:
     - Fix typo in header name.
   * Use clang on amd64 since it's strongly recommended to build Skia
     (Closes: #1032443).
   * debian/rules:
     - Disable dh_dwz since it causes several build failures with clang
       (see e.g. #1016936 or #946255).
webkit2gtk (2.45.1-1) experimental; urgency=medium
 .
   * New upstream development release.
   * debian/watch, debian/gbp.conf:
     - Branch for 2.45.x in experimental.
   * debian/upstream/signing-key.asc:
     - Replace Carlos Garcia's DSA key with the new RSA one.
   * debian/rules:
     - Build with -DENABLE_JIT=OFF in riscv64. This replaces
       fix-ftbfs-riscv64.patch.
     - Add -Wl,--reduce-memory-overheads to LDFLAGS. This replaces
       reduce-memory-overheads.patch.
   * Remove the following patches:
     - disable-dmabuf-nvidia.patch: all Nvidia-related bugs are supposed to
       be fixed upstream.
     - prefer-pthread.patch: this should not be needed anymore.
     - fix-ftbfs-riscv64.patch: Use -DENABLE_JIT=OFF instead.
     - reduce-memory-overheads.patch: Override LDFLAGS instead.
   * debian/source/lintian-overrides:
     - Update source-is-missing overrides.
   * debian/copyright:
     - Update copyright information of all files.
webkit2gtk (2.44.4-1) unstable; urgency=medium
 .
   * New upstream release.
   * Drop fix-clang-build.patch and fix-webasm-crash.patch.
   * debian/rules:
     - Disable dh_dwz, it breaks the build in at least i386 and amd64
       (see #1081000).
webkit2gtk (2.44.3-1) unstable; urgency=high
 .
   * New upstream release.
   * The WebKitGTK security advisory WSA-2024-0004 lists the following
     security fixes in the latest versions of WebKitGTK:
     - CVE-2024-40776, CVE-2024-40779, CVE-2024-40780, CVE-2024-40782,
       CVE-2024-40785, CVE-2024-40789, CVE-2024-40794, CVE-2024-4558
       (fixed in 2.44.3).
   * debian/patches/fix-clang-build.patch,
     debian/patches/fix-webasm-crash.patch:
     - Patches recommended by upstream after 2.44.3 was released.
   * debian/libwebkit2gtk-4.0-37.symbols:
     - Update symbols.
   * debian/control.in:
     - Update Standards-Version to 4.7.0 (no changes).
     - Replace gobject-introspection-bin with gobject-introspection. This
       fixes a lintian error: missing-build-dependency-for-dh-addon gir
       (does not satisfy gobject-introspection:any | dh-sequence-gir:any)
webkit2gtk (2.44.3-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
   * debian/rules:
     - Enable ENABLE_SOUP2, USE_OLD_DOC_PKG and USE_OLD_JSCBIN_PKG to keep
       using the old package names.
   * debian/control.in:
     - Make the -dev packages depend on the gir packages.
     - Build depend on ccache.
webkit2gtk (2.44.2-1) unstable; urgency=high
 .
   * New upstream release.
   * debian/upstream/signing-key.asc:
     - Replace Carlos Garcia's DSA key with the new RSA one.

wireshark (4.0.17-0+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * New upstream release.
     - CVE-2024-0208: GVCP dissector crash
     - CVE-2024-0209: IEEE 1609.2 dissector crash
     - CVE-2024-2955: T.38 dissector crash (Closes: #1068111)
     - CVE-2024-4853: Editcap byte chopping crash
     - CVE-2024-4854: MONGO dissector infinite loop
     - CVE-2024-4855: Editcap use-after-free
     - CVE-2024-8250: NTLMSSP dissector crash (Closes: #1080298)
     - CVE-2024-8645: SPRT dissector crash
   * CVE-2024-0211: DOCSIS dissector crash
   * Closes: #1059925
wireshark (4.0.11-1) unstable; urgency=medium
 .
   * New upstream version
     - security fixes:
       - SSH dissector crash
       - NetScreen file parser crash

xfpt (0.11-1+deb12u1) bookworm; urgency=medium
 .
   * Cherry-pick 30-Diagnose-error-if-macro-expansion-makes-a-line-too-l.patch
     from upstream GIT master to fix buffer overflow CVE-2024-43700.
     Closes: #1080219

xorg-server (2:21.1.7-3+deb12u8) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * xkb: Fix buffer overflow in _XkbSetCompatMap() (CVE-2024-9632)
=======================================
Sat, 31 Aug 2024 - Debian 12.7 released
=======================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:36:19 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
btrfs-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
btrfs-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
cdrom-core-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
cdrom-core-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
cdrom-core-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
crc-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
crc-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
crc-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
crypto-dm-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
crypto-dm-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
crypto-dm-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
crypto-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
crypto-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
crypto-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
dasd-extra-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
dasd-extra-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
dasd-extra-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
dasd-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
dasd-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
dasd-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
ext4-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
ext4-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
ext4-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
f2fs-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
f2fs-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
f2fs-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
fat-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
fat-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
fat-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
fuse-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
fuse-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
fuse-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
isofs-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
isofs-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
isofs-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
kernel-image-6.1.0-18-s390x-di |   6.1.76-1 | s390x
kernel-image-6.1.0-23-s390x-di |   6.1.99-1 | s390x
kernel-image-6.1.0-24-s390x-di |  6.1.106-2 | s390x
linux-headers-6.1.0-18-s390x |   6.1.76-1 | s390x
linux-headers-6.1.0-23-s390x |   6.1.99-1 | s390x
linux-headers-6.1.0-24-s390x |  6.1.106-2 | s390x
linux-image-6.1.0-18-s390x |   6.1.76-1 | s390x
linux-image-6.1.0-18-s390x-dbg |   6.1.76-1 | s390x
linux-image-6.1.0-23-s390x |   6.1.99-1 | s390x
linux-image-6.1.0-23-s390x-dbg |   6.1.99-1 | s390x
linux-image-6.1.0-24-s390x |  6.1.106-2 | s390x
linux-image-6.1.0-24-s390x-dbg |  6.1.106-2 | s390x
loop-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
loop-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
loop-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
md-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
md-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
md-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
mtd-core-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
mtd-core-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
mtd-core-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
multipath-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
multipath-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
multipath-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
nbd-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
nbd-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
nbd-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
nic-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
nic-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
nic-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
scsi-core-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
scsi-core-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
scsi-core-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
scsi-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
scsi-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
scsi-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
udf-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
udf-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
udf-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x
xfs-modules-6.1.0-18-s390x-di |   6.1.76-1 | s390x
xfs-modules-6.1.0-23-s390x-di |   6.1.99-1 | s390x
xfs-modules-6.1.0-24-s390x-di |  6.1.106-2 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:36:32 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
affs-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
affs-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
affs-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
affs-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
affs-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
ata-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
ata-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
ata-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
ata-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
ata-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
ata-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
btrfs-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
btrfs-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
btrfs-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
btrfs-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
btrfs-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
btrfs-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
cdrom-core-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
cdrom-core-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
crc-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
crc-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
crc-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
crc-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
crc-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
crc-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
crypto-dm-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
crypto-dm-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
crypto-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
crypto-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
crypto-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
crypto-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
crypto-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
crypto-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
event-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
event-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
event-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
event-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
event-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
event-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
ext4-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
ext4-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
ext4-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
ext4-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
ext4-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
ext4-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
f2fs-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
f2fs-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
f2fs-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
f2fs-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
f2fs-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
f2fs-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
fat-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
fat-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
fat-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
fat-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
fat-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
fat-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
fb-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
fb-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
fb-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
fb-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
fb-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
fb-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
firewire-core-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
firewire-core-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
firewire-core-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
firewire-core-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
firewire-core-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
firewire-core-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
fuse-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
fuse-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
fuse-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
fuse-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
fuse-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
fuse-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
input-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
input-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
input-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
input-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
input-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
input-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
isofs-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
isofs-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
isofs-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
isofs-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
isofs-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
isofs-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
jfs-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
jfs-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
jfs-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
jfs-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
jfs-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
jfs-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
kernel-image-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
kernel-image-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
kernel-image-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
kernel-image-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
kernel-image-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
kernel-image-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
linux-headers-6.1.0-18-loongson-3 |   6.1.76-1 | mips64el, mipsel
linux-headers-6.1.0-18-octeon |   6.1.76-1 | mips64el, mipsel
linux-headers-6.1.0-23-loongson-3 |   6.1.99-1 | mips64el, mipsel
linux-headers-6.1.0-23-octeon |   6.1.99-1 | mips64el, mipsel
linux-headers-6.1.0-24-loongson-3 |  6.1.106-2 | mips64el, mipsel
linux-headers-6.1.0-24-octeon |  6.1.106-2 | mips64el, mipsel
linux-image-6.1.0-18-loongson-3 |   6.1.76-1 | mips64el, mipsel
linux-image-6.1.0-18-loongson-3-dbg |   6.1.76-1 | mips64el, mipsel
linux-image-6.1.0-18-octeon |   6.1.76-1 | mips64el, mipsel
linux-image-6.1.0-18-octeon-dbg |   6.1.76-1 | mips64el, mipsel
linux-image-6.1.0-23-loongson-3 |   6.1.99-1 | mips64el, mipsel
linux-image-6.1.0-23-loongson-3-dbg |   6.1.99-1 | mips64el, mipsel
linux-image-6.1.0-23-octeon |   6.1.99-1 | mips64el, mipsel
linux-image-6.1.0-23-octeon-dbg |   6.1.99-1 | mips64el, mipsel
linux-image-6.1.0-24-loongson-3 |  6.1.106-2 | mips64el, mipsel
linux-image-6.1.0-24-loongson-3-dbg |  6.1.106-2 | mips64el, mipsel
linux-image-6.1.0-24-octeon |  6.1.106-2 | mips64el, mipsel
linux-image-6.1.0-24-octeon-dbg |  6.1.106-2 | mips64el, mipsel
loop-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
loop-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
loop-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
loop-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
loop-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
loop-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
md-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
md-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
md-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
md-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
md-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
md-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
minix-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
minix-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
minix-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
minix-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
minix-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
minix-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
mmc-core-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
mmc-core-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
mmc-core-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
mmc-core-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
mmc-core-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
mmc-core-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
mmc-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
mmc-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
mmc-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
mmc-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
mmc-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
mmc-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
mouse-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
mouse-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
mouse-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
mouse-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
mouse-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
mouse-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
multipath-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
multipath-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
multipath-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
multipath-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
multipath-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
multipath-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
nbd-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
nbd-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
nbd-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
nbd-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
nbd-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
nbd-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
nfs-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
nfs-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
nfs-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
nfs-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
nfs-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
nfs-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
nic-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
nic-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
nic-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
nic-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
nic-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
nic-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
nic-shared-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
nic-shared-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
nic-shared-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
nic-shared-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
nic-shared-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
nic-shared-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
nic-usb-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
nic-usb-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
nic-usb-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
nic-usb-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
nic-usb-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
nic-usb-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
nic-wireless-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
nic-wireless-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
pata-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
pata-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
pata-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
pata-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
pata-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
pata-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
ppp-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
ppp-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
ppp-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
ppp-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
ppp-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
ppp-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
sata-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
sata-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
sata-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
sata-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
sata-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
sata-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
scsi-core-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
scsi-core-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
scsi-core-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
scsi-core-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
scsi-core-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
scsi-core-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
scsi-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
scsi-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
scsi-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
scsi-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
scsi-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
scsi-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
scsi-nic-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
scsi-nic-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
sound-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
sound-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
sound-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
sound-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
sound-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
sound-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
speakup-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
speakup-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
speakup-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
speakup-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
speakup-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
speakup-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
squashfs-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
squashfs-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
squashfs-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
squashfs-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
squashfs-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
squashfs-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
udf-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
udf-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
udf-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
udf-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
udf-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
udf-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
usb-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
usb-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
usb-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
usb-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
usb-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
usb-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
usb-serial-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
usb-serial-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
usb-serial-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
usb-serial-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
usb-serial-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
usb-serial-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
usb-storage-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
usb-storage-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
usb-storage-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
usb-storage-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
usb-storage-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
usb-storage-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel
xfs-modules-6.1.0-18-loongson-3-di |   6.1.76-1 | mips64el, mipsel
xfs-modules-6.1.0-18-octeon-di |   6.1.76-1 | mips64el, mipsel
xfs-modules-6.1.0-23-loongson-3-di |   6.1.99-1 | mips64el, mipsel
xfs-modules-6.1.0-23-octeon-di |   6.1.99-1 | mips64el, mipsel
xfs-modules-6.1.0-24-loongson-3-di |  6.1.106-2 | mips64el, mipsel
xfs-modules-6.1.0-24-octeon-di |  6.1.106-2 | mips64el, mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:36:45 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
affs-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
affs-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
affs-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
affs-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
affs-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
ata-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
ata-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
ata-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
ata-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
ata-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
ata-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
btrfs-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
btrfs-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
btrfs-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
btrfs-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
btrfs-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
btrfs-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
cdrom-core-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
cdrom-core-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
cdrom-core-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
cdrom-core-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
cdrom-core-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
cdrom-core-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
crc-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
crc-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
crc-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
crc-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
crc-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
crc-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
crypto-dm-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
crypto-dm-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
crypto-dm-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
crypto-dm-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
crypto-dm-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
crypto-dm-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
crypto-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
crypto-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
crypto-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
crypto-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
crypto-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
crypto-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
event-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
event-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
event-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
event-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
event-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
event-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
ext4-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
ext4-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
ext4-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
ext4-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
ext4-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
ext4-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
f2fs-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
f2fs-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
f2fs-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
f2fs-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
f2fs-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
f2fs-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
fat-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
fat-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
fat-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
fat-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
fat-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
fat-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
fb-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
fb-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
fb-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
fb-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
fb-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
fb-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
firewire-core-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
firewire-core-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
firewire-core-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
firewire-core-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
firewire-core-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
firewire-core-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
fuse-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
fuse-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
fuse-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
fuse-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
fuse-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
fuse-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
input-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
input-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
input-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
input-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
input-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
input-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
isofs-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
isofs-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
isofs-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
isofs-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
isofs-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
isofs-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
jfs-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
jfs-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
jfs-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
jfs-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
jfs-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
jfs-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
kernel-image-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
kernel-image-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
kernel-image-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
kernel-image-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
kernel-image-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
kernel-image-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
linux-headers-6.1.0-18-4kc-malta |   6.1.76-1 | mipsel
linux-headers-6.1.0-18-mips32r2el |   6.1.76-1 | mipsel
linux-headers-6.1.0-23-4kc-malta |   6.1.99-1 | mipsel
linux-headers-6.1.0-23-mips32r2el |   6.1.99-1 | mipsel
linux-headers-6.1.0-24-4kc-malta |  6.1.106-2 | mipsel
linux-headers-6.1.0-24-mips32r2el |  6.1.106-2 | mipsel
linux-image-6.1.0-18-4kc-malta |   6.1.76-1 | mipsel
linux-image-6.1.0-18-4kc-malta-dbg |   6.1.76-1 | mipsel
linux-image-6.1.0-18-mips32r2el |   6.1.76-1 | mipsel
linux-image-6.1.0-18-mips32r2el-dbg |   6.1.76-1 | mipsel
linux-image-6.1.0-23-4kc-malta |   6.1.99-1 | mipsel
linux-image-6.1.0-23-4kc-malta-dbg |   6.1.99-1 | mipsel
linux-image-6.1.0-23-mips32r2el |   6.1.99-1 | mipsel
linux-image-6.1.0-23-mips32r2el-dbg |   6.1.99-1 | mipsel
linux-image-6.1.0-24-4kc-malta |  6.1.106-2 | mipsel
linux-image-6.1.0-24-4kc-malta-dbg |  6.1.106-2 | mipsel
linux-image-6.1.0-24-mips32r2el |  6.1.106-2 | mipsel
linux-image-6.1.0-24-mips32r2el-dbg |  6.1.106-2 | mipsel
loop-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
loop-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
loop-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
loop-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
loop-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
loop-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
md-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
md-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
md-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
md-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
md-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
md-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
minix-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
minix-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
minix-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
minix-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
minix-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
minix-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
mmc-core-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
mmc-core-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
mmc-core-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
mmc-core-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
mmc-core-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
mmc-core-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
mmc-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
mmc-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
mmc-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
mmc-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
mmc-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
mmc-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
mouse-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
mouse-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
mouse-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
mouse-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
mouse-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
mouse-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
multipath-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
multipath-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
multipath-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
multipath-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
multipath-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
multipath-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
nbd-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
nbd-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
nbd-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
nbd-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
nbd-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
nbd-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
nfs-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
nfs-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
nfs-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
nfs-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
nfs-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
nfs-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
nic-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
nic-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
nic-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
nic-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
nic-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
nic-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
nic-shared-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
nic-shared-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
nic-shared-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
nic-shared-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
nic-shared-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
nic-shared-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
nic-usb-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
nic-usb-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
nic-usb-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
nic-usb-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
nic-usb-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
nic-usb-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
nic-wireless-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
nic-wireless-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
nic-wireless-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
nic-wireless-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
nic-wireless-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
nic-wireless-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
pata-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
pata-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
pata-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
pata-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
pata-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
pata-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
ppp-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
ppp-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
ppp-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
ppp-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
ppp-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
ppp-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
sata-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
sata-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
sata-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
sata-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
sata-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
sata-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
scsi-core-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
scsi-core-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
scsi-core-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
scsi-core-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
scsi-core-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
scsi-core-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
scsi-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
scsi-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
scsi-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
scsi-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
scsi-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
scsi-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
scsi-nic-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
scsi-nic-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
scsi-nic-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
scsi-nic-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
scsi-nic-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
scsi-nic-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
sound-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
sound-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
sound-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
sound-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
sound-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
sound-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
speakup-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
speakup-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
speakup-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
speakup-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
speakup-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
speakup-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
squashfs-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
squashfs-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
squashfs-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
squashfs-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
squashfs-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
squashfs-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
udf-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
udf-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
udf-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
udf-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
udf-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
udf-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
usb-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
usb-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
usb-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
usb-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
usb-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
usb-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
usb-serial-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
usb-serial-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
usb-serial-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
usb-serial-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
usb-serial-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
usb-serial-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
usb-storage-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
usb-storage-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
usb-storage-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
usb-storage-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
usb-storage-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
usb-storage-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel
xfs-modules-6.1.0-18-4kc-malta-di |   6.1.76-1 | mipsel
xfs-modules-6.1.0-18-mips32r2el-di |   6.1.76-1 | mipsel
xfs-modules-6.1.0-23-4kc-malta-di |   6.1.99-1 | mipsel
xfs-modules-6.1.0-23-mips32r2el-di |   6.1.99-1 | mipsel
xfs-modules-6.1.0-24-4kc-malta-di |  6.1.106-2 | mipsel
xfs-modules-6.1.0-24-mips32r2el-di |  6.1.106-2 | mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:36:55 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
ata-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
ata-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
btrfs-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
btrfs-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
btrfs-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
cdrom-core-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
cdrom-core-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
cdrom-core-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
crc-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
crc-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
crc-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
crypto-dm-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
crypto-dm-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
crypto-dm-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
crypto-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
crypto-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
crypto-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
event-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
event-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
event-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
ext4-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
ext4-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
ext4-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
f2fs-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
f2fs-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
f2fs-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
fancontrol-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
fancontrol-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
fancontrol-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
fat-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
fat-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
fat-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
fb-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
fb-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
fb-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
firewire-core-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
firewire-core-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
firewire-core-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
fuse-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
fuse-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
fuse-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
hypervisor-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
hypervisor-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
hypervisor-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
i2c-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
i2c-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
i2c-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
input-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
input-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
input-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
isofs-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
isofs-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
isofs-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
jfs-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
jfs-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
jfs-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
kernel-image-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
kernel-image-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
kernel-image-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
linux-headers-6.1.0-18-powerpc64le |   6.1.76-1 | ppc64el
linux-headers-6.1.0-23-powerpc64le |   6.1.99-1 | ppc64el
linux-headers-6.1.0-24-powerpc64le |  6.1.106-2 | ppc64el
linux-image-6.1.0-18-powerpc64le |   6.1.76-1 | ppc64el
linux-image-6.1.0-18-powerpc64le-dbg |   6.1.76-1 | ppc64el
linux-image-6.1.0-23-powerpc64le |   6.1.99-1 | ppc64el
linux-image-6.1.0-23-powerpc64le-dbg |   6.1.99-1 | ppc64el
linux-image-6.1.0-24-powerpc64le |  6.1.106-2 | ppc64el
linux-image-6.1.0-24-powerpc64le-dbg |  6.1.106-2 | ppc64el
loop-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
loop-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
loop-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
md-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
md-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
md-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
mouse-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
mouse-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
mouse-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
mtd-core-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
mtd-core-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
mtd-core-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
multipath-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
multipath-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
multipath-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
nbd-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
nbd-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
nbd-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
nic-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
nic-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
nic-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
nic-shared-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
nic-shared-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
nic-shared-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
nic-usb-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
nic-usb-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
nic-usb-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
nic-wireless-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
nic-wireless-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
nic-wireless-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
ppp-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
ppp-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
ppp-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
sata-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
sata-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
sata-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
scsi-core-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
scsi-core-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
scsi-core-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
scsi-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
scsi-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
scsi-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
scsi-nic-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
scsi-nic-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
scsi-nic-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
serial-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
serial-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
serial-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
squashfs-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
squashfs-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
squashfs-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
udf-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
udf-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
udf-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
uinput-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
uinput-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
uinput-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
usb-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
usb-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
usb-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
usb-serial-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
usb-serial-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
usb-serial-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
usb-storage-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
usb-storage-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
usb-storage-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el
xfs-modules-6.1.0-18-powerpc64le-di |   6.1.76-1 | ppc64el
xfs-modules-6.1.0-23-powerpc64le-di |   6.1.99-1 | ppc64el
xfs-modules-6.1.0-24-powerpc64le-di |  6.1.106-2 | ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:37:07 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-18-amd64 |   6.1.76-1 | amd64
linux-headers-6.1.0-18-cloud-amd64 |   6.1.76-1 | amd64
linux-headers-6.1.0-18-rt-amd64 |   6.1.76-1 | amd64
linux-headers-6.1.0-23-amd64 |   6.1.99-1 | amd64
linux-headers-6.1.0-23-cloud-amd64 |   6.1.99-1 | amd64
linux-headers-6.1.0-23-rt-amd64 |   6.1.99-1 | amd64
linux-headers-6.1.0-24-amd64 |  6.1.106-2 | amd64
linux-headers-6.1.0-24-cloud-amd64 |  6.1.106-2 | amd64
linux-headers-6.1.0-24-rt-amd64 |  6.1.106-2 | amd64
linux-image-6.1.0-18-amd64-dbg |   6.1.76-1 | amd64
linux-image-6.1.0-18-amd64-unsigned |   6.1.76-1 | amd64
linux-image-6.1.0-18-cloud-amd64-dbg |   6.1.76-1 | amd64
linux-image-6.1.0-18-cloud-amd64-unsigned |   6.1.76-1 | amd64
linux-image-6.1.0-18-rt-amd64-dbg |   6.1.76-1 | amd64
linux-image-6.1.0-18-rt-amd64-unsigned |   6.1.76-1 | amd64
linux-image-6.1.0-23-amd64-dbg |   6.1.99-1 | amd64
linux-image-6.1.0-23-amd64-unsigned |   6.1.99-1 | amd64
linux-image-6.1.0-23-cloud-amd64-dbg |   6.1.99-1 | amd64
linux-image-6.1.0-23-cloud-amd64-unsigned |   6.1.99-1 | amd64
linux-image-6.1.0-23-rt-amd64-dbg |   6.1.99-1 | amd64
linux-image-6.1.0-23-rt-amd64-unsigned |   6.1.99-1 | amd64
linux-image-6.1.0-24-amd64-dbg |  6.1.106-2 | amd64
linux-image-6.1.0-24-amd64-unsigned |  6.1.106-2 | amd64
linux-image-6.1.0-24-cloud-amd64-dbg |  6.1.106-2 | amd64
linux-image-6.1.0-24-cloud-amd64-unsigned |  6.1.106-2 | amd64
linux-image-6.1.0-24-rt-amd64-dbg |  6.1.106-2 | amd64
linux-image-6.1.0-24-rt-amd64-unsigned |  6.1.106-2 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:37:24 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-18-arm64 |   6.1.76-1 | arm64
linux-headers-6.1.0-18-cloud-arm64 |   6.1.76-1 | arm64
linux-headers-6.1.0-18-rt-arm64 |   6.1.76-1 | arm64
linux-headers-6.1.0-23-arm64 |   6.1.99-1 | arm64
linux-headers-6.1.0-23-cloud-arm64 |   6.1.99-1 | arm64
linux-headers-6.1.0-23-rt-arm64 |   6.1.99-1 | arm64
linux-headers-6.1.0-24-arm64 |  6.1.106-2 | arm64
linux-headers-6.1.0-24-cloud-arm64 |  6.1.106-2 | arm64
linux-headers-6.1.0-24-rt-arm64 |  6.1.106-2 | arm64
linux-image-6.1.0-18-arm64-dbg |   6.1.76-1 | arm64
linux-image-6.1.0-18-arm64-unsigned |   6.1.76-1 | arm64
linux-image-6.1.0-18-cloud-arm64-dbg |   6.1.76-1 | arm64
linux-image-6.1.0-18-cloud-arm64-unsigned |   6.1.76-1 | arm64
linux-image-6.1.0-18-rt-arm64-dbg |   6.1.76-1 | arm64
linux-image-6.1.0-18-rt-arm64-unsigned |   6.1.76-1 | arm64
linux-image-6.1.0-23-arm64-dbg |   6.1.99-1 | arm64
linux-image-6.1.0-23-arm64-unsigned |   6.1.99-1 | arm64
linux-image-6.1.0-23-cloud-arm64-dbg |   6.1.99-1 | arm64
linux-image-6.1.0-23-cloud-arm64-unsigned |   6.1.99-1 | arm64
linux-image-6.1.0-23-rt-arm64-dbg |   6.1.99-1 | arm64
linux-image-6.1.0-23-rt-arm64-unsigned |   6.1.99-1 | arm64
linux-image-6.1.0-24-arm64-dbg |  6.1.106-2 | arm64
linux-image-6.1.0-24-arm64-unsigned |  6.1.106-2 | arm64
linux-image-6.1.0-24-cloud-arm64-dbg |  6.1.106-2 | arm64
linux-image-6.1.0-24-cloud-arm64-unsigned |  6.1.106-2 | arm64
linux-image-6.1.0-24-rt-arm64-dbg |  6.1.106-2 | arm64
linux-image-6.1.0-24-rt-arm64-unsigned |  6.1.106-2 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:37:37 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
btrfs-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
btrfs-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
cdrom-core-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
cdrom-core-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
cdrom-core-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
crc-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
crc-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
crc-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
crypto-dm-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
crypto-dm-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
crypto-dm-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
crypto-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
crypto-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
crypto-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
event-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
event-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
event-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
ext4-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
ext4-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
ext4-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
f2fs-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
f2fs-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
f2fs-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
fat-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
fat-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
fat-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
fb-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
fb-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
fb-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
fuse-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
fuse-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
fuse-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
input-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
input-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
input-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
ipv6-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
ipv6-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
ipv6-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
isofs-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
isofs-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
isofs-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
jffs2-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
jffs2-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
jffs2-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
jfs-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
jfs-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
jfs-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
kernel-image-6.1.0-18-marvell-di |   6.1.76-1 | armel
kernel-image-6.1.0-23-marvell-di |   6.1.99-1 | armel
kernel-image-6.1.0-24-marvell-di |  6.1.106-2 | armel
leds-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
leds-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
leds-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
linux-headers-6.1.0-18-marvell |   6.1.76-1 | armel
linux-headers-6.1.0-18-rpi |   6.1.76-1 | armel
linux-headers-6.1.0-23-marvell |   6.1.99-1 | armel
linux-headers-6.1.0-23-rpi |   6.1.99-1 | armel
linux-headers-6.1.0-24-marvell |  6.1.106-2 | armel
linux-headers-6.1.0-24-rpi |  6.1.106-2 | armel
linux-image-6.1.0-18-marvell |   6.1.76-1 | armel
linux-image-6.1.0-18-marvell-dbg |   6.1.76-1 | armel
linux-image-6.1.0-18-rpi |   6.1.76-1 | armel
linux-image-6.1.0-18-rpi-dbg |   6.1.76-1 | armel
linux-image-6.1.0-23-marvell |   6.1.99-1 | armel
linux-image-6.1.0-23-marvell-dbg |   6.1.99-1 | armel
linux-image-6.1.0-23-rpi |   6.1.99-1 | armel
linux-image-6.1.0-23-rpi-dbg |   6.1.99-1 | armel
linux-image-6.1.0-24-marvell |  6.1.106-2 | armel
linux-image-6.1.0-24-marvell-dbg |  6.1.106-2 | armel
linux-image-6.1.0-24-rpi |  6.1.106-2 | armel
linux-image-6.1.0-24-rpi-dbg |  6.1.106-2 | armel
loop-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
loop-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
loop-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
md-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
md-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
md-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
minix-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
minix-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
minix-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
mmc-core-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
mmc-core-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
mmc-core-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
mmc-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
mmc-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
mmc-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
mouse-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
mouse-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
mouse-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
mtd-core-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
mtd-core-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
mtd-core-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
mtd-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
mtd-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
mtd-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
multipath-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
multipath-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
multipath-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
nbd-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
nbd-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
nbd-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
nic-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
nic-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
nic-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
nic-shared-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
nic-shared-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
nic-shared-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
nic-usb-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
nic-usb-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
nic-usb-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
ppp-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
ppp-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
ppp-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
sata-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
sata-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
sata-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
scsi-core-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
scsi-core-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
scsi-core-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
squashfs-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
squashfs-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
squashfs-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
udf-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
udf-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
udf-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
uinput-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
uinput-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
uinput-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
usb-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
usb-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
usb-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
usb-serial-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
usb-serial-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
usb-serial-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel
usb-storage-modules-6.1.0-18-marvell-di |   6.1.76-1 | armel
usb-storage-modules-6.1.0-23-marvell-di |   6.1.99-1 | armel
usb-storage-modules-6.1.0-24-marvell-di |  6.1.106-2 | armel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:37:48 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
ata-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
ata-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
btrfs-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
btrfs-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
btrfs-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
cdrom-core-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
cdrom-core-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
cdrom-core-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
crc-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
crc-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
crc-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
crypto-dm-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
crypto-dm-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
crypto-dm-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
crypto-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
crypto-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
crypto-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
efi-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
efi-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
efi-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
event-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
event-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
event-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
ext4-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
ext4-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
ext4-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
f2fs-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
f2fs-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
f2fs-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
fat-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
fat-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
fat-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
fb-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
fb-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
fb-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
fuse-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
fuse-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
fuse-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
i2c-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
i2c-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
i2c-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
input-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
input-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
input-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
isofs-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
isofs-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
isofs-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
jfs-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
jfs-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
jfs-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
kernel-image-6.1.0-18-armmp-di |   6.1.76-1 | armhf
kernel-image-6.1.0-23-armmp-di |   6.1.99-1 | armhf
kernel-image-6.1.0-24-armmp-di |  6.1.106-2 | armhf
leds-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
leds-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
leds-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
linux-headers-6.1.0-18-armmp |   6.1.76-1 | armhf
linux-headers-6.1.0-18-armmp-lpae |   6.1.76-1 | armhf
linux-headers-6.1.0-18-rt-armmp |   6.1.76-1 | armhf
linux-headers-6.1.0-23-armmp |   6.1.99-1 | armhf
linux-headers-6.1.0-23-armmp-lpae |   6.1.99-1 | armhf
linux-headers-6.1.0-23-rt-armmp |   6.1.99-1 | armhf
linux-headers-6.1.0-24-armmp |  6.1.106-2 | armhf
linux-headers-6.1.0-24-armmp-lpae |  6.1.106-2 | armhf
linux-headers-6.1.0-24-rt-armmp |  6.1.106-2 | armhf
linux-image-6.1.0-18-armmp |   6.1.76-1 | armhf
linux-image-6.1.0-18-armmp-dbg |   6.1.76-1 | armhf
linux-image-6.1.0-18-armmp-lpae |   6.1.76-1 | armhf
linux-image-6.1.0-18-armmp-lpae-dbg |   6.1.76-1 | armhf
linux-image-6.1.0-18-rt-armmp |   6.1.76-1 | armhf
linux-image-6.1.0-18-rt-armmp-dbg |   6.1.76-1 | armhf
linux-image-6.1.0-23-armmp |   6.1.99-1 | armhf
linux-image-6.1.0-23-armmp-dbg |   6.1.99-1 | armhf
linux-image-6.1.0-23-armmp-lpae |   6.1.99-1 | armhf
linux-image-6.1.0-23-armmp-lpae-dbg |   6.1.99-1 | armhf
linux-image-6.1.0-23-rt-armmp |   6.1.99-1 | armhf
linux-image-6.1.0-23-rt-armmp-dbg |   6.1.99-1 | armhf
linux-image-6.1.0-24-armmp |  6.1.106-2 | armhf
linux-image-6.1.0-24-armmp-dbg |  6.1.106-2 | armhf
linux-image-6.1.0-24-armmp-lpae |  6.1.106-2 | armhf
linux-image-6.1.0-24-armmp-lpae-dbg |  6.1.106-2 | armhf
linux-image-6.1.0-24-rt-armmp |  6.1.106-2 | armhf
linux-image-6.1.0-24-rt-armmp-dbg |  6.1.106-2 | armhf
loop-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
loop-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
loop-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
md-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
md-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
md-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
mmc-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
mmc-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
mmc-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
mtd-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
mtd-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
mtd-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
multipath-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
multipath-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
multipath-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
nbd-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
nbd-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
nbd-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
nic-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
nic-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
nic-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
nic-shared-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
nic-shared-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
nic-shared-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
nic-usb-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
nic-usb-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
nic-usb-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
nic-wireless-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
nic-wireless-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
nic-wireless-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
pata-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
pata-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
pata-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
ppp-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
ppp-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
ppp-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
sata-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
sata-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
sata-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
scsi-core-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
scsi-core-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
scsi-core-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
scsi-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
scsi-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
scsi-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
scsi-nic-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
scsi-nic-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
scsi-nic-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
sound-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
sound-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
sound-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
speakup-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
speakup-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
speakup-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
squashfs-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
squashfs-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
squashfs-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
udf-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
udf-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
udf-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
uinput-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
uinput-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
uinput-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
usb-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
usb-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
usb-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
usb-serial-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
usb-serial-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
usb-serial-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf
usb-storage-modules-6.1.0-18-armmp-di |   6.1.76-1 | armhf
usb-storage-modules-6.1.0-23-armmp-di |   6.1.99-1 | armhf
usb-storage-modules-6.1.0-24-armmp-di |  6.1.106-2 | armhf

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:37:59 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-18-686 |   6.1.76-1 | i386
linux-headers-6.1.0-18-686-pae |   6.1.76-1 | i386
linux-headers-6.1.0-18-rt-686-pae |   6.1.76-1 | i386
linux-headers-6.1.0-23-686 |   6.1.99-1 | i386
linux-headers-6.1.0-23-686-pae |   6.1.99-1 | i386
linux-headers-6.1.0-23-rt-686-pae |   6.1.99-1 | i386
linux-headers-6.1.0-24-686 |  6.1.106-2 | i386
linux-headers-6.1.0-24-686-pae |  6.1.106-2 | i386
linux-headers-6.1.0-24-rt-686-pae |  6.1.106-2 | i386
linux-image-6.1.0-18-686-dbg |   6.1.76-1 | i386
linux-image-6.1.0-18-686-pae-dbg |   6.1.76-1 | i386
linux-image-6.1.0-18-686-pae-unsigned |   6.1.76-1 | i386
linux-image-6.1.0-18-686-unsigned |   6.1.76-1 | i386
linux-image-6.1.0-18-rt-686-pae-dbg |   6.1.76-1 | i386
linux-image-6.1.0-18-rt-686-pae-unsigned |   6.1.76-1 | i386
linux-image-6.1.0-23-686-dbg |   6.1.99-1 | i386
linux-image-6.1.0-23-686-pae-dbg |   6.1.99-1 | i386
linux-image-6.1.0-23-686-pae-unsigned |   6.1.99-1 | i386
linux-image-6.1.0-23-686-unsigned |   6.1.99-1 | i386
linux-image-6.1.0-23-rt-686-pae-dbg |   6.1.99-1 | i386
linux-image-6.1.0-23-rt-686-pae-unsigned |   6.1.99-1 | i386
linux-image-6.1.0-24-686-dbg |  6.1.106-2 | i386
linux-image-6.1.0-24-686-pae-dbg |  6.1.106-2 | i386
linux-image-6.1.0-24-686-pae-unsigned |  6.1.106-2 | i386
linux-image-6.1.0-24-686-unsigned |  6.1.106-2 | i386
linux-image-6.1.0-24-rt-686-pae-dbg |  6.1.106-2 | i386
linux-image-6.1.0-24-rt-686-pae-unsigned |  6.1.106-2 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:38:11 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
affs-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
affs-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
affs-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
affs-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
affs-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
ata-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
ata-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
ata-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
ata-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
ata-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
ata-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
btrfs-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
btrfs-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
btrfs-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
btrfs-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
btrfs-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
btrfs-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
cdrom-core-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
cdrom-core-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
cdrom-core-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
cdrom-core-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
cdrom-core-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
cdrom-core-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
crc-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
crc-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
crc-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
crc-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
crc-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
crc-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
crypto-dm-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
crypto-dm-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
crypto-dm-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
crypto-dm-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
crypto-dm-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
crypto-dm-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
crypto-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
crypto-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
crypto-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
crypto-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
crypto-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
crypto-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
event-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
event-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
event-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
event-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
event-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
event-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
ext4-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
ext4-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
ext4-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
ext4-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
ext4-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
ext4-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
f2fs-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
f2fs-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
f2fs-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
f2fs-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
f2fs-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
f2fs-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
fat-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
fat-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
fat-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
fat-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
fat-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
fat-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
fb-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
fb-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
fb-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
fb-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
fb-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
fb-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
firewire-core-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
firewire-core-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
firewire-core-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
firewire-core-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
firewire-core-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
firewire-core-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
fuse-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
fuse-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
fuse-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
fuse-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
fuse-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
fuse-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
input-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
input-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
input-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
input-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
input-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
input-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
isofs-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
isofs-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
isofs-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
isofs-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
isofs-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
isofs-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
jfs-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
jfs-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
jfs-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
jfs-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
jfs-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
jfs-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
kernel-image-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
kernel-image-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
kernel-image-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
kernel-image-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
kernel-image-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
kernel-image-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
linux-headers-6.1.0-18-5kc-malta |   6.1.76-1 | mips64el
linux-headers-6.1.0-18-mips64r2el |   6.1.76-1 | mips64el
linux-headers-6.1.0-23-5kc-malta |   6.1.99-1 | mips64el
linux-headers-6.1.0-23-mips64r2el |   6.1.99-1 | mips64el
linux-headers-6.1.0-24-5kc-malta |  6.1.106-2 | mips64el
linux-headers-6.1.0-24-mips64r2el |  6.1.106-2 | mips64el
linux-image-6.1.0-18-5kc-malta |   6.1.76-1 | mips64el
linux-image-6.1.0-18-5kc-malta-dbg |   6.1.76-1 | mips64el
linux-image-6.1.0-18-mips64r2el |   6.1.76-1 | mips64el
linux-image-6.1.0-18-mips64r2el-dbg |   6.1.76-1 | mips64el
linux-image-6.1.0-23-5kc-malta |   6.1.99-1 | mips64el
linux-image-6.1.0-23-5kc-malta-dbg |   6.1.99-1 | mips64el
linux-image-6.1.0-23-mips64r2el |   6.1.99-1 | mips64el
linux-image-6.1.0-23-mips64r2el-dbg |   6.1.99-1 | mips64el
linux-image-6.1.0-24-5kc-malta |  6.1.106-2 | mips64el
linux-image-6.1.0-24-5kc-malta-dbg |  6.1.106-2 | mips64el
linux-image-6.1.0-24-mips64r2el |  6.1.106-2 | mips64el
linux-image-6.1.0-24-mips64r2el-dbg |  6.1.106-2 | mips64el
loop-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
loop-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
loop-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
loop-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
loop-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
loop-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
md-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
md-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
md-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
md-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
md-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
md-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
minix-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
minix-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
minix-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
minix-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
minix-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
minix-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
mmc-core-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
mmc-core-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
mmc-core-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
mmc-core-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
mmc-core-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
mmc-core-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
mmc-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
mmc-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
mmc-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
mmc-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
mmc-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
mmc-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
mouse-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
mouse-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
mouse-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
mouse-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
mouse-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
mouse-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
multipath-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
multipath-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
multipath-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
multipath-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
multipath-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
multipath-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
nbd-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
nbd-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
nbd-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
nbd-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
nbd-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
nbd-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
nfs-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
nfs-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
nfs-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
nfs-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
nfs-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
nfs-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
nic-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
nic-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
nic-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
nic-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
nic-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
nic-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
nic-shared-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
nic-shared-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
nic-shared-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
nic-shared-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
nic-shared-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
nic-shared-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
nic-usb-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
nic-usb-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
nic-usb-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
nic-usb-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
nic-usb-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
nic-usb-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
nic-wireless-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
nic-wireless-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
nic-wireless-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
nic-wireless-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
nic-wireless-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
nic-wireless-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
pata-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
pata-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
pata-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
pata-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
pata-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
pata-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
ppp-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
ppp-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
ppp-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
ppp-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
ppp-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
ppp-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
sata-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
sata-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
sata-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
sata-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
sata-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
sata-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
scsi-core-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
scsi-core-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
scsi-core-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
scsi-core-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
scsi-core-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
scsi-core-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
scsi-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
scsi-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
scsi-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
scsi-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
scsi-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
scsi-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
scsi-nic-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
scsi-nic-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
scsi-nic-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
scsi-nic-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
scsi-nic-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
scsi-nic-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
sound-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
sound-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
sound-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
sound-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
sound-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
sound-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
speakup-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
speakup-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
speakup-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
speakup-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
speakup-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
speakup-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
squashfs-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
squashfs-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
squashfs-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
squashfs-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
squashfs-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
squashfs-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
udf-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
udf-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
udf-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
udf-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
udf-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
udf-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
usb-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
usb-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
usb-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
usb-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
usb-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
usb-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
usb-serial-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
usb-serial-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
usb-serial-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
usb-serial-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
usb-serial-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
usb-serial-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
usb-storage-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
usb-storage-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
usb-storage-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
usb-storage-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
usb-storage-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
usb-storage-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el
xfs-modules-6.1.0-18-5kc-malta-di |   6.1.76-1 | mips64el
xfs-modules-6.1.0-18-mips64r2el-di |   6.1.76-1 | mips64el
xfs-modules-6.1.0-23-5kc-malta-di |   6.1.99-1 | mips64el
xfs-modules-6.1.0-23-mips64r2el-di |   6.1.99-1 | mips64el
xfs-modules-6.1.0-24-5kc-malta-di |  6.1.106-2 | mips64el
xfs-modules-6.1.0-24-mips64r2el-di |  6.1.106-2 | mips64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:38:23 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
acpi-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
acpi-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
ata-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
ata-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
ata-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
btrfs-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
btrfs-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
btrfs-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
cdrom-core-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
cdrom-core-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
cdrom-core-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
crc-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
crc-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
crc-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
crypto-dm-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
crypto-dm-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
crypto-dm-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
crypto-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
crypto-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
crypto-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
efi-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
efi-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
efi-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
event-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
event-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
event-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
ext4-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
ext4-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
ext4-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
f2fs-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
f2fs-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
f2fs-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
fat-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
fat-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
fat-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
fb-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
fb-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
fb-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
firewire-core-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
firewire-core-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
firewire-core-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
fuse-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
fuse-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
fuse-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
i2c-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
i2c-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
i2c-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
input-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
input-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
input-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
isofs-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
isofs-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
isofs-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
jfs-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
jfs-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
jfs-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
kernel-image-6.1.0-18-amd64-di |   6.1.76-1 | amd64
kernel-image-6.1.0-23-amd64-di |   6.1.99-1 | amd64
kernel-image-6.1.0-24-amd64-di |  6.1.106-2 | amd64
linux-image-6.1.0-18-amd64 |   6.1.76-1 | amd64
linux-image-6.1.0-18-cloud-amd64 |   6.1.76-1 | amd64
linux-image-6.1.0-18-rt-amd64 |   6.1.76-1 | amd64
linux-image-6.1.0-23-amd64 |   6.1.99-1 | amd64
linux-image-6.1.0-23-cloud-amd64 |   6.1.99-1 | amd64
linux-image-6.1.0-23-rt-amd64 |   6.1.99-1 | amd64
linux-image-6.1.0-24-amd64 |  6.1.106-2 | amd64
linux-image-6.1.0-24-cloud-amd64 |  6.1.106-2 | amd64
linux-image-6.1.0-24-rt-amd64 |  6.1.106-2 | amd64
loop-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
loop-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
loop-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
md-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
md-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
md-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
mmc-core-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
mmc-core-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
mmc-core-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
mmc-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
mmc-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
mmc-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
mouse-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
mouse-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
mouse-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
mtd-core-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
mtd-core-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
mtd-core-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
multipath-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
multipath-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
multipath-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
nbd-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
nbd-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
nbd-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
nic-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
nic-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
nic-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
nic-pcmcia-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
nic-pcmcia-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
nic-pcmcia-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
nic-shared-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
nic-shared-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
nic-shared-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
nic-usb-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
nic-usb-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
nic-usb-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
nic-wireless-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
nic-wireless-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
nic-wireless-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
pata-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
pata-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
pata-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
pcmcia-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
pcmcia-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
pcmcia-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
pcmcia-storage-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
pcmcia-storage-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
pcmcia-storage-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
ppp-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
ppp-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
ppp-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
rfkill-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
rfkill-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
rfkill-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
sata-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
sata-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
sata-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
scsi-core-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
scsi-core-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
scsi-core-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
scsi-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
scsi-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
scsi-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
scsi-nic-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
scsi-nic-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
scsi-nic-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
serial-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
serial-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
serial-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
sound-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
sound-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
sound-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
speakup-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
speakup-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
speakup-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
squashfs-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
squashfs-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
squashfs-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
udf-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
udf-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
udf-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
uinput-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
uinput-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
uinput-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
usb-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
usb-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
usb-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
usb-serial-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
usb-serial-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
usb-serial-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
usb-storage-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
usb-storage-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
usb-storage-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64
xfs-modules-6.1.0-18-amd64-di |   6.1.76-1 | amd64
xfs-modules-6.1.0-23-amd64-di |   6.1.99-1 | amd64
xfs-modules-6.1.0-24-amd64-di |  6.1.106-2 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-amd64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:38:34 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
ata-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
ata-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
btrfs-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
btrfs-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
btrfs-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
cdrom-core-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
cdrom-core-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
cdrom-core-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
crc-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
crc-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
crc-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
crypto-dm-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
crypto-dm-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
crypto-dm-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
crypto-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
crypto-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
crypto-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
efi-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
efi-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
efi-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
event-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
event-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
event-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
ext4-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
ext4-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
ext4-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
f2fs-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
f2fs-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
f2fs-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
fat-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
fat-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
fat-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
fb-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
fb-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
fb-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
fuse-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
fuse-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
fuse-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
i2c-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
i2c-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
i2c-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
input-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
input-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
input-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
isofs-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
isofs-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
isofs-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
jfs-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
jfs-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
jfs-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
kernel-image-6.1.0-18-arm64-di |   6.1.76-1 | arm64
kernel-image-6.1.0-23-arm64-di |   6.1.99-1 | arm64
kernel-image-6.1.0-24-arm64-di |  6.1.106-2 | arm64
leds-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
leds-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
leds-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
linux-image-6.1.0-18-arm64 |   6.1.76-1 | arm64
linux-image-6.1.0-18-cloud-arm64 |   6.1.76-1 | arm64
linux-image-6.1.0-18-rt-arm64 |   6.1.76-1 | arm64
linux-image-6.1.0-23-arm64 |   6.1.99-1 | arm64
linux-image-6.1.0-23-cloud-arm64 |   6.1.99-1 | arm64
linux-image-6.1.0-23-rt-arm64 |   6.1.99-1 | arm64
linux-image-6.1.0-24-arm64 |  6.1.106-2 | arm64
linux-image-6.1.0-24-cloud-arm64 |  6.1.106-2 | arm64
linux-image-6.1.0-24-rt-arm64 |  6.1.106-2 | arm64
loop-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
loop-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
loop-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
md-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
md-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
md-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
mmc-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
mmc-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
mmc-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
mtd-core-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
mtd-core-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
mtd-core-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
multipath-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
multipath-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
multipath-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
nbd-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
nbd-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
nbd-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
nic-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
nic-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
nic-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
nic-shared-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
nic-shared-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
nic-shared-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
nic-usb-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
nic-usb-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
nic-usb-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
nic-wireless-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
nic-wireless-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
nic-wireless-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
ppp-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
ppp-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
ppp-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
sata-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
sata-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
sata-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
scsi-core-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
scsi-core-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
scsi-core-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
scsi-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
scsi-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
scsi-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
scsi-nic-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
scsi-nic-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
scsi-nic-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
sound-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
sound-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
sound-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
speakup-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
speakup-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
speakup-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
squashfs-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
squashfs-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
squashfs-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
udf-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
udf-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
udf-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
uinput-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
uinput-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
uinput-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
usb-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
usb-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
usb-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
usb-serial-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
usb-serial-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
usb-serial-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
usb-storage-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
usb-storage-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
usb-storage-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64
xfs-modules-6.1.0-18-arm64-di |   6.1.76-1 | arm64
xfs-modules-6.1.0-23-arm64-di |   6.1.99-1 | arm64
xfs-modules-6.1.0-24-arm64-di |  6.1.106-2 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-arm64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:38:47 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-18-686-di |   6.1.76-1 | i386
acpi-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
acpi-modules-6.1.0-23-686-di |   6.1.99-1 | i386
acpi-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
acpi-modules-6.1.0-24-686-di |  6.1.106-2 | i386
acpi-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
ata-modules-6.1.0-18-686-di |   6.1.76-1 | i386
ata-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
ata-modules-6.1.0-23-686-di |   6.1.99-1 | i386
ata-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
ata-modules-6.1.0-24-686-di |  6.1.106-2 | i386
ata-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
btrfs-modules-6.1.0-18-686-di |   6.1.76-1 | i386
btrfs-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
btrfs-modules-6.1.0-23-686-di |   6.1.99-1 | i386
btrfs-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
btrfs-modules-6.1.0-24-686-di |  6.1.106-2 | i386
btrfs-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
cdrom-core-modules-6.1.0-18-686-di |   6.1.76-1 | i386
cdrom-core-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
cdrom-core-modules-6.1.0-23-686-di |   6.1.99-1 | i386
cdrom-core-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
cdrom-core-modules-6.1.0-24-686-di |  6.1.106-2 | i386
cdrom-core-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
crc-modules-6.1.0-18-686-di |   6.1.76-1 | i386
crc-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
crc-modules-6.1.0-23-686-di |   6.1.99-1 | i386
crc-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
crc-modules-6.1.0-24-686-di |  6.1.106-2 | i386
crc-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
crypto-dm-modules-6.1.0-18-686-di |   6.1.76-1 | i386
crypto-dm-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
crypto-dm-modules-6.1.0-23-686-di |   6.1.99-1 | i386
crypto-dm-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
crypto-dm-modules-6.1.0-24-686-di |  6.1.106-2 | i386
crypto-dm-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
crypto-modules-6.1.0-18-686-di |   6.1.76-1 | i386
crypto-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
crypto-modules-6.1.0-23-686-di |   6.1.99-1 | i386
crypto-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
crypto-modules-6.1.0-24-686-di |  6.1.106-2 | i386
crypto-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
efi-modules-6.1.0-18-686-di |   6.1.76-1 | i386
efi-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
efi-modules-6.1.0-23-686-di |   6.1.99-1 | i386
efi-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
efi-modules-6.1.0-24-686-di |  6.1.106-2 | i386
efi-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
event-modules-6.1.0-18-686-di |   6.1.76-1 | i386
event-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
event-modules-6.1.0-23-686-di |   6.1.99-1 | i386
event-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
event-modules-6.1.0-24-686-di |  6.1.106-2 | i386
event-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
ext4-modules-6.1.0-18-686-di |   6.1.76-1 | i386
ext4-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
ext4-modules-6.1.0-23-686-di |   6.1.99-1 | i386
ext4-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
ext4-modules-6.1.0-24-686-di |  6.1.106-2 | i386
ext4-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
f2fs-modules-6.1.0-18-686-di |   6.1.76-1 | i386
f2fs-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
f2fs-modules-6.1.0-23-686-di |   6.1.99-1 | i386
f2fs-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
f2fs-modules-6.1.0-24-686-di |  6.1.106-2 | i386
f2fs-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
fat-modules-6.1.0-18-686-di |   6.1.76-1 | i386
fat-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
fat-modules-6.1.0-23-686-di |   6.1.99-1 | i386
fat-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
fat-modules-6.1.0-24-686-di |  6.1.106-2 | i386
fat-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
fb-modules-6.1.0-18-686-di |   6.1.76-1 | i386
fb-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
fb-modules-6.1.0-23-686-di |   6.1.99-1 | i386
fb-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
fb-modules-6.1.0-24-686-di |  6.1.106-2 | i386
fb-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
firewire-core-modules-6.1.0-18-686-di |   6.1.76-1 | i386
firewire-core-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
firewire-core-modules-6.1.0-23-686-di |   6.1.99-1 | i386
firewire-core-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
firewire-core-modules-6.1.0-24-686-di |  6.1.106-2 | i386
firewire-core-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
fuse-modules-6.1.0-18-686-di |   6.1.76-1 | i386
fuse-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
fuse-modules-6.1.0-23-686-di |   6.1.99-1 | i386
fuse-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
fuse-modules-6.1.0-24-686-di |  6.1.106-2 | i386
fuse-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
i2c-modules-6.1.0-18-686-di |   6.1.76-1 | i386
i2c-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
i2c-modules-6.1.0-23-686-di |   6.1.99-1 | i386
i2c-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
i2c-modules-6.1.0-24-686-di |  6.1.106-2 | i386
i2c-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
input-modules-6.1.0-18-686-di |   6.1.76-1 | i386
input-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
input-modules-6.1.0-23-686-di |   6.1.99-1 | i386
input-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
input-modules-6.1.0-24-686-di |  6.1.106-2 | i386
input-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
isofs-modules-6.1.0-18-686-di |   6.1.76-1 | i386
isofs-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
isofs-modules-6.1.0-23-686-di |   6.1.99-1 | i386
isofs-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
isofs-modules-6.1.0-24-686-di |  6.1.106-2 | i386
isofs-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
jfs-modules-6.1.0-18-686-di |   6.1.76-1 | i386
jfs-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
jfs-modules-6.1.0-23-686-di |   6.1.99-1 | i386
jfs-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
jfs-modules-6.1.0-24-686-di |  6.1.106-2 | i386
jfs-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
kernel-image-6.1.0-18-686-di |   6.1.76-1 | i386
kernel-image-6.1.0-18-686-pae-di |   6.1.76-1 | i386
kernel-image-6.1.0-23-686-di |   6.1.99-1 | i386
kernel-image-6.1.0-23-686-pae-di |   6.1.99-1 | i386
kernel-image-6.1.0-24-686-di |  6.1.106-2 | i386
kernel-image-6.1.0-24-686-pae-di |  6.1.106-2 | i386
linux-image-6.1.0-18-686 |   6.1.76-1 | i386
linux-image-6.1.0-18-686-pae |   6.1.76-1 | i386
linux-image-6.1.0-18-rt-686-pae |   6.1.76-1 | i386
linux-image-6.1.0-23-686 |   6.1.99-1 | i386
linux-image-6.1.0-23-686-pae |   6.1.99-1 | i386
linux-image-6.1.0-23-rt-686-pae |   6.1.99-1 | i386
linux-image-6.1.0-24-686 |  6.1.106-2 | i386
linux-image-6.1.0-24-686-pae |  6.1.106-2 | i386
linux-image-6.1.0-24-rt-686-pae |  6.1.106-2 | i386
loop-modules-6.1.0-18-686-di |   6.1.76-1 | i386
loop-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
loop-modules-6.1.0-23-686-di |   6.1.99-1 | i386
loop-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
loop-modules-6.1.0-24-686-di |  6.1.106-2 | i386
loop-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
md-modules-6.1.0-18-686-di |   6.1.76-1 | i386
md-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
md-modules-6.1.0-23-686-di |   6.1.99-1 | i386
md-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
md-modules-6.1.0-24-686-di |  6.1.106-2 | i386
md-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
mmc-core-modules-6.1.0-18-686-di |   6.1.76-1 | i386
mmc-core-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
mmc-core-modules-6.1.0-23-686-di |   6.1.99-1 | i386
mmc-core-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
mmc-core-modules-6.1.0-24-686-di |  6.1.106-2 | i386
mmc-core-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
mmc-modules-6.1.0-18-686-di |   6.1.76-1 | i386
mmc-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
mmc-modules-6.1.0-23-686-di |   6.1.99-1 | i386
mmc-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
mmc-modules-6.1.0-24-686-di |  6.1.106-2 | i386
mmc-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
mouse-modules-6.1.0-18-686-di |   6.1.76-1 | i386
mouse-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
mouse-modules-6.1.0-23-686-di |   6.1.99-1 | i386
mouse-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
mouse-modules-6.1.0-24-686-di |  6.1.106-2 | i386
mouse-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
mtd-core-modules-6.1.0-18-686-di |   6.1.76-1 | i386
mtd-core-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
mtd-core-modules-6.1.0-23-686-di |   6.1.99-1 | i386
mtd-core-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
mtd-core-modules-6.1.0-24-686-di |  6.1.106-2 | i386
mtd-core-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
multipath-modules-6.1.0-18-686-di |   6.1.76-1 | i386
multipath-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
multipath-modules-6.1.0-23-686-di |   6.1.99-1 | i386
multipath-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
multipath-modules-6.1.0-24-686-di |  6.1.106-2 | i386
multipath-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
nbd-modules-6.1.0-18-686-di |   6.1.76-1 | i386
nbd-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
nbd-modules-6.1.0-23-686-di |   6.1.99-1 | i386
nbd-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
nbd-modules-6.1.0-24-686-di |  6.1.106-2 | i386
nbd-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
nic-modules-6.1.0-18-686-di |   6.1.76-1 | i386
nic-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
nic-modules-6.1.0-23-686-di |   6.1.99-1 | i386
nic-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
nic-modules-6.1.0-24-686-di |  6.1.106-2 | i386
nic-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
nic-pcmcia-modules-6.1.0-18-686-di |   6.1.76-1 | i386
nic-pcmcia-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
nic-pcmcia-modules-6.1.0-23-686-di |   6.1.99-1 | i386
nic-pcmcia-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
nic-pcmcia-modules-6.1.0-24-686-di |  6.1.106-2 | i386
nic-pcmcia-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
nic-shared-modules-6.1.0-18-686-di |   6.1.76-1 | i386
nic-shared-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
nic-shared-modules-6.1.0-23-686-di |   6.1.99-1 | i386
nic-shared-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
nic-shared-modules-6.1.0-24-686-di |  6.1.106-2 | i386
nic-shared-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
nic-usb-modules-6.1.0-18-686-di |   6.1.76-1 | i386
nic-usb-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
nic-usb-modules-6.1.0-23-686-di |   6.1.99-1 | i386
nic-usb-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
nic-usb-modules-6.1.0-24-686-di |  6.1.106-2 | i386
nic-usb-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
nic-wireless-modules-6.1.0-18-686-di |   6.1.76-1 | i386
nic-wireless-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
nic-wireless-modules-6.1.0-23-686-di |   6.1.99-1 | i386
nic-wireless-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
nic-wireless-modules-6.1.0-24-686-di |  6.1.106-2 | i386
nic-wireless-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
pata-modules-6.1.0-18-686-di |   6.1.76-1 | i386
pata-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
pata-modules-6.1.0-23-686-di |   6.1.99-1 | i386
pata-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
pata-modules-6.1.0-24-686-di |  6.1.106-2 | i386
pata-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
pcmcia-modules-6.1.0-18-686-di |   6.1.76-1 | i386
pcmcia-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
pcmcia-modules-6.1.0-23-686-di |   6.1.99-1 | i386
pcmcia-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
pcmcia-modules-6.1.0-24-686-di |  6.1.106-2 | i386
pcmcia-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
pcmcia-storage-modules-6.1.0-18-686-di |   6.1.76-1 | i386
pcmcia-storage-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
pcmcia-storage-modules-6.1.0-23-686-di |   6.1.99-1 | i386
pcmcia-storage-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
pcmcia-storage-modules-6.1.0-24-686-di |  6.1.106-2 | i386
pcmcia-storage-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
ppp-modules-6.1.0-18-686-di |   6.1.76-1 | i386
ppp-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
ppp-modules-6.1.0-23-686-di |   6.1.99-1 | i386
ppp-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
ppp-modules-6.1.0-24-686-di |  6.1.106-2 | i386
ppp-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
rfkill-modules-6.1.0-18-686-di |   6.1.76-1 | i386
rfkill-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
rfkill-modules-6.1.0-23-686-di |   6.1.99-1 | i386
rfkill-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
rfkill-modules-6.1.0-24-686-di |  6.1.106-2 | i386
rfkill-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
sata-modules-6.1.0-18-686-di |   6.1.76-1 | i386
sata-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
sata-modules-6.1.0-23-686-di |   6.1.99-1 | i386
sata-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
sata-modules-6.1.0-24-686-di |  6.1.106-2 | i386
sata-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
scsi-core-modules-6.1.0-18-686-di |   6.1.76-1 | i386
scsi-core-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
scsi-core-modules-6.1.0-23-686-di |   6.1.99-1 | i386
scsi-core-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
scsi-core-modules-6.1.0-24-686-di |  6.1.106-2 | i386
scsi-core-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
scsi-modules-6.1.0-18-686-di |   6.1.76-1 | i386
scsi-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
scsi-modules-6.1.0-23-686-di |   6.1.99-1 | i386
scsi-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
scsi-modules-6.1.0-24-686-di |  6.1.106-2 | i386
scsi-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
scsi-nic-modules-6.1.0-18-686-di |   6.1.76-1 | i386
scsi-nic-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
scsi-nic-modules-6.1.0-23-686-di |   6.1.99-1 | i386
scsi-nic-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
scsi-nic-modules-6.1.0-24-686-di |  6.1.106-2 | i386
scsi-nic-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
serial-modules-6.1.0-18-686-di |   6.1.76-1 | i386
serial-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
serial-modules-6.1.0-23-686-di |   6.1.99-1 | i386
serial-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
serial-modules-6.1.0-24-686-di |  6.1.106-2 | i386
serial-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
sound-modules-6.1.0-18-686-di |   6.1.76-1 | i386
sound-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
sound-modules-6.1.0-23-686-di |   6.1.99-1 | i386
sound-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
sound-modules-6.1.0-24-686-di |  6.1.106-2 | i386
sound-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
speakup-modules-6.1.0-18-686-di |   6.1.76-1 | i386
speakup-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
speakup-modules-6.1.0-23-686-di |   6.1.99-1 | i386
speakup-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
speakup-modules-6.1.0-24-686-di |  6.1.106-2 | i386
speakup-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
squashfs-modules-6.1.0-18-686-di |   6.1.76-1 | i386
squashfs-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
squashfs-modules-6.1.0-23-686-di |   6.1.99-1 | i386
squashfs-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
squashfs-modules-6.1.0-24-686-di |  6.1.106-2 | i386
squashfs-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
udf-modules-6.1.0-18-686-di |   6.1.76-1 | i386
udf-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
udf-modules-6.1.0-23-686-di |   6.1.99-1 | i386
udf-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
udf-modules-6.1.0-24-686-di |  6.1.106-2 | i386
udf-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
uinput-modules-6.1.0-18-686-di |   6.1.76-1 | i386
uinput-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
uinput-modules-6.1.0-23-686-di |   6.1.99-1 | i386
uinput-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
uinput-modules-6.1.0-24-686-di |  6.1.106-2 | i386
uinput-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
usb-modules-6.1.0-18-686-di |   6.1.76-1 | i386
usb-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
usb-modules-6.1.0-23-686-di |   6.1.99-1 | i386
usb-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
usb-modules-6.1.0-24-686-di |  6.1.106-2 | i386
usb-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
usb-serial-modules-6.1.0-18-686-di |   6.1.76-1 | i386
usb-serial-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
usb-serial-modules-6.1.0-23-686-di |   6.1.99-1 | i386
usb-serial-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
usb-serial-modules-6.1.0-24-686-di |  6.1.106-2 | i386
usb-serial-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
usb-storage-modules-6.1.0-18-686-di |   6.1.76-1 | i386
usb-storage-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
usb-storage-modules-6.1.0-23-686-di |   6.1.99-1 | i386
usb-storage-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
usb-storage-modules-6.1.0-24-686-di |  6.1.106-2 | i386
usb-storage-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386
xfs-modules-6.1.0-18-686-di |   6.1.76-1 | i386
xfs-modules-6.1.0-18-686-pae-di |   6.1.76-1 | i386
xfs-modules-6.1.0-23-686-di |   6.1.99-1 | i386
xfs-modules-6.1.0-23-686-pae-di |   6.1.99-1 | i386
xfs-modules-6.1.0-24-686-di |  6.1.106-2 | i386
xfs-modules-6.1.0-24-686-pae-di |  6.1.106-2 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-i386)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:39:17 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-18-common |   6.1.76-1 | all
linux-headers-6.1.0-18-common-rt |   6.1.76-1 | all
linux-headers-6.1.0-23-common |   6.1.99-1 | all
linux-headers-6.1.0-23-common-rt |   6.1.99-1 | all
linux-headers-6.1.0-24-common |  6.1.106-2 | all
linux-headers-6.1.0-24-common-rt |  6.1.106-2 | all
linux-support-6.1.0-18 |   6.1.76-1 | all
linux-support-6.1.0-23 |   6.1.99-1 | all
linux-support-6.1.0-24 |  6.1.106-2 | all

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:40:35 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

libstd-rust-web-1.70 | 1.70.0+dfsg1-7~deb12u2 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by rustc-web - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:41:16 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

libstd-rust-web-1.70 | 1.70.0+dfsg1-7~deb12u2 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by rustc-web - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:41:45 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

libstd-rust-web-1.70 | 1.70.0+dfsg1-7~deb12u2 | armhf

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by rustc-web - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:42:12 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

libstd-rust-web-1.70 | 1.70.0+dfsg1-7~deb12u2 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by rustc-web - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:42:57 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

libstd-rust-web-1.70 | 1.70.0+dfsg1-7~deb12u2 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by rustc-web - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:43:17 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

libstd-rust-web-1.70 | 1.70.0+dfsg1-7~deb12u2 | ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by rustc-web - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 31 Aug 2024 08:27:30 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

bcachefs-tools |       24-1 | source, amd64, arm64, armel, armhf, i386, ppc64el, s390x
Closed bugs: 1078543

------------------- Reason -------------------
RoM; buggy, obsolete
----------------------------------------------
=========================================================================
amd64-microcode (3.20240820.1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm (revert merged-usr changes from unstable)
 .
 amd64-microcode (3.20240820.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20240820
     * New AMD-SEV firmware from AMD upstream (20240820)
       + Updated SEV firmware:
         Family 17h models 30h-3fh: version 0.24 build 20
         Family 19h models 00h-0fh: version 1.55 build 21
         Family 19h models 10h-1fh: version 1.55 build 37
       + New SEV firmware:
         Family 19h models a0h-afh: version 1.55 build 37
   * SECURITY UPDATE (AMD-SB-3003):
     * Mitigates CVE-2023-20584: IOMMU improperly handles certain special
       address ranges with invalid device table entries (DTEs), which may allow
       an attacker with privileges and a compromised Hypervisor to induce DTE
       faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of
       guest integrity.
     * Mitigates CVE-2023-31356: Incomplete system memory cleanup in SEV
       firmware could allow a privileged attacker to corrupt guest private
       memory, potentially resulting in a loss of data integrity.
amd64-microcode (3.20240820.1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye
   * Revert merged-usr changes from unstable
   * Revert move to non-free-firmware
 .
 amd64-microcode (3.20240820.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20240820
     * New AMD-SEV firmware from AMD upstream (20240820)
       + Updated SEV firmware:
         Family 17h models 30h-3fh: version 0.24 build 20
         Family 19h models 00h-0fh: version 1.55 build 21
         Family 19h models 10h-1fh: version 1.55 build 37
       + New SEV firmware:
         Family 19h models a0h-afh: version 1.55 build 37
   * SECURITY UPDATE (AMD-SB-3003):
     * Mitigates CVE-2023-20584: IOMMU improperly handles certain special
       address ranges with invalid device table entries (DTEs), which may allow
       an attacker with privileges and a compromised Hypervisor to induce DTE
       faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of
       guest integrity.
     * Mitigates CVE-2023-31356: Incomplete system memory cleanup in SEV
       firmware could allow a privileged attacker to corrupt guest private
       memory, potentially resulting in a loss of data integrity.
amd64-microcode (3.20240710.2) unstable; urgency=high
 .
   * postrm: activate the update-initramfs dpkg trigger on remove/purge
     instead of always executing update-initramfs directly, just like it
     was done for postinst in 3.20240710.1: call update-initramfs directly
     only if the dpkg-trigger activation call fails.
amd64-microcode (3.20240710.2~deb12u1) bookworm; urgency=high
 .
   * Rebuild for bookworm (revert merged-usr changes from unstable)
 .
 amd64-microcode (3.20240710.2) unstable; urgency=high
 .
   * postrm: activate the update-initramfs dpkg trigger on remove/purge
     instead of always executing update-initramfs directly, just like it
     was done for postinst in 3.20240710.1: call update-initramfs directly
     only if the dpkg-trigger activation call fails.
 .
 amd64-microcode (3.20240710.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20240709-141-g59460076
     (closes: #1076128)
   * SECURITY UPDATE: Mitigates "Sinkclose" CVE-2023-31315 (AMD-SB-7014) on
     AMD Epyc processors: SMM lock bypass - Improper validation in a model
     specific register (MSR) could allow a malicious program with ring 0
     access (kernel) to modify SMM configuration while SMI lock is enabled,
     potentially leading to arbitrary code execution.
     Note: a firmware update is recommended for AMD Epyc (to protect the
     system as early as possible).  Many other AMD processor models are
     also vulnerable to SinkClose, and can only be fixed by a firmware
     update at this time.
   * Updated Microcode patches:
     + Family=0x17 Model=0x01 Stepping=0x02: Patch=0x0800126f
     + Family=0x17 Model=0x31 Stepping=0x00: Patch=0x0830107c
     + Family=0x19 Model=0x01 Stepping=0x00: Patch=0x0a00107a
     + Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a101248
     + Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa00215
     + Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001238
     + Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a101148
     + Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011d5
   * README.Debian: "late" microcode updates are unsupported in Debian
     (closes: #1074514)
   * postinst: use dpkg-trigger to activate update-initramfs, this enables
     dracut integration (closes: #1000193)
 .
 amd64-microcode (3.20240116.2) unstable; urgency=medium
 .
   * Add AMD-TEE firmware to the package (closes: #1062678)
     + amdtee: add amd_pmf TA firmware 20230906
   * debian: install amdtee to /lib/firmware/amdtee
   * debian/control: update short and long descriptions
   * debian/copyright: update with amd-pmf license
 .
 amd64-microcode (3.20240116.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20240115-80-gb4b04a5c
   * Updated Microcode patches:
     + Family=0x17 Model=0x31 Stepping=0x00: Patch=0x0830107b
     + Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011d3
     + Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001236
 .
 amd64-microcode (3.20231019.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20231019
   * Updated Microcode patches:
     + Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a101144
     + Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a101244
     + Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa00213
 .
 amd64-microcode (3.20230823.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20230919
     * New AMD-SEV firmware from AMD upstream (20230823)
       + Updated SEV firmware:
         Family 19h models 00h-0fh: version 1.55 build 8
       + New SEV firmware:
         Family 19h models 10h-1fh: version 1.55 build 21
   * amd-ucode: Add note on fam19h warnings.
amd64-microcode (3.20240710.2~deb11u1) bullseye; urgency=high
 .
   * Rebuild for bullseye
   * Revert merged-usr changes from unstable
   * Revert move to non-free-firmware
 .
 amd64-microcode (3.20240710.2) unstable; urgency=high
 .
   * postrm: activate the update-initramfs dpkg trigger on remove/purge
     instead of always executing update-initramfs directly, just like it
     was done for postinst in 3.20240710.1: call update-initramfs directly
     only if the dpkg-trigger activation call fails.
 .
 amd64-microcode (3.20240710.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20240709-141-g59460076
     (closes: #1076128)
   * SECURITY UPDATE: Mitigates "Sinkclose" CVE-2023-31315 (AMD-SB-7014) on
     AMD Epyc processors: SMM lock bypass - Improper validation in a model
     specific register (MSR) could allow a malicious program with ring 0
     access (kernel) to modify SMM configuration while SMI lock is enabled,
     potentially leading to arbitrary code execution.
     Note: a firmware update is recommended for AMD Epyc (to protect the
     system as early as possible).  Many other AMD processor models are
     also vulnerable to SinkClose, and can only be fixed by a firmware
     update at this time.
   * Updated Microcode patches:
     + Family=0x17 Model=0x01 Stepping=0x02: Patch=0x0800126f
     + Family=0x17 Model=0x31 Stepping=0x00: Patch=0x0830107c
     + Family=0x19 Model=0x01 Stepping=0x00: Patch=0x0a00107a
     + Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a101248
     + Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa00215
     + Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001238
     + Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a101148
     + Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011d5
   * README.Debian: "late" microcode updates are unsupported in Debian
     (closes: #1074514)
   * postinst: use dpkg-trigger to activate update-initramfs, this enables
     dracut integration (closes: #1000193)
 .
 amd64-microcode (3.20240116.2) unstable; urgency=medium
 .
   * Add AMD-TEE firmware to the package (closes: #1062678)
     + amdtee: add amd_pmf TA firmware 20230906
   * debian: install amdtee to /lib/firmware/amdtee
   * debian/control: update short and long descriptions
   * debian/copyright: update with amd-pmf license
 .
 amd64-microcode (3.20240116.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20240115-80-gb4b04a5c
   * Updated Microcode patches:
     + Family=0x17 Model=0x31 Stepping=0x00: Patch=0x0830107b
     + Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011d3
     + Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001236
 .
 amd64-microcode (3.20231019.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20231019
   * Updated Microcode patches:
     + Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a101144
     + Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a101244
     + Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa00213
 .
 amd64-microcode (3.20230823.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20230919
     * New AMD-SEV firmware from AMD upstream (20230823)
       + Updated SEV firmware:
         Family 19h models 00h-0fh: version 1.55 build 8
       + New SEV firmware:
         Family 19h models 10h-1fh: version 1.55 build 21
   * amd-ucode: Add note on fam19h warnings.
amd64-microcode (3.20240710.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20240709-141-g59460076
     (closes: #1076128)
   * SECURITY UPDATE: Mitigates "Sinkclose" CVE-2023-31315 (AMD-SB-7014) on
     AMD Epyc processors: SMM lock bypass - Improper validation in a model
     specific register (MSR) could allow a malicious program with ring 0
     access (kernel) to modify SMM configuration while SMI lock is enabled,
     potentially leading to arbitrary code execution.
     Note: a firmware update is recommended for AMD Epyc (to protect the
     system as early as possible).  Many other AMD processor models are
     also vulnerable to SinkClose, and can only be fixed by a firmware
     update at this time.
   * Updated Microcode patches:
     + Family=0x17 Model=0x01 Stepping=0x02: Patch=0x0800126f
     + Family=0x17 Model=0x31 Stepping=0x00: Patch=0x0830107c
     + Family=0x19 Model=0x01 Stepping=0x00: Patch=0x0a00107a
     + Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a101248
     + Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa00215
     + Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001238
     + Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a101148
     + Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011d5
   * README.Debian: "late" microcode updates are unsupported in Debian
     (closes: #1074514)
   * postinst: use dpkg-trigger to activate update-initramfs, this enables
     dracut integration (closes: #1000193)
amd64-microcode (3.20240116.2+nmu1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Install files into /usr instead of /. (Closes: 1059372)
amd64-microcode (3.20240116.2) unstable; urgency=medium
 .
   * Add AMD-TEE firmware to the package (closes: #1062678)
     + amdtee: add amd_pmf TA firmware 20230906
   * debian: install amdtee to /lib/firmware/amdtee
   * debian/control: update short and long descriptions
   * debian/copyright: update with amd-pmf license
 .
 amd64-microcode (3.20240116.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20240115-80-gb4b04a5c
   * Updated Microcode patches:
     + Family=0x17 Model=0x31 Stepping=0x00: Patch=0x0830107b
     + Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011d3
     + Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001236
amd64-microcode (3.20231019.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20231019
   * Updated Microcode patches:
     + Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a101144
     + Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a101244
     + Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa00213
amd64-microcode (3.20230823.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20230919
     * New AMD-SEV firmware from AMD upstream (20230823)
       + Updated SEV firmware:
         Family 19h models 00h-0fh: version 1.55 build 8
       + New SEV firmware:
         Family 19h models 10h-1fh: version 1.55 build 21
   * amd-ucode: Add note on fam19h warnings.
amd64-microcode (3.20230808.1.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20230804-6-gf2eb058a
     * Fixes for CVE-2023-20569 "AMD Inception" on AMD Zen4 processors
     (closes: #1043381)
   * WARNING: for proper operation on AMD Genoa and Bergamo processors,
     either up-to-date BIOS (with AGESA 1.0.0.8 or newer) or up-to-date
     Linux kernels (minimal versions on each active Linux stable branch:
     v4.19.289 v5.4.250 v5.10.187 v5.15.120 v6.1.37 v6.3.11 v6.4.1)
     are *required*
   * New Microcode patches:
     +  Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a10113e
     +  Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a10123e
     +  Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa00212
     +  Family=0x19 Model=0xa0 Stepping=0x01: Patch=0x0aa00116
   * README: update for new release
   * debian/NEWS: AMD Genoa/Bergamo kernel version restrictions
   * debian/changelog: update entry for release 3.20230719.1, noting
     that it included fixes for "AMD Inception" for Zen3 processors.
     We did not know about AMD Inception at the time, but we always
     include all available microcode updates when issuing a new
     package, so we lucked out.
   * debian/changelog: correct some information in 3.20230808.1
     entry and reupload as 3.20230808.1.1.  There's no Zenbleed
     for Zen4... oops!

ansible (7.7.0+dfsg-3+deb12u1) bookworm; urgency=medium
 .
   * New stable release (Closes: #1069891)
   * Put ansible under the Debian Python Team umbrella
   * d/gbp.conf: set merge-mode replace by default
   * d/gbp.conf: Switch to DEP-14 branch layout
   * d/gbp.conf: Sign tags by default
   * d/gitlab-ci.yml: Run CI/CD tests against bookworm
   * autopkgtests: Use the same scripts as from the unstable branch
   * autopkgtests: Update package dependencies
   * autopkgtests: Update list of flaky tests
   * Update amazon.aws ec2_key module documentation to fix CVE-2023-4237.
   * d/control: update VCS links
ansible (7.7.0+dfsg-3) unstable; urgency=medium
 .
   * Fix issue with ansible.builtin.copy when using libvirt connection plugin
     upstream bug:
     https://github.com/ansible-collections/community.libvirt/issues/161
   * Update lintian overrides
ansible (7.7.0+dfsg-2) unstable; urgency=medium
 .
   * Fix warning when using libvirt connection plugin
   * Fix libvirt connection plugin encoding errors on Windows guests
ansible (7.7.0+dfsg-1) unstable; urgency=medium
 .
   * d/watch: Lock into v7.x.x for now.
   * New upstream release

ansible-core (2.14.16-0+deb12u1) bookworm; urgency=medium
 .
   * New stable release (Closes: #1070193)
   * New upstream version 2.14.16
   * Bugfix-only release to bookworm, fixing the following security issues:
     - Address issue where ANSIBLE_NO_LOG was ignored (CVE-2024-0690)
     - Address issues where internal templating can cause unsafe variables to
       lose their unsafe designation (CVE-2023-5764)
     - Prevent roles from using symlinks to overwrite files outside of the
       installation directory (CVE-2023-5115)
   * Update d/gbp.conf to point to bookworm
   * Update d/control Vcs-Git field to point to bookworm
   * Update watch file to accomodate a common upstream typo
   * d/gbp.conf: Update upstream branch
   * d/gbp.conf: set merge-mode replace by default
   * d/gbp.conf: Sign tags by default
   * autopkgtests: Add dep to python3-systemd
ansible-core (2.14.13-1) unstable; urgency=medium
 .
   * New upstream version 2.14.13
   * Update package to conform to DEP-14 packaging layout
   * Update dep3 patch headers
ansible-core (2.14.11-2) unstable; urgency=medium
 .
   * Enforce locale to ensure it builds reproducibly
   * Fix facter when puppet not present (Closes: #1055616)
ansible-core (2.14.11-1) unstable; urgency=medium
 .
   * New upstream version 2.14.11
   * Fix galaxy tests
   * Fix lintian override
   * Update changelog and release to unstable
ansible-core (2.14.10-1) unstable; urgency=medium
 .
   * New upstream release
ansible-core (2.14.9-2) unstable; urgency=medium
 .
   * Fix unit tests
ansible-core (2.14.9-1) unstable; urgency=medium
 .
   * New upstream version 2.14.9
   * Refresh patches
   * Adapt to upstream change of man page building
   * Fix double-build failure (Closes: #1043680)
ansible-core (2.14.8-1) unstable; urgency=medium
 .
   * New upstream release
ansible-core (2.14.7-1) unstable; urgency=medium
 .
   * New upstream release
   * Refresh 0005-use-py3.patch
   * Drop 0010-fix-json-uri-subtype.patch (applied upstream)
ansible-core (2.14.6-1) unstable; urgency=medium
 .
   * New upstream release
   * d/watch: Remove signature check
   * d/control: Recommend python3-passlib (Closes: #1034251)
   * d/control: Update python3-resolvelib version dependency (Closes: #1037932, #1037443)
   * uri: fix search for json types to include strings in the format xxx/yyy+json
     (Closes: #1037126)

aom (3.6.0-1+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2024-5171

apache2 (2.4.62-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 2.4.62 (Closes: CVE-2024-40725, CVE-2024-40898)
apache2 (2.4.62-1~deb11u1) bullseye; urgency=medium
 .
   * New upstream version (Closes: CVE-2024-40725, CVE-2024-40898)
apache2 (2.4.61-1) unstable; urgency=medium
 .
   * New upstream version 2.4.61
apache2 (2.4.61-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version (CLoses: CVE-2024-36387, CVE-2024-38472,
     CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476,
     CVE-2024-38477, CVE-2024-39573, CVE-2024-39884)
   * Unfuzz patches
apache2 (2.4.61-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream version (CLoses: CVE-2024-36387, CVE-2024-38472,
     CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476,
     CVE-2024-38477, CVE-2024-39573, CVE-2024-39884)
   * Update test framework
   * Unfuzz patches
apache2 (2.4.60-1) unstable; urgency=medium
 .
   [ Bastien Roucariès ]
   * Forward port CVE-2023-25690 uwsgi tests
   * Fix depends of uwsgi test
   * Use python3 uwsgi plugin
   * Encode bytes for uwsgi test
 .
   [ Bryce Harrington ]
   * Add UFW profile integration (Closes: #1071705)
 .
   [Chris Murray]
   * Use https instead of http in doc (LP: #2045055)
 .
   [ Yadd ]
   * Bump liblua from liblua5.3-dev to liblua5.4-dev (Closes: #1071701)
   * Update test framework
   * releasing package apache2 version 2.4.59-1~deb12u1
   * New upstream version (CLoses: CVE-2024-36387, CVE-2024-38472,
     CVE-2024-38473, CVE-2024-38474, CVE-2024-38475, CVE-2024-38476,
     CVE-2024-38477, CVE-2024-39573)
   * Unfuzz patches
apache2 (2.4.59-2) unstable; urgency=medium
 .
   * Breaks against fossil due to CVE-2024-24795 follows up
apache2 (2.4.59-1) unstable; urgency=medium
 .
   [ Stefan Fritsch ]
   * Remove old transitional packages libapache2-mod-md and
     libapache2-mod-proxy-uwsgi. Closes: #1032628
 .
   [ Yadd ]
   * mod_proxy_connect: disable AllowCONNECT by default (Closes: #1054564)
   * Refresh patches
   * New upstream version 2.4.59
   * Refresh patches
   * Update patches
   * Update test framework

base-files (12.4+deb12u7) bookworm; urgency=medium
 .
   * Change /etc/debian_version to 12.7, for Debian 12.7 point release.

bind9 (1:9.18.28-1~deb12u2) bookworm-security; urgency=medium
 .
   * Fix the assertion failure in samba-libs DLZ module. (Closes #1074378)
bind9 (1:9.18.28-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream version 9.18.28
    - CVE-2024-0760: A flood of DNS messages over TCP may make the server
      unstable
    - CVE-2024-1737: BIND's database will be slow if a very large number of
      RRs exist at the same name
    - CVE-2024-1975: SIG(0) can be used to exhaust CPU resources
    - CVE-2024-4076: Assertion failure when serving both stale cache data
      and authoritative zone content

bubblewrap (0.8.0-2+deb12u1) bookworm-security; urgency=high
 .
   * d/gbp.conf: Use debian/bookworm packaging branch for Debian 12
   * d/p/Add-bind-fd-and-ro-bind-fd-to-let-you-bind-a-O_PATH-fd.patch:
     Backport new --[ro-]bind-fd feature from upstream release 0.10.0.
     This is necessary to resolve CVE-2024-42472 in Flatpak without
     introducing a potentially exploitable race condition.

cacti (1.2.24+ds1-1+deb12u4) bookworm; urgency=medium
 .
   * Non-maintainer upload by the LTS Security Team.
   * Add SALSA-CI.
   * Backport autopkgtest from trixie.
cacti (1.2.24+ds1-1+deb12u3) bookworm; urgency=medium
 .
   * Non-maintainer upload by the LTS Security Team.
   * Fix CVE-2024-25641: RCE vulnerability when importing packages
     An arbitrary file write vulnerability, exploitable through the
     "Package Import" feature, allows authenticated users having
     the "Import Templates" permission to execute arbitrary PHP
     code on the web server (RCE).
   * Fix CVE-2024-29894: XSS vulnerability when using JavaScript
     based messaging API.
     raise_message_javascript from lib/functions.php now uses purify.js
     to fix CVE-2023-50250 (among others).
     However it still generates the code out of unescaped
     PHP variables $title and $header.
     If those variables contain single quotes, they can be used
     to inject JavaScript code.
   * Fix CVE-2024-31443. XSS vulnerability when managing data queries
     Some of the data stored in form_save() function in data_queries.php
     is not thoroughly checked and is used to concatenate the
     HTML statement in grow_right_pane_tree() function from lib/html.php,
     finally resulting in XSS.
   * Fix CVE-2024-31444: XSS vulnerability when reading tree rules with
     Automation API.
     Some of the data stored in automation_tree_rules_form_save() function
     in automation_tree_rules.php is not thoroughly checked and is used
     to concatenate the HTML statement in form_confirm() function from
     lib/html.php , finally resulting in XSS.
   * Fix CVE-2024-31445: SQL injection vulnerability
     A SQL injection vulnerability in `automation_get_new_graphs_sql`
     function of `api_automation.php` allows authenticated users to exploit
     these SQL injection vulnerabilities to perform privilege escalation
     and remote code execution. In `api_automation.php` line 856, the
     `get_request_var('filter')` is being concatenated into the SQL
     statement without any sanitization. In `api_automation.php` line 717,
     The filter of `'filter'` is `FILTER_DEFAULT`, which means there is no
     filter for it
   * Fix CVE-2024-31458: SQL injection vulnerability
     Some of the data stored in `form_save()` function in
     `graph_template_inputs.php` is not thoroughly checked and is used to
     concatenate the SQL statement in
     `draw_nontemplated_fields_graph_item()` function from
     `lib/html_form_templates.php` , finally resulting in SQL injection
   * Fix CVE-2024-31459: Remote code execution
     There is a file inclusion issue in the lib/plugin.php file.
     Combined with SQL injection vulnerabilities, RCE can be implemented.
   * Fix CVE-2024-31460: SQL code injection
     Some of the data stored in `automation_tree_rules.php` is not
     thoroughly checked and is used to concatenate the SQL statement in
     `create_all_header_nodes()` function from `lib/api_automation.php` ,
     finally resulting in SQL injection. Using SQL based secondary
     injection technology, attackers can modify the contents of the Cacti
     database, and based on the modified content, it may be possible to
     achieve further impact, such as arbitrary file reading, and even
     remote code execution through arbitrary file writing
   * Fix CVE-2024-34340: type juggling vulnerability
     Cacti calls `compat_password_hash` when users set their
     password. `compat_password_hash` use `password_hash` if there is it,
     else use `md5`. When verifying password, it calls
     `compat_password_verify`. In `compat_password_verify`,
     `password_verify` is called if there is it, else use
     `md5`. `password_verify` and `password_hash` are supported on PHP <
     5.5.0, following PHP manual. The vulnerability is in
     `compat_password_verify`. Md5-hashed user input is compared with
     correct password in database by `$md5 == $hash`. It is a loose
     comparison, not `===`.

calamares-settings-debian (12.0.9-1+deb12u1) bookworm; urgency=medium
 .
   * Fix Xfce launcher permission issue (Closes: #1037299)
     - Add new dependency: libglib2.0-bin

calibre (6.13.0+repack-2+deb12u4) bookworm; urgency=medium
 .
   * Fix #2075131 [Private bug](https://bugs.launchpad.net/calibre/+bug/2075131)
     (Fix for CVE-2024-7009)
   * Fix #2075130 [Private bug](https://bugs.launchpad.net/calibre/+bug/2075130)
     (Fix for CVE-2024-7008)
   * Fix #2075128 [Private bug](https://bugs.launchpad.net/calibre/+bug/2075128)
     (Fix for CVE-2024-6782)
   * Fix #2076515 [calibredb list command ignores fields
     option](https://bugs.launchpad.net/calibre/+bug/2076515)
     Add fixup to CVE-2024-6782 .
     See also Debian bug 1079277.
     > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1079277

choose-mirror (2.123+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Update Mirrors.masterlist.

chromium (128.0.6613.84-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-7964: Use after free in Passwords. Reported by Anonymous.
     - CVE-2024-7965: Inappropriate implementation in V8. Reported by TheDog.
     - CVE-2024-7966: Out of bounds memory access in Skia.
       Reported by Renan Rios (@HyHy100).
     - CVE-2024-7967: Heap buffer overflow in Fonts.
       Reported by Tashita Software Security.
     - CVE-2024-7968: Use after free in Autofill.
       Reported by Han Zheng (HexHive).
     - CVE-2024-7969: Type Confusion in V8.
       Reported by CFF of Topsec Alpha Team.
     - CVE-2024-7971: Type confusion in V8. Reported by Microsoft Threat
       Intelligence Center (MSTIC), Microsoft Security Response Center (MSRC).
     - CVE-2024-7972: Inappropriate implementation in V8.
       Reported by Simon Gerst (intrigus-lgtm).
     - CVE-2024-7973: Heap buffer overflow in PDFium. Reported by soiax.
     - CVE-2024-7974: Insufficient data validation in V8 API.
       Reported by bowu(@gocrashed).
     - CVE-2024-7975: Inappropriate implementation in Permissions.
       Reported by Thomas Orlita.
     - CVE-2024-7976: Inappropriate implementation in FedCM.
       Reported by Alesandro Ortiz.
     - CVE-2024-7977: Insufficient data validation in Installer.
       Reported by Kim Dong-uk (@justlikebono).
     - CVE-2024-7978: Insufficient policy enforcement in Data Transfer.
       Reported by NDevTK.
     - CVE-2024-7979: Insufficient data validation in Installer.
       Reported by VulnNoob.
     - CVE-2024-7980: Insufficient data validation in Installer.
       Reported by VulnNoob.
     - CVE-2024-7981: Inappropriate implementation in Views.
       Reported by Thomas Orlita.
     - CVE-2024-8033: Inappropriate implementation in WebApp Installs.
       Reported by Lijo A.T.
     - CVE-2024-8034: Inappropriate implementation in Custom Tabs.
       Reported by Bharat (mrnoob).
     - CVE-2024-8035: Inappropriate implementation in Extensions.
       Reported by Microsoft.
   * d/copyright: delete third_party/siso/ which contains binaries.
   * d/rules: set safe_browsing_use_unrar=false to disable unrar.
   * d/patches:
     - fixes/blink-frags.patch: drop, merged upstream.
     - fixes/stats-collector.patch: drop, upstream deleted broken code.
     - fixes/chromium-browser-ui-missing-deps.patch: drop, fixed upstream.
     - upstream/armhf-ftbfs.patch: drop, merged upstream.
     - upstream/containers-header.patch: drop, merged upstream.
     - upstream/crabbyav1f.patch: drop, merged upstream.
     - upstream/lock-impl.patch: drop, merged upstream.
     - upstream/paint-layer-header.patch: drop, merged upstream.
     - disable/unrar.patch: drop, merged upstream w/ build arg.
     - bookworm/nvt.patch: drop, no longer needed.
     - fixes/ps-print.patch: refresh.
     - system/openjpeg.patch: refresh.
     - bookworm/clang16.patch: refresh & remove another unsupported option.
     - bookworm/constexpr.patch: refresh & add more fixes.
     - bookworm/lex-3way.patch: pull in another STL function from clang-17.
     - bookworm/blink-attrib.patch: add build fix to reorder __attribute__.
     - fixes/highway-include-path.patch: upstream fixed the original issue
       in a broken way, making this worse. Add more to this patch to work
       around that.
     - bookworm/bubble-contents.patch: refresh.
     - bookworm/crabbyav1f.patch: refresh.
     - bookworm/gn-absl.patch: refresh.
 .
   [ Daniel Richard G. ]
   * d/rules: Parameterize Rust sysroot to simplify using a different one.
   * d/patches:
     - bookworm/highway-blink.patch: Avoid armhf/arm64 FTBFS by disabling
       Blink feature that requires newer libhwy-dev version.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/dawn-fix-typos.patch: Refresh for upstream changes
     - third_party/use-sysconf-page-size-on-ppc64.patch: Refresh for upstream
       changes
     - third_party/0002-Add-PPC64-generated-files-for-boringssl.patch:
       Refresh for upstream changes
     - workarounds/HACK-debian-clang-disable-base-musttail.patch: Disable
       musttail on ppc64el platforms
 .
 chromium (127.0.6533.119-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
   * d/patches/upstream/armhf-ftbfs.patch: armhf FTBFS fix from upstream.
 .
   [ Daniel Richard G. ]
   * d/patches:
     - ppc64le/crashpad/0002-Include-cstddef-to-fix-build.patch: Drop, as
       the original FTBFS that this fixed is no longer reproducible.
   * d/rules: Add to ppc64el CXXFLAGS to quash copious AltiVec warnings.
chromium (127.0.6533.119-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
   * d/patches/upstream/armhf-ftbfs.patch: armhf FTBFS fix from upstream.
 .
   [ Daniel Richard G. ]
   * d/patches:
     - ppc64le/crashpad/0002-Include-cstddef-to-fix-build.patch: Drop, as
       the original FTBFS that this fixed is no longer reproducible.
     - ppc64le/fixes/fix-different-data-layouts.patch: Fix ppc64el FTBFS due
       to minor LLVM data-layout clash between older clang and newer rustc.
   * d/rules: Add to ppc64el CXXFLAGS to quash copious AltiVec warnings.
chromium (127.0.6533.119-1~deb13u1) trixie; urgency=high
 .
   * Rebuild for trixie.
   * Revert libxml2-dev versioned build-dep, and re-add
     d/patches/bookworm/libxml/parseerr.patch.
chromium (127.0.6533.99-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-7532: Out of bounds memory access in ANGLE.
       Reported by wgslfuzz.
     - CVE-2024-7533: Use after free in Sharing. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
     - CVE-2024-7550: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-7534: Heap buffer overflow in Layout.
       Reported by Tashita Software Security.
     - CVE-2024-7535: Inappropriate implementation in V8.
       Reported by Tashita Software Security.
     - CVE-2024-7536: Use after free in WebAudio.
       Reported by Cassidy Kim(@cassidy6564).
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - core/add-ppc64-architecture-to-extensions.diff: Fix runtime assertion
       trap on ppc64el systems
 .
   [ Daniel Richard G. ]
   * Enable ThinLTO (slower linking, faster runtime) on archs that can
     support it (closes: #1033305).
   * Avoid some hard-coded Debian references to simplify package builds for
     other distributions, e.g. Ubuntu.
   * d/patches:
     - bookworm/constexpr.patch: Add no_destroy attributes to quash many
       "declaration requires an exit-time destructor" warnings.
     - fixes/highway-include-path.patch: New patch to fix highway.h path.
 .
   [ Grzegorz Szymaszek ]
   * Use https instead of http in initial_bookmarks.html.
chromium (127.0.6533.99-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream security release.
     - CVE-2024-7532: Out of bounds memory access in ANGLE.
       Reported by wgslfuzz.
     - CVE-2024-7533: Use after free in Sharing. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
     - CVE-2024-7550: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-7534: Heap buffer overflow in Layout.
       Reported by Tashita Software Security.
     - CVE-2024-7535: Inappropriate implementation in V8.
       Reported by Tashita Software Security.
     - CVE-2024-7536: Use after free in WebAudio.
       Reported by Cassidy Kim(@cassidy6564).
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - core/add-ppc64-architecture-to-extensions.diff: Fix runtime assertion
       trap on ppc64el systems
 .
   [ Daniel Richard G. ]
   * Enable ThinLTO (slower linking, faster runtime) on archs that can
     support it (closes: #1033305).
   * Avoid some hard-coded Debian references to simplify package builds for
     other distributions, e.g. Ubuntu.
   * d/patches:
     - bookworm/constexpr.patch: Add no_destroy attributes to quash many
       "declaration requires an exit-time destructor" warnings.
     - fixes/highway-include-path.patch: New patch to fix highway.h path.
 .
   [ Grzegorz Szymaszek ]
   * Use https instead of http in initial_bookmarks.html.
chromium (127.0.6533.88-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-6988: Use after free in Downloads. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
     - CVE-2024-6989: Use after free in Loader. Reported by Anonymous.
     - CVE-2024-6991: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-6992: Out of bounds memory access in ANGLE.
       Reported by Xiantong Hou of Wuheng Lab and Pisanbao.
     - CVE-2024-6993: Inappropriate implementation in Canvas.
       Reported by Anonymous.
     - CVE-2024-6994: Heap buffer overflow in Layout.
       Reported by Huang Xilin of Ant Group Light-Year Security Lab.
     - CVE-2024-6995: Inappropriate implementation in Fullscreen.
       Reported by Alesandro Ortiz.
     - CVE-2024-6996: Race in Frames.
       Reported by Louis Jannett (Ruhr University Bochum).
     - CVE-2024-6997: Use after free in Tabs.
       Reported by Sven Dysthe (@svn-dys).
     - CVE-2024-6998: Use after free in User Education.
       Reported by Sven Dysthe (@svn-dys).
     - CVE-2024-6999: Inappropriate implementation in FedCM.
       Reported by Alesandro Ortiz.
     - CVE-2024-7000: Use after free in CSS. Reported by Anonymous.
     - CVE-2024-7001: Inappropriate implementation in HTML.
       Reported by Jake Archibald.
     - CVE-2024-7003: Inappropriate implementation in FedCM.
       Reported by Alesandro Ortiz.
     - CVE-2024-7004: Insufficient validation of untrusted input in Safe
       Browsing. Reported by Anonymous.
     - CVE-2024-7005: Insufficient validation of untrusted input in Safe
       Browsing. Reported by Umar Farooq.
     - CVE-2024-6990: Uninitialized Use in Dawn. Reported by gelatin dessert.
     - CVE-2024-7255: Out of bounds read in WebTransport.
       Reported by Marten Richter.
     - CVE-2024-7256: Insufficient data validation in Dawn.
       Reported by gelatin dessert.
   * Switch from building against (gcc's) libstdc++ to (clang's) libc++.
     Upstream is playing fast and loose with memory in ways that results
     in crashes with gcc's stricter libstdc++, but not with clang's libc++
     (which allows accessing deleting memory apparently). We can't maintain
     workarounds any more, and upstream really doesn't care (see, for
     example, https://crbug.com/346174906 , where they add workarounds only
     for their ASAN memory checker).
   * d/copyright:
     - delete new rust, cargo, llvm, and node binaries.
     - delete third_party/zstd so we can link against system zstd.
     - stop deleting the bundled woff, snappy, and jsoncpp; those can't be
       dynamically linked against with clang's libc++.
   * d/control:
     - build-dep against libzstd-dev and bindgen.
     - drop build-dep on libwoff-dev, libsnappy-dev, libjsoncpp-dev, and
       add build-deps on libc++-16-dev / libc++abi-16-dev.
   * d/rules:
     - drop use_goma=false (upstream switched to rbe).
     - set rust_bindgen_root.
     - rework get-orig-source to not use mk-origtargz, which is
     incredibly slow (total run 45 mins for the current 6.2G upstream
     release). Instead, use d/scripts/get-exludes.pl and tar's
     --exclude-from to drastically speed things up (total run now takes
     8 mins).
   * d/patches:
     - upstream/tabstrip-include.patch: drop, merged upstream.
     - upstream/quiche-deque.patch: drop, merged upstream.
     - upstream/gpu-header.patch: drop, merged upstream.
     - upstream/blink-header.patch: drop, merged upstream.
     - upstream/blink-header2.patch: drop, merged upstream.
     - upstream/blink-header3.patch: drop, merged upstream.
     - upstream/realtime-reporting.patch: drop, merged upstream.
     - upstream/urlvisit-header.patch: drop, merged upstream.
     - upstream/accessibility-format.patch: drop, merged upstream.
     - upstream/observer.patch: drop, merged upstream.
     - bookworm/clang16.patch: refresh.
     - bookworm/rust-downgrade-osstr-users.patch: refresh w/ minor changes.
     - ungoogled/disable-privacy-sandbox.patch: refresh.
     - disable/signin.patch: upstream dropped prefs::kAutologinEnabled.
     - upstream/crabbyav1f.patch: add build fix pulled from upstream.
     - upstream/lock-impl.patch: add build fix pulled from upstream.
     - upstream/containers-header.patch: add build fix pulled from upstream.
     - upstream/paint-layer-header.patch: add build fix pulled from upstream
     - fixes/bindgen.patch: work around bindgen-related things (hopefully
       correctly?)
     - bookworm/lex-3way.patch: add patch to support
       std::lexicographical_compare_three_way, which was added in clang-17.
     - bookworm/traitors.patch: another clang-16 hack; backport
       pointer_traits.h from libc++-18-dev to work around clang
       std::to_address() issue.
     - bookworm/constexpr.patch: add more of the usual constexpr
       workarounds; only needed for clang-16.
     - fixes/absl-optional.patch: drop, only needed for libstdc++-dev.
     - fixes/bad-font-gc*: drop, only needed for libstdc++-dev.
     - fixes/chromium-browser-ui-missing-deps.patch: add a bunch of
       mojo-related dependency build fixes.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/fixes/memory-allocator-dcheck-assert-fix.patch: Fix assert on
       64k page systems such as aarch64 and ppc64el
   * d/patches/ppc64le:
     - ffmpeg/0001-Add-support-for-ppc64.patch: Drop, no longer needed
     - third_party/use-sysconf-page-size-on-ppc64.patch: Refresh for upstream
       changes
chromium (127.0.6533.88-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2024-6988: Use after free in Downloads. Reported by
       lime(@limeSec_) from TIANGONG Team of Legendsec at QI-ANXIN Group.
     - CVE-2024-6989: Use after free in Loader. Reported by Anonymous.
     - CVE-2024-6991: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-6992: Out of bounds memory access in ANGLE.
       Reported by Xiantong Hou of Wuheng Lab and Pisanbao.
     - CVE-2024-6993: Inappropriate implementation in Canvas.
       Reported by Anonymous.
     - CVE-2024-6994: Heap buffer overflow in Layout.
       Reported by Huang Xilin of Ant Group Light-Year Security Lab.
     - CVE-2024-6995: Inappropriate implementation in Fullscreen.
       Reported by Alesandro Ortiz.
     - CVE-2024-6996: Race in Frames.
       Reported by Louis Jannett (Ruhr University Bochum).
     - CVE-2024-6997: Use after free in Tabs.
       Reported by Sven Dysthe (@svn-dys).
     - CVE-2024-6998: Use after free in User Education.
       Reported by Sven Dysthe (@svn-dys).
     - CVE-2024-6999: Inappropriate implementation in FedCM.
       Reported by Alesandro Ortiz.
     - CVE-2024-7000: Use after free in CSS. Reported by Anonymous.
     - CVE-2024-7001: Inappropriate implementation in HTML.
       Reported by Jake Archibald.
     - CVE-2024-7003: Inappropriate implementation in FedCM.
       Reported by Alesandro Ortiz.
     - CVE-2024-7004: Insufficient validation of untrusted input in Safe
       Browsing. Reported by Anonymous.
     - CVE-2024-7005: Insufficient validation of untrusted input in Safe
       Browsing. Reported by Umar Farooq.
     - CVE-2024-6990: Uninitialized Use in Dawn. Reported by gelatin dessert.
     - CVE-2024-7255: Out of bounds read in WebTransport.
       Reported by Marten Richter.
     - CVE-2024-7256: Insufficient data validation in Dawn.
       Reported by gelatin dessert.
   * Switch from building against (gcc's) libstdc++ to (clang's) libc++.
     Upstream is playing fast and loose with memory in ways that results
     in crashes with gcc's stricter libstdc++, but not with clang's libc++
     (which allows accessing deleting memory apparently). We can't maintain
     workarounds any more, and upstream really doesn't care (see, for
     example, https://crbug.com/346174906 , where they add workarounds only
     for their ASAN memory checker).
   * d/copyright:
     - delete new rust, cargo, llvm, and node binaries.
     - delete third_party/zstd so we can link against system zstd.
     - stop deleting the bundled woff, snappy, and jsoncpp; those can't be
       dynamically linked against with clang's libc++.
   * d/control:
     - build-dep against libzstd-dev and bindgen.
     - drop build-dep on libwoff-dev, libsnappy-dev, libjsoncpp-dev, and
       add build-deps on libc++-16-dev / libc++abi-16-dev.
   * d/rules:
     - drop use_goma=false (upstream switched to rbe).
     - set rust_bindgen_root.
     - rework get-orig-source to not use mk-origtargz, which is
     incredibly slow (total run 45 mins for the current 6.2G upstream
     release). Instead, use d/scripts/get-exludes.pl and tar's
     --exclude-from to drastically speed things up (total run now takes
     8 mins).
     - include bindgen 0.66.1-3 packages from snapshot.debian.org, as
       bookworm's bindgen 0.60.1 is too old. The packages are
       unpacked during build.
   * d/patches:
     - upstream/tabstrip-include.patch: drop, merged upstream.
     - upstream/quiche-deque.patch: drop, merged upstream.
     - upstream/gpu-header.patch: drop, merged upstream.
     - upstream/blink-header.patch: drop, merged upstream.
     - upstream/blink-header2.patch: drop, merged upstream.
     - upstream/blink-header3.patch: drop, merged upstream.
     - upstream/realtime-reporting.patch: drop, merged upstream.
     - upstream/urlvisit-header.patch: drop, merged upstream.
     - upstream/accessibility-format.patch: drop, merged upstream.
     - upstream/observer.patch: drop, merged upstream.
     - bookworm/clang16.patch: refresh.
     - bookworm/rust-downgrade-osstr-users.patch: refresh w/ minor changes.
     - ungoogled/disable-privacy-sandbox.patch: refresh.
     - disable/signin.patch: upstream dropped prefs::kAutologinEnabled.
     - upstream/crabbyav1f.patch: add build fix pulled from upstream.
     - upstream/lock-impl.patch: add build fix pulled from upstream.
     - upstream/containers-header.patch: add build fix pulled from upstream.
     - upstream/paint-layer-header.patch: add build fix pulled from upstream
     - fixes/bindgen.patch: work around bindgen-related things (hopefully
       correctly?)
     - bookworm/lex-3way.patch: add patch to support
       std::lexicographical_compare_three_way, which was added in clang-17.
     - bookworm/traitors.patch: another clang-16 hack; backport
       pointer_traits.h from libc++-18-dev to work around clang
       std::to_address() issue.
     - bookworm/constexpr.patch: add more of the usual constexpr
       workarounds; only needed for clang-16.
     - bookworm/constcountrycode.patch, bookworm/omnibox-constexpr.patch:
       remove, now part of bookworm/constexpr.patch.
     - fixes/absl-optional.patch: drop, only needed for libstdc++-dev.
     - fixes/bad-font-gc*: drop, only needed for libstdc++-dev.
     - fixes/chromium-browser-ui-missing-deps.patch: add a bunch of
       mojo-related dependency build fixes.
     - bookworm/bubble-contents.patch: refresh.
     - bookworm/gn-funcs.patch: add workarounds for missing functions in
       bookworm's older generate-ninja.
     - bookworm/gn-absl.patch: add workarounds for absl changes that rely
       on newer gn.
     - bookworm/crabbyav1f.patch: add experimental feature toggle, needed
       for older rustc.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/fixes/memory-allocator-dcheck-assert-fix.patch: Fix assert on
       64k page systems such as aarch64 and ppc64el
   * d/patches/ppc64le:
     - ffmpeg/0001-Add-support-for-ppc64.patch: Drop, no longer needed
     - third_party/use-sysconf-page-size-on-ppc64.patch: Refresh for upstream
       changes
chromium (126.0.6478.182-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-6772: Inappropriate implementation in V8.
       Reported by 5fceb6172bbf7e2c5a948183b53565b9.
     - CVE-2024-6773: Type Confusion in V8. Reported by 2ourc3 | Salim Largo.
     - CVE-2024-6774: Use after free in Screen Capture. Reported by
       lime(@limeSec_) and fmyy(@binary_fmyy) from TIANGONG Team of Legendsec
       at QI-ANXIN Group.
     - CVE-2024-6775: Use after free in Media Stream. Reported by Anonymous.
     - CVE-2024-6776: Use after free in Audio. Reported by
       lime(@limeSec_) and fmyy(@binary_fmyy) from TIANGONG Team of Legendsec
       at QI-ANXIN Group.
     - CVE-2024-6777: Use after free in Navigation.
       Reported by Sven Dysthe (@svn-dys).
     - CVE-2024-6778: Race in DevTools. Reported by Allen Ding.
     - CVE-2024-6779: Out of bounds memory access in V8.
       Reported by Seunghyun Lee (@0x10n).
chromium (126.0.6478.182-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-6772: Inappropriate implementation in V8.
       Reported by 5fceb6172bbf7e2c5a948183b53565b9.
     - CVE-2024-6773: Type Confusion in V8. Reported by 2ourc3 | Salim Largo.
     - CVE-2024-6774: Use after free in Screen Capture. Reported by
       lime(@limeSec_) and fmyy(@binary_fmyy) from TIANGONG Team of Legendsec
       at QI-ANXIN Group.
     - CVE-2024-6775: Use after free in Media Stream. Reported by Anonymous.
     - CVE-2024-6776: Use after free in Audio. Reported by
       lime(@limeSec_) and fmyy(@binary_fmyy) from TIANGONG Team of Legendsec
       at QI-ANXIN Group.
     - CVE-2024-6777: Use after free in Navigation.
       Reported by Sven Dysthe (@svn-dys).
     - CVE-2024-6778: Race in DevTools. Reported by Allen Ding.
     - CVE-2024-6779: Out of bounds memory access in V8.
       Reported by Seunghyun Lee (@0x10n).
chromium (126.0.6478.126-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-6290: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-6291: Use after free in Swiftshader.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-6292: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-6293: Use after free in Dawn. Reported by wgslfuzz.
   * d/patches/upstream/observer.patch: add crash-on-exit fix from
     upstream (closes: #1073378).
chromium (126.0.6478.126-1~deb13u1) trixie; urgency=high
 .
   * Rebuild for trixie.
   * Revert libxml2-dev versioned build dep, and re-add
     d/patches/fixes/libxml-parseerr.patch.
 .
 chromium (126.0.6478.126-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-6290: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-6291: Use after free in Swiftshader.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-6292: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-6293: Use after free in Dawn. Reported by wgslfuzz.
   * d/patches/upstream/observer.patch: add crash-on-exit fix from
     upstream (closes: #1073378).
 .
 chromium (126.0.6478.114-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-6100: Type Confusion in V8. Reported by Seunghyun Lee
       (@0x10n) participating in SSD Secure Disclosure's TyphoonPWN 2024.
     - CVE-2024-6101: Inappropriate implementation in WebAssembly.
       Reported by @ginggilBesel.
     - CVE-2024-6102: Out of bounds memory access in Dawn.
       Reported by wgslfuzz.
     - CVE-2024-6103: Use after free in Dawn. Reported by wgslfuzz.
 .
 chromium (126.0.6478.56-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-5830: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2024-5831: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5832: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5833: Type Confusion in V8. Reported by @ginggilBesel.
     - CVE-2024-5834: Inappropriate implementation in Dawn.
       Reported by gelatin dessert.
     - CVE-2024-5835: Heap buffer overflow in Tab Groups.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2024-5836: Inappropriate Implementation in DevTools.
       Reported by Allen Ding.
     - CVE-2024-5837: Type Confusion in V8. Reported by Anonymous.
     - CVE-2024-5838: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-5839: Inappropriate Implementation in Memory Allocator.
       Reported by Mickey.
     - CVE-2024-5840: Policy Bypass in CORS. Reported by Matt Howard.
     - CVE-2024-5841: Use after free in V8.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5842: Use after free in Browser UI.
       Reported by Sven Dysthe (@svn_dy).
     - CVE-2024-5843: Inappropriate implementation in Downloads.
       Reported by hjy79425575.
     - CVE-2024-5844: Heap buffer overflow in Tab Strip. Reported by Sri.
     - CVE-2024-5845: Use after free in Audio. Reported by anonymous.
     - CVE-2024-5846: Use after free in PDFium.
       Reported by Han Zheng (HexHive).
     - CVE-2024-5847: Use after free in PDFium.
       Reported by Han Zheng (HexHive).
   * d/copyright: delete bullseye environment that upstream ships (??).
   * d/patches:
     - upstream/appservice-include.patch: drop, merged upstream.
     - upstream/lens-include.patch: drop, merged upstream.
     - upstream/mojo-bindings-include.patch: drop, merged upstream.
     - upstream/ninja.patch: drop, merged upstream.
     - upstream/no-vector-consts.patch: drop, merged upstream.
     - upstream/vulkan-include.patch: drop, merged upstream.
     - system/clang-format.patch: drop it; we broke it some time ago, and
       didn't notice. Guess we don't need it?
     - bookworm/clang16.patch: refresh.
     - fixes/bad-font-gc00000.patch: refresh
     - fixes/bad-font-gc11.patch: refresh
     - fixes/bad-font-gc2.patch: refresh
     - disable/signin.patch: refresh
     - upstream/quiche-deque.patch: gcc build fix pulled from upstream.
     - upstream/gpu-header.patch: add header build fix from upstream.
     - upstream/blink-header.patch: add header build fix from upstream.
     - upstream/blink-header2.patch: add header build fix from upstream.
     - upstream/blink-header3.patch: add header build fix from upstream.
     - upstream/realtime-reporting.patch: gcc build fix from upstream.
     - upstream/urlvisit-header.patch: add header build fix from upstream.
     - upstream/accessibility-format.patch: gcc build fix from upstream.
     - bookworm/urlhelper-ctor.patch: work around a clang-16 bug; add an
       explicit constructor.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - sandbox/0008-sandbox-fix-ppc64le-glibc234.patch: Modify for upstream
       changes
     - third_party/0002-Add-PPC64-generated-files-for-boringssl.patch: Modify
       for upstream changes
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: Refresh
       for upstream changes
 .
 chromium (125.0.6422.141-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5493: Heap buffer overflow in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5494: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5495: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5496: Use after free in Media Session.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5497: Out of bounds memory access in Keyboard Inputs.
       Reported by zh1x1an1221 of Ant Group Tianqiong Security Lab.
     - CVE-2024-5498: Use after free in Presentation API.
     - CVE-2024-5499: Out of bounds write in Streams API.
   * d/patches/fixes/libxml-parseerr.patch: delete, now that we have a
     newer libxml2.
   * d/control: add versioned build-dep on libxml2-dev >= 2.12.
 .
 chromium (125.0.6422.112-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5274: Type Confusion in V8. Reported by Clément Lecigne of
       Google's Threat Analysis Group and Brendon Tiszka of Chrome Security.
   * Fix handling of quoted arguments (closes: #1071662).
 .
 chromium (125.0.6422.76-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5157: Use after free in Scheduling. Reported by Looben Yang.
     - CVE-2024-5158: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-5159: Heap buffer overflow in ANGLE.
       Reported by David Sievers (@loknop).
     - CVE-2024-5160: Heap buffer overflow in Dawn. Reported by wgslfuzz.
   * Don't silently ignore arguments meant for the wrapper script if chromium
     args happen to come first (closes: #1068096).
   * d/patches:
     - upstream/tabstrip-include.patch: add header build fix.
chromium (126.0.6478.126-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-6290: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-6291: Use after free in Swiftshader.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-6292: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-6293: Use after free in Dawn. Reported by wgslfuzz.
   * d/patches/upstream/observer.patch: add crash-on-exit fix from
     upstream (closes: #1073378).
chromium (126.0.6478.114-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-6100: Type Confusion in V8. Reported by Seunghyun Lee
       (@0x10n) participating in SSD Secure Disclosure's TyphoonPWN 2024.
     - CVE-2024-6101: Inappropriate implementation in WebAssembly.
       Reported by @ginggilBesel.
     - CVE-2024-6102: Out of bounds memory access in Dawn.
       Reported by wgslfuzz.
     - CVE-2024-6103: Use after free in Dawn. Reported by wgslfuzz.
chromium (126.0.6478.114-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-6100: Type Confusion in V8. Reported by Seunghyun Lee
       (@0x10n) participating in SSD Secure Disclosure's TyphoonPWN 2024.
     - CVE-2024-6101: Inappropriate implementation in WebAssembly.
       Reported by @ginggilBesel.
     - CVE-2024-6102: Out of bounds memory access in Dawn.
       Reported by wgslfuzz.
     - CVE-2024-6103: Use after free in Dawn. Reported by wgslfuzz.
chromium (126.0.6478.56-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-5830: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2024-5831: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5832: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5833: Type Confusion in V8. Reported by @ginggilBesel.
     - CVE-2024-5834: Inappropriate implementation in Dawn.
       Reported by gelatin dessert.
     - CVE-2024-5835: Heap buffer overflow in Tab Groups.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2024-5836: Inappropriate Implementation in DevTools.
       Reported by Allen Ding.
     - CVE-2024-5837: Type Confusion in V8. Reported by Anonymous.
     - CVE-2024-5838: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-5839: Inappropriate Implementation in Memory Allocator.
       Reported by Mickey.
     - CVE-2024-5840: Policy Bypass in CORS. Reported by Matt Howard.
     - CVE-2024-5841: Use after free in V8.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5842: Use after free in Browser UI.
       Reported by Sven Dysthe (@svn_dy).
     - CVE-2024-5843: Inappropriate implementation in Downloads.
       Reported by hjy79425575.
     - CVE-2024-5844: Heap buffer overflow in Tab Strip. Reported by Sri.
     - CVE-2024-5845: Use after free in Audio. Reported by anonymous.
     - CVE-2024-5846: Use after free in PDFium.
       Reported by Han Zheng (HexHive).
     - CVE-2024-5847: Use after free in PDFium.
       Reported by Han Zheng (HexHive).
   * d/copyright: delete bullseye environment that upstream ships (??).
   * d/patches:
     - upstream/appservice-include.patch: drop, merged upstream.
     - upstream/lens-include.patch: drop, merged upstream.
     - upstream/mojo-bindings-include.patch: drop, merged upstream.
     - upstream/ninja.patch: drop, merged upstream.
     - upstream/no-vector-consts.patch: drop, merged upstream.
     - upstream/vulkan-include.patch: drop, merged upstream.
     - system/clang-format.patch: drop it; we broke it some time ago, and
       didn't notice. Guess we don't need it?
     - bookworm/clang16.patch: refresh.
     - fixes/bad-font-gc00000.patch: refresh
     - fixes/bad-font-gc11.patch: refresh
     - fixes/bad-font-gc2.patch: refresh
     - disable/signin.patch: refresh
     - upstream/quiche-deque.patch: gcc build fix pulled from upstream.
     - upstream/gpu-header.patch: add header build fix from upstream.
     - upstream/blink-header.patch: add header build fix from upstream.
     - upstream/blink-header2.patch: add header build fix from upstream.
     - upstream/blink-header3.patch: add header build fix from upstream.
     - upstream/realtime-reporting.patch: gcc build fix from upstream.
     - upstream/urlvisit-header.patch: add header build fix from upstream.
     - upstream/accessibility-format.patch: gcc build fix from upstream.
     - bookworm/urlhelper-ctor.patch: work around a clang-16 bug; add an
       explicit constructor.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - sandbox/0008-sandbox-fix-ppc64le-glibc234.patch: Modify for upstream
       changes
     - third_party/0002-Add-PPC64-generated-files-for-boringssl.patch: Modify
       for upstream changes
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: Refresh
       for upstream changes
chromium (126.0.6478.56-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-5830: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2024-5831: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5832: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5833: Type Confusion in V8. Reported by @ginggilBesel.
     - CVE-2024-5834: Inappropriate implementation in Dawn.
       Reported by gelatin dessert.
     - CVE-2024-5835: Heap buffer overflow in Tab Groups.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2024-5836: Inappropriate Implementation in DevTools.
       Reported by Allen Ding.
     - CVE-2024-5837: Type Confusion in V8. Reported by Anonymous.
     - CVE-2024-5838: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-5839: Inappropriate Implementation in Memory Allocator.
       Reported by Mickey.
     - CVE-2024-5840: Policy Bypass in CORS. Reported by Matt Howard.
     - CVE-2024-5841: Use after free in V8.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5842: Use after free in Browser UI.
       Reported by Sven Dysthe (@svn_dy).
     - CVE-2024-5843: Inappropriate implementation in Downloads.
       Reported by hjy79425575.
     - CVE-2024-5844: Heap buffer overflow in Tab Strip. Reported by Sri.
     - CVE-2024-5845: Use after free in Audio. Reported by anonymous.
     - CVE-2024-5846: Use after free in PDFium.
       Reported by Han Zheng (HexHive).
     - CVE-2024-5847: Use after free in PDFium.
       Reported by Han Zheng (HexHive).
   * d/copyright: delete bullseye environment that upstream ships (??).
   * d/patches:
     - upstream/appservice-include.patch: drop, merged upstream.
     - upstream/lens-include.patch: drop, merged upstream.
     - upstream/mojo-bindings-include.patch: drop, merged upstream.
     - upstream/ninja.patch: drop, merged upstream.
     - upstream/no-vector-consts.patch: drop, merged upstream.
     - upstream/vulkan-include.patch: drop, merged upstream.
     - system/clang-format.patch: drop it; we broke it some time ago, and
       didn't notice. Guess we don't need it?
     - bookworm/clang16.patch: refresh.
     - fixes/bad-font-gc00000.patch: refresh
     - fixes/bad-font-gc11.patch: refresh
     - fixes/bad-font-gc2.patch: refresh
     - disable/signin.patch: refresh
     - upstream/quiche-deque.patch: gcc build fix pulled from upstream.
     - upstream/gpu-header.patch: add header build fix from upstream.
     - upstream/blink-header.patch: add header build fix from upstream.
     - upstream/blink-header2.patch: add header build fix from upstream.
     - upstream/blink-header3.patch: add header build fix from upstream.
     - upstream/realtime-reporting.patch: gcc build fix from upstream.
     - upstream/urlvisit-header.patch: add header build fix from upstream.
     - upstream/accessibility-format.patch: gcc build fix from upstream.
     - bookworm/urlhelper-ctor.patch: work around a clang-16 bug; add an
       explicit constructor.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - sandbox/0008-sandbox-fix-ppc64le-glibc234.patch: Modify for upstream
       changes
     - third_party/0002-Add-PPC64-generated-files-for-boringssl.patch: Modify
       for upstream changes
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: Refresh
       for upstream changes
chromium (125.0.6422.141-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5493: Heap buffer overflow in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5494: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5495: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5496: Use after free in Media Session.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5497: Out of bounds memory access in Keyboard Inputs.
       Reported by zh1x1an1221 of Ant Group Tianqiong Security Lab.
     - CVE-2024-5498: Use after free in Presentation API.
     - CVE-2024-5499: Out of bounds write in Streams API.
   * d/patches/fixes/libxml-parseerr.patch: delete, now that we have a
     newer libxml2.
   * d/control: add versioned build-dep on libxml2-dev >= 2.12.
chromium (125.0.6422.141-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5493: Heap buffer overflow in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5494: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5495: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-5496: Use after free in Media Session.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-5497: Out of bounds memory access in Keyboard Inputs.
       Reported by zh1x1an1221 of Ant Group Tianqiong Security Lab.
     - CVE-2024-5498: Use after free in Presentation API.
     - CVE-2024-5499: Out of bounds write in Streams API.
   * d/patches/fixes/libxml-parseerr.patch: move to bookworm directory.
   * d/control: add versioned build-dep on libxml2-dev < 2.10.
chromium (125.0.6422.112-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5274: Type Confusion in V8. Reported by Clément Lecigne of
       Google's Threat Analysis Group and Brendon Tiszka of Chrome Security.
   * Fix handling of quoted arguments (closes: #1071662).
chromium (125.0.6422.112-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5274: Type Confusion in V8. Reported by Clément Lecigne of
       Google's Threat Analysis Group and Brendon Tiszka of Chrome Security.
   * Fix handling of quoted arguments (closes: #1071662).
chromium (125.0.6422.76-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5157: Use after free in Scheduling. Reported by Looben Yang.
     - CVE-2024-5158: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-5159: Heap buffer overflow in ANGLE.
       Reported by David Sievers (@loknop).
     - CVE-2024-5160: Heap buffer overflow in Dawn. Reported by wgslfuzz.
   * Don't silently ignore arguments meant for the wrapper script if chromium
     args happen to come first (closes: #1068096).
   * d/patches:
     - upstream/tabstrip-include.patch: add header build fix.
chromium (125.0.6422.76-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-5157: Use after free in Scheduling. Reported by Looben Yang.
     - CVE-2024-5158: Type Confusion in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-5159: Heap buffer overflow in ANGLE.
       Reported by David Sievers (@loknop).
     - CVE-2024-5160: Heap buffer overflow in Dawn. Reported by wgslfuzz.
   * Don't silently ignore arguments meant for the wrapper script if chromium
     args happen to come first (closes: #1068096).
chromium (125.0.6422.60-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-4947: Type Confusion in V8. Reported by Vasily
       Berdnikov (@vaber_b) and Boris Larin (@oct0xor) of Kaspersky.
     - CVE-2024-4948: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-4949: Use after free in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-4950: Inappropriate implementation in Downloads.
       Reported by Shaheen Fazim.
   * d/copyright: fix instrumented_libs deletion; upstream renamed it.
   * d/scripts/unbundle: bundle new requirement absl_crc (which is
     unavailable in bookworm).
   * d/patches:
     - upstream/uint-includes.patch: drop,merged upstream.
     - upstream/fps-optional.patch: drop, merged upstream.
     - upstream/span-optional.patch: drop, merged upstream.
     - upstream/extractor-bitset.patch: drop, merged upstream.
     - upstream/atomic.patch: drop, merged upstream.
     - upstream/webgpu-optional.patch: drop, merged upstream.
     - disable/catapult.patch: refresh.
     - i386/angle-lockfree.patch: drop, I _think_ it's no longer needed.
     - upstream/ruy-include.patch: add header build fix.
     - upstream/vulkan-include.patch: add header build fix.
     - upstream/mojo-bindings-include.patch: add header build fix.
     - upstream/appservice-include.patch: add header build fix.
     - upstream/no-vector-consts.patch: add build fix; gnu libstdc++
       doesn't allow const types inside vectors.
     - upstream/lens-include.patch: add header build fix.
     - bookworm/nvt2.patch: drop (replace with a better non-revert patch).
     - bookworm/v8-wrappable.patch: add nvt2.patch build fix replacement
       that just defines a single struct member.
     - upstream/ninja.patch: add build fix for failure triggered by
       ninja-1.12 (closes: #1071197).
     - fixes/bad-font-gc00000.patch: add formatting patch revert to make
       other patches easier to apply.
     - fixes/bad-font-gc2.patch: add a build failure fix & refresh.
     - fixes/bad-font-gc11.patch: add a build failure fix & refresh.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: Modify for
       upstream changes
     - third_party/0002-Add-PPC64-generated-files-for-boringssl.patch: Add
       pregenerated configuration for ppc64el support in BoringSSL
     - third_party/0002-third-party-boringssl-add-generated-files.patch:
       Rename to third_party/0002-Add-PPC64-generated-files-for-boringssl.patch
     - workarounds/HACK-debian-clang-disable-skia-musttail.patch: Refresh
       for upstream changes
     - third_party/skia-vsx-instructions.patch: Refresh for upstream changes
     - ffmpeg/0001-Add-support-for-ppc64.patch: Refresh for upstream changes
chromium (125.0.6422.60-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-4947: Type Confusion in V8. Reported by Vasily
       Berdnikov (@vaber_b) and Boris Larin (@oct0xor) of Kaspersky.
     - CVE-2024-4948: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-4949: Use after free in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-4950: Inappropriate implementation in Downloads.
       Reported by Shaheen Fazim.
   * d/copyright: fix instrumented_libs deletion; upstream renamed it.
   * d/scripts/unbundle: bundle new requirement absl_crc (which is
     unavailable in bookworm).
   * d/patches:
     - upstream/uint-includes.patch: drop,merged upstream.
     - upstream/fps-optional.patch: drop, merged upstream.
     - upstream/span-optional.patch: drop, merged upstream.
     - upstream/extractor-bitset.patch: drop, merged upstream.
     - upstream/atomic.patch: drop, merged upstream.
     - upstream/webgpu-optional.patch: drop, merged upstream.
     - disable/catapult.patch: refresh.
     - i386/angle-lockfree.patch: drop, I _think_ it's no longer needed.
     - upstream/ruy-include.patch: add header build fix.
     - upstream/vulkan-include.patch: add header build fix.
     - upstream/mojo-bindings-include.patch: add header build fix.
     - upstream/appservice-include.patch: add header build fix.
     - upstream/no-vector-consts.patch: add build fix; gnu libstdc++
       doesn't allow const types inside vectors.
     - upstream/lens-include.patch: add header build fix.
     - bookworm/nvt2.patch: drop (replace with a better non-revert patch).
     - bookworm/v8-wrappable.patch: add nvt2.patch build fix replacement
       that just defines a single struct member.
     - upstream/ninja.patch: add build fix for failure triggered by
       ninja-1.12.
     - fixes/bad-font-gc00000.patch: add formatting patch revert to make
       other patches easier to apply.
     - fixes/bad-font-gc2.patch: add a build failure fix & refresh.
     - fixes/bad-font-gc11.patch: add a build failure fix & refresh.
     - bookworm/bubble-contents.patch: refresh.
     - bookworm/omnibox-constexpr.patch: add constexpr -> const build fix.
     - upstream/tabstrip-include.patch: add header build fix.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: Modify for
       upstream changes
     - third_party/0002-Add-PPC64-generated-files-for-boringssl.patch: Add
       pregenerated configuration for ppc64el support in BoringSSL
     - third_party/0002-third-party-boringssl-add-generated-files.patch:
       Rename to third_party/0002-Add-PPC64-generated-files-for-boringssl.patch
     - workarounds/HACK-debian-clang-disable-skia-musttail.patch: Refresh
       for upstream changes
     - third_party/skia-vsx-instructions.patch: Refresh for upstream changes
     - ffmpeg/0001-Add-support-for-ppc64.patch: Refresh for upstream changes
chromium (124.0.6367.207-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-4761: Out of bounds write in V8. Reported by Anonymous.
chromium (124.0.6367.207-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-4761: Out of bounds write in V8. Reported by Anonymous.
chromium (124.0.6367.201-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-4671: Use after free in Visuals. Reported by Anonymous.
chromium (124.0.6367.201-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-4671: Use after free in Visuals. Reported by Anonymous.
chromium (124.0.6367.155-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-4558: Use after free in ANGLE. Reported by gelatin dessert.
     - CVE-2024-4559: Heap buffer overflow in WebAudio.
       Reported by Cassidy Kim(@cassidy6564).
   * d/control: replace libu2f-udev recommends with udev (closes: #1070283).
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/skia-vsx-instructions.patch: fix various issues.
chromium (124.0.6367.155-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-4558: Use after free in ANGLE. Reported by gelatin dessert.
     - CVE-2024-4559: Heap buffer overflow in WebAudio.
       Reported by Cassidy Kim(@cassidy6564).
   * d/control: replace libu2f-udev recommends with udev (closes: #1070283).
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/skia-vsx-instructions.patch: fix various issues.
chromium (124.0.6367.118-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-4331: Use after free in Picture In Picture.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-4368: Use after free in Dawn. Reported by wgslfuzz.
   * Build-dep on libhwy-dev and delete the bundled third_party/highway.
   * Build-dep on libharfbuzz-dev and delete the bundled harfbuzz-ng.
   * Build-dep on libdav1d-dev and delete the bundled third_party/dav1d.
   * d/patches:
     - ppc64le/third_party/0001-Add-PPC64-support-for-libdav1d.patch,
       ppc64le/third_party/0001-Fix-libdav1d-compilation-on-clang-ppc.patch,
       ppc64le/third_party/0003-thirdparty-fix-dav1d-gn.patch,
       fixes/arm64-ftbfs.patch: drop these 4 patches that are only needed
       for bundled libdav1d.
     - ppc64le/third_party/0001-Fix-highway-ppc-hwcap.patch,
       ppc64le/third_party/0002-Highway-disable-128-bit-vsx.patch: drop
       these two patches that were needed for bundled highway.
     - upstream/ozone1.patch: drop, merged upstream.
     - upstream/ozone2.patch: drop, merged upstream.
     - fixes/bad-font-gc2.patch: refresh.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: Fix inadvertent
       breakage of i386 build
chromium (124.0.6367.118-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-4331: Use after free in Picture In Picture.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-4368: Use after free in Dawn. Reported by wgslfuzz.
   * Build-dep on libhwy-dev and delete the bundled third_party/highway.
   * Build-dep on libharfbuzz-dev and delete the bundled harfbuzz-ng.
   * Build-dep on libdav1d-dev and delete the bundled third_party/dav1d.
   * d/patches:
     - ppc64le/third_party/0001-Add-PPC64-support-for-libdav1d.patch,
       ppc64le/third_party/0001-Fix-libdav1d-compilation-on-clang-ppc.patch,
       ppc64le/third_party/0003-thirdparty-fix-dav1d-gn.patch,
       fixes/arm64-ftbfs.patch: drop these 4 patches that are only needed
       for bundled libdav1d.
     - ppc64le/third_party/0001-Fix-highway-ppc-hwcap.patch,
       ppc64le/third_party/0002-Highway-disable-128-bit-vsx.patch: drop
       these two patches that were needed for bundled highway.
     - upstream/ozone1.patch: drop, merged upstream.
     - upstream/ozone2.patch: drop, merged upstream.
     - fixes/bad-font-gc2.patch: refresh.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: Fix inadvertent
       breakage of i386 build
chromium (124.0.6367.78-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-4058: Type Confusion in ANGLE.
       Reported by Toan (suto) Pham and Bao (zx) Pham of Qrious Secure.
     - CVE-2024-4059: Out of bounds read in V8 API. Reported by Eirik.
     - CVE-2024-4060: Use after free in Dawn. Reported by wgslfuzz.
chromium (124.0.6367.78-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-4058: Type Confusion in ANGLE.
       Reported by Toan (suto) Pham and Bao (zx) Pham of Qrious Secure.
     - CVE-2024-4059: Out of bounds read in V8 API. Reported by Eirik.
     - CVE-2024-4060: Use after free in Dawn. Reported by wgslfuzz.
 .
 chromium (124.0.6367.60-2~deb12u1) bookworm-security; urgency=high
 .
   * d/patches/ppc64le:
      - third_party/0001-Add-PPC64-support-for-boringssl.patch: update for
        upstream boringssl changes and reenable
      - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
        regenerate from new ffmpeg source tree
      - third_party/skia-vsx-instructions.patch: update for upstream changes
 .
   [ Andres Salomon ]
   * d/patches:
     - fixes/arm64-ftbfs.patch: add arm64-specific ftbfs fix for libdav1d.
     - upstream/ozone1.patch, upstream/ozone2.patch: backport fixes for
       broken wayland support (closes: #1069586).
chromium (124.0.6367.60-2) unstable; urgency=high
 .
   * d/patches/ppc64le:
      - third_party/0001-Add-PPC64-support-for-boringssl.patch: update for
        upstream boringssl changes and reenable
      - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
        regenerate from new ffmpeg source tree
      - third_party/skia-vsx-instructions.patch: update for upstream changes
 .
   [ Andres Salomon ]
   * d/patches:
     - fixes/arm64-ftbfs.patch: add arm64-specific ftbfs fix for libdav1d.
     - upstream/ozone1.patch, upstream/ozone2.patch: backport fixes for
       broken wayland support (closes: #1069586).
chromium (124.0.6367.60-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-3832: Object corruption in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2024-3833: Object corruption in WebAssembly.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2024-3834: Use after free in Downloads. Reported by ChaobinZhang
     - CVE-2024-3837: Use after free in QUIC.
       Reported by {rotiple, dch3ck} of CW Research Inc.
     - CVE-2024-3838: Inappropriate implementation in Autofill.
       Reported by Ardyan Vicky Ramadhan.
     - CVE-2024-3839: Out of bounds read in Fonts.
       Reported by Ronald Crane (Zippenhop LLC).
     - CVE-2024-3840: Insufficient policy enforcement in Site Isolation.
       Reported by Ahmed ElMasry.
     - CVE-2024-3841: Insufficient data validation in Browser Switcher.
       Reported by Oleg.
     - CVE-2024-3843: Insufficient data validation in Downloads.
       Reported by Azur.
     - CVE-2024-3844: Inappropriate implementation in Extensions.
       Reported by Alesandro Ortiz.
     - CVE-2024-3845: Inappropriate implementation in Network.
       Reported by Daniel Baulig.
     - CVE-2024-3846: Inappropriate implementation in Prompts.
       Reported by Ahmed ElMasry.
     - CVE-2024-3847: Insufficient policy enforcement in WebUI.
       Reported by Yan Zhu.
   * d/copyright:
     - delete __pycache__ directories to shut up dpkg warnings.
     - stop deleting bundled libwebp directory.
   * Drop build-dep on libwebp-dev and start building against the bundled
     libwebp. We need to do this because chromium uses features of libavif
     that require libsharpyuv-dev; but that's only available in sid/trixie.
   * d/patches:
     - upstream/std-to-address.patch: drop, merged upstream.
     - fixes/optional2.patch: drop, merged upstream.
     - fixes/blink-fonts-shape-result.patch: drop, merged upstream.
     - bookworm/constexpr-equality.patch: drop, merged upstream.
     - disable/catapult.patch: refresh.
     - disable/google-api-warning.patch: rework to be a smaller patch.
     - bookworm/clang16.patch: refresh.
     - ungoogled/disable-privacy-sandbox.patch: drop hunk related to deprecated
       preference.
     - upstream/mojo-null.patch: pull a (typescript) build fix from upstream.
     - upstream/uint-includes.patch: simple header build fix from upstream.
     - upstream/fps-optional.patch: add header build fix.
     - upstream/span-optional.patch: add header build fix.
     - upstream/extractor-bitset.patch: add header build fix.
     - upstream/atomic.patch: add header build fix.
     - upstream/webgpu-optional.patch: add header build fix.
     - fixes/absl-optional.patch: comment out assert() that caused crash.
       This could be another clang16/libstdc++ miscompilation issue, but
       needs further investigation.
     - fixes/bad-font-gc2.patch: drop a bunch of test-related pieces.
     - fixes/bad-font-gc0000.patch, fixes/bad-font-gc000.patch,
       fixes/bad-font-gc00.patch, fixes/bad-font-gc0.patch,
       fixes/bad-font-gc11.patch, fixes/bad-font-gc3.patch: revert a bunch
       more (new) upstream commits related to bad-font-gc2.patch. When the
       use-after-free bug gets fixed, all this can be dropped.
   * d/patches/ppc64le:
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch,
       third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch,
       workarounds/HACK-third_party-libvpx-use-generic-gnu.patch,
       breakpad/0001-Implement-support-for-ppc64-on-Linux.patch,
       ffmpeg/0001-Add-support-for-ppc64.patch,
       third_party/dawn-fix-typos.patch,
       third_party/use-sysconf-page-size-on-ppc64.patch: refresh.
     - third_party/skia-vsx-instructions.patch: refresh & update for header
       renaming.
     - third_party/0001-Add-PPC64-support-for-boringssl.patch,
       third_party/0002-third-party-boringssl-add-generated-files.patch:
       disable these two until Tim has a chance to look at them.
chromium (124.0.6367.60-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-3832: Object corruption in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2024-3833: Object corruption in WebAssembly.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2024-3834: Use after free in Downloads. Reported by ChaobinZhang
     - CVE-2024-3837: Use after free in QUIC.
       Reported by {rotiple, dch3ck} of CW Research Inc.
     - CVE-2024-3838: Inappropriate implementation in Autofill.
       Reported by Ardyan Vicky Ramadhan.
     - CVE-2024-3839: Out of bounds read in Fonts.
       Reported by Ronald Crane (Zippenhop LLC).
     - CVE-2024-3840: Insufficient policy enforcement in Site Isolation.
       Reported by Ahmed ElMasry.
     - CVE-2024-3841: Insufficient data validation in Browser Switcher.
       Reported by Oleg.
     - CVE-2024-3843: Insufficient data validation in Downloads.
       Reported by Azur.
     - CVE-2024-3844: Inappropriate implementation in Extensions.
       Reported by Alesandro Ortiz.
     - CVE-2024-3845: Inappropriate implementation in Network.
       Reported by Daniel Baulig.
     - CVE-2024-3846: Inappropriate implementation in Prompts.
       Reported by Ahmed ElMasry.
     - CVE-2024-3847: Insufficient policy enforcement in WebUI.
       Reported by Yan Zhu.
   * d/copyright:
     - delete __pycache__ directories to shut up dpkg warnings.
     - stop deleting bundled libwebp directory.
   * Drop build-dep on libwebp-dev and start building against the bundled
     libwebp. We need to do this because chromium uses features of libavif
     that require libsharpyuv-dev; but that's only available in sid/trixie.
   * d/patches:
     - upstream/std-to-address.patch: drop, merged upstream.
     - fixes/optional2.patch: drop, merged upstream.
     - fixes/blink-fonts-shape-result.patch: drop, merged upstream.
     - bookworm/constexpr-equality.patch: drop, merged upstream.
     - disable/catapult.patch: refresh.
     - disable/google-api-warning.patch: rework to be a smaller patch.
     - bookworm/clang16.patch: refresh.
     - ungoogled/disable-privacy-sandbox.patch: drop hunk related to deprecated
       preference.
     - upstream/mojo-null.patch: pull a (typescript) build fix from upstream.
     - upstream/uint-includes.patch: simple header build fix from upstream.
     - upstream/fps-optional.patch: add header build fix.
     - upstream/span-optional.patch: add header build fix.
     - upstream/extractor-bitset.patch: add header build fix.
     - upstream/atomic.patch: add header build fix.
     - upstream/webgpu-optional.patch: add header build fix.
     - fixes/absl-optional.patch: comment out assert() that caused crash.
       This could be another clang16/libstdc++ miscompilation issue, but
       needs further investigation.
     - fixes/bad-font-gc2.patch: drop a bunch of test-related pieces.
     - fixes/bad-font-gc0000.patch, fixes/bad-font-gc000.patch,
       fixes/bad-font-gc00.patch, fixes/bad-font-gc0.patch,
       fixes/bad-font-gc11.patch, fixes/bad-font-gc3.patch: revert a bunch
       more (new) upstream commits related to bad-font-gc2.patch. When the
       use-after-free bug gets fixed, all this can be dropped.
   * d/patches/ppc64le:
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch,
       third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch,
       workarounds/HACK-third_party-libvpx-use-generic-gnu.patch,
       breakpad/0001-Implement-support-for-ppc64-on-Linux.patch,
       ffmpeg/0001-Add-support-for-ppc64.patch,
       third_party/dawn-fix-typos.patch,
       third_party/use-sysconf-page-size-on-ppc64.patch: refresh.
     - third_party/skia-vsx-instructions.patch: refresh & update for header
       renaming.
     - third_party/0001-Add-PPC64-support-for-boringssl.patch,
       third_party/0002-third-party-boringssl-add-generated-files.patch:
       disable these two until Tim has a chance to look at them.
chromium (123.0.6312.122-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-3157: Out of bounds write in Compositing.
       Reported by DarkNavy.
     - CVE-2024-3516: Heap buffer overflow in ANGLE.
       Reported by Bao (zx) Pham and Toan (suto) Pham of Qrious Secure.
     - CVE-2024-3515: Use after free in Dawn. Reported by wgslfuzz.
chromium (123.0.6312.122-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-3157: Out of bounds write in Compositing.
       Reported by DarkNavy.
     - CVE-2024-3516: Heap buffer overflow in ANGLE.
       Reported by Bao (zx) Pham and Toan (suto) Pham of Qrious Secure.
     - CVE-2024-3515: Use after free in Dawn. Reported by wgslfuzz.
chromium (123.0.6312.105-2) unstable; urgency=high
 .
   * Depend on libgtk-3-0t64 instead of libgtk-3-0 for time_t transition
     (closes: #1068540).
chromium (123.0.6312.105-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-3156: Inappropriate implementation in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-3158: Use after free in Bookmarks. Reported by undoingfish.
     - CVE-2024-3159: Out of bounds memory access in V8. Reported by
       Edouard Bochin (@le_douds) and Tao Yan (@Ga1ois) of Palo Alto
       Networks, via Pwn2Own 2024.
chromium (123.0.6312.105-1~deb13u1) trixie; urgency=high
 .
   * Rebuild for trixie.
 .
 chromium (123.0.6312.105-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-3156: Inappropriate implementation in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-3158: Use after free in Bookmarks. Reported by undoingfish.
     - CVE-2024-3159: Out of bounds memory access in V8. Reported by
       Edouard Bochin (@le_douds) and Tao Yan (@Ga1ois) of Palo Alto
       Networks, via Pwn2Own 2024.
 .
 chromium (123.0.6312.86-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-2883: Use after free in ANGLE.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-2885: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-2886: Use after free in WebCodecs. Reported by
       Seunghyun Lee (@0x10n) of KAIST Hacking Lab, via Pwn2Own 2024.
     - CVE-2024-2887: Type Confusion in WebAssembly.
       Reported by Manfred Paul, via Pwn2Own 2024.
   * d/patches/ppc64le:
     - fixes/fix-clang-selection.patch: select clang on ppc64 platforms
     - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: fix
       ARM builds.
 .
   [ Andres Salomon ]
   * d/patches:
     - fixes/bad-font-gc1.patch, fixes/bad-font-gc2.patch: revert a pair of
       upstream commits that result in blink's garbage collector frequently
       deadlocking and crashing (closes: #1067886).
 .
 chromium (123.0.6312.58-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-2625: Object lifecycle issue in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-2626: Out of bounds read in Swiftshader.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-2627: Use after free in Canvas. Reported by Anonymous.
     - CVE-2024-2628: Inappropriate implementation in Downloads.
       Reported by Ath3r1s.
     - CVE-2024-2629: Incorrect security UI in iOS.
       Reported by Muneaki Nishimura (nishimunea).
     - CVE-2024-2630: Inappropriate implementation in iOS.
       Reported by James Lee (@Windowsrcer).
     - CVE-2024-2631: Inappropriate implementation in iOS.
       Reported by Ramit Gangwar.
   * d/patches:
     - upstream/bitset.patch: drop, merged upstream.
     - upstream/bookmarknode.patch: drop, merged upstream.
     - upstream/optional.patch: drop, merged upstream.
     - upstream/uniqptr.patch: drop, merged upstream.
     - fixes/gcc13-headers.patch: drop, merged upstream.
     - fixes/optional.patch: drop, merged upstream.
     - fixes/material-utils.patch: drop part that was merged upstream.
     - disable/catapult.patch: refresh.
     - bookworm/constexpr-equality.patch: include another similar fix.
     - bookworm/nvt.patch: refresh.
     - bookworm/undo-internal-alloc.patch: drop, as this was fixed upstream.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - disable/angle-perftests.patch: drop, replace with a gn build argument.
     - bookworm/rust-downgrade-osstr-users.patch: add new patch to downgrade
       clap-lex crate, as it's using 1.74 features and we only have 1.70.
     - fixes/strlcpy.patch: add strlcpy declaration (closes: #1066235).
     - fixes/optional2.patch: add another missing <optional> inclusion.
     - fixes/stats-collector.patch: add build fix for wrong header.
     - disable/screen-ai-blob.patch: add patch to not register the
       ScreenAI component. Previously, if you opened a PDF and clicked
       "open in reader mode", it would download a binary blob to
       ~/.config/chromium/screen_ai/, and do OCR stuff (and who knows
       what else) in that opaque blob without warning you. We, uh, don't
       want that. (closes: #1066910).
   * d/rules: add angle_build_tests=false build argument, which allows us to
     drop angle-perftests.patch.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/blink-fonts-shape-result.patch: pull in upstream patch for
       compilation failure in Blink SameSizeAsShapeResult class
   * d/patches/ppc64le:
     - ffmpeg/0001-Add-support-for-ppc64.patch: refresh for upstream changes
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       refresh for upstream changes
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh
       for upstream changes
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh for
       upstream changes
     - third_party/skia-vsx-instructions.patch: refresh & harden Skia against
       timing attacks.
 .
 chromium (122.0.6261.128-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-2400: Use after free in Performance Manager.
       Reported by zh1x1an1221 of Ant Group Tianqiong Security Lab.
 .
 chromium (122.0.6261.111-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-2173: Out of bounds memory access in V8.
       Reported by 5fceb6172bbf7e2c5a948183b53565b9.
     - CVE-2024-2174: Inappropriate implementation in V8.
       Reported by 5f46f4ee2e17957ba7b39897fb376be8.
     - CVE-2024-2176: Use after free in FedCM. Reported by Anonymous.
 .
 chromium (122.0.6261.94-1) unstable; urgency=high
 .
   * New upstream security release.
     - Type Confusion in V8. Reported by 5f46f4ee2e17957ba7b39897fb376be8.
     - Type Confusion in V8. Reported by
       Bohan Liu (@P4nda20371774) of Tencent Security Xuanwu Lab.
chromium (123.0.6312.105-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-3156: Inappropriate implementation in V8.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2024-3158: Use after free in Bookmarks. Reported by undoingfish.
     - CVE-2024-3159: Out of bounds memory access in V8. Reported by
       Edouard Bochin (@le_douds) and Tao Yan (@Ga1ois) of Palo Alto
       Networks, via Pwn2Own 2024.
chromium (123.0.6312.86-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-2883: Use after free in ANGLE.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-2885: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-2886: Use after free in WebCodecs. Reported by
       Seunghyun Lee (@0x10n) of KAIST Hacking Lab, via Pwn2Own 2024.
     - CVE-2024-2887: Type Confusion in WebAssembly.
       Reported by Manfred Paul, via Pwn2Own 2024.
   * d/patches/ppc64le:
     - fixes/fix-clang-selection.patch: select clang on ppc64 platforms
     - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: fix
       ARM builds.
 .
   [ Andres Salomon ]
   * d/patches:
     - fixes/bad-font-gc1.patch, fixes/bad-font-gc2.patch: revert a pair of
       upstream commits that result in blink's garbage collector frequently
       deadlocking and crashing (closes: #1067886).
chromium (123.0.6312.86-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-2883: Use after free in ANGLE.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-2885: Use after free in Dawn. Reported by wgslfuzz.
     - CVE-2024-2886: Use after free in WebCodecs. Reported by
       Seunghyun Lee (@0x10n) of KAIST Hacking Lab, via Pwn2Own 2024.
     - CVE-2024-2887: Type Confusion in WebAssembly.
       Reported by Manfred Paul, via Pwn2Own 2024.
   * d/patches/ppc64le:
     - fixes/fix-clang-selection.patch: select clang on ppc64 platforms
     - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: fix
       ARM builds.
 .
   [ Andres Salomon ]
   * d/patches:
     - fixes/bad-font-gc1.patch, fixes/bad-font-gc2.patch: revert a pair of
       upstream commits that result in blink's garbage collector frequently
       deadlocking and crashing (closes: #1067886).
 .
 chromium (123.0.6312.58-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-2625: Object lifecycle issue in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-2626: Out of bounds read in Swiftshader.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-2627: Use after free in Canvas. Reported by Anonymous.
     - CVE-2024-2628: Inappropriate implementation in Downloads.
       Reported by Ath3r1s.
     - CVE-2024-2629: Incorrect security UI in iOS.
       Reported by Muneaki Nishimura (nishimunea).
     - CVE-2024-2630: Inappropriate implementation in iOS.
       Reported by James Lee (@Windowsrcer).
     - CVE-2024-2631: Inappropriate implementation in iOS.
       Reported by Ramit Gangwar.
   * d/patches:
     - upstream/bitset.patch: drop, merged upstream.
     - upstream/bookmarknode.patch: drop, merged upstream.
     - upstream/optional.patch: drop, merged upstream.
     - upstream/uniqptr.patch: drop, merged upstream.
     - fixes/gcc13-headers.patch: drop, merged upstream.
     - fixes/optional.patch: drop, merged upstream.
     - fixes/material-utils.patch: drop part that was merged upstream.
     - disable/catapult.patch: refresh.
     - bookworm/constexpr-equality.patch: include another similar fix.
     - bookworm/nvt.patch: refresh.
     - bookworm/undo-internal-alloc.patch: drop, as this was fixed upstream.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - disable/angle-perftests.patch: drop, replace with a gn build argument.
     - bookworm/rust-downgrade-osstr-users.patch: add new patch to downgrade
       clap-lex crate, as it's using 1.74 features and we only have 1.70.
     - fixes/strlcpy.patch: add strlcpy declaration (closes: #1066235).
     - fixes/optional2.patch: add another missing <optional> inclusion.
     - fixes/stats-collector.patch: add build fix for wrong header.
     - disable/screen-ai-blob.patch: add patch to not register the
       ScreenAI component. Previously, if you opened a PDF and clicked
       "open in reader mode", it would download a binary blob to
       ~/.config/chromium/screen_ai/, and do OCR stuff (and who knows
       what else) in that opaque blob without warning you. We, uh, don't
       want that. (closes: #1066910).
     - bookworm/generate-ninja.patch: drop, merged upstream.
     - bookworm/bubble-contents.patch: update for renamed header.
     - bookworm/eraseif0.patch, eraseif-lambda.patch: drop, upstream merged
       a fix for g++-12 compilation.
     - bookworm/constexpr.patch: add yet another constexpr g++-12 fix.
     - bookworm/sizet.patch: another simple g++-12 build fix.
   * d/rules: add angle_build_tests=false build argument, which allows us to
     drop angle-perftests.patch.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/blink-fonts-shape-result.patch: pull in upstream patch for
       compilation failure in Blink SameSizeAsShapeResult class
   * d/patches/ppc64le:
     - ffmpeg/0001-Add-support-for-ppc64.patch: refresh for upstream changes
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       refresh for upstream changes
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh
       for upstream changes
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh for
       upstream changes
     - third_party/skia-vsx-instructions.patch: refresh & harden Skia against
       timing attacks.
chromium (123.0.6312.58-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-2625: Object lifecycle issue in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-2626: Out of bounds read in Swiftshader.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-2627: Use after free in Canvas. Reported by Anonymous.
     - CVE-2024-2628: Inappropriate implementation in Downloads.
       Reported by Ath3r1s.
     - CVE-2024-2629: Incorrect security UI in iOS.
       Reported by Muneaki Nishimura (nishimunea).
     - CVE-2024-2630: Inappropriate implementation in iOS.
       Reported by James Lee (@Windowsrcer).
     - CVE-2024-2631: Inappropriate implementation in iOS.
       Reported by Ramit Gangwar.
   * d/patches:
     - upstream/bitset.patch: drop, merged upstream.
     - upstream/bookmarknode.patch: drop, merged upstream.
     - upstream/optional.patch: drop, merged upstream.
     - upstream/uniqptr.patch: drop, merged upstream.
     - fixes/gcc13-headers.patch: drop, merged upstream.
     - fixes/optional.patch: drop, merged upstream.
     - fixes/material-utils.patch: drop part that was merged upstream.
     - disable/catapult.patch: refresh.
     - bookworm/constexpr-equality.patch: include another similar fix.
     - bookworm/nvt.patch: refresh.
     - bookworm/undo-internal-alloc.patch: drop, as this was fixed upstream.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - disable/angle-perftests.patch: drop, replace with a gn build argument.
     - bookworm/rust-downgrade-osstr-users.patch: add new patch to downgrade
       clap-lex crate, as it's using 1.74 features and we only have 1.70.
     - fixes/strlcpy.patch: add strlcpy declaration (closes: #1066235).
     - fixes/optional2.patch: add another missing <optional> inclusion.
     - fixes/stats-collector.patch: add build fix for wrong header.
     - disable/screen-ai-blob.patch: add patch to not register the
       ScreenAI component. Previously, if you opened a PDF and clicked
       "open in reader mode", it would download a binary blob to
       ~/.config/chromium/screen_ai/, and do OCR stuff (and who knows
       what else) in that opaque blob without warning you. We, uh, don't
       want that. (closes: #1066910).
   * d/rules: add angle_build_tests=false build argument, which allows us to
     drop angle-perftests.patch.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/blink-fonts-shape-result.patch: pull in upstream patch for
       compilation failure in Blink SameSizeAsShapeResult class
   * d/patches/ppc64le:
     - ffmpeg/0001-Add-support-for-ppc64.patch: refresh for upstream changes
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       refresh for upstream changes
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh
       for upstream changes
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh for
       upstream changes
     - third_party/skia-vsx-instructions.patch: refresh & harden Skia against
       timing attacks.
chromium (122.0.6261.128-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-2400: Use after free in Performance Manager.
       Reported by zh1x1an1221 of Ant Group Tianqiong Security Lab.
chromium (122.0.6261.128-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-2400: Use after free in Performance Manager.
       Reported by zh1x1an1221 of Ant Group Tianqiong Security Lab.
chromium (122.0.6261.111-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-2173: Out of bounds memory access in V8.
       Reported by 5fceb6172bbf7e2c5a948183b53565b9.
     - CVE-2024-2174: Inappropriate implementation in V8.
       Reported by 5f46f4ee2e17957ba7b39897fb376be8.
     - CVE-2024-2176: Use after free in FedCM. Reported by Anonymous.
chromium (122.0.6261.111-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-2173: Out of bounds memory access in V8.
       Reported by 5fceb6172bbf7e2c5a948183b53565b9.
     - CVE-2024-2174: Inappropriate implementation in V8.
       Reported by 5f46f4ee2e17957ba7b39897fb376be8.
     - CVE-2024-2176: Use after free in FedCM. Reported by Anonymous.
   * d/rules: drop bullseye nodejs workaround.
   * Add a build-dep on (the newly backported) rustc-web, drop
     d/patches/bookworm/undo-rust-req.patch, and enable rust.
chromium (122.0.6261.94-1) unstable; urgency=high
 .
   * New upstream security release.
     - Type Confusion in V8. Reported by 5f46f4ee2e17957ba7b39897fb376be8.
     - Type Confusion in V8. Reported by
       Bohan Liu (@P4nda20371774) of Tencent Security Xuanwu Lab.
chromium (122.0.6261.94-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - Type Confusion in V8. Reported by 5f46f4ee2e17957ba7b39897fb376be8.
     - Type Confusion in V8. Reported by
       Bohan Liu (@P4nda20371774) of Tencent Security Xuanwu Lab.
chromium (122.0.6261.57-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-1669: Out of bounds memory access in Blink.
       Reported by Anonymous.
     - CVE-2024-1670: Use after free in Mojo.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-1671: Inappropriate implementation in Site Isolation.
       Reported by Harry Chen.
     - CVE-2024-1672: Inappropriate implementation in Content Security Policy.
       Reported by Georg Felber (TU Wien) & Marco Squarcina (TU Wien).
     - CVE-2024-1673: Use after free in Accessibility.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2024-1674: Inappropriate implementation in Navigation.
       Reported by David Erceg.
     - CVE-2024-1675: Insufficient policy enforcement in Download.
       Reported by Bartłomiej Wacko.
     - CVE-2024-1676: Inappropriate implementation in Navigation.
       Reported by Khalil Zhani.
   * d/patches:
     - fixes/v8-compressed-ptrs.patch: drop, merged upstream.
     - fixes/stdint.patch: drop, merged upstream.
     - upstream/vector.patch: drop, merged upstream.
     - upstream/display-header.patch: drop, merged upstream.
     - upstream/bitset.patch: drop, merged upstream.
     - upstream/once_flag.patch: drop, merged upstream.
     - fixes/std-to-address.patch: refresh.
     - disable/signin.patch: refresh.
     - disable/catapult.patch: refresh.
     - bookworm/clang16.patch: refresh, and change
       -Wno-c++11-narrowing-const-reference to -Wno-c++11-narrowing.
     - bookworm/nvt.patch: refresh.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - bookworm/undo-internal-alloc.patch: revert a commit that confuses
       clang16 w/ libstdc++. We need a better workaround than this.
     - upstream/mojo.patch: update from git.
     - bookworm/constexpr-equality.patch: add a few more build fixes
       (constexpr removals).
     - upstream/uniqptr.patch: add missing include.
     - upstream/optional.patch: add missing include.
     - upstream/bookmarknode.patch: add comparison equality fix pulled from
       upstream.
     - fixes/optional.patch: add missing includes.
     - bookworm/nvt2.patch: revert another upstream c++-20 change for clang-16.
     - upstream/bitset.patch: add missing include.
     - ppc64le/v8/0002-Add-ppc64-trap-instructions.patch: refresh.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - 0001-Properly-detect-little-endian-PPC64-systems.patch: drop, upstream
       fix in GIT hash 25a6e6
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
       upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
chromium (122.0.6261.57-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-1669: Out of bounds memory access in Blink.
       Reported by Anonymous.
     - CVE-2024-1670: Use after free in Mojo.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-1671: Inappropriate implementation in Site Isolation.
       Reported by Harry Chen.
     - CVE-2024-1672: Inappropriate implementation in Content Security Policy.
       Reported by Georg Felber (TU Wien) & Marco Squarcina (TU Wien).
     - CVE-2024-1673: Use after free in Accessibility.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2024-1674: Inappropriate implementation in Navigation.
       Reported by David Erceg.
     - CVE-2024-1675: Insufficient policy enforcement in Download.
       Reported by Bartłomiej Wacko.
     - CVE-2024-1676: Inappropriate implementation in Navigation.
       Reported by Khalil Zhani.
   * d/patches:
     - fixes/v8-compressed-ptrs.patch: drop, merged upstream.
     - fixes/stdint.patch: drop, merged upstream.
     - upstream/vector.patch: drop, merged upstream.
     - upstream/display-header.patch: drop, merged upstream.
     - upstream/bitset.patch: drop, merged upstream.
     - upstream/once_flag.patch: drop, merged upstream.
     - fixes/std-to-address.patch: refresh.
     - disable/signin.patch: refresh.
     - disable/catapult.patch: refresh.
     - bookworm/clang16.patch: refresh, and change
       -Wno-c++11-narrowing-const-reference to -Wno-c++11-narrowing.
     - bookworm/nvt.patch: refresh.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - bookworm/undo-internal-alloc.patch: revert a commit that confuses
       clang16 w/ libstdc++. We need a better workaround than this.
     - upstream/mojo.patch: update from git.
     - bookworm/constexpr-equality.patch: add a few more build fixes
       (constexpr removals).
     - upstream/uniqptr.patch: add missing include.
     - upstream/optional.patch: add missing include.
     - upstream/bookmarknode.patch: add comparison equality fix pulled from
       upstream.
     - fixes/optional.patch: add missing includes.
     - bookworm/nvt2.patch: revert another upstream c++-20 change for clang-16.
     - upstream/bitset.patch: add missing include.
     - ppc64le/v8/0002-Add-ppc64-trap-instructions.patch: refresh.
     - bookworm/eraseif0.patch: revert another commit; needed by
       eraseif-lambda.patch.
     - bookworm/eraseif-lamba.patch: refresh.
     - bookworm/undo-rust-req.patch: refresh.
     - bookworm/bubble-contents.patch: remove static_assert() that fails with
       libstdc++12.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - 0001-Properly-detect-little-endian-PPC64-systems.patch: drop, upstream
       fix in GIT hash 25a6e6
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
       upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
chromium (121.0.6167.160-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-1284: Use after free in Mojo. Reported by Anonymous.
     - CVE-2024-1283: Heap buffer overflow in Skia.
       Reported by Jorge Buzeti (@r3tr074).
chromium (121.0.6167.160-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-1284: Use after free in Mojo. Reported by Anonymous.
     - CVE-2024-1283: Heap buffer overflow in Skia.
       Reported by Jorge Buzeti (@r3tr074).
chromium (121.0.6167.139-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-1060: Use after free in Canvas. Reported by Anonymous.
     - CVE-2024-1059: Use after free in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-1077: Use after free in Network.
       Reported by Microsoft Security Research Center.

cinder (2:21.3.1-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream release.
   * Drop CVE-2023-2088_Reject_unsafe_delete_attachment_calls.patch applied
     upstream.
   * Blacklist RBDISCSITestCase.test_unsupported_client_version().
   * Add add-params-thin_provisioning-equal-one.patch.
   * CVE-2024-32498: Arbitrary file access through custom QCOW2 external data.
     Add upstream patch (Closes: #1074763):
     - cve-2024-32498-cinder-stable-2023.1.patch
   * Build-depends on qemu-utils.
   * Correctly calls manage_glance_api_servers() in config script.

cockpit (287.1-0+deb12u3) bookworm; urgency=medium
 .
   * Add 0002-pam-ssh-add-Fix-insecure-killing-of-session-ssh-agen.patch:
     Cockpit’s pam_ssh_add module had a vulnerability when user_readenv is
     enabled in /etc/pam.d/cockpit (which is the default on Debian). This could
     cause a Denial of Service if a locally-authenticated user crafted a
     ~/.pam_environment file: it would kill an arbitrary process on the
     system with root privileges when logging out of a Cockpit session.
     Patch cherry-picked from upstream (08965365ac311f906a5).
     [CVE-2024-6126]

cups (2.4.2-3+deb12u7) bookworm; urgency=medium
 .
   * fix regression of CVE-2024-35235 in case only domain sockets
     are used
cups (2.4.2-3+deb12u6) bookworm; urgency=medium
 .
   * CVE-2024-35235 (Closes: #1073002)
     fix domain socket handling

curl (7.88.1-10+deb12u7) bookworm; urgency=medium
 .
   * Team upload.
   * debian/patches/CVE-2024-7264*: import and backport upstream patches to fix
     CVE-2024-7264 - ASN.1 date parser overread. (Closes: #1077656)

cyrus-imapd (3.6.1-4+deb12u3) bookworm; urgency=medium
 .
   * Fix regression introduced in CVE-2024-34055 fix (Closes: #1075853)

dcm2niix (1.0.20220720-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * CVE-2024-27629.patch: new: fix risk of arbitrary code execution.
     Fixes: CVE-2024-27629 (Closes: #1074534)

debian-installer (20230607+deb12u7) bookworm; urgency=medium
 .
   * Bump Linux kernel ABI to 6.1.0-25.
   * Adjust linux-image build-deps as well.

debian-installer-netboot-images (20230607+deb12u7) bookworm; urgency=medium
 .
   * Update to 20230607+deb12u7, from bookworm-proposed-updates.

dmitry (1.3a-1.2+deb12u1) bookworm; urgency=medium
 .
   * QA upload.
 .
   * Fix format string bug (#3).
   * Fix handling externally-controlled format strings and buffer overflows
   * Do not let frmtdbuff overflow in nic_format_buff.
   * Switched maintainer to QA group, to reflect the packages orphaned state.
   * Solves CVE-2024-31837, CVE-2020-14931 and CVE-2017-7938.

dovecot (1:2.3.19.1+dfsg1-2.1+deb12u1) bookworm-security; urgency=medium
 .
   * Security team upload:
   * [4fb8905] Import upstream fix for CVE-2024-23184 (Closes: #1078876)
   * [f428c53] Import upstream fix for CVE-2024-23185 (Closes: #1078877)

dropbear (2022.83-1+deb12u2) bookworm; urgency=medium
 .
   * Fix noremotetcp behavior.  Keepalive packets were being ignored when the
     ‛-k’ flag (or ‛no-port-forwarding’ authorized_keys(5) restriction) was
     used.  (Closes: #1069768)

emacs (1:28.2+1-15+deb12u3) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * org-link-expand-abbrev: Do not evaluate arbitrary unsafe Elisp code
     (CVE-2024-39331) (Closes: #1074137)

exim4 (4.96-15+deb12u5) bookworm-security; urgency=high
 .
   * Fix parsing of multiline RFC 2231 header filename parameter in mime ACL.
     CVE-2024-39929 Closes: #1075785

ffmpeg (7:5.1.6-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 5.1.6
     - Fixes CVE-2024-7055, CVE-2024-7272

firefox-esr (115.14.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-34, also known as:
     CVE-2024-7519, CVE-2024-7521, CVE-2024-7522, CVE-2024-7524,
     CVE-2024-7525, CVE-2024-7526, CVE-2024-7527, CVE-2024-7529,
     CVE-2024-7531.
firefox-esr (115.14.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-34, also known as:
     CVE-2024-7519, CVE-2024-7521, CVE-2024-7522, CVE-2024-7524,
     CVE-2024-7525, CVE-2024-7526, CVE-2024-7527, CVE-2024-7529,
     CVE-2024-7531.
firefox-esr (115.13.0esr-2) unstable; urgency=medium
 .
   * gfx/cairo/libpixman/src/pixman-arm-simd-asm.S: Adjust arm assembly for
     binutils change.
firefox-esr (115.13.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-30, also known as:
     CVE-2024-6600, CVE-2024-6601, CVE-2024-6602, CVE-2024-6603,
     CVE-2024-6604.
 .
   * debian/repack.py, debian/upstream.mk: Handle the upstream l10n migration
     to github.
firefox-esr (115.13.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-30, also known as:
     CVE-2024-6600, CVE-2024-6601, CVE-2024-6602, CVE-2024-6603,
     CVE-2024-6604.
 .
   * debian/repack.py, debian/upstream.mk: Handle the upstream l10n migration
     to github.
firefox-esr (115.13.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-30, also known as:
     CVE-2024-6600, CVE-2024-6601, CVE-2024-6602, CVE-2024-6603,
     CVE-2024-6604.
 .
   * debian/repack.py, debian/upstream.mk: Handle the upstream l10n migration
     to github.
firefox-esr (115.12.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-26, also known as:
     CVE-2024-5702, CVE-2024-5688, CVE-2024-5690, CVE-2024-5691,
     CVE-2024-5693, CVE-2024-5696, CVE-2024-5700.

flatpak (1.14.10-1~deb12u1) bookworm-security; urgency=high
 .
   * Backport upstream stable release into Debian 12 (CVE-2024-42472)
   * d/control: Relax required bubblewrap version to 0.8.0-2+deb12u1.
     This version has a backport of the required --bind-fd option.
   * Other changes relative to 1.14.10-1 in unstable:
     - Revert polkitd dependencies to polkitd | policykit-1 as previously
       used in bookworm
     - Revert pkgconf dependencies to pkg-config as previously used in
       bookworm
     - Revert location of systemd unit to /lib/systemd/system as previously
       used in bookworm, dropping versioned dependency on debhelper 13.11.6~
     - Revert changes related to Debian 13 GIR XML packaging policy
 .
 flatpak (1.14.10-1) unstable; urgency=high
 .
   * New upstream stable release
     - Don't follow symbolic links when mounting persistent directories
       (--persist option). This prevents a sandbox escape where a malicious
       or compromised app could edit the symlink to point to a directory
       that the app should not have been allowed to read or write.
       (CVE-2024-42472, GHSA-7hgv-f2j8-xw87)
   * d/control: Bump required bubblewrap version to 0.10.0.
     This adds the new --bind-fd option, required to solve CVE-2024-42472
     without introducing a race condition.
flatpak (1.14.8-1) unstable; urgency=medium
 .
   * New upstream stable release 1.14.7
     - Automatically reload D-Bus session bus configuration when apps are
       installed or upgraded, ensuring that any new .service files get
       picked up
     - Allow apps to be run if the D-Bus system bus is missing or
       non-functional
     - Add several more environment variables to the list not inherited
       into the sandbox:
       + $LD_AUDIT, $LD_PRELOAD for ld.so
       + $__EGL_VENDOR_LIBRARY_DIRS, etc. for EGL
       + $VK_ADD_DRIVER_FILES, etc. for Vulkan
       + $container, when running Flatpak inside a container manager
     - Use xdg-desktop-portal-gnome, if installed, to detect whether apps
       are running in the background
     - If an app's data is migrated to a new name and then deleted, don't
       try to migrate it again, avoiding a recursive symlink loop
     - Don't leak temporary variable $new_dirs from /etc/profile.d/flatpak.sh
       into user shell sessions
     - Avoid an out-of-bounds left-shift (which is technically undefined
       behaviour) when hashing object names
     - Fix critical warnings "GFileInfo created without
       standard::is-symlink" when using /var/lib/flatpak/extension with
       testing/unstable glib2.0
     - Fix validation of documentation against Docbook DTD
     - Fix a misleading comment in the test for CVE-2024-32462
     - Fix a double-free in the test suite
     - Skip more tests if bubblewrap works but FUSE doesn't
   * New upstream stable release 1.14.8
     - Respin of 1.14.7 reverting unintended submodule changes
   * d/control: Replace one more polkitd|policykit-1 dependency with polkitd
   * d/control: Move dbus-system-bus from Depends to Recommends.
     `flatpak run` no longer has a working system bus as a hard requirement.

gettext.js (0.7.0-3+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Fix SSRF issue (Closes: #1078880, CVE-2024-43370)

glance (2:25.1.0-2+deb12u1) bookworm-security; urgency=high
 .
   * CVE-2024-32498: Arbitrary file access through custom QCOW2 external data.
     Add upstream patch (Closes: #1074761):
     - CVE-2024-32498_1_Limit_CaptureRegion_sizes_in_format_inspector_for_VMDK_and_VHDX.patch
     - CVE-2024-32498_2_Support_Stream_Optimized_VMDKs.patch
     - CVE-2024-32498_3_1_glance-stable-2023.1.patch
     - CVE-2024-32498_3_2_glance-stable-2023.1.patch
     - CVE-2024-32498_3_3_glance-stable-2023.1.patch
     - CVE-2024-32498_3_4_glance-stable-2023.1.patch
     - CVE-2024-32498_3_5_glance-stable-2023.1.patch
     - CVE-2024-32498_3_6_glance-stable-2023.1.patch
     - CVE-2024-32498_3_7_glance-stable-2023.1.patch

glibc (2.36-9+deb12u8) bookworm; urgency=medium
 .
   * debian/patches/git-updates.diff: update from upstream stable branch:
     - debian/patches/kfreebsd/submitted-auxv.diff: refreshed.
     - debian/patches/any/local-CVE-2024-2961-iso-2022-cn-ext.diff: upstreamed.
     - debian/patches/any/local-CVE-2024-33599-nscd.diff: upstreamed.
     - debian/patches/any/local-CVE-2024-33600-nscd.diff: upstreamed.
     - debian/patches/any/local-CVE-2024-33601-33602-nscd.diff: upstreamed.
     - Fixes ffsll() performance issue depending on code alignment.
     - Fixes memmove/memset on sparc32.
     - Fixes pthread_cancel on sparc32.
     - Fixes a possible crash in _dl_start_user on arm32.
     - Fixes poor malloc/free performance due to lock contentions between
       threads when using core pinning.
     - Uses 64-bit time_t in testsuite on 32-bit systems.
     - Fixes rseq support when built against newer kernel headers.
     - Performance improvements for string functions on arm64.
     - Disables arm64 SVE functions on kernel <= 6.2.0 due to performance
       issues.
     - Fixes ld.so crash on powerpc64* when built with GCC 14.
     - Fixes ld.so crash on amd64 when built with APX enabled.
     - Fixes __WORDSIZE definition on sparc32 with sparcv9.
     - Fixes getutxent() on 32-bit architecture with _TIME_BITS=64.
     - Fixes y2038 regression in nscd following CVE-2024-33601 and
       CVE-2024-33602 fix.
     - Fixes build with --enable-hardcoded-path-in-tests with newer linkers.
     - Fixes crash in wcsncmp() in z13/vector-optimized s390 implementation.
     - Fixes rseq extension mechanism.
     - Fixes misc/tst-preadvwritev2 and misc/tst-preadvwritev64v2 with kernel
       6.9+.
     - Fixes freeing uninitialized memory in libc_freeres_fn().  Closes:
       #1073916.

glogic (2.6-6+deb12u1) bookworm; urgency=medium
 .
   * Add patch to require Gtk 3.0 and PangoCairo 1.0
     (Closes: #1058575)

graphviz (2.42.2-7+deb12u1) bookworm; urgency=medium
 .
   * Apply fix for broken scale (closes: #1075904).

gtk+2.0 (2.24.33-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * d/control.in, d/gbp.conf: Set packaging branch for Debian 12 updates
   * d/control.in: Freeze previous Uploaders
   * d/p/CVE-2024-6655.patch:
     Add patch backported from 3.24.43 to avoid looking for modules in
     current working directory (CVE-2024-6655)
gtk+2.0 (2.24.33-2+deb11u1) bullseye; urgency=medium
 .
   * Team upload
   * d/control.in, d/gbp.conf: Set packaging branch for Debian 11 updates
   * d/control.in: Freeze previous Uploaders
   * d/p/CVE-2024-6655.patch:
     Add patch backported from 3.24.43 to avoid looking for modules in
     current working directory (CVE-2024-6655)

gtk+3.0 (3.24.38-2~deb12u2) bookworm; urgency=medium
 .
   * d/p/Stop-looking-for-modules-in-cwd.patch:
     Add patch backported from 3.24.43 to avoid looking for modules in
     current working directory (CVE-2024-6655)

imagemagick (8:6.9.11.60+dfsg-1.6+deb12u2) bookworm; urgency=medium
 .
   * CVE-2023-34151 fix was incomplete (Closes: #1070340)
   * Fix variation of CVE-2023-1289 found by testing.

initramfs-tools (0.142+deb12u1) bookworm; urgency=medium
 .
   [ Ben Hutchings ]
   * [522d475] d/salsa-ci.yml: Set RELEASE to bookworm
   * [05e5fb9] hook_functions: Fix copy_file with source including a directory
     symlink (Closes: #1076539)
   * [f52ae2d] hook-functions: copy_file: Canonicalise target filename
     (Closes: #1079276)
 .
   [ szubersk ]
   * [d502a7f] Fix/ignore ShellCheck findings
 .
   [ Benjamin Drung ]
   * [ce185c3] test: Fix too small ext2 block count
   * [cd5e8e8] install hid-multitouch module for Surface Pro 4 Keyboard
     (LP: #1772094)
 .
   [ Arnaud Rebillout ]
   * [4cc2bc7] Add hyper-keyboard module, needed to enter LUKS password in
     Hyper-V (Closes: #1028511)
 .
   [ Alper Nebi Yasak ]
   * [5d28dad] hook-functions: auto_add_modules: Add onboard_usb_hub,
     onboard_usb_dev

intel-microcode (3.20240813.1~deb12u1) bookworm; urgency=medium
 .
   * Build for bookworm (no changes from 3.20240813.1)
 .
 intel-microcode (3.20240813.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240813 (closes: #1078742)
     - Mitigations for INTEL-SA-01083 (CVE-2024-24853)
       Incorrect behavior order in transition between executive monitor and SMI
       transfer monitor (STM) in some Intel Processors may allow a privileged
       user to potentially enable escalation of privilege via local access.
     - Mitigations for INTEL-SA-01118 (CVE-2024-25939)
       Mirrored regions with different values in 3rd Generation Intel Xeon
       Scalable Processors may allow a privileged user to potentially enable
       denial of service via local access.
     - Mitigations for INTEL-SA-01100 (CVE-2024-24980)
       Protection mechanism failure in some 3rd, 4th, and 5th Generation Intel
       Xeon Processors may allow a privileged user to potentially enable
       escalation of privilege via local access.
     - Mitigations for INTEL-SA-01038 (CVE-2023-42667)
       Improper isolation in the Intel Core Ultra Processor stream cache
       mechanism may allow an authenticated user to potentially enable
       escalation of privilege via local access.
     - Mitigations for INTEL-SA-01046 (CVE-2023-49141)
       Improper isolation in some Intel® Processors stream cache mechanism may
       allow an authenticated user to potentially enable escalation of
       privilege via local access.
     - Fix for unspecified functional issues on several processor models
   * Updated microcodes:
     sig 0x00050657, pf_mask 0xbf, 2024-03-01, rev 0x5003707, size 39936
     sig 0x0005065b, pf_mask 0xbf, 2024-04-01, rev 0x7002904, size 30720
     sig 0x000606a6, pf_mask 0x87, 2024-04-01, rev 0xd0003e7, size 308224
     sig 0x000606c1, pf_mask 0x10, 2024-04-03, rev 0x10002b0, size 300032
     sig 0x000706e5, pf_mask 0x80, 2024-02-15, rev 0x00c6, size 114688
     sig 0x000806c1, pf_mask 0x80, 2024-02-15, rev 0x00b8, size 112640
     sig 0x000806c2, pf_mask 0xc2, 2024-02-15, rev 0x0038, size 99328
     sig 0x000806d1, pf_mask 0xc2, 2024-02-15, rev 0x0052, size 104448
     sig 0x000806e9, pf_mask 0xc0, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000806e9, pf_mask 0x10, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000806ea, pf_mask 0xc0, 2024-02-01, rev 0x00f6, size 105472
     sig 0x000806eb, pf_mask 0xd0, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000806ec, pf_mask 0x94, 2024-02-05, rev 0x00fc, size 106496
     sig 0x00090661, pf_mask 0x01, 2024-04-05, rev 0x001a, size 20480
     sig 0x000906ea, pf_mask 0x22, 2024-02-01, rev 0x00f8, size 105472
     sig 0x000906eb, pf_mask 0x02, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000906ec, pf_mask 0x22, 2024-02-01, rev 0x00f8, size 106496
     sig 0x000906ed, pf_mask 0x22, 2024-02-05, rev 0x0100, size 106496
     sig 0x000a0652, pf_mask 0x20, 2024-02-01, rev 0x00fc, size 97280
     sig 0x000a0653, pf_mask 0x22, 2024-02-01, rev 0x00fc, size 98304
     sig 0x000a0655, pf_mask 0x22, 2024-02-01, rev 0x00fc, size 97280
     sig 0x000a0660, pf_mask 0x80, 2024-02-01, rev 0x00fe, size 97280
     sig 0x000a0661, pf_mask 0x80, 2024-02-01, rev 0x00fc, size 97280
     sig 0x000a0671, pf_mask 0x02, 2024-03-07, rev 0x0062, size 108544
     sig 0x000a06a4, pf_mask 0xe6, 2024-04-15, rev 0x001e, size 137216
   * source: update symlinks to reflect id of the latest release, 20240813
   * postinst, postrm: switch to dpkg-trigger to run update-initramfs
 .
 intel-microcode (3.20240531.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240531
     * Fix unspecified functional issues on Pentium Silver N/J5xxx,
       Celeron N/J4xxx
     * Updated Microcodes:
       sig 0x000706a1, pf_mask 0x01, 2024-04-19, rev 0x0042, size 76800
   * source: update symlinks to reflect id of the latest release, 20240531
intel-microcode (3.20240813.1~deb11u1) bullseye; urgency=medium
 .
   * Build for bullseye (no changes from 3.20240813.1)
 .
 intel-microcode (3.20240813.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240813 (closes: #1078742)
     - Mitigations for INTEL-SA-01083 (CVE-2024-24853)
       Incorrect behavior order in transition between executive monitor and SMI
       transfer monitor (STM) in some Intel Processors may allow a privileged
       user to potentially enable escalation of privilege via local access.
     - Mitigations for INTEL-SA-01118 (CVE-2024-25939)
       Mirrored regions with different values in 3rd Generation Intel Xeon
       Scalable Processors may allow a privileged user to potentially enable
       denial of service via local access.
     - Mitigations for INTEL-SA-01100 (CVE-2024-24980)
       Protection mechanism failure in some 3rd, 4th, and 5th Generation Intel
       Xeon Processors may allow a privileged user to potentially enable
       escalation of privilege via local access.
     - Mitigations for INTEL-SA-01038 (CVE-2023-42667)
       Improper isolation in the Intel Core Ultra Processor stream cache
       mechanism may allow an authenticated user to potentially enable
       escalation of privilege via local access.
     - Mitigations for INTEL-SA-01046 (CVE-2023-49141)
       Improper isolation in some Intel® Processors stream cache mechanism may
       allow an authenticated user to potentially enable escalation of
       privilege via local access.
     - Fix for unspecified functional issues on several processor models
   * Updated microcodes:
     sig 0x00050657, pf_mask 0xbf, 2024-03-01, rev 0x5003707, size 39936
     sig 0x0005065b, pf_mask 0xbf, 2024-04-01, rev 0x7002904, size 30720
     sig 0x000606a6, pf_mask 0x87, 2024-04-01, rev 0xd0003e7, size 308224
     sig 0x000606c1, pf_mask 0x10, 2024-04-03, rev 0x10002b0, size 300032
     sig 0x000706e5, pf_mask 0x80, 2024-02-15, rev 0x00c6, size 114688
     sig 0x000806c1, pf_mask 0x80, 2024-02-15, rev 0x00b8, size 112640
     sig 0x000806c2, pf_mask 0xc2, 2024-02-15, rev 0x0038, size 99328
     sig 0x000806d1, pf_mask 0xc2, 2024-02-15, rev 0x0052, size 104448
     sig 0x000806e9, pf_mask 0xc0, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000806e9, pf_mask 0x10, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000806ea, pf_mask 0xc0, 2024-02-01, rev 0x00f6, size 105472
     sig 0x000806eb, pf_mask 0xd0, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000806ec, pf_mask 0x94, 2024-02-05, rev 0x00fc, size 106496
     sig 0x00090661, pf_mask 0x01, 2024-04-05, rev 0x001a, size 20480
     sig 0x000906ea, pf_mask 0x22, 2024-02-01, rev 0x00f8, size 105472
     sig 0x000906eb, pf_mask 0x02, 2024-02-01, rev 0x00f6, size 106496
     sig 0x000906ec, pf_mask 0x22, 2024-02-01, rev 0x00f8, size 106496
     sig 0x000906ed, pf_mask 0x22, 2024-02-05, rev 0x0100, size 106496
     sig 0x000a0652, pf_mask 0x20, 2024-02-01, rev 0x00fc, size 97280
     sig 0x000a0653, pf_mask 0x22, 2024-02-01, rev 0x00fc, size 98304
     sig 0x000a0655, pf_mask 0x22, 2024-02-01, rev 0x00fc, size 97280
     sig 0x000a0660, pf_mask 0x80, 2024-02-01, rev 0x00fe, size 97280
     sig 0x000a0661, pf_mask 0x80, 2024-02-01, rev 0x00fc, size 97280
     sig 0x000a0671, pf_mask 0x02, 2024-03-07, rev 0x0062, size 108544
     sig 0x000a06a4, pf_mask 0xe6, 2024-04-15, rev 0x001e, size 137216
   * source: update symlinks to reflect id of the latest release, 20240813
   * postinst, postrm: switch to dpkg-trigger to run update-initramfs
 .
 intel-microcode (3.20240531.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240531
     * Fix unspecified functional issues on Pentium Silver N/J5xxx,
       Celeron N/J4xxx
     * Updated Microcodes:
       sig 0x000706a1, pf_mask 0x01, 2024-04-19, rev 0x0042, size 76800
   * source: update symlinks to reflect id of the latest release, 20240531
intel-microcode (3.20240531.1+nmu1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Install aliased files into /usr (DEP17 M2) (Closes: #1060200)
   * Add superficial autopkgtest for initramfs hook.
intel-microcode (3.20240531.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240531
     * Fix unspecified functional issues on Pentium Silver N/J5xxx,
       Celeron N/J4xxx
     * Updated Microcodes:
       sig 0x000706a1, pf_mask 0x01, 2024-04-19, rev 0x0042, size 76800
   * source: update symlinks to reflect id of the latest release, 20240531
intel-microcode (3.20240514.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240514
     * Mitigations for INTEL-SA-01051 (CVE-2023-45733)
       Hardware logic contains race conditions in some Intel Processors may
       allow an authenticated user to potentially enable partial information
       disclosure via local access.
     * Mitigations for INTEL-SA-01052 (CVE-2023-46103)
       Sequence of processor instructions leads to unexpected behavior in
       Intel Core Ultra Processors may allow an authenticated user to
       potentially enable denial of service via local access.
     * Mitigations for INTEL-SA-01036 (CVE-2023-45745,  CVE-2023-47855)
       Improper input validation in some Intel TDX module software before
       version 1.5.05.46.698 may allow a privileged user to potentially enable
       escalation of privilege via local access.
     * Fix for unspecified functional issues on 4th gen and 5th gen Xeon
       Scalable, 12th, 13th and 14th gen Intel Core processors, as well as for
       Core i3 N-series processors.
     * Updated microcodes:
       sig 0x000806f8, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0, size 581632
       sig 0x000806f7, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f6, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f5, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f4, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f8, pf_mask 0x10, 2024-02-05, rev 0x2c000390, size 614400
       sig 0x000806f6, pf_mask 0x10, 2024-02-05, rev 0x2c000390
       sig 0x000806f5, pf_mask 0x10, 2024-02-05, rev 0x2c000390
       sig 0x000806f4, pf_mask 0x10, 2024-02-05, rev 0x2c000390
       sig 0x00090672, pf_mask 0x07, 2023-12-05, rev 0x0035, size 224256
       sig 0x00090675, pf_mask 0x07, 2023-12-05, rev 0x0035
       sig 0x000b06f2, pf_mask 0x07, 2023-12-05, rev 0x0035
       sig 0x000b06f5, pf_mask 0x07, 2023-12-05, rev 0x0035
       sig 0x000906a3, pf_mask 0x80, 2023-12-05, rev 0x0433, size 222208
       sig 0x000906a4, pf_mask 0x80, 2023-12-05, rev 0x0433
       sig 0x000906a4, pf_mask 0x40, 2023-12-07, rev 0x0007, size 119808
       sig 0x000b0671, pf_mask 0x32, 2024-01-25, rev 0x0123, size 215040
       sig 0x000b06e0, pf_mask 0x11, 2023-12-07, rev 0x0017, size 138240
       sig 0x000c06f2, pf_mask 0x87, 2024-02-05, rev 0x21000230, size 552960
       sig 0x000c06f1, pf_mask 0x87, 2024-02-05, rev 0x21000230
   * source: update symlinks to reflect id of the latest release, 20240514

ipmitool (1.8.19-4+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Add missing enterprise-numbers.txt file (Closes: #1040186).

krb5 (1.20.1-2+deb12u2) bookworm-security; urgency=high
 .
   * CVE-2024-37370: an unauthenticated attacker can modify the
     extra count in an RFC 4121 GSS token, causing the token to appear
     truncated.
   *  CVE-2024-37371: an attacker can cause invalid memory reads by
     sending an invalid GSS token.

libapache2-mod-auth-openidc (2.4.12.3-2+deb12u2) bookworm; urgency=medium
 .
   * Add patch for "oidc_check_x_forwarded_hdr check segfaults"
     (Closes: #1076429)

libnvme (1.3-1+deb12u1) bookworm; urgency=medium
 .
   * Uploading to bookworm.
   * Cherry-picking upstream commits to fix buffer overflow during scanning
     devices that do not support sub-4k reads (Closes: #1054631).

libreoffice (4:7.4.7-1+deb12u4) bookworm-security; urgency=medium
 .
   * remove-ability-to-trust-not-validated-macro-signatures-in-high-security.diff:
     as name says (CVE-2024-6472)
 .
   * debian/rules:
     - fix kio sed call introduced in last upload

libvirt (9.0.0-4+deb12u1) bookworm; urgency=medium
 .
   [ Cyril Brulebois ]
   * [6a7f95a] patches: Add backports
     - backport/virsh-Make-domif-setlink-work-more-than-once.patch
       - Closes: #1075718
 .
   [ Andrea Bolognani ]
   * [56f1ae3] patches: Add backports
     - backport/Fix-off-by-one-error-in-udevListInterfacesByStatus.patch
       - Fixes CVE-2024-1441
     - backport/interface-fix-udev_device_get_sysattr_value-return-value-.patch
       - Fixes CVE-2024-2496
     - backport/remote-check-for-negative-array-lengths-before-allocation.patch
       - Fixes CVE-2024-2494
     - backport/storage-Fix-returning-of-locked-objects-from-virStoragePo.patch
       - Fixes CVE-2023-3750
 .
   [ Lee Garrett ]
   * [7dc22f9] patches: Add backports
     - backport/qemu-domain-Fix-logic-when-tainting-domain.patch
       - Closes: #1052405

libvpx (1.12.0-1+deb12u3) bookworm-security; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2024-5197: Integer overflows

linux (6.1.106-3) bookworm; urgency=medium
 .
   * udp: allow header check for dodgy GSO_UDP_L4 packets.
   * gso: fix dodgy bit handling for GSO_UDP_L4
   * net: more strict VIRTIO_NET_HDR_GSO_UDP_L4 validation
   * net: drop bad gso csum_start and offset in virtio_net_hdr (Closes: #1079684)
   * Bump ABI to 25
linux (6.1.106-2) bookworm; urgency=medium
 .
   * media: solo6x10: replace max(a, min(b, c)) by clamp(b, a, c)
linux (6.1.106-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.100
     - Compiler Attributes: Add __uninitialized macro
     - mm: prevent derefencing NULL ptr in pfn_section_valid()
     - cachefiles: propagate errors from vfs_getxattr() to avoid infinite loop
     - cachefiles: narrow the scope of triggering EPOLLIN events in ondemand mode
     - cachefiles: stop sending new request when dropping object
     - cachefiles: cancel all requests for the object that is being dropped
     - cachefiles: wait for ondemand_object_worker to finish when dropping object
     - cachefiles: cyclic allocation of msg_id to avoid reuse
     - cachefiles: add missing lock protection when polling
     - filelock: fix potential use-after-free in posix_lock_inode
     - fs/dcache: Re-use value stored to dentry->d_flags instead of re-reading
     - vfs: don't mod negative dentry count when on shrinker list
     - tcp: fix incorrect undo caused by DSACK of TLP retransmit
     - net: phy: microchip: lan87xx: reinit PHY after cable test
     - skmsg: Skip zero length skb in sk_msg_recvmsg
     - net: fix rc7's __skb_datagram_iter()
     - i40e: Fix XDP program unloading while removing the driver
     - net: ethernet: lantiq_etop: fix double free in detach
     - bpf: Refactor some inode/task/sk storage functions for reuse
     - bpf: Reduce smap->elem_size
     - bpf: use bpf_map_kvcalloc in bpf_local_storage
     - bpf: Remove __bpf_local_storage_map_alloc
     - bpf: fix order of args in call to bpf_map_kvcalloc
     - net: ethernet: mtk-star-emac: set mac_managed_pm when probing
     - ppp: reject claimed-as-LCP but actually malformed packets
     - ethtool: netlink: do not return SQI value if link is down
     - udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port().
     - net/sched: Fix UAF when resolving a clash
     - net, sunrpc: Remap EPERM in case of connection failure in
       xs_tcp_setup_socket
     - [s390x] Mark psw in __load_psw_mask() as __unitialized
     - firmware: cs_dsp: Fix overflow checking of wmfw header
     - firmware: cs_dsp: Return error if block header overflows file
     - firmware: cs_dsp: Validate payload length before processing block
     - firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers
     - firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files
     - cifs: fix setting SecurityFlags to true
     - Revert "sched/fair: Make sure to try to detach at least one movable task"
     - tcp: use signed arithmetic in tcp_rtx_probe0_timed_out()
     - tcp: avoid too many retransmit packets (CVE-2024-41007)
     - USB: serial: option: add Telit generic core-dump composition
     - USB: serial: option: add Telit FN912 rmnet compositions
     - USB: serial: option: add Fibocom FM350-GL
     - USB: serial: option: add support for Foxconn T99W651
     - USB: serial: option: add Netprisma LCUK54 series modules
     - USB: serial: option: add Rolling RW350-GL variants
     - USB: serial: mos7840: fix crash on resume
     - USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k
     - usb: gadget: configfs: Prevent OOB read/write in usb_string_copy()
     - USB: core: Fix duplicate endpoint bug by clearing reserved bits in the
       descriptor
     - hpet: Support 32-bit userspace
     - xhci: always resume roothubs if xHC was reset during resume
     - ksmbd: discard write access to the directory open
     - nvmem: rmem: Fix return value of rmem_read()
     - nvmem: meson-efuse: Fix return value of nvmem callbacks
     - nvmem: core: only change name to fram for current attribute
     - [x86] platform/x86: toshiba_acpi: Fix array out-of-bounds access
     - ALSA: hda/realtek: add quirk for Clevo V5[46]0TU
     - ALSA: hda/realtek: Enable Mute LED on HP 250 G7
     - ALSA: hda/realtek: Limit mic boost on VAIO PRO PX
     - Fix userfaultfd_api to return EINVAL as expected
     - libceph: fix race between delayed_work() and ceph_monc_stop()
     - ACPI: processor_idle: Fix invalid comparison with insertion sort for
       latency
     - wireguard: selftests: use acpi=off instead of -no-acpi for recent QEMU
     - wireguard: allowedips: avoid unaligned 64-bit memory accesses
     - wireguard: queueing: annotate intentional data race in cpu round robin
     - wireguard: send: annotate intentional data race in checking empty queue
     - [x86] retpoline: Move a NOENDBR annotation to the SRSO dummy return thunk
     - bpf: Allow reads from uninit stack
     - nilfs2: fix kernel bug on rename operation of broken directory
     - sched: Move psi_account_irqtime() out of update_rq_clock_task() hotpath
     - i2c: mark HostNotify target address as used
     - [x86] entry/64: Remove obsolete comment on tracing vs. SYSRET
     - [x86] bhi: Avoid warning in #DB handler due to BHI mitigation
     - kbuild: Make ld-version.sh more robust against version string changes
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.101
     - minmax: sanity check constant bounds when clamping
     - minmax: clamp more efficiently by avoiding extra comparison
     - minmax: fix header inclusions
     - minmax: allow min()/max()/clamp() if the arguments have the same
       signedness.
     - minmax: allow comparisons of 'int' against 'unsigned char/short'
     - minmax: relax check to allow comparison between unsigned arguments and
       signed constants
     - gcc-plugins: Rename last_stmt() for GCC 14+
     - filelock: Remove locks reliably when fcntl/close race is detected
       (CVE-2024-41012)
     - scsi: core: alua: I/O errors for ALUA state transitions
     - scsi: qedf: Don't process stag work during unload and recovery
     - scsi: qedf: Wait for stag work during unload
     - scsi: qedf: Set qed_slowpath_params to zero before use
     - efi/libstub: zboot.lds: Discard .discard sections
     - ACPI: EC: Abort address space access upon error
     - ACPI: EC: Avoid returning AE_OK on errors in address space handler
     - tools/power/cpupower: Fix Pstate frequency reporting on AMD Family 1Ah
       CPUs
     - wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata
     - wifi: mac80211: apply mcast rate only if interface is up
     - wifi: mac80211: handle tasklet frames before stopping
     - wifi: cfg80211: fix 6 GHz scan request building
     - wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup
     - wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd
     - wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option
     - wifi: iwlwifi: mvm: Fix scan abort handling with HW rfkill
     - wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan()
     - of/irq: Factor out parsing of interrupt-map parent phandle+args from
       of_irq_parse_raw()
     - Input: silead - Always support 10 fingers
     - net: ipv6: rpl_iptunnel: block BH in rpl_output() and rpl_input()
     - ila: block BH in ila_output()
     - null_blk: fix validation of block size
     - kconfig: gconf: give a proper initial state to the Save button
     - kconfig: remove wrong expr_trans_bool()
     - HID: Ignore battery for ELAN touchscreens 2F2C and 4116
     - NFSv4: Fix memory leak in nfs4_set_security_label
     - nfs: propagate readlink errors in nfs_symlink_filler
     - nfs: don't invalidate dentries on transient errors
     - cachefiles: add consistency check for copen/cread
     - cachefiles: Set object to close if ondemand_id < 0 in copen
     - cachefiles: make on-demand read killable
     - fs/file: fix the check in find_next_fd()
     - mei: demote client disconnect warning on suspend to debug
     - iomap: Fix iomap_adjust_read_range for plen calculation
     - drm: panel-orientation-quirks: Add quirk for Aya Neo KUN
     - nvme: avoid double free special payload
     - nvmet: always initialize cqe.result
     - wifi: cfg80211: wext: add extra SIOCSIWSCAN data check
     - [powerpc*] KVM: PPC: Book3S HV: Prevent UAF in
       kvm_spapr_tce_attach_iommu_group()
     - drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency
     - ALSA: hda/realtek: Add more codec ID to no shutup pins list
     - [mips*] fix compat_sys_lseek syscall
     - Input: elantech - fix touchpad state on resume for Lenovo N24
     - Input: i8042 - add Ayaneo Kun to i8042 quirk table
     - ASoC: topology: Fix references to freed memory
     - ASoC: topology: Do not assign fields that are already set
     - bytcr_rt5640 : inverse jack detect for Archos 101 cesium
     - ALSA: dmaengine: Synchronize dma channel after drop()
     - ASoC: ti: davinci-mcasp: Set min period size using FIFO config
     - ASoC: ti: omap-hdmi: Fix too long driver name
     - [x86] ASoC: SOF: sof-audio: Skip unprepare for in-use widgets on error
       rollback
     - can: kvaser_usb: fix return value for hif_usb_send_regout
     - gpio: pca953x: fix pca953x_irq_bus_sync_unlock race
     - [s390x] sclp: Fix sclp_init() cleanup on failure
     - [x86] platform/x86: wireless-hotkey: Add support for LG Airplane Button
     - [x86] platform/x86: lg-laptop: Remove LGEX0815 hotkey handling
     - [x86] platform/x86: lg-laptop: Change ACPI device id
     - [x86] platform/x86: lg-laptop: Use ACPI device handle when evaluating
       WMAB/WMBB
     - btrfs: qgroup: fix quota root leak after quota disable failure
     - ALSA: PCM: Allow resume only for suspended streams
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx
     - ALSA: dmaengine_pcm: terminate dmaengine before synchronize
     - [x86] ASoC: amd: yc: Fix non-functional mic on ASUS M5602RA
     - net: usb: qmi_wwan: add Telit FN912 compositions
     - net: mac802154: Fix racy device stats updates by DEV_STATS_INC() and
       DEV_STATS_ADD()
     - [powerpc*] pseries: Whitelist dtl slub object for copying to userspace
     - [powerpc*] eeh: avoid possible crash when edev->pdev changes
     - scsi: libsas: Fix exp-attached device scan after probe failure scanned in
       again after probe failed
     - [arm64] tee: optee: ffa: Fix missing-field-initializers warning
     - Bluetooth: hci_core: cancel all works upon hci_unregister_dev()
     - bluetooth/l2cap: sync sock recv cb and release
     - erofs: ensure m_llen is reset to 0 if metadata is invalid
     - drm/amd/display: Account for cursor prefetch BW in DML1 mode support
     - drm/radeon: check bo_va->bo is non-NULL before using it
     - fs: better handle deep ancestor chains in is_subdir()
     - wifi: iwlwifi: properly set WIPHY_FLAG_SUPPORTS_EXT_KEK_KCK
     - drivers/perf: riscv: Reset the counter to hpmevent mapping while starting
       cpus
     - spi: imx: Don't expect DMA for i.MX{25,35,50,51,53} cspi devices
     - ksmbd: return FILE_DEVICE_DISK instead of super magic
     - hfsplus: fix uninit-value in copy_name
     - spi: mux: set ctlr->bits_per_word_mask
     - cifs: fix noisy message on copy_file_range
     - [arm*] 9324/1: fix get_user() broken with veneer
     - Bluetooth: L2CAP: Fix deadlock
     - of/irq: Disable "interrupt-map" parsing for PASEMI Nemo
     - wifi: cfg80211: wext: set ssids=NULL for passive scans
     - wifi: mac80211: disable softirqs for queued frame handling
     - netfs, fscache: export fscache_put_volume() and add
       fscache_try_get_volume()
     - cachefiles: fix slab-use-after-free in fscache_withdraw_volume()
     - cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.102
     - drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq()
     - f2fs: avoid dead loop in f2fs_issue_checkpoint()
     - ocfs2: add bounds checking to ocfs2_check_dir_entry()
     - jfs: don't walk off the end of ealist
     - ALSA: hda/realtek: Enable headset mic on Positivo SU C1400
     - ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360
     - [arm64] dts: qcom: msm8996: Disable SS instance in Parkmode for USB
     - [arm64] dts: qcom: ipq6018: Disable SS instance in Parkmode for USB
     - [arm64] dts: qcom: sdm630: Disable SS instance in Parkmode for USB
     - [arm64,armhf] ALSA: pcm_dmaengine: Don't synchronize DMA channel when DMA
       is paused
     - filelock: Fix fcntl/close race recovery compat path
     - btrfs: do not BUG_ON on failure to get dir index for new snapshot
     - tun: add missing verification for short frame (CVE-2024-41091)
     - tap: add missing verification for short frame (CVE-2024-41090)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.103
     - [amd64] EDAC, i10nm: make skx_common.o a separate module
     - rcu/tasks: Fix stale task snaphot for Tasks Trace
     - md: fix deadlock between mddev_suspend and flush bio
     - platform/chrome: cros_ec_debugfs: fix wrong EC message version
     - block: refactor to use helper
     - block: cleanup bio_integrity_prep
     - block: initialize integrity buffer to zero before writing it to media
     - hfsplus: fix to avoid false alarm of circular locking
     - [x86] of: Return consistent error type from x86_of_pci_irq_enable()
     - [x86] pci/intel_mid_pci: Fix PCIBIOS_* return code handling
     - [x86] pci/xen: Fix PCIBIOS_* return code handling
     - [x86] platform/iosf_mbi: Convert PCIBIOS_* return codes to errnos
     - kernfs: fix all kernel-doc warnings and multiple typos
     - kernfs: Convert kernfs_path_from_node_locked() from strlcpy() to strscpy()
     - cgroup/cpuset: Prevent UAF in proc_cpuset_show()
     - hwmon: (adt7475) Fix default duty on fan is disabled
     - nvmet-auth: fix nvmet_auth hash error handling
     - [arm64] drm/meson: fix canvas release in bind function
     - [arm64] dts: qcom: sdm845: add power-domain to UFS PHY
     - [arm64] dts: qcom: sm6350: add power-domain to UFS PHY
     - [arm64] dts: qcom: sm8250: switch UFS QMP PHY to new style of bindings
     - [arm64] dts: qcom: sm8250: add power-domain to UFS PHY
     - [arm64] dts: qcom: sm8450: add power-domain to UFS PHY
     - [arm64] dts: qcom: msm8996-xiaomi-common: drop excton from the USB PHY
     - [arm64] dts: qcom: msm8998: enable adreno_smmu by default
     - [arm64] soc: qcom: rpmh-rsc: Ensure irqs aren't disabled by
       rpmh_rsc_send_data() callers
     - [arm64] dts: rockchip: Add sdmmc related properties on rk3308-rock-pi-s
     - [arm64] dts: rockchip: Add pinctrl for UART0 to rk3308-rock-pi-s
     - [arm64] dts: rockchip: Add mdio and ethernet-phy nodes to rk3308-rock-pi-s
     - [arm64] dts: rockchip: Update WIFi/BT related nodes on rk3308-rock-pi-s
     - [arm64] dts: qcom: msm8996: specify UFS core_clk frequencies
     - [arm64] soc: xilinx: rename cpu_number1 to dummy_cpu_number
     - cpufreq: ti-cpufreq: Handle deferred probe with dev_err_probe()
     - [armhf] OPP: ti: Fix ti_opp_supply_probe wrong return values
     - [arm64] dts: rockchip: Increase VOP clk rate on RK3328
     - [arm64] dts: amlogic: sm1: fix spdif compatibles
     - [arm64] dts: mediatek: mt8183-kukui: Drop bogus output-enable property
     - [arm64] dts: mediatek: mt7622: fix "emmc" pinctrl mux
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Add ports node for anx7625
     - [arm64] dts: amlogic: gx: correct hdmi clocks
     - [arm64] dts: rockchip: Drop invalid mic-in-differential on rk3568-rock-3a
     - [arm64] dts: rockchip: Fix mic-in-differential usage on rk3568-evb1-v10
     - [arm64] dts: renesas: r8a779g0: Add L3 cache controller
     - [arm64] dts: renesas: r8a779g0: Add secondary CA76 CPU cores
     - [arm64] dts: renesas: Drop specifying the GIC_CPU_MASK_SIMPLE() for GICv3
       systems
     - [arm64] dts: renesas: r8a779a0: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r8a779f0: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r8a779g0: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r9a07g043u: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r9a07g044: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r9a07g054: Add missing hypervisor virtual timer IRQ
     - [x86] xen: Convert comma to semicolon
     - [arm64] dts: rockchip: Add missing power-domains for rk356x vop_mmu
     - [arm64] dts: qcom: sm6350: Add missing qcom,non-secure-domain property
     - vmlinux.lds.h: catch .bss..L* sections into BSS")
     - [arm64] firmware: turris-mox-rwtm: Do not complete if there are no waiters
     - [arm64] firmware: turris-mox-rwtm: Fix checking return value of
       wait_for_completion_timeout()
     - [arm64] firmware: turris-mox-rwtm: Initialize completion before mailbox
     - wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device
     - bpftool: Un-const bpf_func_info to fix it for llvm 17 and newer
     - net: esp: cleanup esp_output_tail_tcp() in case of unsupported ESPINTCP
     - tcp: annotate lockless accesses to sk->sk_err_soft
     - tcp: annotate lockless access to sk->sk_err
     - tcp: add tcp_done_with_error() helper
     - tcp: fix race in tcp_write_err()
     - tcp: fix races in tcp_v[46]_err()
     - net/smc: set rmb's SG_MAX_SINGLE_ALLOC limitation only when
       CONFIG_ARCH_NO_SG_CHAIN is defined
     - lib: objagg: Fix general protection fault
     - [x86] perf/x86: Serialize set_attr_rdpmc()
     - jump_label: Use atomic_try_cmpxchg() in static_key_slow_inc_cpuslocked()
     - jump_label: Prevent key->enabled int overflow
     - jump_label: Fix concurrency issues in static_key_slow_dec()
     - wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers
     - wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he()
     - wifi: cfg80211: handle 2x996 RU allocation in
       cfg80211_calculate_bitrate_he()
     - net: fec: Refactor: #define magic constants
     - net: fec: Fix FEC_ECR_EN1588 being cleared on link-down
     - libbpf: Checking the btf_type kind when fixing variable offsets
     - ipvs: Avoid unnecessary calls to skb_is_gso_sctp
     - netfilter: nf_tables: rise cap on SELinux secmark context
     - bpftool: Mount bpffs when pinmaps path not under the bpffs
     - [x86] perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation
     - perf: Fix perf_aux_size() for greater-than 32-bit size
     - perf: Prevent passing zero nr_pages to rb_alloc_aux()
     - perf: Fix default aux_watermark calculation
     - [x86] perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake
     - wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter()
     - wifi: virt_wifi: avoid reporting connection success with wrong SSID
     - gss_krb5: Fix the error handling path for crypto_sync_skcipher_setkey
     - wifi: virt_wifi: don't use strlen() in const context
     - locking/rwsem: Add __always_inline annotation to __down_write_common() and
       inlined callers
     - bpf: annotate BTF show functions with __printf
     - bna: adjust 'name' buf size of bna_tcb and bna_ccb structures
     - bpf: Eliminate remaining "make W=1" warnings in kernel/bpf/btf.o
     - bpf: Fix null pointer dereference in resolve_prog_type() for
       BPF_PROG_TYPE_EXT
     - xdp: fix invalid wait context of page_pool_destroy()
     - net: bridge: mst: Check vlan state for egress decision
     - [arm64] drm/rockchip: vop2: Fix the port mux of VP2
     - drm/mipi-dsi: Fix mipi_dsi_dcs_write_seq() macro definition format
     - drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq()
     - drm/amd/pm: Fix aldebaran pcie speed reporting
     - drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit
     - drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1
     - drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before
       regulators
     - drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare()
     - media: pci: ivtv: Add check for DMA map result
     - media: dvb-usb: Fix unexpected infinite loop in
       dvb_usb_read_remote_control()
     - media: imon: Fix race getting ictx->lock
     - media: i2c: Fix imx412 exposure control
     - media: v4l: async: Fix NULL pointer dereference in adding ancillary links
     - [s390x] mm: Convert make_page_secure to use a folio
     - [s390x] mm: Convert gmap_make_secure to use a folio
     - [s390x] uv: Don't call folio_wait_writeback() without a folio reference
     - saa7134: Unchecked i2c_transfer function result fixed
     - media: uvcvideo: Override default flags
     - media: renesas: vsp1: Fix _irqsave and _irq mix
     - media: renesas: vsp1: Store RPF partition configuration per RPF instance
     - leds: trigger: Unregister sysfs attributes before calling deactivate()
     - [arm64] drm/msm/dsi: set VIDEO_COMPRESSION_MODE_CTRL_WC
     - [arm64] drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op
     - perf test: Replace arm callgraph fp test workload with leafloop
     - perf tests arm_callgraph_fp: Address shellcheck warnings about signal
       names and adding double quotes for expression
     - perf tests: Fix test_arm_callgraph_fp variable expansion
     - perf test: Make test_arm_callgraph_fp.sh more robust
     - perf report: Fix condition in sort__sym_cmp()
     - [arm64,armhf] drm/etnaviv: fix DMA direction handling for cached RW
       buffers
     - drm/qxl: Add check for drm_cvt_mode
     - Revert "leds: led-core: Fix refcount leak in of_led_get()"
     - ext4: fix infinite loop when replaying fast_commit
     - media: venus: flush all buffers in output plane streamoff
     - perf intel-pt: Fix aux_watermark calculation for 64-bit size
     - perf intel-pt: Fix exclude_guest setting
     - mfd: rsmu: Split core code into separate module
     - mfd: omap-usb-tll: Use struct_size to allocate tll
     - xprtrdma: Fix rpcrdma_reqs_reset()
     - SUNRPC: avoid soft lockup when transmitting UDP to reachable server.
     - NFSv4.1 another fix for EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - ext4: don't track ranges in fast_commit if inode has inlined data
       (Closes: #1039883)
     - ext4: avoid writing unitialized memory to disk in EA inodes
     - SUNRPC: Fixup gss_status tracepoint error output
     - PCI: Fix resource double counting on remove & rescan
     - PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode()
     - PCI: keystone: Don't enable BAR 0 for AM654x
     - PCI: keystone: Fix NULL pointer dereference in case of DT error in
       ks_pcie_setup_rc_app_regs()
     - PCI: rcar: Demote WARN() to dev_warn_ratelimited() in rcar_pcie_wakeup()
     - clk: qcom: branch: Add helper functions for setting retain bits
     - clk: qcom: gcc-sc7280: Update force mem core bit for UFS ICE clock
     - clk: qcom: camcc-sc7280: Add parent dependency to all camera GDSCs
     - iio: frequency: adrf6780: rm clk provider include
     - coresight: Fix ref leak when of_coresight_parse_endpoint() fails
     - RDMA/mlx5: Set mkeys for dmabuf at PAGE_SIZE
     - [powerpc*] pseries: Fix alignment of PLPKS structures and buffers
     - [powerpc*] pseries: Move plpks.h to include directory
     - [powerpc*] pseries: Expose PLPKS config values, support additional fields
     - [powerpc*] pseries: Add helper to get PLPKS password length
     - [powerpc*] kexec: make the update_cpus_node() function public
     - [powerpc*] kexec_file: fix cpus node update to FDT
     - RDMA/cache: Release GID table even if leak is detected
     - clk: qcom: gpucc-sm8350: Park RCG's clk source at XO during disable
     - interconnect: qcom: qcm2290: Fix mas_snoc_bimc RPM master ID
     - Input: qt1050 - handle CHIP_ID reading error
     - RDMA/mlx4: Fix truncated output warning in mad.c
     - RDMA/mlx4: Fix truncated output warning in alias_GUID.c
     - RDMA/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled
     - RDMA/rxe: Don't set BTH_ACK_MASK for UC or UD QPs
     - [arm64] ASoC: qcom: Adjust issues in case of DT error in
       asoc_qcom_lpass_cpu_platform_probe()
     - [powerpc*] prom: Add CPU info to hardware description string later
     - mtd: make mtd_test.c a separate module
     - RDMA/device: Return error earlier if port in not valid
     - Input: elan_i2c - do not leave interrupt disabled on suspend failure
     - ASoC: amd: Adjust error handling in case of absent codec device
     - PCI: endpoint: Clean up error handling in vpci_scan_bus()
     - PCI: endpoint: Fix error handling in epf_ntb_epc_cleanup()
     - vhost/vsock: always initialize seqpacket_allow
     - net: missing check virtio
     - [x86] crypto: qat - extend scope of lock in adf_cfg_add_key_value_param()
     - clk: qcom: Park shared RCGs upon registration
     - clk: en7523: fix rate divider for slic and spi clocks
     - PCI: qcom-ep: Disable resources unconditionally during PERST# assert
     - PCI: dwc: Fix index 0 incorrectly being interpreted as a free ATU slot
     - [powerpc*] xmon: Fix disassembly CPU feature checks
     - [arm64] RDMA/hns: Check atomic wr length
     - [arm64] RDMA/hns: Fix unmatch exception handling when init eq table fails
     - [arm64] RDMA/hns: Fix missing pagesize and alignment check in FRMR
     - [arm64] RDMA/hns: Fix shift-out-bounds when max_inline_data is 0
     - [arm64] RDMA/hns: Fix undifined behavior caused by invalid max_sge
     - [arm64] RDMA/hns: Fix insufficient extend DB for VFs.
     - [amd64] iommu/vt-d: Fix to convert mm pfn to dma pfn
     - [amd64] iommu/vt-d: Fix identity map bounds in si_domain_init()
     - bnxt_re: Fix imm_data endianness
     - netfilter: ctnetlink: use helper function to calculate expect ID
     - netfilter: nft_set_pipapo: constify lookup fn args where possible
     - netfilter: nf_set_pipapo: fix initial map fill
     - net: flow_dissector: use DEBUG_NET_WARN_ON_ONCE
     - ipv4: Fix incorrect TOS in route get reply
     - ipv4: Fix incorrect TOS in fibmatch route get reply
     - net: dsa: mv88e6xxx: Limit chip-wide frame size config to CPU ports
     - net: dsa: b53: Limit chip-wide jumbo frame config to CPU ports
     - pinctrl: rockchip: update rk3308 iomux routes
     - pinctrl: core: fix possible memory leak when pinctrl_enable() fails
     - pinctrl: single: fix possible memory leak when pinctrl_enable() fails
     - pinctrl: ti: ti-iodelay: Drop if block with always false condition
     - pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable()
       fails
     - pinctrl: freescale: mxs: Fix refcount of child
     - fs/ntfs3: Replace inode_trylock with inode_lock
     - fs/ntfs3: Fix field-spanning write in INDEX_HDR
     - pinctrl: renesas: r8a779g0: Fix CANFD5 suffix
     - pinctrl: renesas: r8a779g0: Fix FXR_TXEN[AB] suffixes
     - pinctrl: renesas: r8a779g0: Fix (H)SCIF1 suffixes
     - pinctrl: renesas: r8a779g0: Fix (H)SCIF3 suffixes
     - pinctrl: renesas: r8a779g0: Fix IRQ suffixes
     - pinctrl: renesas: r8a779g0: FIX PWM suffixes
     - pinctrl: renesas: r8a779g0: Fix TCLK suffixes
     - pinctrl: renesas: r8a779g0: Fix TPU suffixes
     - fs/proc/task_mmu: indicate PM_FILE for PMD-mapped file THP
     - nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro
     - rtc: interface: Add RTC offset to alarm after fix-up
     - [s390x] dasd: fix error checks in dasd_copy_pair_store()
     - sbitmap: remove unnecessary calculation of alloc_hint in
       __sbitmap_get_shallow
     - sbitmap: rewrite sbitmap_find_bit_in_index to reduce repeat code
     - sbitmap: use READ_ONCE to access map->word
     - sbitmap: fix io hung due to race on sbitmap_word::cleared
     - landlock: Don't lose track of restrictions on cred_transfer
     - mm/hugetlb: fix possible recursive locking detected warning
     - mm/mglru: fix div-by-zero in vmpressure_calc_level()
     - mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
     - [x86] efistub: Avoid returning EFI_SUCCESS on error
     - [x86] efistub: Revert to heap allocated boot_params for PE entrypoint
     - dt-bindings: thermal: correct thermal zone node name limit
     - tick/broadcast: Make takeover of broadcast hrtimer reliable
     - net: netconsole: Disable target before netpoll cleanup
     - af_packet: Handle outgoing VLAN packets without hardware offloading
     - kernel: rerun task_work while freezing in get_signal()
     - ipv4: fix source address selection with route leak
     - ipv6: take care of scope when choosing the src addr
     - sched/fair: set_load_weight() must also call reweight_task() for
       SCHED_IDLE tasks
     - fuse: verify {g,u}id mount options correctly
     - char: tpm: Fix possible memory leak in tpm_bios_measurements_open()
     - media: venus: fix use after free in vdec_close
     - ata: libata-scsi: Honor the D_SENSE bit for CK_COND=1 and no error
     - hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode()
     - [x86] drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes
     - [x86] drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes
     - scsi: qla2xxx: Fix optrom version displayed in FDMI
     - drm/amd/display: Check for NULL pointer
     - sched/fair: Use all little CPUs for CPU-bound workloads
     - apparmor: use kvfree_sensitive to free data->data
     - cifs: fix potential null pointer use in destroy_workqueue in init_cifs
       error path
     - cifs: fix reconnect with SMB1 UNIX Extensions
     - cifs: mount with "unix" mount option for SMB1 incorrectly handled
     - task_work: s/task_work_cancel()/task_work_cancel_func()/
     - task_work: Introduce task_work_cancel() again
     - udf: Avoid using corrupted block bitmap buffer
     - ext4: check dot and dotdot of dx_root before making dir indexed
     - ext4: make sure the first directory block is not a hole
     - io_uring: tighten task exit cancellations
     - trace/pid_list: Change gfp flags in pid_list_fill_irq()
     - wifi: mwifiex: Fix interface type change
     - drivers: soc: xilinx: check return status of get_api_version()
     - leds: ss4200: Convert PCIBIOS_* return codes to errnos
     - leds: mt6360: Fix memory leak in mt6360_init_isnk_properties()
     - jbd2: make jbd2_journal_get_max_txn_bufs() internal
     - media: uvcvideo: Fix integer overflow calculating timestamp
     - [x86] KVM: VMX: Split out the non-virtualization part of
       vmx_interrupt_blocked()
     - [x86] KVM: nVMX: Request immediate exit iff pending nested event needs
       injection
     - ALSA: usb-audio: Fix microphone sound on HD webcam.
     - ALSA: usb-audio: Move HD Webcam quirk to the right place
     - ALSA: usb-audio: Add a quirk for Sonix HD USB Camera
     - tools/memory-model: Fix bug in lock.cat
     - hwrng: amd - Convert PCIBIOS_* return codes to errnos
     - PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN
     - PCI: dw-rockchip: Fix initial PERST# GPIO value
     - PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio
     - PCI: loongson: Enable MSI in LS7A Root Complex
     - [arm*] binder: fix hang of unregistered readers
     - dev/parport: fix the array out-of-bounds risk
     - scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds
     - f2fs: fix to force buffered IO on inline_data inode
     - f2fs: fix to don't dirty inode for readonly filesystem
     - f2fs: fix return value of f2fs_convert_inline_inode()
     - clk: davinci: da8xx-cfgchip: Initialize clk_init_data before use
     - ubi: eba: properly rollback inside self_check_eba
     - decompress_bunzip2: fix rare decompression failure
     - kbuild: Fix '-S -c' in x86 stack protector scripts
     - [x86] ASoC: amd: yc: Support mic on Lenovo Thinkpad E16 Gen 2
     - kobject_uevent: Fix OOB access within zap_modalias_env()
     - gve: Fix an edge case for TSO skb validity check
     - ice: Add a per-VF limit on number of FDIR filters
     - devres: Fix devm_krealloc() wasting memory
     - devres: Fix memory leakage caused by driver API devm_free_percpu()
     - irqchip/imx-irqsteer: Handle runtime power management correctly
     - mm/numa_balancing: teach mpol_to_str about the balancing mode
     - rtc: cmos: Fix return value of nvmem callbacks
     - scsi: qla2xxx: During vport delete send async logout explicitly
     - scsi: qla2xxx: Unable to act on RSCN for port online
     - scsi: qla2xxx: Fix for possible memory corruption
     - scsi: qla2xxx: Use QP lock to search for bsg
     - scsi: qla2xxx: Fix flash read failure
     - scsi: qla2xxx: Complete command early within lock
     - scsi: qla2xxx: validate nvme_local_port correctly
     - perf: Fix event leak upon exit
     - perf: Fix event leak upon exec and file release
     - [x86] perf/x86/intel/uncore: Fix the bits of the CHA extended umask for
       SPR
     - [x86] perf/x86/intel/pt: Fix topa_entry base length
     - [x86] perf/x86/intel/pt: Fix a topa_entry base address calculation
     - [x86] drm/i915/gt: Do not consider preemption during execlists_dequeue for
       gen8
     - drm/amdgpu/sdma5.2: Update wptr registers as well as doorbell
     - drm/dp_mst: Fix all mstb marked as not probed after suspend/resume
     - drm/i915/dp: Reset intel_dp->link_trained before retraining the link
     - rtc: isl1208: Fix return value of nvmem callbacks
     - watchdog/perf: properly initialize the turbo mode timestamp and rearm
       counter
     - RDMA/iwcm: Fix a use-after-free related to destroying CM IDs
     - dm-verity: fix dm_is_verity_target() when dm-verity is builtin
     - rbd: don't assume rbd_is_lock_owner() for exclusive mappings
     - remoteproc: stm32_rproc: Fix mailbox interrupts queuing
     - remoteproc: imx_rproc: Skip over memory region when node value is NULL
     - remoteproc: imx_rproc: Fix refcount mistake in imx_rproc_addr_init
     - [arm64,armhf] drm/etnaviv: don't block scheduler when GPU is still active
     - [arm64,armhf] drm/panfrost: Mark simple_ondemand governor as softdep
     - rbd: rename RBD_LOCK_STATE_RELEASING and releasing_wait
     - rbd: don't assume RBD_LOCK_STATE_LOCKED for exclusive mappings
     - bpf: Synchronize dispatcher update with bpf_dispatcher_xdp_func
     - Bluetooth: btusb: Add RTL8852BE device 0489:e125 to device tables
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x13d3:0x3591
     - nilfs2: handle inconsistent state in nilfs_btnode_create_block()
     - PCI: Introduce cleanup helpers for device reference counts and locks
     - PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal
     - io_uring/io-wq: limit retrying worker initialisation
     - wifi: mac80211: Allow NSS change only up to capability
     - wifi: mac80211: track capability/opmode NSS separately
     - wifi: mac80211: check basic rates validity
     - jfs: Fix array-index-out-of-bounds in diFree
     - dmaengine: ti: k3-udma: Fix BCHAN count with UHC and HC channels
     - phy: cadence-torrent: Check return value on register read
     - f2fs: fix start segno of large section
     - watchdog: rzg2l_wdt: Use pm_runtime_resume_and_get()
     - watchdog: rzg2l_wdt: Check return status of pm_runtime_put()
     - f2fs: fix to update user block counts in block_operations()
     - kbuild: avoid build error when single DTB is turned into composite DTB
     - libbpf: Fix no-args func prototype BTF dumping syntax
     - af_unix: Disable MSG_OOB handling for sockets in sockmap/sockhash
     - dma: fix call order in dmam_free_coherent
     - bpf, events: Use prog to emit ksymbol event for main program
     - ipv4: Fix incorrect source address in Record Route option
     - net: bonding: correctly annotate RCU in bond_should_notify_peers()
     - netfilter: nft_set_pipapo_avx2: disable softinterrupts
     - tipc: Return non-zero value from tipc_udp_addr2str() on error
     - net: stmmac: Correct byte order of perfect_match
     - net: nexthop: Initialize all fields in dumped nexthops
     - bpf: Fix a segment issue when downgrading gso_size
     - mISDN: Fix a use after free in hfcmulti_tx()
     - apparmor: Fix null pointer deref when receiving skb during sock creation
     - powerpc: fix a file leak in kvm_vcpu_ioctl_enable_cap()
     - lirc: rc_dev_get_from_fd(): fix file leak
     - auxdisplay: ht16k33: Drop reference after LED registration
     - spi: microchip-core: fix the issues in the isr
     - spi: microchip-core: only disable SPI controller when register value
       change requires it
     - spi: microchip-core: switch to use modern name
     - spi: microchip-core: fix init function not setting the master and motorola
       modes
     - nvme-pci: Fix the instructions for disabling power management
     - spidev: Add Silicon Labs EM3581 device compatible
     - spi: spidev: order compatibles alphabetically
     - spi: spidev: add correct compatible for Rohm BH2228FV
     - [x86] ASoC: Intel: use soc_intel_is_byt_cr() only when IOSF_MBI is
       reachable
     - ceph: fix incorrect kmalloc size of pagevec mempool
     - [s390x] pci: Refactor arch_setup_msi_irqs()
     - [s390x] pci: Allow allocation of more than 1 MSI interrupt
     - iommu: sprd: Avoid NULL deref in sprd_iommu_hw_en
     - io_uring: fix io_match_task must_hold
     - nvme-pci: add missing condition check for existence of mapped data
     - fs: don't allow non-init s_user_ns for filesystems without FS_USERNS_MOUNT
     - [powerpc*] pseries: Avoid hcall in plpks_is_available() on non-pseries
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.104
     - [arm64] dts: qcom: msm8998: switch USB QMP PHY to new style of bindings
     - [arm64] dts: qcom: msm8998: Disable SS instance in Parkmode for USB
     - [arm64] dts: qcom: ipq8074: Disable SS instance in Parkmode for USB
     - sysctl: allow change system v ipc sysctls inside ipc namespace
     - sysctl: allow to change limits for posix messages queues
     - sysctl: treewide: drop unused argument
       ctl_table_root::set_ownership(table)
     - sysctl: always initialize i_uid/i_gid
     - ext4: make ext4_es_insert_extent() return void
     - ext4: refactor ext4_da_map_blocks()
     - ext4: convert to exclusive lock while inserting delalloc extents
     - ext4: factor out a common helper to query extent map
     - ext4: check the extent status again before inserting delalloc block
     - leds: trigger: Remove unused function led_trigger_rename_static()
     - leds: trigger: Store brightness set by led_trigger_event()
     - leds: trigger: Call synchronize_rcu() before calling trig->activate()
     - leds: triggers: Flush pending brightness before activating trigger
     - mm: restrict the pcp batch scale factor to avoid too long latency
     - mm: page_alloc: control latency caused by zone PCP draining
     - mm/page_alloc: fix pcp->count race between drain_pages_zone() vs
       __rmqueue_pcplist()
     - f2fs: fix to avoid use SSR allocate when do defragment
     - f2fs: assign CURSEG_ALL_DATA_ATGC if blkaddr is valid
     - irqdomain: Fixed unbalanced fwnode get and put
     - drm/udl: Rename struct udl_drm_connector to struct udl_connector
     - drm/udl: Test pixel limit in mode-config's mode-valid function
     - drm/udl: Use USB timeout constant when reading EDID
     - drm/udl: Various improvements to the connector
     - drm/udl: Move connector to modesetting code
     - drm/udl: Remove DRM_CONNECTOR_POLL_HPD
     - [x86] drm/i915/dp: Don't switch the LTTPR mode on an active link
     - [amd64] HID: amd_sfh: Remove duplicate cleanup
     - [amd64] HID: amd_sfh: Split sensor and HID initialization
     - [amd64] HID: amd_sfh: Move sensor discovery before HID device
       initialization
     - drm/nouveau: prime: fix refcount underflow
     - drm/vmwgfx: Fix overlay when using Screen Targets
     - drm/vmwgfx: Trigger a modeset when the screen moves
     - sched: act_ct: take care of padding in struct zones_ht_key
     - ALSA: hda: conexant: Fix headset auto detect fail in the polling mode
     - Bluetooth: hci_sync: Fix suspending with wrong filter policy
     - net: axienet: start napi before enabling Rx/Tx
     - rtnetlink: Don't ignore IFLA_TARGET_NETNSID when ifname is specified in
       rtnl_dellink().
     - ice: respect netif readiness in AF_XDP ZC related ndo's
     - ice: don't busy wait for Rx queue disable in ice_qp_dis()
     - ice: replace synchronize_rcu with synchronize_net
     - ice: add missing WRITE_ONCE when clearing ice_rx_ring::xdp_prog
     - net/iucv: fix use after free in iucv_sock_close()
     - [x86] drm/i915/hdcp: Fix HDCP2_STREAM_STATUS macro
     - net: mvpp2: Don't re-use loop iterator
     - ALSA: hda: Conditionally use snooping for AMD HDMI
     - netfilter: iptables: Fix null-ptr-deref in iptable_nat_table_init().
     - netfilter: iptables: Fix potential null-ptr-deref in
       ip6table_nat_table_init().
     - net/mlx5: Lag, don't use the hardcoded value of the first port
     - net/mlx5: Fix missing lock on sync reset reload
     - net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys
     - ipv6: fix ndisc_is_useropt() handling for PIO
     - [arm64] jump_label: Ensure patched jump_labels are visible to all CPUs
     - platform/chrome: cros_ec_proto: Lock device when updating MKBP version
     - HID: wacom: Modify pen IDs
     - btrfs: zoned: fix zone_unusable accounting on making block group
       read-write again
     - protect the fetch of ->fd[fd] in do_dup2() from mispredictions
     - mptcp: sched: check both directions for backup
     - ALSA: usb-audio: Correct surround channels in UAC1 channel map
     - ALSA: hda/realtek: Add quirk for Acer Aspire E5-574G
     - Revert "ALSA: firewire-lib: obsolete workqueue for period update"
     - Revert "ALSA: firewire-lib: operate for period elapse event in process
       context"
     - drm/vmwgfx: Fix a deadlock in dma buf fence polling
     - [x86] drm/i915: Fix possible int overflow in skl_ddi_calculate_wrpll()
     - net: usb: sr9700: fix uninitialized variable use in sr_mdio_read
     - r8169: don't increment tx_dropped in case of NETDEV_TX_BUSY
     - mptcp: fix user-space PM announced address accounting
     - mptcp: distinguish rcv vs sent backup flag in requests
     - mptcp: fix NL PM announced address accounting
     - mptcp: fix bad RCVPRUNED mib accounting
     - mptcp: pm: only set request_bkup flag when sending MP_PRIO
     - mptcp: fix duplicate data handling
     - netfilter: ipset: Add list flush to cancel_gc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.105
     - irqchip/mbigen: Fix mbigen node address layout
     - [x86] platform/x86/intel/ifs: Gen2 Scan test support
     - [x86] platform/x86/intel/ifs: Initialize union ifs_status to zero
     - jump_label: Fix the fix, brown paper bags galore
     - [x86] mm: Fix pti_clone_pgtable() alignment assumption
     - [x86] mm: Fix pti_clone_entry_text() for i386
     - sctp: Fix null-ptr-deref in reuseport_add_sock().
     - net: usb: qmi_wwan: fix memory leak for not ip packets
     - net: bridge: mcast: wait for previous gc cycles when removing port
     - net: linkwatch: use system_unbound_wq
     - Bluetooth: l2cap: always unlock channel in l2cap_conless_channel()
     - Bluetooth: hci_sync: avoid dup filtering when passive scanning with adv
       monitor
     - [armhf] net: dsa: bcm_sf2: Fix a possible memory leak in
       bcm_sf2_mdio_register()
     - l2tp: fix lockdep splat
     - net: fec: Stop PPS on driver remove
     - rcutorture: Fix rcu_torture_fwd_cb_cr() data race
     - md: do not delete safemode_timer in mddev_suspend
     - md/raid5: avoid BUG_ON() while continue reshape after reassembling
     - block: change rq_integrity_vec to respect the iterator
     - rcu: Fix rcu_barrier() VS post CPUHP_TEARDOWN_CPU invocation
     - clocksouqrce/drivers/sh_cmt: Address race condition for clock events
     - ACPI: battery: create alarm sysfs attribute atomically
     - [x86] ACPI: SBS: manage alarm sysfs attribute through psy core
     - wifi: nl80211: disallow setting special AP channel widths
     - net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
     - af_unix: Don't retry after unix_state_lock_nested() in
       unix_stream_connect().
     - PCI: Add Edimax Vendor ID to pci_ids.h
     - udf: prevent integer overflow in udf_bitmap_free_blocks()
     - wifi: nl80211: don't give key data to userspace
     - can: mcp251xfd: tef: prepare to workaround broken TEF FIFO tail index
       erratum
     - can: mcp251xfd: tef: update workaround for erratum DS80000789E 6 of
       mcp2518fd
     - btrfs: fix bitmap leak when loading free space cache on duplicate entry
     - drm/amdgpu/pm: Fix the param type of set_power_profile_mode
     - drm/amdgpu/pm: Fix the null pointer dereference for smu7
     - drm/amdgpu: Fix the null pointer dereference to ras_manager
     - drm/amdgpu/pm: Fix the null pointer dereference in
       apply_state_adjust_rules
     - drm/amdgpu: Add lock around VF RLCG interface
     - drm/amd/pm: Fix the null pointer dereference for vega10_hwmgr
     - media: amphion: Remove lock in s_ctrl callback
     - drm/amd/display: Add NULL check for 'afb' before dereferencing in
       amdgpu_dm_plane_handle_cursor_update
     - drm/amd/display: Add null checker before passing variables
     - media: uvcvideo: Ignore empty TS packets
     - media: uvcvideo: Fix the bandwdith quirk on USB 3.x
     - media: xc2028: avoid use-after-free in load_firmware_cb()
     - ext4: fix uninitialized variable in ext4_inlinedir_to_tree
     - jbd2: avoid memleak in jbd2_journal_write_metadata_buffer
     - [s390x] sclp: Prevent release of buffer in I/O
     - SUNRPC: Fix a race to wake a sync task
     - bus: mhi: host: pci_generic: add support for Telit FE990 modem
     - Revert "bpftool: Mount bpffs when pinmaps path not under the bpffs"
     - profiling: remove profile=sleep support
     - scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES
     - [arm64,armhf] irqchip/meson-gpio: Convert meson_gpio_irq_controller::lock
       to 'raw_spinlock_t'
     - sched/cputime: Fix mul_u64_u64_div_u64() precision for cputime
     - ext4: fix wrong unit use in ext4_mb_find_by_goal
     - [arm64] Add Neoverse-V2 part
     - [arm64] barrier: Restore spec_bar() macro
     - [arm64] cputype: Add Cortex-X4 definitions
     - [arm64] cputype: Add Neoverse-V3 definitions
     - [arm64] errata: Add workaround for Arm errata 3194386 and 3312417
     - [arm64] cputype: Add Cortex-X3 definitions
     - [arm64] cputype: Add Cortex-A720 definitions
     - [arm64] cputype: Add Cortex-X925 definitions
     - [arm64] errata: Unify speculative SSBS errata logic
     - [arm64] errata: Expand speculative SSBS workaround
     - [arm64] cputype: Add Cortex-X1C definitions
     - [arm64] cputype: Add Cortex-A725 definitions
     - [arm64] errata: Expand speculative SSBS workaround (again)
     - i2c: smbus: Improve handling of stuck alerts
     - spi: spidev: Add missing spi_device_id for bh2228fv
     - i2c: smbus: Send alert notifications to all devices if source not found
     - bpf: kprobe: remove unused declaring of bpf_kprobe_override
     - kprobes: Fix to check symbol prefixes correctly
     - [arm64] i2c: qcom-geni: add desc struct to prepare support for I2C Master
       Hub variant
     - [arm64] i2c: qcom-geni: Add missing clk_disable_unprepare in
       geni_i2c_runtime_resume
     - [arm64] i2c: qcom-geni: Add missing geni_icc_disable in
       geni_i2c_runtime_resume
     - spi: spi-fsl-lpspi: Fix scldiv calculation
     - ALSA: usb-audio: Re-add ScratchAmp quirk entries
     - [arm64] ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT
     - drm/amd/display: Skip Recompute DSC Params if no Stream on Link
     - drm/client: fix null pointer dereference in drm_client_modeset_probe
     - ALSA: line6: Fix racy access to midibuf
     - ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list
     - ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks
     - ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4
     - usb: vhci-hcd: Do not drop references before new references are gained
     - USB: serial: debug: do not echo input by default
     - usb: gadget: core: Check for unset descriptor
     - usb: gadget: u_serial: Set start_delayed during suspend
     - usb: gadget: u_audio: Check return codes from usb_ep_enable and
       config_ep_by_speed.
     - scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES
     - scsi: ufs: core: Fix hba->last_dme_cmd_tstamp timestamp updating logic
     - tick/broadcast: Move per CPU pointer access into the atomic section
     - ntp: Clamp maxerror and esterror to operating range
     - torture: Enable clocksource watchdog with "tsc=watchdog"
     - clocksource: Scale the watchdog read retries automatically
     - clocksource: Fix brown-bag boolean thinko in cs_watchdog_read()
     - driver core: Fix uevent_show() vs driver detach race
     - ntp: Safeguard against time_constant overflow
     - timekeeping: Fix bogus clock_was_set() invocation in do_adjtimex()
     - serial: core: check uartclk for zero to avoid divide by zero
     - [x86] ASoC: amd: yc: Add quirk entry for OMEN by HP Gaming Laptop 16-n0xxx
     - kcov: properly check for softirq context
     - irqchip/xilinx: Fix shift out of bounds
     - genirq/irqdesc: Honor caller provided affinity in alloc_desc()
     - [x86] power: supply: axp288_charger: Fix constant_charge_voltage writes
     - [x86] power: supply: axp288_charger: Round constant_charge_voltage writes
       down
     - tracing: Fix overflow in get_free_elt()
     - padata: Fix possible divide-by-0 panic in padata_mt_helper()
     - smb3: fix setting SecurityFlags when encryption is required
     - btrfs: avoid using fixed char array size for tree names
     - [x86] mtrr: Check if fixed MTRRs exist before saving them
     - sched/smt: Introduce sched_smt_present_inc/dec() helper
     - sched/smt: Fix unbalance sched_smt_present dec/inc
     - drm/bridge: analogix_dp: properly handle zero sized AUX transactions
     - drm/dp_mst: Skip CSN if topology probing is not done yet
     - [arm64,armhf] drm/lima: Mark simple_ondemand governor as softdep
     - [x86] drm/mgag200: Set DDC timeout in milliseconds
     - [x86] drm/mgag200: Bind I2C lifetime to DRM device
     - mptcp: mib: count MPJ with backup flag
     - mptcp: export local_address
     - mptcp: pm: fix backup support in signal endpoints
     - mptcp: pm: deny endp with signal + subflow + port
     - block: use the right type for stub rq_integrity_vec()
     - Revert "drm/amd/display: Add NULL check for 'afb' before dereferencing in
       amdgpu_dm_plane_handle_cursor_update"
     - mm: huge_memory: use !CONFIG_64BIT to relax huge page alignment on 32 bit
       machines (CVE-2024-42258)
     - btrfs: fix corruption after buffer fault in during direct IO append write
     - ipv6: fix source address selection with route leak
     - tools headers arm64: Sync arm64's cputype.h with the kernel sources
     - mm/hugetlb: fix potential race in __update_and_free_hugetlb_folio()
     - block: Call .limit_depth() after .hctx has been set
     - block/mq-deadline: Fix the tag reservation code
     - xfs: fix log recovery buffer allocation for the legacy h_size fixup
       (CVE-2024-39472)
     - netfilter: nf_tables: bail out if stateful expression provides no .clone
     - netfilter: nf_tables: allow clone callbacks to sleep
     - netfilter: nf_tables: prefer nft_chain_validate (CVE-2024-41042)
     - i2c: qcom-geni: fix missing clk_disable_unprepare() and
       geni_se_resources_off()
     - btrfs: fix double inode unlock for direct IO sync writes
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.106
     - mptcp: pass addr to mptcp_pm_alloc_anno_list
     - mptcp: pm: reduce indentation blocks
     - mptcp: pm: don't try to create sf if alloc failed
     - mptcp: pm: do not ignore 'subflow' if 'signal' flag is also set
     - [x86] ASoC: topology: Clean up route loading
     - [x86] ASoC: topology: Fix route memory corruption
     - exec: Fix ToCToU between perm check and set-uid/gid usage
     - nfsd: move reply cache initialization into nfsd startup
     - nfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net
     - NFSD: Refactor nfsd_reply_cache_free_locked()
     - NFSD: Rename nfsd_reply_cache_alloc()
     - NFSD: Replace nfsd_prune_bucket()
     - NFSD: Refactor the duplicate reply cache shrinker
     - NFSD: Rewrite synopsis of nfsd_percpu_counters_init()
     - NFSD: Fix frame size warning in svc_export_parse()
     - sunrpc: don't change ->sv_stats if it doesn't exist
     - nfsd: stop setting ->pg_stats for unused stats
     - sunrpc: pass in the sv_stats struct through svc_create_pooled
     - sunrpc: remove ->pg_stats from svc_program
     - sunrpc: use the struct net as the svc proc private
     - nfsd: rename NFSD_NET_* to NFSD_STATS_*
     - nfsd: expose /proc/net/sunrpc/nfsd in net namespaces
     - nfsd: make all of the nfsd stats per-network namespace
     - nfsd: remove nfsd_stats, make th_cnt a global counter
     - nfsd: make svc_stat per-network namespace instead of global
     - nvme/pci: Add APST quirk for Lenovo N60z laptop
     - mptcp: fully established after ADD_ADDR echo on MPJ
     - [x86] drm/i915/gem: Fix Virtual Memory mapping boundaries calculation
       (CVE-2024-42259)
     - cgroup: Make operations on the cgroup root_list RCU safe
     - [x86] drm/i915: Add a function to mmap framebuffer obj
     - [x86] drm/i915: Fix a NULL vs IS_ERR() bug
     - [x86] drm/i915/gem: Adjust vma offset for framebuffer mmap offset
     - binfmt_flat: Fix corruption when not offsetting data start
     - cgroup: Move rcu_head up near the top of cgroup_root
     - wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (CVE-2024-42114)
     - [arm64] KVM: arm64: Don't pass a TLBI level hint when zapping table
       entries
     - media: Revert "media: dvb-usb: Fix unexpected infinite loop in
       dvb_usb_read_remote_control()"
     - Revert "ata: libata-scsi: Honor the D_SENSE bit for CK_COND=1 and no
       error"
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 24
 .
   [ Bastian Blank ]
   * Backport changes in Microsoft Azure Network Adapter from 6.10.
     (closes: #1076576)
   * [arm64] Enable MICROSOFT_MANA.
linux (6.1.99-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.99
     - Revert "usb: xhci: prevent potential failure in handle_tx_event() for
       Transfer events without TRB"
linux (6.1.98-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.95
     - wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects
     - wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()
     - wifi: cfg80211: fully move wiphy work to unbound workqueue
     - wifi: cfg80211: Lock wiphy in cfg80211_get_station
     - wifi: cfg80211: pmsr: use correct nla_get_uX functions
     - wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64
     - wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef
     - wifi: iwlwifi: mvm: check n_ssids before accessing the ssids
     - wifi: iwlwifi: mvm: don't read past the mfuart notifcation
     - wifi: mac80211: correctly parse Spatial Reuse Parameter Set element
     - ax25: Fix refcount imbalance on inbound connections
     - ax25: Replace kfree() in ax25_dev_free() with ax25_dev_put()
     - [armhf] net/ncsi: Simplify Kconfig/dts control flow
     - [armhf] net/ncsi: Fix the multi thread manner of NCSI driver
     - ipv6: ioam: block BH from ioam6_output()
     - ipv6: sr: block BH in seg6_output_core() and seg6_input_core()
     - bpf: Set run context for rawtp test_run callback
     - net/smc: avoid overwriting when adjusting sock bufsizes
     - net: sched: sch_multiq: fix possible OOB write in multiq_tune()
       (CVE-2024-36978)
     - vxlan: Fix regression when dropping packets due to invalid src addresses
     - tcp: count CLOSE-WAIT sockets for TCP_MIB_CURRESTAB
     - net/mlx5: Stop waiting for PCI up if teardown was triggered
     - net/mlx5: Stop waiting for PCI if pci channel is offline
     - net/mlx5: Split function_setup() to enable and open functions
     - net/mlx5: Always stop health timer during driver removal
     - net/mlx5: Fix tainted pointer delete is case of flow rules creation fail
     - ptp: Fix error message on failed pin verification
     - ice: fix iteration of TLVs in Preserved Fields Area
     - ice: Introduce new parameters in ice_sched_node
     - ice: remove null checks before devm_kfree() calls
     - ice: remove af_xdp_zc_qps bitmap
     - net: wwan: iosm: Fix tainted pointer delete is case of region creation
       fail
     - af_unix: Set sk->sk_state under unix_state_lock() for truly disconencted
       peer.
     - af_unix: Annodate data-races around sk->sk_state for writers.
     - af_unix: Annotate data-race of sk->sk_state in unix_inq_len().
     - af_unix: Annotate data-races around sk->sk_state in unix_write_space() and
       poll().
     - af_unix: Annotate data-race of sk->sk_state in unix_stream_connect().
     - af_unix: Annotate data-races around sk->sk_state in sendmsg() and
       recvmsg().
     - af_unix: Annotate data-race of sk->sk_state in unix_stream_read_skb().
     - af_unix: Annotate data-races around sk->sk_state in UNIX_DIAG.
     - af_unix: Annotate data-race of net->unx.sysctl_max_dgram_qlen.
     - af_unix: Use unix_recvq_full_lockless() in unix_stream_connect().
     - af_unix: annotate lockless accesses to sk->sk_err
     - af_unix: Use skb_queue_empty_lockless() in unix_release_sock().
     - af_unix: Use skb_queue_len_lockless() in sk_diag_show_rqlen().
     - af_unix: Annotate data-race of sk->sk_shutdown in sk_diag_fill().
     - ipv6: fix possible race in __fib6_drop_pcpu_from()
     - Bluetooth: qca: fix invalid device address check
     - btrfs: fix wrong block_start calculation for btrfs_drop_extent_map_range()
     - usb: gadget: f_fs: use io_data->status consistently
     - usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete
     - iio: accel: mxc4005: allow module autoloading via OF compatible
     - iio: accel: mxc4005: Reset chip on probe() and resume()
     - xtensa: stacktrace: include <asm/ftrace.h> for prototype
     - xtensa: fix MAKE_PC_FROM_RA second argument
     - drm/amd/display: drop unnecessary NULL checks in debugfs
     - drm/amd/display: Fix incorrect DSC instance for MST
     - [arm64] dts: qcom: sm8150: align TLMM pin configuration with DT schema
     - [arm64] dts: qcom: sa8155p-adp: fix SDHC2 CD pin configuration
     - misc/pvpanic: deduplicate common code
     - misc/pvpanic-pci: register attributes via pci_driver
     - serial: sc16is7xx: replace hardcoded divisor value with BIT() macro
     - serial: sc16is7xx: fix bug in sc16is7xx_set_baud() when using prescaler
     - mmc: davinci: Don't strip remove function when driver is builtin
     - firmware: qcom_scm: disable clocks if qcom_scm_bw_enable() fails
     - HID: i2c-hid: elan: Add ili9882t timing
     - HID: i2c-hid: elan: fix reset suspend current leakage
     - i2c: add fwnode APIs
     - i2c: acpi: Unbind mux adapters before delete
     - mm, vmalloc: fix high order __GFP_NOFAIL allocations
     - mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL
     - wifi: ath10k: fix QCOM_RPROC_COMMON dependency
     - btrfs: remove unnecessary prototype declarations at disk-io.c
     - btrfs: make btrfs_destroy_delayed_refs() return void
     - btrfs: fix leak of qgroup extent records after transaction abort
     - nilfs2: return the mapped address from nilfs_get_page()
     - nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors
     - io_uring: check for non-NULL file pointer in io_file_can_poll()
     - USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages
     - USB: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected
     - usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps
     - usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state
     - mei: me: release irq in mei_me_pci_resume error path
     - tty: n_tty: Fix buffer offsets when lookahead is used
     - landlock: Fix d_parent walk
     - jfs: xattr: fix buffer overflow for invalid xattr
     - xhci: Set correct transferred length for cancelled bulk transfers
     - xhci: Apply reset resume quirk to Etron EJ188 xHCI host
     - xhci: Handle TD clearing for multiple streams case
     - xhci: Apply broken streams quirk to Etron EJ188 xHCI host
     - [x86] thunderbolt: debugfs: Fix margin debugfs node creation condition
     - scsi: mpi3mr: Fix ATA NCQ priority support
     - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory
     - scsi: sd: Use READ(16) when reading block zero on large capacity disks
       (Closes: #1067858)
     - gve: Clear napi->skb before dev_kfree_skb_any()
     - [powerpc*] uaccess: Fix build errors seen with GCC 13/14
     - Input: try trimming too long modalias strings (Closes: #983357)
     - cxl/test: Add missing vmalloc.h for tools/testing/cxl/test/mem.c
     - cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd
     - cachefiles: remove requests from xarray during flushing requests
     - cachefiles: introduce object ondemand state
     - cachefiles: extract ondemand info field from cachefiles_object
     - cachefiles: resend an open request if the read request's object is closed
     - cachefiles: add spin_lock for cachefiles_ondemand_info
     - cachefiles: add restore command to recover inflight ondemand read requests
     - cachefiles: fix slab-use-after-free in cachefiles_ondemand_get_fd()
     - cachefiles: fix slab-use-after-free in cachefiles_ondemand_daemon_read()
     - cachefiles: remove err_put_fd label in cachefiles_ondemand_daemon_read()
     - cachefiles: never get a new anonymous fd if ondemand_id is valid
     - cachefiles: defer exposing anon_fd until after copy_to_user() succeeds
     - cachefiles: flush all requests after setting CACHEFILES_DEAD
     - selftests/ftrace: Fix to check required event file
     - clk: sifive: Do not register clkdevs for PRCI clocks
     - NFSv4.1 enforce rootpath check in fs_location query
     - SUNRPC: return proper error from gss_wrap_req_priv
     - NFS: add barriers when testing for NFS_FSDATA_BLOCKED (Closes: #1071501)
     - [x86] platform/x86: dell-smbios: Fix wrong token data in sysfs
     - gpio: tqmx86: fix typo in Kconfig label
     - gpio: tqmx86: remove unneeded call to platform_set_drvdata()
     - gpio: tqmx86: introduce shadow register for GPIO output value
     - gpio: tqmx86: Convert to immutable irq_chip
     - gpio: tqmx86: store IRQ trigger type and unmask status separately
     - gpio: tqmx86: fix broken IRQ_TYPE_EDGE_BOTH interrupt type
     - HID: core: remove unnecessary WARN_ON() in implement()
     - iommu/amd: Fix sysfs leak in iommu init
     - HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode()
     - drm/vmwgfx: Port the framebuffer code to drm fb helpers
     - drm/vmwgfx: Refactor drm connector probing for display modes
     - drm/vmwgfx: Filter modes which exceed graphics memory
     - drm/vmwgfx: 3D disabled should not effect STDU memory limits
     - drm/vmwgfx: Remove STDU logic from generic mode_valid function
     - net: sfp: Always call `sfp_sm_mod_remove()` on remove
     - net: hns3: fix kernel crash problem in concurrent scenario
     - net: hns3: add cond_resched() to hns3 ring buffer init process
     - liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet
     - drm/komeda: check for error-valued pointer
     - drm/bridge/panel: Fix runtime warning on panel bridge release
     - tcp: fix race in tcp_v6_syn_recv_sock()
     - geneve: Fix incorrect inner network header offset when innerprotoinherit
       is set
     - net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN)
       packets
     - Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ
     - netfilter: ipset: Fix race between namespace cleanup and gc in the
       list:set type
     - net: pse-pd: Use EOPNOTSUPP error code instead of ENOTSUPP
     - gve: ignore nonrelevant GSO type bits when processing TSO headers
     - net: stmmac: replace priv->speed with the portTransmitRate from the tc-cbs
       parameters
     - nvmet-passthru: propagate status from id override functions
     - net/ipv6: Fix the RT cache flush via sysctl using a previous delay
     - net: bridge: mst: pass vlan group directly to br_mst_vlan_set_state
     - net: bridge: mst: fix suspicious rcu usage in br_mst_set_state
     - ionic: fix use after netif_napi_del()
     - af_unix: Read with MSG_PEEK loops if the first unread byte is OOB
     - bnxt_en: Adjust logging of firmware messages in case of released token in
       __hwrm_send()
     - misc: microchip: pci1xxxx: fix double free in the error handling of
       gp_aux_bus_probe() (CVE-2024-36973)
     - [x86] boot: Don't add the EFI stub to targets, again
     - iio: adc: ad9467: fix scan type sign
     - iio: dac: ad5592r: fix temperature channel scaling value
     - iio: imu: inv_icm42600: delete unneeded update watermark call
     - drivers: core: synchronize really_probe() and dev_uevent()
     - drm/exynos/vidi: fix memory leak in .get_modes()
     - drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID
       found
     - mptcp: ensure snd_una is properly initialized on connect
     - mptcp: pm: inc RmAddr MIB counter once per RM_ADDR ID
     - irqchip/gic-v3-its: Fix potential race condition in its_vlpi_prop_update()
     - [x86] amd_nb: Check for invalid SMN reads
     - perf/core: Fix missing wakeup when waiting for context reference
     - riscv: fix overlap of allocated page and PTR_ERR
     - tracing/selftests: Fix kprobe event name test for .isra. functions
     - null_blk: Print correct max open zones limit in null_init_zoned_dev()
     - sock_map: avoid race between sock_map_close and sk_psock_put
     - vmci: prevent speculation leaks by sanitizing event in event_deliver()
     - spmi: hisi-spmi-controller: Do not override device identifier
     - knfsd: LOOKUP can return an illegal error value
     - fs/proc: fix softlockup in __read_vmcore
     - ocfs2: use coarse time for new created files
     - ocfs2: fix races between hole punching and AIO+DIO
     - PCI: rockchip-ep: Remove wrong mask on subsys_vendor_id
     - dmaengine: axi-dmac: fix possible race in remove()
     - remoteproc: k3-r5: Wait for core0 power-up before powering up core1
     - remoteproc: k3-r5: Do not allow core1 to power up before core0 via sysfs
     - [x86] drm/i915/gt: Disarm breadcrumbs if engines are already idle
     - [x86] drm/i915/dpt: Make DPT object unshrinkable
     - [x86] intel_th: pci: Add Granite Rapids support
     - [x86] intel_th: pci: Add Granite Rapids SOC support
     - [x86] intel_th: pci: Add Sapphire Rapids SOC support
     - [x86] intel_th: pci: Add Meteor Lake-S support
     - [x86] intel_th: pci: Add Lunar Lake support
     - btrfs: zoned: introduce a zone_info struct in
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out per-zone logic from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out single bg handling from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out DUP bg handling from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: fix use-after-free due to race with dev replace
     - nilfs2: fix potential kernel bug due to lack of writeback flag waiting
     - tick/nohz_full: Don't abuse smp_call_function_single() in
       tick_setup_device()
     - mm/huge_memory: don't unpoison huge_zero_folio
     - mm/memory-failure: fix handling of dissolved but not taken off from buddy
       pages
     - serial: 8250_pxa: Configure tx_loadsz to match FIFO IRQ level
     - mptcp: pm: update add_addr counters after connect
     - Revert "fork: defer linking file vma until vma is fully initialized"
     - remoteproc: k3-r5: Jump to error handling labels in start/stop errors
     - cachefiles, erofs: Fix NULL deref in when cachefiles is not doing
       ondemand-mode
     - Bluetooth: qca: fix wcn3991 device address check
     - Bluetooth: qca: generalise device address check
     - greybus: Fix use-after-free bug in gb_interface_release due to race
       condition.
     - serial: 8250_dw: fall back to poll if there's no interrupt
     - serial: core: Add UPIO_UNKNOWN constant for unknown port type
     - usb-storage: alauda: Check whether the media is initialized
       (CVE-2024-38619)
     - misc: microchip: pci1xxxx: Fix a memory leak in the error handling of
       gp_aux_bus_probe()
     - i2c: at91: Fix the functionality flags of the slave-only interface
     - i2c: designware: Fix the functionality flags of the slave-only interface
     - zap_pid_ns_processes: clear TIF_NOTIFY_SIGNAL along with TIF_SIGPENDING
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.96
     - padata: Disable BH when taking works lock on MT path
     - io_uring/sqpoll: work around a potential audit memory leak
     - block/ioctl: prefer different overflow check
     - batman-adv: bypass empty buckets in batadv_purge_orig_ref()
     - wifi: ath9k: work around memset overflow warning
     - af_packet: avoid a false positive warning in packet_setsockopt()
     - drop_monitor: replace spin_lock by raw_spin_lock
     - scsi: qedi: Fix crash while reading debugfs attribute
     - net/sched: fix false lockdep warning on qdisc root lock
     - net: dsa: realtek: keep default LED state in rtl8366rb
     - netpoll: Fix race condition in netpoll_owner_active
     - wifi: mt76: mt7921s: fix potential hung tasks during chip recovery
     - HID: Add quirk for Logitech Casa touchpad
     - HID: asus: fix more n-key report descriptors if n-key quirked
     - Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl
     - drm/amd/display: Exit idle optimizations before HDCP execution
     - [x86] platform/x86: toshiba_acpi: Add quirk for buttons on Z830
     - [x86] ASoC: Intel: sof_sdw: add JD2 quirk for HP Omen 14
     - [arm64,armhf] drm/lima: add mask irq callback to gp and pp
     - [arm64,armhf] drm/lima: mask irqs in timeout path before hard reset
     - ALSA: hda/realtek: Add quirks for Lenovo 13X
     - [powerpc*] pseries: Enforce hcall result buffer validity and size
     - [powerpc*] io: Avoid clang null pointer arithmetic warnings
     - [x86] platform/x86: p2sb: Don't init until unassigned resources have been
       assigned
     - power: supply: cros_usbpd: provide ID table for avoiding fallback match
     - [arm64] iommu/arm-smmu-v3: Free MSIs in case of ENOMEM
     - f2fs: remove clear SB_INLINECRYPT flag in default_options
     - usb: misc: uss720: check for incompatible versions of the Belkin F5U002
     - [arm64] usb: dwc3: pci: Don't set "linux,phy_charger_detect" property on
       Lenovo Yoga Tab2 1380
     - udf: udftime: prevent overflow in udf_disk_stamp_to_time()
     - PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports
     - [arm64,armhf] serial: imx: Introduce timeout when waiting on transmitter
       empty
     - serial: exar: adding missing CTI and Exar PCI ids
     - usb: gadget: function: Remove usage of the deprecated ida_simple_xx() API
     - tty: add the option to have a tty reject a new ldisc
     - tracing: Build event generation tests only as modules
     - ALSA: hda/realtek: Remove Framework Laptop 16 from quirks
     - ALSA/hda: intel-dsp-config: Document AVS as dsp_driver option
     - ice: move RDMA init to ice_idc.c
     - ice: avoid IRQ collision to fix init failure on ACPI S3 resume
     - cipso: fix total option length computation
     - bpf: Avoid splat in pskb_pull_reason
     - ALSA: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM
     - netrom: Fix a memory leak in nr_heartbeat_expiry()
     - ipv6: prevent possible NULL deref in fib6_nh_init()
     - ipv6: prevent possible NULL dereference in rt6_probe()
     - xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr()
     - netns: Make get_net_ns() handle zero refcount net
     - qca_spi: Make interrupt remembering atomic
     - net: lan743x: disable WOL upon resume to restore full data path operation
     - net: lan743x: Support WOL at both the PHY and MAC appropriately
     - net: phy: mxl-gpy: enhance delay time required by loopback disable
       function
     - net: phy: mxl-gpy: Remove interrupt mask clearing from config_init
     - net/sched: act_api: rely on rcu in tcf_idr_check_alloc
     - net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
     - tipc: force a dst refcount before doing decryption
     - sched: act_ct: add netns into the key of tcf_ct_flow_table
     - ptp: fix integer overflow in max_vclocks_store
     - net: stmmac: No need to calculate speed divider when offload is disabled
     - virtio_net: checksum offloading handling fix
     - octeontx2-pf: Add error handling to VLAN unoffload handling
     - netfilter: ipset: Fix suspicious rcu_dereference_protected()
     - seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and End.DX6
       behaviors
     - ice: Fix VSI list rule with ICE_SW_LKUP_LAST type
     - bnxt_en: Restore PTP tx_avail count in case of skb_pad() error
     - net: usb: rtl8150 fix unintiatilzed variables in
       rtl8150_get_link_ksettings
     - regulator: core: Fix modpost error "regulator_get_regmap" undefined
     - dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list
     - dmaengine: ioat: Drop redundant pci_enable_pcie_error_reporting()
     - dmaengine: ioatdma: Fix leaking on version mismatch
     - dmaengine: ioat: use PCI core macros for PCIe Capability
     - dmaengine: ioatdma: Fix error path in ioat3_dma_probe()
     - dmaengine: ioatdma: Fix kmemleak in ioat_pci_probe()
     - dmaengine: ioatdma: Fix missing kmem_cache_destroy()
     - regulator: bd71815: fix ramp values
     - [arm64] dts: imx93-11x11-evk: Remove the 'no-sdio' property
     - [arm64] dts: freescale: imx8mm-verdin: enable hysteresis on slow input pin
     - ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is
       fine."
     - firmware: psci: Fix return value from psci_system_suspend()
     - RDMA/mlx5: Add check for srq max_sge attribute
     - net: stmmac: Assign configured channel value to EXTTS event
     - net: usb: ax88179_178a: improve reset check
     - net: do not leave a dangling sk pointer, when socket creation fails
     - btrfs: retry block group reclaim without infinite loop
     - cifs: fix typo in module parameter enable_gcm_256
     - KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin()
     - [arm64] KVM: arm64: Disassociate vcpus from redistributor region on
       teardown
     - [x86] KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for ProBook 445/465
       G11.
     - ALSA: hda/realtek: Limit mic boost on N14AP7
     - drm/i915/mso: using joiner is not possible with eDP MSO
     - drm/radeon: fix UBSAN warning in kv_dpm.c
     - drm/amdgpu: fix UBSAN warning in kv_dpm.c
     - gcov: add support for GCC 14
     - kcov: don't lose track of remote references during softirqs
     - mm: mmap: allow for the maximum number of bits for randomizing mmap_base
       by default
     - tcp: clear tp->retrans_stamp in tcp_rcv_fastopen_synack()
     - mm/page_table_check: fix crash on ZONE_DEVICE
     - i2c: ocores: set IACK bit after core is enabled
     - dt-bindings: i2c: google,cros-ec-i2c-tunnel: correct path to
       i2c-controller schema
     - [armhf] spi: stm32: qspi: Fix dual flash mode sanity test in
       stm32_qspi_setup()
     - [arm64] dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc
     - [armhf] spi: stm32: qspi: Clamp stm32_qspi_get_mode() output to
       CCR_BUSWIDTH_4
     - perf: script: add raw|disasm arguments to --insn-trace option
     - perf script: Show also errors for --insn-trace option
     - [armhf] dts: samsung: smdkv310: fix keypad no-autorepeat
     - [armhf] dts: samsung: exynos4412-origen: fix keypad no-autorepeat
     - [armhf] dts: samsung: smdk4412: fix keypad no-autorepeat
     - pmdomain: ti-sci: Fix duplicate PD referrals
     - tracing: Add MODULE_DESCRIPTION() to preemptirq_delay_test
     - [x86] cpu/vfm: Add new macros to work with (vendor/family/model) values
     - [x86] cpu: Fix x86_match_cpu() to match just X86_VENDOR_INTEL
     - Revert "kheaders: substituting --sort in archive creation"
     - kheaders: explicitly define file modes for archived headers
     - drm/amd/display: revert Exit idle optimizations before HDCP execution
     - net/sched: unregister lockdep keys in qdisc_create/qdisc_alloc error path
     - hid: asus: asus_report_fixup: fix potential read out of bounds
     - Revert "mm: mmap: allow for the maximum number of bits for randomizing
       mmap_base by default"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.97
     - usb: typec: ucsi: Never send a lone connector change ack
     - usb: typec: ucsi: Ack also failed Get Error commands
     - [x86] ACPI: x86: utils: Add Picasso to the list for forcing
       StorageD3Enable
     - [x86] ACPI: x86: Force StorageD3Enable on more products
     - Input: ili210x - fix ili251x_read_touch_data() return value
     - pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER
     - [arm64,armhf] pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins
     - [arm64,armhf] pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins
     - [arm64,armhf] pinctrl: rockchip: use dedicated pinctrl type for RK3328
     - [arm64,armhf] pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set
     - [mips*] pci: lantiq: restore reset gpio polarity
     - dt-bindings: i2c: Drop unneeded quotes
     - dt-bindings: i2c: atmel,at91sam: correct path to i2c-controller schema
     - netfilter: nf_tables: use timestamp to check for set element timeout
       (CVE-2024-27397)
     - [arm64] ASoC: rockchip: i2s-tdm: Fix trcm mode by setting clock on right
       mclk
     - [s390x] pci: Add missing virt_to_phys() for directed DIBV
     - ASoC: amd: acp: remove i2s configuration check in acp_i2s_probe()
     - [arm64] ASoC: fsl-asoc-card: set priv->pdev before using it
     - net: dsa: microchip: fix initial port flush problem
     - bpf: Fix overrunning reservations in ringbuf
     - ibmvnic: Free any outstanding tx skbs during scrq reset
     - net: phy: micrel: add Microchip KSZ 9477 to the device table
     - net: dsa: microchip: use collision based back pressure mode
     - xdp: Remove WARN() from __xdp_reg_mem_model()
     - Fix race for duplicate reqsk on identical SYN
     - net: dsa: microchip: fix wrong register write when masking interrupt
     - [powerpc*] restore some missing spu syscalls
     - tcp: fix tcp_rcv_fastopen_synack() to enter TCP_CA_Loss for failed TFO
     - netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data
       registers
     - bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro()
     - [x86] fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup
     - mtd: partitions: redboot: Added conversion of operands to a larger type
     - wifi: ieee80211: check for NULL in ieee80211_mle_size_ok()
     - bpf: Add a check for struct bpf_fib_lookup size
     - bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
     - RDMA/restrack: Fix potential invalid address access
     - net/iucv: Avoid explicit cpumask var allocation on stack
     - net/dpaa2: Avoid explicit cpumask var allocation on stack
     - crypto: ecdh - explicitly zeroize private_key
     - ALSA: emux: improve patch ioctl data validation
     - media: dvbdev: Initialize sbuf
     - soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message
     - drm/radeon/radeon_display: Decrease the size of allocated memory
     - nvme: fixup comment for nvme RDMA Provider Type
     - drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA
     - [arm64] gpio: davinci: Validate the obtained number of IRQs
     - drm/amd/amdgpu: Fix style errors in amdgpu_drv.c & amdgpu_device.c
     - drm/amdgpu: Fix pci state save during mode-1 reset
     - gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1)
     - randomize_kstack: Remove non-functional per-arch entropy filtering
     - ima: Fix use-after-free on a dentry's dname.name
     - [x86] stop playing stack games in profile_pc()
     - Revert "MIPS: pci: lantiq: restore reset gpio polarity"
     - [arm64] pinctrl: qcom: spmi-gpio: drop broken pm8008 support
     - ocfs2: fix DIO failure due to insufficient transaction credits
     - nfs: drop the incorrect assertion in nfs_swap_rw()
     - mmc: sdhci-brcmstb: check R1_STATUS for erase/trim/discard
     - mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos
     - mmc: sdhci: Do not invert write-protect twice
     - mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro()
     - iio: xilinx-ams: Don't include ams_ctrl_channels in scan_mask
     - counter: ti-eqep: enable clock at probe
     - i2c: testunit: don't erase registers after STOP
     - i2c: testunit: discard write requests while old command is running
     - iio: adc: ad7266: Fix variable checking bug
     - iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF
     - net: usb: ax88179_178a: improve link status logs
     - usb: gadget: printer: SS+ support
     - usb: gadget: printer: fix races against disable (CVE-2024-25741)
     - usb: musb: da8xx: fix a resource leak in probe()
     - usb: atm: cxacru: fix endpoint checking in cxacru_bind()
     - usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to
       avoid deadlock
     - usb: gadget: aspeed_udc: fix device address configuration
     - usb: ucsi: stm32: fix command completion handling
     - serial: 8250_omap: Implementation of Errata i2310
     - serial: imx: set receiver level before starting uart
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook 645/665
       G11.
     - tty: mcf: MCF54418 has 10 UARTS
     - net: can: j1939: Initialize unused data in j1939_send_one()
     - net: can: j1939: recover socket queue on CAN bus error during BAM
       transmission
     - net: can: j1939: enhanced error handling for tightly received RTS messages
       in xtp_rx_rts_session_new
     - cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing
     - cpu/hotplug: Fix dynstate assignment in __cpuhp_setup_state_cpuslocked()
     - irqchip/loongson-liointc: Set different ISRs for different cores
     - kbuild: Install dtb files as 0644 in Makefile.dtbinst
     - btrfs: zoned: fix initial free space detection
     - csky, hexagon: fix broken sys_sync_file_range
     - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes
     - drm/amdgpu: avoid using null object of framebuffer
     - [x86] drm/i915/gt: Fix potential UAF by revoke of fence registers
     - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes
     - drm/amdgpu/atomfirmware: fix parsing of vram_info
     - batman-adv: Don't accept TT entries for out-of-spec VIDs
     - can: mcp251xfd: fix infinite loop when xmit fails
     - ata: ahci: Clean up sysfs file on error
     - ata: libata-core: Fix double free on error
     - ftruncate: pass a signed offset
     - syscalls: fix compat_sys_io_pgetevents_time64 usage
     - syscalls: fix sys_fanotify_mark prototype
     - Revert "cpufreq: amd-pstate: Fix the inconsistency in max frequency units"
     - mm/page_alloc: Separate THP PCP into movable and non-movable categories
     - gfs2: Fix slab-use-after-free in gfs2_qd_dealloc (CVE-2023-52760)
     - efi: memmap: Move manipulation routines into x86 arch tree
     - efi: xen: Set EFI_PARAVIRT for Xen dom0 boot on all architectures
     - [x86] efi/x86: Free EFI memory map only when installing a new one.
     - [arm64] dts: rockchip: Fix SD NAND and eMMC init on rk3308-rock-pi-s
     - [arm64] dts: rockchip: Rename LED related pinctrl nodes on
       rk3308-rock-pi-s
     - [arm64] dts: rockchip: fix PMIC interrupt pin on ROCK Pi E
     - [arm64] dts: rockchip: Add sound-dai-cells for RK3368
     - serial: imx: only set receiver level if it is zero
     - serial: 8250_omap: Fix Errata i2310 with RX FIFO level check
     - tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.98
     - locking/mutex: Introduce devm_mutex_init()
     - crypto: hisilicon/debugfs - Fix debugfs uninit process issue
     - [arm64,armhf] drm/lima: fix shared irq handling on driver remove
     - [powerpc*] Avoid nmi_enter/nmi_exit in real mode interrupt.
     - media: dvb: as102-fe: Fix as10x_register_addr packing
     - media: dvb-usb: dib0700_devices: Add missing release_firmware()
     - IB/core: Implement a limit on UMAD receive List
     - scsi: qedf: Make qedf_execute_tmf() non-preemptible
     - crypto: aead,cipher - zeroize key buffer after use
     - drm/amdgpu: Fix uninitialized variable warnings
     - drm/amdgpu: Initialize timestamp for some legacy SOCs
     - drm/amd/display: Check index msg_id before read or write
     - drm/amd/display: Check pipe offset before setting vblank
     - drm/amd/display: Skip finding free audio for unknown engine_id
     - drm/amdgpu: fix uninitialized scalar variable warning
     - media: dw2102: Don't translate i2c read into write
     - sctp: prefer struct_size over open coded arithmetic
     - firmware: dmi: Stop decoding on broken entry
     - Input: ff-core - prefer struct_size over open coded arithmetic
     - usb: xhci: prevent potential failure in handle_tx_event() for Transfer
       events without TRB
     - wifi: mt76: replace skb_put with skb_put_zero
     - [arm64,armhf] net: dsa: mv88e6xxx: Correct check for empty list
     - media: dvb-frontends: tda18271c2dd: Remove casting during div
     - media: s2255: Use refcount_t instead of atomic_t for num_channels
     - media: dvb-frontends: tda10048: Fix integer overflow
     - i2c: i801: Annotate apanel_addr as __ro_after_init
     - [powerpc*] 64: Set _IO_BASE to POISON_POINTER_DELTA not 0 for CONFIG_PCI=n
     - orangefs: fix out-of-bounds fsid access
     - kunit: Fix timeout message
     - [powerpc*] xmon: Check cpu id in commands "c#", "dp#" and "dx#"
     - igc: fix a log entry using uninitialized netdev
     - bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD
     - f2fs: check validation of fault attrs in f2fs_build_fault_attr()
     - scsi: mpi3mr: Sanitise num_phys
     - serial: imx: Raise TX trigger level to 8
     - jffs2: Fix potential illegal address access in jffs2_free_inode
     - [s390x] pkey: Wipe sensitive data on failure
     - btrfs: scrub: initialize ret in scrub_simple_mirror() to fix compilation
       warning
     - cdrom: rearrange last_media_change check to avoid unintentional overflow
     - mac802154: fix time calculation in ieee802154_configure_durations()
     - UPSTREAM: tcp: fix DSACK undo in fast recovery to call tcp_try_to_open()
     - net/mlx5: E-switch, Create ingress ACL when needed
     - net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup()
     - tcp_metrics: validate source addr length
     - [s390x] KVM: s390: fix LPSWEY handling
     - e1000e: Fix S0ix residency on corporate systems
     - net: allow skb_datagram_iter to be called from any context
     - net: ntb_netdev: Move ntb_netdev_rx_handler() to call netif_rx() from
       __netif_rx()
     - wifi: wilc1000: fix ies_len type in connect path
     - netfilter: nf_tables: unconditionally flush pending work before notifier
     - bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set()
       (CVE-2024-39487)
     - inet_diag: Initialize pad field in struct inet_diag_req_v2
     - [x86] platform/x86: toshiba_acpi: Fix quickstart quirk handling
     - Revert "igc: fix a log entry using uninitialized netdev"
     - nilfs2: fix inode number range checks
     - nilfs2: add missing check for inode numbers on directory entries
     - mm: optimize the redundant loop of mm_update_owner_next()
     - mm: avoid overflows in dirty throttling logic
     - btrfs: fix adding block group to a reclaim list and the unused list during
       reclaim
     - f2fs: Add inline to f2fs_build_fault_attr() stub
     - scsi: mpi3mr: Use proper format specifier in mpi3mr_sas_port_add()
     - Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot
     - can: kvaser_usb: Explicitly initialize family in leafimx driver_info
       struct
     - fsnotify: Do not generate events for O_PATH file descriptors
     - Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(),
       again"
     - drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes
     - drm/amdgpu/atomfirmware: silence UBSAN warning
     - drm: panel-orientation-quirks: Add quirk for Valve Galileo
     - [powerpc*] pseries: Fix scv instruction crash with kexec
     - mtd: rawnand: Ensure ECC configuration is propagated to upper layers
     - mtd: rawnand: Bypass a couple of sanity checks during NAND identification
     - mtd: rawnand: rockchip: ensure NVDDR timings are rejected
     - bnx2x: Fix multiple UBSAN array-index-out-of-bounds
     - [arm64] dts: rockchip: Fix the DCDC_REG2 minimum voltage on Quartz64 Model
       B
     - ima: Avoid blocking in RCU read-side critical section
     - media: dw2102: fix a potential buffer overflow
     - clk: qcom: gcc-sm6350: Fix gpll6* & gpll7 parents
     - clk: mediatek: clk-mtk: Register MFG notifier in mtk_clk_simple_probe()
     - clk: mediatek: mt8183: Only enable runtime PM on mt8183-mfgcfg
     - i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr
     - ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897
     - nvme-multipath: find NUMA path only for online numa-node
     - dma-mapping: benchmark: avoid needless copy_to_user if benchmark fails
     - nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset
     - regmap-i2c: Subtract reg size from max_write
     - [x86] platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW
       11.6" tablet
     - [x86] platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro
     - nvmet: fix a possible leak when destroy a ctrl during qp establishment
     - kbuild: fix short log for AS in link-vmlinux.sh
     - nfc/nci: Add the inconsistency check between the input data length and
       count
     - spi: cadence: Ensure data lines set to low during dummy-cycle period
     - null_blk: Do not allow runt zone with zone capacity smaller then zone size
     - nilfs2: fix incorrect inode allocation from reserved inodes
 .
   [ Salvatore Bonaccorso ]
   * [rt] Drop "drm/i915/gt: Queue and wait for the irq_work item."
   *  Bump ABI to 23
   * Drop now unknown config options for DRM_VMWGFX_FBCON
   * Refresh "firmware: Remove redundant log messages from drivers"
   * d/rules.real: Revert workaround to explicitly remove executable bits from
     dtb files (implemented upstream)
   * [rt] Update to 6.1.96-rt35

linux-signed-amd64 (6.1.106+3) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.106-3
 .
   * udp: allow header check for dodgy GSO_UDP_L4 packets.
   * gso: fix dodgy bit handling for GSO_UDP_L4
   * net: more strict VIRTIO_NET_HDR_GSO_UDP_L4 validation
   * net: drop bad gso csum_start and offset in virtio_net_hdr (Closes: #1079684)
   * Bump ABI to 25
linux-signed-amd64 (6.1.106+2) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.106-2
 .
   * media: solo6x10: replace max(a, min(b, c)) by clamp(b, a, c)
linux-signed-amd64 (6.1.106+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.106-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.100
     - Compiler Attributes: Add __uninitialized macro
     - mm: prevent derefencing NULL ptr in pfn_section_valid()
     - cachefiles: propagate errors from vfs_getxattr() to avoid infinite loop
     - cachefiles: narrow the scope of triggering EPOLLIN events in ondemand mode
     - cachefiles: stop sending new request when dropping object
     - cachefiles: cancel all requests for the object that is being dropped
     - cachefiles: wait for ondemand_object_worker to finish when dropping object
     - cachefiles: cyclic allocation of msg_id to avoid reuse
     - cachefiles: add missing lock protection when polling
     - filelock: fix potential use-after-free in posix_lock_inode
     - fs/dcache: Re-use value stored to dentry->d_flags instead of re-reading
     - vfs: don't mod negative dentry count when on shrinker list
     - tcp: fix incorrect undo caused by DSACK of TLP retransmit
     - net: phy: microchip: lan87xx: reinit PHY after cable test
     - skmsg: Skip zero length skb in sk_msg_recvmsg
     - net: fix rc7's __skb_datagram_iter()
     - i40e: Fix XDP program unloading while removing the driver
     - net: ethernet: lantiq_etop: fix double free in detach
     - bpf: Refactor some inode/task/sk storage functions for reuse
     - bpf: Reduce smap->elem_size
     - bpf: use bpf_map_kvcalloc in bpf_local_storage
     - bpf: Remove __bpf_local_storage_map_alloc
     - bpf: fix order of args in call to bpf_map_kvcalloc
     - net: ethernet: mtk-star-emac: set mac_managed_pm when probing
     - ppp: reject claimed-as-LCP but actually malformed packets
     - ethtool: netlink: do not return SQI value if link is down
     - udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port().
     - net/sched: Fix UAF when resolving a clash
     - net, sunrpc: Remap EPERM in case of connection failure in
       xs_tcp_setup_socket
     - [s390x] Mark psw in __load_psw_mask() as __unitialized
     - firmware: cs_dsp: Fix overflow checking of wmfw header
     - firmware: cs_dsp: Return error if block header overflows file
     - firmware: cs_dsp: Validate payload length before processing block
     - firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers
     - firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files
     - cifs: fix setting SecurityFlags to true
     - Revert "sched/fair: Make sure to try to detach at least one movable task"
     - tcp: use signed arithmetic in tcp_rtx_probe0_timed_out()
     - tcp: avoid too many retransmit packets (CVE-2024-41007)
     - USB: serial: option: add Telit generic core-dump composition
     - USB: serial: option: add Telit FN912 rmnet compositions
     - USB: serial: option: add Fibocom FM350-GL
     - USB: serial: option: add support for Foxconn T99W651
     - USB: serial: option: add Netprisma LCUK54 series modules
     - USB: serial: option: add Rolling RW350-GL variants
     - USB: serial: mos7840: fix crash on resume
     - USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k
     - usb: gadget: configfs: Prevent OOB read/write in usb_string_copy()
     - USB: core: Fix duplicate endpoint bug by clearing reserved bits in the
       descriptor
     - hpet: Support 32-bit userspace
     - xhci: always resume roothubs if xHC was reset during resume
     - ksmbd: discard write access to the directory open
     - nvmem: rmem: Fix return value of rmem_read()
     - nvmem: meson-efuse: Fix return value of nvmem callbacks
     - nvmem: core: only change name to fram for current attribute
     - [x86] platform/x86: toshiba_acpi: Fix array out-of-bounds access
     - ALSA: hda/realtek: add quirk for Clevo V5[46]0TU
     - ALSA: hda/realtek: Enable Mute LED on HP 250 G7
     - ALSA: hda/realtek: Limit mic boost on VAIO PRO PX
     - Fix userfaultfd_api to return EINVAL as expected
     - libceph: fix race between delayed_work() and ceph_monc_stop()
     - ACPI: processor_idle: Fix invalid comparison with insertion sort for
       latency
     - wireguard: selftests: use acpi=off instead of -no-acpi for recent QEMU
     - wireguard: allowedips: avoid unaligned 64-bit memory accesses
     - wireguard: queueing: annotate intentional data race in cpu round robin
     - wireguard: send: annotate intentional data race in checking empty queue
     - [x86] retpoline: Move a NOENDBR annotation to the SRSO dummy return thunk
     - bpf: Allow reads from uninit stack
     - nilfs2: fix kernel bug on rename operation of broken directory
     - sched: Move psi_account_irqtime() out of update_rq_clock_task() hotpath
     - i2c: mark HostNotify target address as used
     - [x86] entry/64: Remove obsolete comment on tracing vs. SYSRET
     - [x86] bhi: Avoid warning in #DB handler due to BHI mitigation
     - kbuild: Make ld-version.sh more robust against version string changes
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.101
     - minmax: sanity check constant bounds when clamping
     - minmax: clamp more efficiently by avoiding extra comparison
     - minmax: fix header inclusions
     - minmax: allow min()/max()/clamp() if the arguments have the same
       signedness.
     - minmax: allow comparisons of 'int' against 'unsigned char/short'
     - minmax: relax check to allow comparison between unsigned arguments and
       signed constants
     - gcc-plugins: Rename last_stmt() for GCC 14+
     - filelock: Remove locks reliably when fcntl/close race is detected
       (CVE-2024-41012)
     - scsi: core: alua: I/O errors for ALUA state transitions
     - scsi: qedf: Don't process stag work during unload and recovery
     - scsi: qedf: Wait for stag work during unload
     - scsi: qedf: Set qed_slowpath_params to zero before use
     - efi/libstub: zboot.lds: Discard .discard sections
     - ACPI: EC: Abort address space access upon error
     - ACPI: EC: Avoid returning AE_OK on errors in address space handler
     - tools/power/cpupower: Fix Pstate frequency reporting on AMD Family 1Ah
       CPUs
     - wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata
     - wifi: mac80211: apply mcast rate only if interface is up
     - wifi: mac80211: handle tasklet frames before stopping
     - wifi: cfg80211: fix 6 GHz scan request building
     - wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup
     - wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd
     - wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option
     - wifi: iwlwifi: mvm: Fix scan abort handling with HW rfkill
     - wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan()
     - of/irq: Factor out parsing of interrupt-map parent phandle+args from
       of_irq_parse_raw()
     - Input: silead - Always support 10 fingers
     - net: ipv6: rpl_iptunnel: block BH in rpl_output() and rpl_input()
     - ila: block BH in ila_output()
     - null_blk: fix validation of block size
     - kconfig: gconf: give a proper initial state to the Save button
     - kconfig: remove wrong expr_trans_bool()
     - HID: Ignore battery for ELAN touchscreens 2F2C and 4116
     - NFSv4: Fix memory leak in nfs4_set_security_label
     - nfs: propagate readlink errors in nfs_symlink_filler
     - nfs: don't invalidate dentries on transient errors
     - cachefiles: add consistency check for copen/cread
     - cachefiles: Set object to close if ondemand_id < 0 in copen
     - cachefiles: make on-demand read killable
     - fs/file: fix the check in find_next_fd()
     - mei: demote client disconnect warning on suspend to debug
     - iomap: Fix iomap_adjust_read_range for plen calculation
     - drm: panel-orientation-quirks: Add quirk for Aya Neo KUN
     - nvme: avoid double free special payload
     - nvmet: always initialize cqe.result
     - wifi: cfg80211: wext: add extra SIOCSIWSCAN data check
     - [powerpc*] KVM: PPC: Book3S HV: Prevent UAF in
       kvm_spapr_tce_attach_iommu_group()
     - drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency
     - ALSA: hda/realtek: Add more codec ID to no shutup pins list
     - [mips*] fix compat_sys_lseek syscall
     - Input: elantech - fix touchpad state on resume for Lenovo N24
     - Input: i8042 - add Ayaneo Kun to i8042 quirk table
     - ASoC: topology: Fix references to freed memory
     - ASoC: topology: Do not assign fields that are already set
     - bytcr_rt5640 : inverse jack detect for Archos 101 cesium
     - ALSA: dmaengine: Synchronize dma channel after drop()
     - ASoC: ti: davinci-mcasp: Set min period size using FIFO config
     - ASoC: ti: omap-hdmi: Fix too long driver name
     - [x86] ASoC: SOF: sof-audio: Skip unprepare for in-use widgets on error
       rollback
     - can: kvaser_usb: fix return value for hif_usb_send_regout
     - gpio: pca953x: fix pca953x_irq_bus_sync_unlock race
     - [s390x] sclp: Fix sclp_init() cleanup on failure
     - [x86] platform/x86: wireless-hotkey: Add support for LG Airplane Button
     - [x86] platform/x86: lg-laptop: Remove LGEX0815 hotkey handling
     - [x86] platform/x86: lg-laptop: Change ACPI device id
     - [x86] platform/x86: lg-laptop: Use ACPI device handle when evaluating
       WMAB/WMBB
     - btrfs: qgroup: fix quota root leak after quota disable failure
     - ALSA: PCM: Allow resume only for suspended streams
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx
     - ALSA: dmaengine_pcm: terminate dmaengine before synchronize
     - [x86] ASoC: amd: yc: Fix non-functional mic on ASUS M5602RA
     - net: usb: qmi_wwan: add Telit FN912 compositions
     - net: mac802154: Fix racy device stats updates by DEV_STATS_INC() and
       DEV_STATS_ADD()
     - [powerpc*] pseries: Whitelist dtl slub object for copying to userspace
     - [powerpc*] eeh: avoid possible crash when edev->pdev changes
     - scsi: libsas: Fix exp-attached device scan after probe failure scanned in
       again after probe failed
     - [arm64] tee: optee: ffa: Fix missing-field-initializers warning
     - Bluetooth: hci_core: cancel all works upon hci_unregister_dev()
     - bluetooth/l2cap: sync sock recv cb and release
     - erofs: ensure m_llen is reset to 0 if metadata is invalid
     - drm/amd/display: Account for cursor prefetch BW in DML1 mode support
     - drm/radeon: check bo_va->bo is non-NULL before using it
     - fs: better handle deep ancestor chains in is_subdir()
     - wifi: iwlwifi: properly set WIPHY_FLAG_SUPPORTS_EXT_KEK_KCK
     - drivers/perf: riscv: Reset the counter to hpmevent mapping while starting
       cpus
     - spi: imx: Don't expect DMA for i.MX{25,35,50,51,53} cspi devices
     - ksmbd: return FILE_DEVICE_DISK instead of super magic
     - hfsplus: fix uninit-value in copy_name
     - spi: mux: set ctlr->bits_per_word_mask
     - cifs: fix noisy message on copy_file_range
     - [arm*] 9324/1: fix get_user() broken with veneer
     - Bluetooth: L2CAP: Fix deadlock
     - of/irq: Disable "interrupt-map" parsing for PASEMI Nemo
     - wifi: cfg80211: wext: set ssids=NULL for passive scans
     - wifi: mac80211: disable softirqs for queued frame handling
     - netfs, fscache: export fscache_put_volume() and add
       fscache_try_get_volume()
     - cachefiles: fix slab-use-after-free in fscache_withdraw_volume()
     - cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.102
     - drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq()
     - f2fs: avoid dead loop in f2fs_issue_checkpoint()
     - ocfs2: add bounds checking to ocfs2_check_dir_entry()
     - jfs: don't walk off the end of ealist
     - ALSA: hda/realtek: Enable headset mic on Positivo SU C1400
     - ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360
     - [arm64] dts: qcom: msm8996: Disable SS instance in Parkmode for USB
     - [arm64] dts: qcom: ipq6018: Disable SS instance in Parkmode for USB
     - [arm64] dts: qcom: sdm630: Disable SS instance in Parkmode for USB
     - [arm64,armhf] ALSA: pcm_dmaengine: Don't synchronize DMA channel when DMA
       is paused
     - filelock: Fix fcntl/close race recovery compat path
     - btrfs: do not BUG_ON on failure to get dir index for new snapshot
     - tun: add missing verification for short frame (CVE-2024-41091)
     - tap: add missing verification for short frame (CVE-2024-41090)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.103
     - [amd64] EDAC, i10nm: make skx_common.o a separate module
     - rcu/tasks: Fix stale task snaphot for Tasks Trace
     - md: fix deadlock between mddev_suspend and flush bio
     - platform/chrome: cros_ec_debugfs: fix wrong EC message version
     - block: refactor to use helper
     - block: cleanup bio_integrity_prep
     - block: initialize integrity buffer to zero before writing it to media
     - hfsplus: fix to avoid false alarm of circular locking
     - [x86] of: Return consistent error type from x86_of_pci_irq_enable()
     - [x86] pci/intel_mid_pci: Fix PCIBIOS_* return code handling
     - [x86] pci/xen: Fix PCIBIOS_* return code handling
     - [x86] platform/iosf_mbi: Convert PCIBIOS_* return codes to errnos
     - kernfs: fix all kernel-doc warnings and multiple typos
     - kernfs: Convert kernfs_path_from_node_locked() from strlcpy() to strscpy()
     - cgroup/cpuset: Prevent UAF in proc_cpuset_show()
     - hwmon: (adt7475) Fix default duty on fan is disabled
     - nvmet-auth: fix nvmet_auth hash error handling
     - [arm64] drm/meson: fix canvas release in bind function
     - [arm64] dts: qcom: sdm845: add power-domain to UFS PHY
     - [arm64] dts: qcom: sm6350: add power-domain to UFS PHY
     - [arm64] dts: qcom: sm8250: switch UFS QMP PHY to new style of bindings
     - [arm64] dts: qcom: sm8250: add power-domain to UFS PHY
     - [arm64] dts: qcom: sm8450: add power-domain to UFS PHY
     - [arm64] dts: qcom: msm8996-xiaomi-common: drop excton from the USB PHY
     - [arm64] dts: qcom: msm8998: enable adreno_smmu by default
     - [arm64] soc: qcom: rpmh-rsc: Ensure irqs aren't disabled by
       rpmh_rsc_send_data() callers
     - [arm64] dts: rockchip: Add sdmmc related properties on rk3308-rock-pi-s
     - [arm64] dts: rockchip: Add pinctrl for UART0 to rk3308-rock-pi-s
     - [arm64] dts: rockchip: Add mdio and ethernet-phy nodes to rk3308-rock-pi-s
     - [arm64] dts: rockchip: Update WIFi/BT related nodes on rk3308-rock-pi-s
     - [arm64] dts: qcom: msm8996: specify UFS core_clk frequencies
     - [arm64] soc: xilinx: rename cpu_number1 to dummy_cpu_number
     - cpufreq: ti-cpufreq: Handle deferred probe with dev_err_probe()
     - [armhf] OPP: ti: Fix ti_opp_supply_probe wrong return values
     - [arm64] dts: rockchip: Increase VOP clk rate on RK3328
     - [arm64] dts: amlogic: sm1: fix spdif compatibles
     - [arm64] dts: mediatek: mt8183-kukui: Drop bogus output-enable property
     - [arm64] dts: mediatek: mt7622: fix "emmc" pinctrl mux
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Add ports node for anx7625
     - [arm64] dts: amlogic: gx: correct hdmi clocks
     - [arm64] dts: rockchip: Drop invalid mic-in-differential on rk3568-rock-3a
     - [arm64] dts: rockchip: Fix mic-in-differential usage on rk3568-evb1-v10
     - [arm64] dts: renesas: r8a779g0: Add L3 cache controller
     - [arm64] dts: renesas: r8a779g0: Add secondary CA76 CPU cores
     - [arm64] dts: renesas: Drop specifying the GIC_CPU_MASK_SIMPLE() for GICv3
       systems
     - [arm64] dts: renesas: r8a779a0: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r8a779f0: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r8a779g0: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r9a07g043u: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r9a07g044: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r9a07g054: Add missing hypervisor virtual timer IRQ
     - [x86] xen: Convert comma to semicolon
     - [arm64] dts: rockchip: Add missing power-domains for rk356x vop_mmu
     - [arm64] dts: qcom: sm6350: Add missing qcom,non-secure-domain property
     - vmlinux.lds.h: catch .bss..L* sections into BSS")
     - [arm64] firmware: turris-mox-rwtm: Do not complete if there are no waiters
     - [arm64] firmware: turris-mox-rwtm: Fix checking return value of
       wait_for_completion_timeout()
     - [arm64] firmware: turris-mox-rwtm: Initialize completion before mailbox
     - wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device
     - bpftool: Un-const bpf_func_info to fix it for llvm 17 and newer
     - net: esp: cleanup esp_output_tail_tcp() in case of unsupported ESPINTCP
     - tcp: annotate lockless accesses to sk->sk_err_soft
     - tcp: annotate lockless access to sk->sk_err
     - tcp: add tcp_done_with_error() helper
     - tcp: fix race in tcp_write_err()
     - tcp: fix races in tcp_v[46]_err()
     - net/smc: set rmb's SG_MAX_SINGLE_ALLOC limitation only when
       CONFIG_ARCH_NO_SG_CHAIN is defined
     - lib: objagg: Fix general protection fault
     - [x86] perf/x86: Serialize set_attr_rdpmc()
     - jump_label: Use atomic_try_cmpxchg() in static_key_slow_inc_cpuslocked()
     - jump_label: Prevent key->enabled int overflow
     - jump_label: Fix concurrency issues in static_key_slow_dec()
     - wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers
     - wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he()
     - wifi: cfg80211: handle 2x996 RU allocation in
       cfg80211_calculate_bitrate_he()
     - net: fec: Refactor: #define magic constants
     - net: fec: Fix FEC_ECR_EN1588 being cleared on link-down
     - libbpf: Checking the btf_type kind when fixing variable offsets
     - ipvs: Avoid unnecessary calls to skb_is_gso_sctp
     - netfilter: nf_tables: rise cap on SELinux secmark context
     - bpftool: Mount bpffs when pinmaps path not under the bpffs
     - [x86] perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation
     - perf: Fix perf_aux_size() for greater-than 32-bit size
     - perf: Prevent passing zero nr_pages to rb_alloc_aux()
     - perf: Fix default aux_watermark calculation
     - [x86] perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake
     - wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter()
     - wifi: virt_wifi: avoid reporting connection success with wrong SSID
     - gss_krb5: Fix the error handling path for crypto_sync_skcipher_setkey
     - wifi: virt_wifi: don't use strlen() in const context
     - locking/rwsem: Add __always_inline annotation to __down_write_common() and
       inlined callers
     - bpf: annotate BTF show functions with __printf
     - bna: adjust 'name' buf size of bna_tcb and bna_ccb structures
     - bpf: Eliminate remaining "make W=1" warnings in kernel/bpf/btf.o
     - bpf: Fix null pointer dereference in resolve_prog_type() for
       BPF_PROG_TYPE_EXT
     - xdp: fix invalid wait context of page_pool_destroy()
     - net: bridge: mst: Check vlan state for egress decision
     - [arm64] drm/rockchip: vop2: Fix the port mux of VP2
     - drm/mipi-dsi: Fix mipi_dsi_dcs_write_seq() macro definition format
     - drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq()
     - drm/amd/pm: Fix aldebaran pcie speed reporting
     - drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit
     - drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1
     - drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before
       regulators
     - drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare()
     - media: pci: ivtv: Add check for DMA map result
     - media: dvb-usb: Fix unexpected infinite loop in
       dvb_usb_read_remote_control()
     - media: imon: Fix race getting ictx->lock
     - media: i2c: Fix imx412 exposure control
     - media: v4l: async: Fix NULL pointer dereference in adding ancillary links
     - [s390x] mm: Convert make_page_secure to use a folio
     - [s390x] mm: Convert gmap_make_secure to use a folio
     - [s390x] uv: Don't call folio_wait_writeback() without a folio reference
     - saa7134: Unchecked i2c_transfer function result fixed
     - media: uvcvideo: Override default flags
     - media: renesas: vsp1: Fix _irqsave and _irq mix
     - media: renesas: vsp1: Store RPF partition configuration per RPF instance
     - leds: trigger: Unregister sysfs attributes before calling deactivate()
     - [arm64] drm/msm/dsi: set VIDEO_COMPRESSION_MODE_CTRL_WC
     - [arm64] drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op
     - perf test: Replace arm callgraph fp test workload with leafloop
     - perf tests arm_callgraph_fp: Address shellcheck warnings about signal
       names and adding double quotes for expression
     - perf tests: Fix test_arm_callgraph_fp variable expansion
     - perf test: Make test_arm_callgraph_fp.sh more robust
     - perf report: Fix condition in sort__sym_cmp()
     - [arm64,armhf] drm/etnaviv: fix DMA direction handling for cached RW
       buffers
     - drm/qxl: Add check for drm_cvt_mode
     - Revert "leds: led-core: Fix refcount leak in of_led_get()"
     - ext4: fix infinite loop when replaying fast_commit
     - media: venus: flush all buffers in output plane streamoff
     - perf intel-pt: Fix aux_watermark calculation for 64-bit size
     - perf intel-pt: Fix exclude_guest setting
     - mfd: rsmu: Split core code into separate module
     - mfd: omap-usb-tll: Use struct_size to allocate tll
     - xprtrdma: Fix rpcrdma_reqs_reset()
     - SUNRPC: avoid soft lockup when transmitting UDP to reachable server.
     - NFSv4.1 another fix for EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - ext4: don't track ranges in fast_commit if inode has inlined data
       (Closes: #1039883)
     - ext4: avoid writing unitialized memory to disk in EA inodes
     - SUNRPC: Fixup gss_status tracepoint error output
     - PCI: Fix resource double counting on remove & rescan
     - PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode()
     - PCI: keystone: Don't enable BAR 0 for AM654x
     - PCI: keystone: Fix NULL pointer dereference in case of DT error in
       ks_pcie_setup_rc_app_regs()
     - PCI: rcar: Demote WARN() to dev_warn_ratelimited() in rcar_pcie_wakeup()
     - clk: qcom: branch: Add helper functions for setting retain bits
     - clk: qcom: gcc-sc7280: Update force mem core bit for UFS ICE clock
     - clk: qcom: camcc-sc7280: Add parent dependency to all camera GDSCs
     - iio: frequency: adrf6780: rm clk provider include
     - coresight: Fix ref leak when of_coresight_parse_endpoint() fails
     - RDMA/mlx5: Set mkeys for dmabuf at PAGE_SIZE
     - [powerpc*] pseries: Fix alignment of PLPKS structures and buffers
     - [powerpc*] pseries: Move plpks.h to include directory
     - [powerpc*] pseries: Expose PLPKS config values, support additional fields
     - [powerpc*] pseries: Add helper to get PLPKS password length
     - [powerpc*] kexec: make the update_cpus_node() function public
     - [powerpc*] kexec_file: fix cpus node update to FDT
     - RDMA/cache: Release GID table even if leak is detected
     - clk: qcom: gpucc-sm8350: Park RCG's clk source at XO during disable
     - interconnect: qcom: qcm2290: Fix mas_snoc_bimc RPM master ID
     - Input: qt1050 - handle CHIP_ID reading error
     - RDMA/mlx4: Fix truncated output warning in mad.c
     - RDMA/mlx4: Fix truncated output warning in alias_GUID.c
     - RDMA/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled
     - RDMA/rxe: Don't set BTH_ACK_MASK for UC or UD QPs
     - [arm64] ASoC: qcom: Adjust issues in case of DT error in
       asoc_qcom_lpass_cpu_platform_probe()
     - [powerpc*] prom: Add CPU info to hardware description string later
     - mtd: make mtd_test.c a separate module
     - RDMA/device: Return error earlier if port in not valid
     - Input: elan_i2c - do not leave interrupt disabled on suspend failure
     - ASoC: amd: Adjust error handling in case of absent codec device
     - PCI: endpoint: Clean up error handling in vpci_scan_bus()
     - PCI: endpoint: Fix error handling in epf_ntb_epc_cleanup()
     - vhost/vsock: always initialize seqpacket_allow
     - net: missing check virtio
     - [x86] crypto: qat - extend scope of lock in adf_cfg_add_key_value_param()
     - clk: qcom: Park shared RCGs upon registration
     - clk: en7523: fix rate divider for slic and spi clocks
     - PCI: qcom-ep: Disable resources unconditionally during PERST# assert
     - PCI: dwc: Fix index 0 incorrectly being interpreted as a free ATU slot
     - [powerpc*] xmon: Fix disassembly CPU feature checks
     - [arm64] RDMA/hns: Check atomic wr length
     - [arm64] RDMA/hns: Fix unmatch exception handling when init eq table fails
     - [arm64] RDMA/hns: Fix missing pagesize and alignment check in FRMR
     - [arm64] RDMA/hns: Fix shift-out-bounds when max_inline_data is 0
     - [arm64] RDMA/hns: Fix undifined behavior caused by invalid max_sge
     - [arm64] RDMA/hns: Fix insufficient extend DB for VFs.
     - [amd64] iommu/vt-d: Fix to convert mm pfn to dma pfn
     - [amd64] iommu/vt-d: Fix identity map bounds in si_domain_init()
     - bnxt_re: Fix imm_data endianness
     - netfilter: ctnetlink: use helper function to calculate expect ID
     - netfilter: nft_set_pipapo: constify lookup fn args where possible
     - netfilter: nf_set_pipapo: fix initial map fill
     - net: flow_dissector: use DEBUG_NET_WARN_ON_ONCE
     - ipv4: Fix incorrect TOS in route get reply
     - ipv4: Fix incorrect TOS in fibmatch route get reply
     - net: dsa: mv88e6xxx: Limit chip-wide frame size config to CPU ports
     - net: dsa: b53: Limit chip-wide jumbo frame config to CPU ports
     - pinctrl: rockchip: update rk3308 iomux routes
     - pinctrl: core: fix possible memory leak when pinctrl_enable() fails
     - pinctrl: single: fix possible memory leak when pinctrl_enable() fails
     - pinctrl: ti: ti-iodelay: Drop if block with always false condition
     - pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable()
       fails
     - pinctrl: freescale: mxs: Fix refcount of child
     - fs/ntfs3: Replace inode_trylock with inode_lock
     - fs/ntfs3: Fix field-spanning write in INDEX_HDR
     - pinctrl: renesas: r8a779g0: Fix CANFD5 suffix
     - pinctrl: renesas: r8a779g0: Fix FXR_TXEN[AB] suffixes
     - pinctrl: renesas: r8a779g0: Fix (H)SCIF1 suffixes
     - pinctrl: renesas: r8a779g0: Fix (H)SCIF3 suffixes
     - pinctrl: renesas: r8a779g0: Fix IRQ suffixes
     - pinctrl: renesas: r8a779g0: FIX PWM suffixes
     - pinctrl: renesas: r8a779g0: Fix TCLK suffixes
     - pinctrl: renesas: r8a779g0: Fix TPU suffixes
     - fs/proc/task_mmu: indicate PM_FILE for PMD-mapped file THP
     - nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro
     - rtc: interface: Add RTC offset to alarm after fix-up
     - [s390x] dasd: fix error checks in dasd_copy_pair_store()
     - sbitmap: remove unnecessary calculation of alloc_hint in
       __sbitmap_get_shallow
     - sbitmap: rewrite sbitmap_find_bit_in_index to reduce repeat code
     - sbitmap: use READ_ONCE to access map->word
     - sbitmap: fix io hung due to race on sbitmap_word::cleared
     - landlock: Don't lose track of restrictions on cred_transfer
     - mm/hugetlb: fix possible recursive locking detected warning
     - mm/mglru: fix div-by-zero in vmpressure_calc_level()
     - mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
     - [x86] efistub: Avoid returning EFI_SUCCESS on error
     - [x86] efistub: Revert to heap allocated boot_params for PE entrypoint
     - dt-bindings: thermal: correct thermal zone node name limit
     - tick/broadcast: Make takeover of broadcast hrtimer reliable
     - net: netconsole: Disable target before netpoll cleanup
     - af_packet: Handle outgoing VLAN packets without hardware offloading
     - kernel: rerun task_work while freezing in get_signal()
     - ipv4: fix source address selection with route leak
     - ipv6: take care of scope when choosing the src addr
     - sched/fair: set_load_weight() must also call reweight_task() for
       SCHED_IDLE tasks
     - fuse: verify {g,u}id mount options correctly
     - char: tpm: Fix possible memory leak in tpm_bios_measurements_open()
     - media: venus: fix use after free in vdec_close
     - ata: libata-scsi: Honor the D_SENSE bit for CK_COND=1 and no error
     - hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode()
     - [x86] drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes
     - [x86] drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes
     - scsi: qla2xxx: Fix optrom version displayed in FDMI
     - drm/amd/display: Check for NULL pointer
     - sched/fair: Use all little CPUs for CPU-bound workloads
     - apparmor: use kvfree_sensitive to free data->data
     - cifs: fix potential null pointer use in destroy_workqueue in init_cifs
       error path
     - cifs: fix reconnect with SMB1 UNIX Extensions
     - cifs: mount with "unix" mount option for SMB1 incorrectly handled
     - task_work: s/task_work_cancel()/task_work_cancel_func()/
     - task_work: Introduce task_work_cancel() again
     - udf: Avoid using corrupted block bitmap buffer
     - ext4: check dot and dotdot of dx_root before making dir indexed
     - ext4: make sure the first directory block is not a hole
     - io_uring: tighten task exit cancellations
     - trace/pid_list: Change gfp flags in pid_list_fill_irq()
     - wifi: mwifiex: Fix interface type change
     - drivers: soc: xilinx: check return status of get_api_version()
     - leds: ss4200: Convert PCIBIOS_* return codes to errnos
     - leds: mt6360: Fix memory leak in mt6360_init_isnk_properties()
     - jbd2: make jbd2_journal_get_max_txn_bufs() internal
     - media: uvcvideo: Fix integer overflow calculating timestamp
     - [x86] KVM: VMX: Split out the non-virtualization part of
       vmx_interrupt_blocked()
     - [x86] KVM: nVMX: Request immediate exit iff pending nested event needs
       injection
     - ALSA: usb-audio: Fix microphone sound on HD webcam.
     - ALSA: usb-audio: Move HD Webcam quirk to the right place
     - ALSA: usb-audio: Add a quirk for Sonix HD USB Camera
     - tools/memory-model: Fix bug in lock.cat
     - hwrng: amd - Convert PCIBIOS_* return codes to errnos
     - PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN
     - PCI: dw-rockchip: Fix initial PERST# GPIO value
     - PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio
     - PCI: loongson: Enable MSI in LS7A Root Complex
     - [arm*] binder: fix hang of unregistered readers
     - dev/parport: fix the array out-of-bounds risk
     - scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds
     - f2fs: fix to force buffered IO on inline_data inode
     - f2fs: fix to don't dirty inode for readonly filesystem
     - f2fs: fix return value of f2fs_convert_inline_inode()
     - clk: davinci: da8xx-cfgchip: Initialize clk_init_data before use
     - ubi: eba: properly rollback inside self_check_eba
     - decompress_bunzip2: fix rare decompression failure
     - kbuild: Fix '-S -c' in x86 stack protector scripts
     - [x86] ASoC: amd: yc: Support mic on Lenovo Thinkpad E16 Gen 2
     - kobject_uevent: Fix OOB access within zap_modalias_env()
     - gve: Fix an edge case for TSO skb validity check
     - ice: Add a per-VF limit on number of FDIR filters
     - devres: Fix devm_krealloc() wasting memory
     - devres: Fix memory leakage caused by driver API devm_free_percpu()
     - irqchip/imx-irqsteer: Handle runtime power management correctly
     - mm/numa_balancing: teach mpol_to_str about the balancing mode
     - rtc: cmos: Fix return value of nvmem callbacks
     - scsi: qla2xxx: During vport delete send async logout explicitly
     - scsi: qla2xxx: Unable to act on RSCN for port online
     - scsi: qla2xxx: Fix for possible memory corruption
     - scsi: qla2xxx: Use QP lock to search for bsg
     - scsi: qla2xxx: Fix flash read failure
     - scsi: qla2xxx: Complete command early within lock
     - scsi: qla2xxx: validate nvme_local_port correctly
     - perf: Fix event leak upon exit
     - perf: Fix event leak upon exec and file release
     - [x86] perf/x86/intel/uncore: Fix the bits of the CHA extended umask for
       SPR
     - [x86] perf/x86/intel/pt: Fix topa_entry base length
     - [x86] perf/x86/intel/pt: Fix a topa_entry base address calculation
     - [x86] drm/i915/gt: Do not consider preemption during execlists_dequeue for
       gen8
     - drm/amdgpu/sdma5.2: Update wptr registers as well as doorbell
     - drm/dp_mst: Fix all mstb marked as not probed after suspend/resume
     - drm/i915/dp: Reset intel_dp->link_trained before retraining the link
     - rtc: isl1208: Fix return value of nvmem callbacks
     - watchdog/perf: properly initialize the turbo mode timestamp and rearm
       counter
     - RDMA/iwcm: Fix a use-after-free related to destroying CM IDs
     - dm-verity: fix dm_is_verity_target() when dm-verity is builtin
     - rbd: don't assume rbd_is_lock_owner() for exclusive mappings
     - remoteproc: stm32_rproc: Fix mailbox interrupts queuing
     - remoteproc: imx_rproc: Skip over memory region when node value is NULL
     - remoteproc: imx_rproc: Fix refcount mistake in imx_rproc_addr_init
     - [arm64,armhf] drm/etnaviv: don't block scheduler when GPU is still active
     - [arm64,armhf] drm/panfrost: Mark simple_ondemand governor as softdep
     - rbd: rename RBD_LOCK_STATE_RELEASING and releasing_wait
     - rbd: don't assume RBD_LOCK_STATE_LOCKED for exclusive mappings
     - bpf: Synchronize dispatcher update with bpf_dispatcher_xdp_func
     - Bluetooth: btusb: Add RTL8852BE device 0489:e125 to device tables
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x13d3:0x3591
     - nilfs2: handle inconsistent state in nilfs_btnode_create_block()
     - PCI: Introduce cleanup helpers for device reference counts and locks
     - PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal
     - io_uring/io-wq: limit retrying worker initialisation
     - wifi: mac80211: Allow NSS change only up to capability
     - wifi: mac80211: track capability/opmode NSS separately
     - wifi: mac80211: check basic rates validity
     - jfs: Fix array-index-out-of-bounds in diFree
     - dmaengine: ti: k3-udma: Fix BCHAN count with UHC and HC channels
     - phy: cadence-torrent: Check return value on register read
     - f2fs: fix start segno of large section
     - watchdog: rzg2l_wdt: Use pm_runtime_resume_and_get()
     - watchdog: rzg2l_wdt: Check return status of pm_runtime_put()
     - f2fs: fix to update user block counts in block_operations()
     - kbuild: avoid build error when single DTB is turned into composite DTB
     - libbpf: Fix no-args func prototype BTF dumping syntax
     - af_unix: Disable MSG_OOB handling for sockets in sockmap/sockhash
     - dma: fix call order in dmam_free_coherent
     - bpf, events: Use prog to emit ksymbol event for main program
     - ipv4: Fix incorrect source address in Record Route option
     - net: bonding: correctly annotate RCU in bond_should_notify_peers()
     - netfilter: nft_set_pipapo_avx2: disable softinterrupts
     - tipc: Return non-zero value from tipc_udp_addr2str() on error
     - net: stmmac: Correct byte order of perfect_match
     - net: nexthop: Initialize all fields in dumped nexthops
     - bpf: Fix a segment issue when downgrading gso_size
     - mISDN: Fix a use after free in hfcmulti_tx()
     - apparmor: Fix null pointer deref when receiving skb during sock creation
     - powerpc: fix a file leak in kvm_vcpu_ioctl_enable_cap()
     - lirc: rc_dev_get_from_fd(): fix file leak
     - auxdisplay: ht16k33: Drop reference after LED registration
     - spi: microchip-core: fix the issues in the isr
     - spi: microchip-core: only disable SPI controller when register value
       change requires it
     - spi: microchip-core: switch to use modern name
     - spi: microchip-core: fix init function not setting the master and motorola
       modes
     - nvme-pci: Fix the instructions for disabling power management
     - spidev: Add Silicon Labs EM3581 device compatible
     - spi: spidev: order compatibles alphabetically
     - spi: spidev: add correct compatible for Rohm BH2228FV
     - [x86] ASoC: Intel: use soc_intel_is_byt_cr() only when IOSF_MBI is
       reachable
     - ceph: fix incorrect kmalloc size of pagevec mempool
     - [s390x] pci: Refactor arch_setup_msi_irqs()
     - [s390x] pci: Allow allocation of more than 1 MSI interrupt
     - iommu: sprd: Avoid NULL deref in sprd_iommu_hw_en
     - io_uring: fix io_match_task must_hold
     - nvme-pci: add missing condition check for existence of mapped data
     - fs: don't allow non-init s_user_ns for filesystems without FS_USERNS_MOUNT
     - [powerpc*] pseries: Avoid hcall in plpks_is_available() on non-pseries
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.104
     - [arm64] dts: qcom: msm8998: switch USB QMP PHY to new style of bindings
     - [arm64] dts: qcom: msm8998: Disable SS instance in Parkmode for USB
     - [arm64] dts: qcom: ipq8074: Disable SS instance in Parkmode for USB
     - sysctl: allow change system v ipc sysctls inside ipc namespace
     - sysctl: allow to change limits for posix messages queues
     - sysctl: treewide: drop unused argument
       ctl_table_root::set_ownership(table)
     - sysctl: always initialize i_uid/i_gid
     - ext4: make ext4_es_insert_extent() return void
     - ext4: refactor ext4_da_map_blocks()
     - ext4: convert to exclusive lock while inserting delalloc extents
     - ext4: factor out a common helper to query extent map
     - ext4: check the extent status again before inserting delalloc block
     - leds: trigger: Remove unused function led_trigger_rename_static()
     - leds: trigger: Store brightness set by led_trigger_event()
     - leds: trigger: Call synchronize_rcu() before calling trig->activate()
     - leds: triggers: Flush pending brightness before activating trigger
     - mm: restrict the pcp batch scale factor to avoid too long latency
     - mm: page_alloc: control latency caused by zone PCP draining
     - mm/page_alloc: fix pcp->count race between drain_pages_zone() vs
       __rmqueue_pcplist()
     - f2fs: fix to avoid use SSR allocate when do defragment
     - f2fs: assign CURSEG_ALL_DATA_ATGC if blkaddr is valid
     - irqdomain: Fixed unbalanced fwnode get and put
     - drm/udl: Rename struct udl_drm_connector to struct udl_connector
     - drm/udl: Test pixel limit in mode-config's mode-valid function
     - drm/udl: Use USB timeout constant when reading EDID
     - drm/udl: Various improvements to the connector
     - drm/udl: Move connector to modesetting code
     - drm/udl: Remove DRM_CONNECTOR_POLL_HPD
     - [x86] drm/i915/dp: Don't switch the LTTPR mode on an active link
     - [amd64] HID: amd_sfh: Remove duplicate cleanup
     - [amd64] HID: amd_sfh: Split sensor and HID initialization
     - [amd64] HID: amd_sfh: Move sensor discovery before HID device
       initialization
     - drm/nouveau: prime: fix refcount underflow
     - drm/vmwgfx: Fix overlay when using Screen Targets
     - drm/vmwgfx: Trigger a modeset when the screen moves
     - sched: act_ct: take care of padding in struct zones_ht_key
     - ALSA: hda: conexant: Fix headset auto detect fail in the polling mode
     - Bluetooth: hci_sync: Fix suspending with wrong filter policy
     - net: axienet: start napi before enabling Rx/Tx
     - rtnetlink: Don't ignore IFLA_TARGET_NETNSID when ifname is specified in
       rtnl_dellink().
     - ice: respect netif readiness in AF_XDP ZC related ndo's
     - ice: don't busy wait for Rx queue disable in ice_qp_dis()
     - ice: replace synchronize_rcu with synchronize_net
     - ice: add missing WRITE_ONCE when clearing ice_rx_ring::xdp_prog
     - net/iucv: fix use after free in iucv_sock_close()
     - [x86] drm/i915/hdcp: Fix HDCP2_STREAM_STATUS macro
     - net: mvpp2: Don't re-use loop iterator
     - ALSA: hda: Conditionally use snooping for AMD HDMI
     - netfilter: iptables: Fix null-ptr-deref in iptable_nat_table_init().
     - netfilter: iptables: Fix potential null-ptr-deref in
       ip6table_nat_table_init().
     - net/mlx5: Lag, don't use the hardcoded value of the first port
     - net/mlx5: Fix missing lock on sync reset reload
     - net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys
     - ipv6: fix ndisc_is_useropt() handling for PIO
     - [arm64] jump_label: Ensure patched jump_labels are visible to all CPUs
     - platform/chrome: cros_ec_proto: Lock device when updating MKBP version
     - HID: wacom: Modify pen IDs
     - btrfs: zoned: fix zone_unusable accounting on making block group
       read-write again
     - protect the fetch of ->fd[fd] in do_dup2() from mispredictions
     - mptcp: sched: check both directions for backup
     - ALSA: usb-audio: Correct surround channels in UAC1 channel map
     - ALSA: hda/realtek: Add quirk for Acer Aspire E5-574G
     - Revert "ALSA: firewire-lib: obsolete workqueue for period update"
     - Revert "ALSA: firewire-lib: operate for period elapse event in process
       context"
     - drm/vmwgfx: Fix a deadlock in dma buf fence polling
     - [x86] drm/i915: Fix possible int overflow in skl_ddi_calculate_wrpll()
     - net: usb: sr9700: fix uninitialized variable use in sr_mdio_read
     - r8169: don't increment tx_dropped in case of NETDEV_TX_BUSY
     - mptcp: fix user-space PM announced address accounting
     - mptcp: distinguish rcv vs sent backup flag in requests
     - mptcp: fix NL PM announced address accounting
     - mptcp: fix bad RCVPRUNED mib accounting
     - mptcp: pm: only set request_bkup flag when sending MP_PRIO
     - mptcp: fix duplicate data handling
     - netfilter: ipset: Add list flush to cancel_gc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.105
     - irqchip/mbigen: Fix mbigen node address layout
     - [x86] platform/x86/intel/ifs: Gen2 Scan test support
     - [x86] platform/x86/intel/ifs: Initialize union ifs_status to zero
     - jump_label: Fix the fix, brown paper bags galore
     - [x86] mm: Fix pti_clone_pgtable() alignment assumption
     - [x86] mm: Fix pti_clone_entry_text() for i386
     - sctp: Fix null-ptr-deref in reuseport_add_sock().
     - net: usb: qmi_wwan: fix memory leak for not ip packets
     - net: bridge: mcast: wait for previous gc cycles when removing port
     - net: linkwatch: use system_unbound_wq
     - Bluetooth: l2cap: always unlock channel in l2cap_conless_channel()
     - Bluetooth: hci_sync: avoid dup filtering when passive scanning with adv
       monitor
     - [armhf] net: dsa: bcm_sf2: Fix a possible memory leak in
       bcm_sf2_mdio_register()
     - l2tp: fix lockdep splat
     - net: fec: Stop PPS on driver remove
     - rcutorture: Fix rcu_torture_fwd_cb_cr() data race
     - md: do not delete safemode_timer in mddev_suspend
     - md/raid5: avoid BUG_ON() while continue reshape after reassembling
     - block: change rq_integrity_vec to respect the iterator
     - rcu: Fix rcu_barrier() VS post CPUHP_TEARDOWN_CPU invocation
     - clocksouqrce/drivers/sh_cmt: Address race condition for clock events
     - ACPI: battery: create alarm sysfs attribute atomically
     - [x86] ACPI: SBS: manage alarm sysfs attribute through psy core
     - wifi: nl80211: disallow setting special AP channel widths
     - net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
     - af_unix: Don't retry after unix_state_lock_nested() in
       unix_stream_connect().
     - PCI: Add Edimax Vendor ID to pci_ids.h
     - udf: prevent integer overflow in udf_bitmap_free_blocks()
     - wifi: nl80211: don't give key data to userspace
     - can: mcp251xfd: tef: prepare to workaround broken TEF FIFO tail index
       erratum
     - can: mcp251xfd: tef: update workaround for erratum DS80000789E 6 of
       mcp2518fd
     - btrfs: fix bitmap leak when loading free space cache on duplicate entry
     - drm/amdgpu/pm: Fix the param type of set_power_profile_mode
     - drm/amdgpu/pm: Fix the null pointer dereference for smu7
     - drm/amdgpu: Fix the null pointer dereference to ras_manager
     - drm/amdgpu/pm: Fix the null pointer dereference in
       apply_state_adjust_rules
     - drm/amdgpu: Add lock around VF RLCG interface
     - drm/amd/pm: Fix the null pointer dereference for vega10_hwmgr
     - media: amphion: Remove lock in s_ctrl callback
     - drm/amd/display: Add NULL check for 'afb' before dereferencing in
       amdgpu_dm_plane_handle_cursor_update
     - drm/amd/display: Add null checker before passing variables
     - media: uvcvideo: Ignore empty TS packets
     - media: uvcvideo: Fix the bandwdith quirk on USB 3.x
     - media: xc2028: avoid use-after-free in load_firmware_cb()
     - ext4: fix uninitialized variable in ext4_inlinedir_to_tree
     - jbd2: avoid memleak in jbd2_journal_write_metadata_buffer
     - [s390x] sclp: Prevent release of buffer in I/O
     - SUNRPC: Fix a race to wake a sync task
     - bus: mhi: host: pci_generic: add support for Telit FE990 modem
     - Revert "bpftool: Mount bpffs when pinmaps path not under the bpffs"
     - profiling: remove profile=sleep support
     - scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES
     - [arm64,armhf] irqchip/meson-gpio: Convert meson_gpio_irq_controller::lock
       to 'raw_spinlock_t'
     - sched/cputime: Fix mul_u64_u64_div_u64() precision for cputime
     - ext4: fix wrong unit use in ext4_mb_find_by_goal
     - [arm64] Add Neoverse-V2 part
     - [arm64] barrier: Restore spec_bar() macro
     - [arm64] cputype: Add Cortex-X4 definitions
     - [arm64] cputype: Add Neoverse-V3 definitions
     - [arm64] errata: Add workaround for Arm errata 3194386 and 3312417
     - [arm64] cputype: Add Cortex-X3 definitions
     - [arm64] cputype: Add Cortex-A720 definitions
     - [arm64] cputype: Add Cortex-X925 definitions
     - [arm64] errata: Unify speculative SSBS errata logic
     - [arm64] errata: Expand speculative SSBS workaround
     - [arm64] cputype: Add Cortex-X1C definitions
     - [arm64] cputype: Add Cortex-A725 definitions
     - [arm64] errata: Expand speculative SSBS workaround (again)
     - i2c: smbus: Improve handling of stuck alerts
     - spi: spidev: Add missing spi_device_id for bh2228fv
     - i2c: smbus: Send alert notifications to all devices if source not found
     - bpf: kprobe: remove unused declaring of bpf_kprobe_override
     - kprobes: Fix to check symbol prefixes correctly
     - [arm64] i2c: qcom-geni: add desc struct to prepare support for I2C Master
       Hub variant
     - [arm64] i2c: qcom-geni: Add missing clk_disable_unprepare in
       geni_i2c_runtime_resume
     - [arm64] i2c: qcom-geni: Add missing geni_icc_disable in
       geni_i2c_runtime_resume
     - spi: spi-fsl-lpspi: Fix scldiv calculation
     - ALSA: usb-audio: Re-add ScratchAmp quirk entries
     - [arm64] ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT
     - drm/amd/display: Skip Recompute DSC Params if no Stream on Link
     - drm/client: fix null pointer dereference in drm_client_modeset_probe
     - ALSA: line6: Fix racy access to midibuf
     - ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list
     - ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks
     - ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4
     - usb: vhci-hcd: Do not drop references before new references are gained
     - USB: serial: debug: do not echo input by default
     - usb: gadget: core: Check for unset descriptor
     - usb: gadget: u_serial: Set start_delayed during suspend
     - usb: gadget: u_audio: Check return codes from usb_ep_enable and
       config_ep_by_speed.
     - scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES
     - scsi: ufs: core: Fix hba->last_dme_cmd_tstamp timestamp updating logic
     - tick/broadcast: Move per CPU pointer access into the atomic section
     - ntp: Clamp maxerror and esterror to operating range
     - torture: Enable clocksource watchdog with "tsc=watchdog"
     - clocksource: Scale the watchdog read retries automatically
     - clocksource: Fix brown-bag boolean thinko in cs_watchdog_read()
     - driver core: Fix uevent_show() vs driver detach race
     - ntp: Safeguard against time_constant overflow
     - timekeeping: Fix bogus clock_was_set() invocation in do_adjtimex()
     - serial: core: check uartclk for zero to avoid divide by zero
     - [x86] ASoC: amd: yc: Add quirk entry for OMEN by HP Gaming Laptop 16-n0xxx
     - kcov: properly check for softirq context
     - irqchip/xilinx: Fix shift out of bounds
     - genirq/irqdesc: Honor caller provided affinity in alloc_desc()
     - [x86] power: supply: axp288_charger: Fix constant_charge_voltage writes
     - [x86] power: supply: axp288_charger: Round constant_charge_voltage writes
       down
     - tracing: Fix overflow in get_free_elt()
     - padata: Fix possible divide-by-0 panic in padata_mt_helper()
     - smb3: fix setting SecurityFlags when encryption is required
     - btrfs: avoid using fixed char array size for tree names
     - [x86] mtrr: Check if fixed MTRRs exist before saving them
     - sched/smt: Introduce sched_smt_present_inc/dec() helper
     - sched/smt: Fix unbalance sched_smt_present dec/inc
     - drm/bridge: analogix_dp: properly handle zero sized AUX transactions
     - drm/dp_mst: Skip CSN if topology probing is not done yet
     - [arm64,armhf] drm/lima: Mark simple_ondemand governor as softdep
     - [x86] drm/mgag200: Set DDC timeout in milliseconds
     - [x86] drm/mgag200: Bind I2C lifetime to DRM device
     - mptcp: mib: count MPJ with backup flag
     - mptcp: export local_address
     - mptcp: pm: fix backup support in signal endpoints
     - mptcp: pm: deny endp with signal + subflow + port
     - block: use the right type for stub rq_integrity_vec()
     - Revert "drm/amd/display: Add NULL check for 'afb' before dereferencing in
       amdgpu_dm_plane_handle_cursor_update"
     - mm: huge_memory: use !CONFIG_64BIT to relax huge page alignment on 32 bit
       machines (CVE-2024-42258)
     - btrfs: fix corruption after buffer fault in during direct IO append write
     - ipv6: fix source address selection with route leak
     - tools headers arm64: Sync arm64's cputype.h with the kernel sources
     - mm/hugetlb: fix potential race in __update_and_free_hugetlb_folio()
     - block: Call .limit_depth() after .hctx has been set
     - block/mq-deadline: Fix the tag reservation code
     - xfs: fix log recovery buffer allocation for the legacy h_size fixup
       (CVE-2024-39472)
     - netfilter: nf_tables: bail out if stateful expression provides no .clone
     - netfilter: nf_tables: allow clone callbacks to sleep
     - netfilter: nf_tables: prefer nft_chain_validate (CVE-2024-41042)
     - i2c: qcom-geni: fix missing clk_disable_unprepare() and
       geni_se_resources_off()
     - btrfs: fix double inode unlock for direct IO sync writes
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.106
     - mptcp: pass addr to mptcp_pm_alloc_anno_list
     - mptcp: pm: reduce indentation blocks
     - mptcp: pm: don't try to create sf if alloc failed
     - mptcp: pm: do not ignore 'subflow' if 'signal' flag is also set
     - [x86] ASoC: topology: Clean up route loading
     - [x86] ASoC: topology: Fix route memory corruption
     - exec: Fix ToCToU between perm check and set-uid/gid usage
     - nfsd: move reply cache initialization into nfsd startup
     - nfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net
     - NFSD: Refactor nfsd_reply_cache_free_locked()
     - NFSD: Rename nfsd_reply_cache_alloc()
     - NFSD: Replace nfsd_prune_bucket()
     - NFSD: Refactor the duplicate reply cache shrinker
     - NFSD: Rewrite synopsis of nfsd_percpu_counters_init()
     - NFSD: Fix frame size warning in svc_export_parse()
     - sunrpc: don't change ->sv_stats if it doesn't exist
     - nfsd: stop setting ->pg_stats for unused stats
     - sunrpc: pass in the sv_stats struct through svc_create_pooled
     - sunrpc: remove ->pg_stats from svc_program
     - sunrpc: use the struct net as the svc proc private
     - nfsd: rename NFSD_NET_* to NFSD_STATS_*
     - nfsd: expose /proc/net/sunrpc/nfsd in net namespaces
     - nfsd: make all of the nfsd stats per-network namespace
     - nfsd: remove nfsd_stats, make th_cnt a global counter
     - nfsd: make svc_stat per-network namespace instead of global
     - nvme/pci: Add APST quirk for Lenovo N60z laptop
     - mptcp: fully established after ADD_ADDR echo on MPJ
     - [x86] drm/i915/gem: Fix Virtual Memory mapping boundaries calculation
       (CVE-2024-42259)
     - cgroup: Make operations on the cgroup root_list RCU safe
     - [x86] drm/i915: Add a function to mmap framebuffer obj
     - [x86] drm/i915: Fix a NULL vs IS_ERR() bug
     - [x86] drm/i915/gem: Adjust vma offset for framebuffer mmap offset
     - binfmt_flat: Fix corruption when not offsetting data start
     - cgroup: Move rcu_head up near the top of cgroup_root
     - wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (CVE-2024-42114)
     - [arm64] KVM: arm64: Don't pass a TLBI level hint when zapping table
       entries
     - media: Revert "media: dvb-usb: Fix unexpected infinite loop in
       dvb_usb_read_remote_control()"
     - Revert "ata: libata-scsi: Honor the D_SENSE bit for CK_COND=1 and no
       error"
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 24
 .
   [ Bastian Blank ]
   * Backport changes in Microsoft Azure Network Adapter from 6.10.
     (closes: #1076576)
   * [arm64] Enable MICROSOFT_MANA.
linux-signed-amd64 (6.1.99+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.99-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.99
     - Revert "usb: xhci: prevent potential failure in handle_tx_event() for
       Transfer events without TRB"
linux-signed-amd64 (6.1.98+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.98-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.95
     - wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects
     - wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()
     - wifi: cfg80211: fully move wiphy work to unbound workqueue
     - wifi: cfg80211: Lock wiphy in cfg80211_get_station
     - wifi: cfg80211: pmsr: use correct nla_get_uX functions
     - wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64
     - wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef
     - wifi: iwlwifi: mvm: check n_ssids before accessing the ssids
     - wifi: iwlwifi: mvm: don't read past the mfuart notifcation
     - wifi: mac80211: correctly parse Spatial Reuse Parameter Set element
     - ax25: Fix refcount imbalance on inbound connections
     - ax25: Replace kfree() in ax25_dev_free() with ax25_dev_put()
     - [armhf] net/ncsi: Simplify Kconfig/dts control flow
     - [armhf] net/ncsi: Fix the multi thread manner of NCSI driver
     - ipv6: ioam: block BH from ioam6_output()
     - ipv6: sr: block BH in seg6_output_core() and seg6_input_core()
     - bpf: Set run context for rawtp test_run callback
     - net/smc: avoid overwriting when adjusting sock bufsizes
     - net: sched: sch_multiq: fix possible OOB write in multiq_tune()
       (CVE-2024-36978)
     - vxlan: Fix regression when dropping packets due to invalid src addresses
     - tcp: count CLOSE-WAIT sockets for TCP_MIB_CURRESTAB
     - net/mlx5: Stop waiting for PCI up if teardown was triggered
     - net/mlx5: Stop waiting for PCI if pci channel is offline
     - net/mlx5: Split function_setup() to enable and open functions
     - net/mlx5: Always stop health timer during driver removal
     - net/mlx5: Fix tainted pointer delete is case of flow rules creation fail
     - ptp: Fix error message on failed pin verification
     - ice: fix iteration of TLVs in Preserved Fields Area
     - ice: Introduce new parameters in ice_sched_node
     - ice: remove null checks before devm_kfree() calls
     - ice: remove af_xdp_zc_qps bitmap
     - net: wwan: iosm: Fix tainted pointer delete is case of region creation
       fail
     - af_unix: Set sk->sk_state under unix_state_lock() for truly disconencted
       peer.
     - af_unix: Annodate data-races around sk->sk_state for writers.
     - af_unix: Annotate data-race of sk->sk_state in unix_inq_len().
     - af_unix: Annotate data-races around sk->sk_state in unix_write_space() and
       poll().
     - af_unix: Annotate data-race of sk->sk_state in unix_stream_connect().
     - af_unix: Annotate data-races around sk->sk_state in sendmsg() and
       recvmsg().
     - af_unix: Annotate data-race of sk->sk_state in unix_stream_read_skb().
     - af_unix: Annotate data-races around sk->sk_state in UNIX_DIAG.
     - af_unix: Annotate data-race of net->unx.sysctl_max_dgram_qlen.
     - af_unix: Use unix_recvq_full_lockless() in unix_stream_connect().
     - af_unix: annotate lockless accesses to sk->sk_err
     - af_unix: Use skb_queue_empty_lockless() in unix_release_sock().
     - af_unix: Use skb_queue_len_lockless() in sk_diag_show_rqlen().
     - af_unix: Annotate data-race of sk->sk_shutdown in sk_diag_fill().
     - ipv6: fix possible race in __fib6_drop_pcpu_from()
     - Bluetooth: qca: fix invalid device address check
     - btrfs: fix wrong block_start calculation for btrfs_drop_extent_map_range()
     - usb: gadget: f_fs: use io_data->status consistently
     - usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete
     - iio: accel: mxc4005: allow module autoloading via OF compatible
     - iio: accel: mxc4005: Reset chip on probe() and resume()
     - xtensa: stacktrace: include <asm/ftrace.h> for prototype
     - xtensa: fix MAKE_PC_FROM_RA second argument
     - drm/amd/display: drop unnecessary NULL checks in debugfs
     - drm/amd/display: Fix incorrect DSC instance for MST
     - [arm64] dts: qcom: sm8150: align TLMM pin configuration with DT schema
     - [arm64] dts: qcom: sa8155p-adp: fix SDHC2 CD pin configuration
     - misc/pvpanic: deduplicate common code
     - misc/pvpanic-pci: register attributes via pci_driver
     - serial: sc16is7xx: replace hardcoded divisor value with BIT() macro
     - serial: sc16is7xx: fix bug in sc16is7xx_set_baud() when using prescaler
     - mmc: davinci: Don't strip remove function when driver is builtin
     - firmware: qcom_scm: disable clocks if qcom_scm_bw_enable() fails
     - HID: i2c-hid: elan: Add ili9882t timing
     - HID: i2c-hid: elan: fix reset suspend current leakage
     - i2c: add fwnode APIs
     - i2c: acpi: Unbind mux adapters before delete
     - mm, vmalloc: fix high order __GFP_NOFAIL allocations
     - mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL
     - wifi: ath10k: fix QCOM_RPROC_COMMON dependency
     - btrfs: remove unnecessary prototype declarations at disk-io.c
     - btrfs: make btrfs_destroy_delayed_refs() return void
     - btrfs: fix leak of qgroup extent records after transaction abort
     - nilfs2: return the mapped address from nilfs_get_page()
     - nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors
     - io_uring: check for non-NULL file pointer in io_file_can_poll()
     - USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages
     - USB: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected
     - usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps
     - usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state
     - mei: me: release irq in mei_me_pci_resume error path
     - tty: n_tty: Fix buffer offsets when lookahead is used
     - landlock: Fix d_parent walk
     - jfs: xattr: fix buffer overflow for invalid xattr
     - xhci: Set correct transferred length for cancelled bulk transfers
     - xhci: Apply reset resume quirk to Etron EJ188 xHCI host
     - xhci: Handle TD clearing for multiple streams case
     - xhci: Apply broken streams quirk to Etron EJ188 xHCI host
     - [x86] thunderbolt: debugfs: Fix margin debugfs node creation condition
     - scsi: mpi3mr: Fix ATA NCQ priority support
     - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory
     - scsi: sd: Use READ(16) when reading block zero on large capacity disks
       (Closes: #1067858)
     - gve: Clear napi->skb before dev_kfree_skb_any()
     - [powerpc*] uaccess: Fix build errors seen with GCC 13/14
     - Input: try trimming too long modalias strings (Closes: #983357)
     - cxl/test: Add missing vmalloc.h for tools/testing/cxl/test/mem.c
     - cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd
     - cachefiles: remove requests from xarray during flushing requests
     - cachefiles: introduce object ondemand state
     - cachefiles: extract ondemand info field from cachefiles_object
     - cachefiles: resend an open request if the read request's object is closed
     - cachefiles: add spin_lock for cachefiles_ondemand_info
     - cachefiles: add restore command to recover inflight ondemand read requests
     - cachefiles: fix slab-use-after-free in cachefiles_ondemand_get_fd()
     - cachefiles: fix slab-use-after-free in cachefiles_ondemand_daemon_read()
     - cachefiles: remove err_put_fd label in cachefiles_ondemand_daemon_read()
     - cachefiles: never get a new anonymous fd if ondemand_id is valid
     - cachefiles: defer exposing anon_fd until after copy_to_user() succeeds
     - cachefiles: flush all requests after setting CACHEFILES_DEAD
     - selftests/ftrace: Fix to check required event file
     - clk: sifive: Do not register clkdevs for PRCI clocks
     - NFSv4.1 enforce rootpath check in fs_location query
     - SUNRPC: return proper error from gss_wrap_req_priv
     - NFS: add barriers when testing for NFS_FSDATA_BLOCKED (Closes: #1071501)
     - [x86] platform/x86: dell-smbios: Fix wrong token data in sysfs
     - gpio: tqmx86: fix typo in Kconfig label
     - gpio: tqmx86: remove unneeded call to platform_set_drvdata()
     - gpio: tqmx86: introduce shadow register for GPIO output value
     - gpio: tqmx86: Convert to immutable irq_chip
     - gpio: tqmx86: store IRQ trigger type and unmask status separately
     - gpio: tqmx86: fix broken IRQ_TYPE_EDGE_BOTH interrupt type
     - HID: core: remove unnecessary WARN_ON() in implement()
     - iommu/amd: Fix sysfs leak in iommu init
     - HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode()
     - drm/vmwgfx: Port the framebuffer code to drm fb helpers
     - drm/vmwgfx: Refactor drm connector probing for display modes
     - drm/vmwgfx: Filter modes which exceed graphics memory
     - drm/vmwgfx: 3D disabled should not effect STDU memory limits
     - drm/vmwgfx: Remove STDU logic from generic mode_valid function
     - net: sfp: Always call `sfp_sm_mod_remove()` on remove
     - net: hns3: fix kernel crash problem in concurrent scenario
     - net: hns3: add cond_resched() to hns3 ring buffer init process
     - liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet
     - drm/komeda: check for error-valued pointer
     - drm/bridge/panel: Fix runtime warning on panel bridge release
     - tcp: fix race in tcp_v6_syn_recv_sock()
     - geneve: Fix incorrect inner network header offset when innerprotoinherit
       is set
     - net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN)
       packets
     - Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ
     - netfilter: ipset: Fix race between namespace cleanup and gc in the
       list:set type
     - net: pse-pd: Use EOPNOTSUPP error code instead of ENOTSUPP
     - gve: ignore nonrelevant GSO type bits when processing TSO headers
     - net: stmmac: replace priv->speed with the portTransmitRate from the tc-cbs
       parameters
     - nvmet-passthru: propagate status from id override functions
     - net/ipv6: Fix the RT cache flush via sysctl using a previous delay
     - net: bridge: mst: pass vlan group directly to br_mst_vlan_set_state
     - net: bridge: mst: fix suspicious rcu usage in br_mst_set_state
     - ionic: fix use after netif_napi_del()
     - af_unix: Read with MSG_PEEK loops if the first unread byte is OOB
     - bnxt_en: Adjust logging of firmware messages in case of released token in
       __hwrm_send()
     - misc: microchip: pci1xxxx: fix double free in the error handling of
       gp_aux_bus_probe() (CVE-2024-36973)
     - [x86] boot: Don't add the EFI stub to targets, again
     - iio: adc: ad9467: fix scan type sign
     - iio: dac: ad5592r: fix temperature channel scaling value
     - iio: imu: inv_icm42600: delete unneeded update watermark call
     - drivers: core: synchronize really_probe() and dev_uevent()
     - drm/exynos/vidi: fix memory leak in .get_modes()
     - drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID
       found
     - mptcp: ensure snd_una is properly initialized on connect
     - mptcp: pm: inc RmAddr MIB counter once per RM_ADDR ID
     - irqchip/gic-v3-its: Fix potential race condition in its_vlpi_prop_update()
     - [x86] amd_nb: Check for invalid SMN reads
     - perf/core: Fix missing wakeup when waiting for context reference
     - riscv: fix overlap of allocated page and PTR_ERR
     - tracing/selftests: Fix kprobe event name test for .isra. functions
     - null_blk: Print correct max open zones limit in null_init_zoned_dev()
     - sock_map: avoid race between sock_map_close and sk_psock_put
     - vmci: prevent speculation leaks by sanitizing event in event_deliver()
     - spmi: hisi-spmi-controller: Do not override device identifier
     - knfsd: LOOKUP can return an illegal error value
     - fs/proc: fix softlockup in __read_vmcore
     - ocfs2: use coarse time for new created files
     - ocfs2: fix races between hole punching and AIO+DIO
     - PCI: rockchip-ep: Remove wrong mask on subsys_vendor_id
     - dmaengine: axi-dmac: fix possible race in remove()
     - remoteproc: k3-r5: Wait for core0 power-up before powering up core1
     - remoteproc: k3-r5: Do not allow core1 to power up before core0 via sysfs
     - [x86] drm/i915/gt: Disarm breadcrumbs if engines are already idle
     - [x86] drm/i915/dpt: Make DPT object unshrinkable
     - [x86] intel_th: pci: Add Granite Rapids support
     - [x86] intel_th: pci: Add Granite Rapids SOC support
     - [x86] intel_th: pci: Add Sapphire Rapids SOC support
     - [x86] intel_th: pci: Add Meteor Lake-S support
     - [x86] intel_th: pci: Add Lunar Lake support
     - btrfs: zoned: introduce a zone_info struct in
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out per-zone logic from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out single bg handling from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out DUP bg handling from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: fix use-after-free due to race with dev replace
     - nilfs2: fix potential kernel bug due to lack of writeback flag waiting
     - tick/nohz_full: Don't abuse smp_call_function_single() in
       tick_setup_device()
     - mm/huge_memory: don't unpoison huge_zero_folio
     - mm/memory-failure: fix handling of dissolved but not taken off from buddy
       pages
     - serial: 8250_pxa: Configure tx_loadsz to match FIFO IRQ level
     - mptcp: pm: update add_addr counters after connect
     - Revert "fork: defer linking file vma until vma is fully initialized"
     - remoteproc: k3-r5: Jump to error handling labels in start/stop errors
     - cachefiles, erofs: Fix NULL deref in when cachefiles is not doing
       ondemand-mode
     - Bluetooth: qca: fix wcn3991 device address check
     - Bluetooth: qca: generalise device address check
     - greybus: Fix use-after-free bug in gb_interface_release due to race
       condition.
     - serial: 8250_dw: fall back to poll if there's no interrupt
     - serial: core: Add UPIO_UNKNOWN constant for unknown port type
     - usb-storage: alauda: Check whether the media is initialized
       (CVE-2024-38619)
     - misc: microchip: pci1xxxx: Fix a memory leak in the error handling of
       gp_aux_bus_probe()
     - i2c: at91: Fix the functionality flags of the slave-only interface
     - i2c: designware: Fix the functionality flags of the slave-only interface
     - zap_pid_ns_processes: clear TIF_NOTIFY_SIGNAL along with TIF_SIGPENDING
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.96
     - padata: Disable BH when taking works lock on MT path
     - io_uring/sqpoll: work around a potential audit memory leak
     - block/ioctl: prefer different overflow check
     - batman-adv: bypass empty buckets in batadv_purge_orig_ref()
     - wifi: ath9k: work around memset overflow warning
     - af_packet: avoid a false positive warning in packet_setsockopt()
     - drop_monitor: replace spin_lock by raw_spin_lock
     - scsi: qedi: Fix crash while reading debugfs attribute
     - net/sched: fix false lockdep warning on qdisc root lock
     - net: dsa: realtek: keep default LED state in rtl8366rb
     - netpoll: Fix race condition in netpoll_owner_active
     - wifi: mt76: mt7921s: fix potential hung tasks during chip recovery
     - HID: Add quirk for Logitech Casa touchpad
     - HID: asus: fix more n-key report descriptors if n-key quirked
     - Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl
     - drm/amd/display: Exit idle optimizations before HDCP execution
     - [x86] platform/x86: toshiba_acpi: Add quirk for buttons on Z830
     - [x86] ASoC: Intel: sof_sdw: add JD2 quirk for HP Omen 14
     - [arm64,armhf] drm/lima: add mask irq callback to gp and pp
     - [arm64,armhf] drm/lima: mask irqs in timeout path before hard reset
     - ALSA: hda/realtek: Add quirks for Lenovo 13X
     - [powerpc*] pseries: Enforce hcall result buffer validity and size
     - [powerpc*] io: Avoid clang null pointer arithmetic warnings
     - [x86] platform/x86: p2sb: Don't init until unassigned resources have been
       assigned
     - power: supply: cros_usbpd: provide ID table for avoiding fallback match
     - [arm64] iommu/arm-smmu-v3: Free MSIs in case of ENOMEM
     - f2fs: remove clear SB_INLINECRYPT flag in default_options
     - usb: misc: uss720: check for incompatible versions of the Belkin F5U002
     - [arm64] usb: dwc3: pci: Don't set "linux,phy_charger_detect" property on
       Lenovo Yoga Tab2 1380
     - udf: udftime: prevent overflow in udf_disk_stamp_to_time()
     - PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports
     - [arm64,armhf] serial: imx: Introduce timeout when waiting on transmitter
       empty
     - serial: exar: adding missing CTI and Exar PCI ids
     - usb: gadget: function: Remove usage of the deprecated ida_simple_xx() API
     - tty: add the option to have a tty reject a new ldisc
     - tracing: Build event generation tests only as modules
     - ALSA: hda/realtek: Remove Framework Laptop 16 from quirks
     - ALSA/hda: intel-dsp-config: Document AVS as dsp_driver option
     - ice: move RDMA init to ice_idc.c
     - ice: avoid IRQ collision to fix init failure on ACPI S3 resume
     - cipso: fix total option length computation
     - bpf: Avoid splat in pskb_pull_reason
     - ALSA: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM
     - netrom: Fix a memory leak in nr_heartbeat_expiry()
     - ipv6: prevent possible NULL deref in fib6_nh_init()
     - ipv6: prevent possible NULL dereference in rt6_probe()
     - xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr()
     - netns: Make get_net_ns() handle zero refcount net
     - qca_spi: Make interrupt remembering atomic
     - net: lan743x: disable WOL upon resume to restore full data path operation
     - net: lan743x: Support WOL at both the PHY and MAC appropriately
     - net: phy: mxl-gpy: enhance delay time required by loopback disable
       function
     - net: phy: mxl-gpy: Remove interrupt mask clearing from config_init
     - net/sched: act_api: rely on rcu in tcf_idr_check_alloc
     - net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
     - tipc: force a dst refcount before doing decryption
     - sched: act_ct: add netns into the key of tcf_ct_flow_table
     - ptp: fix integer overflow in max_vclocks_store
     - net: stmmac: No need to calculate speed divider when offload is disabled
     - virtio_net: checksum offloading handling fix
     - octeontx2-pf: Add error handling to VLAN unoffload handling
     - netfilter: ipset: Fix suspicious rcu_dereference_protected()
     - seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and End.DX6
       behaviors
     - ice: Fix VSI list rule with ICE_SW_LKUP_LAST type
     - bnxt_en: Restore PTP tx_avail count in case of skb_pad() error
     - net: usb: rtl8150 fix unintiatilzed variables in
       rtl8150_get_link_ksettings
     - regulator: core: Fix modpost error "regulator_get_regmap" undefined
     - dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list
     - dmaengine: ioat: Drop redundant pci_enable_pcie_error_reporting()
     - dmaengine: ioatdma: Fix leaking on version mismatch
     - dmaengine: ioat: use PCI core macros for PCIe Capability
     - dmaengine: ioatdma: Fix error path in ioat3_dma_probe()
     - dmaengine: ioatdma: Fix kmemleak in ioat_pci_probe()
     - dmaengine: ioatdma: Fix missing kmem_cache_destroy()
     - regulator: bd71815: fix ramp values
     - [arm64] dts: imx93-11x11-evk: Remove the 'no-sdio' property
     - [arm64] dts: freescale: imx8mm-verdin: enable hysteresis on slow input pin
     - ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is
       fine."
     - firmware: psci: Fix return value from psci_system_suspend()
     - RDMA/mlx5: Add check for srq max_sge attribute
     - net: stmmac: Assign configured channel value to EXTTS event
     - net: usb: ax88179_178a: improve reset check
     - net: do not leave a dangling sk pointer, when socket creation fails
     - btrfs: retry block group reclaim without infinite loop
     - cifs: fix typo in module parameter enable_gcm_256
     - KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin()
     - [arm64] KVM: arm64: Disassociate vcpus from redistributor region on
       teardown
     - [x86] KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for ProBook 445/465
       G11.
     - ALSA: hda/realtek: Limit mic boost on N14AP7
     - drm/i915/mso: using joiner is not possible with eDP MSO
     - drm/radeon: fix UBSAN warning in kv_dpm.c
     - drm/amdgpu: fix UBSAN warning in kv_dpm.c
     - gcov: add support for GCC 14
     - kcov: don't lose track of remote references during softirqs
     - mm: mmap: allow for the maximum number of bits for randomizing mmap_base
       by default
     - tcp: clear tp->retrans_stamp in tcp_rcv_fastopen_synack()
     - mm/page_table_check: fix crash on ZONE_DEVICE
     - i2c: ocores: set IACK bit after core is enabled
     - dt-bindings: i2c: google,cros-ec-i2c-tunnel: correct path to
       i2c-controller schema
     - [armhf] spi: stm32: qspi: Fix dual flash mode sanity test in
       stm32_qspi_setup()
     - [arm64] dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc
     - [armhf] spi: stm32: qspi: Clamp stm32_qspi_get_mode() output to
       CCR_BUSWIDTH_4
     - perf: script: add raw|disasm arguments to --insn-trace option
     - perf script: Show also errors for --insn-trace option
     - [armhf] dts: samsung: smdkv310: fix keypad no-autorepeat
     - [armhf] dts: samsung: exynos4412-origen: fix keypad no-autorepeat
     - [armhf] dts: samsung: smdk4412: fix keypad no-autorepeat
     - pmdomain: ti-sci: Fix duplicate PD referrals
     - tracing: Add MODULE_DESCRIPTION() to preemptirq_delay_test
     - [x86] cpu/vfm: Add new macros to work with (vendor/family/model) values
     - [x86] cpu: Fix x86_match_cpu() to match just X86_VENDOR_INTEL
     - Revert "kheaders: substituting --sort in archive creation"
     - kheaders: explicitly define file modes for archived headers
     - drm/amd/display: revert Exit idle optimizations before HDCP execution
     - net/sched: unregister lockdep keys in qdisc_create/qdisc_alloc error path
     - hid: asus: asus_report_fixup: fix potential read out of bounds
     - Revert "mm: mmap: allow for the maximum number of bits for randomizing
       mmap_base by default"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.97
     - usb: typec: ucsi: Never send a lone connector change ack
     - usb: typec: ucsi: Ack also failed Get Error commands
     - [x86] ACPI: x86: utils: Add Picasso to the list for forcing
       StorageD3Enable
     - [x86] ACPI: x86: Force StorageD3Enable on more products
     - Input: ili210x - fix ili251x_read_touch_data() return value
     - pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER
     - [arm64,armhf] pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins
     - [arm64,armhf] pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins
     - [arm64,armhf] pinctrl: rockchip: use dedicated pinctrl type for RK3328
     - [arm64,armhf] pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set
     - [mips*] pci: lantiq: restore reset gpio polarity
     - dt-bindings: i2c: Drop unneeded quotes
     - dt-bindings: i2c: atmel,at91sam: correct path to i2c-controller schema
     - netfilter: nf_tables: use timestamp to check for set element timeout
       (CVE-2024-27397)
     - [arm64] ASoC: rockchip: i2s-tdm: Fix trcm mode by setting clock on right
       mclk
     - [s390x] pci: Add missing virt_to_phys() for directed DIBV
     - ASoC: amd: acp: remove i2s configuration check in acp_i2s_probe()
     - [arm64] ASoC: fsl-asoc-card: set priv->pdev before using it
     - net: dsa: microchip: fix initial port flush problem
     - bpf: Fix overrunning reservations in ringbuf
     - ibmvnic: Free any outstanding tx skbs during scrq reset
     - net: phy: micrel: add Microchip KSZ 9477 to the device table
     - net: dsa: microchip: use collision based back pressure mode
     - xdp: Remove WARN() from __xdp_reg_mem_model()
     - Fix race for duplicate reqsk on identical SYN
     - net: dsa: microchip: fix wrong register write when masking interrupt
     - [powerpc*] restore some missing spu syscalls
     - tcp: fix tcp_rcv_fastopen_synack() to enter TCP_CA_Loss for failed TFO
     - netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data
       registers
     - bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro()
     - [x86] fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup
     - mtd: partitions: redboot: Added conversion of operands to a larger type
     - wifi: ieee80211: check for NULL in ieee80211_mle_size_ok()
     - bpf: Add a check for struct bpf_fib_lookup size
     - bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
     - RDMA/restrack: Fix potential invalid address access
     - net/iucv: Avoid explicit cpumask var allocation on stack
     - net/dpaa2: Avoid explicit cpumask var allocation on stack
     - crypto: ecdh - explicitly zeroize private_key
     - ALSA: emux: improve patch ioctl data validation
     - media: dvbdev: Initialize sbuf
     - soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message
     - drm/radeon/radeon_display: Decrease the size of allocated memory
     - nvme: fixup comment for nvme RDMA Provider Type
     - drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA
     - [arm64] gpio: davinci: Validate the obtained number of IRQs
     - drm/amd/amdgpu: Fix style errors in amdgpu_drv.c & amdgpu_device.c
     - drm/amdgpu: Fix pci state save during mode-1 reset
     - gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1)
     - randomize_kstack: Remove non-functional per-arch entropy filtering
     - ima: Fix use-after-free on a dentry's dname.name
     - [x86] stop playing stack games in profile_pc()
     - Revert "MIPS: pci: lantiq: restore reset gpio polarity"
     - [arm64] pinctrl: qcom: spmi-gpio: drop broken pm8008 support
     - ocfs2: fix DIO failure due to insufficient transaction credits
     - nfs: drop the incorrect assertion in nfs_swap_rw()
     - mmc: sdhci-brcmstb: check R1_STATUS for erase/trim/discard
     - mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos
     - mmc: sdhci: Do not invert write-protect twice
     - mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro()
     - iio: xilinx-ams: Don't include ams_ctrl_channels in scan_mask
     - counter: ti-eqep: enable clock at probe
     - i2c: testunit: don't erase registers after STOP
     - i2c: testunit: discard write requests while old command is running
     - iio: adc: ad7266: Fix variable checking bug
     - iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF
     - net: usb: ax88179_178a: improve link status logs
     - usb: gadget: printer: SS+ support
     - usb: gadget: printer: fix races against disable (CVE-2024-25741)
     - usb: musb: da8xx: fix a resource leak in probe()
     - usb: atm: cxacru: fix endpoint checking in cxacru_bind()
     - usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to
       avoid deadlock
     - usb: gadget: aspeed_udc: fix device address configuration
     - usb: ucsi: stm32: fix command completion handling
     - serial: 8250_omap: Implementation of Errata i2310
     - serial: imx: set receiver level before starting uart
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook 645/665
       G11.
     - tty: mcf: MCF54418 has 10 UARTS
     - net: can: j1939: Initialize unused data in j1939_send_one()
     - net: can: j1939: recover socket queue on CAN bus error during BAM
       transmission
     - net: can: j1939: enhanced error handling for tightly received RTS messages
       in xtp_rx_rts_session_new
     - cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing
     - cpu/hotplug: Fix dynstate assignment in __cpuhp_setup_state_cpuslocked()
     - irqchip/loongson-liointc: Set different ISRs for different cores
     - kbuild: Install dtb files as 0644 in Makefile.dtbinst
     - btrfs: zoned: fix initial free space detection
     - csky, hexagon: fix broken sys_sync_file_range
     - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes
     - drm/amdgpu: avoid using null object of framebuffer
     - [x86] drm/i915/gt: Fix potential UAF by revoke of fence registers
     - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes
     - drm/amdgpu/atomfirmware: fix parsing of vram_info
     - batman-adv: Don't accept TT entries for out-of-spec VIDs
     - can: mcp251xfd: fix infinite loop when xmit fails
     - ata: ahci: Clean up sysfs file on error
     - ata: libata-core: Fix double free on error
     - ftruncate: pass a signed offset
     - syscalls: fix compat_sys_io_pgetevents_time64 usage
     - syscalls: fix sys_fanotify_mark prototype
     - Revert "cpufreq: amd-pstate: Fix the inconsistency in max frequency units"
     - mm/page_alloc: Separate THP PCP into movable and non-movable categories
     - gfs2: Fix slab-use-after-free in gfs2_qd_dealloc (CVE-2023-52760)
     - efi: memmap: Move manipulation routines into x86 arch tree
     - efi: xen: Set EFI_PARAVIRT for Xen dom0 boot on all architectures
     - [x86] efi/x86: Free EFI memory map only when installing a new one.
     - [arm64] dts: rockchip: Fix SD NAND and eMMC init on rk3308-rock-pi-s
     - [arm64] dts: rockchip: Rename LED related pinctrl nodes on
       rk3308-rock-pi-s
     - [arm64] dts: rockchip: fix PMIC interrupt pin on ROCK Pi E
     - [arm64] dts: rockchip: Add sound-dai-cells for RK3368
     - serial: imx: only set receiver level if it is zero
     - serial: 8250_omap: Fix Errata i2310 with RX FIFO level check
     - tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.98
     - locking/mutex: Introduce devm_mutex_init()
     - crypto: hisilicon/debugfs - Fix debugfs uninit process issue
     - [arm64,armhf] drm/lima: fix shared irq handling on driver remove
     - [powerpc*] Avoid nmi_enter/nmi_exit in real mode interrupt.
     - media: dvb: as102-fe: Fix as10x_register_addr packing
     - media: dvb-usb: dib0700_devices: Add missing release_firmware()
     - IB/core: Implement a limit on UMAD receive List
     - scsi: qedf: Make qedf_execute_tmf() non-preemptible
     - crypto: aead,cipher - zeroize key buffer after use
     - drm/amdgpu: Fix uninitialized variable warnings
     - drm/amdgpu: Initialize timestamp for some legacy SOCs
     - drm/amd/display: Check index msg_id before read or write
     - drm/amd/display: Check pipe offset before setting vblank
     - drm/amd/display: Skip finding free audio for unknown engine_id
     - drm/amdgpu: fix uninitialized scalar variable warning
     - media: dw2102: Don't translate i2c read into write
     - sctp: prefer struct_size over open coded arithmetic
     - firmware: dmi: Stop decoding on broken entry
     - Input: ff-core - prefer struct_size over open coded arithmetic
     - usb: xhci: prevent potential failure in handle_tx_event() for Transfer
       events without TRB
     - wifi: mt76: replace skb_put with skb_put_zero
     - [arm64,armhf] net: dsa: mv88e6xxx: Correct check for empty list
     - media: dvb-frontends: tda18271c2dd: Remove casting during div
     - media: s2255: Use refcount_t instead of atomic_t for num_channels
     - media: dvb-frontends: tda10048: Fix integer overflow
     - i2c: i801: Annotate apanel_addr as __ro_after_init
     - [powerpc*] 64: Set _IO_BASE to POISON_POINTER_DELTA not 0 for CONFIG_PCI=n
     - orangefs: fix out-of-bounds fsid access
     - kunit: Fix timeout message
     - [powerpc*] xmon: Check cpu id in commands "c#", "dp#" and "dx#"
     - igc: fix a log entry using uninitialized netdev
     - bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD
     - f2fs: check validation of fault attrs in f2fs_build_fault_attr()
     - scsi: mpi3mr: Sanitise num_phys
     - serial: imx: Raise TX trigger level to 8
     - jffs2: Fix potential illegal address access in jffs2_free_inode
     - [s390x] pkey: Wipe sensitive data on failure
     - btrfs: scrub: initialize ret in scrub_simple_mirror() to fix compilation
       warning
     - cdrom: rearrange last_media_change check to avoid unintentional overflow
     - mac802154: fix time calculation in ieee802154_configure_durations()
     - UPSTREAM: tcp: fix DSACK undo in fast recovery to call tcp_try_to_open()
     - net/mlx5: E-switch, Create ingress ACL when needed
     - net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup()
     - tcp_metrics: validate source addr length
     - [s390x] KVM: s390: fix LPSWEY handling
     - e1000e: Fix S0ix residency on corporate systems
     - net: allow skb_datagram_iter to be called from any context
     - net: ntb_netdev: Move ntb_netdev_rx_handler() to call netif_rx() from
       __netif_rx()
     - wifi: wilc1000: fix ies_len type in connect path
     - netfilter: nf_tables: unconditionally flush pending work before notifier
     - bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set()
       (CVE-2024-39487)
     - inet_diag: Initialize pad field in struct inet_diag_req_v2
     - [x86] platform/x86: toshiba_acpi: Fix quickstart quirk handling
     - Revert "igc: fix a log entry using uninitialized netdev"
     - nilfs2: fix inode number range checks
     - nilfs2: add missing check for inode numbers on directory entries
     - mm: optimize the redundant loop of mm_update_owner_next()
     - mm: avoid overflows in dirty throttling logic
     - btrfs: fix adding block group to a reclaim list and the unused list during
       reclaim
     - f2fs: Add inline to f2fs_build_fault_attr() stub
     - scsi: mpi3mr: Use proper format specifier in mpi3mr_sas_port_add()
     - Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot
     - can: kvaser_usb: Explicitly initialize family in leafimx driver_info
       struct
     - fsnotify: Do not generate events for O_PATH file descriptors
     - Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(),
       again"
     - drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes
     - drm/amdgpu/atomfirmware: silence UBSAN warning
     - drm: panel-orientation-quirks: Add quirk for Valve Galileo
     - [powerpc*] pseries: Fix scv instruction crash with kexec
     - mtd: rawnand: Ensure ECC configuration is propagated to upper layers
     - mtd: rawnand: Bypass a couple of sanity checks during NAND identification
     - mtd: rawnand: rockchip: ensure NVDDR timings are rejected
     - bnx2x: Fix multiple UBSAN array-index-out-of-bounds
     - [arm64] dts: rockchip: Fix the DCDC_REG2 minimum voltage on Quartz64 Model
       B
     - ima: Avoid blocking in RCU read-side critical section
     - media: dw2102: fix a potential buffer overflow
     - clk: qcom: gcc-sm6350: Fix gpll6* & gpll7 parents
     - clk: mediatek: clk-mtk: Register MFG notifier in mtk_clk_simple_probe()
     - clk: mediatek: mt8183: Only enable runtime PM on mt8183-mfgcfg
     - i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr
     - ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897
     - nvme-multipath: find NUMA path only for online numa-node
     - dma-mapping: benchmark: avoid needless copy_to_user if benchmark fails
     - nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset
     - regmap-i2c: Subtract reg size from max_write
     - [x86] platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW
       11.6" tablet
     - [x86] platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro
     - nvmet: fix a possible leak when destroy a ctrl during qp establishment
     - kbuild: fix short log for AS in link-vmlinux.sh
     - nfc/nci: Add the inconsistency check between the input data length and
       count
     - spi: cadence: Ensure data lines set to low during dummy-cycle period
     - null_blk: Do not allow runt zone with zone capacity smaller then zone size
     - nilfs2: fix incorrect inode allocation from reserved inodes
 .
   [ Salvatore Bonaccorso ]
   * [rt] Drop "drm/i915/gt: Queue and wait for the irq_work item."
   *  Bump ABI to 23
   * Drop now unknown config options for DRM_VMWGFX_FBCON
   * Refresh "firmware: Remove redundant log messages from drivers"
   * d/rules.real: Revert workaround to explicitly remove executable bits from
     dtb files (implemented upstream)
   * [rt] Update to 6.1.96-rt35

linux-signed-arm64 (6.1.106+3) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.106-3
 .
   * udp: allow header check for dodgy GSO_UDP_L4 packets.
   * gso: fix dodgy bit handling for GSO_UDP_L4
   * net: more strict VIRTIO_NET_HDR_GSO_UDP_L4 validation
   * net: drop bad gso csum_start and offset in virtio_net_hdr (Closes: #1079684)
   * Bump ABI to 25
linux-signed-arm64 (6.1.106+2) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.106-2
 .
   * media: solo6x10: replace max(a, min(b, c)) by clamp(b, a, c)
linux-signed-arm64 (6.1.106+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.106-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.100
     - Compiler Attributes: Add __uninitialized macro
     - mm: prevent derefencing NULL ptr in pfn_section_valid()
     - cachefiles: propagate errors from vfs_getxattr() to avoid infinite loop
     - cachefiles: narrow the scope of triggering EPOLLIN events in ondemand mode
     - cachefiles: stop sending new request when dropping object
     - cachefiles: cancel all requests for the object that is being dropped
     - cachefiles: wait for ondemand_object_worker to finish when dropping object
     - cachefiles: cyclic allocation of msg_id to avoid reuse
     - cachefiles: add missing lock protection when polling
     - filelock: fix potential use-after-free in posix_lock_inode
     - fs/dcache: Re-use value stored to dentry->d_flags instead of re-reading
     - vfs: don't mod negative dentry count when on shrinker list
     - tcp: fix incorrect undo caused by DSACK of TLP retransmit
     - net: phy: microchip: lan87xx: reinit PHY after cable test
     - skmsg: Skip zero length skb in sk_msg_recvmsg
     - net: fix rc7's __skb_datagram_iter()
     - i40e: Fix XDP program unloading while removing the driver
     - net: ethernet: lantiq_etop: fix double free in detach
     - bpf: Refactor some inode/task/sk storage functions for reuse
     - bpf: Reduce smap->elem_size
     - bpf: use bpf_map_kvcalloc in bpf_local_storage
     - bpf: Remove __bpf_local_storage_map_alloc
     - bpf: fix order of args in call to bpf_map_kvcalloc
     - net: ethernet: mtk-star-emac: set mac_managed_pm when probing
     - ppp: reject claimed-as-LCP but actually malformed packets
     - ethtool: netlink: do not return SQI value if link is down
     - udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port().
     - net/sched: Fix UAF when resolving a clash
     - net, sunrpc: Remap EPERM in case of connection failure in
       xs_tcp_setup_socket
     - [s390x] Mark psw in __load_psw_mask() as __unitialized
     - firmware: cs_dsp: Fix overflow checking of wmfw header
     - firmware: cs_dsp: Return error if block header overflows file
     - firmware: cs_dsp: Validate payload length before processing block
     - firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers
     - firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files
     - cifs: fix setting SecurityFlags to true
     - Revert "sched/fair: Make sure to try to detach at least one movable task"
     - tcp: use signed arithmetic in tcp_rtx_probe0_timed_out()
     - tcp: avoid too many retransmit packets (CVE-2024-41007)
     - USB: serial: option: add Telit generic core-dump composition
     - USB: serial: option: add Telit FN912 rmnet compositions
     - USB: serial: option: add Fibocom FM350-GL
     - USB: serial: option: add support for Foxconn T99W651
     - USB: serial: option: add Netprisma LCUK54 series modules
     - USB: serial: option: add Rolling RW350-GL variants
     - USB: serial: mos7840: fix crash on resume
     - USB: Add USB_QUIRK_NO_SET_INTF quirk for START BP-850k
     - usb: gadget: configfs: Prevent OOB read/write in usb_string_copy()
     - USB: core: Fix duplicate endpoint bug by clearing reserved bits in the
       descriptor
     - hpet: Support 32-bit userspace
     - xhci: always resume roothubs if xHC was reset during resume
     - ksmbd: discard write access to the directory open
     - nvmem: rmem: Fix return value of rmem_read()
     - nvmem: meson-efuse: Fix return value of nvmem callbacks
     - nvmem: core: only change name to fram for current attribute
     - [x86] platform/x86: toshiba_acpi: Fix array out-of-bounds access
     - ALSA: hda/realtek: add quirk for Clevo V5[46]0TU
     - ALSA: hda/realtek: Enable Mute LED on HP 250 G7
     - ALSA: hda/realtek: Limit mic boost on VAIO PRO PX
     - Fix userfaultfd_api to return EINVAL as expected
     - libceph: fix race between delayed_work() and ceph_monc_stop()
     - ACPI: processor_idle: Fix invalid comparison with insertion sort for
       latency
     - wireguard: selftests: use acpi=off instead of -no-acpi for recent QEMU
     - wireguard: allowedips: avoid unaligned 64-bit memory accesses
     - wireguard: queueing: annotate intentional data race in cpu round robin
     - wireguard: send: annotate intentional data race in checking empty queue
     - [x86] retpoline: Move a NOENDBR annotation to the SRSO dummy return thunk
     - bpf: Allow reads from uninit stack
     - nilfs2: fix kernel bug on rename operation of broken directory
     - sched: Move psi_account_irqtime() out of update_rq_clock_task() hotpath
     - i2c: mark HostNotify target address as used
     - [x86] entry/64: Remove obsolete comment on tracing vs. SYSRET
     - [x86] bhi: Avoid warning in #DB handler due to BHI mitigation
     - kbuild: Make ld-version.sh more robust against version string changes
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.101
     - minmax: sanity check constant bounds when clamping
     - minmax: clamp more efficiently by avoiding extra comparison
     - minmax: fix header inclusions
     - minmax: allow min()/max()/clamp() if the arguments have the same
       signedness.
     - minmax: allow comparisons of 'int' against 'unsigned char/short'
     - minmax: relax check to allow comparison between unsigned arguments and
       signed constants
     - gcc-plugins: Rename last_stmt() for GCC 14+
     - filelock: Remove locks reliably when fcntl/close race is detected
       (CVE-2024-41012)
     - scsi: core: alua: I/O errors for ALUA state transitions
     - scsi: qedf: Don't process stag work during unload and recovery
     - scsi: qedf: Wait for stag work during unload
     - scsi: qedf: Set qed_slowpath_params to zero before use
     - efi/libstub: zboot.lds: Discard .discard sections
     - ACPI: EC: Abort address space access upon error
     - ACPI: EC: Avoid returning AE_OK on errors in address space handler
     - tools/power/cpupower: Fix Pstate frequency reporting on AMD Family 1Ah
       CPUs
     - wifi: mac80211: mesh: init nonpeer_pm to active by default in mesh sdata
     - wifi: mac80211: apply mcast rate only if interface is up
     - wifi: mac80211: handle tasklet frames before stopping
     - wifi: cfg80211: fix 6 GHz scan request building
     - wifi: iwlwifi: mvm: d3: fix WoWLAN command version lookup
     - wifi: iwlwifi: mvm: Handle BIGTK cipher in kek_kck cmd
     - wifi: iwlwifi: mvm: properly set 6 GHz channel direct probe option
     - wifi: iwlwifi: mvm: Fix scan abort handling with HW rfkill
     - wifi: mac80211: fix UBSAN noise in ieee80211_prep_hw_scan()
     - of/irq: Factor out parsing of interrupt-map parent phandle+args from
       of_irq_parse_raw()
     - Input: silead - Always support 10 fingers
     - net: ipv6: rpl_iptunnel: block BH in rpl_output() and rpl_input()
     - ila: block BH in ila_output()
     - null_blk: fix validation of block size
     - kconfig: gconf: give a proper initial state to the Save button
     - kconfig: remove wrong expr_trans_bool()
     - HID: Ignore battery for ELAN touchscreens 2F2C and 4116
     - NFSv4: Fix memory leak in nfs4_set_security_label
     - nfs: propagate readlink errors in nfs_symlink_filler
     - nfs: don't invalidate dentries on transient errors
     - cachefiles: add consistency check for copen/cread
     - cachefiles: Set object to close if ondemand_id < 0 in copen
     - cachefiles: make on-demand read killable
     - fs/file: fix the check in find_next_fd()
     - mei: demote client disconnect warning on suspend to debug
     - iomap: Fix iomap_adjust_read_range for plen calculation
     - drm: panel-orientation-quirks: Add quirk for Aya Neo KUN
     - nvme: avoid double free special payload
     - nvmet: always initialize cqe.result
     - wifi: cfg80211: wext: add extra SIOCSIWSCAN data check
     - [powerpc*] KVM: PPC: Book3S HV: Prevent UAF in
       kvm_spapr_tce_attach_iommu_group()
     - drm/vmwgfx: Fix missing HYPERVISOR_GUEST dependency
     - ALSA: hda/realtek: Add more codec ID to no shutup pins list
     - [mips*] fix compat_sys_lseek syscall
     - Input: elantech - fix touchpad state on resume for Lenovo N24
     - Input: i8042 - add Ayaneo Kun to i8042 quirk table
     - ASoC: topology: Fix references to freed memory
     - ASoC: topology: Do not assign fields that are already set
     - bytcr_rt5640 : inverse jack detect for Archos 101 cesium
     - ALSA: dmaengine: Synchronize dma channel after drop()
     - ASoC: ti: davinci-mcasp: Set min period size using FIFO config
     - ASoC: ti: omap-hdmi: Fix too long driver name
     - [x86] ASoC: SOF: sof-audio: Skip unprepare for in-use widgets on error
       rollback
     - can: kvaser_usb: fix return value for hif_usb_send_regout
     - gpio: pca953x: fix pca953x_irq_bus_sync_unlock race
     - [s390x] sclp: Fix sclp_init() cleanup on failure
     - [x86] platform/x86: wireless-hotkey: Add support for LG Airplane Button
     - [x86] platform/x86: lg-laptop: Remove LGEX0815 hotkey handling
     - [x86] platform/x86: lg-laptop: Change ACPI device id
     - [x86] platform/x86: lg-laptop: Use ACPI device handle when evaluating
       WMAB/WMBB
     - btrfs: qgroup: fix quota root leak after quota disable failure
     - ALSA: PCM: Allow resume only for suspended streams
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15-gw0xxx
     - ALSA: dmaengine_pcm: terminate dmaengine before synchronize
     - [x86] ASoC: amd: yc: Fix non-functional mic on ASUS M5602RA
     - net: usb: qmi_wwan: add Telit FN912 compositions
     - net: mac802154: Fix racy device stats updates by DEV_STATS_INC() and
       DEV_STATS_ADD()
     - [powerpc*] pseries: Whitelist dtl slub object for copying to userspace
     - [powerpc*] eeh: avoid possible crash when edev->pdev changes
     - scsi: libsas: Fix exp-attached device scan after probe failure scanned in
       again after probe failed
     - [arm64] tee: optee: ffa: Fix missing-field-initializers warning
     - Bluetooth: hci_core: cancel all works upon hci_unregister_dev()
     - bluetooth/l2cap: sync sock recv cb and release
     - erofs: ensure m_llen is reset to 0 if metadata is invalid
     - drm/amd/display: Account for cursor prefetch BW in DML1 mode support
     - drm/radeon: check bo_va->bo is non-NULL before using it
     - fs: better handle deep ancestor chains in is_subdir()
     - wifi: iwlwifi: properly set WIPHY_FLAG_SUPPORTS_EXT_KEK_KCK
     - drivers/perf: riscv: Reset the counter to hpmevent mapping while starting
       cpus
     - spi: imx: Don't expect DMA for i.MX{25,35,50,51,53} cspi devices
     - ksmbd: return FILE_DEVICE_DISK instead of super magic
     - hfsplus: fix uninit-value in copy_name
     - spi: mux: set ctlr->bits_per_word_mask
     - cifs: fix noisy message on copy_file_range
     - [arm*] 9324/1: fix get_user() broken with veneer
     - Bluetooth: L2CAP: Fix deadlock
     - of/irq: Disable "interrupt-map" parsing for PASEMI Nemo
     - wifi: cfg80211: wext: set ssids=NULL for passive scans
     - wifi: mac80211: disable softirqs for queued frame handling
     - netfs, fscache: export fscache_put_volume() and add
       fscache_try_get_volume()
     - cachefiles: fix slab-use-after-free in fscache_withdraw_volume()
     - cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.102
     - drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq()
     - f2fs: avoid dead loop in f2fs_issue_checkpoint()
     - ocfs2: add bounds checking to ocfs2_check_dir_entry()
     - jfs: don't walk off the end of ealist
     - ALSA: hda/realtek: Enable headset mic on Positivo SU C1400
     - ALSA: hda/realtek: Fix the speaker output on Samsung Galaxy Book Pro 360
     - [arm64] dts: qcom: msm8996: Disable SS instance in Parkmode for USB
     - [arm64] dts: qcom: ipq6018: Disable SS instance in Parkmode for USB
     - [arm64] dts: qcom: sdm630: Disable SS instance in Parkmode for USB
     - [arm64,armhf] ALSA: pcm_dmaengine: Don't synchronize DMA channel when DMA
       is paused
     - filelock: Fix fcntl/close race recovery compat path
     - btrfs: do not BUG_ON on failure to get dir index for new snapshot
     - tun: add missing verification for short frame (CVE-2024-41091)
     - tap: add missing verification for short frame (CVE-2024-41090)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.103
     - [amd64] EDAC, i10nm: make skx_common.o a separate module
     - rcu/tasks: Fix stale task snaphot for Tasks Trace
     - md: fix deadlock between mddev_suspend and flush bio
     - platform/chrome: cros_ec_debugfs: fix wrong EC message version
     - block: refactor to use helper
     - block: cleanup bio_integrity_prep
     - block: initialize integrity buffer to zero before writing it to media
     - hfsplus: fix to avoid false alarm of circular locking
     - [x86] of: Return consistent error type from x86_of_pci_irq_enable()
     - [x86] pci/intel_mid_pci: Fix PCIBIOS_* return code handling
     - [x86] pci/xen: Fix PCIBIOS_* return code handling
     - [x86] platform/iosf_mbi: Convert PCIBIOS_* return codes to errnos
     - kernfs: fix all kernel-doc warnings and multiple typos
     - kernfs: Convert kernfs_path_from_node_locked() from strlcpy() to strscpy()
     - cgroup/cpuset: Prevent UAF in proc_cpuset_show()
     - hwmon: (adt7475) Fix default duty on fan is disabled
     - nvmet-auth: fix nvmet_auth hash error handling
     - [arm64] drm/meson: fix canvas release in bind function
     - [arm64] dts: qcom: sdm845: add power-domain to UFS PHY
     - [arm64] dts: qcom: sm6350: add power-domain to UFS PHY
     - [arm64] dts: qcom: sm8250: switch UFS QMP PHY to new style of bindings
     - [arm64] dts: qcom: sm8250: add power-domain to UFS PHY
     - [arm64] dts: qcom: sm8450: add power-domain to UFS PHY
     - [arm64] dts: qcom: msm8996-xiaomi-common: drop excton from the USB PHY
     - [arm64] dts: qcom: msm8998: enable adreno_smmu by default
     - [arm64] soc: qcom: rpmh-rsc: Ensure irqs aren't disabled by
       rpmh_rsc_send_data() callers
     - [arm64] dts: rockchip: Add sdmmc related properties on rk3308-rock-pi-s
     - [arm64] dts: rockchip: Add pinctrl for UART0 to rk3308-rock-pi-s
     - [arm64] dts: rockchip: Add mdio and ethernet-phy nodes to rk3308-rock-pi-s
     - [arm64] dts: rockchip: Update WIFi/BT related nodes on rk3308-rock-pi-s
     - [arm64] dts: qcom: msm8996: specify UFS core_clk frequencies
     - [arm64] soc: xilinx: rename cpu_number1 to dummy_cpu_number
     - cpufreq: ti-cpufreq: Handle deferred probe with dev_err_probe()
     - [armhf] OPP: ti: Fix ti_opp_supply_probe wrong return values
     - [arm64] dts: rockchip: Increase VOP clk rate on RK3328
     - [arm64] dts: amlogic: sm1: fix spdif compatibles
     - [arm64] dts: mediatek: mt8183-kukui: Drop bogus output-enable property
     - [arm64] dts: mediatek: mt7622: fix "emmc" pinctrl mux
     - [arm64] dts: mediatek: mt8183-kukui-jacuzzi: Add ports node for anx7625
     - [arm64] dts: amlogic: gx: correct hdmi clocks
     - [arm64] dts: rockchip: Drop invalid mic-in-differential on rk3568-rock-3a
     - [arm64] dts: rockchip: Fix mic-in-differential usage on rk3568-evb1-v10
     - [arm64] dts: renesas: r8a779g0: Add L3 cache controller
     - [arm64] dts: renesas: r8a779g0: Add secondary CA76 CPU cores
     - [arm64] dts: renesas: Drop specifying the GIC_CPU_MASK_SIMPLE() for GICv3
       systems
     - [arm64] dts: renesas: r8a779a0: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r8a779f0: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r8a779g0: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r9a07g043u: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r9a07g044: Add missing hypervisor virtual timer IRQ
     - [arm64] dts: renesas: r9a07g054: Add missing hypervisor virtual timer IRQ
     - [x86] xen: Convert comma to semicolon
     - [arm64] dts: rockchip: Add missing power-domains for rk356x vop_mmu
     - [arm64] dts: qcom: sm6350: Add missing qcom,non-secure-domain property
     - vmlinux.lds.h: catch .bss..L* sections into BSS")
     - [arm64] firmware: turris-mox-rwtm: Do not complete if there are no waiters
     - [arm64] firmware: turris-mox-rwtm: Fix checking return value of
       wait_for_completion_timeout()
     - [arm64] firmware: turris-mox-rwtm: Initialize completion before mailbox
     - wifi: brcmsmac: LCN PHY code is used for BCM4313 2G-only device
     - bpftool: Un-const bpf_func_info to fix it for llvm 17 and newer
     - net: esp: cleanup esp_output_tail_tcp() in case of unsupported ESPINTCP
     - tcp: annotate lockless accesses to sk->sk_err_soft
     - tcp: annotate lockless access to sk->sk_err
     - tcp: add tcp_done_with_error() helper
     - tcp: fix race in tcp_write_err()
     - tcp: fix races in tcp_v[46]_err()
     - net/smc: set rmb's SG_MAX_SINGLE_ALLOC limitation only when
       CONFIG_ARCH_NO_SG_CHAIN is defined
     - lib: objagg: Fix general protection fault
     - [x86] perf/x86: Serialize set_attr_rdpmc()
     - jump_label: Use atomic_try_cmpxchg() in static_key_slow_inc_cpuslocked()
     - jump_label: Prevent key->enabled int overflow
     - jump_label: Fix concurrency issues in static_key_slow_dec()
     - wifi: ath11k: fix wrong handling of CCMP256 and GCMP ciphers
     - wifi: cfg80211: fix typo in cfg80211_calculate_bitrate_he()
     - wifi: cfg80211: handle 2x996 RU allocation in
       cfg80211_calculate_bitrate_he()
     - net: fec: Refactor: #define magic constants
     - net: fec: Fix FEC_ECR_EN1588 being cleared on link-down
     - libbpf: Checking the btf_type kind when fixing variable offsets
     - ipvs: Avoid unnecessary calls to skb_is_gso_sctp
     - netfilter: nf_tables: rise cap on SELinux secmark context
     - bpftool: Mount bpffs when pinmaps path not under the bpffs
     - [x86] perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation
     - perf: Fix perf_aux_size() for greater-than 32-bit size
     - perf: Prevent passing zero nr_pages to rb_alloc_aux()
     - perf: Fix default aux_watermark calculation
     - [x86] perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake
     - wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter()
     - wifi: virt_wifi: avoid reporting connection success with wrong SSID
     - gss_krb5: Fix the error handling path for crypto_sync_skcipher_setkey
     - wifi: virt_wifi: don't use strlen() in const context
     - locking/rwsem: Add __always_inline annotation to __down_write_common() and
       inlined callers
     - bpf: annotate BTF show functions with __printf
     - bna: adjust 'name' buf size of bna_tcb and bna_ccb structures
     - bpf: Eliminate remaining "make W=1" warnings in kernel/bpf/btf.o
     - bpf: Fix null pointer dereference in resolve_prog_type() for
       BPF_PROG_TYPE_EXT
     - xdp: fix invalid wait context of page_pool_destroy()
     - net: bridge: mst: Check vlan state for egress decision
     - [arm64] drm/rockchip: vop2: Fix the port mux of VP2
     - drm/mipi-dsi: Fix mipi_dsi_dcs_write_seq() macro definition format
     - drm/mipi-dsi: Fix theoretical int overflow in mipi_dsi_dcs_write_seq()
     - drm/amd/pm: Fix aldebaran pcie speed reporting
     - drm/amdgpu: Check if NBIO funcs are NULL in amdgpu_device_baco_exit
     - drm/amdgpu: Remove GC HW IP 9.3.0 from noretry=1
     - drm/panel: boe-tv101wum-nl6: If prepare fails, disable GPIO before
       regulators
     - drm/panel: boe-tv101wum-nl6: Check for errors on the NOP in prepare()
     - media: pci: ivtv: Add check for DMA map result
     - media: dvb-usb: Fix unexpected infinite loop in
       dvb_usb_read_remote_control()
     - media: imon: Fix race getting ictx->lock
     - media: i2c: Fix imx412 exposure control
     - media: v4l: async: Fix NULL pointer dereference in adding ancillary links
     - [s390x] mm: Convert make_page_secure to use a folio
     - [s390x] mm: Convert gmap_make_secure to use a folio
     - [s390x] uv: Don't call folio_wait_writeback() without a folio reference
     - saa7134: Unchecked i2c_transfer function result fixed
     - media: uvcvideo: Override default flags
     - media: renesas: vsp1: Fix _irqsave and _irq mix
     - media: renesas: vsp1: Store RPF partition configuration per RPF instance
     - leds: trigger: Unregister sysfs attributes before calling deactivate()
     - [arm64] drm/msm/dsi: set VIDEO_COMPRESSION_MODE_CTRL_WC
     - [arm64] drm/msm/dpu: drop validity checks for clear_pending_flush() ctl op
     - perf test: Replace arm callgraph fp test workload with leafloop
     - perf tests arm_callgraph_fp: Address shellcheck warnings about signal
       names and adding double quotes for expression
     - perf tests: Fix test_arm_callgraph_fp variable expansion
     - perf test: Make test_arm_callgraph_fp.sh more robust
     - perf report: Fix condition in sort__sym_cmp()
     - [arm64,armhf] drm/etnaviv: fix DMA direction handling for cached RW
       buffers
     - drm/qxl: Add check for drm_cvt_mode
     - Revert "leds: led-core: Fix refcount leak in of_led_get()"
     - ext4: fix infinite loop when replaying fast_commit
     - media: venus: flush all buffers in output plane streamoff
     - perf intel-pt: Fix aux_watermark calculation for 64-bit size
     - perf intel-pt: Fix exclude_guest setting
     - mfd: rsmu: Split core code into separate module
     - mfd: omap-usb-tll: Use struct_size to allocate tll
     - xprtrdma: Fix rpcrdma_reqs_reset()
     - SUNRPC: avoid soft lockup when transmitting UDP to reachable server.
     - NFSv4.1 another fix for EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - ext4: don't track ranges in fast_commit if inode has inlined data
       (Closes: #1039883)
     - ext4: avoid writing unitialized memory to disk in EA inodes
     - SUNRPC: Fixup gss_status tracepoint error output
     - PCI: Fix resource double counting on remove & rescan
     - PCI: keystone: Relocate ks_pcie_set/clear_dbi_mode()
     - PCI: keystone: Don't enable BAR 0 for AM654x
     - PCI: keystone: Fix NULL pointer dereference in case of DT error in
       ks_pcie_setup_rc_app_regs()
     - PCI: rcar: Demote WARN() to dev_warn_ratelimited() in rcar_pcie_wakeup()
     - clk: qcom: branch: Add helper functions for setting retain bits
     - clk: qcom: gcc-sc7280: Update force mem core bit for UFS ICE clock
     - clk: qcom: camcc-sc7280: Add parent dependency to all camera GDSCs
     - iio: frequency: adrf6780: rm clk provider include
     - coresight: Fix ref leak when of_coresight_parse_endpoint() fails
     - RDMA/mlx5: Set mkeys for dmabuf at PAGE_SIZE
     - [powerpc*] pseries: Fix alignment of PLPKS structures and buffers
     - [powerpc*] pseries: Move plpks.h to include directory
     - [powerpc*] pseries: Expose PLPKS config values, support additional fields
     - [powerpc*] pseries: Add helper to get PLPKS password length
     - [powerpc*] kexec: make the update_cpus_node() function public
     - [powerpc*] kexec_file: fix cpus node update to FDT
     - RDMA/cache: Release GID table even if leak is detected
     - clk: qcom: gpucc-sm8350: Park RCG's clk source at XO during disable
     - interconnect: qcom: qcm2290: Fix mas_snoc_bimc RPM master ID
     - Input: qt1050 - handle CHIP_ID reading error
     - RDMA/mlx4: Fix truncated output warning in mad.c
     - RDMA/mlx4: Fix truncated output warning in alias_GUID.c
     - RDMA/mlx5: Use sq timestamp as QP timestamp when RoCE is disabled
     - RDMA/rxe: Don't set BTH_ACK_MASK for UC or UD QPs
     - [arm64] ASoC: qcom: Adjust issues in case of DT error in
       asoc_qcom_lpass_cpu_platform_probe()
     - [powerpc*] prom: Add CPU info to hardware description string later
     - mtd: make mtd_test.c a separate module
     - RDMA/device: Return error earlier if port in not valid
     - Input: elan_i2c - do not leave interrupt disabled on suspend failure
     - ASoC: amd: Adjust error handling in case of absent codec device
     - PCI: endpoint: Clean up error handling in vpci_scan_bus()
     - PCI: endpoint: Fix error handling in epf_ntb_epc_cleanup()
     - vhost/vsock: always initialize seqpacket_allow
     - net: missing check virtio
     - [x86] crypto: qat - extend scope of lock in adf_cfg_add_key_value_param()
     - clk: qcom: Park shared RCGs upon registration
     - clk: en7523: fix rate divider for slic and spi clocks
     - PCI: qcom-ep: Disable resources unconditionally during PERST# assert
     - PCI: dwc: Fix index 0 incorrectly being interpreted as a free ATU slot
     - [powerpc*] xmon: Fix disassembly CPU feature checks
     - [arm64] RDMA/hns: Check atomic wr length
     - [arm64] RDMA/hns: Fix unmatch exception handling when init eq table fails
     - [arm64] RDMA/hns: Fix missing pagesize and alignment check in FRMR
     - [arm64] RDMA/hns: Fix shift-out-bounds when max_inline_data is 0
     - [arm64] RDMA/hns: Fix undifined behavior caused by invalid max_sge
     - [arm64] RDMA/hns: Fix insufficient extend DB for VFs.
     - [amd64] iommu/vt-d: Fix to convert mm pfn to dma pfn
     - [amd64] iommu/vt-d: Fix identity map bounds in si_domain_init()
     - bnxt_re: Fix imm_data endianness
     - netfilter: ctnetlink: use helper function to calculate expect ID
     - netfilter: nft_set_pipapo: constify lookup fn args where possible
     - netfilter: nf_set_pipapo: fix initial map fill
     - net: flow_dissector: use DEBUG_NET_WARN_ON_ONCE
     - ipv4: Fix incorrect TOS in route get reply
     - ipv4: Fix incorrect TOS in fibmatch route get reply
     - net: dsa: mv88e6xxx: Limit chip-wide frame size config to CPU ports
     - net: dsa: b53: Limit chip-wide jumbo frame config to CPU ports
     - pinctrl: rockchip: update rk3308 iomux routes
     - pinctrl: core: fix possible memory leak when pinctrl_enable() fails
     - pinctrl: single: fix possible memory leak when pinctrl_enable() fails
     - pinctrl: ti: ti-iodelay: Drop if block with always false condition
     - pinctrl: ti: ti-iodelay: fix possible memory leak when pinctrl_enable()
       fails
     - pinctrl: freescale: mxs: Fix refcount of child
     - fs/ntfs3: Replace inode_trylock with inode_lock
     - fs/ntfs3: Fix field-spanning write in INDEX_HDR
     - pinctrl: renesas: r8a779g0: Fix CANFD5 suffix
     - pinctrl: renesas: r8a779g0: Fix FXR_TXEN[AB] suffixes
     - pinctrl: renesas: r8a779g0: Fix (H)SCIF1 suffixes
     - pinctrl: renesas: r8a779g0: Fix (H)SCIF3 suffixes
     - pinctrl: renesas: r8a779g0: Fix IRQ suffixes
     - pinctrl: renesas: r8a779g0: FIX PWM suffixes
     - pinctrl: renesas: r8a779g0: Fix TCLK suffixes
     - pinctrl: renesas: r8a779g0: Fix TPU suffixes
     - fs/proc/task_mmu: indicate PM_FILE for PMD-mapped file THP
     - nilfs2: avoid undefined behavior in nilfs_cnt32_ge macro
     - rtc: interface: Add RTC offset to alarm after fix-up
     - [s390x] dasd: fix error checks in dasd_copy_pair_store()
     - sbitmap: remove unnecessary calculation of alloc_hint in
       __sbitmap_get_shallow
     - sbitmap: rewrite sbitmap_find_bit_in_index to reduce repeat code
     - sbitmap: use READ_ONCE to access map->word
     - sbitmap: fix io hung due to race on sbitmap_word::cleared
     - landlock: Don't lose track of restrictions on cred_transfer
     - mm/hugetlb: fix possible recursive locking detected warning
     - mm/mglru: fix div-by-zero in vmpressure_calc_level()
     - mm: mmap_lock: replace get_memcg_path_buf() with on-stack buffer
     - [x86] efistub: Avoid returning EFI_SUCCESS on error
     - [x86] efistub: Revert to heap allocated boot_params for PE entrypoint
     - dt-bindings: thermal: correct thermal zone node name limit
     - tick/broadcast: Make takeover of broadcast hrtimer reliable
     - net: netconsole: Disable target before netpoll cleanup
     - af_packet: Handle outgoing VLAN packets without hardware offloading
     - kernel: rerun task_work while freezing in get_signal()
     - ipv4: fix source address selection with route leak
     - ipv6: take care of scope when choosing the src addr
     - sched/fair: set_load_weight() must also call reweight_task() for
       SCHED_IDLE tasks
     - fuse: verify {g,u}id mount options correctly
     - char: tpm: Fix possible memory leak in tpm_bios_measurements_open()
     - media: venus: fix use after free in vdec_close
     - ata: libata-scsi: Honor the D_SENSE bit for CK_COND=1 and no error
     - hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode()
     - [x86] drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes
     - [x86] drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes
     - scsi: qla2xxx: Fix optrom version displayed in FDMI
     - drm/amd/display: Check for NULL pointer
     - sched/fair: Use all little CPUs for CPU-bound workloads
     - apparmor: use kvfree_sensitive to free data->data
     - cifs: fix potential null pointer use in destroy_workqueue in init_cifs
       error path
     - cifs: fix reconnect with SMB1 UNIX Extensions
     - cifs: mount with "unix" mount option for SMB1 incorrectly handled
     - task_work: s/task_work_cancel()/task_work_cancel_func()/
     - task_work: Introduce task_work_cancel() again
     - udf: Avoid using corrupted block bitmap buffer
     - ext4: check dot and dotdot of dx_root before making dir indexed
     - ext4: make sure the first directory block is not a hole
     - io_uring: tighten task exit cancellations
     - trace/pid_list: Change gfp flags in pid_list_fill_irq()
     - wifi: mwifiex: Fix interface type change
     - drivers: soc: xilinx: check return status of get_api_version()
     - leds: ss4200: Convert PCIBIOS_* return codes to errnos
     - leds: mt6360: Fix memory leak in mt6360_init_isnk_properties()
     - jbd2: make jbd2_journal_get_max_txn_bufs() internal
     - media: uvcvideo: Fix integer overflow calculating timestamp
     - [x86] KVM: VMX: Split out the non-virtualization part of
       vmx_interrupt_blocked()
     - [x86] KVM: nVMX: Request immediate exit iff pending nested event needs
       injection
     - ALSA: usb-audio: Fix microphone sound on HD webcam.
     - ALSA: usb-audio: Move HD Webcam quirk to the right place
     - ALSA: usb-audio: Add a quirk for Sonix HD USB Camera
     - tools/memory-model: Fix bug in lock.cat
     - hwrng: amd - Convert PCIBIOS_* return codes to errnos
     - PCI: hv: Return zero, not garbage, when reading PCI_INTERRUPT_PIN
     - PCI: dw-rockchip: Fix initial PERST# GPIO value
     - PCI: rockchip: Use GPIOD_OUT_LOW flag while requesting ep_gpio
     - PCI: loongson: Enable MSI in LS7A Root Complex
     - [arm*] binder: fix hang of unregistered readers
     - dev/parport: fix the array out-of-bounds risk
     - scsi: qla2xxx: Return ENOBUFS if sg_cnt is more than one for ELS cmds
     - f2fs: fix to force buffered IO on inline_data inode
     - f2fs: fix to don't dirty inode for readonly filesystem
     - f2fs: fix return value of f2fs_convert_inline_inode()
     - clk: davinci: da8xx-cfgchip: Initialize clk_init_data before use
     - ubi: eba: properly rollback inside self_check_eba
     - decompress_bunzip2: fix rare decompression failure
     - kbuild: Fix '-S -c' in x86 stack protector scripts
     - [x86] ASoC: amd: yc: Support mic on Lenovo Thinkpad E16 Gen 2
     - kobject_uevent: Fix OOB access within zap_modalias_env()
     - gve: Fix an edge case for TSO skb validity check
     - ice: Add a per-VF limit on number of FDIR filters
     - devres: Fix devm_krealloc() wasting memory
     - devres: Fix memory leakage caused by driver API devm_free_percpu()
     - irqchip/imx-irqsteer: Handle runtime power management correctly
     - mm/numa_balancing: teach mpol_to_str about the balancing mode
     - rtc: cmos: Fix return value of nvmem callbacks
     - scsi: qla2xxx: During vport delete send async logout explicitly
     - scsi: qla2xxx: Unable to act on RSCN for port online
     - scsi: qla2xxx: Fix for possible memory corruption
     - scsi: qla2xxx: Use QP lock to search for bsg
     - scsi: qla2xxx: Fix flash read failure
     - scsi: qla2xxx: Complete command early within lock
     - scsi: qla2xxx: validate nvme_local_port correctly
     - perf: Fix event leak upon exit
     - perf: Fix event leak upon exec and file release
     - [x86] perf/x86/intel/uncore: Fix the bits of the CHA extended umask for
       SPR
     - [x86] perf/x86/intel/pt: Fix topa_entry base length
     - [x86] perf/x86/intel/pt: Fix a topa_entry base address calculation
     - [x86] drm/i915/gt: Do not consider preemption during execlists_dequeue for
       gen8
     - drm/amdgpu/sdma5.2: Update wptr registers as well as doorbell
     - drm/dp_mst: Fix all mstb marked as not probed after suspend/resume
     - drm/i915/dp: Reset intel_dp->link_trained before retraining the link
     - rtc: isl1208: Fix return value of nvmem callbacks
     - watchdog/perf: properly initialize the turbo mode timestamp and rearm
       counter
     - RDMA/iwcm: Fix a use-after-free related to destroying CM IDs
     - dm-verity: fix dm_is_verity_target() when dm-verity is builtin
     - rbd: don't assume rbd_is_lock_owner() for exclusive mappings
     - remoteproc: stm32_rproc: Fix mailbox interrupts queuing
     - remoteproc: imx_rproc: Skip over memory region when node value is NULL
     - remoteproc: imx_rproc: Fix refcount mistake in imx_rproc_addr_init
     - [arm64,armhf] drm/etnaviv: don't block scheduler when GPU is still active
     - [arm64,armhf] drm/panfrost: Mark simple_ondemand governor as softdep
     - rbd: rename RBD_LOCK_STATE_RELEASING and releasing_wait
     - rbd: don't assume RBD_LOCK_STATE_LOCKED for exclusive mappings
     - bpf: Synchronize dispatcher update with bpf_dispatcher_xdp_func
     - Bluetooth: btusb: Add RTL8852BE device 0489:e125 to device tables
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x13d3:0x3591
     - nilfs2: handle inconsistent state in nilfs_btnode_create_block()
     - PCI: Introduce cleanup helpers for device reference counts and locks
     - PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal
     - io_uring/io-wq: limit retrying worker initialisation
     - wifi: mac80211: Allow NSS change only up to capability
     - wifi: mac80211: track capability/opmode NSS separately
     - wifi: mac80211: check basic rates validity
     - jfs: Fix array-index-out-of-bounds in diFree
     - dmaengine: ti: k3-udma: Fix BCHAN count with UHC and HC channels
     - phy: cadence-torrent: Check return value on register read
     - f2fs: fix start segno of large section
     - watchdog: rzg2l_wdt: Use pm_runtime_resume_and_get()
     - watchdog: rzg2l_wdt: Check return status of pm_runtime_put()
     - f2fs: fix to update user block counts in block_operations()
     - kbuild: avoid build error when single DTB is turned into composite DTB
     - libbpf: Fix no-args func prototype BTF dumping syntax
     - af_unix: Disable MSG_OOB handling for sockets in sockmap/sockhash
     - dma: fix call order in dmam_free_coherent
     - bpf, events: Use prog to emit ksymbol event for main program
     - ipv4: Fix incorrect source address in Record Route option
     - net: bonding: correctly annotate RCU in bond_should_notify_peers()
     - netfilter: nft_set_pipapo_avx2: disable softinterrupts
     - tipc: Return non-zero value from tipc_udp_addr2str() on error
     - net: stmmac: Correct byte order of perfect_match
     - net: nexthop: Initialize all fields in dumped nexthops
     - bpf: Fix a segment issue when downgrading gso_size
     - mISDN: Fix a use after free in hfcmulti_tx()
     - apparmor: Fix null pointer deref when receiving skb during sock creation
     - powerpc: fix a file leak in kvm_vcpu_ioctl_enable_cap()
     - lirc: rc_dev_get_from_fd(): fix file leak
     - auxdisplay: ht16k33: Drop reference after LED registration
     - spi: microchip-core: fix the issues in the isr
     - spi: microchip-core: only disable SPI controller when register value
       change requires it
     - spi: microchip-core: switch to use modern name
     - spi: microchip-core: fix init function not setting the master and motorola
       modes
     - nvme-pci: Fix the instructions for disabling power management
     - spidev: Add Silicon Labs EM3581 device compatible
     - spi: spidev: order compatibles alphabetically
     - spi: spidev: add correct compatible for Rohm BH2228FV
     - [x86] ASoC: Intel: use soc_intel_is_byt_cr() only when IOSF_MBI is
       reachable
     - ceph: fix incorrect kmalloc size of pagevec mempool
     - [s390x] pci: Refactor arch_setup_msi_irqs()
     - [s390x] pci: Allow allocation of more than 1 MSI interrupt
     - iommu: sprd: Avoid NULL deref in sprd_iommu_hw_en
     - io_uring: fix io_match_task must_hold
     - nvme-pci: add missing condition check for existence of mapped data
     - fs: don't allow non-init s_user_ns for filesystems without FS_USERNS_MOUNT
     - [powerpc*] pseries: Avoid hcall in plpks_is_available() on non-pseries
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.104
     - [arm64] dts: qcom: msm8998: switch USB QMP PHY to new style of bindings
     - [arm64] dts: qcom: msm8998: Disable SS instance in Parkmode for USB
     - [arm64] dts: qcom: ipq8074: Disable SS instance in Parkmode for USB
     - sysctl: allow change system v ipc sysctls inside ipc namespace
     - sysctl: allow to change limits for posix messages queues
     - sysctl: treewide: drop unused argument
       ctl_table_root::set_ownership(table)
     - sysctl: always initialize i_uid/i_gid
     - ext4: make ext4_es_insert_extent() return void
     - ext4: refactor ext4_da_map_blocks()
     - ext4: convert to exclusive lock while inserting delalloc extents
     - ext4: factor out a common helper to query extent map
     - ext4: check the extent status again before inserting delalloc block
     - leds: trigger: Remove unused function led_trigger_rename_static()
     - leds: trigger: Store brightness set by led_trigger_event()
     - leds: trigger: Call synchronize_rcu() before calling trig->activate()
     - leds: triggers: Flush pending brightness before activating trigger
     - mm: restrict the pcp batch scale factor to avoid too long latency
     - mm: page_alloc: control latency caused by zone PCP draining
     - mm/page_alloc: fix pcp->count race between drain_pages_zone() vs
       __rmqueue_pcplist()
     - f2fs: fix to avoid use SSR allocate when do defragment
     - f2fs: assign CURSEG_ALL_DATA_ATGC if blkaddr is valid
     - irqdomain: Fixed unbalanced fwnode get and put
     - drm/udl: Rename struct udl_drm_connector to struct udl_connector
     - drm/udl: Test pixel limit in mode-config's mode-valid function
     - drm/udl: Use USB timeout constant when reading EDID
     - drm/udl: Various improvements to the connector
     - drm/udl: Move connector to modesetting code
     - drm/udl: Remove DRM_CONNECTOR_POLL_HPD
     - [x86] drm/i915/dp: Don't switch the LTTPR mode on an active link
     - [amd64] HID: amd_sfh: Remove duplicate cleanup
     - [amd64] HID: amd_sfh: Split sensor and HID initialization
     - [amd64] HID: amd_sfh: Move sensor discovery before HID device
       initialization
     - drm/nouveau: prime: fix refcount underflow
     - drm/vmwgfx: Fix overlay when using Screen Targets
     - drm/vmwgfx: Trigger a modeset when the screen moves
     - sched: act_ct: take care of padding in struct zones_ht_key
     - ALSA: hda: conexant: Fix headset auto detect fail in the polling mode
     - Bluetooth: hci_sync: Fix suspending with wrong filter policy
     - net: axienet: start napi before enabling Rx/Tx
     - rtnetlink: Don't ignore IFLA_TARGET_NETNSID when ifname is specified in
       rtnl_dellink().
     - ice: respect netif readiness in AF_XDP ZC related ndo's
     - ice: don't busy wait for Rx queue disable in ice_qp_dis()
     - ice: replace synchronize_rcu with synchronize_net
     - ice: add missing WRITE_ONCE when clearing ice_rx_ring::xdp_prog
     - net/iucv: fix use after free in iucv_sock_close()
     - [x86] drm/i915/hdcp: Fix HDCP2_STREAM_STATUS macro
     - net: mvpp2: Don't re-use loop iterator
     - ALSA: hda: Conditionally use snooping for AMD HDMI
     - netfilter: iptables: Fix null-ptr-deref in iptable_nat_table_init().
     - netfilter: iptables: Fix potential null-ptr-deref in
       ip6table_nat_table_init().
     - net/mlx5: Lag, don't use the hardcoded value of the first port
     - net/mlx5: Fix missing lock on sync reset reload
     - net/mlx5e: Add a check for the return value from mlx5_port_set_eth_ptys
     - ipv6: fix ndisc_is_useropt() handling for PIO
     - [arm64] jump_label: Ensure patched jump_labels are visible to all CPUs
     - platform/chrome: cros_ec_proto: Lock device when updating MKBP version
     - HID: wacom: Modify pen IDs
     - btrfs: zoned: fix zone_unusable accounting on making block group
       read-write again
     - protect the fetch of ->fd[fd] in do_dup2() from mispredictions
     - mptcp: sched: check both directions for backup
     - ALSA: usb-audio: Correct surround channels in UAC1 channel map
     - ALSA: hda/realtek: Add quirk for Acer Aspire E5-574G
     - Revert "ALSA: firewire-lib: obsolete workqueue for period update"
     - Revert "ALSA: firewire-lib: operate for period elapse event in process
       context"
     - drm/vmwgfx: Fix a deadlock in dma buf fence polling
     - [x86] drm/i915: Fix possible int overflow in skl_ddi_calculate_wrpll()
     - net: usb: sr9700: fix uninitialized variable use in sr_mdio_read
     - r8169: don't increment tx_dropped in case of NETDEV_TX_BUSY
     - mptcp: fix user-space PM announced address accounting
     - mptcp: distinguish rcv vs sent backup flag in requests
     - mptcp: fix NL PM announced address accounting
     - mptcp: fix bad RCVPRUNED mib accounting
     - mptcp: pm: only set request_bkup flag when sending MP_PRIO
     - mptcp: fix duplicate data handling
     - netfilter: ipset: Add list flush to cancel_gc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.105
     - irqchip/mbigen: Fix mbigen node address layout
     - [x86] platform/x86/intel/ifs: Gen2 Scan test support
     - [x86] platform/x86/intel/ifs: Initialize union ifs_status to zero
     - jump_label: Fix the fix, brown paper bags galore
     - [x86] mm: Fix pti_clone_pgtable() alignment assumption
     - [x86] mm: Fix pti_clone_entry_text() for i386
     - sctp: Fix null-ptr-deref in reuseport_add_sock().
     - net: usb: qmi_wwan: fix memory leak for not ip packets
     - net: bridge: mcast: wait for previous gc cycles when removing port
     - net: linkwatch: use system_unbound_wq
     - Bluetooth: l2cap: always unlock channel in l2cap_conless_channel()
     - Bluetooth: hci_sync: avoid dup filtering when passive scanning with adv
       monitor
     - [armhf] net: dsa: bcm_sf2: Fix a possible memory leak in
       bcm_sf2_mdio_register()
     - l2tp: fix lockdep splat
     - net: fec: Stop PPS on driver remove
     - rcutorture: Fix rcu_torture_fwd_cb_cr() data race
     - md: do not delete safemode_timer in mddev_suspend
     - md/raid5: avoid BUG_ON() while continue reshape after reassembling
     - block: change rq_integrity_vec to respect the iterator
     - rcu: Fix rcu_barrier() VS post CPUHP_TEARDOWN_CPU invocation
     - clocksouqrce/drivers/sh_cmt: Address race condition for clock events
     - ACPI: battery: create alarm sysfs attribute atomically
     - [x86] ACPI: SBS: manage alarm sysfs attribute through psy core
     - wifi: nl80211: disallow setting special AP channel widths
     - net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
     - af_unix: Don't retry after unix_state_lock_nested() in
       unix_stream_connect().
     - PCI: Add Edimax Vendor ID to pci_ids.h
     - udf: prevent integer overflow in udf_bitmap_free_blocks()
     - wifi: nl80211: don't give key data to userspace
     - can: mcp251xfd: tef: prepare to workaround broken TEF FIFO tail index
       erratum
     - can: mcp251xfd: tef: update workaround for erratum DS80000789E 6 of
       mcp2518fd
     - btrfs: fix bitmap leak when loading free space cache on duplicate entry
     - drm/amdgpu/pm: Fix the param type of set_power_profile_mode
     - drm/amdgpu/pm: Fix the null pointer dereference for smu7
     - drm/amdgpu: Fix the null pointer dereference to ras_manager
     - drm/amdgpu/pm: Fix the null pointer dereference in
       apply_state_adjust_rules
     - drm/amdgpu: Add lock around VF RLCG interface
     - drm/amd/pm: Fix the null pointer dereference for vega10_hwmgr
     - media: amphion: Remove lock in s_ctrl callback
     - drm/amd/display: Add NULL check for 'afb' before dereferencing in
       amdgpu_dm_plane_handle_cursor_update
     - drm/amd/display: Add null checker before passing variables
     - media: uvcvideo: Ignore empty TS packets
     - media: uvcvideo: Fix the bandwdith quirk on USB 3.x
     - media: xc2028: avoid use-after-free in load_firmware_cb()
     - ext4: fix uninitialized variable in ext4_inlinedir_to_tree
     - jbd2: avoid memleak in jbd2_journal_write_metadata_buffer
     - [s390x] sclp: Prevent release of buffer in I/O
     - SUNRPC: Fix a race to wake a sync task
     - bus: mhi: host: pci_generic: add support for Telit FE990 modem
     - Revert "bpftool: Mount bpffs when pinmaps path not under the bpffs"
     - profiling: remove profile=sleep support
     - scsi: mpt3sas: Avoid IOMMU page faults on REPORT ZONES
     - [arm64,armhf] irqchip/meson-gpio: Convert meson_gpio_irq_controller::lock
       to 'raw_spinlock_t'
     - sched/cputime: Fix mul_u64_u64_div_u64() precision for cputime
     - ext4: fix wrong unit use in ext4_mb_find_by_goal
     - [arm64] Add Neoverse-V2 part
     - [arm64] barrier: Restore spec_bar() macro
     - [arm64] cputype: Add Cortex-X4 definitions
     - [arm64] cputype: Add Neoverse-V3 definitions
     - [arm64] errata: Add workaround for Arm errata 3194386 and 3312417
     - [arm64] cputype: Add Cortex-X3 definitions
     - [arm64] cputype: Add Cortex-A720 definitions
     - [arm64] cputype: Add Cortex-X925 definitions
     - [arm64] errata: Unify speculative SSBS errata logic
     - [arm64] errata: Expand speculative SSBS workaround
     - [arm64] cputype: Add Cortex-X1C definitions
     - [arm64] cputype: Add Cortex-A725 definitions
     - [arm64] errata: Expand speculative SSBS workaround (again)
     - i2c: smbus: Improve handling of stuck alerts
     - spi: spidev: Add missing spi_device_id for bh2228fv
     - i2c: smbus: Send alert notifications to all devices if source not found
     - bpf: kprobe: remove unused declaring of bpf_kprobe_override
     - kprobes: Fix to check symbol prefixes correctly
     - [arm64] i2c: qcom-geni: add desc struct to prepare support for I2C Master
       Hub variant
     - [arm64] i2c: qcom-geni: Add missing clk_disable_unprepare in
       geni_i2c_runtime_resume
     - [arm64] i2c: qcom-geni: Add missing geni_icc_disable in
       geni_i2c_runtime_resume
     - spi: spi-fsl-lpspi: Fix scldiv calculation
     - ALSA: usb-audio: Re-add ScratchAmp quirk entries
     - [arm64] ASoC: meson: axg-fifo: fix irq scheduling issue with PREEMPT_RT
     - drm/amd/display: Skip Recompute DSC Params if no Stream on Link
     - drm/client: fix null pointer dereference in drm_client_modeset_probe
     - ALSA: line6: Fix racy access to midibuf
     - ALSA: hda: Add HP MP9 G4 Retail System AMS to force connect list
     - ALSA: hda/realtek: Add Framework Laptop 13 (Intel Core Ultra) to quirks
     - ALSA: hda/hdmi: Yet more pin fix for HP EliteDesk 800 G4
     - usb: vhci-hcd: Do not drop references before new references are gained
     - USB: serial: debug: do not echo input by default
     - usb: gadget: core: Check for unset descriptor
     - usb: gadget: u_serial: Set start_delayed during suspend
     - usb: gadget: u_audio: Check return codes from usb_ep_enable and
       config_ep_by_speed.
     - scsi: mpi3mr: Avoid IOMMU page faults on REPORT ZONES
     - scsi: ufs: core: Fix hba->last_dme_cmd_tstamp timestamp updating logic
     - tick/broadcast: Move per CPU pointer access into the atomic section
     - ntp: Clamp maxerror and esterror to operating range
     - torture: Enable clocksource watchdog with "tsc=watchdog"
     - clocksource: Scale the watchdog read retries automatically
     - clocksource: Fix brown-bag boolean thinko in cs_watchdog_read()
     - driver core: Fix uevent_show() vs driver detach race
     - ntp: Safeguard against time_constant overflow
     - timekeeping: Fix bogus clock_was_set() invocation in do_adjtimex()
     - serial: core: check uartclk for zero to avoid divide by zero
     - [x86] ASoC: amd: yc: Add quirk entry for OMEN by HP Gaming Laptop 16-n0xxx
     - kcov: properly check for softirq context
     - irqchip/xilinx: Fix shift out of bounds
     - genirq/irqdesc: Honor caller provided affinity in alloc_desc()
     - [x86] power: supply: axp288_charger: Fix constant_charge_voltage writes
     - [x86] power: supply: axp288_charger: Round constant_charge_voltage writes
       down
     - tracing: Fix overflow in get_free_elt()
     - padata: Fix possible divide-by-0 panic in padata_mt_helper()
     - smb3: fix setting SecurityFlags when encryption is required
     - btrfs: avoid using fixed char array size for tree names
     - [x86] mtrr: Check if fixed MTRRs exist before saving them
     - sched/smt: Introduce sched_smt_present_inc/dec() helper
     - sched/smt: Fix unbalance sched_smt_present dec/inc
     - drm/bridge: analogix_dp: properly handle zero sized AUX transactions
     - drm/dp_mst: Skip CSN if topology probing is not done yet
     - [arm64,armhf] drm/lima: Mark simple_ondemand governor as softdep
     - [x86] drm/mgag200: Set DDC timeout in milliseconds
     - [x86] drm/mgag200: Bind I2C lifetime to DRM device
     - mptcp: mib: count MPJ with backup flag
     - mptcp: export local_address
     - mptcp: pm: fix backup support in signal endpoints
     - mptcp: pm: deny endp with signal + subflow + port
     - block: use the right type for stub rq_integrity_vec()
     - Revert "drm/amd/display: Add NULL check for 'afb' before dereferencing in
       amdgpu_dm_plane_handle_cursor_update"
     - mm: huge_memory: use !CONFIG_64BIT to relax huge page alignment on 32 bit
       machines (CVE-2024-42258)
     - btrfs: fix corruption after buffer fault in during direct IO append write
     - ipv6: fix source address selection with route leak
     - tools headers arm64: Sync arm64's cputype.h with the kernel sources
     - mm/hugetlb: fix potential race in __update_and_free_hugetlb_folio()
     - block: Call .limit_depth() after .hctx has been set
     - block/mq-deadline: Fix the tag reservation code
     - xfs: fix log recovery buffer allocation for the legacy h_size fixup
       (CVE-2024-39472)
     - netfilter: nf_tables: bail out if stateful expression provides no .clone
     - netfilter: nf_tables: allow clone callbacks to sleep
     - netfilter: nf_tables: prefer nft_chain_validate (CVE-2024-41042)
     - i2c: qcom-geni: fix missing clk_disable_unprepare() and
       geni_se_resources_off()
     - btrfs: fix double inode unlock for direct IO sync writes
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.106
     - mptcp: pass addr to mptcp_pm_alloc_anno_list
     - mptcp: pm: reduce indentation blocks
     - mptcp: pm: don't try to create sf if alloc failed
     - mptcp: pm: do not ignore 'subflow' if 'signal' flag is also set
     - [x86] ASoC: topology: Clean up route loading
     - [x86] ASoC: topology: Fix route memory corruption
     - exec: Fix ToCToU between perm check and set-uid/gid usage
     - nfsd: move reply cache initialization into nfsd startup
     - nfsd: move init of percpu reply_cache_stats counters back to nfsd_init_net
     - NFSD: Refactor nfsd_reply_cache_free_locked()
     - NFSD: Rename nfsd_reply_cache_alloc()
     - NFSD: Replace nfsd_prune_bucket()
     - NFSD: Refactor the duplicate reply cache shrinker
     - NFSD: Rewrite synopsis of nfsd_percpu_counters_init()
     - NFSD: Fix frame size warning in svc_export_parse()
     - sunrpc: don't change ->sv_stats if it doesn't exist
     - nfsd: stop setting ->pg_stats for unused stats
     - sunrpc: pass in the sv_stats struct through svc_create_pooled
     - sunrpc: remove ->pg_stats from svc_program
     - sunrpc: use the struct net as the svc proc private
     - nfsd: rename NFSD_NET_* to NFSD_STATS_*
     - nfsd: expose /proc/net/sunrpc/nfsd in net namespaces
     - nfsd: make all of the nfsd stats per-network namespace
     - nfsd: remove nfsd_stats, make th_cnt a global counter
     - nfsd: make svc_stat per-network namespace instead of global
     - nvme/pci: Add APST quirk for Lenovo N60z laptop
     - mptcp: fully established after ADD_ADDR echo on MPJ
     - [x86] drm/i915/gem: Fix Virtual Memory mapping boundaries calculation
       (CVE-2024-42259)
     - cgroup: Make operations on the cgroup root_list RCU safe
     - [x86] drm/i915: Add a function to mmap framebuffer obj
     - [x86] drm/i915: Fix a NULL vs IS_ERR() bug
     - [x86] drm/i915/gem: Adjust vma offset for framebuffer mmap offset
     - binfmt_flat: Fix corruption when not offsetting data start
     - cgroup: Move rcu_head up near the top of cgroup_root
     - wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values (CVE-2024-42114)
     - [arm64] KVM: arm64: Don't pass a TLBI level hint when zapping table
       entries
     - media: Revert "media: dvb-usb: Fix unexpected infinite loop in
       dvb_usb_read_remote_control()"
     - Revert "ata: libata-scsi: Honor the D_SENSE bit for CK_COND=1 and no
       error"
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 24
 .
   [ Bastian Blank ]
   * Backport changes in Microsoft Azure Network Adapter from 6.10.
     (closes: #1076576)
   * [arm64] Enable MICROSOFT_MANA.
linux-signed-arm64 (6.1.99+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.99-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.99
     - Revert "usb: xhci: prevent potential failure in handle_tx_event() for
       Transfer events without TRB"
linux-signed-arm64 (6.1.98+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.98-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.95
     - wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects
     - wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()
     - wifi: cfg80211: fully move wiphy work to unbound workqueue
     - wifi: cfg80211: Lock wiphy in cfg80211_get_station
     - wifi: cfg80211: pmsr: use correct nla_get_uX functions
     - wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64
     - wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef
     - wifi: iwlwifi: mvm: check n_ssids before accessing the ssids
     - wifi: iwlwifi: mvm: don't read past the mfuart notifcation
     - wifi: mac80211: correctly parse Spatial Reuse Parameter Set element
     - ax25: Fix refcount imbalance on inbound connections
     - ax25: Replace kfree() in ax25_dev_free() with ax25_dev_put()
     - [armhf] net/ncsi: Simplify Kconfig/dts control flow
     - [armhf] net/ncsi: Fix the multi thread manner of NCSI driver
     - ipv6: ioam: block BH from ioam6_output()
     - ipv6: sr: block BH in seg6_output_core() and seg6_input_core()
     - bpf: Set run context for rawtp test_run callback
     - net/smc: avoid overwriting when adjusting sock bufsizes
     - net: sched: sch_multiq: fix possible OOB write in multiq_tune()
       (CVE-2024-36978)
     - vxlan: Fix regression when dropping packets due to invalid src addresses
     - tcp: count CLOSE-WAIT sockets for TCP_MIB_CURRESTAB
     - net/mlx5: Stop waiting for PCI up if teardown was triggered
     - net/mlx5: Stop waiting for PCI if pci channel is offline
     - net/mlx5: Split function_setup() to enable and open functions
     - net/mlx5: Always stop health timer during driver removal
     - net/mlx5: Fix tainted pointer delete is case of flow rules creation fail
     - ptp: Fix error message on failed pin verification
     - ice: fix iteration of TLVs in Preserved Fields Area
     - ice: Introduce new parameters in ice_sched_node
     - ice: remove null checks before devm_kfree() calls
     - ice: remove af_xdp_zc_qps bitmap
     - net: wwan: iosm: Fix tainted pointer delete is case of region creation
       fail
     - af_unix: Set sk->sk_state under unix_state_lock() for truly disconencted
       peer.
     - af_unix: Annodate data-races around sk->sk_state for writers.
     - af_unix: Annotate data-race of sk->sk_state in unix_inq_len().
     - af_unix: Annotate data-races around sk->sk_state in unix_write_space() and
       poll().
     - af_unix: Annotate data-race of sk->sk_state in unix_stream_connect().
     - af_unix: Annotate data-races around sk->sk_state in sendmsg() and
       recvmsg().
     - af_unix: Annotate data-race of sk->sk_state in unix_stream_read_skb().
     - af_unix: Annotate data-races around sk->sk_state in UNIX_DIAG.
     - af_unix: Annotate data-race of net->unx.sysctl_max_dgram_qlen.
     - af_unix: Use unix_recvq_full_lockless() in unix_stream_connect().
     - af_unix: annotate lockless accesses to sk->sk_err
     - af_unix: Use skb_queue_empty_lockless() in unix_release_sock().
     - af_unix: Use skb_queue_len_lockless() in sk_diag_show_rqlen().
     - af_unix: Annotate data-race of sk->sk_shutdown in sk_diag_fill().
     - ipv6: fix possible race in __fib6_drop_pcpu_from()
     - Bluetooth: qca: fix invalid device address check
     - btrfs: fix wrong block_start calculation for btrfs_drop_extent_map_range()
     - usb: gadget: f_fs: use io_data->status consistently
     - usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete
     - iio: accel: mxc4005: allow module autoloading via OF compatible
     - iio: accel: mxc4005: Reset chip on probe() and resume()
     - xtensa: stacktrace: include <asm/ftrace.h> for prototype
     - xtensa: fix MAKE_PC_FROM_RA second argument
     - drm/amd/display: drop unnecessary NULL checks in debugfs
     - drm/amd/display: Fix incorrect DSC instance for MST
     - [arm64] dts: qcom: sm8150: align TLMM pin configuration with DT schema
     - [arm64] dts: qcom: sa8155p-adp: fix SDHC2 CD pin configuration
     - misc/pvpanic: deduplicate common code
     - misc/pvpanic-pci: register attributes via pci_driver
     - serial: sc16is7xx: replace hardcoded divisor value with BIT() macro
     - serial: sc16is7xx: fix bug in sc16is7xx_set_baud() when using prescaler
     - mmc: davinci: Don't strip remove function when driver is builtin
     - firmware: qcom_scm: disable clocks if qcom_scm_bw_enable() fails
     - HID: i2c-hid: elan: Add ili9882t timing
     - HID: i2c-hid: elan: fix reset suspend current leakage
     - i2c: add fwnode APIs
     - i2c: acpi: Unbind mux adapters before delete
     - mm, vmalloc: fix high order __GFP_NOFAIL allocations
     - mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL
     - wifi: ath10k: fix QCOM_RPROC_COMMON dependency
     - btrfs: remove unnecessary prototype declarations at disk-io.c
     - btrfs: make btrfs_destroy_delayed_refs() return void
     - btrfs: fix leak of qgroup extent records after transaction abort
     - nilfs2: return the mapped address from nilfs_get_page()
     - nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors
     - io_uring: check for non-NULL file pointer in io_file_can_poll()
     - USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages
     - USB: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected
     - usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps
     - usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state
     - mei: me: release irq in mei_me_pci_resume error path
     - tty: n_tty: Fix buffer offsets when lookahead is used
     - landlock: Fix d_parent walk
     - jfs: xattr: fix buffer overflow for invalid xattr
     - xhci: Set correct transferred length for cancelled bulk transfers
     - xhci: Apply reset resume quirk to Etron EJ188 xHCI host
     - xhci: Handle TD clearing for multiple streams case
     - xhci: Apply broken streams quirk to Etron EJ188 xHCI host
     - [x86] thunderbolt: debugfs: Fix margin debugfs node creation condition
     - scsi: mpi3mr: Fix ATA NCQ priority support
     - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory
     - scsi: sd: Use READ(16) when reading block zero on large capacity disks
       (Closes: #1067858)
     - gve: Clear napi->skb before dev_kfree_skb_any()
     - [powerpc*] uaccess: Fix build errors seen with GCC 13/14
     - Input: try trimming too long modalias strings (Closes: #983357)
     - cxl/test: Add missing vmalloc.h for tools/testing/cxl/test/mem.c
     - cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd
     - cachefiles: remove requests from xarray during flushing requests
     - cachefiles: introduce object ondemand state
     - cachefiles: extract ondemand info field from cachefiles_object
     - cachefiles: resend an open request if the read request's object is closed
     - cachefiles: add spin_lock for cachefiles_ondemand_info
     - cachefiles: add restore command to recover inflight ondemand read requests
     - cachefiles: fix slab-use-after-free in cachefiles_ondemand_get_fd()
     - cachefiles: fix slab-use-after-free in cachefiles_ondemand_daemon_read()
     - cachefiles: remove err_put_fd label in cachefiles_ondemand_daemon_read()
     - cachefiles: never get a new anonymous fd if ondemand_id is valid
     - cachefiles: defer exposing anon_fd until after copy_to_user() succeeds
     - cachefiles: flush all requests after setting CACHEFILES_DEAD
     - selftests/ftrace: Fix to check required event file
     - clk: sifive: Do not register clkdevs for PRCI clocks
     - NFSv4.1 enforce rootpath check in fs_location query
     - SUNRPC: return proper error from gss_wrap_req_priv
     - NFS: add barriers when testing for NFS_FSDATA_BLOCKED (Closes: #1071501)
     - [x86] platform/x86: dell-smbios: Fix wrong token data in sysfs
     - gpio: tqmx86: fix typo in Kconfig label
     - gpio: tqmx86: remove unneeded call to platform_set_drvdata()
     - gpio: tqmx86: introduce shadow register for GPIO output value
     - gpio: tqmx86: Convert to immutable irq_chip
     - gpio: tqmx86: store IRQ trigger type and unmask status separately
     - gpio: tqmx86: fix broken IRQ_TYPE_EDGE_BOTH interrupt type
     - HID: core: remove unnecessary WARN_ON() in implement()
     - iommu/amd: Fix sysfs leak in iommu init
     - HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode()
     - drm/vmwgfx: Port the framebuffer code to drm fb helpers
     - drm/vmwgfx: Refactor drm connector probing for display modes
     - drm/vmwgfx: Filter modes which exceed graphics memory
     - drm/vmwgfx: 3D disabled should not effect STDU memory limits
     - drm/vmwgfx: Remove STDU logic from generic mode_valid function
     - net: sfp: Always call `sfp_sm_mod_remove()` on remove
     - net: hns3: fix kernel crash problem in concurrent scenario
     - net: hns3: add cond_resched() to hns3 ring buffer init process
     - liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet
     - drm/komeda: check for error-valued pointer
     - drm/bridge/panel: Fix runtime warning on panel bridge release
     - tcp: fix race in tcp_v6_syn_recv_sock()
     - geneve: Fix incorrect inner network header offset when innerprotoinherit
       is set
     - net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN)
       packets
     - Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ
     - netfilter: ipset: Fix race between namespace cleanup and gc in the
       list:set type
     - net: pse-pd: Use EOPNOTSUPP error code instead of ENOTSUPP
     - gve: ignore nonrelevant GSO type bits when processing TSO headers
     - net: stmmac: replace priv->speed with the portTransmitRate from the tc-cbs
       parameters
     - nvmet-passthru: propagate status from id override functions
     - net/ipv6: Fix the RT cache flush via sysctl using a previous delay
     - net: bridge: mst: pass vlan group directly to br_mst_vlan_set_state
     - net: bridge: mst: fix suspicious rcu usage in br_mst_set_state
     - ionic: fix use after netif_napi_del()
     - af_unix: Read with MSG_PEEK loops if the first unread byte is OOB
     - bnxt_en: Adjust logging of firmware messages in case of released token in
       __hwrm_send()
     - misc: microchip: pci1xxxx: fix double free in the error handling of
       gp_aux_bus_probe() (CVE-2024-36973)
     - [x86] boot: Don't add the EFI stub to targets, again
     - iio: adc: ad9467: fix scan type sign
     - iio: dac: ad5592r: fix temperature channel scaling value
     - iio: imu: inv_icm42600: delete unneeded update watermark call
     - drivers: core: synchronize really_probe() and dev_uevent()
     - drm/exynos/vidi: fix memory leak in .get_modes()
     - drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID
       found
     - mptcp: ensure snd_una is properly initialized on connect
     - mptcp: pm: inc RmAddr MIB counter once per RM_ADDR ID
     - irqchip/gic-v3-its: Fix potential race condition in its_vlpi_prop_update()
     - [x86] amd_nb: Check for invalid SMN reads
     - perf/core: Fix missing wakeup when waiting for context reference
     - riscv: fix overlap of allocated page and PTR_ERR
     - tracing/selftests: Fix kprobe event name test for .isra. functions
     - null_blk: Print correct max open zones limit in null_init_zoned_dev()
     - sock_map: avoid race between sock_map_close and sk_psock_put
     - vmci: prevent speculation leaks by sanitizing event in event_deliver()
     - spmi: hisi-spmi-controller: Do not override device identifier
     - knfsd: LOOKUP can return an illegal error value
     - fs/proc: fix softlockup in __read_vmcore
     - ocfs2: use coarse time for new created files
     - ocfs2: fix races between hole punching and AIO+DIO
     - PCI: rockchip-ep: Remove wrong mask on subsys_vendor_id
     - dmaengine: axi-dmac: fix possible race in remove()
     - remoteproc: k3-r5: Wait for core0 power-up before powering up core1
     - remoteproc: k3-r5: Do not allow core1 to power up before core0 via sysfs
     - [x86] drm/i915/gt: Disarm breadcrumbs if engines are already idle
     - [x86] drm/i915/dpt: Make DPT object unshrinkable
     - [x86] intel_th: pci: Add Granite Rapids support
     - [x86] intel_th: pci: Add Granite Rapids SOC support
     - [x86] intel_th: pci: Add Sapphire Rapids SOC support
     - [x86] intel_th: pci: Add Meteor Lake-S support
     - [x86] intel_th: pci: Add Lunar Lake support
     - btrfs: zoned: introduce a zone_info struct in
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out per-zone logic from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out single bg handling from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out DUP bg handling from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: fix use-after-free due to race with dev replace
     - nilfs2: fix potential kernel bug due to lack of writeback flag waiting
     - tick/nohz_full: Don't abuse smp_call_function_single() in
       tick_setup_device()
     - mm/huge_memory: don't unpoison huge_zero_folio
     - mm/memory-failure: fix handling of dissolved but not taken off from buddy
       pages
     - serial: 8250_pxa: Configure tx_loadsz to match FIFO IRQ level
     - mptcp: pm: update add_addr counters after connect
     - Revert "fork: defer linking file vma until vma is fully initialized"
     - remoteproc: k3-r5: Jump to error handling labels in start/stop errors
     - cachefiles, erofs: Fix NULL deref in when cachefiles is not doing
       ondemand-mode
     - Bluetooth: qca: fix wcn3991 device address check
     - Bluetooth: qca: generalise device address check
     - greybus: Fix use-after-free bug in gb_interface_release due to race
       condition.
     - serial: 8250_dw: fall back to poll if there's no interrupt
     - serial: core: Add UPIO_UNKNOWN constant for unknown port type
     - usb-storage: alauda: Check whether the media is initialized
       (CVE-2024-38619)
     - misc: microchip: pci1xxxx: Fix a memory leak in the error handling of
       gp_aux_bus_probe()
     - i2c: at91: Fix the functionality flags of the slave-only interface
     - i2c: designware: Fix the functionality flags of the slave-only interface
     - zap_pid_ns_processes: clear TIF_NOTIFY_SIGNAL along with TIF_SIGPENDING
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.96
     - padata: Disable BH when taking works lock on MT path
     - io_uring/sqpoll: work around a potential audit memory leak
     - block/ioctl: prefer different overflow check
     - batman-adv: bypass empty buckets in batadv_purge_orig_ref()
     - wifi: ath9k: work around memset overflow warning
     - af_packet: avoid a false positive warning in packet_setsockopt()
     - drop_monitor: replace spin_lock by raw_spin_lock
     - scsi: qedi: Fix crash while reading debugfs attribute
     - net/sched: fix false lockdep warning on qdisc root lock
     - net: dsa: realtek: keep default LED state in rtl8366rb
     - netpoll: Fix race condition in netpoll_owner_active
     - wifi: mt76: mt7921s: fix potential hung tasks during chip recovery
     - HID: Add quirk for Logitech Casa touchpad
     - HID: asus: fix more n-key report descriptors if n-key quirked
     - Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl
     - drm/amd/display: Exit idle optimizations before HDCP execution
     - [x86] platform/x86: toshiba_acpi: Add quirk for buttons on Z830
     - [x86] ASoC: Intel: sof_sdw: add JD2 quirk for HP Omen 14
     - [arm64,armhf] drm/lima: add mask irq callback to gp and pp
     - [arm64,armhf] drm/lima: mask irqs in timeout path before hard reset
     - ALSA: hda/realtek: Add quirks for Lenovo 13X
     - [powerpc*] pseries: Enforce hcall result buffer validity and size
     - [powerpc*] io: Avoid clang null pointer arithmetic warnings
     - [x86] platform/x86: p2sb: Don't init until unassigned resources have been
       assigned
     - power: supply: cros_usbpd: provide ID table for avoiding fallback match
     - [arm64] iommu/arm-smmu-v3: Free MSIs in case of ENOMEM
     - f2fs: remove clear SB_INLINECRYPT flag in default_options
     - usb: misc: uss720: check for incompatible versions of the Belkin F5U002
     - [arm64] usb: dwc3: pci: Don't set "linux,phy_charger_detect" property on
       Lenovo Yoga Tab2 1380
     - udf: udftime: prevent overflow in udf_disk_stamp_to_time()
     - PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports
     - [arm64,armhf] serial: imx: Introduce timeout when waiting on transmitter
       empty
     - serial: exar: adding missing CTI and Exar PCI ids
     - usb: gadget: function: Remove usage of the deprecated ida_simple_xx() API
     - tty: add the option to have a tty reject a new ldisc
     - tracing: Build event generation tests only as modules
     - ALSA: hda/realtek: Remove Framework Laptop 16 from quirks
     - ALSA/hda: intel-dsp-config: Document AVS as dsp_driver option
     - ice: move RDMA init to ice_idc.c
     - ice: avoid IRQ collision to fix init failure on ACPI S3 resume
     - cipso: fix total option length computation
     - bpf: Avoid splat in pskb_pull_reason
     - ALSA: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM
     - netrom: Fix a memory leak in nr_heartbeat_expiry()
     - ipv6: prevent possible NULL deref in fib6_nh_init()
     - ipv6: prevent possible NULL dereference in rt6_probe()
     - xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr()
     - netns: Make get_net_ns() handle zero refcount net
     - qca_spi: Make interrupt remembering atomic
     - net: lan743x: disable WOL upon resume to restore full data path operation
     - net: lan743x: Support WOL at both the PHY and MAC appropriately
     - net: phy: mxl-gpy: enhance delay time required by loopback disable
       function
     - net: phy: mxl-gpy: Remove interrupt mask clearing from config_init
     - net/sched: act_api: rely on rcu in tcf_idr_check_alloc
     - net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
     - tipc: force a dst refcount before doing decryption
     - sched: act_ct: add netns into the key of tcf_ct_flow_table
     - ptp: fix integer overflow in max_vclocks_store
     - net: stmmac: No need to calculate speed divider when offload is disabled
     - virtio_net: checksum offloading handling fix
     - octeontx2-pf: Add error handling to VLAN unoffload handling
     - netfilter: ipset: Fix suspicious rcu_dereference_protected()
     - seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and End.DX6
       behaviors
     - ice: Fix VSI list rule with ICE_SW_LKUP_LAST type
     - bnxt_en: Restore PTP tx_avail count in case of skb_pad() error
     - net: usb: rtl8150 fix unintiatilzed variables in
       rtl8150_get_link_ksettings
     - regulator: core: Fix modpost error "regulator_get_regmap" undefined
     - dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list
     - dmaengine: ioat: Drop redundant pci_enable_pcie_error_reporting()
     - dmaengine: ioatdma: Fix leaking on version mismatch
     - dmaengine: ioat: use PCI core macros for PCIe Capability
     - dmaengine: ioatdma: Fix error path in ioat3_dma_probe()
     - dmaengine: ioatdma: Fix kmemleak in ioat_pci_probe()
     - dmaengine: ioatdma: Fix missing kmem_cache_destroy()
     - regulator: bd71815: fix ramp values
     - [arm64] dts: imx93-11x11-evk: Remove the 'no-sdio' property
     - [arm64] dts: freescale: imx8mm-verdin: enable hysteresis on slow input pin
     - ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is
       fine."
     - firmware: psci: Fix return value from psci_system_suspend()
     - RDMA/mlx5: Add check for srq max_sge attribute
     - net: stmmac: Assign configured channel value to EXTTS event
     - net: usb: ax88179_178a: improve reset check
     - net: do not leave a dangling sk pointer, when socket creation fails
     - btrfs: retry block group reclaim without infinite loop
     - cifs: fix typo in module parameter enable_gcm_256
     - KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin()
     - [arm64] KVM: arm64: Disassociate vcpus from redistributor region on
       teardown
     - [x86] KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for ProBook 445/465
       G11.
     - ALSA: hda/realtek: Limit mic boost on N14AP7
     - drm/i915/mso: using joiner is not possible with eDP MSO
     - drm/radeon: fix UBSAN warning in kv_dpm.c
     - drm/amdgpu: fix UBSAN warning in kv_dpm.c
     - gcov: add support for GCC 14
     - kcov: don't lose track of remote references during softirqs
     - mm: mmap: allow for the maximum number of bits for randomizing mmap_base
       by default
     - tcp: clear tp->retrans_stamp in tcp_rcv_fastopen_synack()
     - mm/page_table_check: fix crash on ZONE_DEVICE
     - i2c: ocores: set IACK bit after core is enabled
     - dt-bindings: i2c: google,cros-ec-i2c-tunnel: correct path to
       i2c-controller schema
     - [armhf] spi: stm32: qspi: Fix dual flash mode sanity test in
       stm32_qspi_setup()
     - [arm64] dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc
     - [armhf] spi: stm32: qspi: Clamp stm32_qspi_get_mode() output to
       CCR_BUSWIDTH_4
     - perf: script: add raw|disasm arguments to --insn-trace option
     - perf script: Show also errors for --insn-trace option
     - [armhf] dts: samsung: smdkv310: fix keypad no-autorepeat
     - [armhf] dts: samsung: exynos4412-origen: fix keypad no-autorepeat
     - [armhf] dts: samsung: smdk4412: fix keypad no-autorepeat
     - pmdomain: ti-sci: Fix duplicate PD referrals
     - tracing: Add MODULE_DESCRIPTION() to preemptirq_delay_test
     - [x86] cpu/vfm: Add new macros to work with (vendor/family/model) values
     - [x86] cpu: Fix x86_match_cpu() to match just X86_VENDOR_INTEL
     - Revert "kheaders: substituting --sort in archive creation"
     - kheaders: explicitly define file modes for archived headers
     - drm/amd/display: revert Exit idle optimizations before HDCP execution
     - net/sched: unregister lockdep keys in qdisc_create/qdisc_alloc error path
     - hid: asus: asus_report_fixup: fix potential read out of bounds
     - Revert "mm: mmap: allow for the maximum number of bits for randomizing
       mmap_base by default"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.97
     - usb: typec: ucsi: Never send a lone connector change ack
     - usb: typec: ucsi: Ack also failed Get Error commands
     - [x86] ACPI: x86: utils: Add Picasso to the list for forcing
       StorageD3Enable
     - [x86] ACPI: x86: Force StorageD3Enable on more products
     - Input: ili210x - fix ili251x_read_touch_data() return value
     - pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER
     - [arm64,armhf] pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins
     - [arm64,armhf] pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins
     - [arm64,armhf] pinctrl: rockchip: use dedicated pinctrl type for RK3328
     - [arm64,armhf] pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set
     - [mips*] pci: lantiq: restore reset gpio polarity
     - dt-bindings: i2c: Drop unneeded quotes
     - dt-bindings: i2c: atmel,at91sam: correct path to i2c-controller schema
     - netfilter: nf_tables: use timestamp to check for set element timeout
       (CVE-2024-27397)
     - [arm64] ASoC: rockchip: i2s-tdm: Fix trcm mode by setting clock on right
       mclk
     - [s390x] pci: Add missing virt_to_phys() for directed DIBV
     - ASoC: amd: acp: remove i2s configuration check in acp_i2s_probe()
     - [arm64] ASoC: fsl-asoc-card: set priv->pdev before using it
     - net: dsa: microchip: fix initial port flush problem
     - bpf: Fix overrunning reservations in ringbuf
     - ibmvnic: Free any outstanding tx skbs during scrq reset
     - net: phy: micrel: add Microchip KSZ 9477 to the device table
     - net: dsa: microchip: use collision based back pressure mode
     - xdp: Remove WARN() from __xdp_reg_mem_model()
     - Fix race for duplicate reqsk on identical SYN
     - net: dsa: microchip: fix wrong register write when masking interrupt
     - [powerpc*] restore some missing spu syscalls
     - tcp: fix tcp_rcv_fastopen_synack() to enter TCP_CA_Loss for failed TFO
     - netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data
       registers
     - bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro()
     - [x86] fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup
     - mtd: partitions: redboot: Added conversion of operands to a larger type
     - wifi: ieee80211: check for NULL in ieee80211_mle_size_ok()
     - bpf: Add a check for struct bpf_fib_lookup size
     - bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
     - RDMA/restrack: Fix potential invalid address access
     - net/iucv: Avoid explicit cpumask var allocation on stack
     - net/dpaa2: Avoid explicit cpumask var allocation on stack
     - crypto: ecdh - explicitly zeroize private_key
     - ALSA: emux: improve patch ioctl data validation
     - media: dvbdev: Initialize sbuf
     - soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message
     - drm/radeon/radeon_display: Decrease the size of allocated memory
     - nvme: fixup comment for nvme RDMA Provider Type
     - drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA
     - [arm64] gpio: davinci: Validate the obtained number of IRQs
     - drm/amd/amdgpu: Fix style errors in amdgpu_drv.c & amdgpu_device.c
     - drm/amdgpu: Fix pci state save during mode-1 reset
     - gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1)
     - randomize_kstack: Remove non-functional per-arch entropy filtering
     - ima: Fix use-after-free on a dentry's dname.name
     - [x86] stop playing stack games in profile_pc()
     - Revert "MIPS: pci: lantiq: restore reset gpio polarity"
     - [arm64] pinctrl: qcom: spmi-gpio: drop broken pm8008 support
     - ocfs2: fix DIO failure due to insufficient transaction credits
     - nfs: drop the incorrect assertion in nfs_swap_rw()
     - mmc: sdhci-brcmstb: check R1_STATUS for erase/trim/discard
     - mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos
     - mmc: sdhci: Do not invert write-protect twice
     - mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro()
     - iio: xilinx-ams: Don't include ams_ctrl_channels in scan_mask
     - counter: ti-eqep: enable clock at probe
     - i2c: testunit: don't erase registers after STOP
     - i2c: testunit: discard write requests while old command is running
     - iio: adc: ad7266: Fix variable checking bug
     - iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF
     - net: usb: ax88179_178a: improve link status logs
     - usb: gadget: printer: SS+ support
     - usb: gadget: printer: fix races against disable (CVE-2024-25741)
     - usb: musb: da8xx: fix a resource leak in probe()
     - usb: atm: cxacru: fix endpoint checking in cxacru_bind()
     - usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to
       avoid deadlock
     - usb: gadget: aspeed_udc: fix device address configuration
     - usb: ucsi: stm32: fix command completion handling
     - serial: 8250_omap: Implementation of Errata i2310
     - serial: imx: set receiver level before starting uart
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook 645/665
       G11.
     - tty: mcf: MCF54418 has 10 UARTS
     - net: can: j1939: Initialize unused data in j1939_send_one()
     - net: can: j1939: recover socket queue on CAN bus error during BAM
       transmission
     - net: can: j1939: enhanced error handling for tightly received RTS messages
       in xtp_rx_rts_session_new
     - cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing
     - cpu/hotplug: Fix dynstate assignment in __cpuhp_setup_state_cpuslocked()
     - irqchip/loongson-liointc: Set different ISRs for different cores
     - kbuild: Install dtb files as 0644 in Makefile.dtbinst
     - btrfs: zoned: fix initial free space detection
     - csky, hexagon: fix broken sys_sync_file_range
     - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes
     - drm/amdgpu: avoid using null object of framebuffer
     - [x86] drm/i915/gt: Fix potential UAF by revoke of fence registers
     - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes
     - drm/amdgpu/atomfirmware: fix parsing of vram_info
     - batman-adv: Don't accept TT entries for out-of-spec VIDs
     - can: mcp251xfd: fix infinite loop when xmit fails
     - ata: ahci: Clean up sysfs file on error
     - ata: libata-core: Fix double free on error
     - ftruncate: pass a signed offset
     - syscalls: fix compat_sys_io_pgetevents_time64 usage
     - syscalls: fix sys_fanotify_mark prototype
     - Revert "cpufreq: amd-pstate: Fix the inconsistency in max frequency units"
     - mm/page_alloc: Separate THP PCP into movable and non-movable categories
     - gfs2: Fix slab-use-after-free in gfs2_qd_dealloc (CVE-2023-52760)
     - efi: memmap: Move manipulation routines into x86 arch tree
     - efi: xen: Set EFI_PARAVIRT for Xen dom0 boot on all architectures
     - [x86] efi/x86: Free EFI memory map only when installing a new one.
     - [arm64] dts: rockchip: Fix SD NAND and eMMC init on rk3308-rock-pi-s
     - [arm64] dts: rockchip: Rename LED related pinctrl nodes on
       rk3308-rock-pi-s
     - [arm64] dts: rockchip: fix PMIC interrupt pin on ROCK Pi E
     - [arm64] dts: rockchip: Add sound-dai-cells for RK3368
     - serial: imx: only set receiver level if it is zero
     - serial: 8250_omap: Fix Errata i2310 with RX FIFO level check
     - tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.98
     - locking/mutex: Introduce devm_mutex_init()
     - crypto: hisilicon/debugfs - Fix debugfs uninit process issue
     - [arm64,armhf] drm/lima: fix shared irq handling on driver remove
     - [powerpc*] Avoid nmi_enter/nmi_exit in real mode interrupt.
     - media: dvb: as102-fe: Fix as10x_register_addr packing
     - media: dvb-usb: dib0700_devices: Add missing release_firmware()
     - IB/core: Implement a limit on UMAD receive List
     - scsi: qedf: Make qedf_execute_tmf() non-preemptible
     - crypto: aead,cipher - zeroize key buffer after use
     - drm/amdgpu: Fix uninitialized variable warnings
     - drm/amdgpu: Initialize timestamp for some legacy SOCs
     - drm/amd/display: Check index msg_id before read or write
     - drm/amd/display: Check pipe offset before setting vblank
     - drm/amd/display: Skip finding free audio for unknown engine_id
     - drm/amdgpu: fix uninitialized scalar variable warning
     - media: dw2102: Don't translate i2c read into write
     - sctp: prefer struct_size over open coded arithmetic
     - firmware: dmi: Stop decoding on broken entry
     - Input: ff-core - prefer struct_size over open coded arithmetic
     - usb: xhci: prevent potential failure in handle_tx_event() for Transfer
       events without TRB
     - wifi: mt76: replace skb_put with skb_put_zero
     - [arm64,armhf] net: dsa: mv88e6xxx: Correct check for empty list
     - media: dvb-frontends: tda18271c2dd: Remove casting during div
     - media: s2255: Use refcount_t instead of atomic_t for num_channels
     - media: dvb-frontends: tda10048: Fix integer overflow
     - i2c: i801: Annotate apanel_addr as __ro_after_init
     - [powerpc*] 64: Set _IO_BASE to POISON_POINTER_DELTA not 0 for CONFIG_PCI=n
     - orangefs: fix out-of-bounds fsid access
     - kunit: Fix timeout message
     - [powerpc*] xmon: Check cpu id in commands "c#", "dp#" and "dx#"
     - igc: fix a log entry using uninitialized netdev
     - bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD
     - f2fs: check validation of fault attrs in f2fs_build_fault_attr()
     - scsi: mpi3mr: Sanitise num_phys
     - serial: imx: Raise TX trigger level to 8
     - jffs2: Fix potential illegal address access in jffs2_free_inode
     - [s390x] pkey: Wipe sensitive data on failure
     - btrfs: scrub: initialize ret in scrub_simple_mirror() to fix compilation
       warning
     - cdrom: rearrange last_media_change check to avoid unintentional overflow
     - mac802154: fix time calculation in ieee802154_configure_durations()
     - UPSTREAM: tcp: fix DSACK undo in fast recovery to call tcp_try_to_open()
     - net/mlx5: E-switch, Create ingress ACL when needed
     - net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup()
     - tcp_metrics: validate source addr length
     - [s390x] KVM: s390: fix LPSWEY handling
     - e1000e: Fix S0ix residency on corporate systems
     - net: allow skb_datagram_iter to be called from any context
     - net: ntb_netdev: Move ntb_netdev_rx_handler() to call netif_rx() from
       __netif_rx()
     - wifi: wilc1000: fix ies_len type in connect path
     - netfilter: nf_tables: unconditionally flush pending work before notifier
     - bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set()
       (CVE-2024-39487)
     - inet_diag: Initialize pad field in struct inet_diag_req_v2
     - [x86] platform/x86: toshiba_acpi: Fix quickstart quirk handling
     - Revert "igc: fix a log entry using uninitialized netdev"
     - nilfs2: fix inode number range checks
     - nilfs2: add missing check for inode numbers on directory entries
     - mm: optimize the redundant loop of mm_update_owner_next()
     - mm: avoid overflows in dirty throttling logic
     - btrfs: fix adding block group to a reclaim list and the unused list during
       reclaim
     - f2fs: Add inline to f2fs_build_fault_attr() stub
     - scsi: mpi3mr: Use proper format specifier in mpi3mr_sas_port_add()
     - Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot
     - can: kvaser_usb: Explicitly initialize family in leafimx driver_info
       struct
     - fsnotify: Do not generate events for O_PATH file descriptors
     - Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(),
       again"
     - drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes
     - drm/amdgpu/atomfirmware: silence UBSAN warning
     - drm: panel-orientation-quirks: Add quirk for Valve Galileo
     - [powerpc*] pseries: Fix scv instruction crash with kexec
     - mtd: rawnand: Ensure ECC configuration is propagated to upper layers
     - mtd: rawnand: Bypass a couple of sanity checks during NAND identification
     - mtd: rawnand: rockchip: ensure NVDDR timings are rejected
     - bnx2x: Fix multiple UBSAN array-index-out-of-bounds
     - [arm64] dts: rockchip: Fix the DCDC_REG2 minimum voltage on Quartz64 Model
       B
     - ima: Avoid blocking in RCU read-side critical section
     - media: dw2102: fix a potential buffer overflow
     - clk: qcom: gcc-sm6350: Fix gpll6* & gpll7 parents
     - clk: mediatek: clk-mtk: Register MFG notifier in mtk_clk_simple_probe()
     - clk: mediatek: mt8183: Only enable runtime PM on mt8183-mfgcfg
     - i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr
     - ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897
     - nvme-multipath: find NUMA path only for online numa-node
     - dma-mapping: benchmark: avoid needless copy_to_user if benchmark fails
     - nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset
     - regmap-i2c: Subtract reg size from max_write
     - [x86] platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW
       11.6" tablet
     - [x86] platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro
     - nvmet: fix a possible leak when destroy a ctrl during qp establishment
     - kbuild: fix short log for AS in link-vmlinux.sh
     - nfc/nci: Add the inconsistency check between the input data length and
       count
     - spi: cadence: Ensure data lines set to low during dummy-cycle period
     - null_blk: Do not allow runt zone with zone capacity smaller then zone size
     - nilfs2: fix incorrect inode allocation from reserved inodes
 .
   [ Salvatore Bonaccorso ]
   * [rt] Drop "drm/i915/gt: Queue and wait for the irq_work item."
   *  Bump ABI to 23
   * Drop now unknown config options for DRM_VMWGFX_FBCON
   * Refresh "firmware: Remove redundant log messages from drivers"
   * d/rules.real: Revert workaround to explicitly remove executable bits from
     dtb files (implemented upstream)
   * [rt] Update to 6.1.96-rt35

linux-signed-i386 (6.1.106+3) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.106-3
 .
   * udp: allow header check for dodgy GSO_UDP_L4 packets.
   * gso: fix dodgy bit handling for GSO_UDP_L4
   * net: more strict VIRTIO_NET_HDR_GSO_UDP_L4 validation
   * net: drop bad gso csum_start and offset in virtio_net_hdr (Closes: #1079684)
   * Bump ABI to 25
linux-signed-i386 (6.1.106+2) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.106-2
 .
   * media: solo6x10: replace max(a, min(b, c)) by clamp(b, a, c)
linux-signed-i386 (6.1.99+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.99-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.99
     - Revert "usb: xhci: prevent potential failure in handle_tx_event() for
       Transfer events without TRB"
linux-signed-i386 (6.1.98+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.98-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.95
     - wifi: mac80211: mesh: Fix leak of mesh_preq_queue objects
     - wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup()
     - wifi: cfg80211: fully move wiphy work to unbound workqueue
     - wifi: cfg80211: Lock wiphy in cfg80211_get_station
     - wifi: cfg80211: pmsr: use correct nla_get_uX functions
     - wifi: iwlwifi: mvm: revert gen2 TX A-MPDU size to 64
     - wifi: iwlwifi: dbg_ini: move iwl_dbg_tlv_free outside of debugfs ifdef
     - wifi: iwlwifi: mvm: check n_ssids before accessing the ssids
     - wifi: iwlwifi: mvm: don't read past the mfuart notifcation
     - wifi: mac80211: correctly parse Spatial Reuse Parameter Set element
     - ax25: Fix refcount imbalance on inbound connections
     - ax25: Replace kfree() in ax25_dev_free() with ax25_dev_put()
     - [armhf] net/ncsi: Simplify Kconfig/dts control flow
     - [armhf] net/ncsi: Fix the multi thread manner of NCSI driver
     - ipv6: ioam: block BH from ioam6_output()
     - ipv6: sr: block BH in seg6_output_core() and seg6_input_core()
     - bpf: Set run context for rawtp test_run callback
     - net/smc: avoid overwriting when adjusting sock bufsizes
     - net: sched: sch_multiq: fix possible OOB write in multiq_tune()
       (CVE-2024-36978)
     - vxlan: Fix regression when dropping packets due to invalid src addresses
     - tcp: count CLOSE-WAIT sockets for TCP_MIB_CURRESTAB
     - net/mlx5: Stop waiting for PCI up if teardown was triggered
     - net/mlx5: Stop waiting for PCI if pci channel is offline
     - net/mlx5: Split function_setup() to enable and open functions
     - net/mlx5: Always stop health timer during driver removal
     - net/mlx5: Fix tainted pointer delete is case of flow rules creation fail
     - ptp: Fix error message on failed pin verification
     - ice: fix iteration of TLVs in Preserved Fields Area
     - ice: Introduce new parameters in ice_sched_node
     - ice: remove null checks before devm_kfree() calls
     - ice: remove af_xdp_zc_qps bitmap
     - net: wwan: iosm: Fix tainted pointer delete is case of region creation
       fail
     - af_unix: Set sk->sk_state under unix_state_lock() for truly disconencted
       peer.
     - af_unix: Annodate data-races around sk->sk_state for writers.
     - af_unix: Annotate data-race of sk->sk_state in unix_inq_len().
     - af_unix: Annotate data-races around sk->sk_state in unix_write_space() and
       poll().
     - af_unix: Annotate data-race of sk->sk_state in unix_stream_connect().
     - af_unix: Annotate data-races around sk->sk_state in sendmsg() and
       recvmsg().
     - af_unix: Annotate data-race of sk->sk_state in unix_stream_read_skb().
     - af_unix: Annotate data-races around sk->sk_state in UNIX_DIAG.
     - af_unix: Annotate data-race of net->unx.sysctl_max_dgram_qlen.
     - af_unix: Use unix_recvq_full_lockless() in unix_stream_connect().
     - af_unix: annotate lockless accesses to sk->sk_err
     - af_unix: Use skb_queue_empty_lockless() in unix_release_sock().
     - af_unix: Use skb_queue_len_lockless() in sk_diag_show_rqlen().
     - af_unix: Annotate data-race of sk->sk_shutdown in sk_diag_fill().
     - ipv6: fix possible race in __fib6_drop_pcpu_from()
     - Bluetooth: qca: fix invalid device address check
     - btrfs: fix wrong block_start calculation for btrfs_drop_extent_map_range()
     - usb: gadget: f_fs: use io_data->status consistently
     - usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete
     - iio: accel: mxc4005: allow module autoloading via OF compatible
     - iio: accel: mxc4005: Reset chip on probe() and resume()
     - xtensa: stacktrace: include <asm/ftrace.h> for prototype
     - xtensa: fix MAKE_PC_FROM_RA second argument
     - drm/amd/display: drop unnecessary NULL checks in debugfs
     - drm/amd/display: Fix incorrect DSC instance for MST
     - [arm64] dts: qcom: sm8150: align TLMM pin configuration with DT schema
     - [arm64] dts: qcom: sa8155p-adp: fix SDHC2 CD pin configuration
     - misc/pvpanic: deduplicate common code
     - misc/pvpanic-pci: register attributes via pci_driver
     - serial: sc16is7xx: replace hardcoded divisor value with BIT() macro
     - serial: sc16is7xx: fix bug in sc16is7xx_set_baud() when using prescaler
     - mmc: davinci: Don't strip remove function when driver is builtin
     - firmware: qcom_scm: disable clocks if qcom_scm_bw_enable() fails
     - HID: i2c-hid: elan: Add ili9882t timing
     - HID: i2c-hid: elan: fix reset suspend current leakage
     - i2c: add fwnode APIs
     - i2c: acpi: Unbind mux adapters before delete
     - mm, vmalloc: fix high order __GFP_NOFAIL allocations
     - mm/vmalloc: fix vmalloc which may return null if called with __GFP_NOFAIL
     - wifi: ath10k: fix QCOM_RPROC_COMMON dependency
     - btrfs: remove unnecessary prototype declarations at disk-io.c
     - btrfs: make btrfs_destroy_delayed_refs() return void
     - btrfs: fix leak of qgroup extent records after transaction abort
     - nilfs2: return the mapped address from nilfs_get_page()
     - nilfs2: fix nilfs_empty_dir() misjudgment and long loop on I/O errors
     - io_uring: check for non-NULL file pointer in io_file_can_poll()
     - USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages
     - USB: xen-hcd: Traverse host/ when CONFIG_USB_XEN_HCD is selected
     - usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps
     - usb: typec: tcpm: Ignore received Hard Reset in TOGGLING state
     - mei: me: release irq in mei_me_pci_resume error path
     - tty: n_tty: Fix buffer offsets when lookahead is used
     - landlock: Fix d_parent walk
     - jfs: xattr: fix buffer overflow for invalid xattr
     - xhci: Set correct transferred length for cancelled bulk transfers
     - xhci: Apply reset resume quirk to Etron EJ188 xHCI host
     - xhci: Handle TD clearing for multiple streams case
     - xhci: Apply broken streams quirk to Etron EJ188 xHCI host
     - [x86] thunderbolt: debugfs: Fix margin debugfs node creation condition
     - scsi: mpi3mr: Fix ATA NCQ priority support
     - scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory
     - scsi: sd: Use READ(16) when reading block zero on large capacity disks
       (Closes: #1067858)
     - gve: Clear napi->skb before dev_kfree_skb_any()
     - [powerpc*] uaccess: Fix build errors seen with GCC 13/14
     - Input: try trimming too long modalias strings (Closes: #983357)
     - cxl/test: Add missing vmalloc.h for tools/testing/cxl/test/mem.c
     - cachefiles: add output string to cachefiles_obj_[get|put]_ondemand_fd
     - cachefiles: remove requests from xarray during flushing requests
     - cachefiles: introduce object ondemand state
     - cachefiles: extract ondemand info field from cachefiles_object
     - cachefiles: resend an open request if the read request's object is closed
     - cachefiles: add spin_lock for cachefiles_ondemand_info
     - cachefiles: add restore command to recover inflight ondemand read requests
     - cachefiles: fix slab-use-after-free in cachefiles_ondemand_get_fd()
     - cachefiles: fix slab-use-after-free in cachefiles_ondemand_daemon_read()
     - cachefiles: remove err_put_fd label in cachefiles_ondemand_daemon_read()
     - cachefiles: never get a new anonymous fd if ondemand_id is valid
     - cachefiles: defer exposing anon_fd until after copy_to_user() succeeds
     - cachefiles: flush all requests after setting CACHEFILES_DEAD
     - selftests/ftrace: Fix to check required event file
     - clk: sifive: Do not register clkdevs for PRCI clocks
     - NFSv4.1 enforce rootpath check in fs_location query
     - SUNRPC: return proper error from gss_wrap_req_priv
     - NFS: add barriers when testing for NFS_FSDATA_BLOCKED (Closes: #1071501)
     - [x86] platform/x86: dell-smbios: Fix wrong token data in sysfs
     - gpio: tqmx86: fix typo in Kconfig label
     - gpio: tqmx86: remove unneeded call to platform_set_drvdata()
     - gpio: tqmx86: introduce shadow register for GPIO output value
     - gpio: tqmx86: Convert to immutable irq_chip
     - gpio: tqmx86: store IRQ trigger type and unmask status separately
     - gpio: tqmx86: fix broken IRQ_TYPE_EDGE_BOTH interrupt type
     - HID: core: remove unnecessary WARN_ON() in implement()
     - iommu/amd: Fix sysfs leak in iommu init
     - HID: logitech-dj: Fix memory leak in logi_dj_recv_switch_to_dj_mode()
     - drm/vmwgfx: Port the framebuffer code to drm fb helpers
     - drm/vmwgfx: Refactor drm connector probing for display modes
     - drm/vmwgfx: Filter modes which exceed graphics memory
     - drm/vmwgfx: 3D disabled should not effect STDU memory limits
     - drm/vmwgfx: Remove STDU logic from generic mode_valid function
     - net: sfp: Always call `sfp_sm_mod_remove()` on remove
     - net: hns3: fix kernel crash problem in concurrent scenario
     - net: hns3: add cond_resched() to hns3 ring buffer init process
     - liquidio: Adjust a NULL pointer handling path in lio_vf_rep_copy_packet
     - drm/komeda: check for error-valued pointer
     - drm/bridge/panel: Fix runtime warning on panel bridge release
     - tcp: fix race in tcp_v6_syn_recv_sock()
     - geneve: Fix incorrect inner network header offset when innerprotoinherit
       is set
     - net/mlx5e: Fix features validation check for tunneled UDP (non-VXLAN)
       packets
     - Bluetooth: L2CAP: Fix rejecting L2CAP_CONN_PARAM_UPDATE_REQ
     - netfilter: ipset: Fix race between namespace cleanup and gc in the
       list:set type
     - net: pse-pd: Use EOPNOTSUPP error code instead of ENOTSUPP
     - gve: ignore nonrelevant GSO type bits when processing TSO headers
     - net: stmmac: replace priv->speed with the portTransmitRate from the tc-cbs
       parameters
     - nvmet-passthru: propagate status from id override functions
     - net/ipv6: Fix the RT cache flush via sysctl using a previous delay
     - net: bridge: mst: pass vlan group directly to br_mst_vlan_set_state
     - net: bridge: mst: fix suspicious rcu usage in br_mst_set_state
     - ionic: fix use after netif_napi_del()
     - af_unix: Read with MSG_PEEK loops if the first unread byte is OOB
     - bnxt_en: Adjust logging of firmware messages in case of released token in
       __hwrm_send()
     - misc: microchip: pci1xxxx: fix double free in the error handling of
       gp_aux_bus_probe() (CVE-2024-36973)
     - [x86] boot: Don't add the EFI stub to targets, again
     - iio: adc: ad9467: fix scan type sign
     - iio: dac: ad5592r: fix temperature channel scaling value
     - iio: imu: inv_icm42600: delete unneeded update watermark call
     - drivers: core: synchronize really_probe() and dev_uevent()
     - drm/exynos/vidi: fix memory leak in .get_modes()
     - drm/exynos: hdmi: report safe 640x480 mode as a fallback when no EDID
       found
     - mptcp: ensure snd_una is properly initialized on connect
     - mptcp: pm: inc RmAddr MIB counter once per RM_ADDR ID
     - irqchip/gic-v3-its: Fix potential race condition in its_vlpi_prop_update()
     - [x86] amd_nb: Check for invalid SMN reads
     - perf/core: Fix missing wakeup when waiting for context reference
     - riscv: fix overlap of allocated page and PTR_ERR
     - tracing/selftests: Fix kprobe event name test for .isra. functions
     - null_blk: Print correct max open zones limit in null_init_zoned_dev()
     - sock_map: avoid race between sock_map_close and sk_psock_put
     - vmci: prevent speculation leaks by sanitizing event in event_deliver()
     - spmi: hisi-spmi-controller: Do not override device identifier
     - knfsd: LOOKUP can return an illegal error value
     - fs/proc: fix softlockup in __read_vmcore
     - ocfs2: use coarse time for new created files
     - ocfs2: fix races between hole punching and AIO+DIO
     - PCI: rockchip-ep: Remove wrong mask on subsys_vendor_id
     - dmaengine: axi-dmac: fix possible race in remove()
     - remoteproc: k3-r5: Wait for core0 power-up before powering up core1
     - remoteproc: k3-r5: Do not allow core1 to power up before core0 via sysfs
     - [x86] drm/i915/gt: Disarm breadcrumbs if engines are already idle
     - [x86] drm/i915/dpt: Make DPT object unshrinkable
     - [x86] intel_th: pci: Add Granite Rapids support
     - [x86] intel_th: pci: Add Granite Rapids SOC support
     - [x86] intel_th: pci: Add Sapphire Rapids SOC support
     - [x86] intel_th: pci: Add Meteor Lake-S support
     - [x86] intel_th: pci: Add Lunar Lake support
     - btrfs: zoned: introduce a zone_info struct in
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out per-zone logic from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out single bg handling from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: factor out DUP bg handling from
       btrfs_load_block_group_zone_info
     - btrfs: zoned: fix use-after-free due to race with dev replace
     - nilfs2: fix potential kernel bug due to lack of writeback flag waiting
     - tick/nohz_full: Don't abuse smp_call_function_single() in
       tick_setup_device()
     - mm/huge_memory: don't unpoison huge_zero_folio
     - mm/memory-failure: fix handling of dissolved but not taken off from buddy
       pages
     - serial: 8250_pxa: Configure tx_loadsz to match FIFO IRQ level
     - mptcp: pm: update add_addr counters after connect
     - Revert "fork: defer linking file vma until vma is fully initialized"
     - remoteproc: k3-r5: Jump to error handling labels in start/stop errors
     - cachefiles, erofs: Fix NULL deref in when cachefiles is not doing
       ondemand-mode
     - Bluetooth: qca: fix wcn3991 device address check
     - Bluetooth: qca: generalise device address check
     - greybus: Fix use-after-free bug in gb_interface_release due to race
       condition.
     - serial: 8250_dw: fall back to poll if there's no interrupt
     - serial: core: Add UPIO_UNKNOWN constant for unknown port type
     - usb-storage: alauda: Check whether the media is initialized
       (CVE-2024-38619)
     - misc: microchip: pci1xxxx: Fix a memory leak in the error handling of
       gp_aux_bus_probe()
     - i2c: at91: Fix the functionality flags of the slave-only interface
     - i2c: designware: Fix the functionality flags of the slave-only interface
     - zap_pid_ns_processes: clear TIF_NOTIFY_SIGNAL along with TIF_SIGPENDING
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.96
     - padata: Disable BH when taking works lock on MT path
     - io_uring/sqpoll: work around a potential audit memory leak
     - block/ioctl: prefer different overflow check
     - batman-adv: bypass empty buckets in batadv_purge_orig_ref()
     - wifi: ath9k: work around memset overflow warning
     - af_packet: avoid a false positive warning in packet_setsockopt()
     - drop_monitor: replace spin_lock by raw_spin_lock
     - scsi: qedi: Fix crash while reading debugfs attribute
     - net/sched: fix false lockdep warning on qdisc root lock
     - net: dsa: realtek: keep default LED state in rtl8366rb
     - netpoll: Fix race condition in netpoll_owner_active
     - wifi: mt76: mt7921s: fix potential hung tasks during chip recovery
     - HID: Add quirk for Logitech Casa touchpad
     - HID: asus: fix more n-key report descriptors if n-key quirked
     - Bluetooth: ath3k: Fix multiple issues reported by checkpatch.pl
     - drm/amd/display: Exit idle optimizations before HDCP execution
     - [x86] platform/x86: toshiba_acpi: Add quirk for buttons on Z830
     - [x86] ASoC: Intel: sof_sdw: add JD2 quirk for HP Omen 14
     - [arm64,armhf] drm/lima: add mask irq callback to gp and pp
     - [arm64,armhf] drm/lima: mask irqs in timeout path before hard reset
     - ALSA: hda/realtek: Add quirks for Lenovo 13X
     - [powerpc*] pseries: Enforce hcall result buffer validity and size
     - [powerpc*] io: Avoid clang null pointer arithmetic warnings
     - [x86] platform/x86: p2sb: Don't init until unassigned resources have been
       assigned
     - power: supply: cros_usbpd: provide ID table for avoiding fallback match
     - [arm64] iommu/arm-smmu-v3: Free MSIs in case of ENOMEM
     - f2fs: remove clear SB_INLINECRYPT flag in default_options
     - usb: misc: uss720: check for incompatible versions of the Belkin F5U002
     - [arm64] usb: dwc3: pci: Don't set "linux,phy_charger_detect" property on
       Lenovo Yoga Tab2 1380
     - udf: udftime: prevent overflow in udf_disk_stamp_to_time()
     - PCI/PM: Avoid D3cold for HP Pavilion 17 PC/1972 PCIe Ports
     - [arm64,armhf] serial: imx: Introduce timeout when waiting on transmitter
       empty
     - serial: exar: adding missing CTI and Exar PCI ids
     - usb: gadget: function: Remove usage of the deprecated ida_simple_xx() API
     - tty: add the option to have a tty reject a new ldisc
     - tracing: Build event generation tests only as modules
     - ALSA: hda/realtek: Remove Framework Laptop 16 from quirks
     - ALSA/hda: intel-dsp-config: Document AVS as dsp_driver option
     - ice: move RDMA init to ice_idc.c
     - ice: avoid IRQ collision to fix init failure on ACPI S3 resume
     - cipso: fix total option length computation
     - bpf: Avoid splat in pskb_pull_reason
     - ALSA: hda/realtek: Enable headset mic on IdeaPad 330-17IKB 81DM
     - netrom: Fix a memory leak in nr_heartbeat_expiry()
     - ipv6: prevent possible NULL deref in fib6_nh_init()
     - ipv6: prevent possible NULL dereference in rt6_probe()
     - xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr()
     - netns: Make get_net_ns() handle zero refcount net
     - qca_spi: Make interrupt remembering atomic
     - net: lan743x: disable WOL upon resume to restore full data path operation
     - net: lan743x: Support WOL at both the PHY and MAC appropriately
     - net: phy: mxl-gpy: enhance delay time required by loopback disable
       function
     - net: phy: mxl-gpy: Remove interrupt mask clearing from config_init
     - net/sched: act_api: rely on rcu in tcf_idr_check_alloc
     - net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
     - tipc: force a dst refcount before doing decryption
     - sched: act_ct: add netns into the key of tcf_ct_flow_table
     - ptp: fix integer overflow in max_vclocks_store
     - net: stmmac: No need to calculate speed divider when offload is disabled
     - virtio_net: checksum offloading handling fix
     - octeontx2-pf: Add error handling to VLAN unoffload handling
     - netfilter: ipset: Fix suspicious rcu_dereference_protected()
     - seg6: fix parameter passing when calling NF_HOOK() in End.DX4 and End.DX6
       behaviors
     - ice: Fix VSI list rule with ICE_SW_LKUP_LAST type
     - bnxt_en: Restore PTP tx_avail count in case of skb_pad() error
     - net: usb: rtl8150 fix unintiatilzed variables in
       rtl8150_get_link_ksettings
     - regulator: core: Fix modpost error "regulator_get_regmap" undefined
     - dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list
     - dmaengine: ioat: Drop redundant pci_enable_pcie_error_reporting()
     - dmaengine: ioatdma: Fix leaking on version mismatch
     - dmaengine: ioat: use PCI core macros for PCIe Capability
     - dmaengine: ioatdma: Fix error path in ioat3_dma_probe()
     - dmaengine: ioatdma: Fix kmemleak in ioat_pci_probe()
     - dmaengine: ioatdma: Fix missing kmem_cache_destroy()
     - regulator: bd71815: fix ramp values
     - [arm64] dts: imx93-11x11-evk: Remove the 'no-sdio' property
     - [arm64] dts: freescale: imx8mm-verdin: enable hysteresis on slow input pin
     - ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is
       fine."
     - firmware: psci: Fix return value from psci_system_suspend()
     - RDMA/mlx5: Add check for srq max_sge attribute
     - net: stmmac: Assign configured channel value to EXTTS event
     - net: usb: ax88179_178a: improve reset check
     - net: do not leave a dangling sk pointer, when socket creation fails
     - btrfs: retry block group reclaim without infinite loop
     - cifs: fix typo in module parameter enable_gcm_256
     - KVM: Fix a data race on last_boosted_vcpu in kvm_vcpu_on_spin()
     - [arm64] KVM: arm64: Disassociate vcpus from redistributor region on
       teardown
     - [x86] KVM: x86: Always sync PIR to IRR prior to scanning I/O APIC routes
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for ProBook 445/465
       G11.
     - ALSA: hda/realtek: Limit mic boost on N14AP7
     - drm/i915/mso: using joiner is not possible with eDP MSO
     - drm/radeon: fix UBSAN warning in kv_dpm.c
     - drm/amdgpu: fix UBSAN warning in kv_dpm.c
     - gcov: add support for GCC 14
     - kcov: don't lose track of remote references during softirqs
     - mm: mmap: allow for the maximum number of bits for randomizing mmap_base
       by default
     - tcp: clear tp->retrans_stamp in tcp_rcv_fastopen_synack()
     - mm/page_table_check: fix crash on ZONE_DEVICE
     - i2c: ocores: set IACK bit after core is enabled
     - dt-bindings: i2c: google,cros-ec-i2c-tunnel: correct path to
       i2c-controller schema
     - [armhf] spi: stm32: qspi: Fix dual flash mode sanity test in
       stm32_qspi_setup()
     - [arm64] dts: imx8qm-mek: fix gpio number for reg_usdhc2_vmmc
     - [armhf] spi: stm32: qspi: Clamp stm32_qspi_get_mode() output to
       CCR_BUSWIDTH_4
     - perf: script: add raw|disasm arguments to --insn-trace option
     - perf script: Show also errors for --insn-trace option
     - [armhf] dts: samsung: smdkv310: fix keypad no-autorepeat
     - [armhf] dts: samsung: exynos4412-origen: fix keypad no-autorepeat
     - [armhf] dts: samsung: smdk4412: fix keypad no-autorepeat
     - pmdomain: ti-sci: Fix duplicate PD referrals
     - tracing: Add MODULE_DESCRIPTION() to preemptirq_delay_test
     - [x86] cpu/vfm: Add new macros to work with (vendor/family/model) values
     - [x86] cpu: Fix x86_match_cpu() to match just X86_VENDOR_INTEL
     - Revert "kheaders: substituting --sort in archive creation"
     - kheaders: explicitly define file modes for archived headers
     - drm/amd/display: revert Exit idle optimizations before HDCP execution
     - net/sched: unregister lockdep keys in qdisc_create/qdisc_alloc error path
     - hid: asus: asus_report_fixup: fix potential read out of bounds
     - Revert "mm: mmap: allow for the maximum number of bits for randomizing
       mmap_base by default"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.97
     - usb: typec: ucsi: Never send a lone connector change ack
     - usb: typec: ucsi: Ack also failed Get Error commands
     - [x86] ACPI: x86: utils: Add Picasso to the list for forcing
       StorageD3Enable
     - [x86] ACPI: x86: Force StorageD3Enable on more products
     - Input: ili210x - fix ili251x_read_touch_data() return value
     - pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER
     - [arm64,armhf] pinctrl: rockchip: fix pinmux bits for RK3328 GPIO2-B pins
     - [arm64,armhf] pinctrl: rockchip: fix pinmux bits for RK3328 GPIO3-B pins
     - [arm64,armhf] pinctrl: rockchip: use dedicated pinctrl type for RK3328
     - [arm64,armhf] pinctrl: rockchip: fix pinmux reset in rockchip_pmx_set
     - [mips*] pci: lantiq: restore reset gpio polarity
     - dt-bindings: i2c: Drop unneeded quotes
     - dt-bindings: i2c: atmel,at91sam: correct path to i2c-controller schema
     - netfilter: nf_tables: use timestamp to check for set element timeout
       (CVE-2024-27397)
     - [arm64] ASoC: rockchip: i2s-tdm: Fix trcm mode by setting clock on right
       mclk
     - [s390x] pci: Add missing virt_to_phys() for directed DIBV
     - ASoC: amd: acp: remove i2s configuration check in acp_i2s_probe()
     - [arm64] ASoC: fsl-asoc-card: set priv->pdev before using it
     - net: dsa: microchip: fix initial port flush problem
     - bpf: Fix overrunning reservations in ringbuf
     - ibmvnic: Free any outstanding tx skbs during scrq reset
     - net: phy: micrel: add Microchip KSZ 9477 to the device table
     - net: dsa: microchip: use collision based back pressure mode
     - xdp: Remove WARN() from __xdp_reg_mem_model()
     - Fix race for duplicate reqsk on identical SYN
     - net: dsa: microchip: fix wrong register write when masking interrupt
     - [powerpc*] restore some missing spu syscalls
     - tcp: fix tcp_rcv_fastopen_synack() to enter TCP_CA_Loss for failed TFO
     - netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data
       registers
     - bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro()
     - [x86] fpu: Fix AMD X86_BUG_FXSAVE_LEAK fixup
     - mtd: partitions: redboot: Added conversion of operands to a larger type
     - wifi: ieee80211: check for NULL in ieee80211_mle_size_ok()
     - bpf: Add a check for struct bpf_fib_lookup size
     - bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode
     - RDMA/restrack: Fix potential invalid address access
     - net/iucv: Avoid explicit cpumask var allocation on stack
     - net/dpaa2: Avoid explicit cpumask var allocation on stack
     - crypto: ecdh - explicitly zeroize private_key
     - ALSA: emux: improve patch ioctl data validation
     - media: dvbdev: Initialize sbuf
     - soc: ti: wkup_m3_ipc: Send NULL dummy message instead of pointer message
     - drm/radeon/radeon_display: Decrease the size of allocated memory
     - nvme: fixup comment for nvme RDMA Provider Type
     - drm/panel: simple: Add missing display timing flags for KOE TX26D202VM0BWA
     - [arm64] gpio: davinci: Validate the obtained number of IRQs
     - drm/amd/amdgpu: Fix style errors in amdgpu_drv.c & amdgpu_device.c
     - drm/amdgpu: Fix pci state save during mode-1 reset
     - gpiolib: cdev: Disallow reconfiguration without direction (uAPI v1)
     - randomize_kstack: Remove non-functional per-arch entropy filtering
     - ima: Fix use-after-free on a dentry's dname.name
     - [x86] stop playing stack games in profile_pc()
     - Revert "MIPS: pci: lantiq: restore reset gpio polarity"
     - [arm64] pinctrl: qcom: spmi-gpio: drop broken pm8008 support
     - ocfs2: fix DIO failure due to insufficient transaction credits
     - nfs: drop the incorrect assertion in nfs_swap_rw()
     - mmc: sdhci-brcmstb: check R1_STATUS for erase/trim/discard
     - mmc: sdhci-pci: Convert PCIBIOS_* return codes to errnos
     - mmc: sdhci: Do not invert write-protect twice
     - mmc: sdhci: Do not lock spinlock around mmc_gpio_get_ro()
     - iio: xilinx-ams: Don't include ams_ctrl_channels in scan_mask
     - counter: ti-eqep: enable clock at probe
     - i2c: testunit: don't erase registers after STOP
     - i2c: testunit: discard write requests while old command is running
     - iio: adc: ad7266: Fix variable checking bug
     - iio: accel: fxls8962af: select IIO_BUFFER & IIO_KFIFO_BUF
     - net: usb: ax88179_178a: improve link status logs
     - usb: gadget: printer: SS+ support
     - usb: gadget: printer: fix races against disable (CVE-2024-25741)
     - usb: musb: da8xx: fix a resource leak in probe()
     - usb: atm: cxacru: fix endpoint checking in cxacru_bind()
     - usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to
       avoid deadlock
     - usb: gadget: aspeed_udc: fix device address configuration
     - usb: ucsi: stm32: fix command completion handling
     - serial: 8250_omap: Implementation of Errata i2310
     - serial: imx: set receiver level before starting uart
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for EliteBook 645/665
       G11.
     - tty: mcf: MCF54418 has 10 UARTS
     - net: can: j1939: Initialize unused data in j1939_send_one()
     - net: can: j1939: recover socket queue on CAN bus error during BAM
       transmission
     - net: can: j1939: enhanced error handling for tightly received RTS messages
       in xtp_rx_rts_session_new
     - cpufreq: intel_pstate: Use HWP to initialize ITMT if CPPC is missing
     - cpu/hotplug: Fix dynstate assignment in __cpuhp_setup_state_cpuslocked()
     - irqchip/loongson-liointc: Set different ISRs for different cores
     - kbuild: Install dtb files as 0644 in Makefile.dtbinst
     - btrfs: zoned: fix initial free space detection
     - csky, hexagon: fix broken sys_sync_file_range
     - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes
     - drm/amdgpu: avoid using null object of framebuffer
     - [x86] drm/i915/gt: Fix potential UAF by revoke of fence registers
     - drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes
     - drm/amdgpu/atomfirmware: fix parsing of vram_info
     - batman-adv: Don't accept TT entries for out-of-spec VIDs
     - can: mcp251xfd: fix infinite loop when xmit fails
     - ata: ahci: Clean up sysfs file on error
     - ata: libata-core: Fix double free on error
     - ftruncate: pass a signed offset
     - syscalls: fix compat_sys_io_pgetevents_time64 usage
     - syscalls: fix sys_fanotify_mark prototype
     - Revert "cpufreq: amd-pstate: Fix the inconsistency in max frequency units"
     - mm/page_alloc: Separate THP PCP into movable and non-movable categories
     - gfs2: Fix slab-use-after-free in gfs2_qd_dealloc (CVE-2023-52760)
     - efi: memmap: Move manipulation routines into x86 arch tree
     - efi: xen: Set EFI_PARAVIRT for Xen dom0 boot on all architectures
     - [x86] efi/x86: Free EFI memory map only when installing a new one.
     - [arm64] dts: rockchip: Fix SD NAND and eMMC init on rk3308-rock-pi-s
     - [arm64] dts: rockchip: Rename LED related pinctrl nodes on
       rk3308-rock-pi-s
     - [arm64] dts: rockchip: fix PMIC interrupt pin on ROCK Pi E
     - [arm64] dts: rockchip: Add sound-dai-cells for RK3368
     - serial: imx: only set receiver level if it is zero
     - serial: 8250_omap: Fix Errata i2310 with RX FIFO level check
     - tracing/net_sched: NULL pointer dereference in perf_trace_qdisc_reset()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.98
     - locking/mutex: Introduce devm_mutex_init()
     - crypto: hisilicon/debugfs - Fix debugfs uninit process issue
     - [arm64,armhf] drm/lima: fix shared irq handling on driver remove
     - [powerpc*] Avoid nmi_enter/nmi_exit in real mode interrupt.
     - media: dvb: as102-fe: Fix as10x_register_addr packing
     - media: dvb-usb: dib0700_devices: Add missing release_firmware()
     - IB/core: Implement a limit on UMAD receive List
     - scsi: qedf: Make qedf_execute_tmf() non-preemptible
     - crypto: aead,cipher - zeroize key buffer after use
     - drm/amdgpu: Fix uninitialized variable warnings
     - drm/amdgpu: Initialize timestamp for some legacy SOCs
     - drm/amd/display: Check index msg_id before read or write
     - drm/amd/display: Check pipe offset before setting vblank
     - drm/amd/display: Skip finding free audio for unknown engine_id
     - drm/amdgpu: fix uninitialized scalar variable warning
     - media: dw2102: Don't translate i2c read into write
     - sctp: prefer struct_size over open coded arithmetic
     - firmware: dmi: Stop decoding on broken entry
     - Input: ff-core - prefer struct_size over open coded arithmetic
     - usb: xhci: prevent potential failure in handle_tx_event() for Transfer
       events without TRB
     - wifi: mt76: replace skb_put with skb_put_zero
     - [arm64,armhf] net: dsa: mv88e6xxx: Correct check for empty list
     - media: dvb-frontends: tda18271c2dd: Remove casting during div
     - media: s2255: Use refcount_t instead of atomic_t for num_channels
     - media: dvb-frontends: tda10048: Fix integer overflow
     - i2c: i801: Annotate apanel_addr as __ro_after_init
     - [powerpc*] 64: Set _IO_BASE to POISON_POINTER_DELTA not 0 for CONFIG_PCI=n
     - orangefs: fix out-of-bounds fsid access
     - kunit: Fix timeout message
     - [powerpc*] xmon: Check cpu id in commands "c#", "dp#" and "dx#"
     - igc: fix a log entry using uninitialized netdev
     - bpf: Avoid uninitialized value in BPF_CORE_READ_BITFIELD
     - f2fs: check validation of fault attrs in f2fs_build_fault_attr()
     - scsi: mpi3mr: Sanitise num_phys
     - serial: imx: Raise TX trigger level to 8
     - jffs2: Fix potential illegal address access in jffs2_free_inode
     - [s390x] pkey: Wipe sensitive data on failure
     - btrfs: scrub: initialize ret in scrub_simple_mirror() to fix compilation
       warning
     - cdrom: rearrange last_media_change check to avoid unintentional overflow
     - mac802154: fix time calculation in ieee802154_configure_durations()
     - UPSTREAM: tcp: fix DSACK undo in fast recovery to call tcp_try_to_open()
     - net/mlx5: E-switch, Create ingress ACL when needed
     - net/mlx5e: Add mqprio_rl cleanup and free in mlx5e_priv_cleanup()
     - tcp_metrics: validate source addr length
     - [s390x] KVM: s390: fix LPSWEY handling
     - e1000e: Fix S0ix residency on corporate systems
     - net: allow skb_datagram_iter to be called from any context
     - net: ntb_netdev: Move ntb_netdev_rx_handler() to call netif_rx() from
       __netif_rx()
     - wifi: wilc1000: fix ies_len type in connect path
     - netfilter: nf_tables: unconditionally flush pending work before notifier
     - bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set()
       (CVE-2024-39487)
     - inet_diag: Initialize pad field in struct inet_diag_req_v2
     - [x86] platform/x86: toshiba_acpi: Fix quickstart quirk handling
     - Revert "igc: fix a log entry using uninitialized netdev"
     - nilfs2: fix inode number range checks
     - nilfs2: add missing check for inode numbers on directory entries
     - mm: optimize the redundant loop of mm_update_owner_next()
     - mm: avoid overflows in dirty throttling logic
     - btrfs: fix adding block group to a reclaim list and the unused list during
       reclaim
     - f2fs: Add inline to f2fs_build_fault_attr() stub
     - scsi: mpi3mr: Use proper format specifier in mpi3mr_sas_port_add()
     - Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm reboot
     - can: kvaser_usb: Explicitly initialize family in leafimx driver_info
       struct
     - fsnotify: Do not generate events for O_PATH file descriptors
     - Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(),
       again"
     - drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes
     - drm/amdgpu/atomfirmware: silence UBSAN warning
     - drm: panel-orientation-quirks: Add quirk for Valve Galileo
     - [powerpc*] pseries: Fix scv instruction crash with kexec
     - mtd: rawnand: Ensure ECC configuration is propagated to upper layers
     - mtd: rawnand: Bypass a couple of sanity checks during NAND identification
     - mtd: rawnand: rockchip: ensure NVDDR timings are rejected
     - bnx2x: Fix multiple UBSAN array-index-out-of-bounds
     - [arm64] dts: rockchip: Fix the DCDC_REG2 minimum voltage on Quartz64 Model
       B
     - ima: Avoid blocking in RCU read-side critical section
     - media: dw2102: fix a potential buffer overflow
     - clk: qcom: gcc-sm6350: Fix gpll6* & gpll7 parents
     - clk: mediatek: clk-mtk: Register MFG notifier in mtk_clk_simple_probe()
     - clk: mediatek: mt8183: Only enable runtime PM on mt8183-mfgcfg
     - i2c: pnx: Fix potential deadlock warning from del_timer_sync() call in isr
     - ALSA: hda/realtek: Enable headset mic of JP-IK LEAP W502 with ALC897
     - nvme-multipath: find NUMA path only for online numa-node
     - dma-mapping: benchmark: avoid needless copy_to_user if benchmark fails
     - nvme: adjust multiples of NVME_CTRL_PAGE_SIZE in offset
     - regmap-i2c: Subtract reg size from max_write
     - [x86] platform/x86: touchscreen_dmi: Add info for GlobalSpace SolT IVW
       11.6" tablet
     - [x86] platform/x86: touchscreen_dmi: Add info for the EZpad 6s Pro
     - nvmet: fix a possible leak when destroy a ctrl during qp establishment
     - kbuild: fix short log for AS in link-vmlinux.sh
     - nfc/nci: Add the inconsistency check between the input data length and
       count
     - spi: cadence: Ensure data lines set to low during dummy-cycle period
     - null_blk: Do not allow runt zone with zone capacity smaller then zone size
     - nilfs2: fix incorrect inode allocation from reserved inodes
 .
   [ Salvatore Bonaccorso ]
   * [rt] Drop "drm/i915/gt: Queue and wait for the irq_work item."
   *  Bump ABI to 23
   * Drop now unknown config options for DRM_VMWGFX_FBCON
   * Refresh "firmware: Remove redundant log messages from drivers"
   * d/rules.real: Revert workaround to explicitly remove executable bits from
     dtb files (implemented upstream)
   * [rt] Update to 6.1.96-rt35

newlib (3.3.0-1.3+deb12u1) bookworm; urgency=medium
 .
   * Team approved upload.
   * Changed maintainer to reflect the ones listed in unstable.
   * Added mallocr-CVE-2021-3420.patch to solve incorrect overflow
     check in malloc and friends (Closes: #984446).

nova (2:26.2.2-1~deb12u3) bookworm-security; urgency=high
 .
   * CVE-2024-40767: Regression VMDK/qcow arbitrary file access (CVE-2024-32498)
     Applied upstream patches (Closes: #1076774):
     - CVE-2024-40767_1_port_format_inspector_tests_from_glance_antelope.patch
     - CVE-2024-40767_2_Reproduce_iso_regression_with_deep_format_inspection_antelope.patch
     - CVE-2024-40767_3_Add-iso-file-format-inspector_antelope.patch
     - CVE-2024-40767_4_Change-force_format-strategy-to-catch-mismatches_antelope.patch
   * Add qemu-utils as build-depends to run new tests.

numpy (1:1.24.2-1+deb12u1) bookworm; urgency=medium
 .
   * Declare conflict with python-numpy due to f2py (Closes: #1053649)

openjdk-17 (17.0.12+7-2~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm
openjdk-17 (17.0.12+7-2~deb11u1) bullseye-security; urgency=medium
 .
   * Build for bullseye
openjdk-17 (17.0.12+7-1) unstable; urgency=medium
 .
   * OpenJDK 17.0.12 release, build 7.
openjdk-17 (17.0.12~6ea-1) unstable; urgency=medium
 .
   * OpenJDK 17.0.12 early access, build 6.
 .
   [ Vladimir Petko ]
   * d/p/8295111.patch: Apply upstream patch to resolve jpackage failure
     to create a deb package.
   * d/t/problems-i386.txt: Update i386 test exclusions.
   * d/t/problems-armhf.txt: Update armhf test exclusions.
   * d/p/jdk-8307977.patch: Rename patch.
   * d/p/jdk-8334502-proposed.patch: Add proposed fix for iso8601 time format
     on ARM32.
   * d/p/jdk-8334895-proposed.patch: Add proposed fix for configuration failure
     when CDS is disabled on arm64.
   * d/control: Regenerate control.
   * d/rules: Enable early access release.
   * d/rules: Enable jtreg tests.
   * d/rules: Include /usr/share/dpkg/buildflags.mk to avoid configure failure
     due to the undefined variables.
   * d/p/jdk-8325567.patch: jspawnhelper without args fails with segfault.
     LP: #2055280.
   * d/p/jdk-8331541.patch: Add fix for the link failure against libjvm.so on
     i386. Closes: #1057715.
 .
   [ Matthias Klose ]
   * Build using GCC 10 for focal.
openjdk-17 (17.0.11+9-1) unstable; urgency=high
 .
   * OpenJDK 17.0.11 release, build 9.
     - CVE-2024-21011, 8319851: Improve exception logging.
     - CVE-2024-21068, 8322122: Enhance generation of addresses.
     - 8318340: Improve RSA key implementations.
     - CVE-2024-21012, 8315708: Enhance HTTP/2 client usage.
   * CVE-2024-21094, 8317507: Already fixed in November 2023:
     C2 compilation fails with "Exceeded _node_regs array".

openssh (1:9.2p1-2+deb12u3) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Disable async-signal-unsafe code from the sshsigdie() function

openssl (3.0.14-1~deb12u1) bookworm; urgency=medium
 .
   * Import 3.0.14
     - CVE-2024-2511 (Unbounded memory growth with session handling in TLSv1.3)
       (Closes: #1068658).
     - CVE-2024-4603 (Excessive time spent checking DSA keys and parameters)
       (Closes: #1071972).
     - CVE-2024-4741 (Use After Free with SSL_free_buffers)
       (Closes: #1072113).
openssl (3.0.13-1~deb12u2) bookworm; urgency=medium
 .
   * Revert "Improved detection of engine-provided private "classic"
     keys" (Closes: #1074764).

plasma-workspace (4:5.27.5-2+deb12u2) bookworm-security; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2024-36041: ksmserver: Unauthorized users can access session manager

poe.app (0.5.1-6+deb12u1) bookworm; urgency=medium
 .
   * debian/gbp.conf: New file.
   * debian/control (Vcs-Git): Set branch to bookworm.
   * debian/patches/editable-cells.patch: New; make comment cells editable
     (Closes: #1076829).
   * debian/patches/preferences-draw.patch: New; fix drawing when an
     NSActionCell in the preferences is acted on to change state.
poe.app (0.5.1-6+deb11u1) bullseye; urgency=medium
 .
   * debian/gbp.conf: New file.
   * debian/control (Vcs-Git): Set branch to bullseye.
   * debian/patches/editable-cells.patch: New; make comment cells editable
     (Closes: #1076829).
   * debian/patches/preferences-draw.patch: New; fix drawing when an
     NSActionCell in the preferences is acted on to change state.

postgresql-15 (15.8-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version.
 .
     + Prevent unauthorized code execution during pg_dump (Masahiko Sawada)
 .
       An attacker able to create and drop non-temporary objects could inject
       SQL code that would be executed by a concurrent pg_dump session with the
       privileges of the role running pg_dump (which is often a superuser).
       The attack involves replacing a sequence or similar object with a view
       or foreign table that will execute malicious code.  To prevent this,
       introduce a new server parameter restrict_nonsystem_relation_kind that
       can disable expansion of non-builtin views as well as access to foreign
       tables, and teach pg_dump to set it when available.  Note that the
       attack is prevented only if both pg_dump and the server it is dumping
       from are new enough to have this fix.
 .
       The PostgreSQL Project thanks Noah Misch for reporting this problem.
       (CVE-2024-7348)
 .
     * Refresh debian/patches/focal-arm64-outline-atomics.

putty (0.78-2+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Cherry-pick from upstream:
     - Add an extra HMAC constructor function
     - Fix CVE-2024-31497: biased ECDSA nonce generation allows an attacker
       to recover a user's NIST P-521 secret key via a quick attack in
       approximately 60 signatures. In other words, an adversary
       may already have enough signature information to compromise a victim's
       private key, even if there is no further use of vulnerable PuTTY
       versions.
   * Run test/cryptsuite.py during build.

python-asyncssh (2.10.1-2+deb12u1) bookworm-security; urgency=medium
 .
   * Apply and tweak upstream security fix for CVE-2023-48795
     Implement "strict kex" support to harden AsyncSSH against Terrapin
     Attack. Closes: #1059007

qemu (1:7.2+dfsg-7+deb12u7) bookworm; urgency=medium
 .
   * update to upstream 7.2.13 stable/bugfix release, v7.2.13.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.13 :
     - Update version for 7.2.13 release
     - char-stdio: Restore blocking mode of stdout on exit
     - virtio: remove virtio_tswap16s() call in vring_packed_event_read()
     - block: Parse filenames only when explicitly requested
     - iotests/270: Don't store data-file with json: prefix in image
     - iotests/244: Don't store data-file with protocol in image
     - qcow2: Don't open data_file with BDRV_O_NO_IO
       (Closes: #1075824, CVE-2024-4467)
     - target/arm: Fix VCMLA Dd, Dn, Dm[idx]
     - i386/cpu: fixup number of addressable IDs for processor cores
       in the physical package
     - gitlab-ci: Disable the riscv64-debian-cross-container by default
     - tests: don't run benchmarks for the tsan build
     - tests: Update our CI to use CentOS Stream 9 instead of 8
     - ci, docker: update CentOS and OpenSUSE Python to non-EOL versions
     - Update lcitool and fedora to 37
     - gitlab-ci.d/buildtest: Merge the --without-default-* jobs
     - tcg/loongarch64: Fix tcg_out_movi vs some pcrel pointers
     - linux-user: Make TARGET_NR_setgroups affect only the current thread
     - stdvga: fix screen blanking
     - virtio-net: drop too short packets early
     - target/i386: fix size of EBP writeback in gen_enter()
    * update to upstream 7.2.12 stable/bugfix release, v7.2.12.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.12 :
     - Update version for 7.2.12 release
     - target/loongarch: fix a wrong print in cpu dump
     - ui/sdl2: Allow host to power down screen
     - target/i386: fix SSE and SSE2 feature check
     - target/i386: fix xsave.flat from kvm-unit-tests
     - disas/riscv: Decode all of the pmpcfg and pmpaddr CSRs
     - hw/intc/riscv_aplic: APLICs should add child earlier than realize
     - target/arm: Disable SVE extensions when SVE is disabled
     - hw/intc/arm_gic: Fix handling of NS view of GICC_APR<n>
     - hvf: arm: Fix encodings for ID_AA64PFR1_EL1 and debug System registers
     - gitlab: Update msys2-64bit runner tags
     - target/i386: no single-step exception after MOV or POP SS
     - target/i386: disable jmp_opt if EFLAGS.RF is 1
     - target-i386: hyper-v: Correct kvm_hv_handle_exit return value
     - ui/gtk: Check if fence_fd is equal to or greater than 0
     - ui/gtk: Fix mouse/motion event scaling issue with GTK display backend
     - target/i386: rdpkru/wrpkru are no-prefix instructions
     - target/i386: fix operand size for DATA16 REX.W POPCNT
     - hw/remote/vfio-user: Fix config space access byte order
     - target/i386: Give IRQs a chance when resetting HF_INHIBIT_IRQ_MASK
     - hw/arm/npcm7xx: Store derivative OTP fuse key in little endian
     - hw/dmax/xlnx_dpdma: fix handling of address_extension descriptor fields
     - .gitlab-ci.d/cirrus.yml: Shorten the runtime of the macOS and FreeBSD jobs
     - tests/avocado: update sunxi kernel from armbian to 6.6.16
     - backends/cryptodev-builtin: Fix local_error leaks
     - nbd/server: Mark negotiation functions as coroutine_fn
     - nbd/server: do not poll within a coroutine context
     - linux-user: do_setsockopt: fix SOL_ALG.ALG_SET_KEY
     - gitlab/opensbi: Move to docker:stable
     - gitlab-ci: Remove job building EDK2 firmware binaries

riemann-c-client (1.10.4-2+deb12u1) bookworm; urgency=medium
 .
   * Fix GnuTLS send/recv.
riemann-c-client (1.10.4-2+deb11u1) bullseye; urgency=medium
 .
   * Fix GnuTLS send/recv.

roundcube (1.6.5+dfsg-1+deb12u4) bookworm-security; urgency=medium
 .
   * Regression fix: The original fix for CVE-2024-42008 broke printing and
     other handling of image attachments. (Closes: #1078456)
roundcube (1.6.5+dfsg-1+deb12u3) bookworm-security; urgency=high
 .
   * Cherry pick upstream security fixes from v1.6.8 (closes: #1077969):
     + CVE-2024-42008: Cross-site scripting (XSS) vulnerability in serving of
       attachments other than HTML or SVG.
     + CVE-2024-42009: Cross-site scripting (XSS) vulnerability in
       post-processing of sanitized HTML content.
     + CVE-2024-42010: Fix information leak (access to remote content) via
       insufficient CSS filtering.
   * Cherry pick further upstream changes from v1.6.8:
     + Fix fatal error when parsing some TNEF attachments.
     + Fix bug where an unhandled exception was caused by an invalid image
       attachment.
     + Fix infinite loop when parsing malformed Sieve script.
     + Fix bug where imap_conn_option's 'socket' was ignored.

rustc-web (1.78.0+dfsg1-2~deb12u3) bookworm; urgency=medium
 .
   * Depend on cargo-web for the autopkgtest.
   * Add missing conflicts (closes: #1079744, #1079653, #1076683).
rustc-web (1.78.0+dfsg1-2~deb12u2) bookworm; urgency=medium
 .
   * Also rename rustfmt to rustfmt-web.
rustc-web (1.78.0+dfsg1-2~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Backport rustc 1.78, as required by newer firefox and chromium.
   * Rename rustc backport to rustc-web.
   * Use LLVM 16.
   * Disable wasm, -all, -llvm packages.
   * Vendor libgit2 dependency.
rustc-web (1.78.0+dfsg1-2~deb11u3) bullseye; urgency=medium
 .
   * Depend on cargo-web for the autopkgtest.
   * Add missing conflicts (closes: #1079744, #1079653, #1076683).
rustc-web (1.78.0+dfsg1-2~deb11u2) bullseye; urgency=medium
 .
   * Also rename rustfmt to rustfmt-web.
rustc-web (1.78.0+dfsg1-2~deb11u1) bullseye; urgency=medium
 .
   * Backport to bullseye.
   * Switch pkgconf build-dependency to pkg-config, pkgconf in bullseye
     doesn't provide `triplet`-pkgconf binaries.

shim (15.8-1~deb12u1) bookworm; urgency=medium
 .
   [ Steve McIntyre ]
   * Cope with changes in pesign packaging.
   * New upstream release fixing more bugs
   * Remove all our previous patches, no longer needed:
     + Make-sbat_var.S-parse-right-with-buggy-gcc-binutils.patch (now
       upstream)
     + Enable-NX.patch (we don't want NX just yet until the whole boot
       stack is NX-capable)
     + block-grub-sbat3-debian.patch (not needed now upstream grub SBAT
       is 4)
   * Cherry-pick 2 new patches from upstream for grub revocations:
     + 0001-sbat-Add-grub.peimage-2-to-latest-CVE-2024-2312.patch
     + 0002-sbat-Also-bump-latest-for-grub-4-and-to-todays-date.patch
   * Log if the build is nx-compatible or not
   * Force shim to use the latest revocations by default to block some
     older grub / peimage issues. This is:
     "shim,4\ngrub,4\ngrub.peimage,2\n"
   * Install a copy of the Debian CA certificate into /usr/share/shim.
     Closes: #1069054
   * Clean up better after build. Closes: #1046268
 .
   [ Bastien Roucariès ]
   * Port autopkgtest from ubuntu
   * Import MR-12: "shim-unsigned:amd64 cannot be installed alongside
     shim-unsigned:i386", thanks to adrian15 adrian15 (Closes: #936009).
   * Fix debian/watch and check signature
shim (15.8-1~deb11u1) bullseye; urgency=medium
 .
   * New upstream release fixing more bugs
   * Remove all our previous patches, no longer needed:
     + Make-sbat_var.S-parse-right-with-buggy-gcc-binutils.patch (now
       upstream)
     + Enable-NX.patch (we don't want NX just yet until the whole boot
       stack is NX-capable)
     + block-grub-sbat3-debian.patch (not needed now upstream grub SBAT
       is 4)
   * Cherry-pick 2 new patches from upstream for grub revocations:
     + 0001-sbat-Add-grub.peimage-2-to-latest-CVE-2024-2312.patch
     + 0002-sbat-Also-bump-latest-for-grub-4-and-to-todays-date.patch
   * Log if the build is nx-compatible or not
   * Force shim to use the latest revocations by default to block some
     older grub / peimage issues. This is:
     "shim,4\ngrub,4\ngrub.peimage,2\n"
   * Install a copy of the Debian CA certificate into /usr/share/shim.
     Closes: #1069054
   * Clean up better after build. Closes: #1046268

shim-helpers-amd64-signed (1+15.8+1~deb12u1) bookworm; urgency=medium
 .
   * Update to shim 15.8-1~deb12u1
shim-helpers-amd64-signed (1+15.8+1~deb11u1) bullseye; urgency=medium
 .
   * Update to shim 15.8-1~deb11u1

shim-helpers-arm64-signed (1+15.8+1~deb12u1) bookworm; urgency=medium
 .
   * Update to shim 15.8-1~deb12u1
shim-helpers-arm64-signed (1+15.8+1~deb11u1) bullseye; urgency=medium
 .
   * Update to shim 15.8-1~deb11u1

shim-helpers-i386-signed (1+15.8+1~deb12u1) bookworm; urgency=medium
 .
   * Update to shim 15.8-1~deb12u1
shim-helpers-i386-signed (1+15.8+1~deb11u1) bullseye; urgency=medium
 .
   * Update to shim 15.8-1~deb11u1

shim-signed (1.44~1+deb12u1) bookworm; urgency=medium
 .
   * Build against new signed binaries corresponding to 15.8-1~deb12u1
   * Update build-dep on shim-unsigned to use 15.8-1~deb12u1
   * NOTE: this will block use of older grub binaries with sbat < 4
     + Update Depends on grub2-common to match.
   * Multiple packaging updates backported:
     + Add Romanian translation for debconf templates (thanks to
       Remus-Gabriel Chelu)
     + Stop recommending secureboot-db, we don't have that package
     + Tweak dependencies using substvars (thanks for help from Fabian
       Grünbichler)
shim-signed (1.44~1+deb11u1) bullseye; urgency=medium
 .
   * Build against new signed binaries corresponding to 15.8-1~deb11u1
   * Update build-dep on shim-unsigned to use 15.8-1~deb11u1
   * NOTE: this will block use of older grub binaries with sbat < 4
     + Update Depends on grub2-common to match.
   * Multiple packaging updates backported:
     + Add Romanian translation for debconf templates (thanks to
       Remus-Gabriel Chelu)
     + Stop recommending secureboot-db, we don't have that package
     + Tweak dependencies using substvars (thanks for help from Fabian
       Grünbichler)
shim-signed (1.43) unstable; urgency=medium
 .
   * Fix broken usage of dpkg-query
shim-signed (1.42) unstable; urgency=medium
 .
   * Tweak versioning in runtime dependencies, using substvars
     to make things more automatic in future.
shim-signed (1.41) unstable; urgency=medium
 .
   * Build against new signed binaries corresponding to 15.8-1
     + Closes: #1071215
   * NOTE: Stop building packages for i386. The number of functioning
     i386 Secure Boot machines is approximately zero at this point.
   * Tweak packaging:
     + Switch from debian/compat to build-dep on debhelper-compat
       (= 13)
shim-signed (1.40) unstable; urgency=medium
 .
   * Stop recommending secureboot-db, we don't have that package.
     Closes: #1042964, #1041449, #932358
   * Add Romanian translation for debconf templates, thanks to
     Remus-Gabriel Chelu. Closes: #1039090

squid (5.7-2+deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2024-37894 (Closes: #1074284)

systemd (252.30-1~deb12u2) bookworm; urgency=medium
 .
   * Backport patch to revert new comment in /etc/systemd/journald.conf.
     Avoid dpkg prompt on upgrade
systemd (252.30-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.30
   * Refresh patches to remove fuzz from 252.30
systemd (252.29-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.29 (Closes: #1074789)
systemd (252.29-1~deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports
 .
 systemd (252.29-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.29 (Closes: #1074789)
 .
 systemd (252.28-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.28 (Closes: #1074789)
 .
 systemd (252.27-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.27
systemd (252.28-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.28 (Closes: #1074789)
systemd (252.27-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.27

usb.ids (2024.07.04-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream version.
usb.ids (2024.07.04-0+deb11u1) bullseye; urgency=medium
 .
   * New upstream version.
usb.ids (2024.03.18-1) unstable; urgency=medium
 .
   * New upstream version.
usb.ids (2024.01.30-1) unstable; urgency=medium
 .
   * New upstream version.
usb.ids (2024.01.20-1) unstable; urgency=medium
 .
   * New upstream version.

wpa (2:2.10-12+deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Only load libraries from trusted path (CVE-2024-5290)

xmedcon (0.23.0-gtk3+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * CVE-2024-29421.patch: new: fix CVE-2024-29421. (Closes: #1077369)

znc (1.8.2-3.1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix RCE vulnerability in modtcl (CVE-2024-39844)
=======================================
Sat, 29 Jun 2024 - Debian 12.6 released
=======================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:17:03 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

btrfs-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
btrfs-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
btrfs-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
btrfs-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
cdrom-core-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
cdrom-core-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
cdrom-core-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
cdrom-core-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
crc-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
crc-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
crc-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
crc-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
crypto-dm-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
crypto-dm-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
crypto-dm-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
crypto-dm-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
crypto-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
crypto-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
crypto-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
crypto-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
dasd-extra-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
dasd-extra-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
dasd-extra-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
dasd-extra-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
dasd-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
dasd-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
dasd-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
dasd-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
ext4-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
ext4-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
ext4-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
ext4-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
f2fs-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
f2fs-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
f2fs-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
f2fs-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
fat-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
fat-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
fat-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
fat-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
fuse-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
fuse-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
fuse-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
fuse-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
isofs-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
isofs-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
isofs-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
isofs-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
kernel-image-6.1.0-15-s390x-di |   6.1.66-1 | s390x
kernel-image-6.1.0-19-s390x-di |   6.1.82-1 | s390x
kernel-image-6.1.0-20-s390x-di |   6.1.85-1 | s390x
kernel-image-6.1.0-21-s390x-di |   6.1.90-1 | s390x
linux-headers-6.1.0-15-s390x |   6.1.66-1 | s390x
linux-headers-6.1.0-19-s390x |   6.1.82-1 | s390x
linux-headers-6.1.0-20-s390x |   6.1.85-1 | s390x
linux-headers-6.1.0-21-s390x |   6.1.90-1 | s390x
linux-image-6.1.0-15-s390x |   6.1.66-1 | s390x
linux-image-6.1.0-15-s390x-dbg |   6.1.66-1 | s390x
linux-image-6.1.0-19-s390x |   6.1.82-1 | s390x
linux-image-6.1.0-19-s390x-dbg |   6.1.82-1 | s390x
linux-image-6.1.0-20-s390x |   6.1.85-1 | s390x
linux-image-6.1.0-20-s390x-dbg |   6.1.85-1 | s390x
linux-image-6.1.0-21-s390x |   6.1.90-1 | s390x
linux-image-6.1.0-21-s390x-dbg |   6.1.90-1 | s390x
loop-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
loop-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
loop-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
loop-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
md-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
md-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
md-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
md-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
mtd-core-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
mtd-core-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
mtd-core-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
mtd-core-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
multipath-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
multipath-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
multipath-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
multipath-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
nbd-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
nbd-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
nbd-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
nbd-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
nic-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
nic-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
nic-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
nic-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
scsi-core-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
scsi-core-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
scsi-core-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
scsi-core-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
scsi-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
scsi-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
scsi-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
scsi-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
udf-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
udf-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
udf-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
udf-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x
xfs-modules-6.1.0-15-s390x-di |   6.1.66-1 | s390x
xfs-modules-6.1.0-19-s390x-di |   6.1.82-1 | s390x
xfs-modules-6.1.0-20-s390x-di |   6.1.85-1 | s390x
xfs-modules-6.1.0-21-s390x-di |   6.1.90-1 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:17:20 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

affs-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
affs-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
affs-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
affs-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
affs-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
affs-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
affs-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
affs-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
ata-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
ata-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
ata-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
ata-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
ata-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
ata-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
ata-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
ata-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
btrfs-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
btrfs-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
btrfs-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
btrfs-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
btrfs-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
btrfs-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
btrfs-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
btrfs-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
crc-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
crc-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
crc-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
crc-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
crc-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
crc-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
crc-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
crc-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
crypto-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
crypto-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
crypto-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
crypto-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
crypto-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
crypto-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
crypto-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
crypto-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
event-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
event-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
event-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
event-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
event-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
event-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
event-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
event-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
ext4-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
ext4-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
ext4-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
ext4-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
ext4-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
ext4-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
ext4-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
ext4-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
f2fs-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
f2fs-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
f2fs-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
f2fs-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
f2fs-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
f2fs-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
f2fs-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
f2fs-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
fat-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
fat-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
fat-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
fat-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
fat-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
fat-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
fat-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
fat-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
fb-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
fb-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
fb-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
fb-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
fb-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
fb-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
fb-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
fb-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
firewire-core-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
firewire-core-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
firewire-core-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
firewire-core-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
firewire-core-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
firewire-core-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
firewire-core-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
firewire-core-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
fuse-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
fuse-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
fuse-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
fuse-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
fuse-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
fuse-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
fuse-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
fuse-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
input-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
input-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
input-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
input-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
input-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
input-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
input-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
input-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
isofs-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
isofs-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
isofs-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
isofs-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
isofs-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
isofs-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
isofs-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
isofs-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
jfs-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
jfs-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
jfs-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
jfs-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
jfs-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
jfs-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
jfs-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
jfs-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
kernel-image-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
kernel-image-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
kernel-image-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
kernel-image-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
kernel-image-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
kernel-image-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
kernel-image-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
kernel-image-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
linux-headers-6.1.0-15-loongson-3 |   6.1.66-1 | mips64el, mipsel
linux-headers-6.1.0-15-octeon |   6.1.66-1 | mips64el, mipsel
linux-headers-6.1.0-19-loongson-3 |   6.1.82-1 | mips64el, mipsel
linux-headers-6.1.0-19-octeon |   6.1.82-1 | mips64el, mipsel
linux-headers-6.1.0-20-loongson-3 |   6.1.85-1 | mips64el, mipsel
linux-headers-6.1.0-20-octeon |   6.1.85-1 | mips64el, mipsel
linux-headers-6.1.0-21-loongson-3 |   6.1.90-1 | mips64el, mipsel
linux-headers-6.1.0-21-octeon |   6.1.90-1 | mips64el, mipsel
linux-image-6.1.0-15-loongson-3 |   6.1.66-1 | mips64el, mipsel
linux-image-6.1.0-15-loongson-3-dbg |   6.1.66-1 | mips64el, mipsel
linux-image-6.1.0-15-octeon |   6.1.66-1 | mips64el, mipsel
linux-image-6.1.0-15-octeon-dbg |   6.1.66-1 | mips64el, mipsel
linux-image-6.1.0-19-loongson-3 |   6.1.82-1 | mips64el, mipsel
linux-image-6.1.0-19-loongson-3-dbg |   6.1.82-1 | mips64el, mipsel
linux-image-6.1.0-19-octeon |   6.1.82-1 | mips64el, mipsel
linux-image-6.1.0-19-octeon-dbg |   6.1.82-1 | mips64el, mipsel
linux-image-6.1.0-20-loongson-3 |   6.1.85-1 | mips64el, mipsel
linux-image-6.1.0-20-loongson-3-dbg |   6.1.85-1 | mips64el, mipsel
linux-image-6.1.0-20-octeon |   6.1.85-1 | mips64el, mipsel
linux-image-6.1.0-20-octeon-dbg |   6.1.85-1 | mips64el, mipsel
linux-image-6.1.0-21-loongson-3 |   6.1.90-1 | mips64el, mipsel
linux-image-6.1.0-21-loongson-3-dbg |   6.1.90-1 | mips64el, mipsel
linux-image-6.1.0-21-octeon |   6.1.90-1 | mips64el, mipsel
linux-image-6.1.0-21-octeon-dbg |   6.1.90-1 | mips64el, mipsel
loop-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
loop-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
loop-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
loop-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
loop-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
loop-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
loop-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
loop-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
md-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
md-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
md-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
md-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
md-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
md-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
md-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
md-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
minix-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
minix-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
minix-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
minix-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
minix-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
minix-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
minix-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
minix-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
mmc-core-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
mmc-core-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
mmc-core-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
mmc-core-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
mmc-core-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
mmc-core-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
mmc-core-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
mmc-core-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
mmc-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
mmc-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
mmc-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
mmc-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
mmc-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
mmc-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
mmc-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
mmc-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
mouse-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
mouse-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
mouse-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
mouse-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
mouse-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
mouse-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
mouse-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
mouse-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
multipath-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
multipath-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
multipath-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
multipath-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
multipath-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
multipath-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
multipath-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
multipath-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
nbd-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
nbd-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
nbd-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
nbd-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
nbd-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
nbd-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
nbd-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
nbd-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
nfs-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
nfs-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
nfs-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
nfs-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
nfs-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
nfs-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
nfs-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
nfs-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
nic-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
nic-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
nic-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
nic-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
nic-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
nic-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
nic-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
nic-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
nic-shared-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
nic-shared-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
nic-shared-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
nic-shared-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
nic-shared-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
nic-shared-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
nic-shared-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
nic-shared-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
nic-usb-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
nic-usb-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
nic-usb-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
nic-usb-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
nic-usb-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
nic-usb-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
nic-usb-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
nic-usb-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
pata-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
pata-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
pata-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
pata-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
pata-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
pata-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
pata-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
pata-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
ppp-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
ppp-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
ppp-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
ppp-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
ppp-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
ppp-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
ppp-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
ppp-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
sata-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
sata-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
sata-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
sata-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
sata-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
sata-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
sata-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
sata-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
scsi-core-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
scsi-core-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
scsi-core-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
scsi-core-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
scsi-core-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
scsi-core-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
scsi-core-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
scsi-core-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
scsi-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
scsi-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
scsi-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
scsi-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
scsi-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
scsi-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
scsi-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
scsi-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
sound-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
sound-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
sound-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
sound-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
sound-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
sound-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
sound-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
sound-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
speakup-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
speakup-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
speakup-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
speakup-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
speakup-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
speakup-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
speakup-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
speakup-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
squashfs-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
squashfs-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
squashfs-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
squashfs-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
squashfs-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
squashfs-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
squashfs-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
squashfs-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
udf-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
udf-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
udf-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
udf-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
udf-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
udf-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
udf-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
udf-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
usb-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
usb-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
usb-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
usb-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
usb-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
usb-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
usb-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
usb-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
usb-serial-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
usb-serial-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
usb-serial-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
usb-serial-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
usb-serial-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
usb-serial-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
usb-serial-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
usb-serial-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
usb-storage-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
usb-storage-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
usb-storage-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
usb-storage-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
usb-storage-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
usb-storage-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
usb-storage-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
usb-storage-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel
xfs-modules-6.1.0-15-loongson-3-di |   6.1.66-1 | mips64el, mipsel
xfs-modules-6.1.0-15-octeon-di |   6.1.66-1 | mips64el, mipsel
xfs-modules-6.1.0-19-loongson-3-di |   6.1.82-1 | mips64el, mipsel
xfs-modules-6.1.0-19-octeon-di |   6.1.82-1 | mips64el, mipsel
xfs-modules-6.1.0-20-loongson-3-di |   6.1.85-1 | mips64el, mipsel
xfs-modules-6.1.0-20-octeon-di |   6.1.85-1 | mips64el, mipsel
xfs-modules-6.1.0-21-loongson-3-di |   6.1.90-1 | mips64el, mipsel
xfs-modules-6.1.0-21-octeon-di |   6.1.90-1 | mips64el, mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:17:39 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

affs-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
affs-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
affs-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
affs-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
affs-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
affs-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
affs-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
affs-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
ata-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
ata-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
ata-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
ata-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
ata-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
ata-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
ata-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
ata-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
btrfs-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
btrfs-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
btrfs-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
btrfs-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
btrfs-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
btrfs-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
btrfs-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
btrfs-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
cdrom-core-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
cdrom-core-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
cdrom-core-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
cdrom-core-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
cdrom-core-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
cdrom-core-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
cdrom-core-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
cdrom-core-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
crc-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
crc-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
crc-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
crc-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
crc-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
crc-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
crc-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
crc-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
crypto-dm-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
crypto-dm-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
crypto-dm-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
crypto-dm-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
crypto-dm-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
crypto-dm-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
crypto-dm-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
crypto-dm-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
crypto-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
crypto-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
crypto-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
crypto-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
crypto-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
crypto-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
crypto-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
crypto-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
event-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
event-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
event-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
event-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
event-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
event-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
event-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
event-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
ext4-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
ext4-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
ext4-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
ext4-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
ext4-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
ext4-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
ext4-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
ext4-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
f2fs-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
f2fs-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
f2fs-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
f2fs-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
f2fs-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
f2fs-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
f2fs-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
f2fs-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
fat-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
fat-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
fat-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
fat-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
fat-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
fat-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
fat-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
fat-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
fb-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
fb-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
fb-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
fb-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
fb-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
fb-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
fb-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
fb-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
firewire-core-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
firewire-core-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
firewire-core-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
firewire-core-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
firewire-core-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
firewire-core-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
firewire-core-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
firewire-core-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
fuse-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
fuse-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
fuse-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
fuse-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
fuse-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
fuse-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
fuse-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
fuse-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
input-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
input-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
input-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
input-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
input-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
input-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
input-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
input-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
isofs-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
isofs-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
isofs-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
isofs-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
isofs-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
isofs-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
isofs-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
isofs-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
jfs-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
jfs-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
jfs-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
jfs-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
jfs-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
jfs-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
jfs-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
jfs-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
kernel-image-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
kernel-image-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
kernel-image-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
kernel-image-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
kernel-image-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
kernel-image-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
kernel-image-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
kernel-image-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
linux-headers-6.1.0-15-4kc-malta |   6.1.66-1 | mipsel
linux-headers-6.1.0-15-mips32r2el |   6.1.66-1 | mipsel
linux-headers-6.1.0-19-4kc-malta |   6.1.82-1 | mipsel
linux-headers-6.1.0-19-mips32r2el |   6.1.82-1 | mipsel
linux-headers-6.1.0-20-4kc-malta |   6.1.85-1 | mipsel
linux-headers-6.1.0-20-mips32r2el |   6.1.85-1 | mipsel
linux-headers-6.1.0-21-4kc-malta |   6.1.90-1 | mipsel
linux-headers-6.1.0-21-mips32r2el |   6.1.90-1 | mipsel
linux-image-6.1.0-15-4kc-malta |   6.1.66-1 | mipsel
linux-image-6.1.0-15-4kc-malta-dbg |   6.1.66-1 | mipsel
linux-image-6.1.0-15-mips32r2el |   6.1.66-1 | mipsel
linux-image-6.1.0-15-mips32r2el-dbg |   6.1.66-1 | mipsel
linux-image-6.1.0-19-4kc-malta |   6.1.82-1 | mipsel
linux-image-6.1.0-19-4kc-malta-dbg |   6.1.82-1 | mipsel
linux-image-6.1.0-19-mips32r2el |   6.1.82-1 | mipsel
linux-image-6.1.0-19-mips32r2el-dbg |   6.1.82-1 | mipsel
linux-image-6.1.0-20-4kc-malta |   6.1.85-1 | mipsel
linux-image-6.1.0-20-4kc-malta-dbg |   6.1.85-1 | mipsel
linux-image-6.1.0-20-mips32r2el |   6.1.85-1 | mipsel
linux-image-6.1.0-20-mips32r2el-dbg |   6.1.85-1 | mipsel
linux-image-6.1.0-21-4kc-malta |   6.1.90-1 | mipsel
linux-image-6.1.0-21-4kc-malta-dbg |   6.1.90-1 | mipsel
linux-image-6.1.0-21-mips32r2el |   6.1.90-1 | mipsel
linux-image-6.1.0-21-mips32r2el-dbg |   6.1.90-1 | mipsel
loop-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
loop-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
loop-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
loop-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
loop-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
loop-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
loop-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
loop-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
md-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
md-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
md-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
md-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
md-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
md-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
md-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
md-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
minix-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
minix-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
minix-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
minix-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
minix-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
minix-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
minix-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
minix-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
mmc-core-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
mmc-core-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
mmc-core-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
mmc-core-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
mmc-core-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
mmc-core-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
mmc-core-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
mmc-core-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
mmc-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
mmc-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
mmc-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
mmc-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
mmc-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
mmc-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
mmc-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
mmc-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
mouse-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
mouse-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
mouse-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
mouse-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
mouse-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
mouse-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
mouse-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
mouse-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
multipath-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
multipath-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
multipath-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
multipath-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
multipath-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
multipath-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
multipath-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
multipath-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
nbd-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
nbd-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
nbd-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
nbd-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
nbd-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
nbd-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
nbd-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
nbd-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
nfs-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
nfs-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
nfs-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
nfs-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
nfs-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
nfs-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
nfs-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
nfs-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
nic-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
nic-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
nic-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
nic-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
nic-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
nic-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
nic-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
nic-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
nic-shared-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
nic-shared-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
nic-shared-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
nic-shared-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
nic-shared-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
nic-shared-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
nic-shared-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
nic-shared-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
nic-usb-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
nic-usb-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
nic-usb-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
nic-usb-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
nic-usb-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
nic-usb-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
nic-usb-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
nic-usb-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
nic-wireless-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
nic-wireless-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
nic-wireless-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
nic-wireless-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
nic-wireless-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
nic-wireless-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
nic-wireless-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
nic-wireless-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
pata-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
pata-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
pata-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
pata-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
pata-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
pata-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
pata-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
pata-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
ppp-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
ppp-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
ppp-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
ppp-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
ppp-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
ppp-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
ppp-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
ppp-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
sata-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
sata-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
sata-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
sata-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
sata-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
sata-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
sata-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
sata-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
scsi-core-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
scsi-core-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
scsi-core-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
scsi-core-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
scsi-core-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
scsi-core-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
scsi-core-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
scsi-core-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
scsi-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
scsi-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
scsi-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
scsi-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
scsi-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
scsi-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
scsi-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
scsi-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
scsi-nic-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
scsi-nic-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
scsi-nic-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
scsi-nic-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
scsi-nic-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
scsi-nic-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
scsi-nic-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
scsi-nic-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
sound-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
sound-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
sound-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
sound-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
sound-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
sound-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
sound-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
sound-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
speakup-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
speakup-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
speakup-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
speakup-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
speakup-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
speakup-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
speakup-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
speakup-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
squashfs-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
squashfs-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
squashfs-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
squashfs-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
squashfs-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
squashfs-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
squashfs-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
squashfs-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
udf-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
udf-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
udf-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
udf-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
udf-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
udf-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
udf-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
udf-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
usb-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
usb-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
usb-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
usb-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
usb-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
usb-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
usb-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
usb-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
usb-serial-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
usb-serial-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
usb-serial-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
usb-serial-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
usb-serial-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
usb-serial-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
usb-serial-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
usb-serial-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
usb-storage-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
usb-storage-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
usb-storage-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
usb-storage-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
usb-storage-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
usb-storage-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
usb-storage-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
usb-storage-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel
xfs-modules-6.1.0-15-4kc-malta-di |   6.1.66-1 | mipsel
xfs-modules-6.1.0-15-mips32r2el-di |   6.1.66-1 | mipsel
xfs-modules-6.1.0-19-4kc-malta-di |   6.1.82-1 | mipsel
xfs-modules-6.1.0-19-mips32r2el-di |   6.1.82-1 | mipsel
xfs-modules-6.1.0-20-4kc-malta-di |   6.1.85-1 | mipsel
xfs-modules-6.1.0-20-mips32r2el-di |   6.1.85-1 | mipsel
xfs-modules-6.1.0-21-4kc-malta-di |   6.1.90-1 | mipsel
xfs-modules-6.1.0-21-mips32r2el-di |   6.1.90-1 | mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:17:52 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

ata-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
ata-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
ata-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
ata-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
btrfs-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
btrfs-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
btrfs-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
btrfs-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
cdrom-core-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
cdrom-core-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
cdrom-core-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
cdrom-core-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
crc-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
crc-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
crc-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
crc-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
crypto-dm-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
crypto-dm-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
crypto-dm-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
crypto-dm-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
crypto-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
crypto-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
crypto-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
crypto-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
event-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
event-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
event-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
event-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
ext4-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
ext4-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
ext4-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
ext4-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
f2fs-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
f2fs-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
f2fs-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
f2fs-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
fancontrol-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
fancontrol-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
fancontrol-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
fancontrol-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
fat-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
fat-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
fat-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
fat-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
fb-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
fb-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
fb-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
fb-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
firewire-core-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
firewire-core-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
firewire-core-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
firewire-core-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
fuse-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
fuse-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
fuse-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
fuse-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
hypervisor-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
hypervisor-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
hypervisor-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
hypervisor-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
i2c-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
i2c-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
i2c-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
i2c-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
input-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
input-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
input-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
input-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
isofs-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
isofs-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
isofs-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
isofs-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
jfs-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
jfs-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
jfs-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
jfs-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
kernel-image-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
kernel-image-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
kernel-image-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
kernel-image-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
linux-headers-6.1.0-15-powerpc64le |   6.1.66-1 | ppc64el
linux-headers-6.1.0-19-powerpc64le |   6.1.82-1 | ppc64el
linux-headers-6.1.0-20-powerpc64le |   6.1.85-1 | ppc64el
linux-headers-6.1.0-21-powerpc64le |   6.1.90-1 | ppc64el
linux-image-6.1.0-15-powerpc64le |   6.1.66-1 | ppc64el
linux-image-6.1.0-15-powerpc64le-dbg |   6.1.66-1 | ppc64el
linux-image-6.1.0-19-powerpc64le |   6.1.82-1 | ppc64el
linux-image-6.1.0-19-powerpc64le-dbg |   6.1.82-1 | ppc64el
linux-image-6.1.0-20-powerpc64le |   6.1.85-1 | ppc64el
linux-image-6.1.0-20-powerpc64le-dbg |   6.1.85-1 | ppc64el
linux-image-6.1.0-21-powerpc64le |   6.1.90-1 | ppc64el
linux-image-6.1.0-21-powerpc64le-dbg |   6.1.90-1 | ppc64el
loop-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
loop-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
loop-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
loop-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
md-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
md-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
md-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
md-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
mouse-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
mouse-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
mouse-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
mouse-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
mtd-core-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
mtd-core-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
mtd-core-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
mtd-core-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
multipath-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
multipath-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
multipath-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
multipath-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
nbd-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
nbd-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
nbd-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
nbd-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
nic-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
nic-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
nic-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
nic-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
nic-shared-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
nic-shared-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
nic-shared-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
nic-shared-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
nic-usb-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
nic-usb-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
nic-usb-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
nic-usb-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
nic-wireless-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
nic-wireless-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
nic-wireless-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
nic-wireless-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
ppp-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
ppp-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
ppp-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
ppp-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
sata-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
sata-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
sata-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
sata-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
scsi-core-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
scsi-core-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
scsi-core-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
scsi-core-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
scsi-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
scsi-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
scsi-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
scsi-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
scsi-nic-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
scsi-nic-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
scsi-nic-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
scsi-nic-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
serial-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
serial-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
serial-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
serial-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
squashfs-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
squashfs-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
squashfs-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
squashfs-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
udf-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
udf-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
udf-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
udf-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
uinput-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
uinput-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
uinput-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
uinput-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
usb-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
usb-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
usb-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
usb-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
usb-serial-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
usb-serial-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
usb-serial-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
usb-serial-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
usb-storage-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
usb-storage-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
usb-storage-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
usb-storage-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el
xfs-modules-6.1.0-15-powerpc64le-di |   6.1.66-1 | ppc64el
xfs-modules-6.1.0-19-powerpc64le-di |   6.1.82-1 | ppc64el
xfs-modules-6.1.0-20-powerpc64le-di |   6.1.85-1 | ppc64el
xfs-modules-6.1.0-21-powerpc64le-di |   6.1.90-1 | ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:18:08 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

linux-headers-6.1.0-15-amd64 |   6.1.66-1 | amd64
linux-headers-6.1.0-15-cloud-amd64 |   6.1.66-1 | amd64
linux-headers-6.1.0-15-rt-amd64 |   6.1.66-1 | amd64
linux-headers-6.1.0-19-amd64 |   6.1.82-1 | amd64
linux-headers-6.1.0-19-cloud-amd64 |   6.1.82-1 | amd64
linux-headers-6.1.0-19-rt-amd64 |   6.1.82-1 | amd64
linux-headers-6.1.0-20-amd64 |   6.1.85-1 | amd64
linux-headers-6.1.0-20-cloud-amd64 |   6.1.85-1 | amd64
linux-headers-6.1.0-20-rt-amd64 |   6.1.85-1 | amd64
linux-headers-6.1.0-21-amd64 |   6.1.90-1 | amd64
linux-headers-6.1.0-21-cloud-amd64 |   6.1.90-1 | amd64
linux-headers-6.1.0-21-rt-amd64 |   6.1.90-1 | amd64
linux-image-6.1.0-15-amd64-dbg |   6.1.66-1 | amd64
linux-image-6.1.0-15-amd64-unsigned |   6.1.66-1 | amd64
linux-image-6.1.0-15-cloud-amd64-dbg |   6.1.66-1 | amd64
linux-image-6.1.0-15-cloud-amd64-unsigned |   6.1.66-1 | amd64
linux-image-6.1.0-15-rt-amd64-dbg |   6.1.66-1 | amd64
linux-image-6.1.0-15-rt-amd64-unsigned |   6.1.66-1 | amd64
linux-image-6.1.0-19-amd64-dbg |   6.1.82-1 | amd64
linux-image-6.1.0-19-amd64-unsigned |   6.1.82-1 | amd64
linux-image-6.1.0-19-cloud-amd64-dbg |   6.1.82-1 | amd64
linux-image-6.1.0-19-cloud-amd64-unsigned |   6.1.82-1 | amd64
linux-image-6.1.0-19-rt-amd64-dbg |   6.1.82-1 | amd64
linux-image-6.1.0-19-rt-amd64-unsigned |   6.1.82-1 | amd64
linux-image-6.1.0-20-amd64-dbg |   6.1.85-1 | amd64
linux-image-6.1.0-20-amd64-unsigned |   6.1.85-1 | amd64
linux-image-6.1.0-20-cloud-amd64-dbg |   6.1.85-1 | amd64
linux-image-6.1.0-20-cloud-amd64-unsigned |   6.1.85-1 | amd64
linux-image-6.1.0-20-rt-amd64-dbg |   6.1.85-1 | amd64
linux-image-6.1.0-20-rt-amd64-unsigned |   6.1.85-1 | amd64
linux-image-6.1.0-21-amd64-dbg |   6.1.90-1 | amd64
linux-image-6.1.0-21-amd64-unsigned |   6.1.90-1 | amd64
linux-image-6.1.0-21-cloud-amd64-dbg |   6.1.90-1 | amd64
linux-image-6.1.0-21-cloud-amd64-unsigned |   6.1.90-1 | amd64
linux-image-6.1.0-21-rt-amd64-dbg |   6.1.90-1 | amd64
linux-image-6.1.0-21-rt-amd64-unsigned |   6.1.90-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:18:18 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

linux-headers-6.1.0-15-arm64 |   6.1.66-1 | arm64
linux-headers-6.1.0-15-cloud-arm64 |   6.1.66-1 | arm64
linux-headers-6.1.0-15-rt-arm64 |   6.1.66-1 | arm64
linux-headers-6.1.0-19-arm64 |   6.1.82-1 | arm64
linux-headers-6.1.0-19-cloud-arm64 |   6.1.82-1 | arm64
linux-headers-6.1.0-19-rt-arm64 |   6.1.82-1 | arm64
linux-headers-6.1.0-20-arm64 |   6.1.85-1 | arm64
linux-headers-6.1.0-20-cloud-arm64 |   6.1.85-1 | arm64
linux-headers-6.1.0-20-rt-arm64 |   6.1.85-1 | arm64
linux-headers-6.1.0-21-arm64 |   6.1.90-1 | arm64
linux-headers-6.1.0-21-cloud-arm64 |   6.1.90-1 | arm64
linux-headers-6.1.0-21-rt-arm64 |   6.1.90-1 | arm64
linux-image-6.1.0-15-arm64-dbg |   6.1.66-1 | arm64
linux-image-6.1.0-15-arm64-unsigned |   6.1.66-1 | arm64
linux-image-6.1.0-15-cloud-arm64-dbg |   6.1.66-1 | arm64
linux-image-6.1.0-15-cloud-arm64-unsigned |   6.1.66-1 | arm64
linux-image-6.1.0-15-rt-arm64-dbg |   6.1.66-1 | arm64
linux-image-6.1.0-15-rt-arm64-unsigned |   6.1.66-1 | arm64
linux-image-6.1.0-19-arm64-dbg |   6.1.82-1 | arm64
linux-image-6.1.0-19-arm64-unsigned |   6.1.82-1 | arm64
linux-image-6.1.0-19-cloud-arm64-dbg |   6.1.82-1 | arm64
linux-image-6.1.0-19-cloud-arm64-unsigned |   6.1.82-1 | arm64
linux-image-6.1.0-19-rt-arm64-dbg |   6.1.82-1 | arm64
linux-image-6.1.0-19-rt-arm64-unsigned |   6.1.82-1 | arm64
linux-image-6.1.0-20-arm64-dbg |   6.1.85-1 | arm64
linux-image-6.1.0-20-arm64-unsigned |   6.1.85-1 | arm64
linux-image-6.1.0-20-cloud-arm64-dbg |   6.1.85-1 | arm64
linux-image-6.1.0-20-cloud-arm64-unsigned |   6.1.85-1 | arm64
linux-image-6.1.0-20-rt-arm64-dbg |   6.1.85-1 | arm64
linux-image-6.1.0-20-rt-arm64-unsigned |   6.1.85-1 | arm64
linux-image-6.1.0-21-arm64-dbg |   6.1.90-1 | arm64
linux-image-6.1.0-21-arm64-unsigned |   6.1.90-1 | arm64
linux-image-6.1.0-21-cloud-arm64-dbg |   6.1.90-1 | arm64
linux-image-6.1.0-21-cloud-arm64-unsigned |   6.1.90-1 | arm64
linux-image-6.1.0-21-rt-arm64-dbg |   6.1.90-1 | arm64
linux-image-6.1.0-21-rt-arm64-unsigned |   6.1.90-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:18:28 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

btrfs-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
btrfs-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
btrfs-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
btrfs-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
cdrom-core-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
cdrom-core-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
cdrom-core-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
cdrom-core-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
crc-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
crc-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
crc-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
crc-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
crypto-dm-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
crypto-dm-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
crypto-dm-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
crypto-dm-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
crypto-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
crypto-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
crypto-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
crypto-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
event-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
event-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
event-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
event-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
ext4-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
ext4-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
ext4-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
ext4-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
f2fs-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
f2fs-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
f2fs-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
f2fs-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
fat-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
fat-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
fat-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
fat-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
fb-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
fb-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
fb-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
fb-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
fuse-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
fuse-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
fuse-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
fuse-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
input-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
input-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
input-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
input-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
ipv6-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
ipv6-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
ipv6-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
ipv6-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
isofs-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
isofs-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
isofs-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
isofs-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
jffs2-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
jffs2-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
jffs2-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
jffs2-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
jfs-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
jfs-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
jfs-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
jfs-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
kernel-image-6.1.0-15-marvell-di |   6.1.66-1 | armel
kernel-image-6.1.0-19-marvell-di |   6.1.82-1 | armel
kernel-image-6.1.0-20-marvell-di |   6.1.85-1 | armel
kernel-image-6.1.0-21-marvell-di |   6.1.90-1 | armel
leds-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
leds-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
leds-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
leds-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
linux-headers-6.1.0-15-marvell |   6.1.66-1 | armel
linux-headers-6.1.0-15-rpi |   6.1.66-1 | armel
linux-headers-6.1.0-19-marvell |   6.1.82-1 | armel
linux-headers-6.1.0-19-rpi |   6.1.82-1 | armel
linux-headers-6.1.0-20-marvell |   6.1.85-1 | armel
linux-headers-6.1.0-20-rpi |   6.1.85-1 | armel
linux-headers-6.1.0-21-marvell |   6.1.90-1 | armel
linux-headers-6.1.0-21-rpi |   6.1.90-1 | armel
linux-image-6.1.0-15-marvell |   6.1.66-1 | armel
linux-image-6.1.0-15-marvell-dbg |   6.1.66-1 | armel
linux-image-6.1.0-15-rpi |   6.1.66-1 | armel
linux-image-6.1.0-15-rpi-dbg |   6.1.66-1 | armel
linux-image-6.1.0-19-marvell |   6.1.82-1 | armel
linux-image-6.1.0-19-marvell-dbg |   6.1.82-1 | armel
linux-image-6.1.0-19-rpi |   6.1.82-1 | armel
linux-image-6.1.0-19-rpi-dbg |   6.1.82-1 | armel
linux-image-6.1.0-20-marvell |   6.1.85-1 | armel
linux-image-6.1.0-20-marvell-dbg |   6.1.85-1 | armel
linux-image-6.1.0-20-rpi |   6.1.85-1 | armel
linux-image-6.1.0-20-rpi-dbg |   6.1.85-1 | armel
linux-image-6.1.0-21-marvell |   6.1.90-1 | armel
linux-image-6.1.0-21-marvell-dbg |   6.1.90-1 | armel
linux-image-6.1.0-21-rpi |   6.1.90-1 | armel
linux-image-6.1.0-21-rpi-dbg |   6.1.90-1 | armel
loop-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
loop-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
loop-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
loop-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
md-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
md-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
md-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
md-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
minix-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
minix-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
minix-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
minix-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
mmc-core-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
mmc-core-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
mmc-core-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
mmc-core-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
mmc-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
mmc-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
mmc-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
mmc-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
mouse-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
mouse-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
mouse-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
mouse-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
mtd-core-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
mtd-core-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
mtd-core-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
mtd-core-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
mtd-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
mtd-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
mtd-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
mtd-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
multipath-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
multipath-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
multipath-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
multipath-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
nbd-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
nbd-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
nbd-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
nbd-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
nic-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
nic-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
nic-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
nic-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
nic-shared-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
nic-shared-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
nic-shared-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
nic-shared-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
nic-usb-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
nic-usb-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
nic-usb-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
nic-usb-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
ppp-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
ppp-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
ppp-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
ppp-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
sata-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
sata-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
sata-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
sata-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
scsi-core-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
scsi-core-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
scsi-core-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
scsi-core-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
squashfs-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
squashfs-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
squashfs-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
squashfs-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
udf-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
udf-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
udf-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
udf-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
uinput-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
uinput-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
uinput-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
uinput-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
usb-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
usb-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
usb-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
usb-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
usb-serial-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
usb-serial-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
usb-serial-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
usb-serial-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel
usb-storage-modules-6.1.0-15-marvell-di |   6.1.66-1 | armel
usb-storage-modules-6.1.0-19-marvell-di |   6.1.82-1 | armel
usb-storage-modules-6.1.0-20-marvell-di |   6.1.85-1 | armel
usb-storage-modules-6.1.0-21-marvell-di |   6.1.90-1 | armel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:18:39 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

ata-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
ata-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
ata-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
ata-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
btrfs-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
btrfs-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
btrfs-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
btrfs-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
cdrom-core-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
cdrom-core-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
cdrom-core-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
cdrom-core-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
crc-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
crc-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
crc-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
crc-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
crypto-dm-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
crypto-dm-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
crypto-dm-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
crypto-dm-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
crypto-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
crypto-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
crypto-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
crypto-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
efi-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
efi-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
efi-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
efi-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
event-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
event-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
event-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
event-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
ext4-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
ext4-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
ext4-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
ext4-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
f2fs-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
f2fs-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
f2fs-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
f2fs-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
fat-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
fat-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
fat-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
fat-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
fb-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
fb-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
fb-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
fb-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
fuse-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
fuse-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
fuse-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
fuse-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
i2c-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
i2c-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
i2c-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
i2c-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
input-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
input-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
input-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
input-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
isofs-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
isofs-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
isofs-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
isofs-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
jfs-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
jfs-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
jfs-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
jfs-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
kernel-image-6.1.0-15-armmp-di |   6.1.66-1 | armhf
kernel-image-6.1.0-19-armmp-di |   6.1.82-1 | armhf
kernel-image-6.1.0-20-armmp-di |   6.1.85-1 | armhf
kernel-image-6.1.0-21-armmp-di |   6.1.90-1 | armhf
leds-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
leds-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
leds-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
leds-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
linux-headers-6.1.0-15-armmp |   6.1.66-1 | armhf
linux-headers-6.1.0-15-armmp-lpae |   6.1.66-1 | armhf
linux-headers-6.1.0-15-rt-armmp |   6.1.66-1 | armhf
linux-headers-6.1.0-19-armmp |   6.1.82-1 | armhf
linux-headers-6.1.0-19-armmp-lpae |   6.1.82-1 | armhf
linux-headers-6.1.0-19-rt-armmp |   6.1.82-1 | armhf
linux-headers-6.1.0-20-armmp |   6.1.85-1 | armhf
linux-headers-6.1.0-20-armmp-lpae |   6.1.85-1 | armhf
linux-headers-6.1.0-20-rt-armmp |   6.1.85-1 | armhf
linux-headers-6.1.0-21-armmp |   6.1.90-1 | armhf
linux-headers-6.1.0-21-armmp-lpae |   6.1.90-1 | armhf
linux-headers-6.1.0-21-rt-armmp |   6.1.90-1 | armhf
linux-image-6.1.0-15-armmp |   6.1.66-1 | armhf
linux-image-6.1.0-15-armmp-dbg |   6.1.66-1 | armhf
linux-image-6.1.0-15-armmp-lpae |   6.1.66-1 | armhf
linux-image-6.1.0-15-armmp-lpae-dbg |   6.1.66-1 | armhf
linux-image-6.1.0-15-rt-armmp |   6.1.66-1 | armhf
linux-image-6.1.0-15-rt-armmp-dbg |   6.1.66-1 | armhf
linux-image-6.1.0-19-armmp |   6.1.82-1 | armhf
linux-image-6.1.0-19-armmp-dbg |   6.1.82-1 | armhf
linux-image-6.1.0-19-armmp-lpae |   6.1.82-1 | armhf
linux-image-6.1.0-19-armmp-lpae-dbg |   6.1.82-1 | armhf
linux-image-6.1.0-19-rt-armmp |   6.1.82-1 | armhf
linux-image-6.1.0-19-rt-armmp-dbg |   6.1.82-1 | armhf
linux-image-6.1.0-20-armmp |   6.1.85-1 | armhf
linux-image-6.1.0-20-armmp-dbg |   6.1.85-1 | armhf
linux-image-6.1.0-20-armmp-lpae |   6.1.85-1 | armhf
linux-image-6.1.0-20-armmp-lpae-dbg |   6.1.85-1 | armhf
linux-image-6.1.0-20-rt-armmp |   6.1.85-1 | armhf
linux-image-6.1.0-20-rt-armmp-dbg |   6.1.85-1 | armhf
linux-image-6.1.0-21-armmp |   6.1.90-1 | armhf
linux-image-6.1.0-21-armmp-dbg |   6.1.90-1 | armhf
linux-image-6.1.0-21-armmp-lpae |   6.1.90-1 | armhf
linux-image-6.1.0-21-armmp-lpae-dbg |   6.1.90-1 | armhf
linux-image-6.1.0-21-rt-armmp |   6.1.90-1 | armhf
linux-image-6.1.0-21-rt-armmp-dbg |   6.1.90-1 | armhf
loop-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
loop-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
loop-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
loop-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
md-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
md-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
md-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
md-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
mmc-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
mmc-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
mmc-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
mmc-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
mtd-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
mtd-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
mtd-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
mtd-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
multipath-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
multipath-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
multipath-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
multipath-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
nbd-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
nbd-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
nbd-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
nbd-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
nic-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
nic-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
nic-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
nic-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
nic-shared-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
nic-shared-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
nic-shared-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
nic-shared-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
nic-usb-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
nic-usb-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
nic-usb-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
nic-usb-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
nic-wireless-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
nic-wireless-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
nic-wireless-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
nic-wireless-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
pata-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
pata-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
pata-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
pata-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
ppp-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
ppp-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
ppp-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
ppp-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
sata-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
sata-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
sata-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
sata-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
scsi-core-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
scsi-core-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
scsi-core-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
scsi-core-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
scsi-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
scsi-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
scsi-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
scsi-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
scsi-nic-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
scsi-nic-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
scsi-nic-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
scsi-nic-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
sound-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
sound-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
sound-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
sound-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
speakup-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
speakup-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
speakup-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
speakup-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
squashfs-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
squashfs-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
squashfs-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
squashfs-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
udf-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
udf-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
udf-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
udf-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
uinput-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
uinput-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
uinput-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
uinput-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
usb-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
usb-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
usb-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
usb-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
usb-serial-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
usb-serial-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
usb-serial-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
usb-serial-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf
usb-storage-modules-6.1.0-15-armmp-di |   6.1.66-1 | armhf
usb-storage-modules-6.1.0-19-armmp-di |   6.1.82-1 | armhf
usb-storage-modules-6.1.0-20-armmp-di |   6.1.85-1 | armhf
usb-storage-modules-6.1.0-21-armmp-di |   6.1.90-1 | armhf

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:18:49 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

linux-headers-6.1.0-15-686 |   6.1.66-1 | i386
linux-headers-6.1.0-15-686-pae |   6.1.66-1 | i386
linux-headers-6.1.0-15-rt-686-pae |   6.1.66-1 | i386
linux-headers-6.1.0-19-686 |   6.1.82-1 | i386
linux-headers-6.1.0-19-686-pae |   6.1.82-1 | i386
linux-headers-6.1.0-19-rt-686-pae |   6.1.82-1 | i386
linux-headers-6.1.0-20-686 |   6.1.85-1 | i386
linux-headers-6.1.0-20-686-pae |   6.1.85-1 | i386
linux-headers-6.1.0-20-rt-686-pae |   6.1.85-1 | i386
linux-headers-6.1.0-21-686 |   6.1.90-1 | i386
linux-headers-6.1.0-21-686-pae |   6.1.90-1 | i386
linux-headers-6.1.0-21-rt-686-pae |   6.1.90-1 | i386
linux-image-6.1.0-15-686-dbg |   6.1.66-1 | i386
linux-image-6.1.0-15-686-pae-dbg |   6.1.66-1 | i386
linux-image-6.1.0-15-686-pae-unsigned |   6.1.66-1 | i386
linux-image-6.1.0-15-686-unsigned |   6.1.66-1 | i386
linux-image-6.1.0-15-rt-686-pae-dbg |   6.1.66-1 | i386
linux-image-6.1.0-15-rt-686-pae-unsigned |   6.1.66-1 | i386
linux-image-6.1.0-19-686-dbg |   6.1.82-1 | i386
linux-image-6.1.0-19-686-pae-dbg |   6.1.82-1 | i386
linux-image-6.1.0-19-686-pae-unsigned |   6.1.82-1 | i386
linux-image-6.1.0-19-686-unsigned |   6.1.82-1 | i386
linux-image-6.1.0-19-rt-686-pae-dbg |   6.1.82-1 | i386
linux-image-6.1.0-19-rt-686-pae-unsigned |   6.1.82-1 | i386
linux-image-6.1.0-20-686-dbg |   6.1.85-1 | i386
linux-image-6.1.0-20-686-pae-dbg |   6.1.85-1 | i386
linux-image-6.1.0-20-686-pae-unsigned |   6.1.85-1 | i386
linux-image-6.1.0-20-686-unsigned |   6.1.85-1 | i386
linux-image-6.1.0-20-rt-686-pae-dbg |   6.1.85-1 | i386
linux-image-6.1.0-20-rt-686-pae-unsigned |   6.1.85-1 | i386
linux-image-6.1.0-21-686-dbg |   6.1.90-1 | i386
linux-image-6.1.0-21-686-pae-dbg |   6.1.90-1 | i386
linux-image-6.1.0-21-686-pae-unsigned |   6.1.90-1 | i386
linux-image-6.1.0-21-686-unsigned |   6.1.90-1 | i386
linux-image-6.1.0-21-rt-686-pae-dbg |   6.1.90-1 | i386
linux-image-6.1.0-21-rt-686-pae-unsigned |   6.1.90-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:19:04 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

affs-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
affs-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
affs-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
affs-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
affs-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
affs-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
affs-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
affs-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
ata-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
ata-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
ata-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
ata-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
ata-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
ata-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
ata-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
ata-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
btrfs-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
btrfs-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
btrfs-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
btrfs-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
btrfs-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
btrfs-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
btrfs-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
btrfs-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
cdrom-core-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
cdrom-core-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
cdrom-core-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
cdrom-core-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
cdrom-core-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
cdrom-core-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
cdrom-core-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
cdrom-core-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
crc-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
crc-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
crc-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
crc-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
crc-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
crc-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
crc-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
crc-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
crypto-dm-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
crypto-dm-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
crypto-dm-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
crypto-dm-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
crypto-dm-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
crypto-dm-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
crypto-dm-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
crypto-dm-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
crypto-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
crypto-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
crypto-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
crypto-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
crypto-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
crypto-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
crypto-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
crypto-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
event-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
event-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
event-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
event-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
event-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
event-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
event-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
event-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
ext4-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
ext4-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
ext4-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
ext4-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
ext4-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
ext4-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
ext4-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
ext4-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
f2fs-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
f2fs-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
f2fs-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
f2fs-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
f2fs-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
f2fs-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
f2fs-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
f2fs-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
fat-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
fat-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
fat-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
fat-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
fat-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
fat-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
fat-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
fat-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
fb-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
fb-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
fb-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
fb-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
fb-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
fb-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
fb-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
fb-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
firewire-core-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
firewire-core-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
firewire-core-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
firewire-core-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
firewire-core-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
firewire-core-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
firewire-core-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
firewire-core-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
fuse-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
fuse-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
fuse-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
fuse-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
fuse-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
fuse-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
fuse-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
fuse-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
input-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
input-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
input-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
input-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
input-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
input-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
input-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
input-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
isofs-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
isofs-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
isofs-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
isofs-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
isofs-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
isofs-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
isofs-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
isofs-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
jfs-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
jfs-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
jfs-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
jfs-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
jfs-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
jfs-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
jfs-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
jfs-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
kernel-image-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
kernel-image-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
kernel-image-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
kernel-image-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
kernel-image-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
kernel-image-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
kernel-image-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
kernel-image-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
linux-headers-6.1.0-15-5kc-malta |   6.1.66-1 | mips64el
linux-headers-6.1.0-15-mips64r2el |   6.1.66-1 | mips64el
linux-headers-6.1.0-19-5kc-malta |   6.1.82-1 | mips64el
linux-headers-6.1.0-19-mips64r2el |   6.1.82-1 | mips64el
linux-headers-6.1.0-20-5kc-malta |   6.1.85-1 | mips64el
linux-headers-6.1.0-20-mips64r2el |   6.1.85-1 | mips64el
linux-headers-6.1.0-21-5kc-malta |   6.1.90-1 | mips64el
linux-headers-6.1.0-21-mips64r2el |   6.1.90-1 | mips64el
linux-image-6.1.0-15-5kc-malta |   6.1.66-1 | mips64el
linux-image-6.1.0-15-5kc-malta-dbg |   6.1.66-1 | mips64el
linux-image-6.1.0-15-mips64r2el |   6.1.66-1 | mips64el
linux-image-6.1.0-15-mips64r2el-dbg |   6.1.66-1 | mips64el
linux-image-6.1.0-19-5kc-malta |   6.1.82-1 | mips64el
linux-image-6.1.0-19-5kc-malta-dbg |   6.1.82-1 | mips64el
linux-image-6.1.0-19-mips64r2el |   6.1.82-1 | mips64el
linux-image-6.1.0-19-mips64r2el-dbg |   6.1.82-1 | mips64el
linux-image-6.1.0-20-5kc-malta |   6.1.85-1 | mips64el
linux-image-6.1.0-20-5kc-malta-dbg |   6.1.85-1 | mips64el
linux-image-6.1.0-20-mips64r2el |   6.1.85-1 | mips64el
linux-image-6.1.0-20-mips64r2el-dbg |   6.1.85-1 | mips64el
linux-image-6.1.0-21-5kc-malta |   6.1.90-1 | mips64el
linux-image-6.1.0-21-5kc-malta-dbg |   6.1.90-1 | mips64el
linux-image-6.1.0-21-mips64r2el |   6.1.90-1 | mips64el
linux-image-6.1.0-21-mips64r2el-dbg |   6.1.90-1 | mips64el
loop-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
loop-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
loop-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
loop-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
loop-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
loop-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
loop-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
loop-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
md-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
md-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
md-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
md-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
md-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
md-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
md-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
md-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
minix-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
minix-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
minix-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
minix-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
minix-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
minix-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
minix-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
minix-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
mmc-core-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
mmc-core-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
mmc-core-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
mmc-core-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
mmc-core-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
mmc-core-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
mmc-core-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
mmc-core-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
mmc-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
mmc-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
mmc-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
mmc-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
mmc-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
mmc-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
mmc-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
mmc-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
mouse-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
mouse-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
mouse-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
mouse-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
mouse-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
mouse-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
mouse-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
mouse-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
multipath-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
multipath-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
multipath-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
multipath-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
multipath-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
multipath-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
multipath-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
multipath-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
nbd-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
nbd-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
nbd-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
nbd-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
nbd-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
nbd-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
nbd-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
nbd-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
nfs-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
nfs-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
nfs-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
nfs-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
nfs-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
nfs-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
nfs-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
nfs-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
nic-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
nic-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
nic-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
nic-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
nic-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
nic-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
nic-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
nic-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
nic-shared-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
nic-shared-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
nic-shared-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
nic-shared-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
nic-shared-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
nic-shared-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
nic-shared-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
nic-shared-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
nic-usb-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
nic-usb-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
nic-usb-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
nic-usb-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
nic-usb-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
nic-usb-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
nic-usb-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
nic-usb-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
nic-wireless-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
nic-wireless-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
nic-wireless-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
nic-wireless-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
nic-wireless-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
nic-wireless-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
nic-wireless-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
nic-wireless-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
pata-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
pata-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
pata-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
pata-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
pata-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
pata-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
pata-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
pata-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
ppp-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
ppp-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
ppp-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
ppp-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
ppp-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
ppp-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
ppp-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
ppp-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
sata-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
sata-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
sata-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
sata-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
sata-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
sata-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
sata-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
sata-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
scsi-core-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
scsi-core-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
scsi-core-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
scsi-core-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
scsi-core-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
scsi-core-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
scsi-core-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
scsi-core-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
scsi-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
scsi-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
scsi-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
scsi-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
scsi-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
scsi-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
scsi-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
scsi-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
scsi-nic-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
scsi-nic-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
scsi-nic-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
scsi-nic-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
scsi-nic-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
scsi-nic-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
scsi-nic-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
scsi-nic-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
sound-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
sound-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
sound-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
sound-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
sound-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
sound-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
sound-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
sound-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
speakup-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
speakup-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
speakup-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
speakup-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
speakup-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
speakup-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
speakup-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
speakup-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
squashfs-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
squashfs-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
squashfs-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
squashfs-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
squashfs-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
squashfs-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
squashfs-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
squashfs-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
udf-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
udf-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
udf-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
udf-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
udf-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
udf-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
udf-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
udf-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
usb-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
usb-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
usb-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
usb-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
usb-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
usb-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
usb-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
usb-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
usb-serial-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
usb-serial-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
usb-serial-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
usb-serial-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
usb-serial-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
usb-serial-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
usb-serial-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
usb-serial-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
usb-storage-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
usb-storage-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
usb-storage-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
usb-storage-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
usb-storage-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
usb-storage-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
usb-storage-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
usb-storage-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el
xfs-modules-6.1.0-15-5kc-malta-di |   6.1.66-1 | mips64el
xfs-modules-6.1.0-15-mips64r2el-di |   6.1.66-1 | mips64el
xfs-modules-6.1.0-19-5kc-malta-di |   6.1.82-1 | mips64el
xfs-modules-6.1.0-19-mips64r2el-di |   6.1.82-1 | mips64el
xfs-modules-6.1.0-20-5kc-malta-di |   6.1.85-1 | mips64el
xfs-modules-6.1.0-20-mips64r2el-di |   6.1.85-1 | mips64el
xfs-modules-6.1.0-21-5kc-malta-di |   6.1.90-1 | mips64el
xfs-modules-6.1.0-21-mips64r2el-di |   6.1.90-1 | mips64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:19:40 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

acpi-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
acpi-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
acpi-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
acpi-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
ata-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
ata-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
ata-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
ata-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
btrfs-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
btrfs-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
btrfs-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
btrfs-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
cdrom-core-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
cdrom-core-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
cdrom-core-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
cdrom-core-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
crc-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
crc-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
crc-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
crc-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
crypto-dm-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
crypto-dm-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
crypto-dm-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
crypto-dm-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
crypto-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
crypto-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
crypto-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
crypto-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
efi-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
efi-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
efi-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
efi-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
event-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
event-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
event-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
event-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
ext4-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
ext4-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
ext4-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
ext4-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
f2fs-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
f2fs-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
f2fs-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
f2fs-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
fat-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
fat-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
fat-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
fat-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
fb-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
fb-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
fb-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
fb-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
firewire-core-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
firewire-core-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
firewire-core-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
firewire-core-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
fuse-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
fuse-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
fuse-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
fuse-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
i2c-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
i2c-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
i2c-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
i2c-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
input-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
input-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
input-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
input-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
isofs-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
isofs-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
isofs-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
isofs-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
jfs-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
jfs-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
jfs-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
jfs-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
kernel-image-6.1.0-15-amd64-di |   6.1.66-1 | amd64
kernel-image-6.1.0-19-amd64-di |   6.1.82-1 | amd64
kernel-image-6.1.0-20-amd64-di |   6.1.85-1 | amd64
kernel-image-6.1.0-21-amd64-di |   6.1.90-1 | amd64
linux-image-6.1.0-15-amd64 |   6.1.66-1 | amd64
linux-image-6.1.0-15-cloud-amd64 |   6.1.66-1 | amd64
linux-image-6.1.0-15-rt-amd64 |   6.1.66-1 | amd64
linux-image-6.1.0-19-amd64 |   6.1.82-1 | amd64
linux-image-6.1.0-19-cloud-amd64 |   6.1.82-1 | amd64
linux-image-6.1.0-19-rt-amd64 |   6.1.82-1 | amd64
linux-image-6.1.0-20-amd64 |   6.1.85-1 | amd64
linux-image-6.1.0-20-cloud-amd64 |   6.1.85-1 | amd64
linux-image-6.1.0-20-rt-amd64 |   6.1.85-1 | amd64
linux-image-6.1.0-21-amd64 |   6.1.90-1 | amd64
linux-image-6.1.0-21-cloud-amd64 |   6.1.90-1 | amd64
linux-image-6.1.0-21-rt-amd64 |   6.1.90-1 | amd64
loop-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
loop-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
loop-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
loop-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
md-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
md-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
md-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
md-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
mmc-core-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
mmc-core-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
mmc-core-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
mmc-core-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
mmc-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
mmc-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
mmc-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
mmc-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
mouse-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
mouse-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
mouse-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
mouse-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
mtd-core-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
mtd-core-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
mtd-core-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
mtd-core-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
multipath-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
multipath-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
multipath-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
multipath-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
nbd-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
nbd-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
nbd-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
nbd-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
nic-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
nic-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
nic-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
nic-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
nic-pcmcia-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
nic-pcmcia-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
nic-pcmcia-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
nic-pcmcia-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
nic-shared-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
nic-shared-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
nic-shared-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
nic-shared-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
nic-usb-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
nic-usb-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
nic-usb-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
nic-usb-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
nic-wireless-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
nic-wireless-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
nic-wireless-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
nic-wireless-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
pata-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
pata-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
pata-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
pata-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
pcmcia-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
pcmcia-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
pcmcia-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
pcmcia-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
pcmcia-storage-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
pcmcia-storage-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
pcmcia-storage-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
pcmcia-storage-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
ppp-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
ppp-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
ppp-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
ppp-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
rfkill-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
rfkill-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
rfkill-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
rfkill-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
sata-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
sata-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
sata-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
sata-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
scsi-core-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
scsi-core-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
scsi-core-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
scsi-core-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
scsi-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
scsi-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
scsi-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
scsi-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
scsi-nic-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
scsi-nic-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
scsi-nic-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
scsi-nic-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
serial-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
serial-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
serial-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
serial-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
sound-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
sound-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
sound-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
sound-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
speakup-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
speakup-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
speakup-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
speakup-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
squashfs-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
squashfs-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
squashfs-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
squashfs-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
udf-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
udf-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
udf-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
udf-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
uinput-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
uinput-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
uinput-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
uinput-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
usb-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
usb-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
usb-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
usb-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
usb-serial-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
usb-serial-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
usb-serial-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
usb-serial-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
usb-storage-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
usb-storage-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
usb-storage-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
usb-storage-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64
xfs-modules-6.1.0-15-amd64-di |   6.1.66-1 | amd64
xfs-modules-6.1.0-19-amd64-di |   6.1.82-1 | amd64
xfs-modules-6.1.0-20-amd64-di |   6.1.85-1 | amd64
xfs-modules-6.1.0-21-amd64-di |   6.1.90-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-amd64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:19:55 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

ata-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
ata-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
ata-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
ata-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
btrfs-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
btrfs-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
btrfs-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
btrfs-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
cdrom-core-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
cdrom-core-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
cdrom-core-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
cdrom-core-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
crc-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
crc-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
crc-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
crc-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
crypto-dm-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
crypto-dm-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
crypto-dm-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
crypto-dm-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
crypto-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
crypto-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
crypto-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
crypto-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
efi-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
efi-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
efi-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
efi-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
event-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
event-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
event-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
event-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
ext4-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
ext4-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
ext4-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
ext4-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
f2fs-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
f2fs-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
f2fs-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
f2fs-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
fat-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
fat-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
fat-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
fat-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
fb-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
fb-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
fb-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
fb-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
fuse-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
fuse-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
fuse-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
fuse-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
i2c-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
i2c-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
i2c-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
i2c-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
input-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
input-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
input-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
input-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
isofs-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
isofs-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
isofs-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
isofs-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
jfs-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
jfs-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
jfs-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
jfs-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
kernel-image-6.1.0-15-arm64-di |   6.1.66-1 | arm64
kernel-image-6.1.0-19-arm64-di |   6.1.82-1 | arm64
kernel-image-6.1.0-20-arm64-di |   6.1.85-1 | arm64
kernel-image-6.1.0-21-arm64-di |   6.1.90-1 | arm64
leds-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
leds-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
leds-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
leds-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
linux-image-6.1.0-15-arm64 |   6.1.66-1 | arm64
linux-image-6.1.0-15-cloud-arm64 |   6.1.66-1 | arm64
linux-image-6.1.0-15-rt-arm64 |   6.1.66-1 | arm64
linux-image-6.1.0-19-arm64 |   6.1.82-1 | arm64
linux-image-6.1.0-19-cloud-arm64 |   6.1.82-1 | arm64
linux-image-6.1.0-19-rt-arm64 |   6.1.82-1 | arm64
linux-image-6.1.0-20-arm64 |   6.1.85-1 | arm64
linux-image-6.1.0-20-cloud-arm64 |   6.1.85-1 | arm64
linux-image-6.1.0-20-rt-arm64 |   6.1.85-1 | arm64
linux-image-6.1.0-21-arm64 |   6.1.90-1 | arm64
linux-image-6.1.0-21-cloud-arm64 |   6.1.90-1 | arm64
linux-image-6.1.0-21-rt-arm64 |   6.1.90-1 | arm64
loop-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
loop-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
loop-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
loop-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
md-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
md-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
md-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
md-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
mmc-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
mmc-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
mmc-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
mmc-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
mtd-core-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
mtd-core-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
mtd-core-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
mtd-core-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
multipath-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
multipath-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
multipath-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
multipath-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
nbd-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
nbd-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
nbd-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
nbd-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
nic-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
nic-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
nic-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
nic-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
nic-shared-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
nic-shared-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
nic-shared-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
nic-shared-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
nic-usb-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
nic-usb-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
nic-usb-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
nic-usb-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
nic-wireless-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
nic-wireless-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
nic-wireless-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
nic-wireless-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
ppp-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
ppp-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
ppp-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
ppp-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
sata-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
sata-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
sata-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
sata-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
scsi-core-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
scsi-core-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
scsi-core-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
scsi-core-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
scsi-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
scsi-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
scsi-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
scsi-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
scsi-nic-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
scsi-nic-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
scsi-nic-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
scsi-nic-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
sound-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
sound-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
sound-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
sound-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
speakup-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
speakup-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
speakup-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
speakup-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
squashfs-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
squashfs-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
squashfs-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
squashfs-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
udf-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
udf-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
udf-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
udf-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
uinput-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
uinput-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
uinput-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
uinput-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
usb-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
usb-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
usb-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
usb-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
usb-serial-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
usb-serial-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
usb-serial-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
usb-serial-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
usb-storage-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
usb-storage-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
usb-storage-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
usb-storage-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64
xfs-modules-6.1.0-15-arm64-di |   6.1.66-1 | arm64
xfs-modules-6.1.0-19-arm64-di |   6.1.82-1 | arm64
xfs-modules-6.1.0-20-arm64-di |   6.1.85-1 | arm64
xfs-modules-6.1.0-21-arm64-di |   6.1.90-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-arm64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:20:09 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

acpi-modules-6.1.0-15-686-di |   6.1.66-1 | i386
acpi-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
acpi-modules-6.1.0-19-686-di |   6.1.82-1 | i386
acpi-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
acpi-modules-6.1.0-20-686-di |   6.1.85-1 | i386
acpi-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
acpi-modules-6.1.0-21-686-di |   6.1.90-1 | i386
acpi-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
ata-modules-6.1.0-15-686-di |   6.1.66-1 | i386
ata-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
ata-modules-6.1.0-19-686-di |   6.1.82-1 | i386
ata-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
ata-modules-6.1.0-20-686-di |   6.1.85-1 | i386
ata-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
ata-modules-6.1.0-21-686-di |   6.1.90-1 | i386
ata-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
btrfs-modules-6.1.0-15-686-di |   6.1.66-1 | i386
btrfs-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
btrfs-modules-6.1.0-19-686-di |   6.1.82-1 | i386
btrfs-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
btrfs-modules-6.1.0-20-686-di |   6.1.85-1 | i386
btrfs-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
btrfs-modules-6.1.0-21-686-di |   6.1.90-1 | i386
btrfs-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
cdrom-core-modules-6.1.0-15-686-di |   6.1.66-1 | i386
cdrom-core-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
cdrom-core-modules-6.1.0-19-686-di |   6.1.82-1 | i386
cdrom-core-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
cdrom-core-modules-6.1.0-20-686-di |   6.1.85-1 | i386
cdrom-core-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
cdrom-core-modules-6.1.0-21-686-di |   6.1.90-1 | i386
cdrom-core-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
crc-modules-6.1.0-15-686-di |   6.1.66-1 | i386
crc-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
crc-modules-6.1.0-19-686-di |   6.1.82-1 | i386
crc-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
crc-modules-6.1.0-20-686-di |   6.1.85-1 | i386
crc-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
crc-modules-6.1.0-21-686-di |   6.1.90-1 | i386
crc-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
crypto-dm-modules-6.1.0-15-686-di |   6.1.66-1 | i386
crypto-dm-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
crypto-dm-modules-6.1.0-19-686-di |   6.1.82-1 | i386
crypto-dm-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
crypto-dm-modules-6.1.0-20-686-di |   6.1.85-1 | i386
crypto-dm-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
crypto-dm-modules-6.1.0-21-686-di |   6.1.90-1 | i386
crypto-dm-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
crypto-modules-6.1.0-15-686-di |   6.1.66-1 | i386
crypto-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
crypto-modules-6.1.0-19-686-di |   6.1.82-1 | i386
crypto-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
crypto-modules-6.1.0-20-686-di |   6.1.85-1 | i386
crypto-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
crypto-modules-6.1.0-21-686-di |   6.1.90-1 | i386
crypto-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
efi-modules-6.1.0-15-686-di |   6.1.66-1 | i386
efi-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
efi-modules-6.1.0-19-686-di |   6.1.82-1 | i386
efi-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
efi-modules-6.1.0-20-686-di |   6.1.85-1 | i386
efi-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
efi-modules-6.1.0-21-686-di |   6.1.90-1 | i386
efi-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
event-modules-6.1.0-15-686-di |   6.1.66-1 | i386
event-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
event-modules-6.1.0-19-686-di |   6.1.82-1 | i386
event-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
event-modules-6.1.0-20-686-di |   6.1.85-1 | i386
event-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
event-modules-6.1.0-21-686-di |   6.1.90-1 | i386
event-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
ext4-modules-6.1.0-15-686-di |   6.1.66-1 | i386
ext4-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
ext4-modules-6.1.0-19-686-di |   6.1.82-1 | i386
ext4-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
ext4-modules-6.1.0-20-686-di |   6.1.85-1 | i386
ext4-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
ext4-modules-6.1.0-21-686-di |   6.1.90-1 | i386
ext4-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
f2fs-modules-6.1.0-15-686-di |   6.1.66-1 | i386
f2fs-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
f2fs-modules-6.1.0-19-686-di |   6.1.82-1 | i386
f2fs-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
f2fs-modules-6.1.0-20-686-di |   6.1.85-1 | i386
f2fs-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
f2fs-modules-6.1.0-21-686-di |   6.1.90-1 | i386
f2fs-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
fat-modules-6.1.0-15-686-di |   6.1.66-1 | i386
fat-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
fat-modules-6.1.0-19-686-di |   6.1.82-1 | i386
fat-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
fat-modules-6.1.0-20-686-di |   6.1.85-1 | i386
fat-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
fat-modules-6.1.0-21-686-di |   6.1.90-1 | i386
fat-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
fb-modules-6.1.0-15-686-di |   6.1.66-1 | i386
fb-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
fb-modules-6.1.0-19-686-di |   6.1.82-1 | i386
fb-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
fb-modules-6.1.0-20-686-di |   6.1.85-1 | i386
fb-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
fb-modules-6.1.0-21-686-di |   6.1.90-1 | i386
fb-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
firewire-core-modules-6.1.0-15-686-di |   6.1.66-1 | i386
firewire-core-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
firewire-core-modules-6.1.0-19-686-di |   6.1.82-1 | i386
firewire-core-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
firewire-core-modules-6.1.0-20-686-di |   6.1.85-1 | i386
firewire-core-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
firewire-core-modules-6.1.0-21-686-di |   6.1.90-1 | i386
firewire-core-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
fuse-modules-6.1.0-15-686-di |   6.1.66-1 | i386
fuse-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
fuse-modules-6.1.0-19-686-di |   6.1.82-1 | i386
fuse-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
fuse-modules-6.1.0-20-686-di |   6.1.85-1 | i386
fuse-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
fuse-modules-6.1.0-21-686-di |   6.1.90-1 | i386
fuse-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
i2c-modules-6.1.0-15-686-di |   6.1.66-1 | i386
i2c-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
i2c-modules-6.1.0-19-686-di |   6.1.82-1 | i386
i2c-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
i2c-modules-6.1.0-20-686-di |   6.1.85-1 | i386
i2c-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
i2c-modules-6.1.0-21-686-di |   6.1.90-1 | i386
i2c-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
input-modules-6.1.0-15-686-di |   6.1.66-1 | i386
input-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
input-modules-6.1.0-19-686-di |   6.1.82-1 | i386
input-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
input-modules-6.1.0-20-686-di |   6.1.85-1 | i386
input-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
input-modules-6.1.0-21-686-di |   6.1.90-1 | i386
input-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
isofs-modules-6.1.0-15-686-di |   6.1.66-1 | i386
isofs-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
isofs-modules-6.1.0-19-686-di |   6.1.82-1 | i386
isofs-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
isofs-modules-6.1.0-20-686-di |   6.1.85-1 | i386
isofs-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
isofs-modules-6.1.0-21-686-di |   6.1.90-1 | i386
isofs-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
jfs-modules-6.1.0-15-686-di |   6.1.66-1 | i386
jfs-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
jfs-modules-6.1.0-19-686-di |   6.1.82-1 | i386
jfs-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
jfs-modules-6.1.0-20-686-di |   6.1.85-1 | i386
jfs-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
jfs-modules-6.1.0-21-686-di |   6.1.90-1 | i386
jfs-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
kernel-image-6.1.0-15-686-di |   6.1.66-1 | i386
kernel-image-6.1.0-15-686-pae-di |   6.1.66-1 | i386
kernel-image-6.1.0-19-686-di |   6.1.82-1 | i386
kernel-image-6.1.0-19-686-pae-di |   6.1.82-1 | i386
kernel-image-6.1.0-20-686-di |   6.1.85-1 | i386
kernel-image-6.1.0-20-686-pae-di |   6.1.85-1 | i386
kernel-image-6.1.0-21-686-di |   6.1.90-1 | i386
kernel-image-6.1.0-21-686-pae-di |   6.1.90-1 | i386
linux-image-6.1.0-15-686 |   6.1.66-1 | i386
linux-image-6.1.0-15-686-pae |   6.1.66-1 | i386
linux-image-6.1.0-15-rt-686-pae |   6.1.66-1 | i386
linux-image-6.1.0-19-686 |   6.1.82-1 | i386
linux-image-6.1.0-19-686-pae |   6.1.82-1 | i386
linux-image-6.1.0-19-rt-686-pae |   6.1.82-1 | i386
linux-image-6.1.0-20-686 |   6.1.85-1 | i386
linux-image-6.1.0-20-686-pae |   6.1.85-1 | i386
linux-image-6.1.0-20-rt-686-pae |   6.1.85-1 | i386
linux-image-6.1.0-21-686 |   6.1.90-1 | i386
linux-image-6.1.0-21-686-pae |   6.1.90-1 | i386
linux-image-6.1.0-21-rt-686-pae |   6.1.90-1 | i386
loop-modules-6.1.0-15-686-di |   6.1.66-1 | i386
loop-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
loop-modules-6.1.0-19-686-di |   6.1.82-1 | i386
loop-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
loop-modules-6.1.0-20-686-di |   6.1.85-1 | i386
loop-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
loop-modules-6.1.0-21-686-di |   6.1.90-1 | i386
loop-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
md-modules-6.1.0-15-686-di |   6.1.66-1 | i386
md-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
md-modules-6.1.0-19-686-di |   6.1.82-1 | i386
md-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
md-modules-6.1.0-20-686-di |   6.1.85-1 | i386
md-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
md-modules-6.1.0-21-686-di |   6.1.90-1 | i386
md-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
mmc-core-modules-6.1.0-15-686-di |   6.1.66-1 | i386
mmc-core-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
mmc-core-modules-6.1.0-19-686-di |   6.1.82-1 | i386
mmc-core-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
mmc-core-modules-6.1.0-20-686-di |   6.1.85-1 | i386
mmc-core-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
mmc-core-modules-6.1.0-21-686-di |   6.1.90-1 | i386
mmc-core-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
mmc-modules-6.1.0-15-686-di |   6.1.66-1 | i386
mmc-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
mmc-modules-6.1.0-19-686-di |   6.1.82-1 | i386
mmc-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
mmc-modules-6.1.0-20-686-di |   6.1.85-1 | i386
mmc-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
mmc-modules-6.1.0-21-686-di |   6.1.90-1 | i386
mmc-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
mouse-modules-6.1.0-15-686-di |   6.1.66-1 | i386
mouse-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
mouse-modules-6.1.0-19-686-di |   6.1.82-1 | i386
mouse-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
mouse-modules-6.1.0-20-686-di |   6.1.85-1 | i386
mouse-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
mouse-modules-6.1.0-21-686-di |   6.1.90-1 | i386
mouse-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
mtd-core-modules-6.1.0-15-686-di |   6.1.66-1 | i386
mtd-core-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
mtd-core-modules-6.1.0-19-686-di |   6.1.82-1 | i386
mtd-core-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
mtd-core-modules-6.1.0-20-686-di |   6.1.85-1 | i386
mtd-core-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
mtd-core-modules-6.1.0-21-686-di |   6.1.90-1 | i386
mtd-core-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
multipath-modules-6.1.0-15-686-di |   6.1.66-1 | i386
multipath-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
multipath-modules-6.1.0-19-686-di |   6.1.82-1 | i386
multipath-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
multipath-modules-6.1.0-20-686-di |   6.1.85-1 | i386
multipath-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
multipath-modules-6.1.0-21-686-di |   6.1.90-1 | i386
multipath-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
nbd-modules-6.1.0-15-686-di |   6.1.66-1 | i386
nbd-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
nbd-modules-6.1.0-19-686-di |   6.1.82-1 | i386
nbd-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
nbd-modules-6.1.0-20-686-di |   6.1.85-1 | i386
nbd-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
nbd-modules-6.1.0-21-686-di |   6.1.90-1 | i386
nbd-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
nic-modules-6.1.0-15-686-di |   6.1.66-1 | i386
nic-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
nic-modules-6.1.0-19-686-di |   6.1.82-1 | i386
nic-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
nic-modules-6.1.0-20-686-di |   6.1.85-1 | i386
nic-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
nic-modules-6.1.0-21-686-di |   6.1.90-1 | i386
nic-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
nic-pcmcia-modules-6.1.0-15-686-di |   6.1.66-1 | i386
nic-pcmcia-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
nic-pcmcia-modules-6.1.0-19-686-di |   6.1.82-1 | i386
nic-pcmcia-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
nic-pcmcia-modules-6.1.0-20-686-di |   6.1.85-1 | i386
nic-pcmcia-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
nic-pcmcia-modules-6.1.0-21-686-di |   6.1.90-1 | i386
nic-pcmcia-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
nic-shared-modules-6.1.0-15-686-di |   6.1.66-1 | i386
nic-shared-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
nic-shared-modules-6.1.0-19-686-di |   6.1.82-1 | i386
nic-shared-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
nic-shared-modules-6.1.0-20-686-di |   6.1.85-1 | i386
nic-shared-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
nic-shared-modules-6.1.0-21-686-di |   6.1.90-1 | i386
nic-shared-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
nic-usb-modules-6.1.0-15-686-di |   6.1.66-1 | i386
nic-usb-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
nic-usb-modules-6.1.0-19-686-di |   6.1.82-1 | i386
nic-usb-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
nic-usb-modules-6.1.0-20-686-di |   6.1.85-1 | i386
nic-usb-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
nic-usb-modules-6.1.0-21-686-di |   6.1.90-1 | i386
nic-usb-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
nic-wireless-modules-6.1.0-15-686-di |   6.1.66-1 | i386
nic-wireless-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
nic-wireless-modules-6.1.0-19-686-di |   6.1.82-1 | i386
nic-wireless-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
nic-wireless-modules-6.1.0-20-686-di |   6.1.85-1 | i386
nic-wireless-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
nic-wireless-modules-6.1.0-21-686-di |   6.1.90-1 | i386
nic-wireless-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
pata-modules-6.1.0-15-686-di |   6.1.66-1 | i386
pata-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
pata-modules-6.1.0-19-686-di |   6.1.82-1 | i386
pata-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
pata-modules-6.1.0-20-686-di |   6.1.85-1 | i386
pata-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
pata-modules-6.1.0-21-686-di |   6.1.90-1 | i386
pata-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
pcmcia-modules-6.1.0-15-686-di |   6.1.66-1 | i386
pcmcia-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
pcmcia-modules-6.1.0-19-686-di |   6.1.82-1 | i386
pcmcia-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
pcmcia-modules-6.1.0-20-686-di |   6.1.85-1 | i386
pcmcia-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
pcmcia-modules-6.1.0-21-686-di |   6.1.90-1 | i386
pcmcia-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
pcmcia-storage-modules-6.1.0-15-686-di |   6.1.66-1 | i386
pcmcia-storage-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
pcmcia-storage-modules-6.1.0-19-686-di |   6.1.82-1 | i386
pcmcia-storage-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
pcmcia-storage-modules-6.1.0-20-686-di |   6.1.85-1 | i386
pcmcia-storage-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
pcmcia-storage-modules-6.1.0-21-686-di |   6.1.90-1 | i386
pcmcia-storage-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
ppp-modules-6.1.0-15-686-di |   6.1.66-1 | i386
ppp-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
ppp-modules-6.1.0-19-686-di |   6.1.82-1 | i386
ppp-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
ppp-modules-6.1.0-20-686-di |   6.1.85-1 | i386
ppp-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
ppp-modules-6.1.0-21-686-di |   6.1.90-1 | i386
ppp-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
rfkill-modules-6.1.0-15-686-di |   6.1.66-1 | i386
rfkill-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
rfkill-modules-6.1.0-19-686-di |   6.1.82-1 | i386
rfkill-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
rfkill-modules-6.1.0-20-686-di |   6.1.85-1 | i386
rfkill-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
rfkill-modules-6.1.0-21-686-di |   6.1.90-1 | i386
rfkill-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
sata-modules-6.1.0-15-686-di |   6.1.66-1 | i386
sata-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
sata-modules-6.1.0-19-686-di |   6.1.82-1 | i386
sata-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
sata-modules-6.1.0-20-686-di |   6.1.85-1 | i386
sata-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
sata-modules-6.1.0-21-686-di |   6.1.90-1 | i386
sata-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
scsi-core-modules-6.1.0-15-686-di |   6.1.66-1 | i386
scsi-core-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
scsi-core-modules-6.1.0-19-686-di |   6.1.82-1 | i386
scsi-core-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
scsi-core-modules-6.1.0-20-686-di |   6.1.85-1 | i386
scsi-core-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
scsi-core-modules-6.1.0-21-686-di |   6.1.90-1 | i386
scsi-core-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
scsi-modules-6.1.0-15-686-di |   6.1.66-1 | i386
scsi-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
scsi-modules-6.1.0-19-686-di |   6.1.82-1 | i386
scsi-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
scsi-modules-6.1.0-20-686-di |   6.1.85-1 | i386
scsi-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
scsi-modules-6.1.0-21-686-di |   6.1.90-1 | i386
scsi-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
scsi-nic-modules-6.1.0-15-686-di |   6.1.66-1 | i386
scsi-nic-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
scsi-nic-modules-6.1.0-19-686-di |   6.1.82-1 | i386
scsi-nic-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
scsi-nic-modules-6.1.0-20-686-di |   6.1.85-1 | i386
scsi-nic-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
scsi-nic-modules-6.1.0-21-686-di |   6.1.90-1 | i386
scsi-nic-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
serial-modules-6.1.0-15-686-di |   6.1.66-1 | i386
serial-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
serial-modules-6.1.0-19-686-di |   6.1.82-1 | i386
serial-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
serial-modules-6.1.0-20-686-di |   6.1.85-1 | i386
serial-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
serial-modules-6.1.0-21-686-di |   6.1.90-1 | i386
serial-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
sound-modules-6.1.0-15-686-di |   6.1.66-1 | i386
sound-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
sound-modules-6.1.0-19-686-di |   6.1.82-1 | i386
sound-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
sound-modules-6.1.0-20-686-di |   6.1.85-1 | i386
sound-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
sound-modules-6.1.0-21-686-di |   6.1.90-1 | i386
sound-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
speakup-modules-6.1.0-15-686-di |   6.1.66-1 | i386
speakup-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
speakup-modules-6.1.0-19-686-di |   6.1.82-1 | i386
speakup-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
speakup-modules-6.1.0-20-686-di |   6.1.85-1 | i386
speakup-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
speakup-modules-6.1.0-21-686-di |   6.1.90-1 | i386
speakup-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
squashfs-modules-6.1.0-15-686-di |   6.1.66-1 | i386
squashfs-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
squashfs-modules-6.1.0-19-686-di |   6.1.82-1 | i386
squashfs-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
squashfs-modules-6.1.0-20-686-di |   6.1.85-1 | i386
squashfs-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
squashfs-modules-6.1.0-21-686-di |   6.1.90-1 | i386
squashfs-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
udf-modules-6.1.0-15-686-di |   6.1.66-1 | i386
udf-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
udf-modules-6.1.0-19-686-di |   6.1.82-1 | i386
udf-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
udf-modules-6.1.0-20-686-di |   6.1.85-1 | i386
udf-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
udf-modules-6.1.0-21-686-di |   6.1.90-1 | i386
udf-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
uinput-modules-6.1.0-15-686-di |   6.1.66-1 | i386
uinput-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
uinput-modules-6.1.0-19-686-di |   6.1.82-1 | i386
uinput-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
uinput-modules-6.1.0-20-686-di |   6.1.85-1 | i386
uinput-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
uinput-modules-6.1.0-21-686-di |   6.1.90-1 | i386
uinput-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
usb-modules-6.1.0-15-686-di |   6.1.66-1 | i386
usb-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
usb-modules-6.1.0-19-686-di |   6.1.82-1 | i386
usb-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
usb-modules-6.1.0-20-686-di |   6.1.85-1 | i386
usb-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
usb-modules-6.1.0-21-686-di |   6.1.90-1 | i386
usb-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
usb-serial-modules-6.1.0-15-686-di |   6.1.66-1 | i386
usb-serial-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
usb-serial-modules-6.1.0-19-686-di |   6.1.82-1 | i386
usb-serial-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
usb-serial-modules-6.1.0-20-686-di |   6.1.85-1 | i386
usb-serial-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
usb-serial-modules-6.1.0-21-686-di |   6.1.90-1 | i386
usb-serial-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
usb-storage-modules-6.1.0-15-686-di |   6.1.66-1 | i386
usb-storage-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
usb-storage-modules-6.1.0-19-686-di |   6.1.82-1 | i386
usb-storage-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
usb-storage-modules-6.1.0-20-686-di |   6.1.85-1 | i386
usb-storage-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
usb-storage-modules-6.1.0-21-686-di |   6.1.90-1 | i386
usb-storage-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386
xfs-modules-6.1.0-15-686-di |   6.1.66-1 | i386
xfs-modules-6.1.0-15-686-pae-di |   6.1.66-1 | i386
xfs-modules-6.1.0-19-686-di |   6.1.82-1 | i386
xfs-modules-6.1.0-19-686-pae-di |   6.1.82-1 | i386
xfs-modules-6.1.0-20-686-di |   6.1.85-1 | i386
xfs-modules-6.1.0-20-686-pae-di |   6.1.85-1 | i386
xfs-modules-6.1.0-21-686-di |   6.1.90-1 | i386
xfs-modules-6.1.0-21-686-pae-di |   6.1.90-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-i386)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:20:38 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

linux-headers-6.1.0-15-common |   6.1.66-1 | all
linux-headers-6.1.0-15-common-rt |   6.1.66-1 | all
linux-headers-6.1.0-19-common |   6.1.82-1 | all
linux-headers-6.1.0-19-common-rt |   6.1.82-1 | all
linux-headers-6.1.0-20-common |   6.1.85-1 | all
linux-headers-6.1.0-20-common-rt |   6.1.85-1 | all
linux-headers-6.1.0-21-common |   6.1.90-1 | all
linux-headers-6.1.0-21-common-rt |   6.1.90-1 | all
linux-support-6.1.0-15 |   6.1.66-1 | all
linux-support-6.1.0-19 |   6.1.82-1 | all
linux-support-6.1.0-20 |   6.1.85-1 | all
linux-support-6.1.0-21 |   6.1.90-1 | all

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:23:00 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

libnvidia-compiler | 525.147.05-7~deb12u1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by nvidia-graphics-drivers - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:23:17 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

libnvidia-compiler | 525.147.05-7~deb12u1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by nvidia-graphics-drivers - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:07:02 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

vasttrafik-cli |      1.5-1 | source, all
Closed bugs: 1061594

------------------- Reason -------------------
RoM; API withdrawn
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:07:26 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

 ruby-arel |    9.0.0-2 | source, all
Closed bugs: 1068719

------------------- Reason -------------------
RoQA; obsolete, integrated into ruby-activerecord, incompatible with ruby-activerecord 6.1.x
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:07:50 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

phppgadmin | 7.13.0+dfsg-2 | source, all
Closed bugs: 1072300

------------------- Reason -------------------
RoM; security issues; incompatible with bookworm PostgreSQL version
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:08:16 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

      spip | 4.1.9+dfsg-1+deb12u4 | source, all
Closed bugs: 1073197

------------------- Reason -------------------
RoM; incompatible with bookworm PHP version
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 29 Jun 2024 08:08:39 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

pytest-salt-factories |  0.907.0-4 | source
python3-saltfactories |  0.907.0-4 | all
Closed bugs: 1073920

------------------- Reason -------------------
RoQA; only needed for not shipped salt
----------------------------------------------
=========================================================================

aide (0.18.3-1+deb12u3) bookworm; urgency=medium
 .
   * Upstream patch to fix concurrent reading of extended
     attributes (xattrs) (Closes: #1070805)

amavisd-new (1:2.13.0-3+deb12u1) stable; urgency=medium
 .
   * Fix race condition in postinst. Closes: #1064349.
   * CVE-2024-28054: Handle multiple boundary parameters that contain
     conflicting values.

apache2 (2.4.59-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 2.4.58
     (Closes: CVE-2023-31122, CVE-2023-43622, CVE-2023-45802)
   * New upstream version 2.4.59
     (Closes: #1068412 CVE-2024-27316 CVE-2024-24795 CVE-2023-38709)
   * Refresh patches
   * Update test framework
apache2 (2.4.59-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream version 2.4.58
     (Closes: CVE-2023-31122, CVE-2023-43622, CVE-2023-45802)
   * Drop 2.4.56-regression patches
   * New upstream version 2.4.59
     (Closes: #1068412 CVE-2024-27316 CVE-2024-24795 CVE-2023-38709)
   * Install NOTICE files
   * Update test framework
   * Refresh patches
apache2 (2.4.58-1) unstable; urgency=medium
 .
   [ Bas Couwenberg ]
   * Provide dh-sequence-apache2 (Closes: #1050870)
 .
   [ Yadd ]
   * Drop dependency to obsolete lsb-base
   * New upstream version 2.4.58 (Closes: CVE-2023-31122, CVE-2023-43622,
     CVE-2023-45802)
   * Refresh patches
apache2 (2.4.57-3) unstable; urgency=medium
 .
   * Update a2enmod to drop given/when (Closes: #1050458)
   * Restore changes not included in Bookworm (set -e in apache2ctl)

archlinux-keyring (0~20231113-1~deb12u1) bookworm; urgency=low
 .
   * Rebuild for bookworm
archlinux-keyring (0~20231017-1) unstable; urgency=low
 .
   * New upstream version 0~20231017
archlinux-keyring (0~20230918-1) unstable; urgency=low
 .
   * New upstream version 0~20230918
   * Update maintainer name
archlinux-keyring (0~20230821-1) unstable; urgency=low
 .
   * New upstream version 0~20230821
   * Revert upstream feature that uses sq >= 0.31.0
archlinux-keyring (0~20230504-1) unstable; urgency=low
 .
   * New upstream version 0~20230504
archlinux-keyring (0~20230320-1) unstable; urgency=low
 .
   * New upstream version 0~20230320
   * Refresh keyring patch

atril (1.26.0-2+deb12u3) bookworm-security; urgency=medium
 .
   * CVE-2023-52076 (Closes: #1061522)

base-files (12.4+deb12u6) bookworm; urgency=medium
 .
   * Change /etc/debian_version to 12.6, for Debian 12.6 point release.

bind9 (1:9.18.24-1) bookworm-security; urgency=high
 .
   * New upstream version 9.18.24
    - CVE-2023-4408: Parsing large DNS messages may cause excessive CPU
      load
    - CVE-2023-5517: Querying RFC 1918 reverse zones may cause an assertion
      failure when "nxdomain-redirect" is enabled
    - CVE-2023-5679: Enabling both DNS64 and serve-stale may cause an
      assertion failure during recursive resolution
    - CVE-2023-6516: Specific recursive query patterns may lead to an
      out-of-memory condition
    - CVE-2023-50387: KeyTrap - Extreme CPU consumption in DNSSEC validator
    - CVE-2023-50868: Preparing an NSEC3 closest encloser proof can exhaust
      CPU resources
bind9 (1:9.18.24-1~bpo11+1) bullseye-backports; urgency=high
 .
   * Rebuild for bullseye-backports.

bioawk (1.0-4+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * debian/rules: Add --no-parallel to avoid the effects of a Makefile bug which
     makes the package to FTBFS randomly. Closes: #1068341.

bluez (5.66-1+deb12u2) bookworm; urgency=medium
 .
   * CVE-2023-27349
   * CVE-2023-50229 / CVE-2023-50230

cacti (1.2.24+ds1-1+deb12u2) bookworm-security; urgency=high
 .
   [Sylvain Beucler]
   * Non-maintainer upload by the LTS Security Team.
   * Fix patch for CVE-2023-39360.
   * Fix patch for CVE-2023-39513.
   * Backport security patches: CVE-2023-49084, CVE-2023-49085,
     CVE-2023-49086, CVE-2023-49088, CVE-2023-50250, CVE-2023-50569
     (Closes: #1059254)
 .
   [Paul Gevers]
   * Depends on node-dompurify and link purify.js instead of using upstream
     vendored version

cdo (2.1.1-1+deb12u1) bookworm; urgency=medium
 .
   * Remove enable-hirlam-extensions as it causes issues with ICON data files
     Closes: #1051017

cjson (1.7.15-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Backport patch to add NULL checkings (CVE-2023-50472, CVE-2023-50471)
     (Closes: #1059287)

clamav (1.0.5+dfsg-1~deb12u1) bookworm; urgency=medium
 .
   * Import 1.0.4 (Closes: #1063479).
     - Update symbols.
     - CVE-2024-20290 (Fixed a possible heap overflow read bug in the OLE2 file
       parser that could cause a denial-of-service (DoS) condition.)
     - CVE-2024-20328 (Fixed a possible command injection vulnerability in the
       "VirusEvent" feature of ClamAV's ClamD service.
clamav (1.0.4+dfsg-1) unstable; urgency=medium
 .
   * Import 1.0.4
     - Update symbols.
   * Add systemd-dev to Build-Depends (Closes: #1060559).
   * Mark clamav-base as foreign (Closes: #1060889).
clamav (1.0.3+dfsg-2) unstable; urgency=medium
 .
   * Remove unnecessary warning messages in freshclam during update.
clamav (1.0.3+dfsg-1) unstable; urgency=medium
 .
   * Import 1.0.3

cloud-init (22.4.2-1+deb12u1) bookworm; urgency=medium
 .
   * Add Conflicts/Replaces relationship on cloud-init-22.4.2

cockpit (287.1-0+deb12u2) bookworm-security; urgency=medium
 .
   * Add 0001-ssh-Use-valid-host-name-in-test-sshbridge.patch:
     Use valid host name in test-sshbridge. Fixes FTBFS due to unit test
     failure when building against libssh 0.10.6. (Closes: #1069059)
cockpit (287.1-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream security update:
     - sosreport: Fix command injection with crafted report names
       [CVE-2024-2947]

comitup (1.38-2~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 comitup (1.38-2) unstable; urgency=medium
 .
   * Ensure service is unmasked in post install (Closes: #1041447).

composer (2.5.5-1+deb12u2) bookworm-security; urgency=medium
 .
   * Include security fixes from 2.7.7:
     - Multiple command injections via malicious git/hg branch names
       (GHSA-v9qv-c7wm-wgmf) [CVE-2024-35242] (Closes: #1073126)
     - Command injection via malicious git branch name
       (GHSA-47f6-5gq3-vx9c) [CVE-2024-35241] (Closes: #1073125)
composer (2.5.5-1+deb12u1) bookworm-security; urgency=medium
 .
   * Track debian/bookworm
   * Merge pull request from GHSA-7c6p-848j-wh5h [CVE-2024-24821]
     (Closes: #1063603)
   * Force system dependencies loading

cpu (1.4.3-14~deb12u1) bookworm; urgency=medium
 .
   * QA upload.
   * Rebuild or bookworm.
 .
 cpu (1.4.3-14) unstable; urgency=medium
 .
   * QA upload.
   * Actually provide a definition of globalLdap.  (Closes: #1067439)
   * Add smoke test.
cpu (1.4.3-14~deb11u1) bullseye; urgency=medium
 .
   * QA upload.
   * Rebuild for bullseye.
 .
 cpu (1.4.3-14~deb12u1) bookworm; urgency=medium
 .
   * QA upload.
   * Rebuild for bookworm.
 .
 cpu (1.4.3-14) unstable; urgency=medium
 .
   * QA upload.
   * Actually provide a definition of globalLdap.  (Closes: #1067439)
   * Add smoke test.

crmsh (4.4.1-1+deb12u1) bookworm; urgency=medium
 .
   * d/postinst: create a logging directory (Closes: #1042448)
   * d/patches: add patch for log file error

crowdsec-firewall-bouncer (0.0.25-4~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.

curl (7.88.1-10+deb12u6) bookworm; urgency=medium
 .
   * Team upload.
 .
   [ Sergio Durigan Junior ]
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     (Closes: #1053643)
 .
   [ Guilherme Puida Moreira ]
   * Add patches to fix CVE-2024-2004 and CVE-2024-2398.
     - CVE-2024-2004: When a protocol selection parameter disables all
       protocols without adding any then the default set of protocols would
       remain in the allowed set due to an error in the logic for removing
       protocols.
     - CVE-2024-2398: When an application tells libcurl it wants to allow
       HTTP/2 server push and the amount of received headers for the push
       surpasses the maximum allowed limit (1000), libcurl aborts the server
       push and leaks the memory allocated for the previously allocated
       headers.
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     Refresh patch.
curl (7.88.1-10+deb12u6~bpo11+1) bullseye-backports; urgency=medium
 .
   * Team upload.
   * Rebuild for bullseye-backports.
 .
 curl (7.88.1-10+deb12u6) bookworm; urgency=medium
 .
   * Team upload.
 .
   [ Sergio Durigan Junior ]
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     (Closes: #1053643)
 .
   [ Guilherme Puida Moreira ]
   * Add patches to fix CVE-2024-2004 and CVE-2024-2398.
     - CVE-2024-2004: When a protocol selection parameter disables all
       protocols without adding any then the default set of protocols would
       remain in the allowed set due to an error in the logic for removing
       protocols.
     - CVE-2024-2398: When an application tells libcurl it wants to allow
       HTTP/2 server push and the amount of received headers for the push
       surpasses the maximum allowed limit (1000), libcurl aborts the server
       push and leaks the memory allocated for the previously allocated
       headers.
   * d/p/openldap-create-ldap-URLs-correctly-for-IPv6-addresses.patch:
     Refresh patch.

cyrus-imapd (3.6.1-4+deb12u2) bookworm-security; urgency=medium
 .
   * Fix unbounded memory allocation (Closes: CVE-2024-34055)

dav1d (1.0.0-2+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2024-1580 (Closes: #1064310)

dcmtk (3.6.7-9~deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Rebuild for bookworm.
 .
 dcmtk (3.6.7-9) unstable; urgency=medium
 .
   * Team upload.
   * Fix postrm
     Closes: #1038776

debian-installer (20230607+deb12u6) bookworm; urgency=medium
 .
   * Bump Linux kernel ABI to 6.1.0-22.
   * Adjust linux-image build-deps as well.

debian-installer-netboot-images (20230607+deb12u6) bookworm; urgency=medium
 .
   * Update to 20230607+deb12u6, from bookworm-proposed-updates.

debvm (0.2.10+deb12u1) bookworm; urgency=medium
 .
   [ Johannes Schauer Marin Rodrigues ]
   * bin/debvm-run: allow being run in environments without TERM set
 .
   [ Jochen Sprickerhof ]
   * Fix resolv.conf in stretch
 .
   [ Johannes Schauer Marin Rodrigues ]
   * bin/debvm-waitssh: make --timeout=N work
 .
   [ Helmut Grohne ]
   * debvm-create: do install login

dhcpcd5 (9.4.1-24~deb12u4) bookworm; urgency=medium
 .
   * Add --no-stop-on-upgrade --no-restart-after-upgrade (Closes: #1057959).
   * Cherry-pick upstream backported fixes for RC bug (Closes: #1050805).
   * Update dhcpcd.preinst version check to match current one.

distro-info-data (0.58+deb12u2) bookworm; urgency=medium
 .
   * Update data to 0.61:
     - Declare LTS and ELTS intentions for bullseye and bookworm
     - debian: Fix LTS EOL date for bullseye
     - debian.csv: Fix EOL date for 2.2
     - Add Ubuntu 24.10 "Oracular Oriole" (LP: #2064136)

djangorestframework (3.14.0-2+deb12u1) bookworm; urgency=medium
 .
   [ Carsten Schoenert ]
   * [0e3d1fc] d/gbp.conf: Pick up some defaults, adjust to debian/bookworm
 .
   [ Simon Lyngshede ]
   * [7867bee] d/rules: Don't exclude bootstrap-tweaks.css file
     (Closes: #1068747)

dm-writeboost (2.2.17-0.2~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 dm-writeboost (2.2.17-0.2) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Fix misspelled autopkgtest dependency.
 .
 dm-writeboost (2.2.17-0.1) unstable; urgency=medium
 .
   [ Andreas Beckmann ]
   * Non-maintainer upload.
   * New upstream release [May 2024]. (Closes: #1069878)
   * Update upstream metadata.
   * dkms.conf: Set BUILD_EXCLUSIVE_KERNEL_MIN="3.9".
   * Fix autopkgtest dependencies. (Closes: #1069600)
 .
   [ Andrea Righi ]
   * Skip I/O-intensive autopkgtest on small systems (LP: #2012947)
dm-writeboost (2.2.17-0.1) unstable; urgency=medium
 .
   [ Andreas Beckmann ]
   * Non-maintainer upload.
   * New upstream release [May 2024]. (Closes: #1069878)
   * Update upstream metadata.
   * dkms.conf: Set BUILD_EXCLUSIVE_KERNEL_MIN="3.9".
   * Fix autopkgtest dependencies. (Closes: #1069600)
 .
   [ Andrea Righi ]
   * Skip I/O-intensive autopkgtest on small systems (LP: #2012947)

dns-root-data (2024041801~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm. (Closes: #1072035)
dns-root-data (2024041801~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye. (See #1072035.)

dpdk (22.11.5-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream release 22.11.5; for a full list of changes see:
     http://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html
   * Update symbols file for private symbols change

ebook-speaker (6.2.0-4+deb12u1) bookworm; urgency=medium
 .
   * patches/long-logins: Fix testing belonging to the audio group.

edk2 (2022.11-6+deb12u1) bookworm-security; urgency=medium
 .
   * Cherry-pick security fixes from upstream:
     - Fix heap buffer overflow in Tcg2MeasureGptTable(), CVE-2022-36763
       + 0001-SecurityPkg-DxeTpm2MeasureBootLib-SECURITY-PATCH-411.patch
       + 0002-SecurityPkg-DxeTpmMeasureBootLib-SECURITY-PATCH-4117.patch
       + 0003-SecurityPkg-Adding-CVE-2022-36763-to-SecurityFixes.y.patch
     - Fix heap buffer overflow in Tcg2MeasurePeImage(), CVE-2022-36764
       + 0001-SecurityPkg-DxeTpm2MeasureBootLib-SECURITY-PATCH-411-2.patch
       + 0002-SecurityPkg-DxeTpmMeasureBootLib-SECURITY-PATCH-4118.patch
       + 0003-SecurityPkg-Adding-CVE-2022-36764-to-SecurityFixes.y.patch
     - Fix build failure due to symbol collision in above patches:
       + 0001-SecurityPkg-DxeTpm2MeasureBootLib-SECURITY-PATCH-411-3.patch
       + 0002-SecurityPkg-DxeTpmMeasureBootLib-SECURITY-PATCH-4117-2.patch
       + 0003-SecurityPkg-Updating-SecurityFixes.yaml-after-symbol.patch
     - Fix integer overflow in CreateHob(), CVE-2022-36765
       + 0001-UefiPayloadPkg-Hob-Integer-Overflow-in-CreateHob.patch
     - Fix a buffer overflow via a long server ID option in DHCPv6
       client, CVE-2023-45230:
       + 0001-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Pa.patch
       + 0002-NetworkPkg-Add-Unit-tests-to-CI-and-create-Host-Test.patch
       + 0003-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Un.patch
     - Fix an out-of-bounds read vulnerability when processing the IA_NA
       or IA_TA option in a DHCPv6 Advertise message, CVE-2023-45229:
       + 0004-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45229-Pa.patch
       + 0005-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45229-Un.patch
     - Fix an out-of-bounds read when processing Neighbor Discovery
       Redirect messages, CVE-2023-45231:
       + 0006-NetworkPkg-Ip6Dxe-SECURITY-PATCH-CVE-2023-45231-Patc.patch
       + 0007-NetworkPkg-Ip6Dxe-SECURITY-PATCH-CVE-2023-45231-Unit.patch
     - Avoid an infinite loop when parsing unknown options in the
       Destination Options header of IPv6, CVE-2023-45232:
       + 0008-NetworkPkg-Ip6Dxe-SECURITY-PATCH-CVE-2023-45232-Patc.patch
       + 0009-NetworkPkg-Ip6Dxe-SECURITY-PATCH-CVE-2023-45232-Unit.patch
     - Avoid an infinite loop when parsing a PadN option in the
       Destination Options header of IPv6, CVE-2023-45233:
       + 0010-NetworkPkg-UefiPxeBcDxe-SECURITY-PATCH-CVE-2023-4523.patch
       + 0011-NetworkPkg-UefiPxeBcDxe-SECURITY-PATCH-CVE-2023-4523.patch
     - Fix a potential buffer overflow when processing a DNS Servers
       option from a DHCPv6 Advertise message, CVE-2023-45234:
       + 0013-NetworkPkg-UefiPxeBcDxe-SECURITY-PATCH-CVE-2023-4523.patch
     - Fix a potential buffer overflow when handling a Server ID option
       from a DHCPv6 proxy Advertise message, CVE-2023-45235:
       + 0014-NetworkPkg-UefiPxeBcDxe-SECURITY-PATCH-CVE-2023-4523.patch
     - Record fixes in a SecurityFix.yaml file:
       + 0015-NetworkPkg-Adds-a-SecurityFix.yaml-file.patch
     - (Closes: #1060408, #1061256)
   * Disable the built-in Shell when SecureBoot is enabled, CVE-2023-48733.
     Thanks to Mate Kukri. LP: #2040137.
     - Disable the built-in Shell when SecureBoot is enabled:
       + Disable-the-Shell-when-SecureBoot-is-enabled.patch
     - d/tests: Drop the boot-to-shell tests for images w/ Secure Boot active.
     - d/tests: Update run_cmd_check_secure_boot() to not expect shell
       interaction.

emacs (1:28.2+1-15+deb12u2) bookworm; urgency=medium
 .
   * debian/rules: fix override_dh_auto_install indentation.
 .
   * Update package-keyring.gpg to deb/emacs/v/29.3+1-3 version.  The
     existing keyring has expired.  Replace it with the upstream version
     from our latest 29.3 package, retrieved from our repository via "git
     show deb/emacs/v/29.3+1-3:etc/package-keyring.gpg >
     debian/replace/etc/package-keyring.gpg". (Closes: 1070664, 942413)
 .
 emacs (1:28.2+1-15+deb12u1) bookworm; urgency=high
 .
   * Fix CVE-2024-30202, CVE-2024-30203, CVE-2024-30204 & CVE-2024-30205
     (Closes: #1067630).
emacs (1:28.2+1-15+deb12u1) bookworm; urgency=high
 .
   * Fix CVE-2024-30202, CVE-2024-30203, CVE-2024-30204 & CVE-2024-30205
     (Closes: #1067630).

engrampa (1.26.0-1+deb12u2) bookworm-security; urgency=medium
 .
   * debian/patches:
     + CVE-2023-52138: Add 0006_use-unar-instead-of-cpio-for-CPIO-archives.patch.
       Use unar instead of cpio for CPIO archives. (Closes: #1063494).

extrepo-data (1.0.3+deb12u1) bookworm; urgency=medium
 .
   * Update the repo data from the Debian unstable branch.
   * Fix d/copyright mime syntax.

ffmpeg (7:5.1.5-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 5.1.5

firefox-esr (115.12.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-26, also known as:
     CVE-2024-5702, CVE-2024-5688, CVE-2024-5690, CVE-2024-5691,
     CVE-2024-5693, CVE-2024-5696, CVE-2024-5700.
firefox-esr (115.12.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-26, also known as:
     CVE-2024-5702, CVE-2024-5688, CVE-2024-5690, CVE-2024-5691,
     CVE-2024-5693, CVE-2024-5696, CVE-2024-5700.
firefox-esr (115.11.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-22, also known as:
     CVE-2024-4367, CVE-2024-4767, CVE-2024-4768, CVE-2024-4769,
     CVE-2024-4770, CVE-2024-4777.
firefox-esr (115.11.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-22, also known as:
     CVE-2024-4367, CVE-2024-4767, CVE-2024-4768, CVE-2024-4769,
     CVE-2024-4770, CVE-2024-4777.
firefox-esr (115.11.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-22, also known as:
     CVE-2024-4367, CVE-2024-4767, CVE-2024-4768, CVE-2024-4769,
     CVE-2024-4770, CVE-2024-4777.
firefox-esr (115.10.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-19, also known as:
     CVE-2024-3852, CVE-2024-3854, CVE-2024-3857, CVE-2024-2609,
     CVE-2024-3859, CVE-2024-3861, CVE-2024-3302, CVE-2024-3864.
firefox-esr (115.10.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-19, also known as:
     CVE-2024-3852, CVE-2024-3854, CVE-2024-3857, CVE-2024-2609,
     CVE-2024-3859, CVE-2024-3861, CVE-2024-3302, CVE-2024-3864.
firefox-esr (115.10.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-19, also known as:
     CVE-2024-3852, CVE-2024-3854, CVE-2024-3857, CVE-2024-2609,
     CVE-2024-3859, CVE-2024-3861, CVE-2024-3302, CVE-2024-3864.
firefox-esr (115.9.1esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-16, also known as CVE-2024-29944.
firefox-esr (115.9.1esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-16, also known as CVE-2024-29944.
 .
   * debian/control*, debian/rules: Undo workaround for bug 1052002.
firefox-esr (115.9.1esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-16, also known as CVE-2024-29944.
 .
   * debian/control*, debian/rules: Undo workaround for bug 1052002.
firefox-esr (115.9.0esr-2) unstable; urgency=medium
 .
   * debian/control*, debian/rules: Undo workaround for bug 1052002.
firefox-esr (115.9.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-13, also known as:
     CVE-2024-0743, CVE-2024-2607, CVE-2024-2608, CVE-2024-2616,
     CVE-2023-5388, CVE-2024-2610, CVE-2024-2611, CVE-2024-2612,
     CVE-2024-2614.
firefox-esr (115.9.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-13, also known as:
     CVE-2024-0743, CVE-2024-2607, CVE-2024-2608, CVE-2024-2616,
     CVE-2023-5388, CVE-2024-2610, CVE-2024-2611, CVE-2024-2612,
     CVE-2024-2614.
firefox-esr (115.9.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-13, also known as:
     CVE-2024-0743, CVE-2024-2607, CVE-2024-2608, CVE-2024-2616,
     CVE-2023-5388, CVE-2024-2610, CVE-2024-2611, CVE-2024-2612,
     CVE-2024-2614.
firefox-esr (115.8.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
     - Fixed FTBFS with python 3.12. Closes: #1061437.
   * Fixes for mfsa2024-06, also known as:
     CVE-2024-1546, CVE-2024-1547, CVE-2024-1548, CVE-2024-1549,
     CVE-2024-1550, CVE-2024-1551, CVE-2024-1552, CVE-2024-1553.
firefox-esr (115.8.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-06, also known as:
     CVE-2024-1546, CVE-2024-1547, CVE-2024-1548, CVE-2024-1549,
     CVE-2024-1550, CVE-2024-1551, CVE-2024-1552, CVE-2024-1553.
firefox-esr (115.8.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-06, also known as:
     CVE-2024-1546, CVE-2024-1547, CVE-2024-1548, CVE-2024-1549,
     CVE-2024-1550, CVE-2024-1551, CVE-2024-1552, CVE-2024-1553.
firefox-esr (115.7.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-02, also known as:
     CVE-2024-0741, CVE-2024-0742, CVE-2024-0746, CVE-2024-0747,
     CVE-2024-0749, CVE-2024-0750, CVE-2024-0751, CVE-2024-0753,
     CVE-2024-0755.

flatpak (1.14.8-1~deb12u1) bookworm; urgency=medium
 .
   * Backport upstream stable release for Debian 12
   * Changes relative to 1.14.4-1+deb12u1 in bookworm-security:
     - New upstream stable release 1.14.6
       + Don't parse `<developer><name/></developer>` as though it was
         the application name
       + Install a tmpfiles.d snippet to clean up /var/tmp/flatpak-cache-*
         during boot
       + Stop http transfers if a download in progress becomes very slow
       + Silence warnings when using GLib 2.77.0 or later
       + Bypass page cache for backend requests in revokefs, fixing
         installation errors with libostree 2023.4 or later
       + Show AppStream metadata in `flatpak remote-info` as intended,
         fixing a regression in 1.9.1
       + Don't let Flatpak apps inherit $VK_DRIVER_FILES or $VK_ICD_FILENAMES
         from the host system, which would be wrong in the sandbox
       + Fix forward-compatibility with libappstream 0.17.x and 1.0
       + Fix a memory leak
       + Fix some compiler warnings
       + Make the test failure produce a clearer message if a required tool
         is missing
       + Don't force `GIO_USE_VFS=local` for programs launched via
         flatpak-spawn
       + Documentation improvements
     - New upstream stable release 1.14.7
       + Automatically reload D-Bus session bus configuration when apps are
         installed or upgraded, ensuring that any new .service files get
         picked up
       + Allow apps to be run if the D-Bus system bus is missing or
         non-functional
       + Add several more environment variables to the list not inherited
         into the sandbox:
         * $LD_AUDIT, $LD_PRELOAD for ld.so
         * $__EGL_VENDOR_LIBRARY_DIRS, etc. for EGL
         * $VK_ADD_DRIVER_FILES, etc. for Vulkan
         * $container, when running Flatpak inside a container manager
       + Use xdg-desktop-portal-gnome, if installed, to detect whether apps
         are running in the background
       + If an app's data is migrated to a new name and then deleted, don't
         try to migrate it again, avoiding a recursive symlink loop
       + Don't leak temporary variable $new_dirs from /etc/profile.d/flatpak.sh
         into user shell sessions
       + Avoid an out-of-bounds left-shift (which is technically undefined
         behaviour) when hashing object names
       + Fix critical warnings "GFileInfo created without
         standard::is-symlink" when using /var/lib/flatpak/extension with
         testing/unstable glib2.0
       + Fix validation of documentation against Docbook DTD
       + Fix a misleading comment in the test for CVE-2024-32462
       + Fix a double-free in the test suite
       + Skip more tests if bubblewrap works but FUSE doesn't
     - New upstream stable release 1.14.8
       + Respin of 1.14.7 reverting unintended submodule changes
     - d/control: Move dbus-system-bus from Depends to Recommends.
       `flatpak run` no longer has a working system bus as a hard requirement
       (verified in `podman run --privileged --rm -it debian:sid-slim`)
     - Drop CVE-2024-32462 patches, included in the upstream stable release
     - debian/test.sh: Disable http proxy if used, to ensure we can reach
       a HTTP server on localhost during automated tests
   * Changes relative to 1.14.8-1 in unstable:
     - Revert polkitd dependencies to polkitd | policykit-1 as previously
       used in bookworm
     - Revert pkgconf dependencies to pkg-config as previously used in
       bookworm
     - Revert location of systemd unit to /lib/systemd/system as previously
       used in bookworm, dropping versioned dependency on debhelper 13.11.6~
     - Revert changes related to Debian 13 GIR XML packaging policy
flatpak (1.14.6-1) unstable; urgency=high
 .
   * New upstream stable release 1.14.6
     - Don't allow an executable name to be misinterpreted as a command-line
       option for bwrap(1). This prevents a sandbox escape where a malicious
       or compromised app could ask xdg-desktop-portal to generate a .desktop
       file with access to files outside the sandbox. (CVE-2024-32462)
     - Don't parse `<developer><name/></developer>` as the application name
   * d/control: Drop alternative dependencies on transitional policykit-1.
     polkitd was released in Debian 12 and Ubuntu 22.04.
flatpak (1.14.6-1~deb13u1) trixie; urgency=high
 .
   * Rebuild for trixie
flatpak (1.14.5-1) unstable; urgency=medium
 .
   * New upstream stable release
   * Drop patches cherry-picked in 1.14.4-2, applied upstream
   * d/flatpak.install: Install new tmpfiles.d snippet
   * d/test.sh: Disable http proxy if used, to ensure we can reach localhost.
     Some reproducible.org builders set http_proxy, which makes attempts
     to access our temporary http server on localhost fail with a 503 error.
   * d/control: (Build-)depend on pkgconf in preference to pkg-config
   * d/control: Add ${gir:Depends}, ${gir:Provides} to -dev package
     (Helps: #1030223)
   * d/control: Build-depend on required GIR XML files (Helps: #1030223)
   * Install systemd system unit into /usr/lib/systemd/system.
     This was allowed by TC resolution #1053901.
     Build-depend on debhelper 13.11.6~ to ensure that the unit is still
     picked up by dh_installsystemd.
flatpak (1.14.4-2) unstable; urgency=medium
 .
   * Team upload
 .
   [ Simon McVittie ]
   * Mention #1033098, #1033099 in previous changelog entry
 .
   [ Jeremy Bicha ]
   * Cherry-pick 2 patches for compatibility with glib 2.77
flatpak (1.14.4-1+deb12u1) bookworm-security; urgency=high
 .
   * d/p/When-starting-non-static-command-using-bwrap-use.patch,
     d/p/test-run-Add-a-reproducer-for-CVE-2024-32462.patch:
     Don't allow an executable name to be misinterpreted as a command-line
     option for bwrap(1). This prevents a sandbox escape where a malicious
     or compromised app could ask xdg-desktop-portal to generate a .desktop
     file with access to files outside the sandbox. (CVE-2024-32462)
   * d/gbp.conf: Use debian/bookworm packaging branch
flatpak (1.14.4-1+deb12u1~bpo11+1) bullseye-backports; urgency=high
 .
   * Rebuild bookworm security update for bullseye-backports
   * Remaining changes, relative to bookworm-security:
     - d/control: Relax libseccomp build-dependency to 2.5.0
     - d/control, d/gbp.conf: Adjust git branch for bullseye-backports
 .
 flatpak (1.14.4-1+deb12u1) bookworm-security; urgency=high
 .
   * d/p/When-starting-non-static-command-using-bwrap-use.patch,
     d/p/test-run-Add-a-reproducer-for-CVE-2024-32462.patch:
     Don't allow an executable name to be misinterpreted as a command-line
     option for bwrap(1). This prevents a sandbox escape where a malicious
     or compromised app could ask xdg-desktop-portal to generate a .desktop
     file with access to files outside the sandbox. (CVE-2024-32462)
   * d/gbp.conf: Use debian/bookworm packaging branch

fontforge (1:20230101~dfsg-1.1~deb12u1) bookworm-security; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm-security.
 .
 fontforge (1:20230101~dfsg-1.1) unstable; urgency=high
 .
   * Non-maintainer upload.
   * CVE-2024-25081: Spline Font command injection via crafted filenames
   * CVE-2024-25082: Spline Font command injection via crafted archives
     or compressed files
   * Closes: #1064967

fpga-icestorm (0~20230218gitd20a5e9-1~deb12u1) bookworm; urgency=medium
 .
   * Fix yosys incompatibility (Closes: #1055171)
fpga-icestorm (0~20220915gita545498-4) unstable; urgency=medium
 .
   * autopkgtest: Fix missing icetime command
   * Refresh patches
   * Add patch fixing up5k_rgb icetime failure

freetype (2.12.1+dfsg-5+deb12u3) bookworm; urgency=medium
 .
   * Disable the experimental and incomplete COLRv1 API once again.
   * debian/patches:
     + Re-enable disable_COLRv1.patch.
     + get_colr_glyph_paint.patch: Use correct predicate before function call.
freetype (2.12.1+dfsg-5+deb12u2) bookworm; urgency=high
 .
   * debian/patches: Temporarily revert disable_COLRv1.patch to allow
     Chromium to start (Closes: #1053142).
freetype (2.12.1+dfsg-5+deb12u1) bookworm; urgency=medium
 .
   * debian/patches: Disable COLRv1 support, which was unintentionally enabled
     by upstream in this version of FreeType (Closes: #1051816).

galera-4 (26.4.18-0+deb12u1) bookworm; urgency=medium
 .
   * Switch to upstream aware DEP-14 branch structure in gbp.conf
   * New upstream release 26.4.18. Includes multiple bug fixes, see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.18.txt
   * For previous release details see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.17.txt
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.16.txt
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.15.txt
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.14.txt
   * New upstream signing key 3D53839A70BC938B08CDD47F45460A518DA84635,
     verified from 26.4.17 release notes
   * New upstream release includes multiple Debian build and post-build test
     failure fixes:
     - Generate keys and certificates for SSL tests (Closes: #1053334)
     - Attempt to bind to UDP and skips tests if not available
       (Related: #1007954)
     - Fix 'uuid == WSREP_UUID_UNDEFINED' (Related: #970044)
     - Fix issues reported -Werror when compiling (Related: #970043)
     - Fix UBSAN issues (Closes: #1053183, Related: #970042)
galera-4 (26.4.18-0+deb11u1) bullseye; urgency=medium
 .
   * Switch to upstream aware DEP-14 branch structure in gbp.conf
   * New upstream release 26.4.18. Includes multiple bug fixes, see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.18.txt
   * For previous release details see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.17.txt
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.16.txt
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.15.txt
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.14.txt
   * New upstream signing key 3D53839A70BC938B08CDD47F45460A518DA84635,
     verified from 26.4.17 release notes
   * New upstream release includes multiple Debian build and post-build test
     failure fixes:
     - Generate keys and certificates for SSL tests (Closes: #1053334)
     - Attempt to bind to UDP and skips tests if not available
       (Related: #1007954)
     - Fix 'uuid == WSREP_UUID_UNDEFINED' (Related: #970044)
     - Fix issues reported -Werror when compiling (Related: #970043)
     - Fix UBSAN issues (Closes: #1053183, Related: #970042)
galera-4 (26.4.16-2) unstable; urgency=medium
 .
   * Format patches from Daniel Black to use DEP-3 patch tagging guidelines
   * Apply upstream patches from codership/galera#558, which includes
     multiple Debian build and post-build test failure fixes:
     - Attempt to bind to UDP and skips tests if not available
       (Related: #1007954)
     - Show libgalera_smm.so build output instead of sending it to /dev/null
     - (Related: #970043)
     - Generate keys and certificates for SSL tests (Closes: #1053334)
     - Fix 'uuid == WSREP_UUID_UNDEFINED' (Related: #970044)
     - Fix issues reported -Werror when compiling (Related: #970043)
     - Fix UBSAN issues (Closes: #1053183, Related: #970042)
galera-4 (26.4.16-1) unstable; urgency=medium
 .
   [ Otto Kekäläinen ]
   * New upstream release 26.4.14. Includes multiple bug fixes, see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.16.txt
   * For previous release details see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.15.txt
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.14.txt
   * Note that 26.4.14-1~exp1 was in Debian experimental but never in unstable
 .
   [ Faustin Lammler ]
   * Running daemon under nobody user is not recommended (Closes: #970045)
 .
   [ Daniel Black ]
   * Salsa-CI: use stretch archive
   * Reduce galera.cache size test for Salsa
galera-4 (26.4.14-1~exp1) experimental; urgency=medium
 .
   [ Otto Kekäläinen ]
   * New upstream release 26.4.14. Includes multiple bug fixes, see
     https://github.com/codership/documentation/blob/master/release-notes/release-notes-galera-26.4.14.txt
 .
   [ Faustin Lammler ]
   * Running daemon under nobody user is not recommended (Closes: #970045)

gdk-pixbuf (2.42.10+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * ANI: Reject files with multiple anih chunks (CVE-2022-48622)
     (Closes: #1071265)
   * ANI: Reject files with multiple INAM or IART chunks
   * ANI: Validate anih chunk size

ghostscript (10.0.0~dfsg-11+deb12u4) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * In SAFER (default) don't allow eexec seeds other than the Type 1 standard
     (CVE-2023-52722)
   * Uniprint device - prevent string configuration changes when SAFER
     (CVE-2024-29510)
   * Bug #707691 (CVE-2024-33869)
   * Bug 707691 part 2 (CVE-2024-33869)
   * Bug #707686 (CVE-2024-33870)
   * OPVP device - prevent unsafe parameter change with SAFER (CVE-2024-33871)

glewlwyd (2.7.5-3+deb12u1) bookworm; urgency=medium
 .
   * d/patches: Fix CVE-2023-49208
     possible buffer overflow during FIDO2 credentials validation
   * d/patches: Fix CVE-2024-25715
     open redirection via redirect_uri

glib2.0 (2.74.6-2+deb12u3) bookworm; urgency=medium
 .
   * d/p/gdbusmessage-Clean-the-cached-arg0-when-setting-the-messa.patch:
     Add patch from upstream fixing a memory leak that can occur in
     rare situations since 2.74.6-2+deb12u1 (Closes: #1070851)
glib2.0 (2.74.6-2+deb12u2) bookworm-security; urgency=high
 .
   * d/p/CVE-2024-34397/gdbusconnection-Allow-name-owners-to-have-the-syntax-of-a.patch:
     Relax name owner checks to avoid a regression in ibus.
     Fixing CVE-2024-34397 caused a regression in ibus affecting text entry
     with non-trivial input methods.
     (Closes: #1070730, #1070736, #1070743, #1070745, #1070749, #1070752)
glib2.0 (2.74.6-2+deb12u1) bookworm-security; urgency=high
 .
   * d/patches: Backport GDBus fixes from 2.80.1
     - If local users send signals on the D-Bus system bus that spoof a
       trusted sender, do not deliver them to signal subscriptions for the
       trusted sender's well-known bus name (CVE-2024-34397)
     - Fix a use-after-free when subscribing to signals with an arg0
       match rule, originally from 2.79.0 and necessary to make the test
       for CVE-2024-34397 pass reliably
     - Add a local backport of g_set_str(), required by the above
     - Add proposed fix for a race condition that can cause a unit test
       to regress after the above
   * d/gbp.conf, d/control.in: Use debian/bookworm branch for Debian 12

glibc (2.36-9+deb12u7) bookworm-security; urgency=medium
 .
   * debian/patches/local-CVE-2024-33599-nscd.diff: Fix a stack-based buffer
     overflow in nscd netgroup cache (CVE-2024-33599).
   * debian/patches/local-CVE-2024-33600-nscd.diff: Fix a null pointer
     dereferences in nscd after failed netgroup cache insertion
     (CVE-2024-33600).
   * debian/patches/any/local-CVE-2024-33601-33602-nscd.diff: Fix a DoS in nscd
     in case of memory allocation failure (CVE-2024-33601) and a memory
     corruption in nscd when the underlying NSS callback function does not use
     the buffer space to store all strings (CVE-2024-33602).
glibc (2.36-9+deb12u6) bookworm-security; urgency=medium
 .
   * debian/patches/any/local-CVE-2024-2961-iso-2022-cn-ext.diff: Fix
     out-of-bound writes when writing escape sequence in iconv ISO-2022-CN-EXT
     module (CVE-2024-2961).  Closes: #1069191.
glibc (2.36-9+deb12u5) bookworm; urgency=medium
 .
   * debian/patches/git-updates.diff: update from upstream stable branch:
     - any/local-CVE-2023-4911.patch: upstreamed.
     - any/local-CVE-2023-6246.patch: upstreamed.
     - any/local-CVE-2023-6779.patch: upstreamed.
     - any/local-CVE-2023-6780.patch: upstreamed.
     - Revert fix to always call destructors in reverse constructor order due
       to unforeseen application compatibility issues.
     - Fix a DTV corruption due to a reuse of a TLS module ID following dlclose
       with unused TLS.
     - Fix the DTV field load on x32.
     - Fix the TCB field load on x32.

gnome-shell (43.9-0+deb12u2) bookworm-security; urgency=high
 .
   * d/p/screencast-Correct-expected-bus-name-for-streams.patch:
     Avoid screencast regression after fixing CVE-2024-34397.
     Previously, screencasting expected signals to come from the wrong
     D-Bus name, which only worked because there was a vulnerability in
     GLib that resulted in the sender being ignored.
   * Set urgency=high because this fixes a regression triggered by a
     security fix.

gnutls28 (3.7.9-2+deb12u3) bookworm; urgency=medium
 .
   * Update to 3.7.11:
     + Replace 60-auth-rsa_psk-side-step-potential-side-channel.patch
       61-x509-detect-loop-in-certificate-chain.patch
       62-rsa-psk-minimize-branching-after-decryption.patch with versions from
       gnutls_3_7_x branch instead of manual backports from 3.8.x.
     + Add 53-fips-fix-checking-on-hash-algorithm-used-in-ECDSA.patch (Fix
       checking on hash algorithm used in ECDSA in FIPS mode) and
       54-fips-mark-composite-signature-API-not-approved.patch (Mark composite
       signature API non-approved in FIPS mode.) to allow
       straight cherry-picking of later patches.
     + 63_01-gnutls_x509_trust_list_verify_crt2-remove-length-lim.patch
       libgnutls: Fixed a bug where certtool crashed when verifying a
       certificate chain with more than 16 certificates. Reported by William
       Woodruff (#1525) and yixiangzhike (#1527).  [GNUTLS-SA-2024-01-23, CVSS:
       medium] [CVE-2024-28835] Closes: #1067463
     + 63_02-nettle-avoid-normalization-of-mpz_t-in-deterministic.patch
       libgnutls: Fix side-channel in the deterministic ECDSA.
       Reported by George Pantelakis (#1516).  [GNUTLS-SA-2023-12-04, CVSS:
       medium] [CVE-2024-28834] Closes: #1067464
     + 63_03-serv-fix-memleak-when-a-connected-client-disappears.patch
       Fix a memleak in gnutls-serv when a connected client disappears.
     + 63_04-lib-fix-a-segfault-in-_gnutls13_recv_end_of_early_da.patch
       Fix a segfault in _gnutls13_recv_end_of_early_data().
     + 63_05-lib-fix-a-potential-segfault-in-_gnutls13_recv_finis.patch
       Fix a potential segfault in _gnutls13_recv_finished().

golang-github-google-nftables (0.1.0-4~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.

gpaste (43.1-3+deb12u1) bookworm; urgency=medium
 .
   [ Andreas Beckmann ]
   * Non-maintainer upload.
   * Backport Breaks+Replaces fix from 44.0-1.
 .
   [ Jérémy Lal ]
   * Breaks+Replaces: libgpaste6 (<< 3.24). Closes: #1038751

gross (1.0.2-4.1~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 gross (1.0.2-4.1) unstable; urgency=high
 .
   * Non-maintainer upload.
   * CVE-2023-52159: Stack-based buffer overflow (Closes: #1067115)
gross (1.0.2-4.1~deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bullseye.
 .
 gross (1.0.2-4.1) unstable; urgency=high
 .
   * Non-maintainer upload.
   * CVE-2023-52159: Stack-based buffer overflow (Closes: #1067115)

gst-plugins-base1.0 (1.22.0-3+deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * exiftag: Prevent integer overflows and out of bounds reads when handling
     undefined tags (CVE-2024-4453)

gtkwave (3.3.118-0.1~deb12u1) bookworm-security; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm-security.
 .
 gtkwave (3.3.118-0.1) unstable; urgency=high
 .
   * Non-maintainer upload.
   * New upstream release.
     - Fixes multiple vulnerabilities:
       CVE-2023-32650, CVE-2023-34087, CVE-2023-34436, CVE-2023-35004,
       CVE-2023-35057, CVE-2023-35128, CVE-2023-35702, CVE-2023-35703,
       CVE-2023-35704, CVE-2023-35955, CVE-2023-35956, CVE-2023-35957,
       CVE-2023-35958, CVE-2023-35959, CVE-2023-35960, CVE-2023-35961,
       CVE-2023-35962, CVE-2023-35963, CVE-2023-35964, CVE-2023-35969,
       CVE-2023-35970, CVE-2023-35989, CVE-2023-35992, CVE-2023-35994,
       CVE-2023-35995, CVE-2023-35996, CVE-2023-35997, CVE-2023-36746,
       CVE-2023-36747, CVE-2023-36861, CVE-2023-36864, CVE-2023-36915,
       CVE-2023-36916, CVE-2023-37282, CVE-2023-37416, CVE-2023-37417,
       CVE-2023-37418, CVE-2023-37419, CVE-2023-37420, CVE-2023-37442,
       CVE-2023-37443, CVE-2023-37444, CVE-2023-37445, CVE-2023-37446,
       CVE-2023-37447, CVE-2023-37573, CVE-2023-37574, CVE-2023-37575,
       CVE-2023-37576, CVE-2023-37577, CVE-2023-37578, CVE-2023-37921,
       CVE-2023-37922, CVE-2023-37923, CVE-2023-38583, CVE-2023-38618,
       CVE-2023-38619, CVE-2023-38620, CVE-2023-38621, CVE-2023-38622,
       CVE-2023-38623, CVE-2023-38648, CVE-2023-38649, CVE-2023-38650,
       CVE-2023-38651, CVE-2023-38652, CVE-2023-38653, CVE-2023-38657,
       CVE-2023-39234, CVE-2023-39235, CVE-2023-39270, CVE-2023-39271,
       CVE-2023-39272, CVE-2023-39273, CVE-2023-39274, CVE-2023-39275,
       CVE-2023-39316, CVE-2023-39317, CVE-2023-39413, CVE-2023-39414,
       CVE-2023-39443, CVE-2023-39444
       (Closes: #1060407)
gtkwave (3.3.116-1) unstable; urgency=medium
 .
   * New upstream version 3.3.116
gtkwave (3.3.115-1) unstable; urgency=medium
 .
   * New upstream version 3.3.115
   * d/watch: update watch format version
   * d/u/metadata: remove Homepage field
   * d/p/0001-Add-F-to-exec-key-in-desktop-file.patch: forward upstream & add
     DEP-3 headers
   * Add autotools-pkg-config.diff patch to use PKG_PROG_PKG_CONFIG instead of
     AC_PATH_CONFIG

guix (1.4.0-3+deb12u1) bookworm-security; urgency=medium
 .
   * debian/patches: guix-daemon: Protect against file descriptor escape
     when building fixed-output derivations (CVE-2024-27297).
     (Closes: #1066113)

hovercraft (2.7-6~deb12u1) bookworm; urgency=medium
 .
   * QA upload.
   * Rebuild for bookworm.
 .
 hovercraft (2.7-6) unstable; urgency=medium
 .
   * QA upload.
   * Add smoke test.
   * Add Depends: python3-setuptools.  (Closes: #1025655)

icinga2 (2.13.6-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Update branch in gbp.conf & Vcs-Git URL.
   * Fix segfault on startup on ppc64el.
     (closes: #1068473)

igtf-policy-bundle (1.128-1~deb12u1) bookworm; urgency=important
 .
   * Proposed update to address CAB Forum S/MIME policy change
 .
 igtf-policy-bundle (1.128-1) unstable; urgency=medium
 .
   * updated CRL download URL for ArmeSFo (AM)
 .
 igtf-policy-bundle (1.127-1) unstable; urgency=medium
 .
   * added supplementary issuing CA Issuing CA IGTF - C5 - 1 for eMudhra (IN)
   * removed discontinued QuoVadis CAs QuoVadis-Grid-ICA-G2 QuoVadis-Root-CA2G3
     QuoVadis-Root-CA2 and QuoVadis-Root-CA3G3 (BM)
 .
 igtf-policy-bundle (1.126-1) unstable; urgency=medium
 .
   * New upstream release:
   * removed replaced InCommon IGTF Server CA and associated Comodo RSA CA (US)
   * removed discontinued UNLPGrid CA (CL)
 .
 igtf-policy-bundle (1.125-1) unstable; urgency=medium
 .
   * New upstream release:
   * Updated root certificate ArmeSFo CA with extended validity (AM)
 .
 igtf-policy-bundle (1.124-1) unstable; urgency=medium
 .
   * New upstream release:
   * updated contact meta-data for ArmeSFo authority (AM)
   * removed discontinued AEGIS authority (RS)
   * removed suspended KENET Root and issuing CAs (KE)
   * removed suspended SDG-G2 authority (CN)
   * removed suspended CNIC authority (CN)
   * removed all four discontinued DigitalTrust CAs operated by their issuer (AE)
 .
 igtf-policy-bundle (1.123-1) unstable; urgency=medium
 .
   * New upstream release:
   * Add ECC private trust hierarchy for GEANT (Research and Education) TCS (EU)
   * Added accredited private trust eMudhra IGTF root and issuers (IN)
 .
 igtf-policy-bundle (1.122-1) unstable; urgency=medium
 .
   * New Upstream release:
   * Added private trust hierarchy for GEANT (Research and Education) TCS (EU)
   * Added accredited eMudhra joint public trust root and issuing CAs (IN)
   * Added private trust eMudhra IGTF root and issuers as experimental (IN, US)
   * Closes: 1045502
 .
 igtf-policy-bundle (1.121-1) unstable; urgency=medium
 .
   * New upstream release:
   * Added accredited (classic) InCommon RSA IGTF Server CA 3 under the
     Sectigo USERTrust RSA root, for which namespaces have been updated (US)
 .
 igtf-policy-bundle (1.120-1) unstable; urgency=medium
 .
   * New upstream release:
   * Added transitional CDP mirror URLs for retiring DigitalTrust CAs (AE)
   * Removed discontinued NIIF-Root-CA-2 (HU)
   * Removed expiring GermanGrid (GridKA CrossGrid) CA (DE)
 .
 igtf-policy-bundle (1.119-1) unstable; urgency=medium
 .
   * New upstream release:
   * Updated UKeScience Root (2007) with consistent string encodings (UK)
   * Removed obsolete SHA1 subordinates DigiCertGridTrustCA-Classic
     and DigiCertGridCA-1-Classic from DigiCert, reflected in RPDNC namespaces
   * Experimental (non-accredited) new InCommon RSA IGTF Server CA 2 (ICA under
     Sectigo USERTrust RSA root, for which namespaces have been updated) (US)
igtf-policy-bundle (1.128-1~bpo12+1) bookworm-backports; urgency=medium
 .
   * Backport for bookworm
igtf-policy-bundle (1.127-1) unstable; urgency=medium
 .
   * added supplementary issuing CA Issuing CA IGTF - C5 - 1 for eMudhra (IN)
   * removed discontinued QuoVadis CAs QuoVadis-Grid-ICA-G2 QuoVadis-Root-CA2G3
     QuoVadis-Root-CA2 and QuoVadis-Root-CA3G3 (BM)
igtf-policy-bundle (1.126-1) unstable; urgency=medium
 .
   * New upstream release:
   * removed replaced InCommon IGTF Server CA and associated Comodo RSA CA (US)
   * removed discontinued UNLPGrid CA (CL)
igtf-policy-bundle (1.125-1) unstable; urgency=medium
 .
   * New upstream release:
   * Updated root certificate ArmeSFo CA with extended validity (AM)
igtf-policy-bundle (1.124-1) unstable; urgency=medium
 .
   * New upstream release:
   * updated contact meta-data for ArmeSFo authority (AM)
   * removed discontinued AEGIS authority (RS)
   * removed suspended KENET Root and issuing CAs (KE)
   * removed suspended SDG-G2 authority (CN)
   * removed suspended CNIC authority (CN)
   * removed all four discontinued DigitalTrust CAs operated by their issuer (AE)
igtf-policy-bundle (1.123-1) unstable; urgency=medium
 .
   * New upstream release:
   * Add ECC private trust hierarchy for GEANT (Research and Education) TCS (EU)
   * Added accredited private trust eMudhra IGTF root and issuers (IN)
igtf-policy-bundle (1.122-1) unstable; urgency=medium
 .
   * New Upstream release:
   * Added private trust hierarchy for GEANT (Research and Education) TCS (EU)
   * Added accredited eMudhra joint public trust root and issuing CAs (IN)
   * Added private trust eMudhra IGTF root and issuers as experimental (IN, US)
   * Closes: 1045502
igtf-policy-bundle (1.121-1) unstable; urgency=medium
 .
   * New upstream release:
   * Added accredited (classic) InCommon RSA IGTF Server CA 3 under the
     Sectigo USERTrust RSA root, for which namespaces have been updated (US)
igtf-policy-bundle (1.120-1) unstable; urgency=medium
 .
   * New upstream release:
   * Added transitional CDP mirror URLs for retiring DigitalTrust CAs (AE)
   * Removed discontinued NIIF-Root-CA-2 (HU)
   * Removed expiring GermanGrid (GridKA CrossGrid) CA (DE)
igtf-policy-bundle (1.119-1) unstable; urgency=medium
 .
   * New upstream release:
   * Updated UKeScience Root (2007) with consistent string encodings (UK)
   * Removed obsolete SHA1 subordinates DigiCertGridTrustCA-Classic
     and DigiCertGridCA-1-Classic from DigiCert, reflected in RPDNC namespaces
   * Experimental (non-accredited) new InCommon RSA IGTF Server CA 2 (ICA under
     Sectigo USERTrust RSA root, for which namespaces have been updated) (US)

imagemagick (8:6.9.11.60+dfsg-1.6+deb12u1) bookworm-security; urgency=high
 .
   * Acknowledge NMU
   * Fix CVE-2021-3610 heap buffer overflow vulnerability in TIFF coder
   * Fix an heap buffer overflow in TIFF coder
   * Fix uninitialised value passing in TIFFGetField
   * Fix stack overflow in TIFF coder
   * Early exit in case of malformed TIFF file
   * Fix buffer overrun in TIFF coder
   * Fix unitialised value in TIFF coder
   * Fix CVE-2022-1115: Heap based overflow in
     TIFF coder (Closes: #1013282)
   * Fix uninitialised value in TIFF coders
   * Use salsa-ci
   * Fix CVE-2023-1289: A specially created SVG file loaded itself and
     causes a segmentation fault. This flaw allows a remote attacker
     to pass a specially crafted SVG file that leads to a segmentation
     fault, generating many trash files in "/tmp," resulting in
     a denial of service. When ImageMagick crashes,
     it generates a lot of trash files. These trash files
     can be large if the SVG file contains many render actions.
     In a denial of service attack, if a remote attacker uploads an SVG file
     of size t, ImageMagick generates files of size 103*t.
     If an attacker uploads a 100M SVG, the server will generate about 10G.
   * Fix CVE-2023-1906: A heap-based buffer overflow issue was
     discovered in ImageMagick's ImportMultiSpectralQuantum() function
     in MagickCore/quantum-import.c. An attacker could pass specially
     crafted file to convert, triggering an out-of-bounds read error,
     allowing an application to crash, resulting in a denial of service.
   * Fix CVE-2023-34151: Imagemagick was vulnerable due to
     an undefined behaviors of casting double to size_t in svg, mvg
     and other coders. (Closes: #1036999)
   * Fix CVE-2023-3428: A heap-based buffer overflow vulnerability
     was found in coders/tiff.c in ImageMagick. This issue
     may allow a local attacker to trick the user into opening
     a specially crafted file, resulting in an application crash
     and denial of service.
   * Fix CVE-2023-5341: A heap use-after-free flaw was found in
     coders/bmp.c

intel-microcode (3.20240514.1~deb12u1) bookworm; urgency=medium
 .
   * Build for bookworm (no changes)
 .
 intel-microcode (3.20240514.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240514
     * Mitigations for INTEL-SA-01051 (CVE-2023-45733)
       Hardware logic contains race conditions in some Intel Processors may
       allow an authenticated user to potentially enable partial information
       disclosure via local access.
     * Mitigations for INTEL-SA-01052 (CVE-2023-46103)
       Sequence of processor instructions leads to unexpected behavior in
       Intel Core Ultra Processors may allow an authenticated user to
       potentially enable denial of service via local access.
     * Mitigations for INTEL-SA-01036 (CVE-2023-45745,  CVE-2023-47855)
       Improper input validation in some Intel TDX module software before
       version 1.5.05.46.698 may allow a privileged user to potentially enable
       escalation of privilege via local access.
     * Fix for unspecified functional issues on 4th gen and 5th gen Xeon
       Scalable, 12th, 13th and 14th gen Intel Core processors, as well as for
       Core i3 N-series processors.
     * Updated microcodes:
       sig 0x000806f8, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0, size 581632
       sig 0x000806f7, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f6, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f5, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f4, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f8, pf_mask 0x10, 2024-02-05, rev 0x2c000390, size 614400
       sig 0x000806f6, pf_mask 0x10, 2024-02-05, rev 0x2c000390
       sig 0x000806f5, pf_mask 0x10, 2024-02-05, rev 0x2c000390
       sig 0x000806f4, pf_mask 0x10, 2024-02-05, rev 0x2c000390
       sig 0x00090672, pf_mask 0x07, 2023-12-05, rev 0x0035, size 224256
       sig 0x00090675, pf_mask 0x07, 2023-12-05, rev 0x0035
       sig 0x000b06f2, pf_mask 0x07, 2023-12-05, rev 0x0035
       sig 0x000b06f5, pf_mask 0x07, 2023-12-05, rev 0x0035
       sig 0x000906a3, pf_mask 0x80, 2023-12-05, rev 0x0433, size 222208
       sig 0x000906a4, pf_mask 0x80, 2023-12-05, rev 0x0433
       sig 0x000906a4, pf_mask 0x40, 2023-12-07, rev 0x0007, size 119808
       sig 0x000b0671, pf_mask 0x32, 2024-01-25, rev 0x0123, size 215040
       sig 0x000b06e0, pf_mask 0x11, 2023-12-07, rev 0x0017, size 138240
       sig 0x000c06f2, pf_mask 0x87, 2024-02-05, rev 0x21000230, size 552960
       sig 0x000c06f1, pf_mask 0x87, 2024-02-05, rev 0x21000230
   * source: update symlinks to reflect id of the latest release, 20240514
intel-microcode (3.20240514.1~deb11u1) bullseye; urgency=medium
 .
   * Backport to Debian Bullseye
   * debian/control: revert non-free-firmware change
 .
 intel-microcode (3.20240514.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240514
     * Mitigations for INTEL-SA-01051 (CVE-2023-45733)
       Hardware logic contains race conditions in some Intel Processors may
       allow an authenticated user to potentially enable partial information
       disclosure via local access.
     * Mitigations for INTEL-SA-01052 (CVE-2023-46103)
       Sequence of processor instructions leads to unexpected behavior in
       Intel Core Ultra Processors may allow an authenticated user to
       potentially enable denial of service via local access.
     * Mitigations for INTEL-SA-01036 (CVE-2023-45745,  CVE-2023-47855)
       Improper input validation in some Intel TDX module software before
       version 1.5.05.46.698 may allow a privileged user to potentially enable
       escalation of privilege via local access.
     * Fix for unspecified functional issues on 4th gen and 5th gen Xeon
       Scalable, 12th, 13th and 14th gen Intel Core processors, as well as for
       Core i3 N-series processors.
     * Updated microcodes:
       sig 0x000806f8, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0, size 581632
       sig 0x000806f7, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f6, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f5, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f4, pf_mask 0x87, 2024-02-05, rev 0x2b0005c0
       sig 0x000806f8, pf_mask 0x10, 2024-02-05, rev 0x2c000390, size 614400
       sig 0x000806f6, pf_mask 0x10, 2024-02-05, rev 0x2c000390
       sig 0x000806f5, pf_mask 0x10, 2024-02-05, rev 0x2c000390
       sig 0x000806f4, pf_mask 0x10, 2024-02-05, rev 0x2c000390
       sig 0x00090672, pf_mask 0x07, 2023-12-05, rev 0x0035, size 224256
       sig 0x00090675, pf_mask 0x07, 2023-12-05, rev 0x0035
       sig 0x000b06f2, pf_mask 0x07, 2023-12-05, rev 0x0035
       sig 0x000b06f5, pf_mask 0x07, 2023-12-05, rev 0x0035
       sig 0x000906a3, pf_mask 0x80, 2023-12-05, rev 0x0433, size 222208
       sig 0x000906a4, pf_mask 0x80, 2023-12-05, rev 0x0433
       sig 0x000906a4, pf_mask 0x40, 2023-12-07, rev 0x0007, size 119808
       sig 0x000b0671, pf_mask 0x32, 2024-01-25, rev 0x0123, size 215040
       sig 0x000b06e0, pf_mask 0x11, 2023-12-07, rev 0x0017, size 138240
       sig 0x000c06f2, pf_mask 0x87, 2024-02-05, rev 0x21000230, size 552960
       sig 0x000c06f1, pf_mask 0x87, 2024-02-05, rev 0x21000230
   * source: update symlinks to reflect id of the latest release, 20240514
intel-microcode (3.20240312.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240312 (closes: #1066108)
     - Mitigations for INTEL-SA-INTEL-SA-00972 (CVE-2023-39368):
       Protection mechanism failure of bus lock regulator for some Intel
       Processors may allow an unauthenticated user to potentially enable
       denial of service via network access.
     - Mitigations for INTEL-SA-INTEL-SA-00982 (CVE-2023-38575):
       Non-transparent sharing of return predictor targets between contexts in
       some Intel Processors may allow an authorized user to potentially
       enable information disclosure via local access.  Affects SGX as well.
     - Mitigations for INTEL-SA-INTEL-SA-00898 (CVE-2023-28746), aka RFDS:
       Information exposure through microarchitectural state after transient
       execution from some register files for some Intel Atom Processors and
       E-cores of Intel Core Processors may allow an authenticated user to
       potentially enable information disclosure via local access.  Enhances
       VERW instruction to clear stale register buffers.  Affects SGX as well.
       Requires kernel update to be effective.
     - Mitigations for INTEL-SA-INTEL-SA-00960 (CVE-2023-22655), aka TECRA:
       Protection mechanism failure in some 3rd and 4th Generation Intel Xeon
       Processors when using Intel SGX or Intel TDX may allow a privileged
       user to potentially enable escalation of privilege via local access.
       NOTE: effective only when loaded by firmware.  Allows SMM firmware to
       attack SGX/TDX.
     - Mitigations for INTEL-SA-INTEL-SA-01045 (CVE-2023-43490):
       Incorrect calculation in microcode keying mechanism for some Intel
       Xeon D Processors with Intel SGX may allow a privileged user to
       potentially enable information disclosure via local access.
   * Fixes for other unspecified functional issues on many processors
   * Updated microcodes:
     sig 0x00050653, pf_mask 0x97, 2023-07-28, rev 0x1000191, size 36864
     sig 0x00050656, pf_mask 0xbf, 2023-07-28, rev 0x4003605, size 38912
     sig 0x00050657, pf_mask 0xbf, 2023-07-28, rev 0x5003605, size 37888
     sig 0x0005065b, pf_mask 0xbf, 2023-08-03, rev 0x7002802, size 30720
     sig 0x00050665, pf_mask 0x10, 2023-08-03, rev 0xe000015, size 23552
     sig 0x000506f1, pf_mask 0x01, 2023-10-05, rev 0x003e, size 11264
     sig 0x000606a6, pf_mask 0x87, 2023-09-14, rev 0xd0003d1, size 307200
     sig 0x000606c1, pf_mask 0x10, 2023-12-05, rev 0x1000290, size 299008
     sig 0x000706a1, pf_mask 0x01, 2023-08-25, rev 0x0040, size 76800
     sig 0x000706a8, pf_mask 0x01, 2023-08-25, rev 0x0024, size 76800
     sig 0x000706e5, pf_mask 0x80, 2023-09-14, rev 0x00c4, size 114688
     sig 0x000806c1, pf_mask 0x80, 2023-09-13, rev 0x00b6, size 111616
     sig 0x000806c2, pf_mask 0xc2, 2023-09-13, rev 0x0036, size 98304
     sig 0x000806d1, pf_mask 0xc2, 2023-09-13, rev 0x0050, size 104448
     sig 0x000806ec, pf_mask 0x94, 2023-07-16, rev 0x00fa, size 106496
     sig 0x000806f8, pf_mask 0x87, 2024-01-03, rev 0x2b000590, size 579584
     sig 0x000806f7, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x000806f6, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x000806f5, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x000806f4, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x00090661, pf_mask 0x01, 2023-09-26, rev 0x0019, size 20480
     sig 0x00090672, pf_mask 0x07, 2023-09-19, rev 0x0034, size 224256
     sig 0x00090675, pf_mask 0x07, 2023-09-19, rev 0x0034
     sig 0x000b06f2, pf_mask 0x07, 2023-09-19, rev 0x0034
     sig 0x000b06f5, pf_mask 0x07, 2023-09-19, rev 0x0034
     sig 0x000906a3, pf_mask 0x80, 2023-09-19, rev 0x0432, size 222208
     sig 0x000906a4, pf_mask 0x80, 2023-09-19, rev 0x0432
     sig 0x000906c0, pf_mask 0x01, 2023-09-26, rev 0x24000026, size 20480
     sig 0x000906e9, pf_mask 0x2a, 2023-09-28, rev 0x00f8, size 108544
     sig 0x000906ea, pf_mask 0x22, 2023-07-26, rev 0x00f6, size 105472
     sig 0x000906ec, pf_mask 0x22, 2023-07-26, rev 0x00f6, size 106496
     sig 0x000906ed, pf_mask 0x22, 2023-07-27, rev 0x00fc, size 106496
     sig 0x000a0652, pf_mask 0x20, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0653, pf_mask 0x22, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0655, pf_mask 0x22, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0660, pf_mask 0x80, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0661, pf_mask 0x80, 2023-07-16, rev 0x00fa, size 96256
     sig 0x000a0671, pf_mask 0x02, 2023-09-14, rev 0x005e, size 108544
     sig 0x000b0671, pf_mask 0x32, 2023-12-14, rev 0x0122, size 215040
     sig 0x000b06a2, pf_mask 0xe0, 2023-12-07, rev 0x4121, size 220160
     sig 0x000b06a3, pf_mask 0xe0, 2023-12-07, rev 0x4121
     sig 0x000b06e0, pf_mask 0x11, 2023-09-25, rev 0x0015, size 138240
   * New microcodes:
     sig 0x000a06a4, pf_mask 0xe6, 2024-01-03, rev 0x001c, size 136192
     sig 0x000b06a8, pf_mask 0xe0, 2023-12-07, rev 0x4121, size 220160
     sig 0x000c06f2, pf_mask 0x87, 2023-11-20, rev 0x21000200, size 549888
     sig 0x000c06f1, pf_mask 0x87, 2023-11-20, rev 0x21000200
   * source: update symlinks to reflect id of the latest release, 20240312
   * changelog, debian/changelog: fix typos
intel-microcode (3.20240312.1~deb12u1) bookworm; urgency=medium
 .
   * Build for bookworm (no changes)
 .
 intel-microcode (3.20240312.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240312 (closes: #1066108)
     - Mitigations for INTEL-SA-INTEL-SA-00972 (CVE-2023-39368):
       Protection mechanism failure of bus lock regulator for some Intel
       Processors may allow an unauthenticated user to potentially enable
       denial of service via network access.
     - Mitigations for INTEL-SA-INTEL-SA-00982 (CVE-2023-38575):
       Non-transparent sharing of return predictor targets between contexts in
       some Intel Processors may allow an authorized user to potentially
       enable information disclosure via local access.  Affects SGX as well.
     - Mitigations for INTEL-SA-INTEL-SA-00898 (CVE-2023-28746), aka RFDS:
       Information exposure through microarchitectural state after transient
       execution from some register files for some Intel Atom Processors and
       E-cores of Intel Core Processors may allow an authenticated user to
       potentially enable information disclosure via local access.  Enhances
       VERW instruction to clear stale register buffers.  Affects SGX as well.
       Requires kernel update to be effective.
     - Mitigations for INTEL-SA-INTEL-SA-00960 (CVE-2023-22655), aka TECRA:
       Protection mechanism failure in some 3rd and 4th Generation Intel Xeon
       Processors when using Intel SGX or Intel TDX may allow a privileged
       user to potentially enable escalation of privilege via local access.
       NOTE: effective only when loaded by firmware.  Allows SMM firmware to
       attack SGX/TDX.
     - Mitigations for INTEL-SA-INTEL-SA-01045 (CVE-2023-43490):
       Incorrect calculation in microcode keying mechanism for some Intel
       Xeon D Processors with Intel SGX may allow a privileged user to
       potentially enable information disclosure via local access.
   * Fixes for other unspecified functional issues on many processors
   * Updated microcodes:
     sig 0x00050653, pf_mask 0x97, 2023-07-28, rev 0x1000191, size 36864
     sig 0x00050656, pf_mask 0xbf, 2023-07-28, rev 0x4003605, size 38912
     sig 0x00050657, pf_mask 0xbf, 2023-07-28, rev 0x5003605, size 37888
     sig 0x0005065b, pf_mask 0xbf, 2023-08-03, rev 0x7002802, size 30720
     sig 0x00050665, pf_mask 0x10, 2023-08-03, rev 0xe000015, size 23552
     sig 0x000506f1, pf_mask 0x01, 2023-10-05, rev 0x003e, size 11264
     sig 0x000606a6, pf_mask 0x87, 2023-09-14, rev 0xd0003d1, size 307200
     sig 0x000606c1, pf_mask 0x10, 2023-12-05, rev 0x1000290, size 299008
     sig 0x000706a1, pf_mask 0x01, 2023-08-25, rev 0x0040, size 76800
     sig 0x000706a8, pf_mask 0x01, 2023-08-25, rev 0x0024, size 76800
     sig 0x000706e5, pf_mask 0x80, 2023-09-14, rev 0x00c4, size 114688
     sig 0x000806c1, pf_mask 0x80, 2023-09-13, rev 0x00b6, size 111616
     sig 0x000806c2, pf_mask 0xc2, 2023-09-13, rev 0x0036, size 98304
     sig 0x000806d1, pf_mask 0xc2, 2023-09-13, rev 0x0050, size 104448
     sig 0x000806ec, pf_mask 0x94, 2023-07-16, rev 0x00fa, size 106496
     sig 0x000806f8, pf_mask 0x87, 2024-01-03, rev 0x2b000590, size 579584
     sig 0x000806f7, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x000806f6, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x000806f5, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x000806f4, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x00090661, pf_mask 0x01, 2023-09-26, rev 0x0019, size 20480
     sig 0x00090672, pf_mask 0x07, 2023-09-19, rev 0x0034, size 224256
     sig 0x00090675, pf_mask 0x07, 2023-09-19, rev 0x0034
     sig 0x000b06f2, pf_mask 0x07, 2023-09-19, rev 0x0034
     sig 0x000b06f5, pf_mask 0x07, 2023-09-19, rev 0x0034
     sig 0x000906a3, pf_mask 0x80, 2023-09-19, rev 0x0432, size 222208
     sig 0x000906a4, pf_mask 0x80, 2023-09-19, rev 0x0432
     sig 0x000906c0, pf_mask 0x01, 2023-09-26, rev 0x24000026, size 20480
     sig 0x000906e9, pf_mask 0x2a, 2023-09-28, rev 0x00f8, size 108544
     sig 0x000906ea, pf_mask 0x22, 2023-07-26, rev 0x00f6, size 105472
     sig 0x000906ec, pf_mask 0x22, 2023-07-26, rev 0x00f6, size 106496
     sig 0x000906ed, pf_mask 0x22, 2023-07-27, rev 0x00fc, size 106496
     sig 0x000a0652, pf_mask 0x20, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0653, pf_mask 0x22, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0655, pf_mask 0x22, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0660, pf_mask 0x80, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0661, pf_mask 0x80, 2023-07-16, rev 0x00fa, size 96256
     sig 0x000a0671, pf_mask 0x02, 2023-09-14, rev 0x005e, size 108544
     sig 0x000b0671, pf_mask 0x32, 2023-12-14, rev 0x0122, size 215040
     sig 0x000b06a2, pf_mask 0xe0, 2023-12-07, rev 0x4121, size 220160
     sig 0x000b06a3, pf_mask 0xe0, 2023-12-07, rev 0x4121
     sig 0x000b06e0, pf_mask 0x11, 2023-09-25, rev 0x0015, size 138240
   * New microcodes:
     sig 0x000a06a4, pf_mask 0xe6, 2024-01-03, rev 0x001c, size 136192
     sig 0x000b06a8, pf_mask 0xe0, 2023-12-07, rev 0x4121, size 220160
     sig 0x000c06f2, pf_mask 0x87, 2023-11-20, rev 0x21000200, size 549888
     sig 0x000c06f1, pf_mask 0x87, 2023-11-20, rev 0x21000200
   * source: update symlinks to reflect id of the latest release, 20240312
   * changelog, debian/changelog: fix typos
intel-microcode (3.20240312.1~deb11u1) bullseye; urgency=medium
 .
   * Backport to Debian Bullseye
   * debian/control: revert non-free-firmware change
 .
 intel-microcode (3.20240312.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20240312 (closes: #1066108)
     - Mitigations for INTEL-SA-INTEL-SA-00972 (CVE-2023-39368):
       Protection mechanism failure of bus lock regulator for some Intel
       Processors may allow an unauthenticated user to potentially enable
       denial of service via network access.
     - Mitigations for INTEL-SA-INTEL-SA-00982 (CVE-2023-38575):
       Non-transparent sharing of return predictor targets between contexts in
       some Intel Processors may allow an authorized user to potentially
       enable information disclosure via local access.  Affects SGX as well.
     - Mitigations for INTEL-SA-INTEL-SA-00898 (CVE-2023-28746), aka RFDS:
       Information exposure through microarchitectural state after transient
       execution from some register files for some Intel Atom Processors and
       E-cores of Intel Core Processors may allow an authenticated user to
       potentially enable information disclosure via local access.  Enhances
       VERW instruction to clear stale register buffers.  Affects SGX as well.
       Requires kernel update to be effective.
     - Mitigations for INTEL-SA-INTEL-SA-00960 (CVE-2023-22655), aka TECRA:
       Protection mechanism failure in some 3rd and 4th Generation Intel Xeon
       Processors when using Intel SGX or Intel TDX may allow a privileged
       user to potentially enable escalation of privilege via local access.
       NOTE: effective only when loaded by firmware.  Allows SMM firmware to
       attack SGX/TDX.
     - Mitigations for INTEL-SA-INTEL-SA-01045 (CVE-2023-43490):
       Incorrect calculation in microcode keying mechanism for some Intel
       Xeon D Processors with Intel SGX may allow a privileged user to
       potentially enable information disclosure via local access.
   * Fixes for other unspecified functional issues on many processors
   * Updated microcodes:
     sig 0x00050653, pf_mask 0x97, 2023-07-28, rev 0x1000191, size 36864
     sig 0x00050656, pf_mask 0xbf, 2023-07-28, rev 0x4003605, size 38912
     sig 0x00050657, pf_mask 0xbf, 2023-07-28, rev 0x5003605, size 37888
     sig 0x0005065b, pf_mask 0xbf, 2023-08-03, rev 0x7002802, size 30720
     sig 0x00050665, pf_mask 0x10, 2023-08-03, rev 0xe000015, size 23552
     sig 0x000506f1, pf_mask 0x01, 2023-10-05, rev 0x003e, size 11264
     sig 0x000606a6, pf_mask 0x87, 2023-09-14, rev 0xd0003d1, size 307200
     sig 0x000606c1, pf_mask 0x10, 2023-12-05, rev 0x1000290, size 299008
     sig 0x000706a1, pf_mask 0x01, 2023-08-25, rev 0x0040, size 76800
     sig 0x000706a8, pf_mask 0x01, 2023-08-25, rev 0x0024, size 76800
     sig 0x000706e5, pf_mask 0x80, 2023-09-14, rev 0x00c4, size 114688
     sig 0x000806c1, pf_mask 0x80, 2023-09-13, rev 0x00b6, size 111616
     sig 0x000806c2, pf_mask 0xc2, 2023-09-13, rev 0x0036, size 98304
     sig 0x000806d1, pf_mask 0xc2, 2023-09-13, rev 0x0050, size 104448
     sig 0x000806ec, pf_mask 0x94, 2023-07-16, rev 0x00fa, size 106496
     sig 0x000806f8, pf_mask 0x87, 2024-01-03, rev 0x2b000590, size 579584
     sig 0x000806f7, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x000806f6, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x000806f5, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x000806f4, pf_mask 0x87, 2024-01-03, rev 0x2b000590
     sig 0x00090661, pf_mask 0x01, 2023-09-26, rev 0x0019, size 20480
     sig 0x00090672, pf_mask 0x07, 2023-09-19, rev 0x0034, size 224256
     sig 0x00090675, pf_mask 0x07, 2023-09-19, rev 0x0034
     sig 0x000b06f2, pf_mask 0x07, 2023-09-19, rev 0x0034
     sig 0x000b06f5, pf_mask 0x07, 2023-09-19, rev 0x0034
     sig 0x000906a3, pf_mask 0x80, 2023-09-19, rev 0x0432, size 222208
     sig 0x000906a4, pf_mask 0x80, 2023-09-19, rev 0x0432
     sig 0x000906c0, pf_mask 0x01, 2023-09-26, rev 0x24000026, size 20480
     sig 0x000906e9, pf_mask 0x2a, 2023-09-28, rev 0x00f8, size 108544
     sig 0x000906ea, pf_mask 0x22, 2023-07-26, rev 0x00f6, size 105472
     sig 0x000906ec, pf_mask 0x22, 2023-07-26, rev 0x00f6, size 106496
     sig 0x000906ed, pf_mask 0x22, 2023-07-27, rev 0x00fc, size 106496
     sig 0x000a0652, pf_mask 0x20, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0653, pf_mask 0x22, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0655, pf_mask 0x22, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0660, pf_mask 0x80, 2023-07-16, rev 0x00fa, size 97280
     sig 0x000a0661, pf_mask 0x80, 2023-07-16, rev 0x00fa, size 96256
     sig 0x000a0671, pf_mask 0x02, 2023-09-14, rev 0x005e, size 108544
     sig 0x000b0671, pf_mask 0x32, 2023-12-14, rev 0x0122, size 215040
     sig 0x000b06a2, pf_mask 0xe0, 2023-12-07, rev 0x4121, size 220160
     sig 0x000b06a3, pf_mask 0xe0, 2023-12-07, rev 0x4121
     sig 0x000b06e0, pf_mask 0x11, 2023-09-25, rev 0x0015, size 138240
   * New microcodes:
     sig 0x000a06a4, pf_mask 0xe6, 2024-01-03, rev 0x001c, size 136192
     sig 0x000b06a8, pf_mask 0xe0, 2023-12-07, rev 0x4121, size 220160
     sig 0x000c06f2, pf_mask 0x87, 2023-11-20, rev 0x21000200, size 549888
     sig 0x000c06f1, pf_mask 0x87, 2023-11-20, rev 0x21000200
   * source: update symlinks to reflect id of the latest release, 20240312
   * changelog, debian/changelog: fix typos
intel-microcode (3.20231114.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20231114 (closes: #1055962)
     Mitigations for "reptar", INTEL-SA-00950 (CVE-2023-23583)
     Sequence of processor instructions leads to unexpected behavior for some
     Intel(R) Processors, may allow an authenticated user to potentially enable
     escalation of privilege and/or information disclosure and/or denial of
     service via local access.
     Note: "retvar" on 4th gen Xeon Scalable (sig 0x806f8 pfm 0x87), 12th gen
     Core mobile (sig 0x906a4 pfm 0x80), 13th gen Core desktop (sig 0xb0671 pfm
     0x01) were already mitigated by a previous microcode update.
   * Fixes for unspecified functional issues
   * Updated microcodes:
     sig 0x000606a6, pf_mask 0x87, 2023-09-01, rev 0xd0003b9, size 299008
     sig 0x000606c1, pf_mask 0x10, 2023-09-08, rev 0x1000268, size 290816
     sig 0x000706e5, pf_mask 0x80, 2023-09-03, rev 0x00c2, size 113664
     sig 0x000806c1, pf_mask 0x80, 2023-09-07, rev 0x00b4, size 111616
     sig 0x000806c2, pf_mask 0xc2, 2023-09-07, rev 0x0034, size 98304
     sig 0x000806d1, pf_mask 0xc2, 2023-09-07, rev 0x004e, size 104448
     sig 0x000806f8, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0, size 572416
     sig 0x000806f8, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f7, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f6, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f5, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f4, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f8, pf_mask 0x10, 2023-06-26, rev 0x2c000290, size 605184
     sig 0x000806f8, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f6, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f5, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f4, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x00090672, pf_mask 0x07, 2023-06-07, rev 0x0032, size 222208
     sig 0x00090672, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x00090675, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000b06f2, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000b06f5, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000906a3, pf_mask 0x80, 2023-06-07, rev 0x0430, size 220160
     sig 0x000906a3, pf_mask 0x80, 2023-06-07, rev 0x0430
     sig 0x000906a4, pf_mask 0x80, 2023-06-07, rev 0x0430
     sig 0x000906a4, pf_mask 0x40, 2023-05-05, rev 0x0005, size 117760
     sig 0x000a0671, pf_mask 0x02, 2023-09-03, rev 0x005d, size 104448
     sig 0x000b0671, pf_mask 0x32, 2023-08-29, rev 0x011d, size 210944
     sig 0x000b06a2, pf_mask 0xe0, 2023-08-30, rev 0x411c, size 216064
     sig 0x000b06a2, pf_mask 0xe0, 2023-08-30, rev 0x411c
     sig 0x000b06a3, pf_mask 0xe0, 2023-08-30, rev 0x411c
     sig 0x000b06e0, pf_mask 0x11, 2023-06-26, rev 0x0012, size 136192
   * Updated 2023-08-08 changelog entry:
     Mitigations for "retvar" on a few processors, refer to the 2023-11-14
     entry for details.  This information was disclosed in 2023-11-14.
   * source: update symlinks to reflect id of the latest release, 20231114

iwd (2.3-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * ap: only accept ptk 4/4 after receiving ptk 2/4 (CVE-2023-52161)
     (Closes: #1064062)

jetty9 (9.4.50-4+deb12u3) bookworm-security; urgency=high
 .
   * Team upload.
   * Fix CVE-2024-22201:
     It was discovered that remote attackers may leave many HTTP/2 connections
     in ESTABLISHED state (not closed), TCP congested and idle. Eventually the
     server will stop accepting new connections from valid clients which can
     cause a denial of service.

jose (11-2+deb12u1) bookworm; urgency=high
 .
   * Cherry-pick "Fix potential DoS issue with p2c header". Closes:
     #1067457 [CVE-2023-50967]

json-smart (2.2-2+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.  (Closes: #1039985)
 .
 json-smart (2.2-2+deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bullseye.  (Closes: #1039985)
 .
 json-smart (2.2-2+deb10u1) buster-security; urgency=high
 .
   * Non-maintainer upload by the LTS team.
   * CVE-2023-1370: stack overflow due to excessive recursion
     When reaching a ‘[‘ or ‘{‘ character in the JSON input, the code
     parses an array or an object respectively. It was discovered that the
     code does not have any limit to the nesting of such arrays or
     objects. Since the parsing of nested arrays and objects is done
     recursively, nesting too many of them can cause a stack exhaustion
     (stack overflow) and crash the software. (Closes: #1033474)
   * CVE-2021-31684: Fix indexOf
     A vulnerability was discovered in the indexOf function of
     JSONParserByteArray in JSON Smart versions 1.3 and 2.4
     which causes a denial of service (DOS)
     via a crafted web request.
json-smart (2.2-2+deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bullseye.  (Closes: #1039985)
 .
 json-smart (2.2-2+deb10u1) buster-security; urgency=high
 .
   * Non-maintainer upload by the LTS team.
   * CVE-2023-1370: stack overflow due to excessive recursion
     When reaching a ‘[‘ or ‘{‘ character in the JSON input, the code
     parses an array or an object respectively. It was discovered that the
     code does not have any limit to the nesting of such arrays or
     objects. Since the parsing of nested arrays and objects is done
     recursively, nesting too many of them can cause a stack exhaustion
     (stack overflow) and crash the software. (Closes: #1033474)
   * CVE-2021-31684: Fix indexOf
     A vulnerability was discovered in the indexOf function of
     JSONParserByteArray in JSON Smart versions 1.3 and 2.4
     which causes a denial of service (DOS)
     via a crafted web request.

kio (5.103.0-1+deb12u1) bookworm; urgency=medium
 .
   [ Aurélien COUDERC ]
   * Backport upstream patches to fix incorrect behaviours with CIFS:
     - Don't unlink + rename on CIFS mounts during copy operations; Don't crash
       if KMountPoint gives nothing back while checking. (Closes: #1069855)
     - Don't leak existing file handles to newly spanwed KIO workers.
       (Closes: #1070322)

knot-resolver (5.6.0-1+deb12u1) bookworm-security; urgency=medium
 .
   * Backport upstream fixes for CVE-2023-50868 "NSEC3"
   * Backport upstream fixes for CVE-2023-50387 "KeyTrap"
   * Backport upstream fix for CVE-2023-46317

lacme (0.8.2-1+deb12u1) bookworm; urgency=medium
 .
   * Backport upstream patches to fix post-issuance validation logic.  We avoid
     pinning the intermediate certificates in the bundle and instead validate
     the leaf certificate with intermediates supplied during issuance as
     untrusted (used for chain building only).  Only the root certificates are
     used as trust anchor.
     Not pinning intermediate certificates is in line with Let's Encrypt's
     latest recommendations.
     Closes: #1072847
   * Adjust test suite against current Let's Encrypt staging environment.
   * d/gbp.conf: Set 'debian-branch = debian/bookworm'.

less (590-2.1~deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
 .
   [ Milan Kupcevic ]
   * Fix incorrect display when filename contains control chars
     (Closes: #1069681)
 .
 less (590-2.1~deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Rebuild for bookworm-security
 .
 less (590-2.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Shell-quote filenames when invoking LESSCLOSE (CVE-2022-48624)
     (Closes: #1064293)
   * Fix bug when viewing a file whose name contains a newline (CVE-2024-32487)
     (Closes: #1068938)
less (590-2.1~deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Rebuild for bookworm-security
 .
 less (590-2.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Shell-quote filenames when invoking LESSCLOSE (CVE-2022-48624)
     (Closes: #1064293)
   * Fix bug when viewing a file whose name contains a newline (CVE-2024-32487)
     (Closes: #1068938)

libapache2-mod-auth-openidc (2.4.12.3-2+deb12u1) bookworm; urgency=medium
 .
   * CVE-2024-24814: Missing input validation on mod_auth_openidc_session_chunks
     cookie value made the server vulnerable to a Denial of Service (DoS)
     attack. If an attacker manipulated the value of the OpenIDC cookie to a
     very large integer like 99999999, the server struggled with the request for
     a long time and finally returned a 500 error. Making a few requests of this
     kind caused servers to become unresponsive, and so attackers could thereby
     craft requests that would make the server work very hard and/or crash with
     minimal effort. (Closes: #1064183)

libarchive (3.6.2-1+deb12u1) bookworm-security; urgency=high
 .
   [ Peter Pentchev ]
   * Add the robust-error-reporting upstream patch. Closes: #1068047
 .
   [ Salvatore Bonaccorso ]
   * fix: OOB in rar e8 filter (CVE-2024-26256) (Closes: #1072107)
   * fix: OOB in rar delta filter
   * fix: OOB in rar audio filter

libesmtp (1.1.0-3.1~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 libesmtp (1.1.0-3.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * libesmtp6: Add versioned Replaces and Breaks against
     libesmtp5 (<< 1.0.6-1~) (Closes: #1043058)

libgit2 (1.5.1+ds-1+deb12u1) bookworm-security; urgency=high
 .
   * Team upload.
   * Fix CVE-2024-24575: Denial of service attack in git_revparse_single
     (Closes: #1063415)
   * Fix CVE-2024-24577: Use-after-free in git_index_add
     (Closes: #1063416)

libimage-imlib2-perl (2.03-1.2~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 libimage-imlib2-perl (2.03-1.2) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Fix "Creates empty package on bookworm upwards":
     `imlib2-config' went missing from libimlib2-dev, so use pkgconfig (new
     patch pkg-config.diff and build dependency on libextutils-pkgconfig-perl)
     (Closes: #1040223)
   * Add patch 0001-Work-around-an-imlib2-bug-with-alpha-channel-cloning.patch
     from Niko Tyni to work around an imlib2 bug with alpha channel cloning
     which makes a test fail.

libjwt (1.10.2-1+deb12u1) bookworm; urgency=medium
 .
   * CVE-2024-25189 (Closes: #1063534)
     fix a timing side channel via strcmp()
libjwt (1.10.2-1+deb11u1) bullseye; urgency=medium
 .
   * CVE-2024-25189 (Closes: #1063534)
     fix a timing side channel via strcmp()

libkf5ksieve (4:22.12.3-1+deb12u1) bookworm; urgency=medium
 .
   [ Patrick Franz ]
   * Add patch to prevent leaking passwords into server-side logs
     (Closes: #1069163).

libmail-dkim-perl (1.20230212-2~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 libmail-dkim-perl (1.20230212-2) unstable; urgency=medium
 .
   * Team upload.
   * Add scripts to autopkgtest's syntax.t. Cf. #1040438.
   * Add a runtime dependency on libgetopt-long-descriptive-perl.
     Thanks to Colin Watson for the bug report. (Closes: #1040438)

libndp (1.8-1+deb12u1) bookworm-security; urgency=medium
 .
   * add debian/patches/CVE-2024-5564.patch from upstream fixing CVE-2024-5564
     (Closes: #1072366)
   * d/gbp.conf: update for bookworm release

libpod (4.3.1+ds1-8+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * d/patches: backport fix for removed container handling (Closes: #1059496)

libreoffice (4:7.4.7-1+deb12u3) bookworm; urgency=medium
 .
   * debian/patches/Fix-backup-copy-creation-for-files-on-mounted-samba-shares.diff:
     as name says, from 24.2.2+ (closes: #1069835)
   * debian/patches/fix-32bit-build.diff: as name says; fix 32bit build with
     above
 .
   * debian/rules:
     - don't remove libforuilo.so in -core-nogui. (closes: #1059158)
       It's subsumed in libmerged on 64bit archs anyway which we definitely
       need to keep anyway (similar as libuuilo.so).
     - recommend kio >> 5.103.0-1 in -kf5
libreoffice (4:7.4.7-1+deb12u2) bookworm-security; urgency=high
 .
   * debian/patches/add-notify-for-script-use.diff: add fix for
     CVE-2024-3044 ("Graphic on-click binding allows unchecked script
     execution")
libreoffice (4:7.4.7-1+deb12u2~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
   * tarballs/liborcus-0.17.2.tar.bz2,
     tarballs/mdds-2.0.3.tar.bz2,
     tarballs/libmwaw-0.3.21.tar.xz,
     tarballs/zxing-cpp-1.2.0.tar.gz,
     tarballs/libnumbertext-1.0.11.tar.xz,
     tarballs/dragonbox-1.1.3.tar.gz: include
 .
 libreoffice (4:7.4.7-1+deb12u2) bookworm-security; urgency=high
 .
   * debian/patches/add-notify-for-script-use.diff: add fix for
     CVE-2024-3044 ("Graphic on-click binding allows unchecked script
     execution")

libseccomp (2.5.4-1+deb12u1) bookworm; urgency=medium
 .
   * Add support for syscalls up to Linux 6.7. (Closes: #1071822)

libtommath (1.2.0-6+deb12u1) bookworm; urgency=medium
 .
   * CVE-2023-36328 (Closes: #1051100)

libtool (2.4.7-7~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
   * Reinstate obsolete Breaks, Provides.
 .
 libtool (2.4.7-7) unstable; urgency=medium
 .
   * Remove obsolete Breaks: for oldstable, Provides: libltdl7-dev.
   * Replace Breaks: libltdl3-dev with Conflicts: libltdl3-dev.
     Thanks  Andreas Beckmann. Closes: #1041229
 .
 libtool (2.4.7-6) unstable; urgency=medium
 .
   * Incorrect check for += operator causes func_append to fail
     Patch from Ernesto Alfonso. Closes: #1039612
   * Standards-Version: 4.6.2
   * Add Breaks/Replaces on libtldl3-dev. Closes: #1039583
libtool (2.4.7-6) unstable; urgency=medium
 .
   * Incorrect check for += operator causes func_append to fail
     Patch from Ernesto Alfonso. Closes: #1039612
   * Standards-Version: 4.6.2
   * Add Breaks/Replaces on libtldl3-dev. Closes: #1039583

libuv1 (1.44.2-1+deb12u1) bookworm-security; urgency=medium
 .
   * add patch to fix CVE-2024-24806 (Closes: 1063484)

libxml-stream-perl (1.24-4+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Add Set_SSL_verifycn_name_parameter_to_fix_hostname_verification.patch
     to adjust to IO::Socket::SSL >= 2.078.
     Thanks to Manfred Stock for the bug report and the patch.
     (Closes: #1064058)

linux (6.1.94-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.91
     - [arm64,armhf] dmaengine: pl330: issue_pending waits until WFP state
     - dmaengine: Revert "dmaengine: pl330: issue_pending waits until WFP state"
     - wifi: nl80211: don't free NULL coalescing rule
     - eeprom: at24: Use dev_err_probe for nvmem register failure
     - eeprom: at24: Probe for DDR3 thermal sensor in the SPD case
     - eeprom: at24: fix memory corruption race condition (CVE-2024-35848)
     - Bluetooth: qca: add support for QCA2066
     - mm/hugetlb: add folio support to hugetlb specific flag macros
     - mm: add private field of first tail to struct page and struct folio
     - mm/hugetlb: add hugetlb_folio_subpool() helpers
     - mm/hugetlb: add folio_hstate()
     - mm/hugetlb_cgroup: convert __set_hugetlb_cgroup() to folios
     - mm/hugetlb_cgroup: convert hugetlb_cgroup_from_page() to folios
     - mm/hugetlb: convert free_huge_page to folios
     - mm/hugetlb_cgroup: convert hugetlb_cgroup_uncharge_page() to folios
     - mm/hugetlb: fix missing hugetlb_lock for resv uncharge
     - kbuild: refactor host*_flags
     - kbuild: specify output names separately for each emission type from rustc
     - cifs: use the least loaded channel for sending requests
     - smb3: missing lock when picking channel
     - [armhf] pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of
       GPIOR-T
     - [arm64] pinctrl/meson: fix typo in PDM's pin name
     - pinctrl: core: delete incorrect free in pinctrl_enable()
     - sunrpc: add a struct rpc_stats arg to rpc_create_args
     - nfs: expose /proc/net/sunrpc/nfs in net namespaces
     - nfs: make the rpc_stat per net namespace
     - nfs: Handle error of rpc_proc_register() in nfs_net_init().
     - pinctrl: Introduce struct pinfunction and PINCTRL_PINFUNCTION() macro
     - [x86] pinctrl: intel: Make use of struct pinfunction and
       PINCTRL_PINFUNCTION()
     - [x86] pinctrl: baytrail: Fix selecting gpio pinctrl state
     - pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()
     - regulator: change stubbed devm_regulator_get_enable to return Ok
     - regulator: change devm_regulator_get_enable_optional() stub to return Ok
     - bpf, kconfig: Fix DEBUG_INFO_BTF_MODULES Kconfig definition
     - bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue
     - nvme: fix warn output about shared namespaces without
       CONFIG_NVME_MULTIPATH
     - bpf: Fix a verifier verbose message
     - spi: introduce new helpers with using modern naming
     - [arm64] bpf, arm64: Fix incorrect runtime stats
     - [s390x] mm: Fix storage key clearing for guest huge pages
     - [s390x] mm: Fix clearing storage keys for huge pages
     - xdp: use flags field to disambiguate broadcast redirect
     - bna: ensure the copied buf is NUL terminated
     - nsh: Restore skb->{protocol,data,mac_header} for outer header in
       nsh_gso_segment().
     - net l2tp: drop flow hash on forward
     - [s390x] vdso: Add CFI for RA register to asm macro vdso_func
     - net: qede: sanitize 'rc' in qede_add_tc_flower_fltr()
     - net: qede: use return from qede_parse_flow_attr() for flower
     - net: qede: use return from qede_parse_flow_attr() for flow_spec
     - net: qede: use return from qede_parse_actions()
     - [arm64] ASoC: meson: axg-fifo: use FIELD helpers
     - [arm64] ASoC: meson: axg-fifo: use threaded irq to check periods
     - [arm64] ASoC: meson: axg-card: make links nonatomic
     - [arm64] ASoC: meson: axg-tdm-interface: manage formatters in trigger
     - [arm64] ASoC: meson: cards: select SND_DYNAMIC_MINORS
     - ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()
     - [s390x] cio: Ensure the copied buf is NUL terminated
     - cxgb4: Properly lock TX queue for the selftest.
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix number of databases for 88E6141 /
       88E6341
     - spi: fix null pointer dereference within spi_sync
     - net: bridge: fix multicast-to-unicast with fraglist GSO
     - net: core: reject skb_copy(_expand) for fraglist GSO skbs
     - vxlan: Pull inner IP header in vxlan_rcv().
     - [s390x] qeth: Fix kernel panic after setting hsuid
     - net: gro: add flush check in udp_gro_receive_segment
     - [arm64] clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change
     - [powerpc*] pseries: replace kmalloc with kzalloc in PLPKS driver
     - [powerpc*] pseries: Move PLPKS constants to header file
     - [powerpc*] pseries: make max polling consistent for longer H_CALLs
     - [powerpc*] pseries/iommu: LPAR panics during boot up with a frozen PE
     - [arm64] KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id
     - [arm64] KVM: arm64: vgic-v2: Check for non-NULL vCPU in
       vgic_v2_parse_attr()
     - scsi: lpfc: Move NPIV's transport unregistration to after resource clean
       up
     - scsi: lpfc: Update lpfc_ramp_down_queue_handler() logic
     - scsi: lpfc: Replace hbalock with ndlp lock in lpfc_nvme_unregister_port()
     - scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up()
     - gfs2: Fix invalid metadata access in punch_hole
     - wifi: mac80211: fix ieee80211_bss_*_flags kernel-doc
     - wifi: cfg80211: fix rdev_dump_mpp() arguments order
     - net: mark racy access on sk->sk_rcvbuf
     - scsi: mpi3mr: Avoid memcpy field-spanning write WARNING
     - scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload
     - btrfs: return accurate error code on open failure in open_fs_devices()
     - bpf: Check bloom filter map value size
     - kbuild: Disable KCSAN for autogenerated *.mod.c intermediaries
     - scsi: ufs: core: WLUN suspend dev/link state error recovery
     - ALSA: line6: Zero-initialize message buffers
     - block: fix overflow in blk_ioctl_discard()
     - net: bcmgenet: Reset RBUF on first open
     - ata: sata_gemini: Check clk_enable() result
     - firewire: ohci: mask bus reset interrupts between ISR and bottom half
     - tools/power turbostat: Fix added raw MSR output
     - tools/power turbostat: Increase the limit for fd opened
     - tools/power turbostat: Fix Bzy_MHz documentation typo
     - btrfs: make btrfs_clear_delalloc_extent() free delalloc reserve
     - btrfs: always clear PERTRANS metadata during commit
     - scsi: target: Fix SELinux error when systemd-modules loads the target
       module
     - blk-iocost: avoid out of bounds shift
     - [arm64,armhf] gpu: host1x: Do not setup DMA for virtual devices
     - [mips*] scall: Save thread_info.syscall unconditionally on entry
       (Closes: #1068365)
     - tools/power/turbostat: Fix uncore frequency file string
     - drm/amdgpu: Refine IB schedule error logging
     - Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl
     - [x86] uio_hv_generic: Don't free decrypted memory
     - Drivers: hv: vmbus: Don't free ring buffers that couldn't be re-encrypted
     - fs/9p: only translate RWX permissions for plain 9P2000
     - fs/9p: translate O_TRUNC into OTRUNC
     - 9p: explicitly deny setlease attempts
     - gpio: wcove: Use -ENOTSUPP consistently
     - gpio: crystalcove: Use -ENOTSUPP consistently
     - clk: Don't hold prepare_lock when calling kref_put()
     - fs/9p: drop inodes immediately on non-.L too
     - drm/nouveau/dp: Don't probe eDP ports twice harder
     - net:usb:qmi_wwan: support Rolling modules
     - kbuild: rust: avoid creating temporary files
     - spi: Merge spi_controller.{slave,target}_abort()
     - perf unwind-libunwind: Fix base address for .eh_frame
     - perf unwind-libdw: Handle JIT-generated DSOs properly
     - qibfs: fix dentry leak
     - xfrm: Preserve vlan tags for transport mode software GRO
     - tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets
     - tcp: Use refcount_inc_not_zero() in tcp_twsk_unique().
     - Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout
       (CVE-2024-27398)
     - Bluetooth: msft: fix slab-use-after-free in msft_do_close()
     - Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout
       (CVE-2024-27399)
     - net: ks8851: Queue RX packets in IRQ handler instead of disabling BHs
     - rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation
     - [x86] hwmon: (corsair-cpro) Use a separate buffer for sending commands
     - [x86] hwmon: (corsair-cpro) Use complete_all() instead of complete() in
       ccp_raw_event()
     - [x86] hwmon: (corsair-cpro) Protect ccp->wait_input_report with a spinlock
     - phonet: fix rtm_phonet_notify() skb allocation
     - net: bridge: fix corrupted ethernet header on multicast-to-unicast
     - ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action()
     - timers: Get rid of del_singleshot_timer_sync()
     - timers: Rename del_timer() to timer_delete()
     - net-sysfs: convert dev->operstate reads to lockless ones
     - hsr: Simplify code for announcing HSR nodes timer setup
     - ipv6: annotate data-races around cnf.disable_ipv6
     - ipv6: prevent NULL dereference in ip6_output()
     - net/smc: fix neighbour and rtable leak in smc_ib_find_route()
     - [arm64] net: hns3: using user configure after hardware reset
     - [arm64] net: hns3: direct return when receive a unknown mailbox message
     - [arm64] net: hns3: change type of numa_node_mask as nodemask_t
     - [arm64] net: hns3: release PTP resources if pf initialization failed
     - [arm64] net: hns3: use appropriate barrier function after setting a bit
       value
     - [arm64] net: hns3: fix port vlan filter not disabled issue
     - [arm64] net: hns3: fix kernel crash when devlink reload during
       initialization
     - [arm64] drm/meson: dw-hdmi: power up phy on device init
     - [arm64] drm/meson: dw-hdmi: add bandgap setting for g12
     - drm/connector: Add \n to message about demoting connector force-probes
     - dm/amd/pm: Fix problems with reboot/shutdown for some SMU 13.0.4/13.0.11
       users
     - gpiolib: cdev: Add missing header(s)
     - gpiolib: cdev: relocate debounce_period_us from struct gpio_desc
     - gpiolib: cdev: fix uninitialised kfifo
     - drm/amd/display: Atom Integrated System Info v2_2 for DCN35
     - MAINTAINERS: add leah to 6.1 MAINTAINERS file
     - drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2
     - btrfs: fix kvcalloc() arguments order in btrfs_ioctl_send()
     - firewire: nosy: ensure user_length is taken into account when fetching
       packet contents (CVE-2024-27401)
     - Reapply "drm/qxl: simplify qxl_fence_wait"
     - btf, scripts: rust: drop is_rust_module.sh
     - usb: typec: ucsi: Check for notifications after init
     - usb: typec: ucsi: Fix connector check on init
     - usb: Fix regression caused by invalid ep0 maxpacket in virtual SuperSpeed
       device
     - usb: ohci: Prevent missed ohci interrupts
     - USB: core: Fix access violation during port device removal
     - usb: gadget: composite: fix OS descriptors w_value logic
     - usb: gadget: f_fs: Fix a race condition when processing setup packets.
     - usb: xhci-plat: Don't include xhci.h
     - usb: dwc3: core: Prevent phy suspend during init
     - usb: typec: tcpm: unregister existing source caps before re-registration
     - usb: typec: tcpm: Check for port partner validity before consuming it
     - ALSA: hda/realtek: Fix mute led of HP Laptop 15-da3001TU
     - btrfs: add missing mutex_unlock in btrfs_relocate_sys_chunks()
     - mm/slab: make __free(kfree) accept error pointers
     - mptcp: ensure snd_nxt is properly initialized on connect
     - dt-bindings: iio: health: maxim,max30102: fix compatible check
     - iio:imu: adis16475: Fix sync mode setting
     - iio: accel: mxc4005: Interrupt handling fixes
     - [armhf] ASoC: ti: davinci-mcasp: Fix race condition during probe
     - dyndbg: fix old BUG_ON in >control parser
     - slimbus: qcom-ngd-ctrl: Add timeout for wait operation
     - mei: me: add lunar lake point M DID
     - drm/vmwgfx: Fix invalid reads in fence signaled events
     - [x86] drm/i915/bios: Fix parsing backlight BDB data
     - drm/amd/display: Handle Y carry-over in VCP X.Y calculation
     - net: fix out-of-bounds access in ops_init
     - hwmon: (pmbus/ucd9000) Increase delay from 250 to 500us
     - mm: use memalloc_nofs_save() in page_cache_ra_order()
     - regulator: core: fix debugfs creation regression
     - spi: microchip-core-qspi: fix setting spi bus clock rate
     - ksmbd: off ipv6only for both ipv4/ipv6 binding
     - ksmbd: avoid to send duplicate lease break notifications
     - ksmbd: do not grant v2 lease if parent lease key and epoch are not set
     - Bluetooth: qca: add missing firmware sanity checks
     - Bluetooth: qca: fix NVM configuration parsing
     - Bluetooth: qca: fix info leak when fetching board id
     - Bluetooth: qca: fix info leak when fetching fw build id
     - Bluetooth: qca: fix firmware check error path
     - VFIO: Add the SPR_DSA and SPR_IAX devices to the denylist (CVE-2024-21823)
     - dmaengine: idxd: add a new security check to deal with a hardware erratum
       (CVE-2024-21823)
     - dmaengine: idxd: add a write() method for applications to submit work
       (CVE-2024-21823)
     - keys: Fix overwrite of key expiration on instantiation
     - btrfs: do not wait for short bulk allocation
     - mm/hugetlb: fix DEBUG_LOCKS_WARN_ON(1) when dissolve_free_hugetlb_folio()
     - mm,swapops: update check in is_pfn_swap_entry for hwpoison entries
     - md: fix kmemleak of rdev->serial (CVE-2024-26900)
     - net: bcmgenet: Clear RGMII_LINK upon link down
     - net: bcmgenet: synchronize EXT_RGMII_OOB_CTRL access
     - net: bcmgenet: synchronize use of bcmgenet_set_rx_mode()
     - net: bcmgenet: synchronize UMAC_CMD access
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.92
     - drm/amd/display: Fix division by zero in setup_dsc_config
     - net: ks8851: Fix another TX stall caused by wrong ISR flag handling
     - ice: pass VSI pointer into ice_vc_isvalid_q_id
     - ice: remove unnecessary duplicate checks for VF VSI ID
     - pinctrl: core: handle radix_tree_insert() errors in
       pinctrl_register_one_pin()
     - mfd: stpmic1: Fix swapped mask/unmask in irq chip
     - nfsd: don't allow nfsd threads to be signalled.
     - KEYS: trusted: Fix memory leak in tpm2_key_encode()
     - mmc: core: Add HS400 tuning in HS400es initialization
     - xfs: write page faults in iomap are not buffered writes
     - xfs: punching delalloc extents on write failure is racy
     - xfs: use byte ranges for write cleanup ranges
     - xfs,iomap: move delalloc punching to iomap
     - iomap: buffered write failure should not truncate the page cache
     - xfs: xfs_bmap_punch_delalloc_range() should take a byte range
     - iomap: write iomap validity checks
     - xfs: use iomap_valid method to detect stale cached iomaps
     - xfs: drop write error injection is unfixable, remove it
     - xfs: fix off-by-one-block in xfs_discard_folio()
     - xfs: fix incorrect error-out in xfs_remove
     - xfs: fix sb write verify for lazysbcount
     - xfs: fix incorrect i_nlink caused by inode racing
     - xfs: invalidate block device page cache during unmount
     - xfs: attach dquots to inode before reading data/cow fork mappings
     - xfs: wait iclog complete before tearing down AIL
     - xfs: fix super block buf log item UAF during force shutdown
     - xfs: hoist refcount record merge predicates
     - xfs: estimate post-merge refcounts correctly
     - xfs: invalidate xfs_bufs when allocating cow extents
     - xfs: allow inode inactivation during a ro mount log recovery
     - xfs: fix log recovery when unknown rocompat bits are set
     - xfs: get root inode correctly at bulkstat
     - xfs: short circuit xfs_growfs_data_private() if delta is zero
     - [arm64] atomics: lse: remove stale dependency on JUMP_LABEL
     - drm/amdgpu: Fix possible NULL dereference in
       amdgpu_ras_query_error_status_helper() (CVE-2023-52585)
     - [arm*] binder: fix max_thread type inconsistency
     - [arm64,armhf] usb: dwc3: Wait unconditionally after issuing EndXfer
       command
     - net: usb: ax88179_178a: fix link status when link is set to down/up
     - usb: typec: ucsi: displayport: Fix potential deadlock
     - usb: typec: tipd: fix event checking for tps6598x
     - serial: kgdboc: Fix NMI-safety problems from keyboard reset code
     - KEYS: trusted: Do not use WARN when encode fails
     - admin-guide/hw-vuln/core-scheduling: fix return type of PR_SCHED_CORE_GET
     - docs: kernel_include.py: Cope with docutils 0.21
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.93
     - SUNRPC: Fix loop termination condition in gss_free_in_token_pages()
     - [x86] tsc: Trust initial offset in architectural TSC-adjust MSRs
     - ftrace: Fix possible use-after-free issue in ftrace_location()
     - tty: n_gsm: fix possible out-of-bounds in gsm0_receive() (CVE-2024-36016)
     - tty: n_gsm: fix missing receive state reset after mode switch
     - speakup: Fix sizeof() vs ARRAY_SIZE() bug
     - serial: 8250_bcm7271: use default_mux_rate if possible
     - serial: 8520_mtk: Set RTS on shutdown for Rx in-band wakeup
     - io_uring: fail NOP if non-zero op flags is passed in
     - Revert "r8169: don't try to disable interrupts if NAPI is, scheduled
       already"
     - r8169: Fix possible ring buffer corruption on fragmented Tx packets.
     - ring-buffer: Fix a race between readers and resize checks
     - net: smc91x: Fix m68k kernel compilation for ColdFire CPU
     - nilfs2: fix unexpected freezing of nilfs_segctor_sync()
     - nilfs2: fix potential hang in nilfs_detach_log_writer()
     - ksmbd: avoid to send duplicate oplock break notifications
     - ksmbd: ignore trailing slashes in share paths
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for ProBook 440/460
       G11.
     - ALSA: core: Fix NULL module pointer assignment at card init
     - ALSA: Fix deadlocks with kctl removals at disconnection
     - KEYS: asymmetric: Add missing dependencies of FIPS_SIGNATURE_SELFTEST
     - wifi: mac80211: don't use rate mask for scanning
     - wifi: mac80211: ensure beacon is non-S1G prior to extracting the beacon
       timestamp field
     - wifi: cfg80211: fix the order of arguments for trace events of the
       tx_rx_evt class
     - dt-bindings: rockchip: grf: Add missing type to 'pcie-phy' node
     - net: usb: qmi_wwan: add Telit FN920C04 compositions
     - drm/amd/display: Set color_mgmt_changed to true on unsuspend
     - drm/amdgpu: Update BO eviction priorities
     - drm/amdgpu: Fix the ring buffer size for queue VM flush
     - drm/amdgpu/mes: fix use-after-free issue
     - sched/isolation: Fix boot crash when maxcpus < first housekeeping CPU
     - [x86] ASoC: Intel: bytcr_rt5640: Apply Asus T100TA quirk to Asus T100TAM
       too
     - regulator: irq_helpers: duplicate IRQ name
     - ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating
     - ASoC: dt-bindings: rt5645: add cbj sleeve gpio property
     - regulator: vqmmc-ipq4019: fix module autoloading
     - ASoC: rt715: add vendor clear control register
     - ASoC: rt715-sdca: volume step modification
     - [x86] efistub: Omit physical KASLR when memory reservations exist
     - efi: libstub: only free priv.runtime_map when allocated
     - [x86] KVM: x86: Don't advertise guest.MAXPHYADDR as host.MAXPHYADDR in
       CPUID
     - genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline
     - fpga: dfl-pci: add PCI subdevice ID for Intel D5005 card
     - softirq: Fix suspicious RCU usage in __do_softirq()
     - ASoC: da7219-aad: fix usage of device_get_named_child_node()
     - ALSA: hda: intel-dsp-config: harden I2C/I2S codec detection
     - drm/amd/display: Add dtbclk access to dcn315
     - drm/amd/display: Add VCO speed parameter for DCN31 FPU
     - drm/amdkfd: Flush the process wq before creating a kfd_process
     - [x86] mm: Remove broken vsyscall emulation code from the page fault code
     - nvme: find numa distance only if controller has valid numa id
     - nvmet-auth: return the error code to the nvmet_auth_host_hash() callers
     - nvmet-auth: replace pr_debug() with pr_err() to report an error.
     - nvmet-tcp: fix possible memory leak when tearing down a controller
     - nvmet: fix nvme status code when namespace is disabled
     - epoll: be better about file lifetimes
     - nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists()
     - openpromfs: finish conversion to the new mount API
     - crypto: bcm - Fix pointer arithmetic
     - mm/slub, kunit: Use inverted data to corrupt kmem cache
     - firmware: raspberrypi: Use correct device for DMA mappings
     - ecryptfs: Fix buffer size for tag 66 packet
     - nilfs2: fix out-of-range warning
     - [x86] crypto: ccp - drop platform ifdef checks
     - [amd64] crypto: x86/nh-avx2 - add missing vzeroupper
     - [amd64] crypto: x86/sha256-avx2 - add missing vzeroupper
     - [amd64] crypto: x86/sha512-avx2 - add missing vzeroupper
     - [s390x] cio: fix tracepoint subchannel type field
     - io_uring: don't use TIF_NOTIFY_SIGNAL to test for availability of
       task_work
     - io_uring: use the right type for work_llist empty check
     - rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow
     - rcu: Fix buffer overflow in print_cpu_stall_info()
     - jffs2: prevent xattr node from overflowing the eraseblock
     - soc: mediatek: cmdq: Fix typo of CMDQ_JUMP_RELATIVE
     - null_blk: Fix missing mutex_destroy() at module removal
     - md: fix resync softlockup when bitmap size is less than array size
     - block: open code __blk_account_io_start()
     - block: open code __blk_account_io_done()
     - block: support to account io_ticks precisely
     - wifi: ath10k: poll service ready message before failing
     - wifi: brcmfmac: pcie: handle randbuf allocation failure
     - wifi: ath11k: don't force enable power save on non-running vdevs
     - bpftool: Fix missing pids during link show
     - [x86] boot: Ignore relocations in .notes sections in walk_relocs() too
     - sched/fair: Add EAS checks before updating root_domain::overutilized
     - ACPI: Fix Generic Initiator Affinity _OSC bit
     - qed: avoid truncating work queue length
     - net/mlx5e: Fail with messages when params are not valid for XSK
     - mlx5: stop warning for 64KB pages
     - bitops: add missing prototype check
     - wifi: carl9170: re-fix fortified-memset warning
     - bpf: Pack struct bpf_fib_lookup
     - scsi: ufs: qcom: Perform read back after writing reset bit
     - scsi: ufs: qcom: Perform read back after writing REG_UFS_SYS1CLK_1US
     - scsi: ufs: ufs-qcom: Fix the Qcom register name for offset 0xD0
     - scsi: ufs: ufs-qcom: Clear qunipro_g4_sel for HW version major 5
     - scsi: ufs: qcom: Perform read back after writing unipro mode
     - scsi: ufs: qcom: Perform read back after writing CGC enable
     - scsi: ufs: cdns-pltfrm: Perform read back after writing HCLKDIV
     - scsi: ufs: core: Perform read back after disabling interrupts
     - scsi: ufs: core: Perform read back after disabling UIC_COMMAND_COMPL
     - ACPI: LPSS: Advertise number of chip selects via property
     - irqchip/alpine-msi: Fix off-by-one in allocation error path
     - irqchip/loongson-pch-msi: Fix off-by-one on allocation error path
     - ACPI: disable -Wstringop-truncation
     - gfs2: Don't forget to complete delayed withdraw
     - gfs2: Fix "ignore unlock failures after withdraw"
     - [x86] boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57
     - cpufreq: exit() callback is optional
     - [x86] pat: Introduce lookup_address_in_pgd_attr()
     - [x86] pat: Restructure _lookup_address_cpa()
     - [x86] pat: Fix W^X violation false-positives when running as Xen PV guest
     - net: export inet_lookup_reuseport and inet6_lookup_reuseport
     - net: remove duplicate reuseport_lookup functions
     - udp: Avoid call to compute_score on multiple sites
     - cppc_cpufreq: Fix possible null pointer dereference
     - scsi: libsas: Fix the failure of adding phy with zero-address to port
     - scsi: hpsa: Fix allocation size for Scsi_Host private data
     - [x86] purgatory: Switch to the position-independent small code model
     - thermal/drivers/tsens: Fix null pointer dereference
     - wifi: ath10k: Fix an error code problem in
       ath10k_dbg_sta_write_peer_debug_trigger()
     - wifi: ath10k: populate board data for WCN3990
     - net: dsa: mv88e6xxx: Add support for model-specific pre- and post-reset
       handlers
     - net: dsa: mv88e6xxx: Avoid EEPROM timeout without EEPROM on 88E6250-family
       switches
     - tcp: avoid premature drops in tcp_add_backlog()
     - pwm: sti: Convert to platform remove callback returning void
     - pwm: sti: Prepare removing pwm_chip from driver data
     - pwm: sti: Simplify probe function using devm functions
     - drivers/perf: hisi_pcie: Fix out-of-bound access when valid event group
     - drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group
     - drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset()
     - net: give more chances to rcu in netdev_wait_allrefs_any()
     - wifi: carl9170: add a proper sanity check for endpoints
     - wifi: ar5523: enable proper endpoint verification
     - wifi: mt76: mt7603: add wpdma tx eof flag for PSE client reset
     - libbpf: Fix error message in attach_kprobe_multi
     - HID: intel-ish-hid: ipc: Add check for pci_alloc_irq_vectors
     - scsi: bfa: Ensure the copied buf is NUL terminated
     - scsi: qedf: Ensure the copied buf is NUL terminated
     - scsi: qla2xxx: Fix debugfs output for fw_resource_count
     - kernel/numa.c: Move logging out of numa.h
     - [x86] numa: Fix SRAT lookup of CFMWS ranges with numa_fill_memblks()
     - wifi: mwl8k: initialize cmd->addr[] properly
     - HID: amd_sfh: Handle "no sensors" in PM operations
     - usb: aqc111: stop lying about skb->truesize
     - net: usb: sr9700: stop lying about skb->truesize
     - net: ipv6: fix wrong start position when receive hop-by-hop fragment
     - eth: sungem: remove .ndo_poll_controller to avoid deadlocks
     - net: ethernet: cortina: Locking fixes
     - af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg
     - net: usb: smsc95xx: stop lying about skb->truesize
     - net: openvswitch: fix overwriting ct original tuple for ICMPv6
     - ipv6: sr: add missing seg6_local_exit
     - ipv6: sr: fix incorrect unregister order
     - ipv6: sr: fix invalid unregister error path
     - net/mlx5: Add a timeout to acquire the command queue semaphore
     - net/mlx5: Discard command completions in internal error
     - [s390x] bpf: Emit a barrier for BPF_FETCH instructions
     - riscv, bpf: make some atomic operations fully ordered
     - ax25: Use kernel universal linked list to implement ax25_dev_list
     - ax25: Fix reference count leak issues of ax25_dev
     - ax25: Fix reference count leak issue of net_device
     - mptcp: SO_KEEPALIVE: fix getsockopt support
     - Bluetooth: Consolidate code around sk_alloc into a helper function
     - Bluetooth: compute LE flow credits based on recvbuf space
     - Bluetooth: qca: Fix error code in qca_read_fw_build_info()
     - drm/bridge: Fix improper bridge init order with pre_enable_prev_first
     - printk: Let no_printk() use _printk()
     - dev_printk: Add and use dev_no_printk()
     - drm/lcdif: Do not disable clocks on already suspended hardware
     - drm/panel-samsung-atna33xc20: Use ktime_get_boottime for delays
     - drm/dp: Don't attempt AUX transfers when eDP panels are not powered
     - drm/panel: atna33xc20: Fix unbalanced regulator in the case HPD doesn't
       assert
     - drm/amd/display: Fix potential index out of bounds in color transformation
       function
     - [x86] ASoC: Intel: Disable route checks for Skylake boards
     - [x86] ASoC: Intel: avs: ssm4567: Do not ignore route checks
     - mtd: core: Report error if first mtd_otp_size() call fails in
       mtd_otp_nvmem_add()
     - mtd: rawnand: hynix: fixed typo
     - fbdev: shmobile: fix snprintf truncation
     - [armel,armhf] ASoC: kirkwood: Fix potential NULL dereference
     - drm/meson: vclk: fix calculation of 59.94 fractional rates
     - drm/mediatek: Add 0 size check to mtk_drm_gem_obj
     - [powerpc*] fsl-soc: hide unused const variable
     - fbdev: sisfb: hide unused variables
     - [x86] ASoC: Intel: avs: Fix ASRC module initialization
     - [x86] ASoC: Intel: avs: Fix potential integer overflow
     - media: ngene: Add dvb_ca_en50221_init return value check
     - media: rcar-vin: work around -Wenum-compare-conditional warning
     - media: radio-shark2: Avoid led_names truncations
     - drm: bridge: cdns-mhdp8546: Fix possible null pointer dereference
     - [arm64] drm/msm/dp: allow voltage swing / pre emphasis of 3
     - [arm64] drm/msm/dp: Return IRQ_NONE for unhandled interrupts
     - [arm64] drm/msm/dp: Avoid a long timeout for AUX transfer if nothing
       connected
     - media: ipu3-cio2: Request IRQ earlier
     - media: dt-bindings: ovti,ov2680: Fix the power supply names
     - fbdev: sh7760fb: allow modular build
     - media: atomisp: ssh_css: Fix a null-pointer dereference in
       load_video_binaries
     - [arm64] drm/arm/malidp: fix a possible null pointer dereference
       (CVE-2024-36014)
     - drm: vc4: Fix possible null pointer dereference
     - ASoC: tracing: Export SND_SOC_DAPM_DIR_OUT to its value
     - drm/bridge: anx7625: Don't log an error when DSI host can't be found
     - drm/bridge: icn6211: Don't log an error when DSI host can't be found
     - drm/bridge: lt8912b: Don't log an error when DSI host can't be found
     - drm/bridge: lt9611: Don't log an error when DSI host can't be found
     - drm/bridge: lt9611uxc: Don't log an error when DSI host can't be found
     - drm/bridge: tc358775: Don't log an error when DSI host can't be found
     - drm/bridge: dpc3433: Don't log an error when DSI host can't be found
     - drm/panel: novatek-nt35950: Don't log an error when DSI host can't be
       found
     - drm/panel: simple: Add missing Innolux G121X1-L03 format, flags, connector
     - drm/mipi-dsi: use correct return type for the DSC functions
     - drm/rockchip: vop2: Do not divide height twice for YUV
     - clk: samsung: exynosautov9: fix wrong pll clock id value
     - RDMA/mlx5: Adding remote atomic access flag to updatable flags
     - [arm64] RDMA/hns: Fix return value in hns_roce_map_mr_sg
     - [arm64] RDMA/hns: Fix deadlock on SRQ async events.
     - [arm64] RDMA/hns: Fix UAF for cq async event
     - [arm64] RDMA/hns: Fix GMV table pagesize
     - [arm64] RDMA/hns: Use complete parentheses in macros
     - [arm64] RDMA/hns: Modify the print level of CQE error
     - clk: mediatek: mt8365-mm: fix DPI0 parent
     - clk: rs9: fix wrong default value for clock amplitude
     - RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt
     - RDMA/rxe: Replace pr_xxx by rxe_dbg_xxx in rxe_net.c
     - RDMA/rxe: Fix incorrect rxe_put in error path
     - IB/mlx5: Use __iowrite64_copy() for write combining stores
     - clk: renesas: r8a779a0: Fix CANFD parent clock
     - clk: renesas: r9a07g043: Add clock and reset entry for PLIC
     - lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure
     - clk: qcom: dispcc-sm8450: fix DisplayPort clocks
     - clk: qcom: dispcc-sm6350: fix DisplayPort clocks
     - clk: qcom: mmcc-msm8998: fix venus clock issue
     - [x86] insn: Fix PUSH instruction in x86 instruction decoder opcode map
     - [x86] insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and
       VPDPWSSDS
     - ext4: avoid excessive credit estimate in ext4_tmpfile()
     - virt: acrn: stop using follow_pfn
     - drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map()
     - sunrpc: removed redundant procp check
     - ext4: simplify calculation of blkoff in ext4_mb_new_blocks_simple
     - ext4: fix unit mismatch in ext4_mb_new_blocks_simple
     - ext4: try all groups in ext4_mb_new_blocks_simple
     - ext4: remove unused parameter from ext4_mb_new_blocks_simple()
     - ext4: fix potential unnitialized variable
     - SUNRPC: Fix gss_free_in_token_pages()
     - RDMA/IPoIB: Fix format truncation compilation errors
     - net: add pskb_may_pull_reason() helper
     - net: bridge: xmit: make sure we have at least eth header len bytes
     - net: bridge: mst: fix vlan use-after-free
     - net: qrtr: ns: Fix module refcnt
     - netrom: fix possible dead-lock in nr_rt_ioctl()
     - af_packet: do not call packet_read_pending() from tpacket_destruct_skb()
     - sched/fair: Allow disabling sched_balance_newidle with
       sched_relax_domain_level
     - sched/core: Fix incorrect initialization of the 'burst' parameter in
       cpu_max_write()
     - scsi: ufs: ufs-qcom: Clear qunipro_g4_sel for HW major version > 5
     - perf record: Delete session after stopping sideband thread
     - perf probe: Add missing libgen.h header needed for using basename()
     - iio: core: Leave private pointer NULL when no private data supplied
     - greybus: lights: check return of get_channel_from_mode
     - f2fs: multidev: fix to recognize valid zero block address
     - f2fs: fix to wait on page writeback in __clone_blkaddrs()
     - counter: linux/counter.h: fix Excess kernel-doc description warning
     - perf annotate: Get rid of duplicate --group option item
     - soundwire: cadence: fix invalid PDI offset
     - dmaengine: idma64: Add check for dma_set_max_seg_size
     - firmware: dmi-id: add a release callback function
     - serial: max3100: Lock port->lock when calling uart_handle_cts_change()
     - serial: max3100: Update uart_driver_registered on driver removal
     - serial: max3100: Fix bitwise types
     - greybus: arche-ctrl: move device table to its right location
     - PCI: tegra194: Fix probe path for Endpoint mode
     - serial: sc16is7xx: add proper sched.h include for sched_set_fifo()
     - interconnect: qcom: qcm2290: Fix mas_snoc_bimc QoS port assignment
     - [arm64] dts: meson: fix S4 power-controller node
     - perf tests: Make "test data symbol" more robust on Neoverse N1
     - dt-bindings: PCI: rcar-pci-host: Add optional regulators
     - dt-bindings: PCI: rcar-pci-host: Add missing IOMMU properties
     - f2fs: compress: fix to relocate check condition in
       f2fs_{release,reserve}_compress_blocks()
     - f2fs: compress: fix to relocate check condition in
       f2fs_ioc_{,de}compress_file()
     - f2fs: fix typos in comments
     - f2fs: fix to relocate check condition in f2fs_fallocate()
     - f2fs: fix to check pinfile flag in f2fs_move_file_range()
     - iio: adc: stm32: Fixing err code to not indicate success
     - coresight: etm4x: Fix unbalanced pm_runtime_enable()
     - perf docs: Document bpf event modifier
     - iio: pressure: dps310: support negative temperature values
     - coresight: etm4x: Do not hardcode IOMEM access for register restore
     - coresight: etm4x: Do not save/restore Data trace control registers
     - coresight: etm4x: Safe access for TRCQCLTR
     - coresight: etm4x: Fix access to resource selector registers
     - fpga: region: add owner module and take its refcount
     - microblaze: Remove gcc flag for non existing early_printk.c file
     - microblaze: Remove early printk call from cpuinfo-static.c
     - perf intel-pt: Fix unassigned instruction op (discovered by
       MemorySanitizer)
     - ovl: remove upper umask handling from ovl_create_upper()
     - VMCI: Fix an error handling path in vmci_guest_probe_device()
     - dt-bindings: pinctrl: mediatek: mt7622: fix array properties
     - watchdog: bd9576: Drop "always-running" property
     - watchdog: sa1100: Fix PTR_ERR_OR_ZERO() vs NULL check in sa1100dog_probe()
     - usb: gadget: u_audio: Fix race condition use of controls after free during
       gadget unbind.
     - usb: gadget: u_audio: Clear uac pointer when freed.
     - stm class: Fix a double free in stm_register_device()
     - ppdev: Remove usage of the deprecated ida_simple_xx() API
     - ppdev: Add an error check in register_device (CVE-2024-36015)
     - perf bench internals inject-build-id: Fix trap divide when collecting just
       one DSO
     - perf ui browser: Don't save pointer to stack memory
     - extcon: max8997: select IRQ_DOMAIN instead of depending on it
     - PCI/EDR: Align EDR_PORT_DPC_ENABLE_DSM with PCI Firmware r3.3
     - PCI/EDR: Align EDR_PORT_LOCATE_DSM with PCI Firmware r3.3
     - perf ui browser: Avoid SEGV on title
     - perf report: Avoid SEGV in report__setup_sample_type()
     - f2fs: compress: fix to update i_compr_blocks correctly
     - f2fs: compress: fix to cover {reserve,release}_compress_blocks() w/
       cp_rwsem lock
     - f2fs: fix to release node block count in error path of
       f2fs_new_node_page()
     - f2fs: compress: don't allow unaligned truncation on released compress
       inode
     - serial: sh-sci: protect invalidating RXDMA on shutdown
     - libsubcmd: Fix parse-options memory leak
     - perf daemon: Fix file leak in daemon_session__control
     - f2fs: fix to add missing iput() in gc_data_segment()
     - perf stat: Don't display metric header for non-leader uncore events
     - [s390x] vdso: filter out mno-pic-data-is-text-relative cflag
     - [s390x] vdso64: filter out munaligned-symbols flag for vdso
     - [s390x] vdso: Generate unwind information for C modules
     - [s390x] vdso: Use standard stack frame layout
     - [s390x] ipl: Fix incorrect initialization of len fields in nvme reipl
       block
     - [s390x] ipl: Fix incorrect initialization of nvme dump block
     - [s390x] boot: Remove alt_stfle_fac_list from decompressor
     - Input: ims-pcu - fix printf string overflow
     - Input: ioc3kbd - convert to platform remove callback returning void
     - Input: ioc3kbd - add device table
     - mmc: sdhci_am654: Add tuning algorithm for delay chain
     - mmc: sdhci_am654: Write ITAPDLY for DDR52 timing
     - mmc: sdhci_am654: Drop lookup for deprecated ti,otap-del-sel
     - mmc: sdhci_am654: Add OTAP/ITAP delay enable
     - mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock
     - mmc: sdhci_am654: Fix ITAPDLY for HS400 timing
     - Input: pm8xxx-vibrator - correct VIB_MAX_LEVELS calculation
     - [arm64] drm/msm/dsi: Print dual-DSI-adjusted pclk instead of original mode
       pclk
     - [arm64] drm/msm/dpu: Always flush the slave INTF on the CTL
     - drm/bridge: tc358775: fix support for jeida-18 and jeida-24
     - media: stk1160: fix bounds checking in stk1160_copy_video()
     - scsi: qla2xxx: Replace all non-returning strlcpy() with strscpy()
     - Input: cyapa - add missing input core locking to suspend/resume functions
     - media: flexcop-usb: fix sanity check of bNumEndpoints
     - [powerpc*] pseries: Add failure related checks for h_get_mpp and h_get_ppp
     - media: sunxi: a83-mips-csi2: also select GENERIC_PHY
     - media: cec: cec-adap: always cancel work in cec_transmit_msg_fh
     - media: cec: cec-api: add locking in cec_release()
     - media: cec: core: avoid recursive cec_claim_log_addrs
     - media: cec: core: avoid confusing "transmit timed out" message
     - Revert "drm/bridge: ti-sn65dsi83: Fix enable error path"
     - [arm64] drm/msm: Enable clamp_to_idle for 7c3
     - [arm64] drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting
       fails
     - null_blk: Fix the WARNING: modpost: missing MODULE_DESCRIPTION()
     - ALSA: hda/cs_dsp_ctl: Use private_free for control cleanup
     - ASoC: mediatek: mt8192: fix register configuration for tdm
     - regulator: bd71828: Don't overwrite runtime voltages
     - perf/arm-dmc620: Fix lockdep assert in ->event_init()
     - [x86] kconfig: Select ARCH_WANT_FRAME_POINTERS again when
       UNWINDER_FRAME_POINTER=y
     - net: Always descend into dsa/ folder with CONFIG_NET_DSA enabled
     - ipv6: sr: fix missing sk_buff release in seg6_input_core
     - nfc: nci: Fix uninit-value in nci_rx_work
     - ASoC: tas2552: Add TX path for capturing AUDIO-OUT data
     - NFSv4: Fixup smatch warning for ambiguous return
     - nfs: keep server info for remounts
     - sunrpc: fix NFSACL RPC retry on soft mount
     - rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL
     - af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock.
       (CVE-2024-36972)
     - ipv6: sr: fix memleak in seg6_hmac_init_algo
     - tcp: Fix shift-out-of-bounds in dctcp_update_alpha().
     - pNFS/filelayout: fixup pNfs allocation modes
     - openvswitch: Set the skbuff pkt_type for proper pmtud support.
     - [arm64] asm-bug: Add .align 2 to the end of __BUG_ENTRY
     - rv: Update rv_en(dis)able_monitor doc to match kernel-doc
     - virtio: delete vq in vp_find_vqs_msix() when request_irq() fails
     - Revert "ixgbe: Manual AN-37 for troublesome link partners for X550 SFI"
     - net: fec: avoid lock evasion when reading pps_enable
     - tls: fix missing memory barrier in tls_init
     - inet: factor out locked section of inet_accept() in a new helper
     - net: relax socket state check at accept time.
     - nfc: nci: Fix kcov check in nci_rx_work()
     - nfc: nci: Fix handling of zero-length payload packets in nci_rx_work()
     - drivers/xen: Improve the late XenStore init protocol
     - ice: Interpret .set_channels() input differently
     - netfilter: nfnetlink_queue: acquire rcu_read_lock() in
       instance_destroy_rcu()
     - netfilter: nft_payload: restore vlan q-in-q match support
     - spi: Don't mark message DMA mapped when no transfer in it is
     - dma-mapping: benchmark: fix node id validation
     - dma-mapping: benchmark: handle NUMA_NO_NODE correctly
     - nvmet: fix ns enable/disable possible hang
     - net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ8061
     - net/mlx5: Lag, do bond only if slaves agree on roce state
     - net/mlx5e: Fix IPsec tunnel mode offload feature check
     - net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer
       exhaustion
     - net/mlx5e: Fix UDP GSO for encapsulated packets
     - dma-buf/sw-sync: don't enable IRQ from sync_print_obj()
     - bpf: Fix potential integer overflow in resolve_btfids
     - ALSA: jack: Use guard() for locking
     - ALSA: core: Remove debugfs at disconnection
     - ALSA: hda/realtek: Add quirk for ASUS ROG G634Z
     - ALSA: hda/realtek: Amend G634 quirk to enable rear speakers
     - ALSA: hda/realtek: Adjust G814JZR to use SPI init for amp
     - enic: Validate length of nl attributes in enic_set_vf_port
     - af_unix: Read sk->sk_hash under bindlock during bind().
     - net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM
     - bpf: Allow delete from sockmap/sockhash only if update is allowed
     - net:fec: Add fec_enet_deinit()
     - ice: fix accounting if a VLAN already exists
     - netfilter: nft_payload: move struct nft_payload_set definition where it
       belongs
     - netfilter: nft_payload: rebuild vlan header when needed
     - netfilter: nft_payload: rebuild vlan header on h_proto access
     - netfilter: nft_payload: skbuff vlan metadata mangle support
     - netfilter: tproxy: bail out if IP has been disabled on the device
     - netfilter: nft_fib: allow from forward/input without iif selector
     - kconfig: fix comparison to constant symbols, 'm', 'n'
     - [x86] drm/i915/guc: avoid FIELD_PREP warning
     - spi: stm32: Don't warn about spurious interrupts
     - net: dsa: microchip: fix RGMII error in KSZ DSA driver
     - net: ena: Add dynamic recycling mechanism for rx buffers
     - net: ena: Reduce lines with longer column width boundary
     - net: ena: Fix redundant device NUMA node override
     - ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound
     - [powerpc*] pseries/lparcfg: drop error message from guest name lookup
     - hwmon: (shtc1) Fix property misspelling
     - ALSA: timer: Set lower bound of start tick time
     - net: ena: Fix DMA syncing in XDP path when SWIOTLB is on
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.94
     - drm: Check output polling initialized before disabling (CVE-2024-35927)
     - drm: Check polling initialized before enabling in
       drm_helper_probe_single_connector_modes
     - Bluetooth: btrtl: Add missing MODULE_FIRMWARE declarations
     - maple_tree: fix allocation in mas_sparse_area()
     - maple_tree: fix mas_empty_area_rev() null pointer dereference
       (CVE-2024-36891)
     - mmc: core: Do not force a retune before RPMB switch
     - afs: Don't cross .backup mountpoint from backup volume
     - nilfs2: fix use-after-free of timer for log writer thread (CVE-2024-38583)
     - [x86] drm/i915/audio: Fix audio time stamp programming for DP
     - mptcp: avoid some duplicate code in socket option handling
     - mptcp: cleanup SOL_TCP handling
     - mptcp: fix full TCP keep-alive support
     - vxlan: Fix regression when dropping packets due to invalid src addresses
     - scripts/gdb: fix SB_* constants parsing
     - f2fs: fix to do sanity check on i_xattr_nid in sanity_check_inode()
     - media: lgdt3306a: Add a check against null-pointer-def
     - drm/amdgpu: add error handle to avoid out-of-bounds
     - bcache: fix variable length array abuse in btree_iter
     - wifi: rtw89: correct aSIFSTime for 6GHz band
     - ata: pata_legacy: make legacy_exit() work again
     - thermal/drivers/qcom/lmh: Check for SCM availability at probe
     - [arm64] soc: qcom: rpmh-rsc: Enhance check for VRM in-flight request
     - ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx
     - [arm64] tegra: Correct Tegra132 I2C alias
     - [arm64] dts: qcom: qcs404: fix bluetooth device address
     - md/raid5: fix deadlock that raid5d() wait for itself to clear
       MD_SB_CHANGE_PENDING
     - wifi: rtw89: pci: correct TX resource checking for PCI DMA channel of
       firmware command
     - wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU
     - wifi: rtlwifi: rtl8192de: Fix 5 GHz TX power
     - wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE
     - wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path
     - [arm64] dts: hi3798cv200: fix the size of GICR
     - media: mc: Fix graph walk in media_pipeline_start
     - media: mc: mark the media devnode as registered from the, start
     - media: mxl5xx: Move xpt structures off stack
     - media: v4l2-core: hold videodev_lock until dev reg, finishes
     - mmc: core: Add mmc_gpiod_set_cd_config() function
     - mmc: sdhci: Add support for "Tuning Error" interrupts
     - mmc: sdhci-acpi: Sort DMI quirks alphabetically
     - mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working
     - mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A
     - mmc: sdhci-acpi: Add quirk to enable pull-up on the card-detect GPIO on
       Asus T100TA
     - fbdev: savage: Handle err return when savagefb_check_var failed
     - drm/amdgpu/atomfirmware: add intergrated info v2.3 table
     - 9p: add missing locking around taking dentry fid list
     - drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms
     - [arm64] KVM: arm64: Fix AArch32 register narrowing on userspace write
     - [arm64] KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode
     - [arm64] KVM: arm64: AArch32: Fix spurious trapping of conditional
       instructions
     - crypto: ecdsa - Fix module auto-load on add-key
     - crypto: ecrdsa - Fix module auto-load on add_key
     - [x86] crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak
     - mm: fix race between __split_huge_pmd_locked() and GUP-fast
     - scsi: core: Handle devices which return an unusually large VPD page count
     - net/ipv6: Fix route deleting failure when metric equals 0
     - net/9p: fix uninit-value in p9_client_rpc()
     - kmsan: do not wipe out origin when doing partial unpoisoning
     - cpufreq: amd-pstate: Fix the inconsistency in max frequency units
     - [x86] intel_th: pci: Add Meteor Lake-S CPU support
     - mm/cma: drop incorrect alignment check in cma_init_reserved_mem
     - mm/hugetlb: pass correct order_per_bit to cma_declare_contiguous_nid
     - watchdog: rti_wdt: Set min_hw_heartbeat_ms to accommodate a safety margin
     - kdb: Fix buffer overflow during tab-complete
     - kdb: Use format-strings rather than '\0' injection in kdb_read()
     - kdb: Fix console handling when editing and tab-completing commands
     - kdb: Merge identical case statements in kdb_read()
     - kdb: Use format-specifiers rather than memset() for padding in kdb_read()
     - net: fix __dst_negative_advice() race (CVE-2024-36971)
     - ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow
     - ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()
     - [s390x] ap: Fix crash in AP internal function modify_bitmap()
     - [s390x] cpacf: Split and rework cpacf query functions
     - [s390x] cpacf: Make use of invalid opcode produce a link error
     - i3c: master: svc: fix invalidate IBI type and miss call client IBI handler
     - EDAC/igen6: Convert PCIBIOS_* return codes to errnos
     - nfs: fix undefined behavior in nfs_block_bits()
     - NFS: Fix READ_PLUS when server doesn't support OP_READ_PLUS
     - btrfs: fix crash on racing fsync and size-extending write into prealloc
     - [powerpc*] bpf: enforce full ordering for ATOMIC operations with BPF_FETCH
     - smb: client: fix deadlock in smb2_find_smb_tcon()
     - smp: Provide 'setup_max_cpus' definition on UP too
 .
   [ Uwe Kleine-König ]
   * [arm*] Enable symbols in Raspberry Pi device trees for simplified overlay
     application.
   * d/rules: Let blhc ignore perf tests binaries that are compiled without
     fortification
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 22
   * [rt] Update to 6.1.90-rt30
   * net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (CVE-2024-36974)
linux (6.1.90-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.86
     - amdkfd: use calloc instead of kzalloc to avoid integer overflow
       (CVE-2024-26817)
     - wifi: ath9k: fix LNA selection in ath_ant_try_scan()
     - bnx2x: Fix firmware version string character counts
     - wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor
     - [x86] VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host()
     - wifi: iwlwifi: pcie: Add the PCI device id for new hardware
     - panic: Flush kernel log buffer at the end
     - cpuidle: Avoid potential overflow in integer multiplication
     - [arm64] dts: rockchip: fix rk3328 hdmi ports node
     - [arm64] dts: rockchip: fix rk3399 hdmi ports node
     - ionic: set adminq irq affinity
     - net: skbuff: add overflow debug check to pull/push helpers
     - wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro
     - pstore/zone: Add a null pointer check to the psz_kmsg_read
     - net: pcs: xpcs: Return EINVAL in the internal methods
     - dma-direct: Leak pages on dma_set_decrypted() failure
     - wifi: ath11k: decrease MHI channel buffer length to 8KB
     - cpufreq: Don't unregister cpufreq cooling on CPU hotplug
     - btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks()
     - btrfs: export: handle invalid inode or root reference in
       btrfs_get_parent()
     - btrfs: send: handle path ref underflow in header iterate_inode_ref()
     - ice: use relative VSI index for VFs instead of PF VSI number
     - net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list()
     - Bluetooth: btintel: Fix null ptr deref in btintel_read_version
     - Bluetooth: btmtk: Add MODULE_FIRMWARE() for MT7922
     - [arm64,armhf] drm/vc4: don't check if plane->state->fb == state->fb
     - Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails
     - drm: panel-orientation-quirks: Add quirk for GPD Win Mini
     - pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs
     - sysv: don't call sb_bread() with pointers_lock held
     - scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc()
     - isofs: handle CDs with bad root inode but good Joliet root directory
     - ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710)
       laptops
     - rcu-tasks: Repair RCU Tasks Trace quiescence check
     - Julia Lawall reported this null pointer dereference, this should fix it.
     - media: sta2x11: fix irq handler cast
     - ALSA: firewire-lib: handle quirk to calculate payload quadlets as data
       block counter
     - ext4: add a hint for block bitmap corrupt state in mb_groups
     - ext4: forbid commit inconsistent quota data when errors=remount-ro
     - drm/amd/display: Fix nanosec stat overflow
     - drm/amd/amdgpu: Fix potential ioremap() memory leaks in
       amdgpu_device_init()
     - SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to
       unsigned int
     - Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default"
     - libperf evlist: Avoid out-of-bounds access
     - input/touchscreen: imagis: Correct the maximum touch area value
     - block: prevent division by zero in blk_rq_stat_sum()
     - RDMA/cm: add timeout to cm_destroy_id wait
     - Input: imagis - use FIELD_GET where applicable
     - Input: allocate keycode for Display refresh rate toggle
     - platform/x86: touchscreen_dmi: Add an extra entry for a variant of the
       Chuwi Vi8 tablet
     - [x86] perf/x86/amd/lbr: Discard erroneous branch entries
     - ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent
       environment
     - bus: mhi: host: Add MHI_PM_SYS_ERR_FAIL state
     - usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR
     - [x86] thunderbolt: Keep the domain powered when USB4 port is in redrive
       mode
     - usb: typec: tcpci: add generic tcpci fallback compatible
     - usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined
     - thermal/of: Assume polling-delay(-passive) 0 when absent
     - ASoC: soc-core.c: Skip dummy codec when adding platforms
     - fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2
     - io_uring: clear opcode specific data for an early failure
     - drivers/nvme: Add quirks for device 126f:2262
     - fbmon: prevent division by zero in fb_videomode_from_videomode()
     - netfilter: nf_tables: release batch on table validation from abort path
     - netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path
       (CVE-2024-26925)
     - netfilter: nf_tables: discard table flag update with pending basechain
       deletion
     - gcc-plugins/stackleak: Avoid .head.text section
     - virtio: reenable config if freezing device failed
     - randomize_kstack: Improve entropy diffusion
     - [x86] platform/x86: intel-vbtn: Update tablet mode switch at end of probe
     - Bluetooth: btintel: Fixe build regression
     - net: mpls: error out if inner headers are not set
     - [x86] VMCI: Fix possible memcpy() run-time warning in
       vmci_datagram_invoke_guest_handler()
     - Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in
       amdgpu_device_init()"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.87
     - smb3: fix Open files on server counter going negative
     - ata: libata-scsi: Fix ata_scsi_dev_rescan() error path
     - batman-adv: Avoid infinite loop trying to resize local TT
     - ring-buffer: Only update pages_touched when a new page is touched
     - Bluetooth: Fix memory leak in hci_req_sync_complete()
     - drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11
     - PM: s2idle: Make sure CPUs will wakeup directly on resume
     - media: cec: core: remove length check of Timer Status
     - Revert "drm/qxl: simplify qxl_fence_wait" (Closes: #1054514)
     - nouveau: fix function cast warning
     - scsi: hisi_sas: Modify the deadline for ata_wait_after_reset()
     - scsi: qla2xxx: Fix off by one in qla_edif_app_getstats()
     - net: openvswitch: fix unwanted error log on timeout policy probing
     - u64_stats: fix u64_stats_init() for lockdep when used repeatedly in one
       file
     - xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING
     - geneve: fix header validation in geneve[6]_xmit_skb
     - bnxt_en: Reset PTP tx_avail after possible firmware reset
     - af_unix: Clear stale u->oob_skb.
     - ipv6: fib: hide unused 'pn' variable
     - ipv4/route: avoid unused-but-set-variable warning
     - ipv6: fix race condition between ipv6_get_ifaddr and ipv6_del_addr
     - Bluetooth: SCO: Fix not validating setsockopt user input
     - Bluetooth: L2CAP: Fix not validating setsockopt user input
     - netfilter: complete validation of user input
     - net/mlx5: Properly link new fs rules into the tree
     - net/mlx5e: Fix mlx5e_priv_init() cleanup flow
     - net/mlx5e: HTB, Fix inconsistencies with QoS SQs number
     - af_unix: Do not use atomic ops for unix_sk(sk)->inflight.
     - af_unix: Fix garbage collector racing against connect() (CVE-2024-26923)
     - net: ena: Fix potential sign extension issue
     - net: ena: Wrong missing IO completions check order
     - net: ena: Fix incorrect descriptor free behavior
     - tracing: hide unused ftrace_event_id_fops
     - [amd64] iommu/vt-d: Allocate local memory for page request queue
     - btrfs: qgroup: correctly model root qgroup rsv in convert
     - btrfs: record delayed inode root in transaction
     - btrfs: qgroup: convert PREALLOC to PERTRANS after record_root_in_trans
     - io_uring/net: restore msg_control on sendzc retry
     - kprobes: Fix possible use-after-free issue on kprobe registration
     - [x86] drm/i915/vrr: Disable VRR when using bigjoiner
     - drm/ast: Fix soft lockup
     - drm/client: Fully protect modes[] with dev->mode_config.mutex
     - vhost: Add smp_rmb() in vhost_vq_avail_empty()
     - vhost: Add smp_rmb() in vhost_enable_notify()
     - [x86] perf/x86: Fix out of range data
     - [x86] cpu: Actually turn off mitigations by default for
       SPECULATION_MITIGATIONS=n
     - [x86] apic: Force native_apic_mem_read() to use the MOV instruction
     - irqflags: Explicitly ignore lockdep_hrtimer_exit() argument
     - [x86] bugs: Fix return type of spectre_bhi_state()
     - [x86] bugs: Fix BHI documentation
     - [x86] bugs: Cache the value of MSR_IA32_ARCH_CAPABILITIES
     - [x86] bugs: Rename various 'ia32_cap' variables to 'x86_arch_cap_msr'
     - [x86] bugs: Fix BHI handling of RRSBA
     - [x86] bugs: Clarify that syscall hardening isn't a BHI mitigation
     - [x86] bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto
     - [x86] bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with
       CONFIG_MITIGATION_SPECTRE_BHI
     - [x86] drm/i915/cdclk: Fix CDCLK programming order when pipes are active
     - [x86] drm/i915: Disable port sync when bigjoiner is used
     - drm/amdgpu: Reset dGPU if suspend got aborted
     - drm/amdgpu: always force full reset for SOC21
     - drm/amd/display: fix disable otg wa logic in DCN316
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.88
     - drm/vmwgfx: Enable DMA mappings with SEV
     - drm/amdgpu: fix incorrect active rb bitmap for gfx11
     - drm/amdgpu: fix incorrect number of active RBs for gfx11
     - drm/amd/display: Do not recursively call manual trigger programming
     - io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64()
       failure
     - SUNRPC: Fix rpcgss_context trace event acceptor field
     - random: handle creditable entropy from atomic process context
     - net: usb: ax88179_178a: avoid writing the mac address before first reading
     - [x86] drm/i915/vma: Fix UAF on destroy against retire race
     - [x86] efi: Drop EFI stub .bss from .data section
     - [x86] efi: Disregard setup header of loaded image
     - [x86] efistub: Reinstate soft limit for initrd loading
     - [x86] efi: Drop alignment flags from PE section headers
     - [x86] boot: Remove the 'bugger off' message
     - [x86] boot: Omit compression buffer from PE/COFF image memory footprint
     - [x86] boot: Drop redundant code setting the root device
     - [x86] boot: Drop references to startup_64
     - [x86] boot: Grab kernel_info offset from zoffset header directly
     - [x86] boot: Set EFI handover offset directly in header asm
     - [x86] boot: Define setup size in linker script
     - [x86] boot: Derive file size from _edata symbol
     - [x86] boot: Construct PE/COFF .text section from assembler
     - [x86] boot: Drop PE/COFF .reloc section
     - [x86] boot: Split off PE/COFF .data section
     - [x86] boot: Increase section and file alignment to 4k/512
     - [x86] efistub: Use 1:1 file:memory mapping for PE/COFF .compat section
     - [x86] mm: Remove P*D_PAGE_MASK and P*D_PAGE_SIZE macros
     - [x86] head/64: Add missing __head annotation to startup_64_load_idt()
     - [x86] head/64: Move the __head definition to <asm/init.h>
     - [x86] sme: Move early SME kernel encryption handling into .head.text
     - [x86] sev: Move early startup code into .head.text section
     - [x86] efistub: Remap kernel text read-only before dropping NX attribute
     - netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()
     - netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()
     - netfilter: br_netfilter: skip conntrack input hook for promisc packets
     - netfilter: nft_set_pipapo: do not free live element (CVE-2024-26924)
     - netfilter: flowtable: validate pppoe header
     - netfilter: flowtable: incorrect pppoe tuple
     - af_unix: Call manage_oob() for every skb in unix_stream_read_generic().
     - af_unix: Don't peek OOB data without MSG_OOB.
     - net/mlx5: Lag, restore buckets number to default after hash LAG
       deactivation
     - net/mlx5e: Prevent deadlock while disabling aRFS
     - ice: tc: allow zero flags in parsing tc flower
     - tun: limit printing rate when illegal packet received by tun dev
     - [arm64] net: ethernet: ti: am65-cpsw-nuss: cleanup DMA Channels before
       using them
     - RDMA/rxe: Fix the problem "mutex_destroy missing"
     - RDMA/cm: Print the old state when cm_destroy_id gets timeout
     - RDMA/mlx5: Fix port number for counter query in multi-port configuration
     - [s390x] qdio: handle deferred cc1
     - [s390x] cio: fix race condition during online processing
     - drm: nv04: Fix out of bounds access
     - [armhf] omap2: n8x0: stop instantiating codec platform data
     - PCI: Avoid FLR for SolidRun SNET DPU rev 1
     - HID: kye: Sort kye devices
     - usb: pci-quirks: Reduce the length of a spinlock section in
       usb_amd_find_chipset_info()
     - PCI: Delay after FLR of Solidigm P44 Pro NVMe
     - [x86] quirks: Include linux/pnp.h for arch_pnpbios_disabled()
     - [x86] thunderbolt: Log function name of the called quirk
     - [x86] thunderbolt: Add debug log for link controller power quirk
     - PCI: Execute quirk_enable_clear_retrain_link() earlier
     - ALSA: scarlett2: Move USB IDs out from device_info struct
     - ALSA: scarlett2: Add support for Clarett 8Pre USB
     - ASoC: ti: Convert Pandora ASoC to GPIO descriptors
     - ALSA: scarlett2: Default mixer driver to enabled
     - ALSA: scarlett2: Add correct product series name to messages
     - ALSA: scarlett2: Add Focusrite Clarett+ 2Pre and 4Pre support
     - ALSA: scarlett2: Add Focusrite Clarett 2Pre and 4Pre USB support
     - PCI/DPC: Use FIELD_GET()
     - PCI: Simplify pcie_capability_clear_and_set_word() to ..._clear_word()
     - ALSA: scarlett2: Rename scarlett_gen2 to scarlett2
     - drm: panel-orientation-quirks: Add quirk for Lenovo Legion Go
     - usb: xhci: Add timeout argument in address_device USB HCD callback
     - usb: new quirk to reduce the SET_ADDRESS request timeout
     - clk: Remove prepare_lock hold assertion in __clk_release()
     - clk: Print an info line before disabling unused clocks
     - clk: Initialize struct clk_core kref earlier
     - clk: Get runtime PM before walking tree during disable_unused
     - clk: remove unnecessary (void*) conversions
     - clk: Show active consumers of clocks in debugfs
     - clk: Get runtime PM before walking tree for clk_summary
     - [x86] bugs: Fix BHI retpoline check
     - [x86] cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ
     - ALSA: hda/realtek - Enable audio jacks of Haier Boyue G42 with ALC269VC
     - [arm*] binder: check offset alignment in binder_get_object()
       (CVE-2024-26926)
     - [x86] thunderbolt: Avoid notify PM core about runtime PM resume
     - [x86] thunderbolt: Fix wake configurations after device unplug
     - [x86] comedi: vmk80xx: fix incomplete endpoint checking
     - [armhf] serial: stm32: Return IRQ_NONE in the ISR if no handling happend
     - [armhf] serial: stm32: Reset .throttled state in .startup()
     - USB: serial: option: add Fibocom FM135-GL variants
     - USB: serial: option: add support for Fibocom FM650/FG650
     - USB: serial: option: add Lonsung U8300/U9300 product
     - USB: serial: option: support Quectel EM060K sub-models
     - USB: serial: option: add Rolling RW101-GL and RW135-GL support
     - USB: serial: option: add Telit FN920C04 rmnet compositions
     - Revert "usb: cdc-wdm: close race between read and workqueue"
     - [arm64,armhf] usb: dwc2: host: Fix dereference issue in DDMA completion
       flow.
     - usb: Disable USB3 LPM at shutdown
     - usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport
       error
     - mei: me: disable RPL-S on SPS and IGN firmwares
     - speakup: Avoid crash on very long word
     - fs: sysfs: Fix reference leak in sysfs_break_active_protection()
     - [x86] KVM: x86: Snapshot if a vCPU's vendor model is AMD vs. Intel
       compatible
     - [x86] KVM: x86/pmu: Disable support for adaptive PEBS
     - [x86] KVM: x86/pmu: Do not mask LVTPC when handling a PMI on AMD platforms
     - [arm64] hibernate: Fix level3 translation fault in swsusp_save()
     - init/main.c: Fix potential static_command_line memory overflow
     - mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled
     - drm/amdgpu: validate the parameters of bo mapping operations more clearly
       (CVE-2024-26922)
     - drm/vmwgfx: Sort primary plane formats by order of preference
     - drm/vmwgfx: Fix crtc's atomic check conditional
     - nouveau: fix instmem race condition around ptr stores
     - bootconfig: use memblock_free_late to free xbc memory to buddy
     - nilfs2: fix OOB in nilfs_set_de_type
     - net: dsa: introduce preferred_default_local_cpu_port and use on MT7530
     - ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf
     - ksmbd: validate request buffer size in smb2_allocate_rsp_buf()
     - ksmbd: clear RENAME_NOREPLACE before calling vfs_rename
     - ksmbd: common: use struct_group_attr instead of struct_group for
       network_open_info
     - PCI/ASPM: Fix deadlock when enabling ASPM (CVE-2024-26605)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.89
     - Revert "ASoC: ti: Convert Pandora ASoC to GPIO descriptors"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.90
     - smb: client: fix rename(2) regression against samba
     - cifs: reinstate original behavior again for forceuid/forcegid
     - [amd64] HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized
       dev->devc
     - HID: logitech-dj: allow mice to use all types of reports
     - wifi: iwlwifi: mvm: remove old PASN station when adding a new one
     - wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd
     - vxlan: drop packets from invalid src-address
     - icmp: prevent possible NULL dereferences from icmp_build_probe()
     - bridge/br_netlink.c: no need to return void function
     - bnxt_en: refactor reset close code
     - bnxt_en: Fix the PCI-AER routines
     - NFC: trf7970a: disable all regulators on removal
     - ax25: Fix netdev refcount issue
     - net: make SK_MEMORY_PCPU_RESERV tunable
     - net: fix sk_memory_allocated_{add|sub} vs softirqs
     - ipv4: check for NULL idev in ip_route_use_hint()
     - net: usb: ax88179_178a: stop lying about skb->truesize
     - net: gtp: Fix Use-After-Free in gtp_dellink
     - Bluetooth: MGMT: Fix failing to MGMT_OP_ADD_UUID/MGMT_OP_REMOVE_UUID
     - Bluetooth: hci_sync: Using hci_cmd_sync_submit when removing Adv Monitor
     - Bluetooth: qca: set power_ctrl_enabled on NULL returned by
       gpiod_get_optional()
     - ipvs: Fix checksumming on GSO of SCTP packets
     - net: openvswitch: Fix Use-After-Free in ovs_ct_exit
     - eth: bnxt: fix counting packets discarded due to OOM and netpoll
     - netfilter: nf_tables: honor table dormant flag from netdev release event
       path
     - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue
     - i40e: Report MFS in decimal base instead of hex
     - iavf: Fix TC config comparison with existing adapter TC config
     - net: ethernet: ti: am65-cpts: Fix PTPv1 message type on TX packets
     - af_unix: Suppress false-positive lockdep splat for spin_lock() in
       __unix_gc().
     - cifs: Replace remaining 1-element arrays (Closes: #1069102, #1069092)
     - Revert "crypto: api - Disallow identical driver names"
     - virtio_net: Do not send RSS key if it is not supported
     - fork: defer linking file vma until vma is fully initialized
       (CVE-2024-27022)
     - [x86] cpu: Fix check for RDPKRU in __show_regs()
     - Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853
     - Bluetooth: qca: fix NULL-deref on non-serdev suspend
     - [arm64] mmc: sdhci-msm: pervent access to suspended controller
     - smb: client: Fix struct_group() usage in __packed structs
     - smb3: fix lock ordering potential deadlock in cifs_sync_mid_result
     - HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up
     - btrfs: fix information leak in btrfs_ioctl_logical_to_ino()
     - cpu: Re-enable CPU mitigations by default for !X86 architectures
     - drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3
     - drm/amdgpu: Fix leak when GPU memory allocation fails
     - irqchip/gic-v3-its: Prevent double free on error
     - ACPI: CPPC: Use access_width over bit_width for system memory accesses
     - ACPI: CPPC: Fix bit_offset shift in MASK_VAL() macro
     - ACPI: CPPC: Fix access width used for PCC registers
     - ethernet: Add helper for assigning packet type when dest address does not
       match device address
     - net: b44: set pause params only when interface is up
     - stackdepot: respect __GFP_NOLOCKDEP allocation flag
     - fbdev: fix incorrect address computation in deferred IO
     - udp: preserve the connected status if only UDP cmsg
     - mtd: diskonchip: work around ubsan link failure
     - [x86] tdx: Preserve shared bit on mprotect()
     - [x86] idma64: Don't try to serve interrupts when device is powered off
     - [arm64,armhf] phy: marvell: a3700-comphy: Fix out of bounds read
     - [arm64,armhf] phy: marvell: a3700-comphy: Fix hardcoded array size
     - [arm64] phy: rockchip-snps-pcie3: fix bifurcation on rk3588
     - [arm64] phy: rockchip-snps-pcie3: fix clearing PHP_GRF_PCIESEL_CON bits
     - [amd64] dmaengine: idxd: Fix oops during rmmod on single-CPU platforms
     - i2c: smbus: fix NULL function pointer dereference
     - bounds: Use the right number of bits for power-of-two CONFIG_NR_CPUS
     - macsec: Enable devices to advertise whether they update sk_buff md_dst
       during offloads
     - macsec: Detect if Rx skb is macsec-related for offloading devices that
       update md_dst
     - net/mlx5e: Advertise mlx5 ethernet driver updates sk_buff md_dst for
       MACsec
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 21
   * drivers/tty: Disable N_GSM
   * tipc: fix UAF in error path
   * tipc: fix a possible memleak in tipc_buf_append
linux (6.1.90-1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.21
 .
 linux (6.1.90-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.86
     - amdkfd: use calloc instead of kzalloc to avoid integer overflow
       (CVE-2024-26817)
     - wifi: ath9k: fix LNA selection in ath_ant_try_scan()
     - bnx2x: Fix firmware version string character counts
     - wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor
     - [x86] VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host()
     - wifi: iwlwifi: pcie: Add the PCI device id for new hardware
     - panic: Flush kernel log buffer at the end
     - cpuidle: Avoid potential overflow in integer multiplication
     - [arm64] dts: rockchip: fix rk3328 hdmi ports node
     - [arm64] dts: rockchip: fix rk3399 hdmi ports node
     - ionic: set adminq irq affinity
     - net: skbuff: add overflow debug check to pull/push helpers
     - wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro
     - pstore/zone: Add a null pointer check to the psz_kmsg_read
     - net: pcs: xpcs: Return EINVAL in the internal methods
     - dma-direct: Leak pages on dma_set_decrypted() failure
     - wifi: ath11k: decrease MHI channel buffer length to 8KB
     - cpufreq: Don't unregister cpufreq cooling on CPU hotplug
     - btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks()
     - btrfs: export: handle invalid inode or root reference in
       btrfs_get_parent()
     - btrfs: send: handle path ref underflow in header iterate_inode_ref()
     - ice: use relative VSI index for VFs instead of PF VSI number
     - net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list()
     - Bluetooth: btintel: Fix null ptr deref in btintel_read_version
     - Bluetooth: btmtk: Add MODULE_FIRMWARE() for MT7922
     - [arm64,armhf] drm/vc4: don't check if plane->state->fb == state->fb
     - Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails
     - drm: panel-orientation-quirks: Add quirk for GPD Win Mini
     - pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs
     - sysv: don't call sb_bread() with pointers_lock held
     - scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc()
     - isofs: handle CDs with bad root inode but good Joliet root directory
     - ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710)
       laptops
     - rcu-tasks: Repair RCU Tasks Trace quiescence check
     - Julia Lawall reported this null pointer dereference, this should fix it.
     - media: sta2x11: fix irq handler cast
     - ALSA: firewire-lib: handle quirk to calculate payload quadlets as data
       block counter
     - ext4: add a hint for block bitmap corrupt state in mb_groups
     - ext4: forbid commit inconsistent quota data when errors=remount-ro
     - drm/amd/display: Fix nanosec stat overflow
     - drm/amd/amdgpu: Fix potential ioremap() memory leaks in
       amdgpu_device_init()
     - SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to
       unsigned int
     - Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default"
     - libperf evlist: Avoid out-of-bounds access
     - input/touchscreen: imagis: Correct the maximum touch area value
     - block: prevent division by zero in blk_rq_stat_sum()
     - RDMA/cm: add timeout to cm_destroy_id wait
     - Input: imagis - use FIELD_GET where applicable
     - Input: allocate keycode for Display refresh rate toggle
     - platform/x86: touchscreen_dmi: Add an extra entry for a variant of the
       Chuwi Vi8 tablet
     - [x86] perf/x86/amd/lbr: Discard erroneous branch entries
     - ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent
       environment
     - bus: mhi: host: Add MHI_PM_SYS_ERR_FAIL state
     - usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR
     - [x86] thunderbolt: Keep the domain powered when USB4 port is in redrive
       mode
     - usb: typec: tcpci: add generic tcpci fallback compatible
     - usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined
     - thermal/of: Assume polling-delay(-passive) 0 when absent
     - ASoC: soc-core.c: Skip dummy codec when adding platforms
     - fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2
     - io_uring: clear opcode specific data for an early failure
     - drivers/nvme: Add quirks for device 126f:2262
     - fbmon: prevent division by zero in fb_videomode_from_videomode()
     - netfilter: nf_tables: release batch on table validation from abort path
     - netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path
       (CVE-2024-26925)
     - netfilter: nf_tables: discard table flag update with pending basechain
       deletion
     - gcc-plugins/stackleak: Avoid .head.text section
     - virtio: reenable config if freezing device failed
     - randomize_kstack: Improve entropy diffusion
     - [x86] platform/x86: intel-vbtn: Update tablet mode switch at end of probe
     - Bluetooth: btintel: Fixe build regression
     - net: mpls: error out if inner headers are not set
     - [x86] VMCI: Fix possible memcpy() run-time warning in
       vmci_datagram_invoke_guest_handler()
     - Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in
       amdgpu_device_init()"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.87
     - smb3: fix Open files on server counter going negative
     - ata: libata-scsi: Fix ata_scsi_dev_rescan() error path
     - batman-adv: Avoid infinite loop trying to resize local TT
     - ring-buffer: Only update pages_touched when a new page is touched
     - Bluetooth: Fix memory leak in hci_req_sync_complete()
     - drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11
     - PM: s2idle: Make sure CPUs will wakeup directly on resume
     - media: cec: core: remove length check of Timer Status
     - Revert "drm/qxl: simplify qxl_fence_wait" (Closes: #1054514)
     - nouveau: fix function cast warning
     - scsi: hisi_sas: Modify the deadline for ata_wait_after_reset()
     - scsi: qla2xxx: Fix off by one in qla_edif_app_getstats()
     - net: openvswitch: fix unwanted error log on timeout policy probing
     - u64_stats: fix u64_stats_init() for lockdep when used repeatedly in one
       file
     - xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING
     - geneve: fix header validation in geneve[6]_xmit_skb
     - bnxt_en: Reset PTP tx_avail after possible firmware reset
     - af_unix: Clear stale u->oob_skb.
     - ipv6: fib: hide unused 'pn' variable
     - ipv4/route: avoid unused-but-set-variable warning
     - ipv6: fix race condition between ipv6_get_ifaddr and ipv6_del_addr
     - Bluetooth: SCO: Fix not validating setsockopt user input
     - Bluetooth: L2CAP: Fix not validating setsockopt user input
     - netfilter: complete validation of user input
     - net/mlx5: Properly link new fs rules into the tree
     - net/mlx5e: Fix mlx5e_priv_init() cleanup flow
     - net/mlx5e: HTB, Fix inconsistencies with QoS SQs number
     - af_unix: Do not use atomic ops for unix_sk(sk)->inflight.
     - af_unix: Fix garbage collector racing against connect() (CVE-2024-26923)
     - net: ena: Fix potential sign extension issue
     - net: ena: Wrong missing IO completions check order
     - net: ena: Fix incorrect descriptor free behavior
     - tracing: hide unused ftrace_event_id_fops
     - [amd64] iommu/vt-d: Allocate local memory for page request queue
     - btrfs: qgroup: correctly model root qgroup rsv in convert
     - btrfs: record delayed inode root in transaction
     - btrfs: qgroup: convert PREALLOC to PERTRANS after record_root_in_trans
     - io_uring/net: restore msg_control on sendzc retry
     - kprobes: Fix possible use-after-free issue on kprobe registration
     - [x86] drm/i915/vrr: Disable VRR when using bigjoiner
     - drm/ast: Fix soft lockup
     - drm/client: Fully protect modes[] with dev->mode_config.mutex
     - vhost: Add smp_rmb() in vhost_vq_avail_empty()
     - vhost: Add smp_rmb() in vhost_enable_notify()
     - [x86] perf/x86: Fix out of range data
     - [x86] cpu: Actually turn off mitigations by default for
       SPECULATION_MITIGATIONS=n
     - [x86] apic: Force native_apic_mem_read() to use the MOV instruction
     - irqflags: Explicitly ignore lockdep_hrtimer_exit() argument
     - [x86] bugs: Fix return type of spectre_bhi_state()
     - [x86] bugs: Fix BHI documentation
     - [x86] bugs: Cache the value of MSR_IA32_ARCH_CAPABILITIES
     - [x86] bugs: Rename various 'ia32_cap' variables to 'x86_arch_cap_msr'
     - [x86] bugs: Fix BHI handling of RRSBA
     - [x86] bugs: Clarify that syscall hardening isn't a BHI mitigation
     - [x86] bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto
     - [x86] bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with
       CONFIG_MITIGATION_SPECTRE_BHI
     - [x86] drm/i915/cdclk: Fix CDCLK programming order when pipes are active
     - [x86] drm/i915: Disable port sync when bigjoiner is used
     - drm/amdgpu: Reset dGPU if suspend got aborted
     - drm/amdgpu: always force full reset for SOC21
     - drm/amd/display: fix disable otg wa logic in DCN316
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.88
     - drm/vmwgfx: Enable DMA mappings with SEV
     - drm/amdgpu: fix incorrect active rb bitmap for gfx11
     - drm/amdgpu: fix incorrect number of active RBs for gfx11
     - drm/amd/display: Do not recursively call manual trigger programming
     - io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64()
       failure
     - SUNRPC: Fix rpcgss_context trace event acceptor field
     - random: handle creditable entropy from atomic process context
     - net: usb: ax88179_178a: avoid writing the mac address before first reading
     - [x86] drm/i915/vma: Fix UAF on destroy against retire race
     - [x86] efi: Drop EFI stub .bss from .data section
     - [x86] efi: Disregard setup header of loaded image
     - [x86] efistub: Reinstate soft limit for initrd loading
     - [x86] efi: Drop alignment flags from PE section headers
     - [x86] boot: Remove the 'bugger off' message
     - [x86] boot: Omit compression buffer from PE/COFF image memory footprint
     - [x86] boot: Drop redundant code setting the root device
     - [x86] boot: Drop references to startup_64
     - [x86] boot: Grab kernel_info offset from zoffset header directly
     - [x86] boot: Set EFI handover offset directly in header asm
     - [x86] boot: Define setup size in linker script
     - [x86] boot: Derive file size from _edata symbol
     - [x86] boot: Construct PE/COFF .text section from assembler
     - [x86] boot: Drop PE/COFF .reloc section
     - [x86] boot: Split off PE/COFF .data section
     - [x86] boot: Increase section and file alignment to 4k/512
     - [x86] efistub: Use 1:1 file:memory mapping for PE/COFF .compat section
     - [x86] mm: Remove P*D_PAGE_MASK and P*D_PAGE_SIZE macros
     - [x86] head/64: Add missing __head annotation to startup_64_load_idt()
     - [x86] head/64: Move the __head definition to <asm/init.h>
     - [x86] sme: Move early SME kernel encryption handling into .head.text
     - [x86] sev: Move early startup code into .head.text section
     - [x86] efistub: Remap kernel text read-only before dropping NX attribute
     - netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()
     - netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()
     - netfilter: br_netfilter: skip conntrack input hook for promisc packets
     - netfilter: nft_set_pipapo: do not free live element (CVE-2024-26924)
     - netfilter: flowtable: validate pppoe header
     - netfilter: flowtable: incorrect pppoe tuple
     - af_unix: Call manage_oob() for every skb in unix_stream_read_generic().
     - af_unix: Don't peek OOB data without MSG_OOB.
     - net/mlx5: Lag, restore buckets number to default after hash LAG
       deactivation
     - net/mlx5e: Prevent deadlock while disabling aRFS
     - ice: tc: allow zero flags in parsing tc flower
     - tun: limit printing rate when illegal packet received by tun dev
     - [arm64] net: ethernet: ti: am65-cpsw-nuss: cleanup DMA Channels before
       using them
     - RDMA/rxe: Fix the problem "mutex_destroy missing"
     - RDMA/cm: Print the old state when cm_destroy_id gets timeout
     - RDMA/mlx5: Fix port number for counter query in multi-port configuration
     - [s390x] qdio: handle deferred cc1
     - [s390x] cio: fix race condition during online processing
     - drm: nv04: Fix out of bounds access
     - [armhf] omap2: n8x0: stop instantiating codec platform data
     - PCI: Avoid FLR for SolidRun SNET DPU rev 1
     - HID: kye: Sort kye devices
     - usb: pci-quirks: Reduce the length of a spinlock section in
       usb_amd_find_chipset_info()
     - PCI: Delay after FLR of Solidigm P44 Pro NVMe
     - [x86] quirks: Include linux/pnp.h for arch_pnpbios_disabled()
     - [x86] thunderbolt: Log function name of the called quirk
     - [x86] thunderbolt: Add debug log for link controller power quirk
     - PCI: Execute quirk_enable_clear_retrain_link() earlier
     - ALSA: scarlett2: Move USB IDs out from device_info struct
     - ALSA: scarlett2: Add support for Clarett 8Pre USB
     - ASoC: ti: Convert Pandora ASoC to GPIO descriptors
     - ALSA: scarlett2: Default mixer driver to enabled
     - ALSA: scarlett2: Add correct product series name to messages
     - ALSA: scarlett2: Add Focusrite Clarett+ 2Pre and 4Pre support
     - ALSA: scarlett2: Add Focusrite Clarett 2Pre and 4Pre USB support
     - PCI/DPC: Use FIELD_GET()
     - PCI: Simplify pcie_capability_clear_and_set_word() to ..._clear_word()
     - ALSA: scarlett2: Rename scarlett_gen2 to scarlett2
     - drm: panel-orientation-quirks: Add quirk for Lenovo Legion Go
     - usb: xhci: Add timeout argument in address_device USB HCD callback
     - usb: new quirk to reduce the SET_ADDRESS request timeout
     - clk: Remove prepare_lock hold assertion in __clk_release()
     - clk: Print an info line before disabling unused clocks
     - clk: Initialize struct clk_core kref earlier
     - clk: Get runtime PM before walking tree during disable_unused
     - clk: remove unnecessary (void*) conversions
     - clk: Show active consumers of clocks in debugfs
     - clk: Get runtime PM before walking tree for clk_summary
     - [x86] bugs: Fix BHI retpoline check
     - [x86] cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ
     - ALSA: hda/realtek - Enable audio jacks of Haier Boyue G42 with ALC269VC
     - [arm*] binder: check offset alignment in binder_get_object()
       (CVE-2024-26926)
     - [x86] thunderbolt: Avoid notify PM core about runtime PM resume
     - [x86] thunderbolt: Fix wake configurations after device unplug
     - [x86] comedi: vmk80xx: fix incomplete endpoint checking
     - [armhf] serial: stm32: Return IRQ_NONE in the ISR if no handling happend
     - [armhf] serial: stm32: Reset .throttled state in .startup()
     - USB: serial: option: add Fibocom FM135-GL variants
     - USB: serial: option: add support for Fibocom FM650/FG650
     - USB: serial: option: add Lonsung U8300/U9300 product
     - USB: serial: option: support Quectel EM060K sub-models
     - USB: serial: option: add Rolling RW101-GL and RW135-GL support
     - USB: serial: option: add Telit FN920C04 rmnet compositions
     - Revert "usb: cdc-wdm: close race between read and workqueue"
     - [arm64,armhf] usb: dwc2: host: Fix dereference issue in DDMA completion
       flow.
     - usb: Disable USB3 LPM at shutdown
     - usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport
       error
     - mei: me: disable RPL-S on SPS and IGN firmwares
     - speakup: Avoid crash on very long word
     - fs: sysfs: Fix reference leak in sysfs_break_active_protection()
     - [x86] KVM: x86: Snapshot if a vCPU's vendor model is AMD vs. Intel
       compatible
     - [x86] KVM: x86/pmu: Disable support for adaptive PEBS
     - [x86] KVM: x86/pmu: Do not mask LVTPC when handling a PMI on AMD platforms
     - [arm64] hibernate: Fix level3 translation fault in swsusp_save()
     - init/main.c: Fix potential static_command_line memory overflow
     - mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled
     - drm/amdgpu: validate the parameters of bo mapping operations more clearly
       (CVE-2024-26922)
     - drm/vmwgfx: Sort primary plane formats by order of preference
     - drm/vmwgfx: Fix crtc's atomic check conditional
     - nouveau: fix instmem race condition around ptr stores
     - bootconfig: use memblock_free_late to free xbc memory to buddy
     - nilfs2: fix OOB in nilfs_set_de_type
     - net: dsa: introduce preferred_default_local_cpu_port and use on MT7530
     - ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf
     - ksmbd: validate request buffer size in smb2_allocate_rsp_buf()
     - ksmbd: clear RENAME_NOREPLACE before calling vfs_rename
     - ksmbd: common: use struct_group_attr instead of struct_group for
       network_open_info
     - PCI/ASPM: Fix deadlock when enabling ASPM (CVE-2024-26605)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.89
     - Revert "ASoC: ti: Convert Pandora ASoC to GPIO descriptors"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.90
     - smb: client: fix rename(2) regression against samba
     - cifs: reinstate original behavior again for forceuid/forcegid
     - [amd64] HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized
       dev->devc
     - HID: logitech-dj: allow mice to use all types of reports
     - wifi: iwlwifi: mvm: remove old PASN station when adding a new one
     - wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd
     - vxlan: drop packets from invalid src-address
     - icmp: prevent possible NULL dereferences from icmp_build_probe()
     - bridge/br_netlink.c: no need to return void function
     - bnxt_en: refactor reset close code
     - bnxt_en: Fix the PCI-AER routines
     - NFC: trf7970a: disable all regulators on removal
     - ax25: Fix netdev refcount issue
     - net: make SK_MEMORY_PCPU_RESERV tunable
     - net: fix sk_memory_allocated_{add|sub} vs softirqs
     - ipv4: check for NULL idev in ip_route_use_hint()
     - net: usb: ax88179_178a: stop lying about skb->truesize
     - net: gtp: Fix Use-After-Free in gtp_dellink
     - Bluetooth: MGMT: Fix failing to MGMT_OP_ADD_UUID/MGMT_OP_REMOVE_UUID
     - Bluetooth: hci_sync: Using hci_cmd_sync_submit when removing Adv Monitor
     - Bluetooth: qca: set power_ctrl_enabled on NULL returned by
       gpiod_get_optional()
     - ipvs: Fix checksumming on GSO of SCTP packets
     - net: openvswitch: Fix Use-After-Free in ovs_ct_exit
     - eth: bnxt: fix counting packets discarded due to OOM and netpoll
     - netfilter: nf_tables: honor table dormant flag from netdev release event
       path
     - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue
     - i40e: Report MFS in decimal base instead of hex
     - iavf: Fix TC config comparison with existing adapter TC config
     - net: ethernet: ti: am65-cpts: Fix PTPv1 message type on TX packets
     - af_unix: Suppress false-positive lockdep splat for spin_lock() in
       __unix_gc().
     - cifs: Replace remaining 1-element arrays (Closes: #1069102, #1069092)
     - Revert "crypto: api - Disallow identical driver names"
     - virtio_net: Do not send RSS key if it is not supported
     - fork: defer linking file vma until vma is fully initialized
       (CVE-2024-27022)
     - [x86] cpu: Fix check for RDPKRU in __show_regs()
     - Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853
     - Bluetooth: qca: fix NULL-deref on non-serdev suspend
     - [arm64] mmc: sdhci-msm: pervent access to suspended controller
     - smb: client: Fix struct_group() usage in __packed structs
     - smb3: fix lock ordering potential deadlock in cifs_sync_mid_result
     - HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up
     - btrfs: fix information leak in btrfs_ioctl_logical_to_ino()
     - cpu: Re-enable CPU mitigations by default for !X86 architectures
     - drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3
     - drm/amdgpu: Fix leak when GPU memory allocation fails
     - irqchip/gic-v3-its: Prevent double free on error
     - ACPI: CPPC: Use access_width over bit_width for system memory accesses
     - ACPI: CPPC: Fix bit_offset shift in MASK_VAL() macro
     - ACPI: CPPC: Fix access width used for PCC registers
     - ethernet: Add helper for assigning packet type when dest address does not
       match device address
     - net: b44: set pause params only when interface is up
     - stackdepot: respect __GFP_NOLOCKDEP allocation flag
     - fbdev: fix incorrect address computation in deferred IO
     - udp: preserve the connected status if only UDP cmsg
     - mtd: diskonchip: work around ubsan link failure
     - [x86] tdx: Preserve shared bit on mprotect()
     - [x86] idma64: Don't try to serve interrupts when device is powered off
     - [arm64,armhf] phy: marvell: a3700-comphy: Fix out of bounds read
     - [arm64,armhf] phy: marvell: a3700-comphy: Fix hardcoded array size
     - [arm64] phy: rockchip-snps-pcie3: fix bifurcation on rk3588
     - [arm64] phy: rockchip-snps-pcie3: fix clearing PHP_GRF_PCIESEL_CON bits
     - [amd64] dmaengine: idxd: Fix oops during rmmod on single-CPU platforms
     - i2c: smbus: fix NULL function pointer dereference
     - bounds: Use the right number of bits for power-of-two CONFIG_NR_CPUS
     - macsec: Enable devices to advertise whether they update sk_buff md_dst
       during offloads
     - macsec: Detect if Rx skb is macsec-related for offloading devices that
       update md_dst
     - net/mlx5e: Advertise mlx5 ethernet driver updates sk_buff md_dst for
       MACsec
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 21
   * drivers/tty: Disable N_GSM
   * tipc: fix UAF in error path
   * tipc: fix a possible memleak in tipc_buf_append
 .
 linux (6.1.85-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.83
     - md: fix data corruption for raid456 when reshape restart while grow up
     - md/raid10: prevent soft lockup while flush writes
     - io_uring/unix: drop usage of io_uring socket
     - io_uring: drop any code related to SCM_RIGHTS
     - nfsd: allow nfsd_file_get to sanely handle a NULL pointer
     - nfsd: don't open-code clear_and_wake_up_bit
     - nfsd: NFSD_FILE_KEY_INODE only needs to find GC'ed entries
     - nfsd: simplify test_bit return in NFSD_FILE_KEY_FULL comparator
     - nfsd: don't kill nfsd_files because of lease break error
     - nfsd: add some comments to nfsd_file_do_acquire
     - nfsd: don't take/put an extra reference when putting a file
     - nfsd: update comment over __nfsd_file_cache_purge
     - nfsd: allow reaping files still under writeback
     - NFSD: Convert filecache to rhltable
     - nfsd: simplify the delayed disposal list code
     - NFSD: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop
     - NFSD: Add an nfsd4_encode_nfstime4() helper
     - nfsd: Fix creation time serialization order
     - [arm64] media: rkisp1: Fix IRQ handling due to shared interrupts
     - perf/arm-cmn: Workaround AmpereOneX errata AC04_MESH_1 (incorrect child
       count)
     - ASoC: rt5645: Make LattePanda board DMI match more precise
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82UU
     - [x86] xen: Add some null pointer checking to smp.c
     - [mips*] Clear Cause.BD in instruction_pointer_set
     - HID: multitouch: Add required quirk for Synaptics 0xcddc device
     - gen_compile_commands: fix invalid escape sequence warning
     - [arm64] sve: Lower the maximum allocation for the SVE ptrace regset
     - soc: microchip: Fix POLARFIRE_SOC_SYS_CTRL input prompt
     - RDMA/mlx5: Fix fortify source warning while accessing Eth segment
     - RDMA/mlx5: Relax DEVX access upon modify commands
     - [x86] mm: Move is_vsyscall_vaddr() into asm/vsyscall.h
     - [x86] mm: Disallow vsyscall page read for copy_from_kernel_nofault()
     - net/iucv: fix the allocation size of iucv_path_table array
     - block: sed-opal: handle empty atoms when parsing response
     - dm-verity, dm-crypt: align "struct bvec_iter" correctly
     - [arm64] dts: Fix dtc interrupt_provider warnings
     - btrfs: fix data races when accessing the reserved amount of block reserves
     - btrfs: fix data race at btrfs_use_block_rsv() when accessing block reserve
     - net: smsc95xx: add support for SYS TEC USB-SPEmodule1
     - wifi: mac80211: only call drv_sta_rc_update for uploaded stations
     - [x86] ASoC: amd: yc: Add Lenovo ThinkBook 21J0 into DMI quirk table
     - scsi: mpt3sas: Prevent sending diag_reset when the controller is ready
     - ALSA: hda/realtek - ALC285 reduce pop noise from Headphone port
     - drm/amdgpu: Enable gpu reset for S3 abort cases on Raven series
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 21J2
     - Bluetooth: mgmt: Fix limited discoverable off timeout
     - firewire: core: use long bus reset on gap count error
     - [arm64] tegra: Set the correct PHY mode for MGBE
     - [x86] ASoC: Intel: bytcr_rt5640: Add an extra entry for the Chuwi Vi8
       tablet
     - Input: gpio_keys_polled - suppress deferred probe error for gpio
     - [x86] ASoC: wm8962: Enable oscillator if selecting WM8962_FLL_OSC
     - [x86] ASoC: wm8962: Enable both SPKOUTR_ENA and SPKOUTL_ENA in mono mode
     - [x86] ASoC: wm8962: Fix up incorrect error message in wm8962_set_fll
     - do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak
     - fs: Fix rw_hint validation
     - [s390x] dasd: add autoquiesce feature
     - [s390x] dasd: Use dev_*() for device log messages
     - [s390x] dasd: fix double module refcount decrement
     - rcu/exp: Fix RCU expedited parallel grace period kworker allocation
       failure recovery
     - rcu/exp: Handle RCU expedited grace period kworker allocation failure
     - nbd: null check for nla_nest_start
     - fs/select: rework stack allocation hack for clang
     - md: Don't clear MD_CLOSING when the raid is about to stop
     - lib/cmdline: Fix an invalid format specifier in an assertion msg
     - lib: memcpy_kunit: Fix an invalid format specifier in an assertion msg
     - time: test: Fix incorrect format specifier
     - rtc: test: Fix invalid format specifier.
     - io_uring/net: unify how recvmsg and sendmsg copy in the msghdr
     - io_uring/net: move receive multishot out of the generic msghdr path
     - io_uring/net: fix overflow check in io_recvmsg_mshot_prep()
     - [x86] resctrl: Implement new mba_MBps throttling heuristic
     - [x86] sme: Fix memory encryption setting if enabled by default and not
       overridden
     - timekeeping: Fix cross-timestamp interpolation on counter wrap
     - timekeeping: Fix cross-timestamp interpolation corner case decision
     - timekeeping: Fix cross-timestamp interpolation for non-x86
     - sched/fair: Take the scheduling domain into account in select_idle_smt()
     - sched/fair: Take the scheduling domain into account in select_idle_core()
     - wifi: b43: Stop/wake correct queue in DMA Tx path when QoS is disabled
     - wifi: b43: Stop/wake correct queue in PIO Tx path when QoS is disabled
     - wifi: b43: Stop correct queue in DMA worker when QoS is disabled
     - wifi: b43: Disable QoS for bcm4331
     - wifi: wilc1000: fix declarations ordering
     - wifi: wilc1000: fix RCU usage in connect path
     - wifi: rtl8xxxu: add cancel_work_sync() for c2hcmd_work
     - wifi: wilc1000: do not realloc workqueue everytime an interface is added
     - wifi: wilc1000: fix multi-vif management when deleting a vif
     - wifi: mwifiex: debugfs: Drop unnecessary error check for
       debugfs_create_dir()
     - cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value
     - cpufreq: Explicitly include correct DT includes
     - cpufreq: mediatek-hw: Wait for CPU supplies before probing
     - sock_diag: annotate data-races around sock_diag_handlers[family]
     - inet_diag: annotate data-races around inet_diag_table[]
     - bpftool: Silence build warning about calloc()
     - libbpf: Apply map_set_def_max_entries() for inner_maps on creation
     - af_unix: Annotate data-race of gc_in_progress in wait_for_unix_gc().
     - cpufreq: mediatek-hw: Don't error out if supply is not found
     - libbpf: Fix faccessat() usage on Android
     - pmdomain: qcom: rpmhpd: Drop SA8540P gfx.lvl
     - [arm64] dts: imx8mm-kontron: Disable pullups for I2C signals on OSM-S
       i.MX8MM
     - [arm64] dts: imx8mm-kontron: Disable pullups for I2C signals on SL/BL
       i.MX8MM
     - [arm64] dts: imx8mm-kontron: Disable pullups for onboard UART signals on
       BL OSM-S board
     - [arm64] dts: imx8mm-kontron: Disable pullups for onboard UART signals on
       BL board
     - [arm64] dts: imx8mm-kontron: Disable pull resistors for SD card signals on
       BL OSM-S board
     - [arm64] dts: imx8mm-kontron: Disable pull resistors for SD card signals on
       BL board
     - [arm64] dts: imx8mm-kontron: Fix interrupt for RTC on OSM-S i.MX8MM module
     - libbpf: Add missing LIBBPF_API annotation to libbpf_set_memlock_rlim API
     - wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete
     - wifi: iwlwifi: mvm: report beacon protection failures
     - wifi: iwlwifi: dbg-tlv: ensure NUL termination
     - wifi: iwlwifi: fix EWRD table validity check
     - gpio: vf610: allow disabling the vf610 driver
     - [arm64] dts: imx8mm-venice-gw71xx: fix USB OTG VBUS
     - net: blackhole_dev: fix build warning for ethh set but not used
     - wifi: ath11k: initialize rx_mcs_80 and rx_mcs_160 before use
     - wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer()
     - wifi: wfx: fix memory leak when starting AP
     - printk: Disable passing console lock owner completely during panic()
     - pwm: sti: Fix capture for st,pwm-num-chan < st,capture-num-chan
     - tools/resolve_btfids: Refactor set sorting with types from btf_ids.h
     - tools/resolve_btfids: Fix cross-compilation to non-host endianness
     - wifi: iwlwifi: mvm: don't set replay counters to 0xff
     - [s390x] pai: fix attr_event_free upper limit for pai device drivers
     - [s390x] vdso: drop '-fPIC' from LDFLAGS
     - ipv6: mcast: remove one synchronize_net() barrier in ipv6_mc_down()
     - [arm64] dts: mt8183: kukui: Split out keyboard node and describe
       detachables
     - [arm64] dts: mt8183: Move CrosEC base detection node to kukui-based DTs
     - [arm64] dts: mediatek: mt7986: add "#reset-cells" to infracfg
     - [arm64] dts: mediatek: mt8192-asurada: Remove CrosEC base detection node
     - [arm64] dts: mediatek: mt8192: fix vencoder clock name
     - [arm64] dts: mediatek: mt7622: add missing "device_type" to memory nodes
     - bpf: Mark bpf_spin_{lock,unlock}() helpers with notrace correctly
     - wifi: wilc1000: prevent use-after-free on vif when cleaning up all
       interfaces
     - ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit()
     - bus: tegra-aconnect: Update dependency to ARCH_TEGRA
     - [amd64] iommu/amd: Mark interrupt as managed
     - wifi: brcmsmac: avoid function pointer casts
     - [arm64] dts: qcom: sdm845-db845c: correct PCIe wake-gpios
     - [arm64] dts: qcom: sm8150: use 'gpios' suffix for PCI GPIOs
     - [arm64] dts: qcom: sm8150: correct PCIe wake-gpios
     - powercap: dtpm_cpu: Fix error check against freq_qos_add_request()
     - net: ena: Remove ena_select_queue
     - [arm64] dts: mt8195-cherry-tomato: change watchdog reset boot flow
     - firmware: arm_scmi: Fix double free in SMC transport cleanup path
     - wifi: wilc1000: revert reset line logic flip
     - net: mctp: copy skb ext data when fragmenting
     - pstore: inode: Convert mutex usage to guard(mutex)
     - pstore: inode: Only d_invalidate() is needed
     - [arm64] dts: allwinner: h6: Add RX DMA channel for SPDIF
     - ACPI: resource: Add Infinity laptops to irq1_edge_low_force_override
     - ACPI: resource: Do IRQ override on Lunnen Ground laptops
     - ACPI: resource: Add MAIBENBEN X577 to irq1_edge_low_force_override
     - ACPI: scan: Fix device check notification handling
     - [x86] relocs: Ignore relocations in .notes section (CVE-2024-26816)
     - SUNRPC: fix some memleaks in gssx_dec_option_array
     - mmc: wmt-sdmmc: remove an incorrect release_mem_region() call in the
       .remove function
     - ACPI: CPPC: enable AMD CPPC V2 support for family 17h processors
     - wifi: rtw88: 8821c: Fix beacon loss and disconnect
     - wifi: rtw88: 8821c: Fix false alarm count
     - PCI: Make pci_dev_is_disconnected() helper public for other drivers
     - [amd64] iommu/vt-d: Don't issue ATS Invalidation request when device is
       disconnected
     - igb: Fix missing time sync events
     - Bluetooth: Remove HCI_POWER_OFF_TIMEOUT
     - Bluetooth: mgmt: Remove leftover queuing of power_off work
     - Bluetooth: Remove superfluous call to hci_conn_check_pending()
     - Bluetooth: hci_qca: don't use IS_ERR_OR_NULL() with gpiod_get_optional()
     - Bluetooth: Cancel sync command before suspend and power off
     - Bluetooth: hci_sync: Only allow hci_cmd_sync_queue if running
     - Bluetooth: hci_conn: Consolidate code for aborting connections
     - Bluetooth: hci_core: Cancel request on command timeout
     - Bluetooth: hci_sync: Fix overwriting request callback
     - Bluetooth: hci_core: Fix possible buffer overflow
     - Bluetooth: af_bluetooth: Fix deadlock
     - Bluetooth: fix use-after-free in accessing skb after sending it
     - [s390x] cache: prevent rebuild of shared_cpu_list
     - bpf: Fix DEVMAP_HASH overflow check on 32-bit arches
     - bpf: Fix hashtab overflow check on 32-bit arches
     - bpf: Fix stackmap overflow check on 32-bit arches
     - [amd64] iommu/vt-d: Retrieve IOMMU perfmon capability information
     - ipv6: fib6_rules: flush route cache when rule is changed
     - net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv()
     - net: phy: fix phy_get_internal_delay accessing an empty array
     - [arm64] net: hns3: fix wrong judgment condition issue
     - [arm64] net: hns3: fix kernel crash when 1588 is received on HIP08 devices
     - [arm64] net: hns3: fix port duplex configure error in IMP reset
     - Bluetooth: MGMT: Fix always using HCI_MAX_AD_LENGTH
     - Bluetooth: hci_core: Fix missing instances using HCI_MAX_AD_LENGTH
     - Bluetooth: Fix eir name length
     - net: phy: dp83822: Fix RGMII TX delay configuration
     - OPP: debugfs: Fix warning around icc_get_name()
     - tcp: fix incorrect parameter validation in the do_tcp_getsockopt()
       function
     - ipmr: fix incorrect parameter validation in the ip_mroute_getsockopt()
       function
     - l2tp: fix incorrect parameter validation in the pppol2tp_getsockopt()
       function
     - udp: fix incorrect parameter validation in the udp_lib_getsockopt()
       function
     - net: kcm: fix incorrect parameter validation in the kcm_getsockopt)
       function
     - nfp: flower: handle acti_netdevs allocation failure
     - bpf: hardcode BPF_PROG_PACK_SIZE to 2MB * num_possible_nodes()
     - dm raid: fix false positive for requeue needed during reshape
     - dm: call the resume method on internal suspend
     - [arm64,armhf] drm/tegra: dsi: Add missing check for of_find_device_by_node
     - [arm64,armhf] drm/tegra: dpaux: Fix PM disable depth imbalance in
       tegra_dpaux_probe
     - [arm64,armhf] drm/tegra: dsi: Make use of the helper function
       dev_err_probe()
     - [arm64,armhf] drm/tegra: dsi: Fix some error handling paths in
       tegra_dsi_probe()
     - [arm64,armhf] drm/tegra: dsi: Fix missing pm_runtime_disable() in the
       error handling path of tegra_dsi_probe()
     - [arm64,armhf] drm/tegra: hdmi: Convert to devm_platform_ioremap_resource()
     - [arm64,armhf] drm/tegra: hdmi: Fix some error handling paths in
       tegra_hdmi_probe()
     - [arm64,armhf] drm/tegra: rgb: Fix some error handling paths in
       tegra_dc_rgb_probe()
     - [arm64,armhf] drm/tegra: rgb: Fix missing clk_put() in the error handling
       paths of tegra_dc_rgb_probe()
     - [arm64,armhf] drm/tegra: output: Fix missing i2c_put_adapter() in the
       error handling paths of tegra_output_probe()
     - drm: Don't treat 0 as -1 in drm_fixp2int_ceil
     - drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node
     - drm/panel-edp: use put_sync in unprepare
     - drm/lima: fix a memleak in lima_heap_alloc
     - [x86] ASoC: amd: acp: Add missing error handling in sof-mach
     - dmaengine: tegra210-adma: Update dependency to ARCH_TEGRA
     - media: tc358743: register v4l2 async device only after successful setup
     - PCI/DPC: Print all TLP Prefixes, not just the first
     - perf record: Fix possible incorrect free in record__switch_output()
     - HID: lenovo: Add middleclick_workaround sysfs knob for cptkbd
     - drm/amd/display: Fix a potential buffer overflow in
       'dp_dsc_clock_en_read()'
     - drm/amd/display: Fix potential NULL pointer dereferences in
       'dcn10_set_output_transfer_func()'
     - pinctrl: renesas: r8a779g0: Add Audio SSI pins, groups, and functions
     - pinctrl: renesas: r8a779g0: Add missing SCIF_CLK2 pin group/function
     - clk: samsung: exynos850: Propagate SPI IPCLK rate change
     - perf evsel: Fix duplicate initialization of data->id in
       evsel__parse_sample()
     - clk: meson: Add missing clocks to axg_clk_regmaps
     - media: em28xx: annotate unchecked call to media_device_register()
     - media: v4l2-tpg: fix some memleaks in tpg_alloc
     - media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity
     - media: edia: dvbdev: fix a use-after-free
     - clk: qcom: reset: Commonize the de/assert functions
     - clk: qcom: reset: Ensure write completion on reset de/assertion
     - quota: simplify drop_dquot_ref()
     - quota: Fix potential NULL pointer dereference
     - quota: Fix rcu annotations of inode dquot pointers
     - PCI: switchtec: Fix an error handling path in switchtec_pci_probe()
     - crypto: xilinx - call finalize with bh disabled
     - perf thread_map: Free strlist on normal path in
       thread_map__new_by_tid_str()
     - [arm64] drm/msm/dpu: fix the programming of INTF_CFG2_DATA_HCTL_EN
     - [arm64] drm/msm/dpu: Only enable DSC_MODE_MULTIPLEX if dsc_merge is
       enabled
     - drm/radeon/ni: Fix wrong firmware size logging in ni_init_microcode()
     - ALSA: seq: fix function cast warnings
     - perf stat: Avoid metric-only segv
     - [arm64,armhf] ASoC: meson: aiu: fix function pointer type mismatch
     - [arm64,armhf] ASoC: meson: t9015: fix function pointer type mismatch
     - [powerpc*] Force inlining of arch_vmap_p{u/m}d_supported()
     - [x86] ASoC: SOF: Introduce container struct for SOF firmware
     - [x86] ASoC: SOF: Add some bounds checking to firmware data
     - NTB: EPF: fix possible memory leak in pci_vntb_probe()
     - NTB: fix possible name leak in ntb_register_device()
     - media: cedrus: h265: Associate mv col buffers with buffer
     - media: cedrus: h265: Fix configuring bitstream size
     - media: sun8i-di: Fix coefficient writes
     - media: sun8i-di: Fix power on/off sequences
     - media: sun8i-di: Fix chroma difference threshold
     - media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak
     - media: go7007: add check of return value of go7007_read_addr()
     - media: pvrusb2: remove redundant NULL check
     - media: pvrusb2: fix pvr2_stream_callback casts
     - clk: qcom: dispcc-sdm845: Adjust internal GDSC wait times
     - PCI: Mark 3ware-9650SE Root Port Extended Tags as broken
     - clk: hisilicon: hi3519: Release the correct number of gates in
       hi3519_clk_unregister()
     - clk: hisilicon: hi3559a: Fix an erroneous devm_kfree()
     - [arm64,armhf] drm/tegra: put drm_gem_object ref on error in
       tegra_fb_create
     - mfd: syscon: Call of_node_put() only when of_parse_phandle() takes a ref
     - mfd: altera-sysmgr: Call of_node_put() only when of_parse_phandle() takes
       a ref
     - crypto: jitter - fix CRYPTO_JITTERENTROPY help text
     - drm/tidss: Fix initial plane zpos values
     - drm/tidss: Fix sync-lost issue with two displays
     - mtd: maps: physmap-core: fix flash size larger than 32-bit
     - mtd: rawnand: lpc32xx_mlc: fix irq handler prototype
     - [arm64,armhf] ASoC: meson: axg-tdm-interface: fix mclk setup without
       mclk-fs
     - [arm64,armhf] ASoC: meson: axg-tdm-interface: add frame rate constraint
     - HID: amd_sfh: Update HPD sensor structure elements
     - HID: amd_sfh: Avoid disabling the interrupt
     - drm/amdgpu: Fix missing break in ATOM_ARG_IMM Case of atom_get_src_int()
     - media: pvrusb2: fix uaf in pvr2_context_set_notify
     - media: dvb-frontends: avoid stack overflow warnings with clang
     - media: go7007: fix a memleak in go7007_load_encoder
     - media: ttpci: fix two memleaks in budget_av_attach
     - media: mediatek: vcodec: avoid -Wcast-function-type-strict warning
     - gpio: nomadik: fix offset bug in nmk_pmx_set()
     - [powerpc*] pseries: Fix potential memleak in papr_get_attr()
     - [powerpc*] hv-gpci: Fix the H_GET_PERF_COUNTER_INFO hcall return value
       checks
     - [arm64] drm/msm/dpu: add division of drm_display_mode's hskew parameter
     - modules: wait do_free_init correctly
     - powerpc/embedded6xx: Fix no previous prototype for avr_uart_send() etc.
     - leds: aw2013: Unlock mutex before destroying it
     - leds: sgm3140: Add missing timer cleanup and flash gpio control
     - backlight: lm3630a: Initialize backlight_properties on init
     - backlight: lm3630a: Don't set bl->props.brightness in get_brightness
     - backlight: da9052: Fully initialize backlight_properties during probe
     - backlight: lm3639: Fully initialize backlight_properties during probe
     - backlight: lp8788: Fully initialize backlight_properties during probe
     - clk: Fix clk_core_get NULL dereference
     - clk: zynq: Prevent null pointer dereference caused by kmalloc failure
     - ALSA: hda/realtek: fix ALC285 issues on HP Envy x360 laptops
     - ALSA: usb-audio: Stop parsing channels bits when all channels are found.
     - RDMA/irdma: Allow accurate reporting on QP max send/recv WR
     - RDMA/irdma: Remove duplicate assignment
     - RDMA/srpt: Do not register event handler until srpt device is fully setup
     - f2fs: reduce stack memory cost by using bitfield in struct f2fs_io_info
     - f2fs: compress: fix to guarantee persisting compressed blocks by CP
     - f2fs: compress: fix to cover normal cluster write with cp_rwsem
     - f2fs: compress: fix to check unreleased compressed cluster
     - f2fs: simplify __allocate_data_block
     - f2fs: delete obsolete FI_FIRST_BLOCK_WRITTEN
     - f2fs: delete obsolete FI_DROP_CACHE
     - f2fs: introduce get_dnode_addr() to clean up codes
     - f2fs: update blkaddr in __set_data_blkaddr() for cleanup
     - f2fs: compress: fix to avoid inconsistence bewteen i_blocks and dnode
     - f2fs: compress: fix to cover f2fs_disable_compressed_file() w/ i_sem
     - f2fs: fix to avoid potential panic during recovery
     - scsi: csiostor: Avoid function pointer casts
     - [arm64] RDMA/hns: Fix mis-modifying default congestion control algorithm
     - RDMA/device: Fix a race between mad_client and cm_client init
     - RDMA/rtrs-clt: Check strnlen return len in sysfs mpath_policy_store()
     - scsi: bfa: Fix function pointer type mismatch for hcb_qe->cbfn
     - f2fs: compress: fix to check zstd compress level correctly in mount option
     - net: sunrpc: Fix an off by one in rpc_sockaddr2uaddr()
     - NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102
     - NFSv4.2: fix listxattr maximum XDR buffer size
     - f2fs: compress: fix to check compress flag w/ .i_sem lock
     - f2fs: check number of blocks in a current section
     - watchdog: stm32_iwdg: initialize default timeout
     - f2fs: ro: compress: fix to avoid caching unaligned extent
     - NFS: Fix an off by one in root_nfs_cat()
     - f2fs: convert to use sbi directly
     - f2fs: compress: relocate some judgments in f2fs_reserve_compress_blocks
     - f2fs: compress: fix reserve_cblocks counting error when out of space
     - [x86] perf/x86/amd/core: Avoid register reset when CPU is dead
     - afs: Revert "afs: Hide silly-rename files from userspace"
     - nfs: fix panic when nfs4_ff_layout_prepare_ds() fails
     - io_uring/net: correct the type of variable
     - comedi: comedi_test: Prevent timers rescheduling during deletion
     - [armhf] remoteproc: stm32: use correct format strings on 64-bit
     - [armhf] remoteproc: stm32: Fix incorrect type in assignment for va
     - [armhf] remoteproc: stm32: Fix incorrect type assignment returned by
       stm32_rproc_get_loaded_rsc_tablef
     - usb: phy: generic: Get the vbus supply
     - tty: vt: fix 20 vs 0x20 typo in EScsiignore
     - serial: max310x: fix syntax error in IRQ error message
     - tty: serial: samsung: fix tx_empty() to return TIOCSER_TEMT
     - [arm64] dts: broadcom: bcmbca: bcm4908: drop invalid switch cells
     - hwtracing: hisi_ptt: Move type check to the beginning of
       hisi_ptt_pmu_event_init()
     - rtc: mt6397: select IRQ_DOMAIN instead of depending on it
     - serial: 8250_exar: Don't remove GPIO device on suspend
     - staging: greybus: fix get_channel_from_mode() failure path
     - usb: gadget: net2272: Use irqflags in the call to net2272_probe_fin
     - nouveau: reset the bo resource bus info after an eviction
     - tcp: Fix NEW_SYN_RECV handling in inet_twsk_purge()
     - rds: tcp: Fix use-after-free of net in reqsk_timer_handler().
     - [s390x] vtime: fix average steal time calculation
     - net/sched: taprio: proper TCA_TAPRIO_TC_ENTRY_INDEX check (CVE-2024-26815)
     - soc: fsl: dpio: fix kcalloc() argument order
     - tcp: Fix refcnt handling in __inet_hash_connect().
     - hsr: Fix uninit-value access in hsr_get_node()
     - nvme: only set reserved_tags in nvme_alloc_io_tag_set for fabrics
       controllers
     - nvme: add the Apple shared tag workaround to nvme_alloc_io_tag_set
     - nvme: fix reconnection fail due to reserved tag allocation
     - net: mediatek: mtk_eth_soc: clear MAC_MCR_FORCE_LINK only when MAC is up
     - net: ethernet: mtk_eth_soc: fix PPE hanging issue
     - packet: annotate data-races around ignore_outgoing
     - net: veth: do not manipulate GRO when using XDP
     - net: dsa: mt7530: prevent possible incorrect XTAL frequency selection
     - drm: Fix drm_fixp2int_round() making it add 0.5
     - vdpa_sim: reset must not run
     - vdpa/mlx5: Allow CVQ size changes
     - wireguard: receive: annotate data-race around receiving_counter.counter
     - rds: introduce acquire/release ordering in acquire/release_in_xmit()
     - hsr: Handle failures in module init
     - ipv4: raw: Fix sending packets from raw sockets via IPsec tunnels
     - net: phy: fix phy_read_poll_timeout argument type in genphy_loopback
     - dm-integrity: fix a memory leak when rechecking the data
     - net/bnx2x: Prevent access to a freed page in page_pool
     - netfilter: nft_set_pipapo: release elements in clone only from destroy
       path (CVE-2024-26809)
     - netfilter: nf_tables: do not compare internal table flags on updates
     - rcu: add a helper to report consolidated flavor QS
     - net: report RCU QS on threaded NAPI repolling
     - bpf: report RCU QS in cpumap kthread
     - net: dsa: mt7530: fix link-local frames that ingress vlan filtering ports
     - net: dsa: mt7530: fix handling of all link-local frames
     - spi: spi-mt65xx: Fix NULL pointer access in interrupt handler
     - dm: address indent/space issues
     - dm io: Support IO priority
     - dm-integrity: align the outgoing bio in integrity_recheck
     - [armhf] remoteproc: stm32: fix incorrect optional pointers
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.84
     - [x86] cpu: Support AMD Automatic IBRS
     - [x86] bugs: Use sysfs_emit()
     - [x86] KVM: x86: Update KVM-only leaf handling to allow for 100% KVM-only
       leafs
     - [x86] KVM: x86: Advertise CPUID.(EAX=7,ECX=2):EDX[5:0] to userspace
     - [x86] KVM: x86: Use a switch statement and macros in __feature_translate()
     - timers: Update kernel-doc for various functions
     - timers: Use del_timer_sync() even on UP
     - timers: Rename del_timer_sync() to timer_delete_sync()
     - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach
     - media: staging: ipu3-imgu: Set fields before media_entity_pads_init()
     - [arm64] dts: qcom: sc7280: Add additional MSI interrupts
     - [arm64,armhf] remoteproc: virtio: Fix wdg cannot recovery remote processor
     - [arm64] clk: qcom: gcc-sdm845: Add soft dependency on rpmhpd
     - [armhf] arm: dts: marvell: Fix maxium->maxim typo in brownstone dts
     - drm/vmwgfx: Fix possible null pointer derefence with invalid contexts
     - serial: max310x: fix NULL pointer dereference in I2C instantiation
     - pci_iounmap(): Fix MMIO mapping leak
     - media: xc4000: Fix atomicity violation in xc4000_get_frequency
     - media: mc: Add local pad to pipeline regardless of the link state
     - media: mc: Fix flags handling when creating pad links
     - media: mc: Add num_links flag to media_pad
     - media: mc: Rename pad variable to clarify intent
     - media: mc: Expand MUST_CONNECT flag to always require an enabled link
     - KVM: Always flush async #PF workqueue when vCPU is being destroyed
     - [x86] cpufreq: amd-pstate: Fix min_perf assignment in
       amd_pstate_adjust_perf()
     - [powerpc*] smp: Adjust nr_cpu_ids to cover all threads of a core
     - [powerpc*] smp: Increase nr_cpu_ids to include the boot CPU
     - [x86] crypto: qat - fix double free during reset
     - [x86] crypto: qat - resolve race condition during AER recovery
     - ext4: correct best extent lstart adjustment logic
     - block: Clear zone limits for a non-zoned stacked queue
     - bounds: support non-power-of-two CONFIG_NR_CPUS
     - fat: fix uninitialized field in nostale filehandles
     - ubifs: Set page uptodate in the correct place
     - ubi: Check for too small LEB size in VTBL code
     - ubi: correct the calculation of fastmap size
     - md/raid5: fix atomicity violation in raid5_cache_count
     - cpufreq: Limit resolving a frequency to policy min/max
     - PM: suspend: Set mem_sleep_current during kernel command line setup
     - usb: xhci: Add error handling in xhci_map_urb_for_dma
     - [powerpc*] fsl: Fix mfpmr build errors with newer binutils
     - USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB
     - USB: serial: add device ID for VeriFone adapter
     - USB: serial: cp210x: add ID for MGP Instruments PDS100
     - USB: serial: option: add MeiG Smart SLM320 product
     - [x86] KVM: x86/xen: inject vCPU upcall vector when local APIC is enabled
     - USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M
     - PM: sleep: wakeirq: fix wake irq warning in system suspend
     - mmc: tmio: avoid concurrent runs of mmc_request_done()
     - fuse: fix root lookup with nonzero generation
     - fuse: don't unhash root
     - usb: typec: ucsi: Clean up UCSI_CABLE_PROP macros
     - serial: Lock console when calling into driver before registration
     - btrfs: qgroup: always free reserved space for extent records
     - btrfs: fix off-by-one chunk length calculation at
       contains_pending_extent()
     - PCI/PM: Drain runtime-idle callbacks before driver removal
     - PCI/DPC: Quirk PIO log size for Intel Raptor Lake Root Ports
     - dm-raid: fix lockdep waring in "pers->hot_add_disk"
     - [powerpc*] xor_vmx: Add '-mhard-float' to CFLAGS
     - mac802154: fix llsec key resources release in mac802154_llsec_key_del
     - swap: comments get_swap_device() with usage rule
     - mm: swap: fix race between free_swap_and_cache() and swapoff()
     - mmc: core: Fix switch on gp3 partition
     - [arm64,armhf] drm/etnaviv: Restore some id values
     - landlock: Warn once if a Landlock action is requested while disabled
     - hwmon: (amc6821) add of_match table
     - ext4: fix corruption during on-line resize
     - nvmem: meson-efuse: fix function pointer type mismatch
     - slimbus: core: Remove usage of the deprecated ida_simple_xx() API
     - phy: tegra: xusb: Add API to retrieve the port number of phy
     - usb: gadget: tegra-xudc: Fix USB3 PHY retrieval logic
     - speakup: Fix 8bit characters from direct synth
     - PCI/AER: Block runtime suspend when handling errors
     - io_uring/net: correctly handle multishot recvmsg retry setup
     - nfs: fix UAF in direct writes
     - kbuild: Move -Wenum-{compare-conditional,enum-conversion} into W=1
     - [arm64] PCI: qcom: Rename qcom_pcie_config_sid_sm8250() to reflect IP
       version
     - [arm64] PCI: qcom: Enable BDF to SID translation properly
     - [amd64,arm64] PCI: hv: Fix ring buffer size calculation
     - vfio: Use GFP_KERNEL_ACCOUNT for userspace persistent allocations
     - vfio/pci: Consolidate irq cleanup on MSI/MSI-X disable
     - vfio/pci: Remove negative check on unsigned vector
     - vfio/pci: Lock external INTx masking ops (CVE-2024-26810)
     - vfio/platform: Disable virqfds on cleanup
     - ksmbd: retrieve number of blocks using vfs_getattr in
       set_file_allocation_info
     - ring-buffer: Fix waking up ring buffer readers
     - ring-buffer: Do not set shortest_full when full target is hit
     - ring-buffer: Fix resetting of shortest_full
     - ring-buffer: Fix full_waiters_pending in poll
     - ring-buffer: Use wait_event_interruptible() in ring_buffer_wait()
     - [s390x] zcrypt: fix reference counting on zcrypt card objects
     - drm/probe-helper: warn about negative .get_modes()
     - drm/panel: do not return negative error codes from drm_panel_get_modes()
     - [armhf] drm/exynos: do not return negative values from .get_modes()
     - [armhf] drm/imx/ipuv3: do not return negative values from .get_modes()
     - [arm64,armhf] drm/vc4: hdmi: do not return negative values from
       .get_modes()
     - memtest: use {READ,WRITE}_ONCE in memory scanning
     - Revert "block/mq-deadline: use correct way to throttling write requests"
     - f2fs: mark inode dirty for FI_ATOMIC_COMMITTED flag
     - f2fs: truncate page cache before clearing flags when aborting atomic write
     - nilfs2: fix failure to detect DAT corruption in btree and direct mappings
     - nilfs2: prevent kernel bug at submit_bh_wbc()
     - cifs: open_cached_dir(): add FILE_READ_EA to desired access
     - cpufreq: dt: always allocate zeroed cpumask
     - [amd64] x86/CPU/AMD: Update the Zenbleed microcode revisions
     - NFSD: Fix nfsd_clid_class use of __string_len() macro
     - net: hns3: tracing: fix hclgevf trace event strings
     - wireguard: netlink: check for dangling peer via is_dead instead of empty
       list
     - wireguard: netlink: access device through ctx instead of peer
     - ahci: asm1064: correct count of reported ports
     - ahci: asm1064: asm1166: don't limit reported ports
     - drm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag
     - drm/amd/display: Return the correct HDCP error code
     - drm/amd/display: Fix noise issue on HDMI AV mute
     - dm snapshot: fix lockup in dm_exception_table_exit
     - [x86] pm: Work around false positive kmemleak report in
       msr_build_context()
     - cpufreq: brcmstb-avs-cpufreq: fix up "add check for cpufreq_cpu_get's
       return value"
     - [x86] platform/x86: p2sb: On Goldmont only cache P2SB and SPI devfn BAR
       (Closes: #1065320)
     - tls: fix race between tx work scheduling and socket close (CVE-2024-26585)
     - netfilter: nf_tables: mark set as dead when unbinding anonymous set with
       timeout (CVE-2024-26643)
     - netfilter: nf_tables: disallow anonymous set with timeout flag
       (CVE-2024-26642)
     - netfilter: nf_tables: reject constant set with timeout
     - Drivers: hv: vmbus: Calculate ring buffer size for more efficient use of
       memory
     - init/Kconfig: lower GCC version check for -Warray-bounds
     - [x86] KVM: x86: Mark target gfn of emulated atomic instruction as dirty
     - [x86] KVM: SVM: Flush pages under kvm->lock to fix UAF in
       svm_register_enc_region()
     - tracing: Use .flush() call to wake up readers
     - drm/amdgpu/pm: Fix the error of pwm1_enable setting
     - [x86] drm/i915: Check before removing mm notifier
     - ALSA: hda/realtek - Fix headset Mic no show at resume back for Lenovo
       ALC897 platform
     - USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command
     - usb: gadget: ncm: Fix handling of zero block length packets
     - usb: port: Don't try to peer unused USB ports based on location
     - tty: serial: fsl_lpuart: avoid idle preamble pending if CTS is enabled
     - misc: lis3lv02d_i2c: Fix regulators getting en-/dis-abled twice on
       suspend/resume
     - mei: me: add arrow lake point S DID
     - mei: me: add arrow lake point H DID
     - vt: fix unicode buffer corruption when deleting characters
     - fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion
     - ALSA: hda/realtek - Add Headset Mic supported Acer NB platform
     - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook
     - tee: optee: Fix kernel panic caused by incorrect error handling
     - mm, vmscan: prevent infinite loop for costly GFP_NOIO |
       __GFP_RETRY_MAYFAIL allocations
     - iio: accel: adxl367: fix DEVID read after reset
     - iio: accel: adxl367: fix I2C FIFO data register
     - i2c: i801: Avoid potential double call to gpiod_remove_lookup_table
     - drm/amd/display: handle range offsets in VRR ranges
     - [x86] efistub: Call mixed mode boot services on the firmware's stack
     - net: tls: handle backlogging of crypto requests (CVE-2024-26584)
     - [x86] ASoC: amd: yc: Revert "Fix non-functional mic on Lenovo 21J2"
     - iommu: Avoid races around default domain allocations
     - clocksource/drivers/arm_global_timer: Fix maximum prescaler value
     - entry: Respect changes to system call number by trace_sys_enter()
     - minmax: add umin(a, b) and umax(a, b)
     - swiotlb: Fix alignment checks when both allocation and DMA masks are
       present
     - iommu/dma: Force swiotlb_max_mapping_size on an untrusted device
     - printk: Update @console_may_schedule in console_trylock_spinning()
     - irqchip/renesas-rzg2l: Implement restriction when writing ISCR register
     - irqchip/renesas-rzg2l: Flush posted write in irq_eoi()
     - irqchip/renesas-rzg2l: Add macro to retrieve TITSR register offset based
       on register's index
     - irqchip/renesas-rzg2l: Rename rzg2l_tint_eoi()
     - irqchip/renesas-rzg2l: Rename rzg2l_irq_eoi()
     - irqchip/renesas-rzg2l: Prevent spurious interrupts when setting trigger
       type
     - [x86] kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe
       address
     - [x86] fpu: Keep xfd_state in sync with MSR_IA32_XFD
     - pwm: img: fix pwm clock lookup
     - tty: serial: imx: Fix broken RS485
     - block: Fix page refcounts for unaligned buffers in __bio_release_pages()
     - blk-mq: release scheduler resource when request completes
     - vfio/pci: Disable auto-enable of exclusive INTx IRQ (CVE-2024-27437)
     - vfio: Introduce interface to flush virqfd inject workqueue
     - vfio/pci: Create persistent INTx handler (CVE-2024-26812)
     - vfio/platform: Create persistent IRQ handlers (CVE-2024-26813)
     - vfio/fsl-mc: Block calling interrupt handler without trigger
       (CVE-2024-26814)
     - [x86] coco: Export cc_vendor
     - [x86] coco: Get rid of accessor functions
     - [x86] Kconfig: Remove CONFIG_AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT
     - [x86] sev: Fix position dependent variable references in startup code
     - mm/migrate: set swap entry values of THP tail pages properly.
     - init: open /initrd.image with O_LARGEFILE
     - [x86] efistub: Add missing boot_params for mixed mode compat entry
     - btrfs: zoned: don't skip block groups with 100% zone unusable
     - btrfs: zoned: use zone aware sb location for scrub
     - wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes
     - wifi: iwlwifi: fw: don't always use FW dump trig
     - exec: Fix NOMMU linux_binprm::exec in transfer_args_to_stack()
     - hexagon: vmlinux.lds.S: handle attributes section
     - mmc: sdhci-omap: re-tuning is needed after a pm transition to support emmc
       HS200 mode
     - mmc: core: Initialize mmc_blk_ioc_data
     - mmc: core: Avoid negative index with array access
     - block: Do not force full zone append completion in req_bio_endio()
     - thermal: devfreq_cooling: Fix perf state when calculate dfc res_util
     - nouveau/dmem: handle kcalloc() allocation failure
     - net: ll_temac: platform_get_resource replaced by wrong function
     - drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed
     - [x86] drm/i915/bios: Tolerate devdata==NULL in
       intel_bios_encoder_supports_dp_dual_mode()
     - [x86] drm/i915/gt: Reset queue_priority_hint on parking
     - Bluetooth: hci_sync: Fix not checking error on hci_cmd_sync_cancel_sync
     - Revert "usb: phy: generic: Get the vbus supply"
     - usb: cdc-wdm: close race between read and workqueue
     - USB: UAS: return ENODEV when submit urbs fail with device not attached
     - usb: dwc3-am62: Rename private data
     - usb: dwc3-am62: fix module unload/reload behavior
     - ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs
       (CVE-2024-26654)
     - scsi: core: Fix unremoved procfs host directory regression
     - staging: vc04_services: changen strncpy() to strscpy_pad()
     - staging: vc04_services: fix information leak in create_component()
     - USB: core: Add hub_get() and hub_put() routines
     - USB: core: Fix deadlock in port "disable" sysfs attribute
     - scsi: sd: Fix TCG OPAL unlock on system resume
     - usb: dwc2: host: Fix remote wakeup from hibernation
     - usb: dwc2: host: Fix hibernation flow
     - usb: dwc2: host: Fix ISOC flow in DDMA mode
     - usb: dwc2: gadget: Fix exiting from clock gating
     - usb: dwc2: gadget: LPM flow fix
     - usb: udc: remove warning when queue disabled ep
     - usb: typec: Return size of buffer if pd_set operation succeeds
     - usb: typec: ucsi: Clear EVENT_PENDING under PPM lock
     - usb: typec: ucsi: Ack unsupported commands
     - usb: typec: ucsi_acpi: Refactor and fix DELL quirk
     - usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset
     - scsi: qla2xxx: Prevent command send on chip reset
     - scsi: qla2xxx: Fix N2N stuck connection
     - scsi: qla2xxx: Split FCE|EFT trace control
     - scsi: qla2xxx: Update manufacturer detail
     - scsi: qla2xxx: NVME|FCP prefer flag not being honored
     - scsi: qla2xxx: Fix command flush on cable pull
     - scsi: qla2xxx: Fix double free of fcport
     - scsi: qla2xxx: Change debug message during driver unload
     - scsi: qla2xxx: Delay I/O Abort on PCI error
     - [x86] cpu: Enable STIBP on AMD if Automatic IBRS is enabled
     - tls: fix use-after-free on failed backlog decryption (CVE-2024-26800)
     - scsi: lpfc: Correct size for cmdwqe/rspwqe for memset()
     - scsi: lpfc: Correct size for wqe for memset()
     - scsi: libsas: Add a helper sas_get_sas_addr_and_dev_type()
     - scsi: libsas: Fix disk not being scanned in after being removed
     - [x86] sev: Skip ROM range scans and validation for SEV-SNP guests
     - USB: core: Fix deadlock in usb_deauthorize_interface()
     - tools/resolve_btfids: fix build with musl libc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.85
     - scripts/bpf_doc: Use silent mode when exec make cmd
     - dma-buf: Fix NULL pointer dereference in sanitycheck()
     - nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet
     - mlxbf_gige: stop PHY during open() error paths
     - wifi: iwlwifi: mvm: rfi: fix potential response leaks
     - ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa()
     - [s390x] qeth: handle deferred cc1
     - tcp: properly terminate timers for kernel sockets
     - net: wwan: t7xx: Split 64bit accesses to fix alignment issues
     - [arm64] net: hns3: fix index limit to support all queue stats
     - [arm64] net: hns3: fix kernel crash when devlink reload during pf
       initialization
     - [arm64] net: hns3: mark unexcuted loopback test result as UNEXECUTED
     - tls: recv: process_rx_list shouldn't use an offset with kvec
     - tls: adjust recv return with async crypto and failed copy to userspace
     - tls: get psock ref after taking rxlock to avoid leak
     - mlxbf_gige: call request_irq() after NAPI initialized
     - bpf: Protect against int overflow for stack access size
     - cifs: Fix duplicate fscache cookie warnings
     - net: lan743x: Add set RFE read fifo threshold for PCI1x1x chips
     - inet: inet_defrag: prevent sk release while still in use
     - dm integrity: fix out-of-range warning
     - [x86] cpufeatures: Add new word for scattered features
     - [x86] perf/x86/amd/lbr: Use freeze based on availability
     - [arm64] KVM: arm64: Fix host-programmed guest events in nVHE
     - r8169: fix issue caused by buggy BIOS on certain boards with RTL8168d
     - [x86] cpufeatures: Add CPUID_LNX_5 to track recently added Linux-defined
       word
     - Revert "Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT"
     - [arm64] dts: qcom: sc7180-trogdor: mark bluetooth address as broken
     - Bluetooth: qca: fix device-address endianness
     - Bluetooth: add quirk for broken address properties
     - Bluetooth: hci_event: set the conn encrypted before conn establishes
     - Bluetooth: Fix TOCTOU in HCI debugfs implementation (CVE-2024-24857,
       CVE-2024-24858)
     - xen-netfront: Add missing skb_mark_for_recycle
     - net/rds: fix possible cp null dereference
     - net: usb: ax88179_178a: avoid the interface always configured as random
       address
     - vsock/virtio: fix packet delivery to tap device
     - Revert "x86/mm/ident_map: Use gbpages only where full GB page should be
       mapped."
     - netfilter: nf_tables: reject new basechain after table flag update
     - netfilter: nf_tables: flush pending destroy work before exit_net release
     - netfilter: nf_tables: Fix potential data-race in
       __nft_flowtable_type_get()
     - netfilter: validate user input for expected length
     - vboxsf: Avoid an spurious warning if load_nls_xxx() fails
     - bpf, sockmap: Prevent lock inversion deadlock in map delete elem
     - net/sched: act_skbmod: prevent kernel-infoleak
     - net/sched: fix lockdep splat in qdisc_tree_reduce_backlog()
     - net: stmmac: fix rx queue priority assignment
     - net: phy: micrel: lan8814: Fix when enabling/disabling 1-step timestamping
     - net: phy: micrel: Fix potential null pointer dereference
     - gro: fix ownership transfer
     - [x86] bugs: Fix the SRSO mitigation on Zen3/4
     - [x86] retpoline: Do the necessary fixup to the Zen3/4 srso return thunk
       for !SRSO
     - i40e: Fix VF MAC filter removal
     - erspan: make sure erspan_base_hdr is present in skb->head
     - ipv6: Fix infinite recursion in fib6_dump_done().
     - mlxbf_gige: stop interface during shutdown
     - r8169: skip DASH fw status checks when DASH is disabled
     - udp: do not accept non-tunnel GSO skbs landing in a tunnel
     - udp: do not transition UDP GRO fraglist partial checksums to unnecessary
     - udp: prevent local UDP tunnel packets from being GROed
     - i40e: fix i40e_count_filters() to count only active/new filters
     - i40e: fix vf may be used uninitialized in this function warning
     - drm/amd: Evict resources during PM ops prepare() callback
     - drm/amd: Add concept of running prepare_suspend() sequence for IP blocks
     - drm/amd: Flush GFXOFF requests in prepare stage
     - i40e: Store the irq number in i40e_q_vector
     - i40e: Remove _t suffix from enum type names
     - i40e: Enforce software interrupt during busy-poll exit
     - r8169: use spinlock to protect mac ocp register access
     - r8169: use spinlock to protect access to registers Config2 and Config5
     - r8169: prepare rtl_hw_aspm_clkreq_enable for usage in atomic context
     - tcp: Fix bind() regression for v6-only wildcard and v4(-mapped-v6)
       non-wildcard addresses.
     - drivers: net: convert to boolean for the mac_managed_pm flag
     - net: fec: Set mac_managed_pm during probe
     - [x86] KVM: SVM: enhance info printk's in SEV init
     - [x86] KVM: SVM: WARN, but continue, if misc_cg_set_capacity() fails
     - [x86] KVM: SVM: Use unsigned integers when dealing with ASIDs
     - [x86] KVM: SVM: Add support for allowing zero SEV ASIDs
     - fs/pipe: Fix lockdep false-positive in watchqueue pipe_write()
     - 9p: Fix read/write debug statements to report server reply
     - drivers/perf: riscv: Disable PERF_SAMPLE_BRANCH_* while not supported
     - drm/panfrost: fix power transition timeout warnings
     - ASoC: rt5682-sdw: fix locking sequence
     - [x86] ASoC: rt711-sdca: fix locking sequence
     - ASoC: rt711-sdw: fix locking sequence
     - ASoC: ops: Fix wraparound for mask in snd_soc_get_volsw
     - ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit
     - scsi: mylex: Fix sysfs buffer lengths
     - scsi: sd: Unregister device if device_add_disk() failed in sd_probe()
     - cifs: Fix caching to try to do open O_WRONLY as rdwr on server
     - ata: sata_mv: Fix PCI device ID table declaration compilation warning
     - nfsd: hold a lighter-weight client reference over CB_RECALL_ANY
     - [x86] retpoline: Add NOENDBR annotation to the SRSO dummy return thunk
     - ksmbd: don't send oplock break if rename fails
     - ksmbd: validate payload size in ipc response (CVE-2024-26811)
     - ksmbd: do not set SMB2_GLOBAL_CAP_ENCRYPTION for SMB 3.1.1
     - ALSA: hda/realtek - Fix inactive headset mic jack
     - ALSA: hda/realtek: Update Panasonic CF-SZ6 quirk to support headset with
       microphone
     - driver core: Introduce device_link_wait_removal()
     - of: dynamic: Synchronize of_changeset_destroy() with the devlink removals
     - [x86] mm/pat: fix VM_PAT handling in COW mappings
     - [x86] mce: Make sure to grab mce_sysfs_mutex in set_bank()
     - [x86] coco: Require seeding RNG with RDRAND on CoCo systems
     - [s390x] entry: align system call table on 8 bytes
     - smb3: retrying on failed server close
     - smb: client: fix potential UAF in cifs_debug_files_proc_show()
     - smb: client: fix potential UAF in cifs_stats_proc_write()
     - smb: client: fix potential UAF in cifs_stats_proc_show()
     - smb: client: fix potential UAF in smb2_is_valid_oplock_break()
     - smb: client: fix potential UAF in smb2_is_valid_lease_break()
     - smb: client: fix potential UAF in is_valid_oplock_break()
     - smb: client: fix potential UAF in smb2_is_network_name_deleted()
     - smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect()
     - mptcp: don't account accept() of non-MPC client as fallback to TCP
     - mm/secretmem: fix GUP-fast succeeding on secretmem folios
     - nvme: fix miss command type check
     - [x86] bugs: Change commas to semicolons in 'spectre_v2' sysfs file
     - [x86] syscall: Don't force use of indirect calls for system calls
     - [x86] Mitigate Native Branch History Injection vulnerability
       (CVE-2024-2201):
       + [x86] bhi: Add support for clearing branch history at syscall entry
       + [x86] bhi: Define SPEC_CTRL_BHI_DIS_S
       + [x86] bhi: Enumerate Branch History Injection (BHI) bug
       + [x86] bhi: Add BHI mitigation knob
       + [x86] bhi: Mitigate KVM by default
       + [x86] KVM: x86: Add BHI_NO
       + [x86] set SPECTRE_BHI_ON as default
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 20
   * Refresh "efi: Lock down the kernel if booted in secure boot mode" (context
     changes in 6.1.84)
   * [rt] Refresh "serial: 8250: implement write_atomic"
   * Refresh "x86: Make x32 syscall support conditional on a kernel parameter"
   * tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc
     (Closes: #1068770)
   * Revert "scsi: sd: usb_storage: uas: Access media prior to querying device
     properties" (Closes: #1068675)
   * Revert "scsi: core: Add struct for args to execution functions"
   * scsi: sd: usb_storage: uas: Access media prior to querying device properties
 .
 linux (6.1.82-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.77
     - asm-generic: make sparse happy with odd-sized put_unaligned_*()
     - [powerpc*] mm: Fix null-pointer dereference in pgtable_cache_add
     - [arm64] irq: set the correct node for VMAP stack
     - [arm64] drivers/perf: pmuv3: don't expose SW_INCR event in sysfs
     - [powerpc*] Fix build error due to is_valid_bugaddr()
     - [powerpc*] mm: Fix build failures due to arch_reserved_kernel_pages()
     - [x86] boot: Ignore NMIs during very early boot
     - [powerpc*] pmd_move_must_withdraw() is only needed for
       CONFIG_TRANSPARENT_HUGEPAGE
     - [powerpc*] lib: Validate size for vector operations
     - [x86*] mce: Mark fatal MCE's page as poison to avoid panic in the kdump
       kernel
     - perf/core: Fix narrow startup race when creating the perf nr_addr_filters
       sysfs file
     - debugobjects: Stop accessing objects after releasing hash bucket lock
     - regulator: core: Only increment use_count when enable_count changes
     - audit: Send netlink ACK before setting connection in auditd_set
     - ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop
     - PNP: ACPI: fix fortify warning
     - ACPI: extlog: fix NULL pointer dereference check
     - ACPI: NUMA: Fix the logic of getting the fake_pxm value
     - PM / devfreq: Synchronize devfreq_monitor_[start/stop]
     - ACPI: APEI: set memory failure flags as MF_ACTION_REQUIRED on synchronous
       events
     - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree
     - UBSAN: array-index-out-of-bounds in dtSplitRoot
     - jfs: fix slab-out-of-bounds Read in dtSearch
     - jfs: fix array-index-out-of-bounds in dbAdjTree
     - jfs: fix uaf in jfs_evict_inode
     - pstore/ram: Fix crash when setting number of cpus to an odd number
     - erofs: fix ztailpacking for subpage compressed blocks
     - [armhf] crypto: stm32/crc32 - fix parsing list of devices
     - afs: fix the usage of read_seqbegin_or_lock() in afs_lookup_volume_rcu()
     - afs: fix the usage of read_seqbegin_or_lock() in afs_find_server*()
     - rxrpc_find_service_conn_rcu: fix the usage of read_seqbegin_or_lock()
     - jfs: fix array-index-out-of-bounds in diNewExt
     - arch: consolidate arch_irq_work_raise prototypes
     - [s390x] vfio-ap: fix sysfs status attribute for AP queue devices
     - [s390x] ptrace: handle setting of fpc register correctly
     - [s390x] KVM: s390: fix setting of fpc register
     - SUNRPC: Fix a suspicious RCU usage warning (CVE-2023-52623)
     - ecryptfs: Reject casefold directory inodes
     - ext4: fix inconsistent between segment fstrim and full fstrim
     - ext4: unify the type of flexbg_size to unsigned int
     - ext4: remove unnecessary check from alloc_flex_gd()
     - ext4: avoid online resizing failures due to oversized flex bg
       (CVE-2023-52622)
     - wifi: rt2x00: restart beacon queue when hardware reset
     - wifi: rt2x00: correct wrong BBP register in RxDCOC calibration
     - [arm64] soc: xilinx: Fix for call trace due to the usage of
       smp_processor_id()
     - [arm64] soc: xilinx: fix unhandled SGI warning message
     - scsi: lpfc: Fix possible file string name overflow when updating firmware
     - PCI: Add no PM reset quirk for NVIDIA Spectrum devices
     - bonding: return -ENOMEM instead of BUG in alb_upper_dev_walk
     - net: usb: ax88179_178a: avoid two consecutive device resets
     - scsi: mpi3mr: Add PCI checks where SAS5116 diverges from SAS4116
     - scsi: arcmsr: Support new PCI device IDs 1883 and 1886
     - wifi: ath9k: Fix potential array-index-out-of-bounds read in
       ath9k_htc_txstatus()
     - wifi: ath11k: fix race due to setting ATH11K_FLAG_EXT_IRQ_ENABLED too
       early
     - bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers
       (CVE-2023-52621)
     - scsi: libfc: Don't schedule abort twice
     - scsi: libfc: Fix up timeout error in fc_fcp_rec_error()
     - bpf: Set uattr->batch.count as zero before batched update or deletion
     - net: phy: at803x: fix passing the wrong reference for config_intr
     - [arm64] scsi: hisi_sas: Set .phy_attached before notifing phyup event
       HISI_PHYE_PHY_UP_PM
     - ice: fix ICE_AQ_VSI_Q_OPT_RSS_* register values
     - net: atlantic: eliminate double free in error handling logic
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix mv88e6352_serdes_get_stats error
       path
     - block: prevent an integer overflow in bvec_try_merge_hw_page
     - md: Whenassemble the array, consult the superblock of the freshest device
     - [arm64] dts: qcom: msm8996: Fix 'in-ports' is a required property
     - [arm64] dts: qcom: msm8998: Fix 'out-ports' is a required property
     - ice: fix pre-shifted bit usage
     - [arm64] dts: amlogic: fix format for s4 uart node
     - wifi: rtl8xxxu: Add additional USB IDs for RTL8192EU devices
     - libbpf: Fix NULL pointer dereference in bpf_object__collect_prog_relos
     - wifi: rtlwifi: rtl8723{be,ae}: using calculate_bit_shift()
     - wifi: cfg80211: free beacon_ies when overridden from hidden BSS
     - Bluetooth: qca: Set both WIDEBAND_SPEECH and LE_STATES quirks for QCA2066
     - Bluetooth: hci_sync: fix BR/EDR wakeup bug
     - Bluetooth: L2CAP: Fix possible multiple reject send
     - net/smc: disable SEID on non-s390 archs where virtual ISM may be used
     - i40e: Fix VF disable behavior to block all traffic
     - net: dsa: qca8k: put MDIO bus OF node on qca8k_mdio_register() failure
     - f2fs: fix to check return value of f2fs_reserve_new_block()
     - ALSA: hda: Refer to correct stream index at loops
     - ASoC: doc: Fix undefined SND_SOC_DAPM_NOPM argument
     - fast_dput(): handle underflows gracefully
     - RDMA/IPoIB: Fix error code return in ipoib_mcast_join
     - [arm64,armhf] drm/panel-edp: Add override_edid_mode quirk for generic edp
     - drm/amd/display: Fix tiled display misalignment
     - f2fs: fix write pointers on zoned device after roll forward
     - [x86] ASoC: amd: Add new dmi entries for acp5x platform
     - drm/drm_file: fix use of uninitialized variable
     - drm/framebuffer: Fix use of uninitialized variable
     - drm/mipi-dsi: Fix detach call without attach
     - media: stk1160: Fixed high volume of stk1160_dbg messages
     - [arm64,armhf]  media: rockchip: rga: fix swizzling for RGB formats
     - PCI: add INTEL_HDA_ARL to pci_ids.h
     - [x86] ALSA: hda: Intel: add HDA_ARL PCI ID support
     - [arm64] media: rkisp1: Drop IRQF_SHARED
     - [arm64] media: rkisp1: Fix IRQ handler return values
     - [arm64] media: rkisp1: Store IRQ lines
     - [arm64] media: rkisp1: Fix IRQ disable race issue
     - hwmon: (nct6775) Fix fan speed set failure in automatic mode
     - f2fs: fix to tag gcing flag on page during block migration
     - [armhf] drm/exynos: Call drm_atomic_helper_shutdown() at shutdown/unbind
       time
     - IB/ipoib: Fix mcast list locking
     - media: ddbridge: fix an error code problem in ddb_probe
     - drm/amd/display: For prefetch mode > 0, extend prefetch if possible
     - [arm64] drm/msm/dpu: Ratelimit framedone timeout msgs
     - [arm64] drm/msm/dpu: fix writeback programming for YUV cases
     - drm/amdgpu: fix ftrace event amdgpu_bo_move always move on same heap
     - [x86] watchdog: it87_wdt: Keep WDTCTRL bit 3 unmodified for IT8784/IT8786
     - drm/amd/display: make flip_timestamp_in_us a 64-bit variable
     - drm/amdgpu: Fix ecc irq enable/disable unpaired
     - drm/amdgpu: Let KFD sync with VM fences
     - drm/amdgpu: Fix '*fw' from request_firmware() not released in
       'amdgpu_ucode_request()'
     - drm/amdgpu: Drop 'fence' check in 'to_amdgpu_amdkfd_fence()'
     - ALSA: hda/conexant: Fix headset auto detect fail in cx8070 and SN6140
     - leds: trigger: panic: Don't register panic notifier if creating the
       trigger failed
     - xen/gntdev: Fix the abuse of underlying struct page in DMA-buf import
     - PCI: Only override AMD USB controller if required
     - PCI: switchtec: Fix stdev_release() crash after surprise hot remove
     - perf cs-etm: Bump minimum OpenCSD version to ensure a bugfix is present
     - usb: hub: Replace hardcoded quirk value with BIT() macro
     - usb: hub: Add quirk to decrease IN-ep poll interval for Microchip USB491x
       hub
     - tty: allow TIOCSLCKTRMIOS with CAP_CHECKPOINT_RESTORE
     - fs/kernfs/dir: obey S_ISGID
     - PCI: Fix 64GT/s effective data rate calculation
     - PCI/AER: Decode Requester ID when no error info found
     - 9p: Fix initialisation of netfs_inode for 9p
     - libsubcmd: Fix memory leak in uniq()
     - virtio_net: Fix "‘%d’ directive writing between 1 and 11 bytes into a
       region of size 10" warnings
     - blk-mq: fix IO hang from sbitmap wakeup race
     - ceph: reinitialize mds feature bit even when session in open
     - ceph: fix deadlock or deadcode of misusing dget()
     - ceph: fix invalid pointer access if get_quota_realm return ERR_PTR
     - drm/amd/powerplay: Fix kzalloc parameter 'ATOM_Tonga_PPM_Table' in
       'get_platform_power_management_table()'
     - drm/amdgpu: Fix with right return code '-EIO' in
       'amdgpu_gmc_vram_checking()'
     - drm/amdgpu: Release 'adev->pm.fw' before return in
       'amdgpu_device_need_post()'
     - perf: Fix the nr_addr_filters fix
     - wifi: cfg80211: fix RCU dereference in __cfg80211_bss_update
     - drm: using mul_u32_u32() requires linux/math64.h
     - scsi: isci: Fix an error code problem in isci_io_request_build()
     - [armhf] regulator: ti-abb: don't use devm_platform_ioremap_resource_byname
       for shared interrupt register
     - scsi: core: Move scsi_host_busy() out of host lock for waking up EH
       handler
     - HID: hidraw: fix a problem of memory leak in hidraw_release()
     - ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()
     - ipv4: raw: add drop reasons
     - ipmr: fix kernel panic when forwarding mcast packets
     - tcp: add sanity checks to rx zerocopy
     - ixgbe: Refactor returning internal error codes
     - ixgbe: Refactor overtemp event handling
     - ixgbe: Fix an error handling path in ixgbe_read_iosf_sb_reg_x550()
     - ipv6: Ensure natural alignment of const ipv6 loopback and router addresses
     - llc: call sock_orphan() at release time
     - bridge: mcast: fix disabled snooping after long uptime
     - netfilter: conntrack: correct window scaling with retransmitted SYN
     - netfilter: nf_tables: restrict tunnel object to NFPROTO_NETDEV
     - netfilter: nf_log: replace BUG_ON by WARN_ON_ONCE when putting logger
     - netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom
       expectations
     - net: ipv4: fix a memleak in ip_setup_cork
     - af_unix: fix lockdep positive in sk_diag_dump_icons()
     - net: sysfs: Fix /sys/class/net/<iface> path
     - [arm64] irq: set the correct node for shadow call stack
     - Revert "drm/amd/display: Disable PSR-SU on Parade 0803 TCON again"
     - [arm64] drm/msm/dsi: Enable runtime PM
     - gve: Fix use-after-free vulnerability
     - bonding: remove print in bond_verify_device_path
     - drm/amdgpu: Fix missing error code in 'gmc_v6/7/8/9_0_hw_init()'
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.78
     - ext4: regenerate buddy after block freeing failed if under fc replay
     - [arm64] dmaengine: ti: k3-udma: Report short packet errors
     - [arm64] dmaengine: fsl-qdma: Fix a memory leak related to the status queue
       DMA
     - [arm64] dmaengine: fsl-qdma: Fix a memory leak related to the queue
       command DMA
     - [arm64] phy: renesas: rcar-gen3-usb2: Fix returning wrong error code
     - dmaengine: fix is_slave_direction() return false when DMA_DEV_TO_DEV
     - [armhf] phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP
     - cifs: failure to add channel on iface should bump up weight
     - [arm64] drm/msms/dp: fixed link clock divider bits be over written in BPC
       unknown case
     - [arm64] drm/msm/dp: return correct Colorimetry for
       DP_TEST_DYNAMIC_RANGE_CEA case
     - [arm64] drm/msm/dpu: check for valid hw_pp in
       dpu_encoder_helper_phys_cleanup
     - net: stmmac: xgmac: fix handling of DPP safety error for DMA channels
     - wifi: mac80211: fix waiting for beacons logic
     - netdevsim: avoid potential loop in nsim_dev_trap_report_work()
     - net: atlantic: Fix DMA mapping for PTP hwts ring
     - tunnels: fix out of bounds access when building IPv6 PMTU error
     - atm: idt77252: fix a memleak in open_card_ubr0
     - [armhf] hwmon: (aspeed-pwm-tacho) mutex for tach reading
     - [x86] hwmon: (coretemp) Fix out-of-bounds memory access
     - [x86] hwmon: (coretemp) Fix bogus core_id to attr name mapping
     - inet: read sk->sk_family once in inet_recv_error()
     - [x86] drm/i915/gvt: Fix uninitialized variable in handle_mmio()
     - rxrpc: Fix response to PING RESPONSE ACKs to a dead call
     - tipc: Check the bearer type before calling tipc_udp_nl_bearer_add()
     - af_unix: Call kfree_skb() for dead unix_(sk)->oob_skb in GC.
     - ppp_async: limit MRU to 64K
     - selftests: cmsg_ipv6: repeat the exact packet
     - netfilter: nft_compat: narrow down revision to unsigned 8-bits
     - netfilter: nft_compat: reject unused compat flag
     - netfilter: nft_compat: restrict match/target protocol to u16
     - drm/amd/display: Implement bounds check for stream encoder creation in
       DCN301
     - netfilter: nft_ct: reject direction for ct id
     - netfilter: nft_set_pipapo: store index in scratch maps
     - netfilter: nft_set_pipapo: add helper to release pcpu scratch area
     - netfilter: nft_set_pipapo: remove scratch_aligned pointer
     - fs/ntfs3: Fix an NULL dereference bug
     - scsi: core: Move scsi_host_busy() out of host lock if it is for
       per-command
     - blk-iocost: Fix an UBSAN shift-out-of-bounds warning
     - fs: dlm: don't put dlm_local_addrs on heap (Closes: #1063338)
     - mtd: parsers: ofpart: add workaround for #size-cells 0
     - ALSA: usb-audio: Add delay quirk for MOTU M Series 2nd revision
     - ALSA: usb-audio: Add a quirk for Yamaha YIT-W12TX transmitter
     - ALSA: usb-audio: add quirk for RODE NT-USB+
     - USB: serial: qcserial: add new usb-id for Dell Wireless DW5826e
     - USB: serial: option: add Fibocom FM101-GL variant
     - USB: serial: cp210x: add ID for IMST iM871A-USB
     - [arm64,armhf] usb: dwc3: host: Set XHCI_SG_TRB_CACHE_SIZE_QUIRK
     - [arm64,armhf] usb: host: xhci-plat: Add support for
       XHCI_SG_TRB_CACHE_SIZE_QUIRK
     - hrtimer: Report offline hrtimer enqueue
     - Input: i8042 - fix strange behavior of touchpad on Clevo NS70PU
     - Input: atkbd - skip ATKBD_CMD_SETLEDS when skipping ATKBD_CMD_GETID
       (Closes: #1061521)
     - io_uring/net: fix sr->len for IORING_OP_RECV with MSG_WAITALL and buffers
     - Revert "ASoC: amd: Add new dmi entries for acp5x platform"
     - vhost: use kzalloc() instead of kmalloc() followed by memset()
       (CVE-2024-0340)
     - RDMA/irdma: Fix support for 64k pages
     - f2fs: add helper to check compression level (Closes: #1063422)
     - block: treat poll queue enter similarly to timeouts
     - clocksource: Skip watchdog check for large watchdog intervals
     - net: stmmac: xgmac: use #define for string constants
     - ALSA: usb-audio: Sort quirk table entries
     - net: stmmac: xgmac: fix a typo of register name in DPP safety handling
     - netfilter: nft_set_rbtree: skip end interval element from gc
       (CVE-2024-26581)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.79
     - work around gcc bugs with 'asm goto' with outputs
     - update workarounds for gcc "asm goto" issue
     - btrfs: add and use helper to check if block group is used
     - btrfs: do not delete unused block group if it may be used soon
     - btrfs: forbid creating subvol qgroups
     - btrfs: do not ASSERT() if the newly created subvolume already got read
       (CVE-2024-23850)
     - btrfs: forbid deleting live subvol qgroup
     - btrfs: send: return EOPNOTSUPP on unknown flags
     - btrfs: don't reserve space for checksums when writing to nocow files
     - btrfs: reject encoded write if inode has nodatasum flag set
     - btrfs: don't drop extent_map for free space inode on write error
     - driver core: Fix device_link_flag_is_sync_state_only()
     - wifi: iwlwifi: Fix some error codes
     - wifi: iwlwifi: uninitialized variable in iwl_acpi_get_ppag_table()
     - of: property: Improve finding the supplier of a remote-endpoint property
     - net: openvswitch: limit the number of recursions from action sets
       (CVE-2024-1151)
     - lan966x: Fix crash when adding interface under a lag
     - tls/sw: Use splice_eof() to flush
     - tls: extract context alloc/initialization out of tls_set_sw_offload
     - net: tls: factor out tls_*crypt_async_wait()
     - tls: fix race between async notify and socket close (CVE-2024-26583)
     - net: tls: fix use-after-free with partial reads and async decrypt
       (CVE-2024-26582)
     - net: tls: fix returned read length with async decrypt
     - ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work()
     - net: sysfs: Fix /sys/class/net/<iface> path for statistics
     - nouveau/svm: fix kvcalloc() argument order
     - [mips*] Add 'memory' clobber to csum_ipv6_magic() inline assembler
     - i40e: Do not allow untrusted VF to remove administratively set MAC
     - i40e: Fix waiting for queues of all VSIs to be disabled
     - tracing/trigger: Fix to return error if failed to alloc snapshot
     - mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again
     - scsi: storvsc: Fix ring buffer size calculation
     - dm-crypt, dm-verity: disable tasklets
     - [x86] ASoC: amd: yc: Add DMI quirk for MSI Bravo 15 C7VF
     - ALSA: hda/realtek: Fix the external mic not being recognised for Acer
       Swift 1 SF114-32
     - ALSA: hda/realtek: Enable Mute LED on HP Laptop 14-fq0xxx
     - HID: i2c-hid-of: fix NULL-deref on failed power up
     - HID: wacom: generic: Avoid reporting a serial of '0' to userspace
     - HID: wacom: Do not register input devices until after hid_hw_start
     - iio: hid-sensor-als: Return 0 for HID_USAGE_SENSOR_TIME_TIMESTAMP
     - usb: ucsi: Add missing ppm_lock
     - usb: ulpi: Fix debugfs directory leak
     - usb: ucsi_acpi: Fix command completion handling
     - USB: hub: check for alternate port before enabling A_ALT_HNP_SUPPORT
     - usb: f_mass_storage: forbid async queue when shutdown happen
     - usb: dwc3: gadget: Fix NULL pointer dereference in dwc3_gadget_suspend
     - driver core: fw_devlink: Improve detection of overlapping cycles
     - cifs: fix underflow in parse_server_interfaces()
     - i2c: qcom-geni: Correct I2C TRE sequence
     - irqchip/loongson-eiointc: Use correct struct type in
       eiointc_domain_alloc()
     - i2c: pasemi: split driver into two separate modules
     - i2c: i801: Fix block process call transactions (CVE-2024-26593)
     - modpost: trim leading spaces when processing source files list
     - mptcp: get rid of msk->subflow
     - mptcp: fix data re-injection from stale subflow
     - mptcp: drop the push_pending field
     - mptcp: check addrs list in userspace_pm_get_local_id
     - media: Revert "media: rkisp1: Drop IRQF_SHARED"
     - scsi: Revert "scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock"
     - Revert "drm/amd: flush any delayed gfxoff on suspend entry"
     - drm/virtio: Set segment size for virtio_gpu device
     - lsm: fix the logic in security_inode_getsecctx()
     - firewire: core: correct documentation of fw_csr_string() kernel API
     - ALSA: hda/realtek: Apply headset jack quirk for non-bass alc287 thinkpads
     - kbuild: Fix changing ELF file type for output of gen_btf for big endian
     - nfc: nci: free rx_data_reassembly skb on NCI device cleanup
     - net: hsr: remove WARN_ONCE() in send_hsr_supervision_frame()
     - net: stmmac: do not clear TBS enable bit on link up/down
     - xen-netback: properly sync TX responses
     - modpost: propagate W=1 build option to modpost
     - modpost: Don't let "driver"s reference .exit.*
     - linux/init: remove __memexit* annotations
     - modpost: Include '.text.*' in TEXT_SECTIONS
     - modpost: Add '.ltext' and '.ltext.*' to TEXT_SECTIONS
     - ALSA: hda/realtek: Enable headset mic on Vaio VJFE-ADL
     - ASoC: codecs: wcd938x: handle deferred probe
     - ALSA: hda/cs8409: Suppress vmaster control for Dolphin models
     - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power
     - [arm*] binder: signal epoll threads of self-work (CVE-2024-26606)
     - misc: fastrpc: Mark all sessions as invalid in cb_remove
     - ext4: fix double-free of blocks due to wrong extents moved_len
     - ext4: avoid bb_free and bb_fragments inconsistency in mb_free_blocks()
     - tracing: Fix wasted memory in saved_cmdlines logic
     - staging: iio: ad5933: fix type mismatch regression
     - iio: magnetometer: rm3100: add boundary check for the value read from
       RM3100_REG_TMRC
     - iio: core: fix memleak in iio_device_register_sysfs
     - iio: commom: st_sensors: ensure proper DMA alignment
     - iio: accel: bma400: Fix a compilation problem
     - iio: adc: ad_sigma_delta: ensure proper DMA alignment
     - iio: imu: adis: ensure proper DMA alignment
     - iio: imu: bno055: serdev requires REGMAP
     - media: rc: bpf attach/detach requires write permission
     - ksmbd: free aux buffer if ksmbd_iov_pin_rsp_read fails
     - xfrm: Remove inner/outer modes from output path
     - xfrm: Remove inner/outer modes from input path
     - [arm64] drm/msm: Wire up tlb ops
     - drm/prime: Support page array >= 4GB
     - drm/amd/display: Increase frame-larger-than for all display_mode_vba files
     - drm/amd/display: Preserve original aspect ratio in create stream
     - hv_netvsc: Fix race condition between netvsc_probe and netvsc_remove
     - ring-buffer: Clean ring_buffer_poll_wait() error return
     - nfp: flower: fix hardware offload for the transfer layer port
     - [powerpc*] 64: Set task pt_regs->link to the LR value on scv entry
     - [powerpc*] cputable: Add missing PPC_FEATURE_BOOKE on PPC64 Book-E
     - [powerpc*] pseries: fix accuracy of stolen time
     - [x86] fpu: Stop relying on userspace for info to fault in xsave buffer
       (CVE-2024-26603)
     - [x86] KVM: x86/pmu: Fix type length error when reading pmu->fixed_ctr_ctrl
     - [x86] mm/ident_map: Use gbpages only where full GB page should be mapped.
     - io_uring/net: fix multishot accept overflow handling
     - mmc: slot-gpio: Allow non-sleeping GPIO ro
     - ALSA: hda/realtek: fix mute/micmute LED For HP mt645
     - ALSA: hda/conexant: Add quirk for SWS JS201D
     - nilfs2: fix data corruption in dsync block recovery for small block sizes
     - nilfs2: fix hang in nilfs_lookup_dirty_data_buffers()
     - crypto: ccp - Fix null pointer dereference in
       __sev_platform_shutdown_locked
     - nfp: use correct macro for LengthSelect in BAR config
     - nfp: flower: prevent re-adding mac index for bonded port
     - wifi: cfg80211: fix wiphy delayed work queueing
     - wifi: mac80211: reload info pointer in ieee80211_tx_dequeue()
     - irqchip/irq-brcmstb-l2: Add write memory barrier before exit
     - irqchip/gic-v3-its: Fix GICv4.1 VPE affinity update
     - zonefs: Improve error handling
     - mmc: sdhci-pci-o2micro: Fix a warm reboot issue that disk can't be
       detected by BIOS (Closes: #1056056)
     - [x86] ASoC: amd: yc: Add DMI quirk for Lenovo Ideapad Pro 5 16ARP8
     - fs: relax mount_setattr() permission checks
     - net: ethernet: ti: cpsw: enable mac_managed_pm to fix mdio
     - [s390x] qeth: Fix potential loss of L3-IP@ in case of network issues
     - net: ethernet: ti: cpsw_new: enable mac_managed_pm to fix mdio
     - hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed
     - ceph: prevent use-after-free in encode_cap_msg()
     - fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super
       (CVE-2024-0841)
     - mm: hugetlb pages should not be reserved by shmat() if SHM_NORESERVE
     - of: property: fix typo in io-channels
     - can: netlink: Fix TDCO calculation using the old data bittiming
     - can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock
     - can: j1939: Fix UAF in j1939_sk_match_filter during
       setsockopt(SO_J1939_FILTER)
     - pmdomain: core: Move the unused cleanup to a _sync initcall
     - fs/proc: do_task_stat: move thread_group_cputime_adjusted() outside of
       lock_task_sighand()
     - tracing: Inform kmemleak of saved_cmdlines allocation
     - xfrm: Use xfrm_state selector for BEET input
     - xfrm: Silence warnings triggerable by bad packets
     - tls: fix NULL deref on tls_sw_splice_eof() with empty record
     - md: bypass block throttle for superblock update
     - wifi: mwifiex: Support SD8978 chipset
     - wifi: mwifiex: add extra delay for firmware ready
     - bus: moxtet: Add spi device table
     - [arm64] dts: qcom: msm8916: Enable blsp_dma by default
     - [arm64] dts: qcom: msm8916: Make blsp_dma controlled-remotely
     - [arm64] dts: qcom: sdm845: fix USB SS wakeup
     - [arm64] dts: qcom: sm8150: fix USB SS wakeup
     - wifi: mwifiex: fix uninitialized firmware_stat
     - crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init
     - block: fix partial zone append completion handling in req_bio_endio()
     - netfilter: ipset: fix performance regression in swap operation
     - netfilter: ipset: Missing gc cancellations fixed
     - nfsd: fix RELEASE_LOCKOWNER
     - nfsd: don't take fi_lock in nfsd_break_deleg_cb()
     - hrtimer: Ignore slack time for RT tasks in schedule_hrtimeout_range()
     - RDMA/irdma: Ensure iWarp QP queue memory is OS paged aligned
     - smb: client: fix potential OOBs in smb2_parse_contexts() (CVE-2023-52434)
     - smb: client: fix parsing of SMB3.1.1 POSIX create context
     - net: prevent mss overflow in skb_segment() (CVE-2023-52435)
     - bpf: Add struct for bin_args arg in bpf_bprintf_prepare
     - bpf: Do cleanup in bpf_bprintf_cleanup only when needed
     - bpf: Remove trace_printk_lock
     - userfaultfd: fix mmap_changing checking in mfill_atomic_hugetlb
     - dmaengine: ioat: Free up __cleanup() name
     - apparmor: Free up __cleanup() name
     - locking: Introduce __cleanup() based infrastructure
     - kbuild: Drop -Wdeclaration-after-statement
     - sched/membarrier: reduce the ability to hammer on sys_membarrier
       (CVE-2024-26602)
     - of: property: Add in-ports/out-ports support to of_graph_get_port_parent()
     - nilfs2: fix potential bug in end_buffer_async_write
     - nilfs2: replace WARN_ONs for invalid DAT metadata block requests
     - dm: limit the number of targets and parameter size area (CVE-2024-23851,
       CVE-2023-52429)
     - [arm64:]Subscribe Microsoft Azure Cobalt 100 to ARM Neoverse N2 errata
     - mlxsw: spectrum_acl_tcam: Fix stack corruption (CVE-2024-26586)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.80
     - net/sched: Retire CBQ qdisc
     - net/sched: Retire ATM qdisc
     - net/sched: Retire dsmark qdisc
     - sched/rt: Disallow writing invalid values to sched_rt_period_us
     - sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset
     - scsi: target: core: Add TMF to tmr_list handling
     - cifs: open_cached_dir should not rely on primary channel
     - wifi: cfg80211: fix missing interfaces when dumping
     - wifi: mac80211: fix race condition on enabling fast-xmit
     - fbdev: savage: Error out if pixclock equals zero
     - fbdev: sis: Error out if pixclock equals zero
     - block: Fix WARNING in _copy_from_iter
     - smb: Work around Clang __bdos() type confusion
     - cifs: translate network errors on send to -ECONNABORTED
     - ahci: asm1166: correct count of reported ports
     - aoe: avoid potential deadlock at set_capacity
     - ahci: add 43-bit DMA address quirk for ASMedia ASM1061 controllers
     - [mips*] reserve exception vector space ONLY ONCE
     - [x86] platform/x86: touchscreen_dmi: Add info for the TECLAST X16 Plus
       tablet
     - ext4: avoid dividing by 0 in mb_update_avg_fragment_size() when block
       bitmap corrupt
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_try_best_found()
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_find_by_goal()
     - Input: goodix - accept ACPI resources with gpio_count == 3 && gpio_int_idx
       == 0
     - [armhf] dmaengine: ti: edma: Add some null pointer checks to the
       edma_probe
     - [arm64] regulator: pwm-regulator: Add validity checks in continuous
       .get_voltage
     - nvmet-tcp: fix nvme tcp ida memory leak
     - usb: ucsi_acpi: Quirk to ack a connector change ack cmd
     - ALSA: usb-audio: Check presence of valid altsetting control
     - [armhf] ASoC: sunxi: sun4i-spdif: Add support for Allwinner H616
     - Input: xpad - add Lenovo Legion Go controllers
     - netfilter: conntrack: check SCTP_CID_SHUTDOWN_ACK for vtag setting in
       sctp_new
     - drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz
     - [x86] ASoC: wm_adsp: Don't overwrite fwf_name with the default
     - ALSA: usb-audio: Ignore clock selector errors for single connection
     - nvme-fc: do not wait in vain when unloading module
     - nvmet-fcloop: swap the list_add_tail arguments
     - nvmet-fc: release reference on target port
     - nvmet-fc: defer cleanup using RCU properly
     - nvmet-fc: hold reference on hostport match
     - nvmet-fc: abort command when there is no binding
     - nvmet-fc: avoid deadlock on delete association path
     - nvmet-fc: take ref count on tgtport before delete assoc
     - smb: client: increase number of PDUs allowed in a compound request
     - ext4: correct the hole length returned by ext4_map_blocks()
     - Input: i8042 - add Fujitsu Lifebook U728 to i8042 quirk table
     - wifi: mac80211: set station RX-NSS on reconfig
     - wifi: mac80211: adding missing drv_mgd_complete_tx() call
     - efi: runtime: Fix potential overflow of soft-reserved region size
     - efi: Don't add memblocks for soft-reserved memory
     - [x86] hwmon: (coretemp) Enlarge per package core count limit
     - scsi: lpfc: Use unsigned type for num_sge
     - scsi: ufs: core: Remove the ufshcd_release() in
       ufshcd_err_handling_prepare()
     - firewire: core: send bus reset promptly on gap count error
     - drm/amdgpu: skip to program GFXDEC registers for suspend abort
     - drm/amdgpu: reset gpu for s3 suspend abort case
     - smb: client: set correct d_type for reparse points under DFS mounts
     - virtio-blk: Ensure no requests in virtqueues before deleting vqs.
     - smb3: clarify mount warning
     - [amd64] IB/hfi1: Fix sdma.h tx->num_descs off-by-one error
     - drm/ttm: Fix an invalid freeing on already freed page in error path
     - [s390x] cio: fix invalid -EBUSY on ccw_device_start
     - ata: libata-core: Do not try to set sleeping devices to standby
     - dm-crypt: recheck the integrity tag after a failure
     - dm-integrity: recheck the integrity tag after a failure
     - dm-crypt: don't modify the data when using authenticated encryption
     - dm-verity: recheck the hash after a failure
     - cxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS
       window
     - scsi: target: pscsi: Fix bio_put() for error case
     - scsi: core: Consult supported VPD page list prior to fetching page
     - mm/swap: fix race when skipping swapcache
     - mm: memcontrol: clarify swapaccount=0 deprecation warning
     - [x86] platform/x86: intel-vbtn: Stop calling "VBDL" from notify_handler
     - [x86] platform/x86: touchscreen_dmi: Allow partial (prefix) matches for
       ACPI names
     - cachefiles: fix memory leak in cachefiles_add_cache()
     - md: Fix missing release of 'active_io' for flush
     - [arm64] KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler
     - [arm64] KVM: arm64: vgic-its: Test for valid IRQ in
       its_sync_lpi_pending_table()
     - gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp()
     - crypto: virtio/akcipher - Fix stack overflow on memcpy
     - irqchip/gic-v3-its: Do not assume vPE tables are preallocated
     - irqchip/sifive-plic: Enable interrupt if needed before EOI
     - PCI/MSI: Prevent MSI hardware interrupt number truncation
     - l2tp: pass correct message length to ip6_append_data
     - [x86] returnthunk: Allow different return thunks
     - [x86] Revert "x86/alternative: Make custom return thunk unconditional"
     - [x86] alternative: Make custom return thunk unconditional
     - dm-integrity, dm-verity: reduce stack usage for recheck
     - erofs: fix refcount on the metabuf used for inode lookup
     - serial: amba-pl011: Fix DMA transmission in RS485 mode
     - [arm64,armhf] usb: dwc3: gadget: Don't disconnect if not started
     - usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs
     - usb: roles: fix NULL pointer issue when put module's reference
     - usb: roles: don't get/set_role() when usb_role_switch is unregistered
     - mptcp: make userspace_pm_append_new_local_addr static
     - mptcp: add needs_id for userspace appending addr
     - mptcp: fix lockless access in subflow ULP diag
     - Revert "drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz"
     - [amd64] IB/hfi1: Fix a memleak in init_credit_return
     - RDMA/bnxt_re: Return error for SRQ resize
     - RDMA/irdma: Fix KASAN issue with tasklet
     - RDMA/irdma: Validate max_send_wr and max_recv_wr
     - RDMA/irdma: Set the CQ read threshold for GEN 1
     - RDMA/irdma: Add AE for too many RNRS
     - RDMA/srpt: Support specifying the srpt_service_guid parameter
     - iommufd/iova_bitmap: Bounds check mapped::pages access
     - iommufd/iova_bitmap: Switch iova_bitmap::bitmap to an u8 array
     - iommufd/iova_bitmap: Consider page offset for the pages to be pinned
     - RDMA/qedr: Fix qedr_create_user_qp error flow
     - [arm64] dts: rockchip: set num-cs property for spi on px30
     - RDMA/srpt: fix function pointer cast warnings
     - bpf, scripts: Correct GPL license name
     - scsi: smartpqi: Fix disable_managed_interrupts
     - net: bridge: switchdev: Skip MDB replays of deferred events on offload
     - net: bridge: switchdev: Ensure deferred event delivery on unoffload
     - dccp/tcp: Unhash sk from ehash for tb2 alloc failure after
       check_estalblished().
     - nouveau: fix function cast warnings
     - [x86] numa: Fix the address overlap check in numa_fill_memblks()
     - [x86] numa: Fix the sort compare func used in numa_fill_memblks()
     - net: stmmac: Fix incorrect dereference in interrupt handlers
     - ipv4: properly combine dev_base_seq and ipv4.dev_addr_genid
     - ipv6: properly combine dev_base_seq and ipv6.dev_addr_genid
     - ata: ahci_ceva: fix error handling for Xilinx GT PHY support
     - bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel
     - afs: Increase buffer size in afs_update_volume_status()
     - ipv6: sr: fix possible use-after-free and null-ptr-deref
     - net: dev: Convert sa_data to flexible array in struct sockaddr
     - [arm64] sme: Restore SME registers on exit from suspend
     - [x86] platform/x86: thinkpad_acpi: Only update profile if successfully
       converted
     - [s390x] use the correct count for __iowrite64_copy()
     - bpf, sockmap: Fix NULL pointer dereference in
       sk_psock_verdict_data_ready()
     - tls: break out of main loop when PEEK gets a non-data record
     - tls: stop recv() if initial process_rx_list gave us non-DATA
     - tls: don't skip over different type records from the rx_list
     - netfilter: nf_tables: set dormant flag on hook register failure
     - netfilter: flowtable: simplify route logic
     - netfilter: nft_flow_offload: reset dst in route object after setting up
       flow
     - netfilter: nft_flow_offload: release dst in case direct xmit path is used
     - netfilter: nf_tables: rename function to destroy hook list
     - netfilter: nf_tables: register hooks last when adding new chain/flowtable
     - netfilter: nf_tables: use kzalloc for hook allocation
     - net: mctp: put sock on tag allocation failure
     - Fix write to cloned skb in ipv6_hop_ioam()
     - net: phy: realtek: Fix rtl8211f_config_init() for RTL8211F(D)(I)-VD-CG PHY
     - drm/syncobj: call drm_syncobj_fence_add_wait when WAIT_AVAILABLE flag is
       set
     - drm/amd/display: Fix memory leak in dm_sw_fini()
     - [arm64,armhf] i2c: imx: when being a target, mark the last read as
       processed
     - erofs: simplify compression configuration parser
     - erofs: fix inconsistent per-file compression format (CVE-2024-26590)
     - fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio
     - mm: zswap: fix missing folio cleanup in writeback race path
     - mptcp: userspace pm send RM_ADDR for ID 0
     - mptcp: add needs_id for netlink appending addr
     - ata: ahci: add identifiers for ASM2116 series adapters
     - ahci: Extend ASM1061 43-bit DMA address quirk to other ASM106x parts
     - arp: Prevent overflow in arp_req_get().
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.81
     - netfilter: nf_tables: disallow timeout for anonymous sets (CVE-2023-52620)
     - [arm64] drm/meson: fix unbind path if HDMI fails to bind
     - [arm64] drm/meson: Don't remove bridges which are created by other drivers
     - scsi: core: Add struct for args to execution functions
     - scsi: sd: usb_storage: uas: Access media prior to querying device
       properties
     - af_unix: Fix task hung while purging oob_skb in GC.
     - of: overlay: Reorder struct fragment fields kerneldoc
     - usb: gadget: Properly configure the device for remote wakeup
     - Input: xpad - add constants for GIP interface numbers
     - [arm64] iommu/arm-smmu-v3: Acknowledge pri/event queue overflow if any
     - [arm64] iommu/arm-smmu-qcom: Limit the SMR groups to 128
     - RDMA/core: Fix multiple -Warray-bounds warnings
     - mm: huge_memory: don't force huge page alignment on 32 bit
       (CVE-2024-26621) (Closes: #1024149)
     - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter
     - netlink: add nla be16/32 types to minlen array
     - net: ip_tunnel: prevent perpetual headroom growth
     - net: mctp: take ownership of skb in mctp_local_output
     - tun: Fix xdp_rxq_info's queue_index when detaching
     - cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call
       back
     - net: veth: clear GRO when clearing XDP even when down
     - ipv6: fix potential "struct net" leak in inet6_rtm_getaddr()
     - lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is
       detected
     - veth: try harder when allocating queue memory
     - net: usb: dm9601: fix wrong return value in dm9601_mdio_read
     - net: lan78xx: fix "softirq work is pending" error
     - uapi: in6: replace temporary label with rfc9486
     - stmmac: Clear variable when destroying workqueue
     - Bluetooth: hci_sync: Check the correct flag before starting a scan
     - Bluetooth: Avoid potential use-after-free in hci_error_reset
     - Bluetooth: hci_sync: Fix accept_list when attempting to suspend
     - Bluetooth: hci_event: Fix wrongly recorded wakeup BD_ADDR
     - Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST
     - Bluetooth: Enforce validation on max value of connection interval
     - Bluetooth: qca: Fix wrong event type for patch config command
     - Bluetooth: hci_qca: mark OF related data as maybe unused
     - Bluetooth: hci_qca: Add support for QTI Bluetooth chip wcn6855
     - Bluetooth: btqca: use le32_to_cpu for ver.soc_id
     - Bluetooth: btqca: Add WCN3988 support
     - Bluetooth: qca: use switch case for soc type behavior
     - Bluetooth: qca: add support for WCN7850
     - Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT
     - netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()
     - netfilter: let reset rules clean out conntrack entries
     - netfilter: bridge: confirm multicast packets before passing them up the
       stack
     - rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back
     - igb: extend PTP timestamp adjustments to i211
     - net: hsr: Use correct offset for HSR TLV values in supervisory HSR frames
     - tls: decrement decrypt_pending if no async completion will be called
     - tls: fix peeking with sync+async decryption
     - efi/capsule-loader: fix incorrect allocation size
     - ALSA: Drop leftover snd-rtctimer stuff from Makefile
     - [arm64,armhf] drm/tegra: Remove existing framebuffer only if we support
       display
     - fbcon: always restore the old font data in fbcon_do_set_font()
     - afs: Fix endless loop in directory parsing
     - of: property: fw_devlink: Fix stupid bug in remote-endpoint parsing
     - tomoyo: fix UAF write bug in tomoyo_write_control() (CVE-2024-26622)
     - ALSA: firewire-lib: fix to check cycle continuity
     - ALSA: hda/realtek: Enable Mute LED on HP 840 G8 (MB 8AB8)
     - ALSA: hda/realtek: fix mute/micmute LED For HP mt440
     - landlock: Fix asymmetric private inodes referring
     - gtp: fix use-after-free and null-ptr-deref in gtp_newlink()
     - wifi: nl80211: reject iftype change with mesh ID change
     - btrfs: fix double free of anonymous device after snapshot creation failure
     - btrfs: dev-replace: properly validate device names
     - btrfs: send: don't issue unnecessary zero writes for trailing hole
     - Revert "drm/amd/pm: resolve reboot exception for si oland"
     - drm/buddy: fix range bias
     - [arm64] dmaengine: fsl-qdma: fix SoC may hang on 16 byte unaligned read
     - [arm64] crypto: arm64/neonbs - fix out-of-bounds access on short input
     - [arm64] dmaengine: fsl-qdma: init irq after reg initialization
     - [arm64,armhf] mmc: mmci: stm32: fix DMA API overlapping mappings warning
     - mmc: core: Fix eMMC initialization with 1-bit bus connection
     - [arm64] mmc: sdhci-xenon: add timeout for PHY init complete
     - [arm64] mmc: sdhci-xenon: fix PHY init clock stability
     - efivarfs: Request at most 512 bytes for variable names
     - [arm64] pmdomain: qcom: rpmhpd: Fix enabled_corner aggregation
     - [x86] e820: Don't reserve SETUP_RNG_SEED in e820
     - [x86] cpu/intel: Detect TME keyid bits before setting MTRR mask registers
     - mptcp: fix data races on local_id
     - mptcp: fix data races on remote_id
     - mptcp: fix duplicate subflow creation
     - mptcp: continue marking the first subflow as UNCONNECTED
     - mptcp: map v4 address to v6 when destroying subflow
     - mptcp: push at DSS boundaries
     - mptcp: fix snd_wnd initialization for passive socket
     - mptcp: fix double-free on socket dismantle
     - mptcp: fix possible deadlock in subflow diag
     - RDMA/core: Refactor rdma_bind_addr (CVE-2023-2176)
     - RDMA/core: Update CMA destination address on rdma_resolve_addr
     - efi: libstub: use EFI_LOADER_CODE region when moving the kernel in memory
     - [x86] boot/compressed: Rename efi_thunk_64.S to efi-mixed.S
     - [x86] boot/compressed: Move 32-bit entrypoint code into .text section
     - [x86] boot/compressed: Move bootargs parsing out of 32-bit startup code
     - [x86] boot/compressed: Move efi32_pe_entry into .text section
     - [x86] boot/compressed: Move efi32_entry out of head_64.S
     - [x86] boot/compressed: Move efi32_pe_entry() out of head_64.S
     - [x86] boot/compressed, efi: Merge multiple definitions of image_offset
       into one
     - [x86] boot/compressed: Simplify IDT/GDT preserve/restore in the EFI thunk
     - [x86] boot/compressed: Avoid touching ECX in startup32_set_idt_entry()
     - [x86] boot/compressed: Pull global variable reference into
       startup32_load_idt()
     - [x86] boot/compressed: Move startup32_load_idt() into .text section
     - [x86] boot/compressed: Move startup32_load_idt() out of head_64.S
     - [x86] boot/compressed: Move startup32_check_sev_cbit() into .text
     - [x86] boot/compressed: Move startup32_check_sev_cbit() out of head_64.S
     - [x86] boot/compressed: Adhere to calling convention in
       get_sev_encryption_bit()
     - [x86] boot/compressed: Only build mem_encrypt.S if AMD_MEM_ENCRYPT=y
     - efi: verify that variable services are supported
     - [x86] efi: Make the deprecated EFI handover protocol optional
     - [x86] boot: Robustify calling startup_{32,64}() from the decompressor code
     - [x86] efistub: Branch straight to kernel entry point from C code
     - [x86] decompressor: Store boot_params pointer in callee save register
     - [x86] decompressor: Assign paging related global variables earlier
     - [x86] decompressor: Call trampoline as a normal function
     - [x86] decompressor: Use standard calling convention for trampoline
     - [x86] decompressor: Avoid the need for a stack in the 32-bit trampoline
     - [x86] decompressor: Call trampoline directly from C code
     - [x86] decompressor: Only call the trampoline when changing paging levels
     - [x86] decompressor: Pass pgtable address to trampoline directly
     - [x86] decompressor: Merge trampoline cleanup with switching code
     - [x86] decompressor: Move global symbol references to C code
     - decompress: Use 8 byte alignment
     - drm/amd/display: Increase frame warning limit with KASAN or KCSAN in dml
     - NFS: Fix data corruption caused by congestion.
     - NFSD: Simplify READ_PLUS
     - NFSD: Remove redundant assignment to variable host_err
     - nfsd: ignore requests to disable unsupported versions
     - nfsd: move nfserrno() to vfs.c
     - nfsd: allow disabling NFSv2 at compile time
     - exportfs: use pr_debug for unreachable debug statements
     - NFSD: Flesh out a documenting comment for filecache.c
     - NFSD: Clean up nfs4_preprocess_stateid_op() call sites
     - NFSD: Trace stateids returned via DELEGRETURN
     - NFSD: Trace delegation revocations
     - NFSD: Use const pointers as parameters to fh_ helpers
     - NFSD: Update file_hashtbl() helpers
     - NFSD: Clean up nfsd4_init_file()
     - NFSD: Add a nfsd4_file_hash_remove() helper
     - NFSD: Clean up find_or_add_file()
     - NFSD: Refactor find_file()
     - NFSD: Use rhashtable for managing nfs4_file objects
     - NFSD: Fix licensing header in filecache.c
     - filelock: add a new locks_inode_context accessor function
     - lockd: use locks_inode_context helper
     - nfsd: use locks_inode_context helper
     - nfsd: fix up the filecache laundrette scheduling
     - NFSD: Use struct_size() helper in alloc_session()
     - lockd: set missing fl_flags field when retrieving args
     - lockd: ensure we use the correct file descriptor when unlocking
     - lockd: fix file selection in nlmsvc_cancel_blocked
     - trace: Relocate event helper files
     - NFSD: refactoring courtesy_client_reaper to a generic low memory shrinker
     - NFSD: add support for sending CB_RECALL_ANY
     - NFSD: add delegation reaper to react to low memory condition
     - NFSD: add CB_RECALL_ANY tracepoints
     - NFSD: Use only RQ_DROPME to signal the need to drop a reply
     - NFSD: Avoid clashing function prototypes
     - NFSD: Use set_bit(RQ_DROPME)
     - NFSD: register/unregister of nfsd-client shrinker at nfsd startup/shutdown
       time
     - NFSD: replace delayed_work with work_struct for nfsd_client_shrinker
     - nfsd: don't destroy global nfs4_file table in per-net shutdown
     - [arm64] efi: Limit allocations to 48-bit addressable physical region
     - efi: efivars: prevent double registration
     - [x86] efistub: Simplify and clean up handover entry code
     - [x86] decompressor: Avoid magic offsets for EFI handover entrypoint
     - [x86] efistub: Clear BSS in EFI handover protocol entrypoint
     - efi/libstub: Add memory attribute protocol definitions
     - efi/libstub: Add limit argument to efi_random_alloc()
     - [x86] efistub: Perform 4/5 level paging switch from the stub
     - [x86] decompressor: Factor out kernel decompression and relocation
     - [x86] efistub: Prefer EFI memory attributes protocol over DXE services
     - [x86] efistub: Perform SNP feature test while running in the firmware
     - [x86] efistub: Avoid legacy decompressor when doing EFI boot
     - [x86] efi/x86: Avoid physical KASLR on older Dell systems
     - [x86] efistub: Avoid placing the kernel below LOAD_PHYSICAL_ADDR
     - [x86] boot: Rename conflicting 'boot_params' pointer to 'boot_params_ptr'
     - [x86] boot: efistub: Assign global boot_params variable
     - [x86] efi/x86: Fix the missing KASLR_FLAG bit in
       boot_params->hdr.loadflags
     - af_unix: Drop oob_skb ref before purging queue in GC.
     - [arm64] phy: freescale: phy-fsl-imx8-mipi-dphy: Fix alias name to use
       dashes
     - [powerpc*] pseries/iommu: IOMMU table is not initialized for kdump over
       SR-IOV
     - gpio: 74x164: Enable output pins after registers are reset
     - gpiolib: Fix the error path order in gpiochip_add_data_with_key()
     - gpio: fix resource unwinding order in error path
     - block: define bvec_iter as __packed __aligned(4)
     - [arm64,armhf] Revert "interconnect: Fix locking for runpm vs reclaim"
     - [arm64,armhf] Revert "interconnect: Teach lockdep about icc_bw_lock order"
     - [x86] bugs: Add asm helpers for executing VERW
     - [x86] entry_64: Add VERW just before userspace transition
     - [x86] entry_32: Add VERW just before userspace transition
     - [x86] bugs: Use ALTERNATIVE() instead of mds_user_clear static key
     - [x86] KVM/VMX: Use BT+JNC, i.e. EFLAGS.CF to select VMRESUME vs. VMLAUNCH
     - [x86] KVM/VMX: Move VERW closer to VMentry for MDS mitigation
     - bpf: Add table ID to bpf_fib_lookup BPF helper
     - bpf: Derive source IP addr via bpf_*_fib_lookup()
     - [x86] efistub: Give up if memory attribute protocol returns an error
     - xen/events: close evtchn after mapping cleanup
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.82
     - ceph: switch to corrected encoding of max_xattr_size in mdsmap
     - net: lan78xx: fix runtime PM count underflow on link stop
     - ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able
     - i40e: disable NAPI right after disabling irqs when handling xsk_pool
     - ice: reorder disabling IRQ and NAPI in ice_qp_dis
     - tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string
     - geneve: make sure to pull inner header in geneve_rx()
     - ice: virtchnl: stop pretending to support RSS over AQ or registers
     - net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()
     - igc: avoid returning frame twice in XDP_REDIRECT
     - net/ipv6: avoid possible UAF in ip6_route_mpath_notify()
     - cpumap: Zero-initialise xdp_rxq_info struct before running XDP program
     - net: dsa: microchip: fix register write order in ksz8_ind_write8()
     - net/rds: fix WARNING in rds_conn_connect_if_down
     - netfilter: nft_ct: fix l3num expectations with inet pseudo family
     - netfilter: nf_conntrack_h323: Add protection for bmp length out of range
     - erofs: apply proper VMA alignment for memory mapped files on THP
     - netrom: Fix a data-race around sysctl_netrom_default_path_quality
     - netrom: Fix a data-race around
       sysctl_netrom_obsolescence_count_initialiser
     - netrom: Fix data-races around sysctl_netrom_network_ttl_initialiser
     - netrom: Fix a data-race around sysctl_netrom_transport_timeout
     - netrom: Fix a data-race around sysctl_netrom_transport_maximum_tries
     - netrom: Fix a data-race around sysctl_netrom_transport_acknowledge_delay
     - netrom: Fix a data-race around sysctl_netrom_transport_busy_delay
     - netrom: Fix a data-race around
       sysctl_netrom_transport_requested_window_size
     - netrom: Fix a data-race around sysctl_netrom_transport_no_activity_timeout
     - netrom: Fix a data-race around sysctl_netrom_routing_control
     - netrom: Fix a data-race around sysctl_netrom_link_fails_count
     - netrom: Fix data-races around sysctl_net_busy_read
     - [s390x] KVM: s390: add stat counter for shadow gmap events
     - [s390x] KVM: s390: vsie: fix race during shadow creation
     - drm/amd/display: Fix uninitialized variable usage in core_link_
       'read_dpcd() & write_dpcd()' functions
     - nfp: flower: add goto_chain_index for ct entry
     - nfp: flower: add hardware offload check for post ct entry
     - readahead: avoid multiple marked readahead pages
     - xhci: process isoc TD properly when there was a transaction error mid TD.
     - xhci: handle isoc Babble and Buffer Overrun events properly
     - drm/amdgpu: Reset IH OVERFLOW_CLEAR bit
     - [x86] Mitigate Register File Data Sampling (RFDS) vulnerability
       (CVE-2023-28746):
       + [x86] mmio: Disable KVM mitigation when X86_FEATURE_CLEAR_CPU_BUF is set
       + Documentation/hw-vuln: Add documentation for RFDS
       + [x86] rfds: Mitigate Register File Data Sampling (RFDS)
       + [x86] KVM/x86: Export RFDS_NO and RFDS_CLEAR to guests
     - drm/amd/display: Wrong colorimetry workaround
     - drm/amd/display: Fix MST Null Ptr for RV
     - getrusage: add the "signal_struct *sig" local variable
     - getrusage: move thread_group_cputime_adjusted() outside of
       lock_task_sighand()
     - getrusage: use __for_each_thread()
     - getrusage: use sig->stats_lock rather than lock_task_sighand()
     - fs/proc: do_task_stat: use __for_each_thread()
     - fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children
       stats
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 19
   * [rt] Refresh "sched: avoid false lockdep splat in put_task_struct()"
   * Drop now unknown config options for retired CBQ, ATM and dsmark qdisc
   * [x86] efistub: Clear decompressor BSS in native EFI entrypoint
   * [x86] efistub: Don't clear BSS twice in mixed mode
   * efi: fix panic in kdump kernel
   * efi/libstub: fix efi_random_alloc() to allocate memory at alloc_min or
     higher address
   * efi/libstub: Cast away type warning in use of max()
   * aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts
     (CVE-2023-6270)
   * wifi: ath10k: fix NULL pointer dereference in
     ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (CVE-2023-7042)
   * Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security
     (CVE-2024-22099)
   * sr9800: Add check for usbnet_get_endpoints (CVE-2024-26651)
   * [rt] Update to 6.1.82-rt27
linux (6.1.85-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.83
     - md: fix data corruption for raid456 when reshape restart while grow up
     - md/raid10: prevent soft lockup while flush writes
     - io_uring/unix: drop usage of io_uring socket
     - io_uring: drop any code related to SCM_RIGHTS
     - nfsd: allow nfsd_file_get to sanely handle a NULL pointer
     - nfsd: don't open-code clear_and_wake_up_bit
     - nfsd: NFSD_FILE_KEY_INODE only needs to find GC'ed entries
     - nfsd: simplify test_bit return in NFSD_FILE_KEY_FULL comparator
     - nfsd: don't kill nfsd_files because of lease break error
     - nfsd: add some comments to nfsd_file_do_acquire
     - nfsd: don't take/put an extra reference when putting a file
     - nfsd: update comment over __nfsd_file_cache_purge
     - nfsd: allow reaping files still under writeback
     - NFSD: Convert filecache to rhltable
     - nfsd: simplify the delayed disposal list code
     - NFSD: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop
     - NFSD: Add an nfsd4_encode_nfstime4() helper
     - nfsd: Fix creation time serialization order
     - [arm64] media: rkisp1: Fix IRQ handling due to shared interrupts
     - perf/arm-cmn: Workaround AmpereOneX errata AC04_MESH_1 (incorrect child
       count)
     - ASoC: rt5645: Make LattePanda board DMI match more precise
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82UU
     - [x86] xen: Add some null pointer checking to smp.c
     - [mips*] Clear Cause.BD in instruction_pointer_set
     - HID: multitouch: Add required quirk for Synaptics 0xcddc device
     - gen_compile_commands: fix invalid escape sequence warning
     - [arm64] sve: Lower the maximum allocation for the SVE ptrace regset
     - soc: microchip: Fix POLARFIRE_SOC_SYS_CTRL input prompt
     - RDMA/mlx5: Fix fortify source warning while accessing Eth segment
     - RDMA/mlx5: Relax DEVX access upon modify commands
     - [x86] mm: Move is_vsyscall_vaddr() into asm/vsyscall.h
     - [x86] mm: Disallow vsyscall page read for copy_from_kernel_nofault()
     - net/iucv: fix the allocation size of iucv_path_table array
     - block: sed-opal: handle empty atoms when parsing response
     - dm-verity, dm-crypt: align "struct bvec_iter" correctly
     - [arm64] dts: Fix dtc interrupt_provider warnings
     - btrfs: fix data races when accessing the reserved amount of block reserves
     - btrfs: fix data race at btrfs_use_block_rsv() when accessing block reserve
     - net: smsc95xx: add support for SYS TEC USB-SPEmodule1
     - wifi: mac80211: only call drv_sta_rc_update for uploaded stations
     - [x86] ASoC: amd: yc: Add Lenovo ThinkBook 21J0 into DMI quirk table
     - scsi: mpt3sas: Prevent sending diag_reset when the controller is ready
     - ALSA: hda/realtek - ALC285 reduce pop noise from Headphone port
     - drm/amdgpu: Enable gpu reset for S3 abort cases on Raven series
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 21J2
     - Bluetooth: mgmt: Fix limited discoverable off timeout
     - firewire: core: use long bus reset on gap count error
     - [arm64] tegra: Set the correct PHY mode for MGBE
     - [x86] ASoC: Intel: bytcr_rt5640: Add an extra entry for the Chuwi Vi8
       tablet
     - Input: gpio_keys_polled - suppress deferred probe error for gpio
     - [x86] ASoC: wm8962: Enable oscillator if selecting WM8962_FLL_OSC
     - [x86] ASoC: wm8962: Enable both SPKOUTR_ENA and SPKOUTL_ENA in mono mode
     - [x86] ASoC: wm8962: Fix up incorrect error message in wm8962_set_fll
     - do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak
     - fs: Fix rw_hint validation
     - [s390x] dasd: add autoquiesce feature
     - [s390x] dasd: Use dev_*() for device log messages
     - [s390x] dasd: fix double module refcount decrement
     - rcu/exp: Fix RCU expedited parallel grace period kworker allocation
       failure recovery
     - rcu/exp: Handle RCU expedited grace period kworker allocation failure
     - nbd: null check for nla_nest_start
     - fs/select: rework stack allocation hack for clang
     - md: Don't clear MD_CLOSING when the raid is about to stop
     - lib/cmdline: Fix an invalid format specifier in an assertion msg
     - lib: memcpy_kunit: Fix an invalid format specifier in an assertion msg
     - time: test: Fix incorrect format specifier
     - rtc: test: Fix invalid format specifier.
     - io_uring/net: unify how recvmsg and sendmsg copy in the msghdr
     - io_uring/net: move receive multishot out of the generic msghdr path
     - io_uring/net: fix overflow check in io_recvmsg_mshot_prep()
     - [x86] resctrl: Implement new mba_MBps throttling heuristic
     - [x86] sme: Fix memory encryption setting if enabled by default and not
       overridden
     - timekeeping: Fix cross-timestamp interpolation on counter wrap
     - timekeeping: Fix cross-timestamp interpolation corner case decision
     - timekeeping: Fix cross-timestamp interpolation for non-x86
     - sched/fair: Take the scheduling domain into account in select_idle_smt()
     - sched/fair: Take the scheduling domain into account in select_idle_core()
     - wifi: b43: Stop/wake correct queue in DMA Tx path when QoS is disabled
     - wifi: b43: Stop/wake correct queue in PIO Tx path when QoS is disabled
     - wifi: b43: Stop correct queue in DMA worker when QoS is disabled
     - wifi: b43: Disable QoS for bcm4331
     - wifi: wilc1000: fix declarations ordering
     - wifi: wilc1000: fix RCU usage in connect path
     - wifi: rtl8xxxu: add cancel_work_sync() for c2hcmd_work
     - wifi: wilc1000: do not realloc workqueue everytime an interface is added
     - wifi: wilc1000: fix multi-vif management when deleting a vif
     - wifi: mwifiex: debugfs: Drop unnecessary error check for
       debugfs_create_dir()
     - cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value
     - cpufreq: Explicitly include correct DT includes
     - cpufreq: mediatek-hw: Wait for CPU supplies before probing
     - sock_diag: annotate data-races around sock_diag_handlers[family]
     - inet_diag: annotate data-races around inet_diag_table[]
     - bpftool: Silence build warning about calloc()
     - libbpf: Apply map_set_def_max_entries() for inner_maps on creation
     - af_unix: Annotate data-race of gc_in_progress in wait_for_unix_gc().
     - cpufreq: mediatek-hw: Don't error out if supply is not found
     - libbpf: Fix faccessat() usage on Android
     - pmdomain: qcom: rpmhpd: Drop SA8540P gfx.lvl
     - [arm64] dts: imx8mm-kontron: Disable pullups for I2C signals on OSM-S
       i.MX8MM
     - [arm64] dts: imx8mm-kontron: Disable pullups for I2C signals on SL/BL
       i.MX8MM
     - [arm64] dts: imx8mm-kontron: Disable pullups for onboard UART signals on
       BL OSM-S board
     - [arm64] dts: imx8mm-kontron: Disable pullups for onboard UART signals on
       BL board
     - [arm64] dts: imx8mm-kontron: Disable pull resistors for SD card signals on
       BL OSM-S board
     - [arm64] dts: imx8mm-kontron: Disable pull resistors for SD card signals on
       BL board
     - [arm64] dts: imx8mm-kontron: Fix interrupt for RTC on OSM-S i.MX8MM module
     - libbpf: Add missing LIBBPF_API annotation to libbpf_set_memlock_rlim API
     - wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete
     - wifi: iwlwifi: mvm: report beacon protection failures
     - wifi: iwlwifi: dbg-tlv: ensure NUL termination
     - wifi: iwlwifi: fix EWRD table validity check
     - gpio: vf610: allow disabling the vf610 driver
     - [arm64] dts: imx8mm-venice-gw71xx: fix USB OTG VBUS
     - net: blackhole_dev: fix build warning for ethh set but not used
     - wifi: ath11k: initialize rx_mcs_80 and rx_mcs_160 before use
     - wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer()
     - wifi: wfx: fix memory leak when starting AP
     - printk: Disable passing console lock owner completely during panic()
     - pwm: sti: Fix capture for st,pwm-num-chan < st,capture-num-chan
     - tools/resolve_btfids: Refactor set sorting with types from btf_ids.h
     - tools/resolve_btfids: Fix cross-compilation to non-host endianness
     - wifi: iwlwifi: mvm: don't set replay counters to 0xff
     - [s390x] pai: fix attr_event_free upper limit for pai device drivers
     - [s390x] vdso: drop '-fPIC' from LDFLAGS
     - ipv6: mcast: remove one synchronize_net() barrier in ipv6_mc_down()
     - [arm64] dts: mt8183: kukui: Split out keyboard node and describe
       detachables
     - [arm64] dts: mt8183: Move CrosEC base detection node to kukui-based DTs
     - [arm64] dts: mediatek: mt7986: add "#reset-cells" to infracfg
     - [arm64] dts: mediatek: mt8192-asurada: Remove CrosEC base detection node
     - [arm64] dts: mediatek: mt8192: fix vencoder clock name
     - [arm64] dts: mediatek: mt7622: add missing "device_type" to memory nodes
     - bpf: Mark bpf_spin_{lock,unlock}() helpers with notrace correctly
     - wifi: wilc1000: prevent use-after-free on vif when cleaning up all
       interfaces
     - ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit()
     - bus: tegra-aconnect: Update dependency to ARCH_TEGRA
     - [amd64] iommu/amd: Mark interrupt as managed
     - wifi: brcmsmac: avoid function pointer casts
     - [arm64] dts: qcom: sdm845-db845c: correct PCIe wake-gpios
     - [arm64] dts: qcom: sm8150: use 'gpios' suffix for PCI GPIOs
     - [arm64] dts: qcom: sm8150: correct PCIe wake-gpios
     - powercap: dtpm_cpu: Fix error check against freq_qos_add_request()
     - net: ena: Remove ena_select_queue
     - [arm64] dts: mt8195-cherry-tomato: change watchdog reset boot flow
     - firmware: arm_scmi: Fix double free in SMC transport cleanup path
     - wifi: wilc1000: revert reset line logic flip
     - net: mctp: copy skb ext data when fragmenting
     - pstore: inode: Convert mutex usage to guard(mutex)
     - pstore: inode: Only d_invalidate() is needed
     - [arm64] dts: allwinner: h6: Add RX DMA channel for SPDIF
     - ACPI: resource: Add Infinity laptops to irq1_edge_low_force_override
     - ACPI: resource: Do IRQ override on Lunnen Ground laptops
     - ACPI: resource: Add MAIBENBEN X577 to irq1_edge_low_force_override
     - ACPI: scan: Fix device check notification handling
     - [x86] relocs: Ignore relocations in .notes section (CVE-2024-26816)
     - SUNRPC: fix some memleaks in gssx_dec_option_array
     - mmc: wmt-sdmmc: remove an incorrect release_mem_region() call in the
       .remove function
     - ACPI: CPPC: enable AMD CPPC V2 support for family 17h processors
     - wifi: rtw88: 8821c: Fix beacon loss and disconnect
     - wifi: rtw88: 8821c: Fix false alarm count
     - PCI: Make pci_dev_is_disconnected() helper public for other drivers
     - [amd64] iommu/vt-d: Don't issue ATS Invalidation request when device is
       disconnected
     - igb: Fix missing time sync events
     - Bluetooth: Remove HCI_POWER_OFF_TIMEOUT
     - Bluetooth: mgmt: Remove leftover queuing of power_off work
     - Bluetooth: Remove superfluous call to hci_conn_check_pending()
     - Bluetooth: hci_qca: don't use IS_ERR_OR_NULL() with gpiod_get_optional()
     - Bluetooth: Cancel sync command before suspend and power off
     - Bluetooth: hci_sync: Only allow hci_cmd_sync_queue if running
     - Bluetooth: hci_conn: Consolidate code for aborting connections
     - Bluetooth: hci_core: Cancel request on command timeout
     - Bluetooth: hci_sync: Fix overwriting request callback
     - Bluetooth: hci_core: Fix possible buffer overflow
     - Bluetooth: af_bluetooth: Fix deadlock
     - Bluetooth: fix use-after-free in accessing skb after sending it
     - [s390x] cache: prevent rebuild of shared_cpu_list
     - bpf: Fix DEVMAP_HASH overflow check on 32-bit arches
     - bpf: Fix hashtab overflow check on 32-bit arches
     - bpf: Fix stackmap overflow check on 32-bit arches
     - [amd64] iommu/vt-d: Retrieve IOMMU perfmon capability information
     - ipv6: fib6_rules: flush route cache when rule is changed
     - net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv()
     - net: phy: fix phy_get_internal_delay accessing an empty array
     - [arm64] net: hns3: fix wrong judgment condition issue
     - [arm64] net: hns3: fix kernel crash when 1588 is received on HIP08 devices
     - [arm64] net: hns3: fix port duplex configure error in IMP reset
     - Bluetooth: MGMT: Fix always using HCI_MAX_AD_LENGTH
     - Bluetooth: hci_core: Fix missing instances using HCI_MAX_AD_LENGTH
     - Bluetooth: Fix eir name length
     - net: phy: dp83822: Fix RGMII TX delay configuration
     - OPP: debugfs: Fix warning around icc_get_name()
     - tcp: fix incorrect parameter validation in the do_tcp_getsockopt()
       function
     - ipmr: fix incorrect parameter validation in the ip_mroute_getsockopt()
       function
     - l2tp: fix incorrect parameter validation in the pppol2tp_getsockopt()
       function
     - udp: fix incorrect parameter validation in the udp_lib_getsockopt()
       function
     - net: kcm: fix incorrect parameter validation in the kcm_getsockopt)
       function
     - nfp: flower: handle acti_netdevs allocation failure
     - bpf: hardcode BPF_PROG_PACK_SIZE to 2MB * num_possible_nodes()
     - dm raid: fix false positive for requeue needed during reshape
     - dm: call the resume method on internal suspend
     - [arm64,armhf] drm/tegra: dsi: Add missing check for of_find_device_by_node
     - [arm64,armhf] drm/tegra: dpaux: Fix PM disable depth imbalance in
       tegra_dpaux_probe
     - [arm64,armhf] drm/tegra: dsi: Make use of the helper function
       dev_err_probe()
     - [arm64,armhf] drm/tegra: dsi: Fix some error handling paths in
       tegra_dsi_probe()
     - [arm64,armhf] drm/tegra: dsi: Fix missing pm_runtime_disable() in the
       error handling path of tegra_dsi_probe()
     - [arm64,armhf] drm/tegra: hdmi: Convert to devm_platform_ioremap_resource()
     - [arm64,armhf] drm/tegra: hdmi: Fix some error handling paths in
       tegra_hdmi_probe()
     - [arm64,armhf] drm/tegra: rgb: Fix some error handling paths in
       tegra_dc_rgb_probe()
     - [arm64,armhf] drm/tegra: rgb: Fix missing clk_put() in the error handling
       paths of tegra_dc_rgb_probe()
     - [arm64,armhf] drm/tegra: output: Fix missing i2c_put_adapter() in the
       error handling paths of tegra_output_probe()
     - drm: Don't treat 0 as -1 in drm_fixp2int_ceil
     - drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node
     - drm/panel-edp: use put_sync in unprepare
     - drm/lima: fix a memleak in lima_heap_alloc
     - [x86] ASoC: amd: acp: Add missing error handling in sof-mach
     - dmaengine: tegra210-adma: Update dependency to ARCH_TEGRA
     - media: tc358743: register v4l2 async device only after successful setup
     - PCI/DPC: Print all TLP Prefixes, not just the first
     - perf record: Fix possible incorrect free in record__switch_output()
     - HID: lenovo: Add middleclick_workaround sysfs knob for cptkbd
     - drm/amd/display: Fix a potential buffer overflow in
       'dp_dsc_clock_en_read()'
     - drm/amd/display: Fix potential NULL pointer dereferences in
       'dcn10_set_output_transfer_func()'
     - pinctrl: renesas: r8a779g0: Add Audio SSI pins, groups, and functions
     - pinctrl: renesas: r8a779g0: Add missing SCIF_CLK2 pin group/function
     - clk: samsung: exynos850: Propagate SPI IPCLK rate change
     - perf evsel: Fix duplicate initialization of data->id in
       evsel__parse_sample()
     - clk: meson: Add missing clocks to axg_clk_regmaps
     - media: em28xx: annotate unchecked call to media_device_register()
     - media: v4l2-tpg: fix some memleaks in tpg_alloc
     - media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity
     - media: edia: dvbdev: fix a use-after-free
     - clk: qcom: reset: Commonize the de/assert functions
     - clk: qcom: reset: Ensure write completion on reset de/assertion
     - quota: simplify drop_dquot_ref()
     - quota: Fix potential NULL pointer dereference
     - quota: Fix rcu annotations of inode dquot pointers
     - PCI: switchtec: Fix an error handling path in switchtec_pci_probe()
     - crypto: xilinx - call finalize with bh disabled
     - perf thread_map: Free strlist on normal path in
       thread_map__new_by_tid_str()
     - [arm64] drm/msm/dpu: fix the programming of INTF_CFG2_DATA_HCTL_EN
     - [arm64] drm/msm/dpu: Only enable DSC_MODE_MULTIPLEX if dsc_merge is
       enabled
     - drm/radeon/ni: Fix wrong firmware size logging in ni_init_microcode()
     - ALSA: seq: fix function cast warnings
     - perf stat: Avoid metric-only segv
     - [arm64,armhf] ASoC: meson: aiu: fix function pointer type mismatch
     - [arm64,armhf] ASoC: meson: t9015: fix function pointer type mismatch
     - [powerpc*] Force inlining of arch_vmap_p{u/m}d_supported()
     - [x86] ASoC: SOF: Introduce container struct for SOF firmware
     - [x86] ASoC: SOF: Add some bounds checking to firmware data
     - NTB: EPF: fix possible memory leak in pci_vntb_probe()
     - NTB: fix possible name leak in ntb_register_device()
     - media: cedrus: h265: Associate mv col buffers with buffer
     - media: cedrus: h265: Fix configuring bitstream size
     - media: sun8i-di: Fix coefficient writes
     - media: sun8i-di: Fix power on/off sequences
     - media: sun8i-di: Fix chroma difference threshold
     - media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak
     - media: go7007: add check of return value of go7007_read_addr()
     - media: pvrusb2: remove redundant NULL check
     - media: pvrusb2: fix pvr2_stream_callback casts
     - clk: qcom: dispcc-sdm845: Adjust internal GDSC wait times
     - PCI: Mark 3ware-9650SE Root Port Extended Tags as broken
     - clk: hisilicon: hi3519: Release the correct number of gates in
       hi3519_clk_unregister()
     - clk: hisilicon: hi3559a: Fix an erroneous devm_kfree()
     - [arm64,armhf] drm/tegra: put drm_gem_object ref on error in
       tegra_fb_create
     - mfd: syscon: Call of_node_put() only when of_parse_phandle() takes a ref
     - mfd: altera-sysmgr: Call of_node_put() only when of_parse_phandle() takes
       a ref
     - crypto: jitter - fix CRYPTO_JITTERENTROPY help text
     - drm/tidss: Fix initial plane zpos values
     - drm/tidss: Fix sync-lost issue with two displays
     - mtd: maps: physmap-core: fix flash size larger than 32-bit
     - mtd: rawnand: lpc32xx_mlc: fix irq handler prototype
     - [arm64,armhf] ASoC: meson: axg-tdm-interface: fix mclk setup without
       mclk-fs
     - [arm64,armhf] ASoC: meson: axg-tdm-interface: add frame rate constraint
     - HID: amd_sfh: Update HPD sensor structure elements
     - HID: amd_sfh: Avoid disabling the interrupt
     - drm/amdgpu: Fix missing break in ATOM_ARG_IMM Case of atom_get_src_int()
     - media: pvrusb2: fix uaf in pvr2_context_set_notify
     - media: dvb-frontends: avoid stack overflow warnings with clang
     - media: go7007: fix a memleak in go7007_load_encoder
     - media: ttpci: fix two memleaks in budget_av_attach
     - media: mediatek: vcodec: avoid -Wcast-function-type-strict warning
     - gpio: nomadik: fix offset bug in nmk_pmx_set()
     - [powerpc*] pseries: Fix potential memleak in papr_get_attr()
     - [powerpc*] hv-gpci: Fix the H_GET_PERF_COUNTER_INFO hcall return value
       checks
     - [arm64] drm/msm/dpu: add division of drm_display_mode's hskew parameter
     - modules: wait do_free_init correctly
     - powerpc/embedded6xx: Fix no previous prototype for avr_uart_send() etc.
     - leds: aw2013: Unlock mutex before destroying it
     - leds: sgm3140: Add missing timer cleanup and flash gpio control
     - backlight: lm3630a: Initialize backlight_properties on init
     - backlight: lm3630a: Don't set bl->props.brightness in get_brightness
     - backlight: da9052: Fully initialize backlight_properties during probe
     - backlight: lm3639: Fully initialize backlight_properties during probe
     - backlight: lp8788: Fully initialize backlight_properties during probe
     - clk: Fix clk_core_get NULL dereference
     - clk: zynq: Prevent null pointer dereference caused by kmalloc failure
     - ALSA: hda/realtek: fix ALC285 issues on HP Envy x360 laptops
     - ALSA: usb-audio: Stop parsing channels bits when all channels are found.
     - RDMA/irdma: Allow accurate reporting on QP max send/recv WR
     - RDMA/irdma: Remove duplicate assignment
     - RDMA/srpt: Do not register event handler until srpt device is fully setup
     - f2fs: reduce stack memory cost by using bitfield in struct f2fs_io_info
     - f2fs: compress: fix to guarantee persisting compressed blocks by CP
     - f2fs: compress: fix to cover normal cluster write with cp_rwsem
     - f2fs: compress: fix to check unreleased compressed cluster
     - f2fs: simplify __allocate_data_block
     - f2fs: delete obsolete FI_FIRST_BLOCK_WRITTEN
     - f2fs: delete obsolete FI_DROP_CACHE
     - f2fs: introduce get_dnode_addr() to clean up codes
     - f2fs: update blkaddr in __set_data_blkaddr() for cleanup
     - f2fs: compress: fix to avoid inconsistence bewteen i_blocks and dnode
     - f2fs: compress: fix to cover f2fs_disable_compressed_file() w/ i_sem
     - f2fs: fix to avoid potential panic during recovery
     - scsi: csiostor: Avoid function pointer casts
     - [arm64] RDMA/hns: Fix mis-modifying default congestion control algorithm
     - RDMA/device: Fix a race between mad_client and cm_client init
     - RDMA/rtrs-clt: Check strnlen return len in sysfs mpath_policy_store()
     - scsi: bfa: Fix function pointer type mismatch for hcb_qe->cbfn
     - f2fs: compress: fix to check zstd compress level correctly in mount option
     - net: sunrpc: Fix an off by one in rpc_sockaddr2uaddr()
     - NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102
     - NFSv4.2: fix listxattr maximum XDR buffer size
     - f2fs: compress: fix to check compress flag w/ .i_sem lock
     - f2fs: check number of blocks in a current section
     - watchdog: stm32_iwdg: initialize default timeout
     - f2fs: ro: compress: fix to avoid caching unaligned extent
     - NFS: Fix an off by one in root_nfs_cat()
     - f2fs: convert to use sbi directly
     - f2fs: compress: relocate some judgments in f2fs_reserve_compress_blocks
     - f2fs: compress: fix reserve_cblocks counting error when out of space
     - [x86] perf/x86/amd/core: Avoid register reset when CPU is dead
     - afs: Revert "afs: Hide silly-rename files from userspace"
     - nfs: fix panic when nfs4_ff_layout_prepare_ds() fails
     - io_uring/net: correct the type of variable
     - comedi: comedi_test: Prevent timers rescheduling during deletion
     - [armhf] remoteproc: stm32: use correct format strings on 64-bit
     - [armhf] remoteproc: stm32: Fix incorrect type in assignment for va
     - [armhf] remoteproc: stm32: Fix incorrect type assignment returned by
       stm32_rproc_get_loaded_rsc_tablef
     - usb: phy: generic: Get the vbus supply
     - tty: vt: fix 20 vs 0x20 typo in EScsiignore
     - serial: max310x: fix syntax error in IRQ error message
     - tty: serial: samsung: fix tx_empty() to return TIOCSER_TEMT
     - [arm64] dts: broadcom: bcmbca: bcm4908: drop invalid switch cells
     - hwtracing: hisi_ptt: Move type check to the beginning of
       hisi_ptt_pmu_event_init()
     - rtc: mt6397: select IRQ_DOMAIN instead of depending on it
     - serial: 8250_exar: Don't remove GPIO device on suspend
     - staging: greybus: fix get_channel_from_mode() failure path
     - usb: gadget: net2272: Use irqflags in the call to net2272_probe_fin
     - nouveau: reset the bo resource bus info after an eviction
     - tcp: Fix NEW_SYN_RECV handling in inet_twsk_purge()
     - rds: tcp: Fix use-after-free of net in reqsk_timer_handler().
     - [s390x] vtime: fix average steal time calculation
     - net/sched: taprio: proper TCA_TAPRIO_TC_ENTRY_INDEX check (CVE-2024-26815)
     - soc: fsl: dpio: fix kcalloc() argument order
     - tcp: Fix refcnt handling in __inet_hash_connect().
     - hsr: Fix uninit-value access in hsr_get_node()
     - nvme: only set reserved_tags in nvme_alloc_io_tag_set for fabrics
       controllers
     - nvme: add the Apple shared tag workaround to nvme_alloc_io_tag_set
     - nvme: fix reconnection fail due to reserved tag allocation
     - net: mediatek: mtk_eth_soc: clear MAC_MCR_FORCE_LINK only when MAC is up
     - net: ethernet: mtk_eth_soc: fix PPE hanging issue
     - packet: annotate data-races around ignore_outgoing
     - net: veth: do not manipulate GRO when using XDP
     - net: dsa: mt7530: prevent possible incorrect XTAL frequency selection
     - drm: Fix drm_fixp2int_round() making it add 0.5
     - vdpa_sim: reset must not run
     - vdpa/mlx5: Allow CVQ size changes
     - wireguard: receive: annotate data-race around receiving_counter.counter
     - rds: introduce acquire/release ordering in acquire/release_in_xmit()
     - hsr: Handle failures in module init
     - ipv4: raw: Fix sending packets from raw sockets via IPsec tunnels
     - net: phy: fix phy_read_poll_timeout argument type in genphy_loopback
     - dm-integrity: fix a memory leak when rechecking the data
     - net/bnx2x: Prevent access to a freed page in page_pool
     - netfilter: nft_set_pipapo: release elements in clone only from destroy
       path (CVE-2024-26809)
     - netfilter: nf_tables: do not compare internal table flags on updates
     - rcu: add a helper to report consolidated flavor QS
     - net: report RCU QS on threaded NAPI repolling
     - bpf: report RCU QS in cpumap kthread
     - net: dsa: mt7530: fix link-local frames that ingress vlan filtering ports
     - net: dsa: mt7530: fix handling of all link-local frames
     - spi: spi-mt65xx: Fix NULL pointer access in interrupt handler
     - dm: address indent/space issues
     - dm io: Support IO priority
     - dm-integrity: align the outgoing bio in integrity_recheck
     - [armhf] remoteproc: stm32: fix incorrect optional pointers
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.84
     - [x86] cpu: Support AMD Automatic IBRS
     - [x86] bugs: Use sysfs_emit()
     - [x86] KVM: x86: Update KVM-only leaf handling to allow for 100% KVM-only
       leafs
     - [x86] KVM: x86: Advertise CPUID.(EAX=7,ECX=2):EDX[5:0] to userspace
     - [x86] KVM: x86: Use a switch statement and macros in __feature_translate()
     - timers: Update kernel-doc for various functions
     - timers: Use del_timer_sync() even on UP
     - timers: Rename del_timer_sync() to timer_delete_sync()
     - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach
     - media: staging: ipu3-imgu: Set fields before media_entity_pads_init()
     - [arm64] dts: qcom: sc7280: Add additional MSI interrupts
     - [arm64,armhf] remoteproc: virtio: Fix wdg cannot recovery remote processor
     - [arm64] clk: qcom: gcc-sdm845: Add soft dependency on rpmhpd
     - [armhf] arm: dts: marvell: Fix maxium->maxim typo in brownstone dts
     - drm/vmwgfx: Fix possible null pointer derefence with invalid contexts
     - serial: max310x: fix NULL pointer dereference in I2C instantiation
     - pci_iounmap(): Fix MMIO mapping leak
     - media: xc4000: Fix atomicity violation in xc4000_get_frequency
     - media: mc: Add local pad to pipeline regardless of the link state
     - media: mc: Fix flags handling when creating pad links
     - media: mc: Add num_links flag to media_pad
     - media: mc: Rename pad variable to clarify intent
     - media: mc: Expand MUST_CONNECT flag to always require an enabled link
     - KVM: Always flush async #PF workqueue when vCPU is being destroyed
     - [x86] cpufreq: amd-pstate: Fix min_perf assignment in
       amd_pstate_adjust_perf()
     - [powerpc*] smp: Adjust nr_cpu_ids to cover all threads of a core
     - [powerpc*] smp: Increase nr_cpu_ids to include the boot CPU
     - [x86] crypto: qat - fix double free during reset
     - [x86] crypto: qat - resolve race condition during AER recovery
     - ext4: correct best extent lstart adjustment logic
     - block: Clear zone limits for a non-zoned stacked queue
     - bounds: support non-power-of-two CONFIG_NR_CPUS
     - fat: fix uninitialized field in nostale filehandles
     - ubifs: Set page uptodate in the correct place
     - ubi: Check for too small LEB size in VTBL code
     - ubi: correct the calculation of fastmap size
     - md/raid5: fix atomicity violation in raid5_cache_count
     - cpufreq: Limit resolving a frequency to policy min/max
     - PM: suspend: Set mem_sleep_current during kernel command line setup
     - usb: xhci: Add error handling in xhci_map_urb_for_dma
     - [powerpc*] fsl: Fix mfpmr build errors with newer binutils
     - USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB
     - USB: serial: add device ID for VeriFone adapter
     - USB: serial: cp210x: add ID for MGP Instruments PDS100
     - USB: serial: option: add MeiG Smart SLM320 product
     - [x86] KVM: x86/xen: inject vCPU upcall vector when local APIC is enabled
     - USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M
     - PM: sleep: wakeirq: fix wake irq warning in system suspend
     - mmc: tmio: avoid concurrent runs of mmc_request_done()
     - fuse: fix root lookup with nonzero generation
     - fuse: don't unhash root
     - usb: typec: ucsi: Clean up UCSI_CABLE_PROP macros
     - serial: Lock console when calling into driver before registration
     - btrfs: qgroup: always free reserved space for extent records
     - btrfs: fix off-by-one chunk length calculation at
       contains_pending_extent()
     - PCI/PM: Drain runtime-idle callbacks before driver removal
     - PCI/DPC: Quirk PIO log size for Intel Raptor Lake Root Ports
     - dm-raid: fix lockdep waring in "pers->hot_add_disk"
     - [powerpc*] xor_vmx: Add '-mhard-float' to CFLAGS
     - mac802154: fix llsec key resources release in mac802154_llsec_key_del
     - swap: comments get_swap_device() with usage rule
     - mm: swap: fix race between free_swap_and_cache() and swapoff()
     - mmc: core: Fix switch on gp3 partition
     - [arm64,armhf] drm/etnaviv: Restore some id values
     - landlock: Warn once if a Landlock action is requested while disabled
     - hwmon: (amc6821) add of_match table
     - ext4: fix corruption during on-line resize
     - nvmem: meson-efuse: fix function pointer type mismatch
     - slimbus: core: Remove usage of the deprecated ida_simple_xx() API
     - phy: tegra: xusb: Add API to retrieve the port number of phy
     - usb: gadget: tegra-xudc: Fix USB3 PHY retrieval logic
     - speakup: Fix 8bit characters from direct synth
     - PCI/AER: Block runtime suspend when handling errors
     - io_uring/net: correctly handle multishot recvmsg retry setup
     - nfs: fix UAF in direct writes
     - kbuild: Move -Wenum-{compare-conditional,enum-conversion} into W=1
     - [arm64] PCI: qcom: Rename qcom_pcie_config_sid_sm8250() to reflect IP
       version
     - [arm64] PCI: qcom: Enable BDF to SID translation properly
     - [amd64,arm64] PCI: hv: Fix ring buffer size calculation
     - vfio: Use GFP_KERNEL_ACCOUNT for userspace persistent allocations
     - vfio/pci: Consolidate irq cleanup on MSI/MSI-X disable
     - vfio/pci: Remove negative check on unsigned vector
     - vfio/pci: Lock external INTx masking ops (CVE-2024-26810)
     - vfio/platform: Disable virqfds on cleanup
     - ksmbd: retrieve number of blocks using vfs_getattr in
       set_file_allocation_info
     - ring-buffer: Fix waking up ring buffer readers
     - ring-buffer: Do not set shortest_full when full target is hit
     - ring-buffer: Fix resetting of shortest_full
     - ring-buffer: Fix full_waiters_pending in poll
     - ring-buffer: Use wait_event_interruptible() in ring_buffer_wait()
     - [s390x] zcrypt: fix reference counting on zcrypt card objects
     - drm/probe-helper: warn about negative .get_modes()
     - drm/panel: do not return negative error codes from drm_panel_get_modes()
     - [armhf] drm/exynos: do not return negative values from .get_modes()
     - [armhf] drm/imx/ipuv3: do not return negative values from .get_modes()
     - [arm64,armhf] drm/vc4: hdmi: do not return negative values from
       .get_modes()
     - memtest: use {READ,WRITE}_ONCE in memory scanning
     - Revert "block/mq-deadline: use correct way to throttling write requests"
     - f2fs: mark inode dirty for FI_ATOMIC_COMMITTED flag
     - f2fs: truncate page cache before clearing flags when aborting atomic write
     - nilfs2: fix failure to detect DAT corruption in btree and direct mappings
     - nilfs2: prevent kernel bug at submit_bh_wbc()
     - cifs: open_cached_dir(): add FILE_READ_EA to desired access
     - cpufreq: dt: always allocate zeroed cpumask
     - [amd64] x86/CPU/AMD: Update the Zenbleed microcode revisions
     - NFSD: Fix nfsd_clid_class use of __string_len() macro
     - net: hns3: tracing: fix hclgevf trace event strings
     - wireguard: netlink: check for dangling peer via is_dead instead of empty
       list
     - wireguard: netlink: access device through ctx instead of peer
     - ahci: asm1064: correct count of reported ports
     - ahci: asm1064: asm1166: don't limit reported ports
     - drm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag
     - drm/amd/display: Return the correct HDCP error code
     - drm/amd/display: Fix noise issue on HDMI AV mute
     - dm snapshot: fix lockup in dm_exception_table_exit
     - [x86] pm: Work around false positive kmemleak report in
       msr_build_context()
     - cpufreq: brcmstb-avs-cpufreq: fix up "add check for cpufreq_cpu_get's
       return value"
     - [x86] platform/x86: p2sb: On Goldmont only cache P2SB and SPI devfn BAR
       (Closes: #1065320)
     - tls: fix race between tx work scheduling and socket close (CVE-2024-26585)
     - netfilter: nf_tables: mark set as dead when unbinding anonymous set with
       timeout (CVE-2024-26643)
     - netfilter: nf_tables: disallow anonymous set with timeout flag
       (CVE-2024-26642)
     - netfilter: nf_tables: reject constant set with timeout
     - Drivers: hv: vmbus: Calculate ring buffer size for more efficient use of
       memory
     - init/Kconfig: lower GCC version check for -Warray-bounds
     - [x86] KVM: x86: Mark target gfn of emulated atomic instruction as dirty
     - [x86] KVM: SVM: Flush pages under kvm->lock to fix UAF in
       svm_register_enc_region()
     - tracing: Use .flush() call to wake up readers
     - drm/amdgpu/pm: Fix the error of pwm1_enable setting
     - [x86] drm/i915: Check before removing mm notifier
     - ALSA: hda/realtek - Fix headset Mic no show at resume back for Lenovo
       ALC897 platform
     - USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command
     - usb: gadget: ncm: Fix handling of zero block length packets
     - usb: port: Don't try to peer unused USB ports based on location
     - tty: serial: fsl_lpuart: avoid idle preamble pending if CTS is enabled
     - misc: lis3lv02d_i2c: Fix regulators getting en-/dis-abled twice on
       suspend/resume
     - mei: me: add arrow lake point S DID
     - mei: me: add arrow lake point H DID
     - vt: fix unicode buffer corruption when deleting characters
     - fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion
     - ALSA: hda/realtek - Add Headset Mic supported Acer NB platform
     - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook
     - tee: optee: Fix kernel panic caused by incorrect error handling
     - mm, vmscan: prevent infinite loop for costly GFP_NOIO |
       __GFP_RETRY_MAYFAIL allocations
     - iio: accel: adxl367: fix DEVID read after reset
     - iio: accel: adxl367: fix I2C FIFO data register
     - i2c: i801: Avoid potential double call to gpiod_remove_lookup_table
     - drm/amd/display: handle range offsets in VRR ranges
     - [x86] efistub: Call mixed mode boot services on the firmware's stack
     - net: tls: handle backlogging of crypto requests (CVE-2024-26584)
     - [x86] ASoC: amd: yc: Revert "Fix non-functional mic on Lenovo 21J2"
     - iommu: Avoid races around default domain allocations
     - clocksource/drivers/arm_global_timer: Fix maximum prescaler value
     - entry: Respect changes to system call number by trace_sys_enter()
     - minmax: add umin(a, b) and umax(a, b)
     - swiotlb: Fix alignment checks when both allocation and DMA masks are
       present
     - iommu/dma: Force swiotlb_max_mapping_size on an untrusted device
     - printk: Update @console_may_schedule in console_trylock_spinning()
     - irqchip/renesas-rzg2l: Implement restriction when writing ISCR register
     - irqchip/renesas-rzg2l: Flush posted write in irq_eoi()
     - irqchip/renesas-rzg2l: Add macro to retrieve TITSR register offset based
       on register's index
     - irqchip/renesas-rzg2l: Rename rzg2l_tint_eoi()
     - irqchip/renesas-rzg2l: Rename rzg2l_irq_eoi()
     - irqchip/renesas-rzg2l: Prevent spurious interrupts when setting trigger
       type
     - [x86] kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe
       address
     - [x86] fpu: Keep xfd_state in sync with MSR_IA32_XFD
     - pwm: img: fix pwm clock lookup
     - tty: serial: imx: Fix broken RS485
     - block: Fix page refcounts for unaligned buffers in __bio_release_pages()
     - blk-mq: release scheduler resource when request completes
     - vfio/pci: Disable auto-enable of exclusive INTx IRQ (CVE-2024-27437)
     - vfio: Introduce interface to flush virqfd inject workqueue
     - vfio/pci: Create persistent INTx handler (CVE-2024-26812)
     - vfio/platform: Create persistent IRQ handlers (CVE-2024-26813)
     - vfio/fsl-mc: Block calling interrupt handler without trigger
       (CVE-2024-26814)
     - [x86] coco: Export cc_vendor
     - [x86] coco: Get rid of accessor functions
     - [x86] Kconfig: Remove CONFIG_AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT
     - [x86] sev: Fix position dependent variable references in startup code
     - mm/migrate: set swap entry values of THP tail pages properly.
     - init: open /initrd.image with O_LARGEFILE
     - [x86] efistub: Add missing boot_params for mixed mode compat entry
     - btrfs: zoned: don't skip block groups with 100% zone unusable
     - btrfs: zoned: use zone aware sb location for scrub
     - wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes
     - wifi: iwlwifi: fw: don't always use FW dump trig
     - exec: Fix NOMMU linux_binprm::exec in transfer_args_to_stack()
     - hexagon: vmlinux.lds.S: handle attributes section
     - mmc: sdhci-omap: re-tuning is needed after a pm transition to support emmc
       HS200 mode
     - mmc: core: Initialize mmc_blk_ioc_data
     - mmc: core: Avoid negative index with array access
     - block: Do not force full zone append completion in req_bio_endio()
     - thermal: devfreq_cooling: Fix perf state when calculate dfc res_util
     - nouveau/dmem: handle kcalloc() allocation failure
     - net: ll_temac: platform_get_resource replaced by wrong function
     - drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed
     - [x86] drm/i915/bios: Tolerate devdata==NULL in
       intel_bios_encoder_supports_dp_dual_mode()
     - [x86] drm/i915/gt: Reset queue_priority_hint on parking
     - Bluetooth: hci_sync: Fix not checking error on hci_cmd_sync_cancel_sync
     - Revert "usb: phy: generic: Get the vbus supply"
     - usb: cdc-wdm: close race between read and workqueue
     - USB: UAS: return ENODEV when submit urbs fail with device not attached
     - usb: dwc3-am62: Rename private data
     - usb: dwc3-am62: fix module unload/reload behavior
     - ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs
       (CVE-2024-26654)
     - scsi: core: Fix unremoved procfs host directory regression
     - staging: vc04_services: changen strncpy() to strscpy_pad()
     - staging: vc04_services: fix information leak in create_component()
     - USB: core: Add hub_get() and hub_put() routines
     - USB: core: Fix deadlock in port "disable" sysfs attribute
     - scsi: sd: Fix TCG OPAL unlock on system resume
     - usb: dwc2: host: Fix remote wakeup from hibernation
     - usb: dwc2: host: Fix hibernation flow
     - usb: dwc2: host: Fix ISOC flow in DDMA mode
     - usb: dwc2: gadget: Fix exiting from clock gating
     - usb: dwc2: gadget: LPM flow fix
     - usb: udc: remove warning when queue disabled ep
     - usb: typec: Return size of buffer if pd_set operation succeeds
     - usb: typec: ucsi: Clear EVENT_PENDING under PPM lock
     - usb: typec: ucsi: Ack unsupported commands
     - usb: typec: ucsi_acpi: Refactor and fix DELL quirk
     - usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset
     - scsi: qla2xxx: Prevent command send on chip reset
     - scsi: qla2xxx: Fix N2N stuck connection
     - scsi: qla2xxx: Split FCE|EFT trace control
     - scsi: qla2xxx: Update manufacturer detail
     - scsi: qla2xxx: NVME|FCP prefer flag not being honored
     - scsi: qla2xxx: Fix command flush on cable pull
     - scsi: qla2xxx: Fix double free of fcport
     - scsi: qla2xxx: Change debug message during driver unload
     - scsi: qla2xxx: Delay I/O Abort on PCI error
     - [x86] cpu: Enable STIBP on AMD if Automatic IBRS is enabled
     - tls: fix use-after-free on failed backlog decryption (CVE-2024-26800)
     - scsi: lpfc: Correct size for cmdwqe/rspwqe for memset()
     - scsi: lpfc: Correct size for wqe for memset()
     - scsi: libsas: Add a helper sas_get_sas_addr_and_dev_type()
     - scsi: libsas: Fix disk not being scanned in after being removed
     - [x86] sev: Skip ROM range scans and validation for SEV-SNP guests
     - USB: core: Fix deadlock in usb_deauthorize_interface()
     - tools/resolve_btfids: fix build with musl libc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.85
     - scripts/bpf_doc: Use silent mode when exec make cmd
     - dma-buf: Fix NULL pointer dereference in sanitycheck()
     - nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet
     - mlxbf_gige: stop PHY during open() error paths
     - wifi: iwlwifi: mvm: rfi: fix potential response leaks
     - ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa()
     - [s390x] qeth: handle deferred cc1
     - tcp: properly terminate timers for kernel sockets
     - net: wwan: t7xx: Split 64bit accesses to fix alignment issues
     - [arm64] net: hns3: fix index limit to support all queue stats
     - [arm64] net: hns3: fix kernel crash when devlink reload during pf
       initialization
     - [arm64] net: hns3: mark unexcuted loopback test result as UNEXECUTED
     - tls: recv: process_rx_list shouldn't use an offset with kvec
     - tls: adjust recv return with async crypto and failed copy to userspace
     - tls: get psock ref after taking rxlock to avoid leak
     - mlxbf_gige: call request_irq() after NAPI initialized
     - bpf: Protect against int overflow for stack access size
     - cifs: Fix duplicate fscache cookie warnings
     - net: lan743x: Add set RFE read fifo threshold for PCI1x1x chips
     - inet: inet_defrag: prevent sk release while still in use
     - dm integrity: fix out-of-range warning
     - [x86] cpufeatures: Add new word for scattered features
     - [x86] perf/x86/amd/lbr: Use freeze based on availability
     - [arm64] KVM: arm64: Fix host-programmed guest events in nVHE
     - r8169: fix issue caused by buggy BIOS on certain boards with RTL8168d
     - [x86] cpufeatures: Add CPUID_LNX_5 to track recently added Linux-defined
       word
     - Revert "Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT"
     - [arm64] dts: qcom: sc7180-trogdor: mark bluetooth address as broken
     - Bluetooth: qca: fix device-address endianness
     - Bluetooth: add quirk for broken address properties
     - Bluetooth: hci_event: set the conn encrypted before conn establishes
     - Bluetooth: Fix TOCTOU in HCI debugfs implementation (CVE-2024-24857,
       CVE-2024-24858)
     - xen-netfront: Add missing skb_mark_for_recycle
     - net/rds: fix possible cp null dereference
     - net: usb: ax88179_178a: avoid the interface always configured as random
       address
     - vsock/virtio: fix packet delivery to tap device
     - Revert "x86/mm/ident_map: Use gbpages only where full GB page should be
       mapped."
     - netfilter: nf_tables: reject new basechain after table flag update
     - netfilter: nf_tables: flush pending destroy work before exit_net release
     - netfilter: nf_tables: Fix potential data-race in
       __nft_flowtable_type_get()
     - netfilter: validate user input for expected length
     - vboxsf: Avoid an spurious warning if load_nls_xxx() fails
     - bpf, sockmap: Prevent lock inversion deadlock in map delete elem
     - net/sched: act_skbmod: prevent kernel-infoleak
     - net/sched: fix lockdep splat in qdisc_tree_reduce_backlog()
     - net: stmmac: fix rx queue priority assignment
     - net: phy: micrel: lan8814: Fix when enabling/disabling 1-step timestamping
     - net: phy: micrel: Fix potential null pointer dereference
     - gro: fix ownership transfer
     - [x86] bugs: Fix the SRSO mitigation on Zen3/4
     - [x86] retpoline: Do the necessary fixup to the Zen3/4 srso return thunk
       for !SRSO
     - i40e: Fix VF MAC filter removal
     - erspan: make sure erspan_base_hdr is present in skb->head
     - ipv6: Fix infinite recursion in fib6_dump_done().
     - mlxbf_gige: stop interface during shutdown
     - r8169: skip DASH fw status checks when DASH is disabled
     - udp: do not accept non-tunnel GSO skbs landing in a tunnel
     - udp: do not transition UDP GRO fraglist partial checksums to unnecessary
     - udp: prevent local UDP tunnel packets from being GROed
     - i40e: fix i40e_count_filters() to count only active/new filters
     - i40e: fix vf may be used uninitialized in this function warning
     - drm/amd: Evict resources during PM ops prepare() callback
     - drm/amd: Add concept of running prepare_suspend() sequence for IP blocks
     - drm/amd: Flush GFXOFF requests in prepare stage
     - i40e: Store the irq number in i40e_q_vector
     - i40e: Remove _t suffix from enum type names
     - i40e: Enforce software interrupt during busy-poll exit
     - r8169: use spinlock to protect mac ocp register access
     - r8169: use spinlock to protect access to registers Config2 and Config5
     - r8169: prepare rtl_hw_aspm_clkreq_enable for usage in atomic context
     - tcp: Fix bind() regression for v6-only wildcard and v4(-mapped-v6)
       non-wildcard addresses.
     - drivers: net: convert to boolean for the mac_managed_pm flag
     - net: fec: Set mac_managed_pm during probe
     - [x86] KVM: SVM: enhance info printk's in SEV init
     - [x86] KVM: SVM: WARN, but continue, if misc_cg_set_capacity() fails
     - [x86] KVM: SVM: Use unsigned integers when dealing with ASIDs
     - [x86] KVM: SVM: Add support for allowing zero SEV ASIDs
     - fs/pipe: Fix lockdep false-positive in watchqueue pipe_write()
     - 9p: Fix read/write debug statements to report server reply
     - drivers/perf: riscv: Disable PERF_SAMPLE_BRANCH_* while not supported
     - drm/panfrost: fix power transition timeout warnings
     - ASoC: rt5682-sdw: fix locking sequence
     - [x86] ASoC: rt711-sdca: fix locking sequence
     - ASoC: rt711-sdw: fix locking sequence
     - ASoC: ops: Fix wraparound for mask in snd_soc_get_volsw
     - ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit
     - scsi: mylex: Fix sysfs buffer lengths
     - scsi: sd: Unregister device if device_add_disk() failed in sd_probe()
     - cifs: Fix caching to try to do open O_WRONLY as rdwr on server
     - ata: sata_mv: Fix PCI device ID table declaration compilation warning
     - nfsd: hold a lighter-weight client reference over CB_RECALL_ANY
     - [x86] retpoline: Add NOENDBR annotation to the SRSO dummy return thunk
     - ksmbd: don't send oplock break if rename fails
     - ksmbd: validate payload size in ipc response (CVE-2024-26811)
     - ksmbd: do not set SMB2_GLOBAL_CAP_ENCRYPTION for SMB 3.1.1
     - ALSA: hda/realtek - Fix inactive headset mic jack
     - ALSA: hda/realtek: Update Panasonic CF-SZ6 quirk to support headset with
       microphone
     - driver core: Introduce device_link_wait_removal()
     - of: dynamic: Synchronize of_changeset_destroy() with the devlink removals
     - [x86] mm/pat: fix VM_PAT handling in COW mappings
     - [x86] mce: Make sure to grab mce_sysfs_mutex in set_bank()
     - [x86] coco: Require seeding RNG with RDRAND on CoCo systems
     - [s390x] entry: align system call table on 8 bytes
     - smb3: retrying on failed server close
     - smb: client: fix potential UAF in cifs_debug_files_proc_show()
     - smb: client: fix potential UAF in cifs_stats_proc_write()
     - smb: client: fix potential UAF in cifs_stats_proc_show()
     - smb: client: fix potential UAF in smb2_is_valid_oplock_break()
     - smb: client: fix potential UAF in smb2_is_valid_lease_break()
     - smb: client: fix potential UAF in is_valid_oplock_break()
     - smb: client: fix potential UAF in smb2_is_network_name_deleted()
     - smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect()
     - mptcp: don't account accept() of non-MPC client as fallback to TCP
     - mm/secretmem: fix GUP-fast succeeding on secretmem folios
     - nvme: fix miss command type check
     - [x86] bugs: Change commas to semicolons in 'spectre_v2' sysfs file
     - [x86] syscall: Don't force use of indirect calls for system calls
     - [x86] Mitigate Native Branch History Injection vulnerability
       (CVE-2024-2201):
       + [x86] bhi: Add support for clearing branch history at syscall entry
       + [x86] bhi: Define SPEC_CTRL_BHI_DIS_S
       + [x86] bhi: Enumerate Branch History Injection (BHI) bug
       + [x86] bhi: Add BHI mitigation knob
       + [x86] bhi: Mitigate KVM by default
       + [x86] KVM: x86: Add BHI_NO
       + [x86] set SPECTRE_BHI_ON as default
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 20
   * Refresh "efi: Lock down the kernel if booted in secure boot mode" (context
     changes in 6.1.84)
   * [rt] Refresh "serial: 8250: implement write_atomic"
   * Refresh "x86: Make x32 syscall support conditional on a kernel parameter"
   * tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc
     (Closes: #1068770)
   * Revert "scsi: sd: usb_storage: uas: Access media prior to querying device
     properties" (Closes: #1068675)
   * Revert "scsi: core: Add struct for args to execution functions"
   * scsi: sd: usb_storage: uas: Access media prior to querying device properties
linux (6.1.82-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.77
     - asm-generic: make sparse happy with odd-sized put_unaligned_*()
     - [powerpc*] mm: Fix null-pointer dereference in pgtable_cache_add
     - [arm64] irq: set the correct node for VMAP stack
     - [arm64] drivers/perf: pmuv3: don't expose SW_INCR event in sysfs
     - [powerpc*] Fix build error due to is_valid_bugaddr()
     - [powerpc*] mm: Fix build failures due to arch_reserved_kernel_pages()
     - [x86] boot: Ignore NMIs during very early boot
     - [powerpc*] pmd_move_must_withdraw() is only needed for
       CONFIG_TRANSPARENT_HUGEPAGE
     - [powerpc*] lib: Validate size for vector operations
     - [x86*] mce: Mark fatal MCE's page as poison to avoid panic in the kdump
       kernel
     - perf/core: Fix narrow startup race when creating the perf nr_addr_filters
       sysfs file
     - debugobjects: Stop accessing objects after releasing hash bucket lock
     - regulator: core: Only increment use_count when enable_count changes
     - audit: Send netlink ACK before setting connection in auditd_set
     - ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop
     - PNP: ACPI: fix fortify warning
     - ACPI: extlog: fix NULL pointer dereference check
     - ACPI: NUMA: Fix the logic of getting the fake_pxm value
     - PM / devfreq: Synchronize devfreq_monitor_[start/stop]
     - ACPI: APEI: set memory failure flags as MF_ACTION_REQUIRED on synchronous
       events
     - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree
     - UBSAN: array-index-out-of-bounds in dtSplitRoot
     - jfs: fix slab-out-of-bounds Read in dtSearch
     - jfs: fix array-index-out-of-bounds in dbAdjTree
     - jfs: fix uaf in jfs_evict_inode
     - pstore/ram: Fix crash when setting number of cpus to an odd number
     - erofs: fix ztailpacking for subpage compressed blocks
     - [armhf] crypto: stm32/crc32 - fix parsing list of devices
     - afs: fix the usage of read_seqbegin_or_lock() in afs_lookup_volume_rcu()
     - afs: fix the usage of read_seqbegin_or_lock() in afs_find_server*()
     - rxrpc_find_service_conn_rcu: fix the usage of read_seqbegin_or_lock()
     - jfs: fix array-index-out-of-bounds in diNewExt
     - arch: consolidate arch_irq_work_raise prototypes
     - [s390x] vfio-ap: fix sysfs status attribute for AP queue devices
     - [s390x] ptrace: handle setting of fpc register correctly
     - [s390x] KVM: s390: fix setting of fpc register
     - SUNRPC: Fix a suspicious RCU usage warning (CVE-2023-52623)
     - ecryptfs: Reject casefold directory inodes
     - ext4: fix inconsistent between segment fstrim and full fstrim
     - ext4: unify the type of flexbg_size to unsigned int
     - ext4: remove unnecessary check from alloc_flex_gd()
     - ext4: avoid online resizing failures due to oversized flex bg
       (CVE-2023-52622)
     - wifi: rt2x00: restart beacon queue when hardware reset
     - wifi: rt2x00: correct wrong BBP register in RxDCOC calibration
     - [arm64] soc: xilinx: Fix for call trace due to the usage of
       smp_processor_id()
     - [arm64] soc: xilinx: fix unhandled SGI warning message
     - scsi: lpfc: Fix possible file string name overflow when updating firmware
     - PCI: Add no PM reset quirk for NVIDIA Spectrum devices
     - bonding: return -ENOMEM instead of BUG in alb_upper_dev_walk
     - net: usb: ax88179_178a: avoid two consecutive device resets
     - scsi: mpi3mr: Add PCI checks where SAS5116 diverges from SAS4116
     - scsi: arcmsr: Support new PCI device IDs 1883 and 1886
     - wifi: ath9k: Fix potential array-index-out-of-bounds read in
       ath9k_htc_txstatus()
     - wifi: ath11k: fix race due to setting ATH11K_FLAG_EXT_IRQ_ENABLED too
       early
     - bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers
       (CVE-2023-52621)
     - scsi: libfc: Don't schedule abort twice
     - scsi: libfc: Fix up timeout error in fc_fcp_rec_error()
     - bpf: Set uattr->batch.count as zero before batched update or deletion
     - net: phy: at803x: fix passing the wrong reference for config_intr
     - [arm64] scsi: hisi_sas: Set .phy_attached before notifing phyup event
       HISI_PHYE_PHY_UP_PM
     - ice: fix ICE_AQ_VSI_Q_OPT_RSS_* register values
     - net: atlantic: eliminate double free in error handling logic
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix mv88e6352_serdes_get_stats error
       path
     - block: prevent an integer overflow in bvec_try_merge_hw_page
     - md: Whenassemble the array, consult the superblock of the freshest device
     - [arm64] dts: qcom: msm8996: Fix 'in-ports' is a required property
     - [arm64] dts: qcom: msm8998: Fix 'out-ports' is a required property
     - ice: fix pre-shifted bit usage
     - [arm64] dts: amlogic: fix format for s4 uart node
     - wifi: rtl8xxxu: Add additional USB IDs for RTL8192EU devices
     - libbpf: Fix NULL pointer dereference in bpf_object__collect_prog_relos
     - wifi: rtlwifi: rtl8723{be,ae}: using calculate_bit_shift()
     - wifi: cfg80211: free beacon_ies when overridden from hidden BSS
     - Bluetooth: qca: Set both WIDEBAND_SPEECH and LE_STATES quirks for QCA2066
     - Bluetooth: hci_sync: fix BR/EDR wakeup bug
     - Bluetooth: L2CAP: Fix possible multiple reject send
     - net/smc: disable SEID on non-s390 archs where virtual ISM may be used
     - i40e: Fix VF disable behavior to block all traffic
     - net: dsa: qca8k: put MDIO bus OF node on qca8k_mdio_register() failure
     - f2fs: fix to check return value of f2fs_reserve_new_block()
     - ALSA: hda: Refer to correct stream index at loops
     - ASoC: doc: Fix undefined SND_SOC_DAPM_NOPM argument
     - fast_dput(): handle underflows gracefully
     - RDMA/IPoIB: Fix error code return in ipoib_mcast_join
     - [arm64,armhf] drm/panel-edp: Add override_edid_mode quirk for generic edp
     - drm/amd/display: Fix tiled display misalignment
     - f2fs: fix write pointers on zoned device after roll forward
     - [x86] ASoC: amd: Add new dmi entries for acp5x platform
     - drm/drm_file: fix use of uninitialized variable
     - drm/framebuffer: Fix use of uninitialized variable
     - drm/mipi-dsi: Fix detach call without attach
     - media: stk1160: Fixed high volume of stk1160_dbg messages
     - [arm64,armhf]  media: rockchip: rga: fix swizzling for RGB formats
     - PCI: add INTEL_HDA_ARL to pci_ids.h
     - [x86] ALSA: hda: Intel: add HDA_ARL PCI ID support
     - [arm64] media: rkisp1: Drop IRQF_SHARED
     - [arm64] media: rkisp1: Fix IRQ handler return values
     - [arm64] media: rkisp1: Store IRQ lines
     - [arm64] media: rkisp1: Fix IRQ disable race issue
     - hwmon: (nct6775) Fix fan speed set failure in automatic mode
     - f2fs: fix to tag gcing flag on page during block migration
     - [armhf] drm/exynos: Call drm_atomic_helper_shutdown() at shutdown/unbind
       time
     - IB/ipoib: Fix mcast list locking
     - media: ddbridge: fix an error code problem in ddb_probe
     - drm/amd/display: For prefetch mode > 0, extend prefetch if possible
     - [arm64] drm/msm/dpu: Ratelimit framedone timeout msgs
     - [arm64] drm/msm/dpu: fix writeback programming for YUV cases
     - drm/amdgpu: fix ftrace event amdgpu_bo_move always move on same heap
     - [x86] watchdog: it87_wdt: Keep WDTCTRL bit 3 unmodified for IT8784/IT8786
     - drm/amd/display: make flip_timestamp_in_us a 64-bit variable
     - drm/amdgpu: Fix ecc irq enable/disable unpaired
     - drm/amdgpu: Let KFD sync with VM fences
     - drm/amdgpu: Fix '*fw' from request_firmware() not released in
       'amdgpu_ucode_request()'
     - drm/amdgpu: Drop 'fence' check in 'to_amdgpu_amdkfd_fence()'
     - ALSA: hda/conexant: Fix headset auto detect fail in cx8070 and SN6140
     - leds: trigger: panic: Don't register panic notifier if creating the
       trigger failed
     - xen/gntdev: Fix the abuse of underlying struct page in DMA-buf import
     - PCI: Only override AMD USB controller if required
     - PCI: switchtec: Fix stdev_release() crash after surprise hot remove
     - perf cs-etm: Bump minimum OpenCSD version to ensure a bugfix is present
     - usb: hub: Replace hardcoded quirk value with BIT() macro
     - usb: hub: Add quirk to decrease IN-ep poll interval for Microchip USB491x
       hub
     - tty: allow TIOCSLCKTRMIOS with CAP_CHECKPOINT_RESTORE
     - fs/kernfs/dir: obey S_ISGID
     - PCI: Fix 64GT/s effective data rate calculation
     - PCI/AER: Decode Requester ID when no error info found
     - 9p: Fix initialisation of netfs_inode for 9p
     - libsubcmd: Fix memory leak in uniq()
     - virtio_net: Fix "‘%d’ directive writing between 1 and 11 bytes into a
       region of size 10" warnings
     - blk-mq: fix IO hang from sbitmap wakeup race
     - ceph: reinitialize mds feature bit even when session in open
     - ceph: fix deadlock or deadcode of misusing dget()
     - ceph: fix invalid pointer access if get_quota_realm return ERR_PTR
     - drm/amd/powerplay: Fix kzalloc parameter 'ATOM_Tonga_PPM_Table' in
       'get_platform_power_management_table()'
     - drm/amdgpu: Fix with right return code '-EIO' in
       'amdgpu_gmc_vram_checking()'
     - drm/amdgpu: Release 'adev->pm.fw' before return in
       'amdgpu_device_need_post()'
     - perf: Fix the nr_addr_filters fix
     - wifi: cfg80211: fix RCU dereference in __cfg80211_bss_update
     - drm: using mul_u32_u32() requires linux/math64.h
     - scsi: isci: Fix an error code problem in isci_io_request_build()
     - [armhf] regulator: ti-abb: don't use devm_platform_ioremap_resource_byname
       for shared interrupt register
     - scsi: core: Move scsi_host_busy() out of host lock for waking up EH
       handler
     - HID: hidraw: fix a problem of memory leak in hidraw_release()
     - ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()
     - ipv4: raw: add drop reasons
     - ipmr: fix kernel panic when forwarding mcast packets
     - tcp: add sanity checks to rx zerocopy
     - ixgbe: Refactor returning internal error codes
     - ixgbe: Refactor overtemp event handling
     - ixgbe: Fix an error handling path in ixgbe_read_iosf_sb_reg_x550()
     - ipv6: Ensure natural alignment of const ipv6 loopback and router addresses
     - llc: call sock_orphan() at release time
     - bridge: mcast: fix disabled snooping after long uptime
     - netfilter: conntrack: correct window scaling with retransmitted SYN
     - netfilter: nf_tables: restrict tunnel object to NFPROTO_NETDEV
     - netfilter: nf_log: replace BUG_ON by WARN_ON_ONCE when putting logger
     - netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom
       expectations
     - net: ipv4: fix a memleak in ip_setup_cork
     - af_unix: fix lockdep positive in sk_diag_dump_icons()
     - net: sysfs: Fix /sys/class/net/<iface> path
     - [arm64] irq: set the correct node for shadow call stack
     - Revert "drm/amd/display: Disable PSR-SU on Parade 0803 TCON again"
     - [arm64] drm/msm/dsi: Enable runtime PM
     - gve: Fix use-after-free vulnerability
     - bonding: remove print in bond_verify_device_path
     - drm/amdgpu: Fix missing error code in 'gmc_v6/7/8/9_0_hw_init()'
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.78
     - ext4: regenerate buddy after block freeing failed if under fc replay
     - [arm64] dmaengine: ti: k3-udma: Report short packet errors
     - [arm64] dmaengine: fsl-qdma: Fix a memory leak related to the status queue
       DMA
     - [arm64] dmaengine: fsl-qdma: Fix a memory leak related to the queue
       command DMA
     - [arm64] phy: renesas: rcar-gen3-usb2: Fix returning wrong error code
     - dmaengine: fix is_slave_direction() return false when DMA_DEV_TO_DEV
     - [armhf] phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP
     - cifs: failure to add channel on iface should bump up weight
     - [arm64] drm/msms/dp: fixed link clock divider bits be over written in BPC
       unknown case
     - [arm64] drm/msm/dp: return correct Colorimetry for
       DP_TEST_DYNAMIC_RANGE_CEA case
     - [arm64] drm/msm/dpu: check for valid hw_pp in
       dpu_encoder_helper_phys_cleanup
     - net: stmmac: xgmac: fix handling of DPP safety error for DMA channels
     - wifi: mac80211: fix waiting for beacons logic
     - netdevsim: avoid potential loop in nsim_dev_trap_report_work()
     - net: atlantic: Fix DMA mapping for PTP hwts ring
     - tunnels: fix out of bounds access when building IPv6 PMTU error
     - atm: idt77252: fix a memleak in open_card_ubr0
     - [armhf] hwmon: (aspeed-pwm-tacho) mutex for tach reading
     - [x86] hwmon: (coretemp) Fix out-of-bounds memory access
     - [x86] hwmon: (coretemp) Fix bogus core_id to attr name mapping
     - inet: read sk->sk_family once in inet_recv_error()
     - [x86] drm/i915/gvt: Fix uninitialized variable in handle_mmio()
     - rxrpc: Fix response to PING RESPONSE ACKs to a dead call
     - tipc: Check the bearer type before calling tipc_udp_nl_bearer_add()
     - af_unix: Call kfree_skb() for dead unix_(sk)->oob_skb in GC.
     - ppp_async: limit MRU to 64K
     - selftests: cmsg_ipv6: repeat the exact packet
     - netfilter: nft_compat: narrow down revision to unsigned 8-bits
     - netfilter: nft_compat: reject unused compat flag
     - netfilter: nft_compat: restrict match/target protocol to u16
     - drm/amd/display: Implement bounds check for stream encoder creation in
       DCN301
     - netfilter: nft_ct: reject direction for ct id
     - netfilter: nft_set_pipapo: store index in scratch maps
     - netfilter: nft_set_pipapo: add helper to release pcpu scratch area
     - netfilter: nft_set_pipapo: remove scratch_aligned pointer
     - fs/ntfs3: Fix an NULL dereference bug
     - scsi: core: Move scsi_host_busy() out of host lock if it is for
       per-command
     - blk-iocost: Fix an UBSAN shift-out-of-bounds warning
     - fs: dlm: don't put dlm_local_addrs on heap (Closes: #1063338)
     - mtd: parsers: ofpart: add workaround for #size-cells 0
     - ALSA: usb-audio: Add delay quirk for MOTU M Series 2nd revision
     - ALSA: usb-audio: Add a quirk for Yamaha YIT-W12TX transmitter
     - ALSA: usb-audio: add quirk for RODE NT-USB+
     - USB: serial: qcserial: add new usb-id for Dell Wireless DW5826e
     - USB: serial: option: add Fibocom FM101-GL variant
     - USB: serial: cp210x: add ID for IMST iM871A-USB
     - [arm64,armhf] usb: dwc3: host: Set XHCI_SG_TRB_CACHE_SIZE_QUIRK
     - [arm64,armhf] usb: host: xhci-plat: Add support for
       XHCI_SG_TRB_CACHE_SIZE_QUIRK
     - hrtimer: Report offline hrtimer enqueue
     - Input: i8042 - fix strange behavior of touchpad on Clevo NS70PU
     - Input: atkbd - skip ATKBD_CMD_SETLEDS when skipping ATKBD_CMD_GETID
       (Closes: #1061521)
     - io_uring/net: fix sr->len for IORING_OP_RECV with MSG_WAITALL and buffers
     - Revert "ASoC: amd: Add new dmi entries for acp5x platform"
     - vhost: use kzalloc() instead of kmalloc() followed by memset()
       (CVE-2024-0340)
     - RDMA/irdma: Fix support for 64k pages
     - f2fs: add helper to check compression level (Closes: #1063422)
     - block: treat poll queue enter similarly to timeouts
     - clocksource: Skip watchdog check for large watchdog intervals
     - net: stmmac: xgmac: use #define for string constants
     - ALSA: usb-audio: Sort quirk table entries
     - net: stmmac: xgmac: fix a typo of register name in DPP safety handling
     - netfilter: nft_set_rbtree: skip end interval element from gc
       (CVE-2024-26581)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.79
     - work around gcc bugs with 'asm goto' with outputs
     - update workarounds for gcc "asm goto" issue
     - btrfs: add and use helper to check if block group is used
     - btrfs: do not delete unused block group if it may be used soon
     - btrfs: forbid creating subvol qgroups
     - btrfs: do not ASSERT() if the newly created subvolume already got read
       (CVE-2024-23850)
     - btrfs: forbid deleting live subvol qgroup
     - btrfs: send: return EOPNOTSUPP on unknown flags
     - btrfs: don't reserve space for checksums when writing to nocow files
     - btrfs: reject encoded write if inode has nodatasum flag set
     - btrfs: don't drop extent_map for free space inode on write error
     - driver core: Fix device_link_flag_is_sync_state_only()
     - wifi: iwlwifi: Fix some error codes
     - wifi: iwlwifi: uninitialized variable in iwl_acpi_get_ppag_table()
     - of: property: Improve finding the supplier of a remote-endpoint property
     - net: openvswitch: limit the number of recursions from action sets
       (CVE-2024-1151)
     - lan966x: Fix crash when adding interface under a lag
     - tls/sw: Use splice_eof() to flush
     - tls: extract context alloc/initialization out of tls_set_sw_offload
     - net: tls: factor out tls_*crypt_async_wait()
     - tls: fix race between async notify and socket close (CVE-2024-26583)
     - net: tls: fix use-after-free with partial reads and async decrypt
       (CVE-2024-26582)
     - net: tls: fix returned read length with async decrypt
     - ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work()
     - net: sysfs: Fix /sys/class/net/<iface> path for statistics
     - nouveau/svm: fix kvcalloc() argument order
     - [mips*] Add 'memory' clobber to csum_ipv6_magic() inline assembler
     - i40e: Do not allow untrusted VF to remove administratively set MAC
     - i40e: Fix waiting for queues of all VSIs to be disabled
     - tracing/trigger: Fix to return error if failed to alloc snapshot
     - mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again
     - scsi: storvsc: Fix ring buffer size calculation
     - dm-crypt, dm-verity: disable tasklets
     - [x86] ASoC: amd: yc: Add DMI quirk for MSI Bravo 15 C7VF
     - ALSA: hda/realtek: Fix the external mic not being recognised for Acer
       Swift 1 SF114-32
     - ALSA: hda/realtek: Enable Mute LED on HP Laptop 14-fq0xxx
     - HID: i2c-hid-of: fix NULL-deref on failed power up
     - HID: wacom: generic: Avoid reporting a serial of '0' to userspace
     - HID: wacom: Do not register input devices until after hid_hw_start
     - iio: hid-sensor-als: Return 0 for HID_USAGE_SENSOR_TIME_TIMESTAMP
     - usb: ucsi: Add missing ppm_lock
     - usb: ulpi: Fix debugfs directory leak
     - usb: ucsi_acpi: Fix command completion handling
     - USB: hub: check for alternate port before enabling A_ALT_HNP_SUPPORT
     - usb: f_mass_storage: forbid async queue when shutdown happen
     - usb: dwc3: gadget: Fix NULL pointer dereference in dwc3_gadget_suspend
     - driver core: fw_devlink: Improve detection of overlapping cycles
     - cifs: fix underflow in parse_server_interfaces()
     - i2c: qcom-geni: Correct I2C TRE sequence
     - irqchip/loongson-eiointc: Use correct struct type in
       eiointc_domain_alloc()
     - i2c: pasemi: split driver into two separate modules
     - i2c: i801: Fix block process call transactions (CVE-2024-26593)
     - modpost: trim leading spaces when processing source files list
     - mptcp: get rid of msk->subflow
     - mptcp: fix data re-injection from stale subflow
     - mptcp: drop the push_pending field
     - mptcp: check addrs list in userspace_pm_get_local_id
     - media: Revert "media: rkisp1: Drop IRQF_SHARED"
     - scsi: Revert "scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock"
     - Revert "drm/amd: flush any delayed gfxoff on suspend entry"
     - drm/virtio: Set segment size for virtio_gpu device
     - lsm: fix the logic in security_inode_getsecctx()
     - firewire: core: correct documentation of fw_csr_string() kernel API
     - ALSA: hda/realtek: Apply headset jack quirk for non-bass alc287 thinkpads
     - kbuild: Fix changing ELF file type for output of gen_btf for big endian
     - nfc: nci: free rx_data_reassembly skb on NCI device cleanup
     - net: hsr: remove WARN_ONCE() in send_hsr_supervision_frame()
     - net: stmmac: do not clear TBS enable bit on link up/down
     - xen-netback: properly sync TX responses
     - modpost: propagate W=1 build option to modpost
     - modpost: Don't let "driver"s reference .exit.*
     - linux/init: remove __memexit* annotations
     - modpost: Include '.text.*' in TEXT_SECTIONS
     - modpost: Add '.ltext' and '.ltext.*' to TEXT_SECTIONS
     - ALSA: hda/realtek: Enable headset mic on Vaio VJFE-ADL
     - ASoC: codecs: wcd938x: handle deferred probe
     - ALSA: hda/cs8409: Suppress vmaster control for Dolphin models
     - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power
     - [arm*] binder: signal epoll threads of self-work (CVE-2024-26606)
     - misc: fastrpc: Mark all sessions as invalid in cb_remove
     - ext4: fix double-free of blocks due to wrong extents moved_len
     - ext4: avoid bb_free and bb_fragments inconsistency in mb_free_blocks()
     - tracing: Fix wasted memory in saved_cmdlines logic
     - staging: iio: ad5933: fix type mismatch regression
     - iio: magnetometer: rm3100: add boundary check for the value read from
       RM3100_REG_TMRC
     - iio: core: fix memleak in iio_device_register_sysfs
     - iio: commom: st_sensors: ensure proper DMA alignment
     - iio: accel: bma400: Fix a compilation problem
     - iio: adc: ad_sigma_delta: ensure proper DMA alignment
     - iio: imu: adis: ensure proper DMA alignment
     - iio: imu: bno055: serdev requires REGMAP
     - media: rc: bpf attach/detach requires write permission
     - ksmbd: free aux buffer if ksmbd_iov_pin_rsp_read fails
     - xfrm: Remove inner/outer modes from output path
     - xfrm: Remove inner/outer modes from input path
     - [arm64] drm/msm: Wire up tlb ops
     - drm/prime: Support page array >= 4GB
     - drm/amd/display: Increase frame-larger-than for all display_mode_vba files
     - drm/amd/display: Preserve original aspect ratio in create stream
     - hv_netvsc: Fix race condition between netvsc_probe and netvsc_remove
     - ring-buffer: Clean ring_buffer_poll_wait() error return
     - nfp: flower: fix hardware offload for the transfer layer port
     - [powerpc*] 64: Set task pt_regs->link to the LR value on scv entry
     - [powerpc*] cputable: Add missing PPC_FEATURE_BOOKE on PPC64 Book-E
     - [powerpc*] pseries: fix accuracy of stolen time
     - [x86] fpu: Stop relying on userspace for info to fault in xsave buffer
       (CVE-2024-26603)
     - [x86] KVM: x86/pmu: Fix type length error when reading pmu->fixed_ctr_ctrl
     - [x86] mm/ident_map: Use gbpages only where full GB page should be mapped.
     - io_uring/net: fix multishot accept overflow handling
     - mmc: slot-gpio: Allow non-sleeping GPIO ro
     - ALSA: hda/realtek: fix mute/micmute LED For HP mt645
     - ALSA: hda/conexant: Add quirk for SWS JS201D
     - nilfs2: fix data corruption in dsync block recovery for small block sizes
     - nilfs2: fix hang in nilfs_lookup_dirty_data_buffers()
     - crypto: ccp - Fix null pointer dereference in
       __sev_platform_shutdown_locked
     - nfp: use correct macro for LengthSelect in BAR config
     - nfp: flower: prevent re-adding mac index for bonded port
     - wifi: cfg80211: fix wiphy delayed work queueing
     - wifi: mac80211: reload info pointer in ieee80211_tx_dequeue()
     - irqchip/irq-brcmstb-l2: Add write memory barrier before exit
     - irqchip/gic-v3-its: Fix GICv4.1 VPE affinity update
     - zonefs: Improve error handling
     - mmc: sdhci-pci-o2micro: Fix a warm reboot issue that disk can't be
       detected by BIOS (Closes: #1056056)
     - [x86] ASoC: amd: yc: Add DMI quirk for Lenovo Ideapad Pro 5 16ARP8
     - fs: relax mount_setattr() permission checks
     - net: ethernet: ti: cpsw: enable mac_managed_pm to fix mdio
     - [s390x] qeth: Fix potential loss of L3-IP@ in case of network issues
     - net: ethernet: ti: cpsw_new: enable mac_managed_pm to fix mdio
     - hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed
     - ceph: prevent use-after-free in encode_cap_msg()
     - fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super
       (CVE-2024-0841)
     - mm: hugetlb pages should not be reserved by shmat() if SHM_NORESERVE
     - of: property: fix typo in io-channels
     - can: netlink: Fix TDCO calculation using the old data bittiming
     - can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock
     - can: j1939: Fix UAF in j1939_sk_match_filter during
       setsockopt(SO_J1939_FILTER)
     - pmdomain: core: Move the unused cleanup to a _sync initcall
     - fs/proc: do_task_stat: move thread_group_cputime_adjusted() outside of
       lock_task_sighand()
     - tracing: Inform kmemleak of saved_cmdlines allocation
     - xfrm: Use xfrm_state selector for BEET input
     - xfrm: Silence warnings triggerable by bad packets
     - tls: fix NULL deref on tls_sw_splice_eof() with empty record
     - md: bypass block throttle for superblock update
     - wifi: mwifiex: Support SD8978 chipset
     - wifi: mwifiex: add extra delay for firmware ready
     - bus: moxtet: Add spi device table
     - [arm64] dts: qcom: msm8916: Enable blsp_dma by default
     - [arm64] dts: qcom: msm8916: Make blsp_dma controlled-remotely
     - [arm64] dts: qcom: sdm845: fix USB SS wakeup
     - [arm64] dts: qcom: sm8150: fix USB SS wakeup
     - wifi: mwifiex: fix uninitialized firmware_stat
     - crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init
     - block: fix partial zone append completion handling in req_bio_endio()
     - netfilter: ipset: fix performance regression in swap operation
     - netfilter: ipset: Missing gc cancellations fixed
     - nfsd: fix RELEASE_LOCKOWNER
     - nfsd: don't take fi_lock in nfsd_break_deleg_cb()
     - hrtimer: Ignore slack time for RT tasks in schedule_hrtimeout_range()
     - RDMA/irdma: Ensure iWarp QP queue memory is OS paged aligned
     - smb: client: fix potential OOBs in smb2_parse_contexts() (CVE-2023-52434)
     - smb: client: fix parsing of SMB3.1.1 POSIX create context
     - net: prevent mss overflow in skb_segment() (CVE-2023-52435)
     - bpf: Add struct for bin_args arg in bpf_bprintf_prepare
     - bpf: Do cleanup in bpf_bprintf_cleanup only when needed
     - bpf: Remove trace_printk_lock
     - userfaultfd: fix mmap_changing checking in mfill_atomic_hugetlb
     - dmaengine: ioat: Free up __cleanup() name
     - apparmor: Free up __cleanup() name
     - locking: Introduce __cleanup() based infrastructure
     - kbuild: Drop -Wdeclaration-after-statement
     - sched/membarrier: reduce the ability to hammer on sys_membarrier
       (CVE-2024-26602)
     - of: property: Add in-ports/out-ports support to of_graph_get_port_parent()
     - nilfs2: fix potential bug in end_buffer_async_write
     - nilfs2: replace WARN_ONs for invalid DAT metadata block requests
     - dm: limit the number of targets and parameter size area (CVE-2024-23851,
       CVE-2023-52429)
     - [arm64:]Subscribe Microsoft Azure Cobalt 100 to ARM Neoverse N2 errata
     - mlxsw: spectrum_acl_tcam: Fix stack corruption (CVE-2024-26586)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.80
     - net/sched: Retire CBQ qdisc
     - net/sched: Retire ATM qdisc
     - net/sched: Retire dsmark qdisc
     - sched/rt: Disallow writing invalid values to sched_rt_period_us
     - sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset
     - scsi: target: core: Add TMF to tmr_list handling
     - cifs: open_cached_dir should not rely on primary channel
     - wifi: cfg80211: fix missing interfaces when dumping
     - wifi: mac80211: fix race condition on enabling fast-xmit
     - fbdev: savage: Error out if pixclock equals zero
     - fbdev: sis: Error out if pixclock equals zero
     - block: Fix WARNING in _copy_from_iter
     - smb: Work around Clang __bdos() type confusion
     - cifs: translate network errors on send to -ECONNABORTED
     - ahci: asm1166: correct count of reported ports
     - aoe: avoid potential deadlock at set_capacity
     - ahci: add 43-bit DMA address quirk for ASMedia ASM1061 controllers
     - [mips*] reserve exception vector space ONLY ONCE
     - [x86] platform/x86: touchscreen_dmi: Add info for the TECLAST X16 Plus
       tablet
     - ext4: avoid dividing by 0 in mb_update_avg_fragment_size() when block
       bitmap corrupt
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_try_best_found()
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_find_by_goal()
     - Input: goodix - accept ACPI resources with gpio_count == 3 && gpio_int_idx
       == 0
     - [armhf] dmaengine: ti: edma: Add some null pointer checks to the
       edma_probe
     - [arm64] regulator: pwm-regulator: Add validity checks in continuous
       .get_voltage
     - nvmet-tcp: fix nvme tcp ida memory leak
     - usb: ucsi_acpi: Quirk to ack a connector change ack cmd
     - ALSA: usb-audio: Check presence of valid altsetting control
     - [armhf] ASoC: sunxi: sun4i-spdif: Add support for Allwinner H616
     - Input: xpad - add Lenovo Legion Go controllers
     - netfilter: conntrack: check SCTP_CID_SHUTDOWN_ACK for vtag setting in
       sctp_new
     - drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz
     - [x86] ASoC: wm_adsp: Don't overwrite fwf_name with the default
     - ALSA: usb-audio: Ignore clock selector errors for single connection
     - nvme-fc: do not wait in vain when unloading module
     - nvmet-fcloop: swap the list_add_tail arguments
     - nvmet-fc: release reference on target port
     - nvmet-fc: defer cleanup using RCU properly
     - nvmet-fc: hold reference on hostport match
     - nvmet-fc: abort command when there is no binding
     - nvmet-fc: avoid deadlock on delete association path
     - nvmet-fc: take ref count on tgtport before delete assoc
     - smb: client: increase number of PDUs allowed in a compound request
     - ext4: correct the hole length returned by ext4_map_blocks()
     - Input: i8042 - add Fujitsu Lifebook U728 to i8042 quirk table
     - wifi: mac80211: set station RX-NSS on reconfig
     - wifi: mac80211: adding missing drv_mgd_complete_tx() call
     - efi: runtime: Fix potential overflow of soft-reserved region size
     - efi: Don't add memblocks for soft-reserved memory
     - [x86] hwmon: (coretemp) Enlarge per package core count limit
     - scsi: lpfc: Use unsigned type for num_sge
     - scsi: ufs: core: Remove the ufshcd_release() in
       ufshcd_err_handling_prepare()
     - firewire: core: send bus reset promptly on gap count error
     - drm/amdgpu: skip to program GFXDEC registers for suspend abort
     - drm/amdgpu: reset gpu for s3 suspend abort case
     - smb: client: set correct d_type for reparse points under DFS mounts
     - virtio-blk: Ensure no requests in virtqueues before deleting vqs.
     - smb3: clarify mount warning
     - [amd64] IB/hfi1: Fix sdma.h tx->num_descs off-by-one error
     - drm/ttm: Fix an invalid freeing on already freed page in error path
     - [s390x] cio: fix invalid -EBUSY on ccw_device_start
     - ata: libata-core: Do not try to set sleeping devices to standby
     - dm-crypt: recheck the integrity tag after a failure
     - dm-integrity: recheck the integrity tag after a failure
     - dm-crypt: don't modify the data when using authenticated encryption
     - dm-verity: recheck the hash after a failure
     - cxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS
       window
     - scsi: target: pscsi: Fix bio_put() for error case
     - scsi: core: Consult supported VPD page list prior to fetching page
     - mm/swap: fix race when skipping swapcache
     - mm: memcontrol: clarify swapaccount=0 deprecation warning
     - [x86] platform/x86: intel-vbtn: Stop calling "VBDL" from notify_handler
     - [x86] platform/x86: touchscreen_dmi: Allow partial (prefix) matches for
       ACPI names
     - cachefiles: fix memory leak in cachefiles_add_cache()
     - md: Fix missing release of 'active_io' for flush
     - [arm64] KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler
     - [arm64] KVM: arm64: vgic-its: Test for valid IRQ in
       its_sync_lpi_pending_table()
     - gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp()
     - crypto: virtio/akcipher - Fix stack overflow on memcpy
     - irqchip/gic-v3-its: Do not assume vPE tables are preallocated
     - irqchip/sifive-plic: Enable interrupt if needed before EOI
     - PCI/MSI: Prevent MSI hardware interrupt number truncation
     - l2tp: pass correct message length to ip6_append_data
     - [x86] returnthunk: Allow different return thunks
     - [x86] Revert "x86/alternative: Make custom return thunk unconditional"
     - [x86] alternative: Make custom return thunk unconditional
     - dm-integrity, dm-verity: reduce stack usage for recheck
     - erofs: fix refcount on the metabuf used for inode lookup
     - serial: amba-pl011: Fix DMA transmission in RS485 mode
     - [arm64,armhf] usb: dwc3: gadget: Don't disconnect if not started
     - usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs
     - usb: roles: fix NULL pointer issue when put module's reference
     - usb: roles: don't get/set_role() when usb_role_switch is unregistered
     - mptcp: make userspace_pm_append_new_local_addr static
     - mptcp: add needs_id for userspace appending addr
     - mptcp: fix lockless access in subflow ULP diag
     - Revert "drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz"
     - [amd64] IB/hfi1: Fix a memleak in init_credit_return
     - RDMA/bnxt_re: Return error for SRQ resize
     - RDMA/irdma: Fix KASAN issue with tasklet
     - RDMA/irdma: Validate max_send_wr and max_recv_wr
     - RDMA/irdma: Set the CQ read threshold for GEN 1
     - RDMA/irdma: Add AE for too many RNRS
     - RDMA/srpt: Support specifying the srpt_service_guid parameter
     - iommufd/iova_bitmap: Bounds check mapped::pages access
     - iommufd/iova_bitmap: Switch iova_bitmap::bitmap to an u8 array
     - iommufd/iova_bitmap: Consider page offset for the pages to be pinned
     - RDMA/qedr: Fix qedr_create_user_qp error flow
     - [arm64] dts: rockchip: set num-cs property for spi on px30
     - RDMA/srpt: fix function pointer cast warnings
     - bpf, scripts: Correct GPL license name
     - scsi: smartpqi: Fix disable_managed_interrupts
     - net: bridge: switchdev: Skip MDB replays of deferred events on offload
     - net: bridge: switchdev: Ensure deferred event delivery on unoffload
     - dccp/tcp: Unhash sk from ehash for tb2 alloc failure after
       check_estalblished().
     - nouveau: fix function cast warnings
     - [x86] numa: Fix the address overlap check in numa_fill_memblks()
     - [x86] numa: Fix the sort compare func used in numa_fill_memblks()
     - net: stmmac: Fix incorrect dereference in interrupt handlers
     - ipv4: properly combine dev_base_seq and ipv4.dev_addr_genid
     - ipv6: properly combine dev_base_seq and ipv6.dev_addr_genid
     - ata: ahci_ceva: fix error handling for Xilinx GT PHY support
     - bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel
     - afs: Increase buffer size in afs_update_volume_status()
     - ipv6: sr: fix possible use-after-free and null-ptr-deref
     - net: dev: Convert sa_data to flexible array in struct sockaddr
     - [arm64] sme: Restore SME registers on exit from suspend
     - [x86] platform/x86: thinkpad_acpi: Only update profile if successfully
       converted
     - [s390x] use the correct count for __iowrite64_copy()
     - bpf, sockmap: Fix NULL pointer dereference in
       sk_psock_verdict_data_ready()
     - tls: break out of main loop when PEEK gets a non-data record
     - tls: stop recv() if initial process_rx_list gave us non-DATA
     - tls: don't skip over different type records from the rx_list
     - netfilter: nf_tables: set dormant flag on hook register failure
     - netfilter: flowtable: simplify route logic
     - netfilter: nft_flow_offload: reset dst in route object after setting up
       flow
     - netfilter: nft_flow_offload: release dst in case direct xmit path is used
     - netfilter: nf_tables: rename function to destroy hook list
     - netfilter: nf_tables: register hooks last when adding new chain/flowtable
     - netfilter: nf_tables: use kzalloc for hook allocation
     - net: mctp: put sock on tag allocation failure
     - Fix write to cloned skb in ipv6_hop_ioam()
     - net: phy: realtek: Fix rtl8211f_config_init() for RTL8211F(D)(I)-VD-CG PHY
     - drm/syncobj: call drm_syncobj_fence_add_wait when WAIT_AVAILABLE flag is
       set
     - drm/amd/display: Fix memory leak in dm_sw_fini()
     - [arm64,armhf] i2c: imx: when being a target, mark the last read as
       processed
     - erofs: simplify compression configuration parser
     - erofs: fix inconsistent per-file compression format (CVE-2024-26590)
     - fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio
     - mm: zswap: fix missing folio cleanup in writeback race path
     - mptcp: userspace pm send RM_ADDR for ID 0
     - mptcp: add needs_id for netlink appending addr
     - ata: ahci: add identifiers for ASM2116 series adapters
     - ahci: Extend ASM1061 43-bit DMA address quirk to other ASM106x parts
     - arp: Prevent overflow in arp_req_get().
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.81
     - netfilter: nf_tables: disallow timeout for anonymous sets (CVE-2023-52620)
     - [arm64] drm/meson: fix unbind path if HDMI fails to bind
     - [arm64] drm/meson: Don't remove bridges which are created by other drivers
     - scsi: core: Add struct for args to execution functions
     - scsi: sd: usb_storage: uas: Access media prior to querying device
       properties
     - af_unix: Fix task hung while purging oob_skb in GC.
     - of: overlay: Reorder struct fragment fields kerneldoc
     - usb: gadget: Properly configure the device for remote wakeup
     - Input: xpad - add constants for GIP interface numbers
     - [arm64] iommu/arm-smmu-v3: Acknowledge pri/event queue overflow if any
     - [arm64] iommu/arm-smmu-qcom: Limit the SMR groups to 128
     - RDMA/core: Fix multiple -Warray-bounds warnings
     - mm: huge_memory: don't force huge page alignment on 32 bit
       (CVE-2024-26621) (Closes: #1024149)
     - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter
     - netlink: add nla be16/32 types to minlen array
     - net: ip_tunnel: prevent perpetual headroom growth
     - net: mctp: take ownership of skb in mctp_local_output
     - tun: Fix xdp_rxq_info's queue_index when detaching
     - cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call
       back
     - net: veth: clear GRO when clearing XDP even when down
     - ipv6: fix potential "struct net" leak in inet6_rtm_getaddr()
     - lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is
       detected
     - veth: try harder when allocating queue memory
     - net: usb: dm9601: fix wrong return value in dm9601_mdio_read
     - net: lan78xx: fix "softirq work is pending" error
     - uapi: in6: replace temporary label with rfc9486
     - stmmac: Clear variable when destroying workqueue
     - Bluetooth: hci_sync: Check the correct flag before starting a scan
     - Bluetooth: Avoid potential use-after-free in hci_error_reset
     - Bluetooth: hci_sync: Fix accept_list when attempting to suspend
     - Bluetooth: hci_event: Fix wrongly recorded wakeup BD_ADDR
     - Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST
     - Bluetooth: Enforce validation on max value of connection interval
     - Bluetooth: qca: Fix wrong event type for patch config command
     - Bluetooth: hci_qca: mark OF related data as maybe unused
     - Bluetooth: hci_qca: Add support for QTI Bluetooth chip wcn6855
     - Bluetooth: btqca: use le32_to_cpu for ver.soc_id
     - Bluetooth: btqca: Add WCN3988 support
     - Bluetooth: qca: use switch case for soc type behavior
     - Bluetooth: qca: add support for WCN7850
     - Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT
     - netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()
     - netfilter: let reset rules clean out conntrack entries
     - netfilter: bridge: confirm multicast packets before passing them up the
       stack
     - rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back
     - igb: extend PTP timestamp adjustments to i211
     - net: hsr: Use correct offset for HSR TLV values in supervisory HSR frames
     - tls: decrement decrypt_pending if no async completion will be called
     - tls: fix peeking with sync+async decryption
     - efi/capsule-loader: fix incorrect allocation size
     - ALSA: Drop leftover snd-rtctimer stuff from Makefile
     - [arm64,armhf] drm/tegra: Remove existing framebuffer only if we support
       display
     - fbcon: always restore the old font data in fbcon_do_set_font()
     - afs: Fix endless loop in directory parsing
     - of: property: fw_devlink: Fix stupid bug in remote-endpoint parsing
     - tomoyo: fix UAF write bug in tomoyo_write_control() (CVE-2024-26622)
     - ALSA: firewire-lib: fix to check cycle continuity
     - ALSA: hda/realtek: Enable Mute LED on HP 840 G8 (MB 8AB8)
     - ALSA: hda/realtek: fix mute/micmute LED For HP mt440
     - landlock: Fix asymmetric private inodes referring
     - gtp: fix use-after-free and null-ptr-deref in gtp_newlink()
     - wifi: nl80211: reject iftype change with mesh ID change
     - btrfs: fix double free of anonymous device after snapshot creation failure
     - btrfs: dev-replace: properly validate device names
     - btrfs: send: don't issue unnecessary zero writes for trailing hole
     - Revert "drm/amd/pm: resolve reboot exception for si oland"
     - drm/buddy: fix range bias
     - [arm64] dmaengine: fsl-qdma: fix SoC may hang on 16 byte unaligned read
     - [arm64] crypto: arm64/neonbs - fix out-of-bounds access on short input
     - [arm64] dmaengine: fsl-qdma: init irq after reg initialization
     - [arm64,armhf] mmc: mmci: stm32: fix DMA API overlapping mappings warning
     - mmc: core: Fix eMMC initialization with 1-bit bus connection
     - [arm64] mmc: sdhci-xenon: add timeout for PHY init complete
     - [arm64] mmc: sdhci-xenon: fix PHY init clock stability
     - efivarfs: Request at most 512 bytes for variable names
     - [arm64] pmdomain: qcom: rpmhpd: Fix enabled_corner aggregation
     - [x86] e820: Don't reserve SETUP_RNG_SEED in e820
     - [x86] cpu/intel: Detect TME keyid bits before setting MTRR mask registers
     - mptcp: fix data races on local_id
     - mptcp: fix data races on remote_id
     - mptcp: fix duplicate subflow creation
     - mptcp: continue marking the first subflow as UNCONNECTED
     - mptcp: map v4 address to v6 when destroying subflow
     - mptcp: push at DSS boundaries
     - mptcp: fix snd_wnd initialization for passive socket
     - mptcp: fix double-free on socket dismantle
     - mptcp: fix possible deadlock in subflow diag
     - RDMA/core: Refactor rdma_bind_addr (CVE-2023-2176)
     - RDMA/core: Update CMA destination address on rdma_resolve_addr
     - efi: libstub: use EFI_LOADER_CODE region when moving the kernel in memory
     - [x86] boot/compressed: Rename efi_thunk_64.S to efi-mixed.S
     - [x86] boot/compressed: Move 32-bit entrypoint code into .text section
     - [x86] boot/compressed: Move bootargs parsing out of 32-bit startup code
     - [x86] boot/compressed: Move efi32_pe_entry into .text section
     - [x86] boot/compressed: Move efi32_entry out of head_64.S
     - [x86] boot/compressed: Move efi32_pe_entry() out of head_64.S
     - [x86] boot/compressed, efi: Merge multiple definitions of image_offset
       into one
     - [x86] boot/compressed: Simplify IDT/GDT preserve/restore in the EFI thunk
     - [x86] boot/compressed: Avoid touching ECX in startup32_set_idt_entry()
     - [x86] boot/compressed: Pull global variable reference into
       startup32_load_idt()
     - [x86] boot/compressed: Move startup32_load_idt() into .text section
     - [x86] boot/compressed: Move startup32_load_idt() out of head_64.S
     - [x86] boot/compressed: Move startup32_check_sev_cbit() into .text
     - [x86] boot/compressed: Move startup32_check_sev_cbit() out of head_64.S
     - [x86] boot/compressed: Adhere to calling convention in
       get_sev_encryption_bit()
     - [x86] boot/compressed: Only build mem_encrypt.S if AMD_MEM_ENCRYPT=y
     - efi: verify that variable services are supported
     - [x86] efi: Make the deprecated EFI handover protocol optional
     - [x86] boot: Robustify calling startup_{32,64}() from the decompressor code
     - [x86] efistub: Branch straight to kernel entry point from C code
     - [x86] decompressor: Store boot_params pointer in callee save register
     - [x86] decompressor: Assign paging related global variables earlier
     - [x86] decompressor: Call trampoline as a normal function
     - [x86] decompressor: Use standard calling convention for trampoline
     - [x86] decompressor: Avoid the need for a stack in the 32-bit trampoline
     - [x86] decompressor: Call trampoline directly from C code
     - [x86] decompressor: Only call the trampoline when changing paging levels
     - [x86] decompressor: Pass pgtable address to trampoline directly
     - [x86] decompressor: Merge trampoline cleanup with switching code
     - [x86] decompressor: Move global symbol references to C code
     - decompress: Use 8 byte alignment
     - drm/amd/display: Increase frame warning limit with KASAN or KCSAN in dml
     - NFS: Fix data corruption caused by congestion.
     - NFSD: Simplify READ_PLUS
     - NFSD: Remove redundant assignment to variable host_err
     - nfsd: ignore requests to disable unsupported versions
     - nfsd: move nfserrno() to vfs.c
     - nfsd: allow disabling NFSv2 at compile time
     - exportfs: use pr_debug for unreachable debug statements
     - NFSD: Flesh out a documenting comment for filecache.c
     - NFSD: Clean up nfs4_preprocess_stateid_op() call sites
     - NFSD: Trace stateids returned via DELEGRETURN
     - NFSD: Trace delegation revocations
     - NFSD: Use const pointers as parameters to fh_ helpers
     - NFSD: Update file_hashtbl() helpers
     - NFSD: Clean up nfsd4_init_file()
     - NFSD: Add a nfsd4_file_hash_remove() helper
     - NFSD: Clean up find_or_add_file()
     - NFSD: Refactor find_file()
     - NFSD: Use rhashtable for managing nfs4_file objects
     - NFSD: Fix licensing header in filecache.c
     - filelock: add a new locks_inode_context accessor function
     - lockd: use locks_inode_context helper
     - nfsd: use locks_inode_context helper
     - nfsd: fix up the filecache laundrette scheduling
     - NFSD: Use struct_size() helper in alloc_session()
     - lockd: set missing fl_flags field when retrieving args
     - lockd: ensure we use the correct file descriptor when unlocking
     - lockd: fix file selection in nlmsvc_cancel_blocked
     - trace: Relocate event helper files
     - NFSD: refactoring courtesy_client_reaper to a generic low memory shrinker
     - NFSD: add support for sending CB_RECALL_ANY
     - NFSD: add delegation reaper to react to low memory condition
     - NFSD: add CB_RECALL_ANY tracepoints
     - NFSD: Use only RQ_DROPME to signal the need to drop a reply
     - NFSD: Avoid clashing function prototypes
     - NFSD: Use set_bit(RQ_DROPME)
     - NFSD: register/unregister of nfsd-client shrinker at nfsd startup/shutdown
       time
     - NFSD: replace delayed_work with work_struct for nfsd_client_shrinker
     - nfsd: don't destroy global nfs4_file table in per-net shutdown
     - [arm64] efi: Limit allocations to 48-bit addressable physical region
     - efi: efivars: prevent double registration
     - [x86] efistub: Simplify and clean up handover entry code
     - [x86] decompressor: Avoid magic offsets for EFI handover entrypoint
     - [x86] efistub: Clear BSS in EFI handover protocol entrypoint
     - efi/libstub: Add memory attribute protocol definitions
     - efi/libstub: Add limit argument to efi_random_alloc()
     - [x86] efistub: Perform 4/5 level paging switch from the stub
     - [x86] decompressor: Factor out kernel decompression and relocation
     - [x86] efistub: Prefer EFI memory attributes protocol over DXE services
     - [x86] efistub: Perform SNP feature test while running in the firmware
     - [x86] efistub: Avoid legacy decompressor when doing EFI boot
     - [x86] efi/x86: Avoid physical KASLR on older Dell systems
     - [x86] efistub: Avoid placing the kernel below LOAD_PHYSICAL_ADDR
     - [x86] boot: Rename conflicting 'boot_params' pointer to 'boot_params_ptr'
     - [x86] boot: efistub: Assign global boot_params variable
     - [x86] efi/x86: Fix the missing KASLR_FLAG bit in
       boot_params->hdr.loadflags
     - af_unix: Drop oob_skb ref before purging queue in GC.
     - [arm64] phy: freescale: phy-fsl-imx8-mipi-dphy: Fix alias name to use
       dashes
     - [powerpc*] pseries/iommu: IOMMU table is not initialized for kdump over
       SR-IOV
     - gpio: 74x164: Enable output pins after registers are reset
     - gpiolib: Fix the error path order in gpiochip_add_data_with_key()
     - gpio: fix resource unwinding order in error path
     - block: define bvec_iter as __packed __aligned(4)
     - [arm64,armhf] Revert "interconnect: Fix locking for runpm vs reclaim"
     - [arm64,armhf] Revert "interconnect: Teach lockdep about icc_bw_lock order"
     - [x86] bugs: Add asm helpers for executing VERW
     - [x86] entry_64: Add VERW just before userspace transition
     - [x86] entry_32: Add VERW just before userspace transition
     - [x86] bugs: Use ALTERNATIVE() instead of mds_user_clear static key
     - [x86] KVM/VMX: Use BT+JNC, i.e. EFLAGS.CF to select VMRESUME vs. VMLAUNCH
     - [x86] KVM/VMX: Move VERW closer to VMentry for MDS mitigation
     - bpf: Add table ID to bpf_fib_lookup BPF helper
     - bpf: Derive source IP addr via bpf_*_fib_lookup()
     - [x86] efistub: Give up if memory attribute protocol returns an error
     - xen/events: close evtchn after mapping cleanup
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.82
     - ceph: switch to corrected encoding of max_xattr_size in mdsmap
     - net: lan78xx: fix runtime PM count underflow on link stop
     - ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able
     - i40e: disable NAPI right after disabling irqs when handling xsk_pool
     - ice: reorder disabling IRQ and NAPI in ice_qp_dis
     - tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string
     - geneve: make sure to pull inner header in geneve_rx()
     - ice: virtchnl: stop pretending to support RSS over AQ or registers
     - net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()
     - igc: avoid returning frame twice in XDP_REDIRECT
     - net/ipv6: avoid possible UAF in ip6_route_mpath_notify()
     - cpumap: Zero-initialise xdp_rxq_info struct before running XDP program
     - net: dsa: microchip: fix register write order in ksz8_ind_write8()
     - net/rds: fix WARNING in rds_conn_connect_if_down
     - netfilter: nft_ct: fix l3num expectations with inet pseudo family
     - netfilter: nf_conntrack_h323: Add protection for bmp length out of range
     - erofs: apply proper VMA alignment for memory mapped files on THP
     - netrom: Fix a data-race around sysctl_netrom_default_path_quality
     - netrom: Fix a data-race around
       sysctl_netrom_obsolescence_count_initialiser
     - netrom: Fix data-races around sysctl_netrom_network_ttl_initialiser
     - netrom: Fix a data-race around sysctl_netrom_transport_timeout
     - netrom: Fix a data-race around sysctl_netrom_transport_maximum_tries
     - netrom: Fix a data-race around sysctl_netrom_transport_acknowledge_delay
     - netrom: Fix a data-race around sysctl_netrom_transport_busy_delay
     - netrom: Fix a data-race around
       sysctl_netrom_transport_requested_window_size
     - netrom: Fix a data-race around sysctl_netrom_transport_no_activity_timeout
     - netrom: Fix a data-race around sysctl_netrom_routing_control
     - netrom: Fix a data-race around sysctl_netrom_link_fails_count
     - netrom: Fix data-races around sysctl_net_busy_read
     - [s390x] KVM: s390: add stat counter for shadow gmap events
     - [s390x] KVM: s390: vsie: fix race during shadow creation
     - drm/amd/display: Fix uninitialized variable usage in core_link_
       'read_dpcd() & write_dpcd()' functions
     - nfp: flower: add goto_chain_index for ct entry
     - nfp: flower: add hardware offload check for post ct entry
     - readahead: avoid multiple marked readahead pages
     - xhci: process isoc TD properly when there was a transaction error mid TD.
     - xhci: handle isoc Babble and Buffer Overrun events properly
     - drm/amdgpu: Reset IH OVERFLOW_CLEAR bit
     - [x86] Mitigate Register File Data Sampling (RFDS) vulnerability
       (CVE-2023-28746):
       + [x86] mmio: Disable KVM mitigation when X86_FEATURE_CLEAR_CPU_BUF is set
       + Documentation/hw-vuln: Add documentation for RFDS
       + [x86] rfds: Mitigate Register File Data Sampling (RFDS)
       + [x86] KVM/x86: Export RFDS_NO and RFDS_CLEAR to guests
     - drm/amd/display: Wrong colorimetry workaround
     - drm/amd/display: Fix MST Null Ptr for RV
     - getrusage: add the "signal_struct *sig" local variable
     - getrusage: move thread_group_cputime_adjusted() outside of
       lock_task_sighand()
     - getrusage: use __for_each_thread()
     - getrusage: use sig->stats_lock rather than lock_task_sighand()
     - fs/proc: do_task_stat: use __for_each_thread()
     - fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children
       stats
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 19
   * [rt] Refresh "sched: avoid false lockdep splat in put_task_struct()"
   * Drop now unknown config options for retired CBQ, ATM and dsmark qdisc
   * [x86] efistub: Clear decompressor BSS in native EFI entrypoint
   * [x86] efistub: Don't clear BSS twice in mixed mode
   * efi: fix panic in kdump kernel
   * efi/libstub: fix efi_random_alloc() to allocate memory at alloc_min or
     higher address
   * efi/libstub: Cast away type warning in use of max()
   * aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts
     (CVE-2023-6270)
   * wifi: ath10k: fix NULL pointer dereference in
     ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (CVE-2023-7042)
   * Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security
     (CVE-2024-22099)
   * sr9800: Add check for usbnet_get_endpoints (CVE-2024-26651)
   * [rt] Update to 6.1.82-rt27

linux-signed-amd64 (6.1.94+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.94-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.91
     - [arm64,armhf] dmaengine: pl330: issue_pending waits until WFP state
     - dmaengine: Revert "dmaengine: pl330: issue_pending waits until WFP state"
     - wifi: nl80211: don't free NULL coalescing rule
     - eeprom: at24: Use dev_err_probe for nvmem register failure
     - eeprom: at24: Probe for DDR3 thermal sensor in the SPD case
     - eeprom: at24: fix memory corruption race condition (CVE-2024-35848)
     - Bluetooth: qca: add support for QCA2066
     - mm/hugetlb: add folio support to hugetlb specific flag macros
     - mm: add private field of first tail to struct page and struct folio
     - mm/hugetlb: add hugetlb_folio_subpool() helpers
     - mm/hugetlb: add folio_hstate()
     - mm/hugetlb_cgroup: convert __set_hugetlb_cgroup() to folios
     - mm/hugetlb_cgroup: convert hugetlb_cgroup_from_page() to folios
     - mm/hugetlb: convert free_huge_page to folios
     - mm/hugetlb_cgroup: convert hugetlb_cgroup_uncharge_page() to folios
     - mm/hugetlb: fix missing hugetlb_lock for resv uncharge
     - kbuild: refactor host*_flags
     - kbuild: specify output names separately for each emission type from rustc
     - cifs: use the least loaded channel for sending requests
     - smb3: missing lock when picking channel
     - [armhf] pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of
       GPIOR-T
     - [arm64] pinctrl/meson: fix typo in PDM's pin name
     - pinctrl: core: delete incorrect free in pinctrl_enable()
     - sunrpc: add a struct rpc_stats arg to rpc_create_args
     - nfs: expose /proc/net/sunrpc/nfs in net namespaces
     - nfs: make the rpc_stat per net namespace
     - nfs: Handle error of rpc_proc_register() in nfs_net_init().
     - pinctrl: Introduce struct pinfunction and PINCTRL_PINFUNCTION() macro
     - [x86] pinctrl: intel: Make use of struct pinfunction and
       PINCTRL_PINFUNCTION()
     - [x86] pinctrl: baytrail: Fix selecting gpio pinctrl state
     - pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()
     - regulator: change stubbed devm_regulator_get_enable to return Ok
     - regulator: change devm_regulator_get_enable_optional() stub to return Ok
     - bpf, kconfig: Fix DEBUG_INFO_BTF_MODULES Kconfig definition
     - bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue
     - nvme: fix warn output about shared namespaces without
       CONFIG_NVME_MULTIPATH
     - bpf: Fix a verifier verbose message
     - spi: introduce new helpers with using modern naming
     - [arm64] bpf, arm64: Fix incorrect runtime stats
     - [s390x] mm: Fix storage key clearing for guest huge pages
     - [s390x] mm: Fix clearing storage keys for huge pages
     - xdp: use flags field to disambiguate broadcast redirect
     - bna: ensure the copied buf is NUL terminated
     - nsh: Restore skb->{protocol,data,mac_header} for outer header in
       nsh_gso_segment().
     - net l2tp: drop flow hash on forward
     - [s390x] vdso: Add CFI for RA register to asm macro vdso_func
     - net: qede: sanitize 'rc' in qede_add_tc_flower_fltr()
     - net: qede: use return from qede_parse_flow_attr() for flower
     - net: qede: use return from qede_parse_flow_attr() for flow_spec
     - net: qede: use return from qede_parse_actions()
     - [arm64] ASoC: meson: axg-fifo: use FIELD helpers
     - [arm64] ASoC: meson: axg-fifo: use threaded irq to check periods
     - [arm64] ASoC: meson: axg-card: make links nonatomic
     - [arm64] ASoC: meson: axg-tdm-interface: manage formatters in trigger
     - [arm64] ASoC: meson: cards: select SND_DYNAMIC_MINORS
     - ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()
     - [s390x] cio: Ensure the copied buf is NUL terminated
     - cxgb4: Properly lock TX queue for the selftest.
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix number of databases for 88E6141 /
       88E6341
     - spi: fix null pointer dereference within spi_sync
     - net: bridge: fix multicast-to-unicast with fraglist GSO
     - net: core: reject skb_copy(_expand) for fraglist GSO skbs
     - vxlan: Pull inner IP header in vxlan_rcv().
     - [s390x] qeth: Fix kernel panic after setting hsuid
     - net: gro: add flush check in udp_gro_receive_segment
     - [arm64] clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change
     - [powerpc*] pseries: replace kmalloc with kzalloc in PLPKS driver
     - [powerpc*] pseries: Move PLPKS constants to header file
     - [powerpc*] pseries: make max polling consistent for longer H_CALLs
     - [powerpc*] pseries/iommu: LPAR panics during boot up with a frozen PE
     - [arm64] KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id
     - [arm64] KVM: arm64: vgic-v2: Check for non-NULL vCPU in
       vgic_v2_parse_attr()
     - scsi: lpfc: Move NPIV's transport unregistration to after resource clean
       up
     - scsi: lpfc: Update lpfc_ramp_down_queue_handler() logic
     - scsi: lpfc: Replace hbalock with ndlp lock in lpfc_nvme_unregister_port()
     - scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up()
     - gfs2: Fix invalid metadata access in punch_hole
     - wifi: mac80211: fix ieee80211_bss_*_flags kernel-doc
     - wifi: cfg80211: fix rdev_dump_mpp() arguments order
     - net: mark racy access on sk->sk_rcvbuf
     - scsi: mpi3mr: Avoid memcpy field-spanning write WARNING
     - scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload
     - btrfs: return accurate error code on open failure in open_fs_devices()
     - bpf: Check bloom filter map value size
     - kbuild: Disable KCSAN for autogenerated *.mod.c intermediaries
     - scsi: ufs: core: WLUN suspend dev/link state error recovery
     - ALSA: line6: Zero-initialize message buffers
     - block: fix overflow in blk_ioctl_discard()
     - net: bcmgenet: Reset RBUF on first open
     - ata: sata_gemini: Check clk_enable() result
     - firewire: ohci: mask bus reset interrupts between ISR and bottom half
     - tools/power turbostat: Fix added raw MSR output
     - tools/power turbostat: Increase the limit for fd opened
     - tools/power turbostat: Fix Bzy_MHz documentation typo
     - btrfs: make btrfs_clear_delalloc_extent() free delalloc reserve
     - btrfs: always clear PERTRANS metadata during commit
     - scsi: target: Fix SELinux error when systemd-modules loads the target
       module
     - blk-iocost: avoid out of bounds shift
     - [arm64,armhf] gpu: host1x: Do not setup DMA for virtual devices
     - [mips*] scall: Save thread_info.syscall unconditionally on entry
       (Closes: #1068365)
     - tools/power/turbostat: Fix uncore frequency file string
     - drm/amdgpu: Refine IB schedule error logging
     - Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl
     - [x86] uio_hv_generic: Don't free decrypted memory
     - Drivers: hv: vmbus: Don't free ring buffers that couldn't be re-encrypted
     - fs/9p: only translate RWX permissions for plain 9P2000
     - fs/9p: translate O_TRUNC into OTRUNC
     - 9p: explicitly deny setlease attempts
     - gpio: wcove: Use -ENOTSUPP consistently
     - gpio: crystalcove: Use -ENOTSUPP consistently
     - clk: Don't hold prepare_lock when calling kref_put()
     - fs/9p: drop inodes immediately on non-.L too
     - drm/nouveau/dp: Don't probe eDP ports twice harder
     - net:usb:qmi_wwan: support Rolling modules
     - kbuild: rust: avoid creating temporary files
     - spi: Merge spi_controller.{slave,target}_abort()
     - perf unwind-libunwind: Fix base address for .eh_frame
     - perf unwind-libdw: Handle JIT-generated DSOs properly
     - qibfs: fix dentry leak
     - xfrm: Preserve vlan tags for transport mode software GRO
     - tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets
     - tcp: Use refcount_inc_not_zero() in tcp_twsk_unique().
     - Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout
       (CVE-2024-27398)
     - Bluetooth: msft: fix slab-use-after-free in msft_do_close()
     - Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout
       (CVE-2024-27399)
     - net: ks8851: Queue RX packets in IRQ handler instead of disabling BHs
     - rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation
     - [x86] hwmon: (corsair-cpro) Use a separate buffer for sending commands
     - [x86] hwmon: (corsair-cpro) Use complete_all() instead of complete() in
       ccp_raw_event()
     - [x86] hwmon: (corsair-cpro) Protect ccp->wait_input_report with a spinlock
     - phonet: fix rtm_phonet_notify() skb allocation
     - net: bridge: fix corrupted ethernet header on multicast-to-unicast
     - ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action()
     - timers: Get rid of del_singleshot_timer_sync()
     - timers: Rename del_timer() to timer_delete()
     - net-sysfs: convert dev->operstate reads to lockless ones
     - hsr: Simplify code for announcing HSR nodes timer setup
     - ipv6: annotate data-races around cnf.disable_ipv6
     - ipv6: prevent NULL dereference in ip6_output()
     - net/smc: fix neighbour and rtable leak in smc_ib_find_route()
     - [arm64] net: hns3: using user configure after hardware reset
     - [arm64] net: hns3: direct return when receive a unknown mailbox message
     - [arm64] net: hns3: change type of numa_node_mask as nodemask_t
     - [arm64] net: hns3: release PTP resources if pf initialization failed
     - [arm64] net: hns3: use appropriate barrier function after setting a bit
       value
     - [arm64] net: hns3: fix port vlan filter not disabled issue
     - [arm64] net: hns3: fix kernel crash when devlink reload during
       initialization
     - [arm64] drm/meson: dw-hdmi: power up phy on device init
     - [arm64] drm/meson: dw-hdmi: add bandgap setting for g12
     - drm/connector: Add \n to message about demoting connector force-probes
     - dm/amd/pm: Fix problems with reboot/shutdown for some SMU 13.0.4/13.0.11
       users
     - gpiolib: cdev: Add missing header(s)
     - gpiolib: cdev: relocate debounce_period_us from struct gpio_desc
     - gpiolib: cdev: fix uninitialised kfifo
     - drm/amd/display: Atom Integrated System Info v2_2 for DCN35
     - MAINTAINERS: add leah to 6.1 MAINTAINERS file
     - drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2
     - btrfs: fix kvcalloc() arguments order in btrfs_ioctl_send()
     - firewire: nosy: ensure user_length is taken into account when fetching
       packet contents (CVE-2024-27401)
     - Reapply "drm/qxl: simplify qxl_fence_wait"
     - btf, scripts: rust: drop is_rust_module.sh
     - usb: typec: ucsi: Check for notifications after init
     - usb: typec: ucsi: Fix connector check on init
     - usb: Fix regression caused by invalid ep0 maxpacket in virtual SuperSpeed
       device
     - usb: ohci: Prevent missed ohci interrupts
     - USB: core: Fix access violation during port device removal
     - usb: gadget: composite: fix OS descriptors w_value logic
     - usb: gadget: f_fs: Fix a race condition when processing setup packets.
     - usb: xhci-plat: Don't include xhci.h
     - usb: dwc3: core: Prevent phy suspend during init
     - usb: typec: tcpm: unregister existing source caps before re-registration
     - usb: typec: tcpm: Check for port partner validity before consuming it
     - ALSA: hda/realtek: Fix mute led of HP Laptop 15-da3001TU
     - btrfs: add missing mutex_unlock in btrfs_relocate_sys_chunks()
     - mm/slab: make __free(kfree) accept error pointers
     - mptcp: ensure snd_nxt is properly initialized on connect
     - dt-bindings: iio: health: maxim,max30102: fix compatible check
     - iio:imu: adis16475: Fix sync mode setting
     - iio: accel: mxc4005: Interrupt handling fixes
     - [armhf] ASoC: ti: davinci-mcasp: Fix race condition during probe
     - dyndbg: fix old BUG_ON in >control parser
     - slimbus: qcom-ngd-ctrl: Add timeout for wait operation
     - mei: me: add lunar lake point M DID
     - drm/vmwgfx: Fix invalid reads in fence signaled events
     - [x86] drm/i915/bios: Fix parsing backlight BDB data
     - drm/amd/display: Handle Y carry-over in VCP X.Y calculation
     - net: fix out-of-bounds access in ops_init
     - hwmon: (pmbus/ucd9000) Increase delay from 250 to 500us
     - mm: use memalloc_nofs_save() in page_cache_ra_order()
     - regulator: core: fix debugfs creation regression
     - spi: microchip-core-qspi: fix setting spi bus clock rate
     - ksmbd: off ipv6only for both ipv4/ipv6 binding
     - ksmbd: avoid to send duplicate lease break notifications
     - ksmbd: do not grant v2 lease if parent lease key and epoch are not set
     - Bluetooth: qca: add missing firmware sanity checks
     - Bluetooth: qca: fix NVM configuration parsing
     - Bluetooth: qca: fix info leak when fetching board id
     - Bluetooth: qca: fix info leak when fetching fw build id
     - Bluetooth: qca: fix firmware check error path
     - VFIO: Add the SPR_DSA and SPR_IAX devices to the denylist (CVE-2024-21823)
     - dmaengine: idxd: add a new security check to deal with a hardware erratum
       (CVE-2024-21823)
     - dmaengine: idxd: add a write() method for applications to submit work
       (CVE-2024-21823)
     - keys: Fix overwrite of key expiration on instantiation
     - btrfs: do not wait for short bulk allocation
     - mm/hugetlb: fix DEBUG_LOCKS_WARN_ON(1) when dissolve_free_hugetlb_folio()
     - mm,swapops: update check in is_pfn_swap_entry for hwpoison entries
     - md: fix kmemleak of rdev->serial (CVE-2024-26900)
     - net: bcmgenet: Clear RGMII_LINK upon link down
     - net: bcmgenet: synchronize EXT_RGMII_OOB_CTRL access
     - net: bcmgenet: synchronize use of bcmgenet_set_rx_mode()
     - net: bcmgenet: synchronize UMAC_CMD access
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.92
     - drm/amd/display: Fix division by zero in setup_dsc_config
     - net: ks8851: Fix another TX stall caused by wrong ISR flag handling
     - ice: pass VSI pointer into ice_vc_isvalid_q_id
     - ice: remove unnecessary duplicate checks for VF VSI ID
     - pinctrl: core: handle radix_tree_insert() errors in
       pinctrl_register_one_pin()
     - mfd: stpmic1: Fix swapped mask/unmask in irq chip
     - nfsd: don't allow nfsd threads to be signalled.
     - KEYS: trusted: Fix memory leak in tpm2_key_encode()
     - mmc: core: Add HS400 tuning in HS400es initialization
     - xfs: write page faults in iomap are not buffered writes
     - xfs: punching delalloc extents on write failure is racy
     - xfs: use byte ranges for write cleanup ranges
     - xfs,iomap: move delalloc punching to iomap
     - iomap: buffered write failure should not truncate the page cache
     - xfs: xfs_bmap_punch_delalloc_range() should take a byte range
     - iomap: write iomap validity checks
     - xfs: use iomap_valid method to detect stale cached iomaps
     - xfs: drop write error injection is unfixable, remove it
     - xfs: fix off-by-one-block in xfs_discard_folio()
     - xfs: fix incorrect error-out in xfs_remove
     - xfs: fix sb write verify for lazysbcount
     - xfs: fix incorrect i_nlink caused by inode racing
     - xfs: invalidate block device page cache during unmount
     - xfs: attach dquots to inode before reading data/cow fork mappings
     - xfs: wait iclog complete before tearing down AIL
     - xfs: fix super block buf log item UAF during force shutdown
     - xfs: hoist refcount record merge predicates
     - xfs: estimate post-merge refcounts correctly
     - xfs: invalidate xfs_bufs when allocating cow extents
     - xfs: allow inode inactivation during a ro mount log recovery
     - xfs: fix log recovery when unknown rocompat bits are set
     - xfs: get root inode correctly at bulkstat
     - xfs: short circuit xfs_growfs_data_private() if delta is zero
     - [arm64] atomics: lse: remove stale dependency on JUMP_LABEL
     - drm/amdgpu: Fix possible NULL dereference in
       amdgpu_ras_query_error_status_helper() (CVE-2023-52585)
     - [arm*] binder: fix max_thread type inconsistency
     - [arm64,armhf] usb: dwc3: Wait unconditionally after issuing EndXfer
       command
     - net: usb: ax88179_178a: fix link status when link is set to down/up
     - usb: typec: ucsi: displayport: Fix potential deadlock
     - usb: typec: tipd: fix event checking for tps6598x
     - serial: kgdboc: Fix NMI-safety problems from keyboard reset code
     - KEYS: trusted: Do not use WARN when encode fails
     - admin-guide/hw-vuln/core-scheduling: fix return type of PR_SCHED_CORE_GET
     - docs: kernel_include.py: Cope with docutils 0.21
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.93
     - SUNRPC: Fix loop termination condition in gss_free_in_token_pages()
     - [x86] tsc: Trust initial offset in architectural TSC-adjust MSRs
     - ftrace: Fix possible use-after-free issue in ftrace_location()
     - tty: n_gsm: fix possible out-of-bounds in gsm0_receive() (CVE-2024-36016)
     - tty: n_gsm: fix missing receive state reset after mode switch
     - speakup: Fix sizeof() vs ARRAY_SIZE() bug
     - serial: 8250_bcm7271: use default_mux_rate if possible
     - serial: 8520_mtk: Set RTS on shutdown for Rx in-band wakeup
     - io_uring: fail NOP if non-zero op flags is passed in
     - Revert "r8169: don't try to disable interrupts if NAPI is, scheduled
       already"
     - r8169: Fix possible ring buffer corruption on fragmented Tx packets.
     - ring-buffer: Fix a race between readers and resize checks
     - net: smc91x: Fix m68k kernel compilation for ColdFire CPU
     - nilfs2: fix unexpected freezing of nilfs_segctor_sync()
     - nilfs2: fix potential hang in nilfs_detach_log_writer()
     - ksmbd: avoid to send duplicate oplock break notifications
     - ksmbd: ignore trailing slashes in share paths
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for ProBook 440/460
       G11.
     - ALSA: core: Fix NULL module pointer assignment at card init
     - ALSA: Fix deadlocks with kctl removals at disconnection
     - KEYS: asymmetric: Add missing dependencies of FIPS_SIGNATURE_SELFTEST
     - wifi: mac80211: don't use rate mask for scanning
     - wifi: mac80211: ensure beacon is non-S1G prior to extracting the beacon
       timestamp field
     - wifi: cfg80211: fix the order of arguments for trace events of the
       tx_rx_evt class
     - dt-bindings: rockchip: grf: Add missing type to 'pcie-phy' node
     - net: usb: qmi_wwan: add Telit FN920C04 compositions
     - drm/amd/display: Set color_mgmt_changed to true on unsuspend
     - drm/amdgpu: Update BO eviction priorities
     - drm/amdgpu: Fix the ring buffer size for queue VM flush
     - drm/amdgpu/mes: fix use-after-free issue
     - sched/isolation: Fix boot crash when maxcpus < first housekeeping CPU
     - [x86] ASoC: Intel: bytcr_rt5640: Apply Asus T100TA quirk to Asus T100TAM
       too
     - regulator: irq_helpers: duplicate IRQ name
     - ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating
     - ASoC: dt-bindings: rt5645: add cbj sleeve gpio property
     - regulator: vqmmc-ipq4019: fix module autoloading
     - ASoC: rt715: add vendor clear control register
     - ASoC: rt715-sdca: volume step modification
     - [x86] efistub: Omit physical KASLR when memory reservations exist
     - efi: libstub: only free priv.runtime_map when allocated
     - [x86] KVM: x86: Don't advertise guest.MAXPHYADDR as host.MAXPHYADDR in
       CPUID
     - genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline
     - fpga: dfl-pci: add PCI subdevice ID for Intel D5005 card
     - softirq: Fix suspicious RCU usage in __do_softirq()
     - ASoC: da7219-aad: fix usage of device_get_named_child_node()
     - ALSA: hda: intel-dsp-config: harden I2C/I2S codec detection
     - drm/amd/display: Add dtbclk access to dcn315
     - drm/amd/display: Add VCO speed parameter for DCN31 FPU
     - drm/amdkfd: Flush the process wq before creating a kfd_process
     - [x86] mm: Remove broken vsyscall emulation code from the page fault code
     - nvme: find numa distance only if controller has valid numa id
     - nvmet-auth: return the error code to the nvmet_auth_host_hash() callers
     - nvmet-auth: replace pr_debug() with pr_err() to report an error.
     - nvmet-tcp: fix possible memory leak when tearing down a controller
     - nvmet: fix nvme status code when namespace is disabled
     - epoll: be better about file lifetimes
     - nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists()
     - openpromfs: finish conversion to the new mount API
     - crypto: bcm - Fix pointer arithmetic
     - mm/slub, kunit: Use inverted data to corrupt kmem cache
     - firmware: raspberrypi: Use correct device for DMA mappings
     - ecryptfs: Fix buffer size for tag 66 packet
     - nilfs2: fix out-of-range warning
     - [x86] crypto: ccp - drop platform ifdef checks
     - [amd64] crypto: x86/nh-avx2 - add missing vzeroupper
     - [amd64] crypto: x86/sha256-avx2 - add missing vzeroupper
     - [amd64] crypto: x86/sha512-avx2 - add missing vzeroupper
     - [s390x] cio: fix tracepoint subchannel type field
     - io_uring: don't use TIF_NOTIFY_SIGNAL to test for availability of
       task_work
     - io_uring: use the right type for work_llist empty check
     - rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow
     - rcu: Fix buffer overflow in print_cpu_stall_info()
     - jffs2: prevent xattr node from overflowing the eraseblock
     - soc: mediatek: cmdq: Fix typo of CMDQ_JUMP_RELATIVE
     - null_blk: Fix missing mutex_destroy() at module removal
     - md: fix resync softlockup when bitmap size is less than array size
     - block: open code __blk_account_io_start()
     - block: open code __blk_account_io_done()
     - block: support to account io_ticks precisely
     - wifi: ath10k: poll service ready message before failing
     - wifi: brcmfmac: pcie: handle randbuf allocation failure
     - wifi: ath11k: don't force enable power save on non-running vdevs
     - bpftool: Fix missing pids during link show
     - [x86] boot: Ignore relocations in .notes sections in walk_relocs() too
     - sched/fair: Add EAS checks before updating root_domain::overutilized
     - ACPI: Fix Generic Initiator Affinity _OSC bit
     - qed: avoid truncating work queue length
     - net/mlx5e: Fail with messages when params are not valid for XSK
     - mlx5: stop warning for 64KB pages
     - bitops: add missing prototype check
     - wifi: carl9170: re-fix fortified-memset warning
     - bpf: Pack struct bpf_fib_lookup
     - scsi: ufs: qcom: Perform read back after writing reset bit
     - scsi: ufs: qcom: Perform read back after writing REG_UFS_SYS1CLK_1US
     - scsi: ufs: ufs-qcom: Fix the Qcom register name for offset 0xD0
     - scsi: ufs: ufs-qcom: Clear qunipro_g4_sel for HW version major 5
     - scsi: ufs: qcom: Perform read back after writing unipro mode
     - scsi: ufs: qcom: Perform read back after writing CGC enable
     - scsi: ufs: cdns-pltfrm: Perform read back after writing HCLKDIV
     - scsi: ufs: core: Perform read back after disabling interrupts
     - scsi: ufs: core: Perform read back after disabling UIC_COMMAND_COMPL
     - ACPI: LPSS: Advertise number of chip selects via property
     - irqchip/alpine-msi: Fix off-by-one in allocation error path
     - irqchip/loongson-pch-msi: Fix off-by-one on allocation error path
     - ACPI: disable -Wstringop-truncation
     - gfs2: Don't forget to complete delayed withdraw
     - gfs2: Fix "ignore unlock failures after withdraw"
     - [x86] boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57
     - cpufreq: exit() callback is optional
     - [x86] pat: Introduce lookup_address_in_pgd_attr()
     - [x86] pat: Restructure _lookup_address_cpa()
     - [x86] pat: Fix W^X violation false-positives when running as Xen PV guest
     - net: export inet_lookup_reuseport and inet6_lookup_reuseport
     - net: remove duplicate reuseport_lookup functions
     - udp: Avoid call to compute_score on multiple sites
     - cppc_cpufreq: Fix possible null pointer dereference
     - scsi: libsas: Fix the failure of adding phy with zero-address to port
     - scsi: hpsa: Fix allocation size for Scsi_Host private data
     - [x86] purgatory: Switch to the position-independent small code model
     - thermal/drivers/tsens: Fix null pointer dereference
     - wifi: ath10k: Fix an error code problem in
       ath10k_dbg_sta_write_peer_debug_trigger()
     - wifi: ath10k: populate board data for WCN3990
     - net: dsa: mv88e6xxx: Add support for model-specific pre- and post-reset
       handlers
     - net: dsa: mv88e6xxx: Avoid EEPROM timeout without EEPROM on 88E6250-family
       switches
     - tcp: avoid premature drops in tcp_add_backlog()
     - pwm: sti: Convert to platform remove callback returning void
     - pwm: sti: Prepare removing pwm_chip from driver data
     - pwm: sti: Simplify probe function using devm functions
     - drivers/perf: hisi_pcie: Fix out-of-bound access when valid event group
     - drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group
     - drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset()
     - net: give more chances to rcu in netdev_wait_allrefs_any()
     - wifi: carl9170: add a proper sanity check for endpoints
     - wifi: ar5523: enable proper endpoint verification
     - wifi: mt76: mt7603: add wpdma tx eof flag for PSE client reset
     - libbpf: Fix error message in attach_kprobe_multi
     - HID: intel-ish-hid: ipc: Add check for pci_alloc_irq_vectors
     - scsi: bfa: Ensure the copied buf is NUL terminated
     - scsi: qedf: Ensure the copied buf is NUL terminated
     - scsi: qla2xxx: Fix debugfs output for fw_resource_count
     - kernel/numa.c: Move logging out of numa.h
     - [x86] numa: Fix SRAT lookup of CFMWS ranges with numa_fill_memblks()
     - wifi: mwl8k: initialize cmd->addr[] properly
     - HID: amd_sfh: Handle "no sensors" in PM operations
     - usb: aqc111: stop lying about skb->truesize
     - net: usb: sr9700: stop lying about skb->truesize
     - net: ipv6: fix wrong start position when receive hop-by-hop fragment
     - eth: sungem: remove .ndo_poll_controller to avoid deadlocks
     - net: ethernet: cortina: Locking fixes
     - af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg
     - net: usb: smsc95xx: stop lying about skb->truesize
     - net: openvswitch: fix overwriting ct original tuple for ICMPv6
     - ipv6: sr: add missing seg6_local_exit
     - ipv6: sr: fix incorrect unregister order
     - ipv6: sr: fix invalid unregister error path
     - net/mlx5: Add a timeout to acquire the command queue semaphore
     - net/mlx5: Discard command completions in internal error
     - [s390x] bpf: Emit a barrier for BPF_FETCH instructions
     - riscv, bpf: make some atomic operations fully ordered
     - ax25: Use kernel universal linked list to implement ax25_dev_list
     - ax25: Fix reference count leak issues of ax25_dev
     - ax25: Fix reference count leak issue of net_device
     - mptcp: SO_KEEPALIVE: fix getsockopt support
     - Bluetooth: Consolidate code around sk_alloc into a helper function
     - Bluetooth: compute LE flow credits based on recvbuf space
     - Bluetooth: qca: Fix error code in qca_read_fw_build_info()
     - drm/bridge: Fix improper bridge init order with pre_enable_prev_first
     - printk: Let no_printk() use _printk()
     - dev_printk: Add and use dev_no_printk()
     - drm/lcdif: Do not disable clocks on already suspended hardware
     - drm/panel-samsung-atna33xc20: Use ktime_get_boottime for delays
     - drm/dp: Don't attempt AUX transfers when eDP panels are not powered
     - drm/panel: atna33xc20: Fix unbalanced regulator in the case HPD doesn't
       assert
     - drm/amd/display: Fix potential index out of bounds in color transformation
       function
     - [x86] ASoC: Intel: Disable route checks for Skylake boards
     - [x86] ASoC: Intel: avs: ssm4567: Do not ignore route checks
     - mtd: core: Report error if first mtd_otp_size() call fails in
       mtd_otp_nvmem_add()
     - mtd: rawnand: hynix: fixed typo
     - fbdev: shmobile: fix snprintf truncation
     - [armel,armhf] ASoC: kirkwood: Fix potential NULL dereference
     - drm/meson: vclk: fix calculation of 59.94 fractional rates
     - drm/mediatek: Add 0 size check to mtk_drm_gem_obj
     - [powerpc*] fsl-soc: hide unused const variable
     - fbdev: sisfb: hide unused variables
     - [x86] ASoC: Intel: avs: Fix ASRC module initialization
     - [x86] ASoC: Intel: avs: Fix potential integer overflow
     - media: ngene: Add dvb_ca_en50221_init return value check
     - media: rcar-vin: work around -Wenum-compare-conditional warning
     - media: radio-shark2: Avoid led_names truncations
     - drm: bridge: cdns-mhdp8546: Fix possible null pointer dereference
     - [arm64] drm/msm/dp: allow voltage swing / pre emphasis of 3
     - [arm64] drm/msm/dp: Return IRQ_NONE for unhandled interrupts
     - [arm64] drm/msm/dp: Avoid a long timeout for AUX transfer if nothing
       connected
     - media: ipu3-cio2: Request IRQ earlier
     - media: dt-bindings: ovti,ov2680: Fix the power supply names
     - fbdev: sh7760fb: allow modular build
     - media: atomisp: ssh_css: Fix a null-pointer dereference in
       load_video_binaries
     - [arm64] drm/arm/malidp: fix a possible null pointer dereference
       (CVE-2024-36014)
     - drm: vc4: Fix possible null pointer dereference
     - ASoC: tracing: Export SND_SOC_DAPM_DIR_OUT to its value
     - drm/bridge: anx7625: Don't log an error when DSI host can't be found
     - drm/bridge: icn6211: Don't log an error when DSI host can't be found
     - drm/bridge: lt8912b: Don't log an error when DSI host can't be found
     - drm/bridge: lt9611: Don't log an error when DSI host can't be found
     - drm/bridge: lt9611uxc: Don't log an error when DSI host can't be found
     - drm/bridge: tc358775: Don't log an error when DSI host can't be found
     - drm/bridge: dpc3433: Don't log an error when DSI host can't be found
     - drm/panel: novatek-nt35950: Don't log an error when DSI host can't be
       found
     - drm/panel: simple: Add missing Innolux G121X1-L03 format, flags, connector
     - drm/mipi-dsi: use correct return type for the DSC functions
     - drm/rockchip: vop2: Do not divide height twice for YUV
     - clk: samsung: exynosautov9: fix wrong pll clock id value
     - RDMA/mlx5: Adding remote atomic access flag to updatable flags
     - [arm64] RDMA/hns: Fix return value in hns_roce_map_mr_sg
     - [arm64] RDMA/hns: Fix deadlock on SRQ async events.
     - [arm64] RDMA/hns: Fix UAF for cq async event
     - [arm64] RDMA/hns: Fix GMV table pagesize
     - [arm64] RDMA/hns: Use complete parentheses in macros
     - [arm64] RDMA/hns: Modify the print level of CQE error
     - clk: mediatek: mt8365-mm: fix DPI0 parent
     - clk: rs9: fix wrong default value for clock amplitude
     - RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt
     - RDMA/rxe: Replace pr_xxx by rxe_dbg_xxx in rxe_net.c
     - RDMA/rxe: Fix incorrect rxe_put in error path
     - IB/mlx5: Use __iowrite64_copy() for write combining stores
     - clk: renesas: r8a779a0: Fix CANFD parent clock
     - clk: renesas: r9a07g043: Add clock and reset entry for PLIC
     - lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure
     - clk: qcom: dispcc-sm8450: fix DisplayPort clocks
     - clk: qcom: dispcc-sm6350: fix DisplayPort clocks
     - clk: qcom: mmcc-msm8998: fix venus clock issue
     - [x86] insn: Fix PUSH instruction in x86 instruction decoder opcode map
     - [x86] insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and
       VPDPWSSDS
     - ext4: avoid excessive credit estimate in ext4_tmpfile()
     - virt: acrn: stop using follow_pfn
     - drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map()
     - sunrpc: removed redundant procp check
     - ext4: simplify calculation of blkoff in ext4_mb_new_blocks_simple
     - ext4: fix unit mismatch in ext4_mb_new_blocks_simple
     - ext4: try all groups in ext4_mb_new_blocks_simple
     - ext4: remove unused parameter from ext4_mb_new_blocks_simple()
     - ext4: fix potential unnitialized variable
     - SUNRPC: Fix gss_free_in_token_pages()
     - RDMA/IPoIB: Fix format truncation compilation errors
     - net: add pskb_may_pull_reason() helper
     - net: bridge: xmit: make sure we have at least eth header len bytes
     - net: bridge: mst: fix vlan use-after-free
     - net: qrtr: ns: Fix module refcnt
     - netrom: fix possible dead-lock in nr_rt_ioctl()
     - af_packet: do not call packet_read_pending() from tpacket_destruct_skb()
     - sched/fair: Allow disabling sched_balance_newidle with
       sched_relax_domain_level
     - sched/core: Fix incorrect initialization of the 'burst' parameter in
       cpu_max_write()
     - scsi: ufs: ufs-qcom: Clear qunipro_g4_sel for HW major version > 5
     - perf record: Delete session after stopping sideband thread
     - perf probe: Add missing libgen.h header needed for using basename()
     - iio: core: Leave private pointer NULL when no private data supplied
     - greybus: lights: check return of get_channel_from_mode
     - f2fs: multidev: fix to recognize valid zero block address
     - f2fs: fix to wait on page writeback in __clone_blkaddrs()
     - counter: linux/counter.h: fix Excess kernel-doc description warning
     - perf annotate: Get rid of duplicate --group option item
     - soundwire: cadence: fix invalid PDI offset
     - dmaengine: idma64: Add check for dma_set_max_seg_size
     - firmware: dmi-id: add a release callback function
     - serial: max3100: Lock port->lock when calling uart_handle_cts_change()
     - serial: max3100: Update uart_driver_registered on driver removal
     - serial: max3100: Fix bitwise types
     - greybus: arche-ctrl: move device table to its right location
     - PCI: tegra194: Fix probe path for Endpoint mode
     - serial: sc16is7xx: add proper sched.h include for sched_set_fifo()
     - interconnect: qcom: qcm2290: Fix mas_snoc_bimc QoS port assignment
     - [arm64] dts: meson: fix S4 power-controller node
     - perf tests: Make "test data symbol" more robust on Neoverse N1
     - dt-bindings: PCI: rcar-pci-host: Add optional regulators
     - dt-bindings: PCI: rcar-pci-host: Add missing IOMMU properties
     - f2fs: compress: fix to relocate check condition in
       f2fs_{release,reserve}_compress_blocks()
     - f2fs: compress: fix to relocate check condition in
       f2fs_ioc_{,de}compress_file()
     - f2fs: fix typos in comments
     - f2fs: fix to relocate check condition in f2fs_fallocate()
     - f2fs: fix to check pinfile flag in f2fs_move_file_range()
     - iio: adc: stm32: Fixing err code to not indicate success
     - coresight: etm4x: Fix unbalanced pm_runtime_enable()
     - perf docs: Document bpf event modifier
     - iio: pressure: dps310: support negative temperature values
     - coresight: etm4x: Do not hardcode IOMEM access for register restore
     - coresight: etm4x: Do not save/restore Data trace control registers
     - coresight: etm4x: Safe access for TRCQCLTR
     - coresight: etm4x: Fix access to resource selector registers
     - fpga: region: add owner module and take its refcount
     - microblaze: Remove gcc flag for non existing early_printk.c file
     - microblaze: Remove early printk call from cpuinfo-static.c
     - perf intel-pt: Fix unassigned instruction op (discovered by
       MemorySanitizer)
     - ovl: remove upper umask handling from ovl_create_upper()
     - VMCI: Fix an error handling path in vmci_guest_probe_device()
     - dt-bindings: pinctrl: mediatek: mt7622: fix array properties
     - watchdog: bd9576: Drop "always-running" property
     - watchdog: sa1100: Fix PTR_ERR_OR_ZERO() vs NULL check in sa1100dog_probe()
     - usb: gadget: u_audio: Fix race condition use of controls after free during
       gadget unbind.
     - usb: gadget: u_audio: Clear uac pointer when freed.
     - stm class: Fix a double free in stm_register_device()
     - ppdev: Remove usage of the deprecated ida_simple_xx() API
     - ppdev: Add an error check in register_device (CVE-2024-36015)
     - perf bench internals inject-build-id: Fix trap divide when collecting just
       one DSO
     - perf ui browser: Don't save pointer to stack memory
     - extcon: max8997: select IRQ_DOMAIN instead of depending on it
     - PCI/EDR: Align EDR_PORT_DPC_ENABLE_DSM with PCI Firmware r3.3
     - PCI/EDR: Align EDR_PORT_LOCATE_DSM with PCI Firmware r3.3
     - perf ui browser: Avoid SEGV on title
     - perf report: Avoid SEGV in report__setup_sample_type()
     - f2fs: compress: fix to update i_compr_blocks correctly
     - f2fs: compress: fix to cover {reserve,release}_compress_blocks() w/
       cp_rwsem lock
     - f2fs: fix to release node block count in error path of
       f2fs_new_node_page()
     - f2fs: compress: don't allow unaligned truncation on released compress
       inode
     - serial: sh-sci: protect invalidating RXDMA on shutdown
     - libsubcmd: Fix parse-options memory leak
     - perf daemon: Fix file leak in daemon_session__control
     - f2fs: fix to add missing iput() in gc_data_segment()
     - perf stat: Don't display metric header for non-leader uncore events
     - [s390x] vdso: filter out mno-pic-data-is-text-relative cflag
     - [s390x] vdso64: filter out munaligned-symbols flag for vdso
     - [s390x] vdso: Generate unwind information for C modules
     - [s390x] vdso: Use standard stack frame layout
     - [s390x] ipl: Fix incorrect initialization of len fields in nvme reipl
       block
     - [s390x] ipl: Fix incorrect initialization of nvme dump block
     - [s390x] boot: Remove alt_stfle_fac_list from decompressor
     - Input: ims-pcu - fix printf string overflow
     - Input: ioc3kbd - convert to platform remove callback returning void
     - Input: ioc3kbd - add device table
     - mmc: sdhci_am654: Add tuning algorithm for delay chain
     - mmc: sdhci_am654: Write ITAPDLY for DDR52 timing
     - mmc: sdhci_am654: Drop lookup for deprecated ti,otap-del-sel
     - mmc: sdhci_am654: Add OTAP/ITAP delay enable
     - mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock
     - mmc: sdhci_am654: Fix ITAPDLY for HS400 timing
     - Input: pm8xxx-vibrator - correct VIB_MAX_LEVELS calculation
     - [arm64] drm/msm/dsi: Print dual-DSI-adjusted pclk instead of original mode
       pclk
     - [arm64] drm/msm/dpu: Always flush the slave INTF on the CTL
     - drm/bridge: tc358775: fix support for jeida-18 and jeida-24
     - media: stk1160: fix bounds checking in stk1160_copy_video()
     - scsi: qla2xxx: Replace all non-returning strlcpy() with strscpy()
     - Input: cyapa - add missing input core locking to suspend/resume functions
     - media: flexcop-usb: fix sanity check of bNumEndpoints
     - [powerpc*] pseries: Add failure related checks for h_get_mpp and h_get_ppp
     - media: sunxi: a83-mips-csi2: also select GENERIC_PHY
     - media: cec: cec-adap: always cancel work in cec_transmit_msg_fh
     - media: cec: cec-api: add locking in cec_release()
     - media: cec: core: avoid recursive cec_claim_log_addrs
     - media: cec: core: avoid confusing "transmit timed out" message
     - Revert "drm/bridge: ti-sn65dsi83: Fix enable error path"
     - [arm64] drm/msm: Enable clamp_to_idle for 7c3
     - [arm64] drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting
       fails
     - null_blk: Fix the WARNING: modpost: missing MODULE_DESCRIPTION()
     - ALSA: hda/cs_dsp_ctl: Use private_free for control cleanup
     - ASoC: mediatek: mt8192: fix register configuration for tdm
     - regulator: bd71828: Don't overwrite runtime voltages
     - perf/arm-dmc620: Fix lockdep assert in ->event_init()
     - [x86] kconfig: Select ARCH_WANT_FRAME_POINTERS again when
       UNWINDER_FRAME_POINTER=y
     - net: Always descend into dsa/ folder with CONFIG_NET_DSA enabled
     - ipv6: sr: fix missing sk_buff release in seg6_input_core
     - nfc: nci: Fix uninit-value in nci_rx_work
     - ASoC: tas2552: Add TX path for capturing AUDIO-OUT data
     - NFSv4: Fixup smatch warning for ambiguous return
     - nfs: keep server info for remounts
     - sunrpc: fix NFSACL RPC retry on soft mount
     - rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL
     - af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock.
       (CVE-2024-36972)
     - ipv6: sr: fix memleak in seg6_hmac_init_algo
     - tcp: Fix shift-out-of-bounds in dctcp_update_alpha().
     - pNFS/filelayout: fixup pNfs allocation modes
     - openvswitch: Set the skbuff pkt_type for proper pmtud support.
     - [arm64] asm-bug: Add .align 2 to the end of __BUG_ENTRY
     - rv: Update rv_en(dis)able_monitor doc to match kernel-doc
     - virtio: delete vq in vp_find_vqs_msix() when request_irq() fails
     - Revert "ixgbe: Manual AN-37 for troublesome link partners for X550 SFI"
     - net: fec: avoid lock evasion when reading pps_enable
     - tls: fix missing memory barrier in tls_init
     - inet: factor out locked section of inet_accept() in a new helper
     - net: relax socket state check at accept time.
     - nfc: nci: Fix kcov check in nci_rx_work()
     - nfc: nci: Fix handling of zero-length payload packets in nci_rx_work()
     - drivers/xen: Improve the late XenStore init protocol
     - ice: Interpret .set_channels() input differently
     - netfilter: nfnetlink_queue: acquire rcu_read_lock() in
       instance_destroy_rcu()
     - netfilter: nft_payload: restore vlan q-in-q match support
     - spi: Don't mark message DMA mapped when no transfer in it is
     - dma-mapping: benchmark: fix node id validation
     - dma-mapping: benchmark: handle NUMA_NO_NODE correctly
     - nvmet: fix ns enable/disable possible hang
     - net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ8061
     - net/mlx5: Lag, do bond only if slaves agree on roce state
     - net/mlx5e: Fix IPsec tunnel mode offload feature check
     - net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer
       exhaustion
     - net/mlx5e: Fix UDP GSO for encapsulated packets
     - dma-buf/sw-sync: don't enable IRQ from sync_print_obj()
     - bpf: Fix potential integer overflow in resolve_btfids
     - ALSA: jack: Use guard() for locking
     - ALSA: core: Remove debugfs at disconnection
     - ALSA: hda/realtek: Add quirk for ASUS ROG G634Z
     - ALSA: hda/realtek: Amend G634 quirk to enable rear speakers
     - ALSA: hda/realtek: Adjust G814JZR to use SPI init for amp
     - enic: Validate length of nl attributes in enic_set_vf_port
     - af_unix: Read sk->sk_hash under bindlock during bind().
     - net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM
     - bpf: Allow delete from sockmap/sockhash only if update is allowed
     - net:fec: Add fec_enet_deinit()
     - ice: fix accounting if a VLAN already exists
     - netfilter: nft_payload: move struct nft_payload_set definition where it
       belongs
     - netfilter: nft_payload: rebuild vlan header when needed
     - netfilter: nft_payload: rebuild vlan header on h_proto access
     - netfilter: nft_payload: skbuff vlan metadata mangle support
     - netfilter: tproxy: bail out if IP has been disabled on the device
     - netfilter: nft_fib: allow from forward/input without iif selector
     - kconfig: fix comparison to constant symbols, 'm', 'n'
     - [x86] drm/i915/guc: avoid FIELD_PREP warning
     - spi: stm32: Don't warn about spurious interrupts
     - net: dsa: microchip: fix RGMII error in KSZ DSA driver
     - net: ena: Add dynamic recycling mechanism for rx buffers
     - net: ena: Reduce lines with longer column width boundary
     - net: ena: Fix redundant device NUMA node override
     - ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound
     - [powerpc*] pseries/lparcfg: drop error message from guest name lookup
     - hwmon: (shtc1) Fix property misspelling
     - ALSA: timer: Set lower bound of start tick time
     - net: ena: Fix DMA syncing in XDP path when SWIOTLB is on
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.94
     - drm: Check output polling initialized before disabling (CVE-2024-35927)
     - drm: Check polling initialized before enabling in
       drm_helper_probe_single_connector_modes
     - Bluetooth: btrtl: Add missing MODULE_FIRMWARE declarations
     - maple_tree: fix allocation in mas_sparse_area()
     - maple_tree: fix mas_empty_area_rev() null pointer dereference
       (CVE-2024-36891)
     - mmc: core: Do not force a retune before RPMB switch
     - afs: Don't cross .backup mountpoint from backup volume
     - nilfs2: fix use-after-free of timer for log writer thread (CVE-2024-38583)
     - [x86] drm/i915/audio: Fix audio time stamp programming for DP
     - mptcp: avoid some duplicate code in socket option handling
     - mptcp: cleanup SOL_TCP handling
     - mptcp: fix full TCP keep-alive support
     - vxlan: Fix regression when dropping packets due to invalid src addresses
     - scripts/gdb: fix SB_* constants parsing
     - f2fs: fix to do sanity check on i_xattr_nid in sanity_check_inode()
     - media: lgdt3306a: Add a check against null-pointer-def
     - drm/amdgpu: add error handle to avoid out-of-bounds
     - bcache: fix variable length array abuse in btree_iter
     - wifi: rtw89: correct aSIFSTime for 6GHz band
     - ata: pata_legacy: make legacy_exit() work again
     - thermal/drivers/qcom/lmh: Check for SCM availability at probe
     - [arm64] soc: qcom: rpmh-rsc: Enhance check for VRM in-flight request
     - ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx
     - [arm64] tegra: Correct Tegra132 I2C alias
     - [arm64] dts: qcom: qcs404: fix bluetooth device address
     - md/raid5: fix deadlock that raid5d() wait for itself to clear
       MD_SB_CHANGE_PENDING
     - wifi: rtw89: pci: correct TX resource checking for PCI DMA channel of
       firmware command
     - wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU
     - wifi: rtlwifi: rtl8192de: Fix 5 GHz TX power
     - wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE
     - wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path
     - [arm64] dts: hi3798cv200: fix the size of GICR
     - media: mc: Fix graph walk in media_pipeline_start
     - media: mc: mark the media devnode as registered from the, start
     - media: mxl5xx: Move xpt structures off stack
     - media: v4l2-core: hold videodev_lock until dev reg, finishes
     - mmc: core: Add mmc_gpiod_set_cd_config() function
     - mmc: sdhci: Add support for "Tuning Error" interrupts
     - mmc: sdhci-acpi: Sort DMI quirks alphabetically
     - mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working
     - mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A
     - mmc: sdhci-acpi: Add quirk to enable pull-up on the card-detect GPIO on
       Asus T100TA
     - fbdev: savage: Handle err return when savagefb_check_var failed
     - drm/amdgpu/atomfirmware: add intergrated info v2.3 table
     - 9p: add missing locking around taking dentry fid list
     - drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms
     - [arm64] KVM: arm64: Fix AArch32 register narrowing on userspace write
     - [arm64] KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode
     - [arm64] KVM: arm64: AArch32: Fix spurious trapping of conditional
       instructions
     - crypto: ecdsa - Fix module auto-load on add-key
     - crypto: ecrdsa - Fix module auto-load on add_key
     - [x86] crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak
     - mm: fix race between __split_huge_pmd_locked() and GUP-fast
     - scsi: core: Handle devices which return an unusually large VPD page count
     - net/ipv6: Fix route deleting failure when metric equals 0
     - net/9p: fix uninit-value in p9_client_rpc()
     - kmsan: do not wipe out origin when doing partial unpoisoning
     - cpufreq: amd-pstate: Fix the inconsistency in max frequency units
     - [x86] intel_th: pci: Add Meteor Lake-S CPU support
     - mm/cma: drop incorrect alignment check in cma_init_reserved_mem
     - mm/hugetlb: pass correct order_per_bit to cma_declare_contiguous_nid
     - watchdog: rti_wdt: Set min_hw_heartbeat_ms to accommodate a safety margin
     - kdb: Fix buffer overflow during tab-complete
     - kdb: Use format-strings rather than '\0' injection in kdb_read()
     - kdb: Fix console handling when editing and tab-completing commands
     - kdb: Merge identical case statements in kdb_read()
     - kdb: Use format-specifiers rather than memset() for padding in kdb_read()
     - net: fix __dst_negative_advice() race (CVE-2024-36971)
     - ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow
     - ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()
     - [s390x] ap: Fix crash in AP internal function modify_bitmap()
     - [s390x] cpacf: Split and rework cpacf query functions
     - [s390x] cpacf: Make use of invalid opcode produce a link error
     - i3c: master: svc: fix invalidate IBI type and miss call client IBI handler
     - EDAC/igen6: Convert PCIBIOS_* return codes to errnos
     - nfs: fix undefined behavior in nfs_block_bits()
     - NFS: Fix READ_PLUS when server doesn't support OP_READ_PLUS
     - btrfs: fix crash on racing fsync and size-extending write into prealloc
     - [powerpc*] bpf: enforce full ordering for ATOMIC operations with BPF_FETCH
     - smb: client: fix deadlock in smb2_find_smb_tcon()
     - smp: Provide 'setup_max_cpus' definition on UP too
 .
   [ Uwe Kleine-König ]
   * [arm*] Enable symbols in Raspberry Pi device trees for simplified overlay
     application.
   * d/rules: Let blhc ignore perf tests binaries that are compiled without
     fortification
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 22
   * [rt] Update to 6.1.90-rt30
   * net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (CVE-2024-36974)
linux-signed-amd64 (6.1.90+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.90-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.86
     - amdkfd: use calloc instead of kzalloc to avoid integer overflow
       (CVE-2024-26817)
     - wifi: ath9k: fix LNA selection in ath_ant_try_scan()
     - bnx2x: Fix firmware version string character counts
     - wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor
     - [x86] VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host()
     - wifi: iwlwifi: pcie: Add the PCI device id for new hardware
     - panic: Flush kernel log buffer at the end
     - cpuidle: Avoid potential overflow in integer multiplication
     - [arm64] dts: rockchip: fix rk3328 hdmi ports node
     - [arm64] dts: rockchip: fix rk3399 hdmi ports node
     - ionic: set adminq irq affinity
     - net: skbuff: add overflow debug check to pull/push helpers
     - wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro
     - pstore/zone: Add a null pointer check to the psz_kmsg_read
     - net: pcs: xpcs: Return EINVAL in the internal methods
     - dma-direct: Leak pages on dma_set_decrypted() failure
     - wifi: ath11k: decrease MHI channel buffer length to 8KB
     - cpufreq: Don't unregister cpufreq cooling on CPU hotplug
     - btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks()
     - btrfs: export: handle invalid inode or root reference in
       btrfs_get_parent()
     - btrfs: send: handle path ref underflow in header iterate_inode_ref()
     - ice: use relative VSI index for VFs instead of PF VSI number
     - net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list()
     - Bluetooth: btintel: Fix null ptr deref in btintel_read_version
     - Bluetooth: btmtk: Add MODULE_FIRMWARE() for MT7922
     - [arm64,armhf] drm/vc4: don't check if plane->state->fb == state->fb
     - Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails
     - drm: panel-orientation-quirks: Add quirk for GPD Win Mini
     - pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs
     - sysv: don't call sb_bread() with pointers_lock held
     - scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc()
     - isofs: handle CDs with bad root inode but good Joliet root directory
     - ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710)
       laptops
     - rcu-tasks: Repair RCU Tasks Trace quiescence check
     - Julia Lawall reported this null pointer dereference, this should fix it.
     - media: sta2x11: fix irq handler cast
     - ALSA: firewire-lib: handle quirk to calculate payload quadlets as data
       block counter
     - ext4: add a hint for block bitmap corrupt state in mb_groups
     - ext4: forbid commit inconsistent quota data when errors=remount-ro
     - drm/amd/display: Fix nanosec stat overflow
     - drm/amd/amdgpu: Fix potential ioremap() memory leaks in
       amdgpu_device_init()
     - SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to
       unsigned int
     - Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default"
     - libperf evlist: Avoid out-of-bounds access
     - input/touchscreen: imagis: Correct the maximum touch area value
     - block: prevent division by zero in blk_rq_stat_sum()
     - RDMA/cm: add timeout to cm_destroy_id wait
     - Input: imagis - use FIELD_GET where applicable
     - Input: allocate keycode for Display refresh rate toggle
     - platform/x86: touchscreen_dmi: Add an extra entry for a variant of the
       Chuwi Vi8 tablet
     - [x86] perf/x86/amd/lbr: Discard erroneous branch entries
     - ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent
       environment
     - bus: mhi: host: Add MHI_PM_SYS_ERR_FAIL state
     - usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR
     - [x86] thunderbolt: Keep the domain powered when USB4 port is in redrive
       mode
     - usb: typec: tcpci: add generic tcpci fallback compatible
     - usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined
     - thermal/of: Assume polling-delay(-passive) 0 when absent
     - ASoC: soc-core.c: Skip dummy codec when adding platforms
     - fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2
     - io_uring: clear opcode specific data for an early failure
     - drivers/nvme: Add quirks for device 126f:2262
     - fbmon: prevent division by zero in fb_videomode_from_videomode()
     - netfilter: nf_tables: release batch on table validation from abort path
     - netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path
       (CVE-2024-26925)
     - netfilter: nf_tables: discard table flag update with pending basechain
       deletion
     - gcc-plugins/stackleak: Avoid .head.text section
     - virtio: reenable config if freezing device failed
     - randomize_kstack: Improve entropy diffusion
     - [x86] platform/x86: intel-vbtn: Update tablet mode switch at end of probe
     - Bluetooth: btintel: Fixe build regression
     - net: mpls: error out if inner headers are not set
     - [x86] VMCI: Fix possible memcpy() run-time warning in
       vmci_datagram_invoke_guest_handler()
     - Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in
       amdgpu_device_init()"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.87
     - smb3: fix Open files on server counter going negative
     - ata: libata-scsi: Fix ata_scsi_dev_rescan() error path
     - batman-adv: Avoid infinite loop trying to resize local TT
     - ring-buffer: Only update pages_touched when a new page is touched
     - Bluetooth: Fix memory leak in hci_req_sync_complete()
     - drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11
     - PM: s2idle: Make sure CPUs will wakeup directly on resume
     - media: cec: core: remove length check of Timer Status
     - Revert "drm/qxl: simplify qxl_fence_wait" (Closes: #1054514)
     - nouveau: fix function cast warning
     - scsi: hisi_sas: Modify the deadline for ata_wait_after_reset()
     - scsi: qla2xxx: Fix off by one in qla_edif_app_getstats()
     - net: openvswitch: fix unwanted error log on timeout policy probing
     - u64_stats: fix u64_stats_init() for lockdep when used repeatedly in one
       file
     - xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING
     - geneve: fix header validation in geneve[6]_xmit_skb
     - bnxt_en: Reset PTP tx_avail after possible firmware reset
     - af_unix: Clear stale u->oob_skb.
     - ipv6: fib: hide unused 'pn' variable
     - ipv4/route: avoid unused-but-set-variable warning
     - ipv6: fix race condition between ipv6_get_ifaddr and ipv6_del_addr
     - Bluetooth: SCO: Fix not validating setsockopt user input
     - Bluetooth: L2CAP: Fix not validating setsockopt user input
     - netfilter: complete validation of user input
     - net/mlx5: Properly link new fs rules into the tree
     - net/mlx5e: Fix mlx5e_priv_init() cleanup flow
     - net/mlx5e: HTB, Fix inconsistencies with QoS SQs number
     - af_unix: Do not use atomic ops for unix_sk(sk)->inflight.
     - af_unix: Fix garbage collector racing against connect() (CVE-2024-26923)
     - net: ena: Fix potential sign extension issue
     - net: ena: Wrong missing IO completions check order
     - net: ena: Fix incorrect descriptor free behavior
     - tracing: hide unused ftrace_event_id_fops
     - [amd64] iommu/vt-d: Allocate local memory for page request queue
     - btrfs: qgroup: correctly model root qgroup rsv in convert
     - btrfs: record delayed inode root in transaction
     - btrfs: qgroup: convert PREALLOC to PERTRANS after record_root_in_trans
     - io_uring/net: restore msg_control on sendzc retry
     - kprobes: Fix possible use-after-free issue on kprobe registration
     - [x86] drm/i915/vrr: Disable VRR when using bigjoiner
     - drm/ast: Fix soft lockup
     - drm/client: Fully protect modes[] with dev->mode_config.mutex
     - vhost: Add smp_rmb() in vhost_vq_avail_empty()
     - vhost: Add smp_rmb() in vhost_enable_notify()
     - [x86] perf/x86: Fix out of range data
     - [x86] cpu: Actually turn off mitigations by default for
       SPECULATION_MITIGATIONS=n
     - [x86] apic: Force native_apic_mem_read() to use the MOV instruction
     - irqflags: Explicitly ignore lockdep_hrtimer_exit() argument
     - [x86] bugs: Fix return type of spectre_bhi_state()
     - [x86] bugs: Fix BHI documentation
     - [x86] bugs: Cache the value of MSR_IA32_ARCH_CAPABILITIES
     - [x86] bugs: Rename various 'ia32_cap' variables to 'x86_arch_cap_msr'
     - [x86] bugs: Fix BHI handling of RRSBA
     - [x86] bugs: Clarify that syscall hardening isn't a BHI mitigation
     - [x86] bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto
     - [x86] bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with
       CONFIG_MITIGATION_SPECTRE_BHI
     - [x86] drm/i915/cdclk: Fix CDCLK programming order when pipes are active
     - [x86] drm/i915: Disable port sync when bigjoiner is used
     - drm/amdgpu: Reset dGPU if suspend got aborted
     - drm/amdgpu: always force full reset for SOC21
     - drm/amd/display: fix disable otg wa logic in DCN316
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.88
     - drm/vmwgfx: Enable DMA mappings with SEV
     - drm/amdgpu: fix incorrect active rb bitmap for gfx11
     - drm/amdgpu: fix incorrect number of active RBs for gfx11
     - drm/amd/display: Do not recursively call manual trigger programming
     - io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64()
       failure
     - SUNRPC: Fix rpcgss_context trace event acceptor field
     - random: handle creditable entropy from atomic process context
     - net: usb: ax88179_178a: avoid writing the mac address before first reading
     - [x86] drm/i915/vma: Fix UAF on destroy against retire race
     - [x86] efi: Drop EFI stub .bss from .data section
     - [x86] efi: Disregard setup header of loaded image
     - [x86] efistub: Reinstate soft limit for initrd loading
     - [x86] efi: Drop alignment flags from PE section headers
     - [x86] boot: Remove the 'bugger off' message
     - [x86] boot: Omit compression buffer from PE/COFF image memory footprint
     - [x86] boot: Drop redundant code setting the root device
     - [x86] boot: Drop references to startup_64
     - [x86] boot: Grab kernel_info offset from zoffset header directly
     - [x86] boot: Set EFI handover offset directly in header asm
     - [x86] boot: Define setup size in linker script
     - [x86] boot: Derive file size from _edata symbol
     - [x86] boot: Construct PE/COFF .text section from assembler
     - [x86] boot: Drop PE/COFF .reloc section
     - [x86] boot: Split off PE/COFF .data section
     - [x86] boot: Increase section and file alignment to 4k/512
     - [x86] efistub: Use 1:1 file:memory mapping for PE/COFF .compat section
     - [x86] mm: Remove P*D_PAGE_MASK and P*D_PAGE_SIZE macros
     - [x86] head/64: Add missing __head annotation to startup_64_load_idt()
     - [x86] head/64: Move the __head definition to <asm/init.h>
     - [x86] sme: Move early SME kernel encryption handling into .head.text
     - [x86] sev: Move early startup code into .head.text section
     - [x86] efistub: Remap kernel text read-only before dropping NX attribute
     - netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()
     - netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()
     - netfilter: br_netfilter: skip conntrack input hook for promisc packets
     - netfilter: nft_set_pipapo: do not free live element (CVE-2024-26924)
     - netfilter: flowtable: validate pppoe header
     - netfilter: flowtable: incorrect pppoe tuple
     - af_unix: Call manage_oob() for every skb in unix_stream_read_generic().
     - af_unix: Don't peek OOB data without MSG_OOB.
     - net/mlx5: Lag, restore buckets number to default after hash LAG
       deactivation
     - net/mlx5e: Prevent deadlock while disabling aRFS
     - ice: tc: allow zero flags in parsing tc flower
     - tun: limit printing rate when illegal packet received by tun dev
     - [arm64] net: ethernet: ti: am65-cpsw-nuss: cleanup DMA Channels before
       using them
     - RDMA/rxe: Fix the problem "mutex_destroy missing"
     - RDMA/cm: Print the old state when cm_destroy_id gets timeout
     - RDMA/mlx5: Fix port number for counter query in multi-port configuration
     - [s390x] qdio: handle deferred cc1
     - [s390x] cio: fix race condition during online processing
     - drm: nv04: Fix out of bounds access
     - [armhf] omap2: n8x0: stop instantiating codec platform data
     - PCI: Avoid FLR for SolidRun SNET DPU rev 1
     - HID: kye: Sort kye devices
     - usb: pci-quirks: Reduce the length of a spinlock section in
       usb_amd_find_chipset_info()
     - PCI: Delay after FLR of Solidigm P44 Pro NVMe
     - [x86] quirks: Include linux/pnp.h for arch_pnpbios_disabled()
     - [x86] thunderbolt: Log function name of the called quirk
     - [x86] thunderbolt: Add debug log for link controller power quirk
     - PCI: Execute quirk_enable_clear_retrain_link() earlier
     - ALSA: scarlett2: Move USB IDs out from device_info struct
     - ALSA: scarlett2: Add support for Clarett 8Pre USB
     - ASoC: ti: Convert Pandora ASoC to GPIO descriptors
     - ALSA: scarlett2: Default mixer driver to enabled
     - ALSA: scarlett2: Add correct product series name to messages
     - ALSA: scarlett2: Add Focusrite Clarett+ 2Pre and 4Pre support
     - ALSA: scarlett2: Add Focusrite Clarett 2Pre and 4Pre USB support
     - PCI/DPC: Use FIELD_GET()
     - PCI: Simplify pcie_capability_clear_and_set_word() to ..._clear_word()
     - ALSA: scarlett2: Rename scarlett_gen2 to scarlett2
     - drm: panel-orientation-quirks: Add quirk for Lenovo Legion Go
     - usb: xhci: Add timeout argument in address_device USB HCD callback
     - usb: new quirk to reduce the SET_ADDRESS request timeout
     - clk: Remove prepare_lock hold assertion in __clk_release()
     - clk: Print an info line before disabling unused clocks
     - clk: Initialize struct clk_core kref earlier
     - clk: Get runtime PM before walking tree during disable_unused
     - clk: remove unnecessary (void*) conversions
     - clk: Show active consumers of clocks in debugfs
     - clk: Get runtime PM before walking tree for clk_summary
     - [x86] bugs: Fix BHI retpoline check
     - [x86] cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ
     - ALSA: hda/realtek - Enable audio jacks of Haier Boyue G42 with ALC269VC
     - [arm*] binder: check offset alignment in binder_get_object()
       (CVE-2024-26926)
     - [x86] thunderbolt: Avoid notify PM core about runtime PM resume
     - [x86] thunderbolt: Fix wake configurations after device unplug
     - [x86] comedi: vmk80xx: fix incomplete endpoint checking
     - [armhf] serial: stm32: Return IRQ_NONE in the ISR if no handling happend
     - [armhf] serial: stm32: Reset .throttled state in .startup()
     - USB: serial: option: add Fibocom FM135-GL variants
     - USB: serial: option: add support for Fibocom FM650/FG650
     - USB: serial: option: add Lonsung U8300/U9300 product
     - USB: serial: option: support Quectel EM060K sub-models
     - USB: serial: option: add Rolling RW101-GL and RW135-GL support
     - USB: serial: option: add Telit FN920C04 rmnet compositions
     - Revert "usb: cdc-wdm: close race between read and workqueue"
     - [arm64,armhf] usb: dwc2: host: Fix dereference issue in DDMA completion
       flow.
     - usb: Disable USB3 LPM at shutdown
     - usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport
       error
     - mei: me: disable RPL-S on SPS and IGN firmwares
     - speakup: Avoid crash on very long word
     - fs: sysfs: Fix reference leak in sysfs_break_active_protection()
     - [x86] KVM: x86: Snapshot if a vCPU's vendor model is AMD vs. Intel
       compatible
     - [x86] KVM: x86/pmu: Disable support for adaptive PEBS
     - [x86] KVM: x86/pmu: Do not mask LVTPC when handling a PMI on AMD platforms
     - [arm64] hibernate: Fix level3 translation fault in swsusp_save()
     - init/main.c: Fix potential static_command_line memory overflow
     - mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled
     - drm/amdgpu: validate the parameters of bo mapping operations more clearly
       (CVE-2024-26922)
     - drm/vmwgfx: Sort primary plane formats by order of preference
     - drm/vmwgfx: Fix crtc's atomic check conditional
     - nouveau: fix instmem race condition around ptr stores
     - bootconfig: use memblock_free_late to free xbc memory to buddy
     - nilfs2: fix OOB in nilfs_set_de_type
     - net: dsa: introduce preferred_default_local_cpu_port and use on MT7530
     - ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf
     - ksmbd: validate request buffer size in smb2_allocate_rsp_buf()
     - ksmbd: clear RENAME_NOREPLACE before calling vfs_rename
     - ksmbd: common: use struct_group_attr instead of struct_group for
       network_open_info
     - PCI/ASPM: Fix deadlock when enabling ASPM (CVE-2024-26605)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.89
     - Revert "ASoC: ti: Convert Pandora ASoC to GPIO descriptors"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.90
     - smb: client: fix rename(2) regression against samba
     - cifs: reinstate original behavior again for forceuid/forcegid
     - [amd64] HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized
       dev->devc
     - HID: logitech-dj: allow mice to use all types of reports
     - wifi: iwlwifi: mvm: remove old PASN station when adding a new one
     - wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd
     - vxlan: drop packets from invalid src-address
     - icmp: prevent possible NULL dereferences from icmp_build_probe()
     - bridge/br_netlink.c: no need to return void function
     - bnxt_en: refactor reset close code
     - bnxt_en: Fix the PCI-AER routines
     - NFC: trf7970a: disable all regulators on removal
     - ax25: Fix netdev refcount issue
     - net: make SK_MEMORY_PCPU_RESERV tunable
     - net: fix sk_memory_allocated_{add|sub} vs softirqs
     - ipv4: check for NULL idev in ip_route_use_hint()
     - net: usb: ax88179_178a: stop lying about skb->truesize
     - net: gtp: Fix Use-After-Free in gtp_dellink
     - Bluetooth: MGMT: Fix failing to MGMT_OP_ADD_UUID/MGMT_OP_REMOVE_UUID
     - Bluetooth: hci_sync: Using hci_cmd_sync_submit when removing Adv Monitor
     - Bluetooth: qca: set power_ctrl_enabled on NULL returned by
       gpiod_get_optional()
     - ipvs: Fix checksumming on GSO of SCTP packets
     - net: openvswitch: Fix Use-After-Free in ovs_ct_exit
     - eth: bnxt: fix counting packets discarded due to OOM and netpoll
     - netfilter: nf_tables: honor table dormant flag from netdev release event
       path
     - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue
     - i40e: Report MFS in decimal base instead of hex
     - iavf: Fix TC config comparison with existing adapter TC config
     - net: ethernet: ti: am65-cpts: Fix PTPv1 message type on TX packets
     - af_unix: Suppress false-positive lockdep splat for spin_lock() in
       __unix_gc().
     - cifs: Replace remaining 1-element arrays (Closes: #1069102, #1069092)
     - Revert "crypto: api - Disallow identical driver names"
     - virtio_net: Do not send RSS key if it is not supported
     - fork: defer linking file vma until vma is fully initialized
       (CVE-2024-27022)
     - [x86] cpu: Fix check for RDPKRU in __show_regs()
     - Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853
     - Bluetooth: qca: fix NULL-deref on non-serdev suspend
     - [arm64] mmc: sdhci-msm: pervent access to suspended controller
     - smb: client: Fix struct_group() usage in __packed structs
     - smb3: fix lock ordering potential deadlock in cifs_sync_mid_result
     - HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up
     - btrfs: fix information leak in btrfs_ioctl_logical_to_ino()
     - cpu: Re-enable CPU mitigations by default for !X86 architectures
     - drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3
     - drm/amdgpu: Fix leak when GPU memory allocation fails
     - irqchip/gic-v3-its: Prevent double free on error
     - ACPI: CPPC: Use access_width over bit_width for system memory accesses
     - ACPI: CPPC: Fix bit_offset shift in MASK_VAL() macro
     - ACPI: CPPC: Fix access width used for PCC registers
     - ethernet: Add helper for assigning packet type when dest address does not
       match device address
     - net: b44: set pause params only when interface is up
     - stackdepot: respect __GFP_NOLOCKDEP allocation flag
     - fbdev: fix incorrect address computation in deferred IO
     - udp: preserve the connected status if only UDP cmsg
     - mtd: diskonchip: work around ubsan link failure
     - [x86] tdx: Preserve shared bit on mprotect()
     - [x86] idma64: Don't try to serve interrupts when device is powered off
     - [arm64,armhf] phy: marvell: a3700-comphy: Fix out of bounds read
     - [arm64,armhf] phy: marvell: a3700-comphy: Fix hardcoded array size
     - [arm64] phy: rockchip-snps-pcie3: fix bifurcation on rk3588
     - [arm64] phy: rockchip-snps-pcie3: fix clearing PHP_GRF_PCIESEL_CON bits
     - [amd64] dmaengine: idxd: Fix oops during rmmod on single-CPU platforms
     - i2c: smbus: fix NULL function pointer dereference
     - bounds: Use the right number of bits for power-of-two CONFIG_NR_CPUS
     - macsec: Enable devices to advertise whether they update sk_buff md_dst
       during offloads
     - macsec: Detect if Rx skb is macsec-related for offloading devices that
       update md_dst
     - net/mlx5e: Advertise mlx5 ethernet driver updates sk_buff md_dst for
       MACsec
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 21
   * drivers/tty: Disable N_GSM
   * tipc: fix UAF in error path
   * tipc: fix a possible memleak in tipc_buf_append
linux-signed-amd64 (6.1.90+1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Sign kernel from linux 6.1.90-1~bpo11+1
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.21
linux-signed-amd64 (6.1.85+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.85-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.83
     - md: fix data corruption for raid456 when reshape restart while grow up
     - md/raid10: prevent soft lockup while flush writes
     - io_uring/unix: drop usage of io_uring socket
     - io_uring: drop any code related to SCM_RIGHTS
     - nfsd: allow nfsd_file_get to sanely handle a NULL pointer
     - nfsd: don't open-code clear_and_wake_up_bit
     - nfsd: NFSD_FILE_KEY_INODE only needs to find GC'ed entries
     - nfsd: simplify test_bit return in NFSD_FILE_KEY_FULL comparator
     - nfsd: don't kill nfsd_files because of lease break error
     - nfsd: add some comments to nfsd_file_do_acquire
     - nfsd: don't take/put an extra reference when putting a file
     - nfsd: update comment over __nfsd_file_cache_purge
     - nfsd: allow reaping files still under writeback
     - NFSD: Convert filecache to rhltable
     - nfsd: simplify the delayed disposal list code
     - NFSD: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop
     - NFSD: Add an nfsd4_encode_nfstime4() helper
     - nfsd: Fix creation time serialization order
     - [arm64] media: rkisp1: Fix IRQ handling due to shared interrupts
     - perf/arm-cmn: Workaround AmpereOneX errata AC04_MESH_1 (incorrect child
       count)
     - ASoC: rt5645: Make LattePanda board DMI match more precise
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82UU
     - [x86] xen: Add some null pointer checking to smp.c
     - [mips*] Clear Cause.BD in instruction_pointer_set
     - HID: multitouch: Add required quirk for Synaptics 0xcddc device
     - gen_compile_commands: fix invalid escape sequence warning
     - [arm64] sve: Lower the maximum allocation for the SVE ptrace regset
     - soc: microchip: Fix POLARFIRE_SOC_SYS_CTRL input prompt
     - RDMA/mlx5: Fix fortify source warning while accessing Eth segment
     - RDMA/mlx5: Relax DEVX access upon modify commands
     - [x86] mm: Move is_vsyscall_vaddr() into asm/vsyscall.h
     - [x86] mm: Disallow vsyscall page read for copy_from_kernel_nofault()
     - net/iucv: fix the allocation size of iucv_path_table array
     - block: sed-opal: handle empty atoms when parsing response
     - dm-verity, dm-crypt: align "struct bvec_iter" correctly
     - [arm64] dts: Fix dtc interrupt_provider warnings
     - btrfs: fix data races when accessing the reserved amount of block reserves
     - btrfs: fix data race at btrfs_use_block_rsv() when accessing block reserve
     - net: smsc95xx: add support for SYS TEC USB-SPEmodule1
     - wifi: mac80211: only call drv_sta_rc_update for uploaded stations
     - [x86] ASoC: amd: yc: Add Lenovo ThinkBook 21J0 into DMI quirk table
     - scsi: mpt3sas: Prevent sending diag_reset when the controller is ready
     - ALSA: hda/realtek - ALC285 reduce pop noise from Headphone port
     - drm/amdgpu: Enable gpu reset for S3 abort cases on Raven series
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 21J2
     - Bluetooth: mgmt: Fix limited discoverable off timeout
     - firewire: core: use long bus reset on gap count error
     - [arm64] tegra: Set the correct PHY mode for MGBE
     - [x86] ASoC: Intel: bytcr_rt5640: Add an extra entry for the Chuwi Vi8
       tablet
     - Input: gpio_keys_polled - suppress deferred probe error for gpio
     - [x86] ASoC: wm8962: Enable oscillator if selecting WM8962_FLL_OSC
     - [x86] ASoC: wm8962: Enable both SPKOUTR_ENA and SPKOUTL_ENA in mono mode
     - [x86] ASoC: wm8962: Fix up incorrect error message in wm8962_set_fll
     - do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak
     - fs: Fix rw_hint validation
     - [s390x] dasd: add autoquiesce feature
     - [s390x] dasd: Use dev_*() for device log messages
     - [s390x] dasd: fix double module refcount decrement
     - rcu/exp: Fix RCU expedited parallel grace period kworker allocation
       failure recovery
     - rcu/exp: Handle RCU expedited grace period kworker allocation failure
     - nbd: null check for nla_nest_start
     - fs/select: rework stack allocation hack for clang
     - md: Don't clear MD_CLOSING when the raid is about to stop
     - lib/cmdline: Fix an invalid format specifier in an assertion msg
     - lib: memcpy_kunit: Fix an invalid format specifier in an assertion msg
     - time: test: Fix incorrect format specifier
     - rtc: test: Fix invalid format specifier.
     - io_uring/net: unify how recvmsg and sendmsg copy in the msghdr
     - io_uring/net: move receive multishot out of the generic msghdr path
     - io_uring/net: fix overflow check in io_recvmsg_mshot_prep()
     - [x86] resctrl: Implement new mba_MBps throttling heuristic
     - [x86] sme: Fix memory encryption setting if enabled by default and not
       overridden
     - timekeeping: Fix cross-timestamp interpolation on counter wrap
     - timekeeping: Fix cross-timestamp interpolation corner case decision
     - timekeeping: Fix cross-timestamp interpolation for non-x86
     - sched/fair: Take the scheduling domain into account in select_idle_smt()
     - sched/fair: Take the scheduling domain into account in select_idle_core()
     - wifi: b43: Stop/wake correct queue in DMA Tx path when QoS is disabled
     - wifi: b43: Stop/wake correct queue in PIO Tx path when QoS is disabled
     - wifi: b43: Stop correct queue in DMA worker when QoS is disabled
     - wifi: b43: Disable QoS for bcm4331
     - wifi: wilc1000: fix declarations ordering
     - wifi: wilc1000: fix RCU usage in connect path
     - wifi: rtl8xxxu: add cancel_work_sync() for c2hcmd_work
     - wifi: wilc1000: do not realloc workqueue everytime an interface is added
     - wifi: wilc1000: fix multi-vif management when deleting a vif
     - wifi: mwifiex: debugfs: Drop unnecessary error check for
       debugfs_create_dir()
     - cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value
     - cpufreq: Explicitly include correct DT includes
     - cpufreq: mediatek-hw: Wait for CPU supplies before probing
     - sock_diag: annotate data-races around sock_diag_handlers[family]
     - inet_diag: annotate data-races around inet_diag_table[]
     - bpftool: Silence build warning about calloc()
     - libbpf: Apply map_set_def_max_entries() for inner_maps on creation
     - af_unix: Annotate data-race of gc_in_progress in wait_for_unix_gc().
     - cpufreq: mediatek-hw: Don't error out if supply is not found
     - libbpf: Fix faccessat() usage on Android
     - pmdomain: qcom: rpmhpd: Drop SA8540P gfx.lvl
     - [arm64] dts: imx8mm-kontron: Disable pullups for I2C signals on OSM-S
       i.MX8MM
     - [arm64] dts: imx8mm-kontron: Disable pullups for I2C signals on SL/BL
       i.MX8MM
     - [arm64] dts: imx8mm-kontron: Disable pullups for onboard UART signals on
       BL OSM-S board
     - [arm64] dts: imx8mm-kontron: Disable pullups for onboard UART signals on
       BL board
     - [arm64] dts: imx8mm-kontron: Disable pull resistors for SD card signals on
       BL OSM-S board
     - [arm64] dts: imx8mm-kontron: Disable pull resistors for SD card signals on
       BL board
     - [arm64] dts: imx8mm-kontron: Fix interrupt for RTC on OSM-S i.MX8MM module
     - libbpf: Add missing LIBBPF_API annotation to libbpf_set_memlock_rlim API
     - wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete
     - wifi: iwlwifi: mvm: report beacon protection failures
     - wifi: iwlwifi: dbg-tlv: ensure NUL termination
     - wifi: iwlwifi: fix EWRD table validity check
     - gpio: vf610: allow disabling the vf610 driver
     - [arm64] dts: imx8mm-venice-gw71xx: fix USB OTG VBUS
     - net: blackhole_dev: fix build warning for ethh set but not used
     - wifi: ath11k: initialize rx_mcs_80 and rx_mcs_160 before use
     - wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer()
     - wifi: wfx: fix memory leak when starting AP
     - printk: Disable passing console lock owner completely during panic()
     - pwm: sti: Fix capture for st,pwm-num-chan < st,capture-num-chan
     - tools/resolve_btfids: Refactor set sorting with types from btf_ids.h
     - tools/resolve_btfids: Fix cross-compilation to non-host endianness
     - wifi: iwlwifi: mvm: don't set replay counters to 0xff
     - [s390x] pai: fix attr_event_free upper limit for pai device drivers
     - [s390x] vdso: drop '-fPIC' from LDFLAGS
     - ipv6: mcast: remove one synchronize_net() barrier in ipv6_mc_down()
     - [arm64] dts: mt8183: kukui: Split out keyboard node and describe
       detachables
     - [arm64] dts: mt8183: Move CrosEC base detection node to kukui-based DTs
     - [arm64] dts: mediatek: mt7986: add "#reset-cells" to infracfg
     - [arm64] dts: mediatek: mt8192-asurada: Remove CrosEC base detection node
     - [arm64] dts: mediatek: mt8192: fix vencoder clock name
     - [arm64] dts: mediatek: mt7622: add missing "device_type" to memory nodes
     - bpf: Mark bpf_spin_{lock,unlock}() helpers with notrace correctly
     - wifi: wilc1000: prevent use-after-free on vif when cleaning up all
       interfaces
     - ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit()
     - bus: tegra-aconnect: Update dependency to ARCH_TEGRA
     - [amd64] iommu/amd: Mark interrupt as managed
     - wifi: brcmsmac: avoid function pointer casts
     - [arm64] dts: qcom: sdm845-db845c: correct PCIe wake-gpios
     - [arm64] dts: qcom: sm8150: use 'gpios' suffix for PCI GPIOs
     - [arm64] dts: qcom: sm8150: correct PCIe wake-gpios
     - powercap: dtpm_cpu: Fix error check against freq_qos_add_request()
     - net: ena: Remove ena_select_queue
     - [arm64] dts: mt8195-cherry-tomato: change watchdog reset boot flow
     - firmware: arm_scmi: Fix double free in SMC transport cleanup path
     - wifi: wilc1000: revert reset line logic flip
     - net: mctp: copy skb ext data when fragmenting
     - pstore: inode: Convert mutex usage to guard(mutex)
     - pstore: inode: Only d_invalidate() is needed
     - [arm64] dts: allwinner: h6: Add RX DMA channel for SPDIF
     - ACPI: resource: Add Infinity laptops to irq1_edge_low_force_override
     - ACPI: resource: Do IRQ override on Lunnen Ground laptops
     - ACPI: resource: Add MAIBENBEN X577 to irq1_edge_low_force_override
     - ACPI: scan: Fix device check notification handling
     - [x86] relocs: Ignore relocations in .notes section (CVE-2024-26816)
     - SUNRPC: fix some memleaks in gssx_dec_option_array
     - mmc: wmt-sdmmc: remove an incorrect release_mem_region() call in the
       .remove function
     - ACPI: CPPC: enable AMD CPPC V2 support for family 17h processors
     - wifi: rtw88: 8821c: Fix beacon loss and disconnect
     - wifi: rtw88: 8821c: Fix false alarm count
     - PCI: Make pci_dev_is_disconnected() helper public for other drivers
     - [amd64] iommu/vt-d: Don't issue ATS Invalidation request when device is
       disconnected
     - igb: Fix missing time sync events
     - Bluetooth: Remove HCI_POWER_OFF_TIMEOUT
     - Bluetooth: mgmt: Remove leftover queuing of power_off work
     - Bluetooth: Remove superfluous call to hci_conn_check_pending()
     - Bluetooth: hci_qca: don't use IS_ERR_OR_NULL() with gpiod_get_optional()
     - Bluetooth: Cancel sync command before suspend and power off
     - Bluetooth: hci_sync: Only allow hci_cmd_sync_queue if running
     - Bluetooth: hci_conn: Consolidate code for aborting connections
     - Bluetooth: hci_core: Cancel request on command timeout
     - Bluetooth: hci_sync: Fix overwriting request callback
     - Bluetooth: hci_core: Fix possible buffer overflow
     - Bluetooth: af_bluetooth: Fix deadlock
     - Bluetooth: fix use-after-free in accessing skb after sending it
     - [s390x] cache: prevent rebuild of shared_cpu_list
     - bpf: Fix DEVMAP_HASH overflow check on 32-bit arches
     - bpf: Fix hashtab overflow check on 32-bit arches
     - bpf: Fix stackmap overflow check on 32-bit arches
     - [amd64] iommu/vt-d: Retrieve IOMMU perfmon capability information
     - ipv6: fib6_rules: flush route cache when rule is changed
     - net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv()
     - net: phy: fix phy_get_internal_delay accessing an empty array
     - [arm64] net: hns3: fix wrong judgment condition issue
     - [arm64] net: hns3: fix kernel crash when 1588 is received on HIP08 devices
     - [arm64] net: hns3: fix port duplex configure error in IMP reset
     - Bluetooth: MGMT: Fix always using HCI_MAX_AD_LENGTH
     - Bluetooth: hci_core: Fix missing instances using HCI_MAX_AD_LENGTH
     - Bluetooth: Fix eir name length
     - net: phy: dp83822: Fix RGMII TX delay configuration
     - OPP: debugfs: Fix warning around icc_get_name()
     - tcp: fix incorrect parameter validation in the do_tcp_getsockopt()
       function
     - ipmr: fix incorrect parameter validation in the ip_mroute_getsockopt()
       function
     - l2tp: fix incorrect parameter validation in the pppol2tp_getsockopt()
       function
     - udp: fix incorrect parameter validation in the udp_lib_getsockopt()
       function
     - net: kcm: fix incorrect parameter validation in the kcm_getsockopt)
       function
     - nfp: flower: handle acti_netdevs allocation failure
     - bpf: hardcode BPF_PROG_PACK_SIZE to 2MB * num_possible_nodes()
     - dm raid: fix false positive for requeue needed during reshape
     - dm: call the resume method on internal suspend
     - [arm64,armhf] drm/tegra: dsi: Add missing check for of_find_device_by_node
     - [arm64,armhf] drm/tegra: dpaux: Fix PM disable depth imbalance in
       tegra_dpaux_probe
     - [arm64,armhf] drm/tegra: dsi: Make use of the helper function
       dev_err_probe()
     - [arm64,armhf] drm/tegra: dsi: Fix some error handling paths in
       tegra_dsi_probe()
     - [arm64,armhf] drm/tegra: dsi: Fix missing pm_runtime_disable() in the
       error handling path of tegra_dsi_probe()
     - [arm64,armhf] drm/tegra: hdmi: Convert to devm_platform_ioremap_resource()
     - [arm64,armhf] drm/tegra: hdmi: Fix some error handling paths in
       tegra_hdmi_probe()
     - [arm64,armhf] drm/tegra: rgb: Fix some error handling paths in
       tegra_dc_rgb_probe()
     - [arm64,armhf] drm/tegra: rgb: Fix missing clk_put() in the error handling
       paths of tegra_dc_rgb_probe()
     - [arm64,armhf] drm/tegra: output: Fix missing i2c_put_adapter() in the
       error handling paths of tegra_output_probe()
     - drm: Don't treat 0 as -1 in drm_fixp2int_ceil
     - drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node
     - drm/panel-edp: use put_sync in unprepare
     - drm/lima: fix a memleak in lima_heap_alloc
     - [x86] ASoC: amd: acp: Add missing error handling in sof-mach
     - dmaengine: tegra210-adma: Update dependency to ARCH_TEGRA
     - media: tc358743: register v4l2 async device only after successful setup
     - PCI/DPC: Print all TLP Prefixes, not just the first
     - perf record: Fix possible incorrect free in record__switch_output()
     - HID: lenovo: Add middleclick_workaround sysfs knob for cptkbd
     - drm/amd/display: Fix a potential buffer overflow in
       'dp_dsc_clock_en_read()'
     - drm/amd/display: Fix potential NULL pointer dereferences in
       'dcn10_set_output_transfer_func()'
     - pinctrl: renesas: r8a779g0: Add Audio SSI pins, groups, and functions
     - pinctrl: renesas: r8a779g0: Add missing SCIF_CLK2 pin group/function
     - clk: samsung: exynos850: Propagate SPI IPCLK rate change
     - perf evsel: Fix duplicate initialization of data->id in
       evsel__parse_sample()
     - clk: meson: Add missing clocks to axg_clk_regmaps
     - media: em28xx: annotate unchecked call to media_device_register()
     - media: v4l2-tpg: fix some memleaks in tpg_alloc
     - media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity
     - media: edia: dvbdev: fix a use-after-free
     - clk: qcom: reset: Commonize the de/assert functions
     - clk: qcom: reset: Ensure write completion on reset de/assertion
     - quota: simplify drop_dquot_ref()
     - quota: Fix potential NULL pointer dereference
     - quota: Fix rcu annotations of inode dquot pointers
     - PCI: switchtec: Fix an error handling path in switchtec_pci_probe()
     - crypto: xilinx - call finalize with bh disabled
     - perf thread_map: Free strlist on normal path in
       thread_map__new_by_tid_str()
     - [arm64] drm/msm/dpu: fix the programming of INTF_CFG2_DATA_HCTL_EN
     - [arm64] drm/msm/dpu: Only enable DSC_MODE_MULTIPLEX if dsc_merge is
       enabled
     - drm/radeon/ni: Fix wrong firmware size logging in ni_init_microcode()
     - ALSA: seq: fix function cast warnings
     - perf stat: Avoid metric-only segv
     - [arm64,armhf] ASoC: meson: aiu: fix function pointer type mismatch
     - [arm64,armhf] ASoC: meson: t9015: fix function pointer type mismatch
     - [powerpc*] Force inlining of arch_vmap_p{u/m}d_supported()
     - [x86] ASoC: SOF: Introduce container struct for SOF firmware
     - [x86] ASoC: SOF: Add some bounds checking to firmware data
     - NTB: EPF: fix possible memory leak in pci_vntb_probe()
     - NTB: fix possible name leak in ntb_register_device()
     - media: cedrus: h265: Associate mv col buffers with buffer
     - media: cedrus: h265: Fix configuring bitstream size
     - media: sun8i-di: Fix coefficient writes
     - media: sun8i-di: Fix power on/off sequences
     - media: sun8i-di: Fix chroma difference threshold
     - media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak
     - media: go7007: add check of return value of go7007_read_addr()
     - media: pvrusb2: remove redundant NULL check
     - media: pvrusb2: fix pvr2_stream_callback casts
     - clk: qcom: dispcc-sdm845: Adjust internal GDSC wait times
     - PCI: Mark 3ware-9650SE Root Port Extended Tags as broken
     - clk: hisilicon: hi3519: Release the correct number of gates in
       hi3519_clk_unregister()
     - clk: hisilicon: hi3559a: Fix an erroneous devm_kfree()
     - [arm64,armhf] drm/tegra: put drm_gem_object ref on error in
       tegra_fb_create
     - mfd: syscon: Call of_node_put() only when of_parse_phandle() takes a ref
     - mfd: altera-sysmgr: Call of_node_put() only when of_parse_phandle() takes
       a ref
     - crypto: jitter - fix CRYPTO_JITTERENTROPY help text
     - drm/tidss: Fix initial plane zpos values
     - drm/tidss: Fix sync-lost issue with two displays
     - mtd: maps: physmap-core: fix flash size larger than 32-bit
     - mtd: rawnand: lpc32xx_mlc: fix irq handler prototype
     - [arm64,armhf] ASoC: meson: axg-tdm-interface: fix mclk setup without
       mclk-fs
     - [arm64,armhf] ASoC: meson: axg-tdm-interface: add frame rate constraint
     - HID: amd_sfh: Update HPD sensor structure elements
     - HID: amd_sfh: Avoid disabling the interrupt
     - drm/amdgpu: Fix missing break in ATOM_ARG_IMM Case of atom_get_src_int()
     - media: pvrusb2: fix uaf in pvr2_context_set_notify
     - media: dvb-frontends: avoid stack overflow warnings with clang
     - media: go7007: fix a memleak in go7007_load_encoder
     - media: ttpci: fix two memleaks in budget_av_attach
     - media: mediatek: vcodec: avoid -Wcast-function-type-strict warning
     - gpio: nomadik: fix offset bug in nmk_pmx_set()
     - [powerpc*] pseries: Fix potential memleak in papr_get_attr()
     - [powerpc*] hv-gpci: Fix the H_GET_PERF_COUNTER_INFO hcall return value
       checks
     - [arm64] drm/msm/dpu: add division of drm_display_mode's hskew parameter
     - modules: wait do_free_init correctly
     - powerpc/embedded6xx: Fix no previous prototype for avr_uart_send() etc.
     - leds: aw2013: Unlock mutex before destroying it
     - leds: sgm3140: Add missing timer cleanup and flash gpio control
     - backlight: lm3630a: Initialize backlight_properties on init
     - backlight: lm3630a: Don't set bl->props.brightness in get_brightness
     - backlight: da9052: Fully initialize backlight_properties during probe
     - backlight: lm3639: Fully initialize backlight_properties during probe
     - backlight: lp8788: Fully initialize backlight_properties during probe
     - clk: Fix clk_core_get NULL dereference
     - clk: zynq: Prevent null pointer dereference caused by kmalloc failure
     - ALSA: hda/realtek: fix ALC285 issues on HP Envy x360 laptops
     - ALSA: usb-audio: Stop parsing channels bits when all channels are found.
     - RDMA/irdma: Allow accurate reporting on QP max send/recv WR
     - RDMA/irdma: Remove duplicate assignment
     - RDMA/srpt: Do not register event handler until srpt device is fully setup
     - f2fs: reduce stack memory cost by using bitfield in struct f2fs_io_info
     - f2fs: compress: fix to guarantee persisting compressed blocks by CP
     - f2fs: compress: fix to cover normal cluster write with cp_rwsem
     - f2fs: compress: fix to check unreleased compressed cluster
     - f2fs: simplify __allocate_data_block
     - f2fs: delete obsolete FI_FIRST_BLOCK_WRITTEN
     - f2fs: delete obsolete FI_DROP_CACHE
     - f2fs: introduce get_dnode_addr() to clean up codes
     - f2fs: update blkaddr in __set_data_blkaddr() for cleanup
     - f2fs: compress: fix to avoid inconsistence bewteen i_blocks and dnode
     - f2fs: compress: fix to cover f2fs_disable_compressed_file() w/ i_sem
     - f2fs: fix to avoid potential panic during recovery
     - scsi: csiostor: Avoid function pointer casts
     - [arm64] RDMA/hns: Fix mis-modifying default congestion control algorithm
     - RDMA/device: Fix a race between mad_client and cm_client init
     - RDMA/rtrs-clt: Check strnlen return len in sysfs mpath_policy_store()
     - scsi: bfa: Fix function pointer type mismatch for hcb_qe->cbfn
     - f2fs: compress: fix to check zstd compress level correctly in mount option
     - net: sunrpc: Fix an off by one in rpc_sockaddr2uaddr()
     - NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102
     - NFSv4.2: fix listxattr maximum XDR buffer size
     - f2fs: compress: fix to check compress flag w/ .i_sem lock
     - f2fs: check number of blocks in a current section
     - watchdog: stm32_iwdg: initialize default timeout
     - f2fs: ro: compress: fix to avoid caching unaligned extent
     - NFS: Fix an off by one in root_nfs_cat()
     - f2fs: convert to use sbi directly
     - f2fs: compress: relocate some judgments in f2fs_reserve_compress_blocks
     - f2fs: compress: fix reserve_cblocks counting error when out of space
     - [x86] perf/x86/amd/core: Avoid register reset when CPU is dead
     - afs: Revert "afs: Hide silly-rename files from userspace"
     - nfs: fix panic when nfs4_ff_layout_prepare_ds() fails
     - io_uring/net: correct the type of variable
     - comedi: comedi_test: Prevent timers rescheduling during deletion
     - [armhf] remoteproc: stm32: use correct format strings on 64-bit
     - [armhf] remoteproc: stm32: Fix incorrect type in assignment for va
     - [armhf] remoteproc: stm32: Fix incorrect type assignment returned by
       stm32_rproc_get_loaded_rsc_tablef
     - usb: phy: generic: Get the vbus supply
     - tty: vt: fix 20 vs 0x20 typo in EScsiignore
     - serial: max310x: fix syntax error in IRQ error message
     - tty: serial: samsung: fix tx_empty() to return TIOCSER_TEMT
     - [arm64] dts: broadcom: bcmbca: bcm4908: drop invalid switch cells
     - hwtracing: hisi_ptt: Move type check to the beginning of
       hisi_ptt_pmu_event_init()
     - rtc: mt6397: select IRQ_DOMAIN instead of depending on it
     - serial: 8250_exar: Don't remove GPIO device on suspend
     - staging: greybus: fix get_channel_from_mode() failure path
     - usb: gadget: net2272: Use irqflags in the call to net2272_probe_fin
     - nouveau: reset the bo resource bus info after an eviction
     - tcp: Fix NEW_SYN_RECV handling in inet_twsk_purge()
     - rds: tcp: Fix use-after-free of net in reqsk_timer_handler().
     - [s390x] vtime: fix average steal time calculation
     - net/sched: taprio: proper TCA_TAPRIO_TC_ENTRY_INDEX check (CVE-2024-26815)
     - soc: fsl: dpio: fix kcalloc() argument order
     - tcp: Fix refcnt handling in __inet_hash_connect().
     - hsr: Fix uninit-value access in hsr_get_node()
     - nvme: only set reserved_tags in nvme_alloc_io_tag_set for fabrics
       controllers
     - nvme: add the Apple shared tag workaround to nvme_alloc_io_tag_set
     - nvme: fix reconnection fail due to reserved tag allocation
     - net: mediatek: mtk_eth_soc: clear MAC_MCR_FORCE_LINK only when MAC is up
     - net: ethernet: mtk_eth_soc: fix PPE hanging issue
     - packet: annotate data-races around ignore_outgoing
     - net: veth: do not manipulate GRO when using XDP
     - net: dsa: mt7530: prevent possible incorrect XTAL frequency selection
     - drm: Fix drm_fixp2int_round() making it add 0.5
     - vdpa_sim: reset must not run
     - vdpa/mlx5: Allow CVQ size changes
     - wireguard: receive: annotate data-race around receiving_counter.counter
     - rds: introduce acquire/release ordering in acquire/release_in_xmit()
     - hsr: Handle failures in module init
     - ipv4: raw: Fix sending packets from raw sockets via IPsec tunnels
     - net: phy: fix phy_read_poll_timeout argument type in genphy_loopback
     - dm-integrity: fix a memory leak when rechecking the data
     - net/bnx2x: Prevent access to a freed page in page_pool
     - netfilter: nft_set_pipapo: release elements in clone only from destroy
       path (CVE-2024-26809)
     - netfilter: nf_tables: do not compare internal table flags on updates
     - rcu: add a helper to report consolidated flavor QS
     - net: report RCU QS on threaded NAPI repolling
     - bpf: report RCU QS in cpumap kthread
     - net: dsa: mt7530: fix link-local frames that ingress vlan filtering ports
     - net: dsa: mt7530: fix handling of all link-local frames
     - spi: spi-mt65xx: Fix NULL pointer access in interrupt handler
     - dm: address indent/space issues
     - dm io: Support IO priority
     - dm-integrity: align the outgoing bio in integrity_recheck
     - [armhf] remoteproc: stm32: fix incorrect optional pointers
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.84
     - [x86] cpu: Support AMD Automatic IBRS
     - [x86] bugs: Use sysfs_emit()
     - [x86] KVM: x86: Update KVM-only leaf handling to allow for 100% KVM-only
       leafs
     - [x86] KVM: x86: Advertise CPUID.(EAX=7,ECX=2):EDX[5:0] to userspace
     - [x86] KVM: x86: Use a switch statement and macros in __feature_translate()
     - timers: Update kernel-doc for various functions
     - timers: Use del_timer_sync() even on UP
     - timers: Rename del_timer_sync() to timer_delete_sync()
     - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach
     - media: staging: ipu3-imgu: Set fields before media_entity_pads_init()
     - [arm64] dts: qcom: sc7280: Add additional MSI interrupts
     - [arm64,armhf] remoteproc: virtio: Fix wdg cannot recovery remote processor
     - [arm64] clk: qcom: gcc-sdm845: Add soft dependency on rpmhpd
     - [armhf] arm: dts: marvell: Fix maxium->maxim typo in brownstone dts
     - drm/vmwgfx: Fix possible null pointer derefence with invalid contexts
     - serial: max310x: fix NULL pointer dereference in I2C instantiation
     - pci_iounmap(): Fix MMIO mapping leak
     - media: xc4000: Fix atomicity violation in xc4000_get_frequency
     - media: mc: Add local pad to pipeline regardless of the link state
     - media: mc: Fix flags handling when creating pad links
     - media: mc: Add num_links flag to media_pad
     - media: mc: Rename pad variable to clarify intent
     - media: mc: Expand MUST_CONNECT flag to always require an enabled link
     - KVM: Always flush async #PF workqueue when vCPU is being destroyed
     - [x86] cpufreq: amd-pstate: Fix min_perf assignment in
       amd_pstate_adjust_perf()
     - [powerpc*] smp: Adjust nr_cpu_ids to cover all threads of a core
     - [powerpc*] smp: Increase nr_cpu_ids to include the boot CPU
     - [x86] crypto: qat - fix double free during reset
     - [x86] crypto: qat - resolve race condition during AER recovery
     - ext4: correct best extent lstart adjustment logic
     - block: Clear zone limits for a non-zoned stacked queue
     - bounds: support non-power-of-two CONFIG_NR_CPUS
     - fat: fix uninitialized field in nostale filehandles
     - ubifs: Set page uptodate in the correct place
     - ubi: Check for too small LEB size in VTBL code
     - ubi: correct the calculation of fastmap size
     - md/raid5: fix atomicity violation in raid5_cache_count
     - cpufreq: Limit resolving a frequency to policy min/max
     - PM: suspend: Set mem_sleep_current during kernel command line setup
     - usb: xhci: Add error handling in xhci_map_urb_for_dma
     - [powerpc*] fsl: Fix mfpmr build errors with newer binutils
     - USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB
     - USB: serial: add device ID for VeriFone adapter
     - USB: serial: cp210x: add ID for MGP Instruments PDS100
     - USB: serial: option: add MeiG Smart SLM320 product
     - [x86] KVM: x86/xen: inject vCPU upcall vector when local APIC is enabled
     - USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M
     - PM: sleep: wakeirq: fix wake irq warning in system suspend
     - mmc: tmio: avoid concurrent runs of mmc_request_done()
     - fuse: fix root lookup with nonzero generation
     - fuse: don't unhash root
     - usb: typec: ucsi: Clean up UCSI_CABLE_PROP macros
     - serial: Lock console when calling into driver before registration
     - btrfs: qgroup: always free reserved space for extent records
     - btrfs: fix off-by-one chunk length calculation at
       contains_pending_extent()
     - PCI/PM: Drain runtime-idle callbacks before driver removal
     - PCI/DPC: Quirk PIO log size for Intel Raptor Lake Root Ports
     - dm-raid: fix lockdep waring in "pers->hot_add_disk"
     - [powerpc*] xor_vmx: Add '-mhard-float' to CFLAGS
     - mac802154: fix llsec key resources release in mac802154_llsec_key_del
     - swap: comments get_swap_device() with usage rule
     - mm: swap: fix race between free_swap_and_cache() and swapoff()
     - mmc: core: Fix switch on gp3 partition
     - [arm64,armhf] drm/etnaviv: Restore some id values
     - landlock: Warn once if a Landlock action is requested while disabled
     - hwmon: (amc6821) add of_match table
     - ext4: fix corruption during on-line resize
     - nvmem: meson-efuse: fix function pointer type mismatch
     - slimbus: core: Remove usage of the deprecated ida_simple_xx() API
     - phy: tegra: xusb: Add API to retrieve the port number of phy
     - usb: gadget: tegra-xudc: Fix USB3 PHY retrieval logic
     - speakup: Fix 8bit characters from direct synth
     - PCI/AER: Block runtime suspend when handling errors
     - io_uring/net: correctly handle multishot recvmsg retry setup
     - nfs: fix UAF in direct writes
     - kbuild: Move -Wenum-{compare-conditional,enum-conversion} into W=1
     - [arm64] PCI: qcom: Rename qcom_pcie_config_sid_sm8250() to reflect IP
       version
     - [arm64] PCI: qcom: Enable BDF to SID translation properly
     - [amd64,arm64] PCI: hv: Fix ring buffer size calculation
     - vfio: Use GFP_KERNEL_ACCOUNT for userspace persistent allocations
     - vfio/pci: Consolidate irq cleanup on MSI/MSI-X disable
     - vfio/pci: Remove negative check on unsigned vector
     - vfio/pci: Lock external INTx masking ops (CVE-2024-26810)
     - vfio/platform: Disable virqfds on cleanup
     - ksmbd: retrieve number of blocks using vfs_getattr in
       set_file_allocation_info
     - ring-buffer: Fix waking up ring buffer readers
     - ring-buffer: Do not set shortest_full when full target is hit
     - ring-buffer: Fix resetting of shortest_full
     - ring-buffer: Fix full_waiters_pending in poll
     - ring-buffer: Use wait_event_interruptible() in ring_buffer_wait()
     - [s390x] zcrypt: fix reference counting on zcrypt card objects
     - drm/probe-helper: warn about negative .get_modes()
     - drm/panel: do not return negative error codes from drm_panel_get_modes()
     - [armhf] drm/exynos: do not return negative values from .get_modes()
     - [armhf] drm/imx/ipuv3: do not return negative values from .get_modes()
     - [arm64,armhf] drm/vc4: hdmi: do not return negative values from
       .get_modes()
     - memtest: use {READ,WRITE}_ONCE in memory scanning
     - Revert "block/mq-deadline: use correct way to throttling write requests"
     - f2fs: mark inode dirty for FI_ATOMIC_COMMITTED flag
     - f2fs: truncate page cache before clearing flags when aborting atomic write
     - nilfs2: fix failure to detect DAT corruption in btree and direct mappings
     - nilfs2: prevent kernel bug at submit_bh_wbc()
     - cifs: open_cached_dir(): add FILE_READ_EA to desired access
     - cpufreq: dt: always allocate zeroed cpumask
     - [amd64] x86/CPU/AMD: Update the Zenbleed microcode revisions
     - NFSD: Fix nfsd_clid_class use of __string_len() macro
     - net: hns3: tracing: fix hclgevf trace event strings
     - wireguard: netlink: check for dangling peer via is_dead instead of empty
       list
     - wireguard: netlink: access device through ctx instead of peer
     - ahci: asm1064: correct count of reported ports
     - ahci: asm1064: asm1166: don't limit reported ports
     - drm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag
     - drm/amd/display: Return the correct HDCP error code
     - drm/amd/display: Fix noise issue on HDMI AV mute
     - dm snapshot: fix lockup in dm_exception_table_exit
     - [x86] pm: Work around false positive kmemleak report in
       msr_build_context()
     - cpufreq: brcmstb-avs-cpufreq: fix up "add check for cpufreq_cpu_get's
       return value"
     - [x86] platform/x86: p2sb: On Goldmont only cache P2SB and SPI devfn BAR
       (Closes: #1065320)
     - tls: fix race between tx work scheduling and socket close (CVE-2024-26585)
     - netfilter: nf_tables: mark set as dead when unbinding anonymous set with
       timeout (CVE-2024-26643)
     - netfilter: nf_tables: disallow anonymous set with timeout flag
       (CVE-2024-26642)
     - netfilter: nf_tables: reject constant set with timeout
     - Drivers: hv: vmbus: Calculate ring buffer size for more efficient use of
       memory
     - init/Kconfig: lower GCC version check for -Warray-bounds
     - [x86] KVM: x86: Mark target gfn of emulated atomic instruction as dirty
     - [x86] KVM: SVM: Flush pages under kvm->lock to fix UAF in
       svm_register_enc_region()
     - tracing: Use .flush() call to wake up readers
     - drm/amdgpu/pm: Fix the error of pwm1_enable setting
     - [x86] drm/i915: Check before removing mm notifier
     - ALSA: hda/realtek - Fix headset Mic no show at resume back for Lenovo
       ALC897 platform
     - USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command
     - usb: gadget: ncm: Fix handling of zero block length packets
     - usb: port: Don't try to peer unused USB ports based on location
     - tty: serial: fsl_lpuart: avoid idle preamble pending if CTS is enabled
     - misc: lis3lv02d_i2c: Fix regulators getting en-/dis-abled twice on
       suspend/resume
     - mei: me: add arrow lake point S DID
     - mei: me: add arrow lake point H DID
     - vt: fix unicode buffer corruption when deleting characters
     - fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion
     - ALSA: hda/realtek - Add Headset Mic supported Acer NB platform
     - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook
     - tee: optee: Fix kernel panic caused by incorrect error handling
     - mm, vmscan: prevent infinite loop for costly GFP_NOIO |
       __GFP_RETRY_MAYFAIL allocations
     - iio: accel: adxl367: fix DEVID read after reset
     - iio: accel: adxl367: fix I2C FIFO data register
     - i2c: i801: Avoid potential double call to gpiod_remove_lookup_table
     - drm/amd/display: handle range offsets in VRR ranges
     - [x86] efistub: Call mixed mode boot services on the firmware's stack
     - net: tls: handle backlogging of crypto requests (CVE-2024-26584)
     - [x86] ASoC: amd: yc: Revert "Fix non-functional mic on Lenovo 21J2"
     - iommu: Avoid races around default domain allocations
     - clocksource/drivers/arm_global_timer: Fix maximum prescaler value
     - entry: Respect changes to system call number by trace_sys_enter()
     - minmax: add umin(a, b) and umax(a, b)
     - swiotlb: Fix alignment checks when both allocation and DMA masks are
       present
     - iommu/dma: Force swiotlb_max_mapping_size on an untrusted device
     - printk: Update @console_may_schedule in console_trylock_spinning()
     - irqchip/renesas-rzg2l: Implement restriction when writing ISCR register
     - irqchip/renesas-rzg2l: Flush posted write in irq_eoi()
     - irqchip/renesas-rzg2l: Add macro to retrieve TITSR register offset based
       on register's index
     - irqchip/renesas-rzg2l: Rename rzg2l_tint_eoi()
     - irqchip/renesas-rzg2l: Rename rzg2l_irq_eoi()
     - irqchip/renesas-rzg2l: Prevent spurious interrupts when setting trigger
       type
     - [x86] kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe
       address
     - [x86] fpu: Keep xfd_state in sync with MSR_IA32_XFD
     - pwm: img: fix pwm clock lookup
     - tty: serial: imx: Fix broken RS485
     - block: Fix page refcounts for unaligned buffers in __bio_release_pages()
     - blk-mq: release scheduler resource when request completes
     - vfio/pci: Disable auto-enable of exclusive INTx IRQ (CVE-2024-27437)
     - vfio: Introduce interface to flush virqfd inject workqueue
     - vfio/pci: Create persistent INTx handler (CVE-2024-26812)
     - vfio/platform: Create persistent IRQ handlers (CVE-2024-26813)
     - vfio/fsl-mc: Block calling interrupt handler without trigger
       (CVE-2024-26814)
     - [x86] coco: Export cc_vendor
     - [x86] coco: Get rid of accessor functions
     - [x86] Kconfig: Remove CONFIG_AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT
     - [x86] sev: Fix position dependent variable references in startup code
     - mm/migrate: set swap entry values of THP tail pages properly.
     - init: open /initrd.image with O_LARGEFILE
     - [x86] efistub: Add missing boot_params for mixed mode compat entry
     - btrfs: zoned: don't skip block groups with 100% zone unusable
     - btrfs: zoned: use zone aware sb location for scrub
     - wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes
     - wifi: iwlwifi: fw: don't always use FW dump trig
     - exec: Fix NOMMU linux_binprm::exec in transfer_args_to_stack()
     - hexagon: vmlinux.lds.S: handle attributes section
     - mmc: sdhci-omap: re-tuning is needed after a pm transition to support emmc
       HS200 mode
     - mmc: core: Initialize mmc_blk_ioc_data
     - mmc: core: Avoid negative index with array access
     - block: Do not force full zone append completion in req_bio_endio()
     - thermal: devfreq_cooling: Fix perf state when calculate dfc res_util
     - nouveau/dmem: handle kcalloc() allocation failure
     - net: ll_temac: platform_get_resource replaced by wrong function
     - drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed
     - [x86] drm/i915/bios: Tolerate devdata==NULL in
       intel_bios_encoder_supports_dp_dual_mode()
     - [x86] drm/i915/gt: Reset queue_priority_hint on parking
     - Bluetooth: hci_sync: Fix not checking error on hci_cmd_sync_cancel_sync
     - Revert "usb: phy: generic: Get the vbus supply"
     - usb: cdc-wdm: close race between read and workqueue
     - USB: UAS: return ENODEV when submit urbs fail with device not attached
     - usb: dwc3-am62: Rename private data
     - usb: dwc3-am62: fix module unload/reload behavior
     - ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs
       (CVE-2024-26654)
     - scsi: core: Fix unremoved procfs host directory regression
     - staging: vc04_services: changen strncpy() to strscpy_pad()
     - staging: vc04_services: fix information leak in create_component()
     - USB: core: Add hub_get() and hub_put() routines
     - USB: core: Fix deadlock in port "disable" sysfs attribute
     - scsi: sd: Fix TCG OPAL unlock on system resume
     - usb: dwc2: host: Fix remote wakeup from hibernation
     - usb: dwc2: host: Fix hibernation flow
     - usb: dwc2: host: Fix ISOC flow in DDMA mode
     - usb: dwc2: gadget: Fix exiting from clock gating
     - usb: dwc2: gadget: LPM flow fix
     - usb: udc: remove warning when queue disabled ep
     - usb: typec: Return size of buffer if pd_set operation succeeds
     - usb: typec: ucsi: Clear EVENT_PENDING under PPM lock
     - usb: typec: ucsi: Ack unsupported commands
     - usb: typec: ucsi_acpi: Refactor and fix DELL quirk
     - usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset
     - scsi: qla2xxx: Prevent command send on chip reset
     - scsi: qla2xxx: Fix N2N stuck connection
     - scsi: qla2xxx: Split FCE|EFT trace control
     - scsi: qla2xxx: Update manufacturer detail
     - scsi: qla2xxx: NVME|FCP prefer flag not being honored
     - scsi: qla2xxx: Fix command flush on cable pull
     - scsi: qla2xxx: Fix double free of fcport
     - scsi: qla2xxx: Change debug message during driver unload
     - scsi: qla2xxx: Delay I/O Abort on PCI error
     - [x86] cpu: Enable STIBP on AMD if Automatic IBRS is enabled
     - tls: fix use-after-free on failed backlog decryption (CVE-2024-26800)
     - scsi: lpfc: Correct size for cmdwqe/rspwqe for memset()
     - scsi: lpfc: Correct size for wqe for memset()
     - scsi: libsas: Add a helper sas_get_sas_addr_and_dev_type()
     - scsi: libsas: Fix disk not being scanned in after being removed
     - [x86] sev: Skip ROM range scans and validation for SEV-SNP guests
     - USB: core: Fix deadlock in usb_deauthorize_interface()
     - tools/resolve_btfids: fix build with musl libc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.85
     - scripts/bpf_doc: Use silent mode when exec make cmd
     - dma-buf: Fix NULL pointer dereference in sanitycheck()
     - nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet
     - mlxbf_gige: stop PHY during open() error paths
     - wifi: iwlwifi: mvm: rfi: fix potential response leaks
     - ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa()
     - [s390x] qeth: handle deferred cc1
     - tcp: properly terminate timers for kernel sockets
     - net: wwan: t7xx: Split 64bit accesses to fix alignment issues
     - [arm64] net: hns3: fix index limit to support all queue stats
     - [arm64] net: hns3: fix kernel crash when devlink reload during pf
       initialization
     - [arm64] net: hns3: mark unexcuted loopback test result as UNEXECUTED
     - tls: recv: process_rx_list shouldn't use an offset with kvec
     - tls: adjust recv return with async crypto and failed copy to userspace
     - tls: get psock ref after taking rxlock to avoid leak
     - mlxbf_gige: call request_irq() after NAPI initialized
     - bpf: Protect against int overflow for stack access size
     - cifs: Fix duplicate fscache cookie warnings
     - net: lan743x: Add set RFE read fifo threshold for PCI1x1x chips
     - inet: inet_defrag: prevent sk release while still in use
     - dm integrity: fix out-of-range warning
     - [x86] cpufeatures: Add new word for scattered features
     - [x86] perf/x86/amd/lbr: Use freeze based on availability
     - [arm64] KVM: arm64: Fix host-programmed guest events in nVHE
     - r8169: fix issue caused by buggy BIOS on certain boards with RTL8168d
     - [x86] cpufeatures: Add CPUID_LNX_5 to track recently added Linux-defined
       word
     - Revert "Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT"
     - [arm64] dts: qcom: sc7180-trogdor: mark bluetooth address as broken
     - Bluetooth: qca: fix device-address endianness
     - Bluetooth: add quirk for broken address properties
     - Bluetooth: hci_event: set the conn encrypted before conn establishes
     - Bluetooth: Fix TOCTOU in HCI debugfs implementation (CVE-2024-24857,
       CVE-2024-24858)
     - xen-netfront: Add missing skb_mark_for_recycle
     - net/rds: fix possible cp null dereference
     - net: usb: ax88179_178a: avoid the interface always configured as random
       address
     - vsock/virtio: fix packet delivery to tap device
     - Revert "x86/mm/ident_map: Use gbpages only where full GB page should be
       mapped."
     - netfilter: nf_tables: reject new basechain after table flag update
     - netfilter: nf_tables: flush pending destroy work before exit_net release
     - netfilter: nf_tables: Fix potential data-race in
       __nft_flowtable_type_get()
     - netfilter: validate user input for expected length
     - vboxsf: Avoid an spurious warning if load_nls_xxx() fails
     - bpf, sockmap: Prevent lock inversion deadlock in map delete elem
     - net/sched: act_skbmod: prevent kernel-infoleak
     - net/sched: fix lockdep splat in qdisc_tree_reduce_backlog()
     - net: stmmac: fix rx queue priority assignment
     - net: phy: micrel: lan8814: Fix when enabling/disabling 1-step timestamping
     - net: phy: micrel: Fix potential null pointer dereference
     - gro: fix ownership transfer
     - [x86] bugs: Fix the SRSO mitigation on Zen3/4
     - [x86] retpoline: Do the necessary fixup to the Zen3/4 srso return thunk
       for !SRSO
     - i40e: Fix VF MAC filter removal
     - erspan: make sure erspan_base_hdr is present in skb->head
     - ipv6: Fix infinite recursion in fib6_dump_done().
     - mlxbf_gige: stop interface during shutdown
     - r8169: skip DASH fw status checks when DASH is disabled
     - udp: do not accept non-tunnel GSO skbs landing in a tunnel
     - udp: do not transition UDP GRO fraglist partial checksums to unnecessary
     - udp: prevent local UDP tunnel packets from being GROed
     - i40e: fix i40e_count_filters() to count only active/new filters
     - i40e: fix vf may be used uninitialized in this function warning
     - drm/amd: Evict resources during PM ops prepare() callback
     - drm/amd: Add concept of running prepare_suspend() sequence for IP blocks
     - drm/amd: Flush GFXOFF requests in prepare stage
     - i40e: Store the irq number in i40e_q_vector
     - i40e: Remove _t suffix from enum type names
     - i40e: Enforce software interrupt during busy-poll exit
     - r8169: use spinlock to protect mac ocp register access
     - r8169: use spinlock to protect access to registers Config2 and Config5
     - r8169: prepare rtl_hw_aspm_clkreq_enable for usage in atomic context
     - tcp: Fix bind() regression for v6-only wildcard and v4(-mapped-v6)
       non-wildcard addresses.
     - drivers: net: convert to boolean for the mac_managed_pm flag
     - net: fec: Set mac_managed_pm during probe
     - [x86] KVM: SVM: enhance info printk's in SEV init
     - [x86] KVM: SVM: WARN, but continue, if misc_cg_set_capacity() fails
     - [x86] KVM: SVM: Use unsigned integers when dealing with ASIDs
     - [x86] KVM: SVM: Add support for allowing zero SEV ASIDs
     - fs/pipe: Fix lockdep false-positive in watchqueue pipe_write()
     - 9p: Fix read/write debug statements to report server reply
     - drivers/perf: riscv: Disable PERF_SAMPLE_BRANCH_* while not supported
     - drm/panfrost: fix power transition timeout warnings
     - ASoC: rt5682-sdw: fix locking sequence
     - [x86] ASoC: rt711-sdca: fix locking sequence
     - ASoC: rt711-sdw: fix locking sequence
     - ASoC: ops: Fix wraparound for mask in snd_soc_get_volsw
     - ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit
     - scsi: mylex: Fix sysfs buffer lengths
     - scsi: sd: Unregister device if device_add_disk() failed in sd_probe()
     - cifs: Fix caching to try to do open O_WRONLY as rdwr on server
     - ata: sata_mv: Fix PCI device ID table declaration compilation warning
     - nfsd: hold a lighter-weight client reference over CB_RECALL_ANY
     - [x86] retpoline: Add NOENDBR annotation to the SRSO dummy return thunk
     - ksmbd: don't send oplock break if rename fails
     - ksmbd: validate payload size in ipc response (CVE-2024-26811)
     - ksmbd: do not set SMB2_GLOBAL_CAP_ENCRYPTION for SMB 3.1.1
     - ALSA: hda/realtek - Fix inactive headset mic jack
     - ALSA: hda/realtek: Update Panasonic CF-SZ6 quirk to support headset with
       microphone
     - driver core: Introduce device_link_wait_removal()
     - of: dynamic: Synchronize of_changeset_destroy() with the devlink removals
     - [x86] mm/pat: fix VM_PAT handling in COW mappings
     - [x86] mce: Make sure to grab mce_sysfs_mutex in set_bank()
     - [x86] coco: Require seeding RNG with RDRAND on CoCo systems
     - [s390x] entry: align system call table on 8 bytes
     - smb3: retrying on failed server close
     - smb: client: fix potential UAF in cifs_debug_files_proc_show()
     - smb: client: fix potential UAF in cifs_stats_proc_write()
     - smb: client: fix potential UAF in cifs_stats_proc_show()
     - smb: client: fix potential UAF in smb2_is_valid_oplock_break()
     - smb: client: fix potential UAF in smb2_is_valid_lease_break()
     - smb: client: fix potential UAF in is_valid_oplock_break()
     - smb: client: fix potential UAF in smb2_is_network_name_deleted()
     - smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect()
     - mptcp: don't account accept() of non-MPC client as fallback to TCP
     - mm/secretmem: fix GUP-fast succeeding on secretmem folios
     - nvme: fix miss command type check
     - [x86] bugs: Change commas to semicolons in 'spectre_v2' sysfs file
     - [x86] syscall: Don't force use of indirect calls for system calls
     - [x86] Mitigate Native Branch History Injection vulnerability
       (CVE-2024-2201):
       + [x86] bhi: Add support for clearing branch history at syscall entry
       + [x86] bhi: Define SPEC_CTRL_BHI_DIS_S
       + [x86] bhi: Enumerate Branch History Injection (BHI) bug
       + [x86] bhi: Add BHI mitigation knob
       + [x86] bhi: Mitigate KVM by default
       + [x86] KVM: x86: Add BHI_NO
       + [x86] set SPECTRE_BHI_ON as default
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 20
   * Refresh "efi: Lock down the kernel if booted in secure boot mode" (context
     changes in 6.1.84)
   * [rt] Refresh "serial: 8250: implement write_atomic"
   * Refresh "x86: Make x32 syscall support conditional on a kernel parameter"
   * tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc
     (Closes: #1068770)
   * Revert "scsi: sd: usb_storage: uas: Access media prior to querying device
     properties" (Closes: #1068675)
   * Revert "scsi: core: Add struct for args to execution functions"
   * scsi: sd: usb_storage: uas: Access media prior to querying device properties
linux-signed-amd64 (6.1.82+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.82-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.77
     - asm-generic: make sparse happy with odd-sized put_unaligned_*()
     - [powerpc*] mm: Fix null-pointer dereference in pgtable_cache_add
     - [arm64] irq: set the correct node for VMAP stack
     - [arm64] drivers/perf: pmuv3: don't expose SW_INCR event in sysfs
     - [powerpc*] Fix build error due to is_valid_bugaddr()
     - [powerpc*] mm: Fix build failures due to arch_reserved_kernel_pages()
     - [x86] boot: Ignore NMIs during very early boot
     - [powerpc*] pmd_move_must_withdraw() is only needed for
       CONFIG_TRANSPARENT_HUGEPAGE
     - [powerpc*] lib: Validate size for vector operations
     - [x86*] mce: Mark fatal MCE's page as poison to avoid panic in the kdump
       kernel
     - perf/core: Fix narrow startup race when creating the perf nr_addr_filters
       sysfs file
     - debugobjects: Stop accessing objects after releasing hash bucket lock
     - regulator: core: Only increment use_count when enable_count changes
     - audit: Send netlink ACK before setting connection in auditd_set
     - ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop
     - PNP: ACPI: fix fortify warning
     - ACPI: extlog: fix NULL pointer dereference check
     - ACPI: NUMA: Fix the logic of getting the fake_pxm value
     - PM / devfreq: Synchronize devfreq_monitor_[start/stop]
     - ACPI: APEI: set memory failure flags as MF_ACTION_REQUIRED on synchronous
       events
     - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree
     - UBSAN: array-index-out-of-bounds in dtSplitRoot
     - jfs: fix slab-out-of-bounds Read in dtSearch
     - jfs: fix array-index-out-of-bounds in dbAdjTree
     - jfs: fix uaf in jfs_evict_inode
     - pstore/ram: Fix crash when setting number of cpus to an odd number
     - erofs: fix ztailpacking for subpage compressed blocks
     - [armhf] crypto: stm32/crc32 - fix parsing list of devices
     - afs: fix the usage of read_seqbegin_or_lock() in afs_lookup_volume_rcu()
     - afs: fix the usage of read_seqbegin_or_lock() in afs_find_server*()
     - rxrpc_find_service_conn_rcu: fix the usage of read_seqbegin_or_lock()
     - jfs: fix array-index-out-of-bounds in diNewExt
     - arch: consolidate arch_irq_work_raise prototypes
     - [s390x] vfio-ap: fix sysfs status attribute for AP queue devices
     - [s390x] ptrace: handle setting of fpc register correctly
     - [s390x] KVM: s390: fix setting of fpc register
     - SUNRPC: Fix a suspicious RCU usage warning (CVE-2023-52623)
     - ecryptfs: Reject casefold directory inodes
     - ext4: fix inconsistent between segment fstrim and full fstrim
     - ext4: unify the type of flexbg_size to unsigned int
     - ext4: remove unnecessary check from alloc_flex_gd()
     - ext4: avoid online resizing failures due to oversized flex bg
       (CVE-2023-52622)
     - wifi: rt2x00: restart beacon queue when hardware reset
     - wifi: rt2x00: correct wrong BBP register in RxDCOC calibration
     - [arm64] soc: xilinx: Fix for call trace due to the usage of
       smp_processor_id()
     - [arm64] soc: xilinx: fix unhandled SGI warning message
     - scsi: lpfc: Fix possible file string name overflow when updating firmware
     - PCI: Add no PM reset quirk for NVIDIA Spectrum devices
     - bonding: return -ENOMEM instead of BUG in alb_upper_dev_walk
     - net: usb: ax88179_178a: avoid two consecutive device resets
     - scsi: mpi3mr: Add PCI checks where SAS5116 diverges from SAS4116
     - scsi: arcmsr: Support new PCI device IDs 1883 and 1886
     - wifi: ath9k: Fix potential array-index-out-of-bounds read in
       ath9k_htc_txstatus()
     - wifi: ath11k: fix race due to setting ATH11K_FLAG_EXT_IRQ_ENABLED too
       early
     - bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers
       (CVE-2023-52621)
     - scsi: libfc: Don't schedule abort twice
     - scsi: libfc: Fix up timeout error in fc_fcp_rec_error()
     - bpf: Set uattr->batch.count as zero before batched update or deletion
     - net: phy: at803x: fix passing the wrong reference for config_intr
     - [arm64] scsi: hisi_sas: Set .phy_attached before notifing phyup event
       HISI_PHYE_PHY_UP_PM
     - ice: fix ICE_AQ_VSI_Q_OPT_RSS_* register values
     - net: atlantic: eliminate double free in error handling logic
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix mv88e6352_serdes_get_stats error
       path
     - block: prevent an integer overflow in bvec_try_merge_hw_page
     - md: Whenassemble the array, consult the superblock of the freshest device
     - [arm64] dts: qcom: msm8996: Fix 'in-ports' is a required property
     - [arm64] dts: qcom: msm8998: Fix 'out-ports' is a required property
     - ice: fix pre-shifted bit usage
     - [arm64] dts: amlogic: fix format for s4 uart node
     - wifi: rtl8xxxu: Add additional USB IDs for RTL8192EU devices
     - libbpf: Fix NULL pointer dereference in bpf_object__collect_prog_relos
     - wifi: rtlwifi: rtl8723{be,ae}: using calculate_bit_shift()
     - wifi: cfg80211: free beacon_ies when overridden from hidden BSS
     - Bluetooth: qca: Set both WIDEBAND_SPEECH and LE_STATES quirks for QCA2066
     - Bluetooth: hci_sync: fix BR/EDR wakeup bug
     - Bluetooth: L2CAP: Fix possible multiple reject send
     - net/smc: disable SEID on non-s390 archs where virtual ISM may be used
     - i40e: Fix VF disable behavior to block all traffic
     - net: dsa: qca8k: put MDIO bus OF node on qca8k_mdio_register() failure
     - f2fs: fix to check return value of f2fs_reserve_new_block()
     - ALSA: hda: Refer to correct stream index at loops
     - ASoC: doc: Fix undefined SND_SOC_DAPM_NOPM argument
     - fast_dput(): handle underflows gracefully
     - RDMA/IPoIB: Fix error code return in ipoib_mcast_join
     - [arm64,armhf] drm/panel-edp: Add override_edid_mode quirk for generic edp
     - drm/amd/display: Fix tiled display misalignment
     - f2fs: fix write pointers on zoned device after roll forward
     - [x86] ASoC: amd: Add new dmi entries for acp5x platform
     - drm/drm_file: fix use of uninitialized variable
     - drm/framebuffer: Fix use of uninitialized variable
     - drm/mipi-dsi: Fix detach call without attach
     - media: stk1160: Fixed high volume of stk1160_dbg messages
     - [arm64,armhf]  media: rockchip: rga: fix swizzling for RGB formats
     - PCI: add INTEL_HDA_ARL to pci_ids.h
     - [x86] ALSA: hda: Intel: add HDA_ARL PCI ID support
     - [arm64] media: rkisp1: Drop IRQF_SHARED
     - [arm64] media: rkisp1: Fix IRQ handler return values
     - [arm64] media: rkisp1: Store IRQ lines
     - [arm64] media: rkisp1: Fix IRQ disable race issue
     - hwmon: (nct6775) Fix fan speed set failure in automatic mode
     - f2fs: fix to tag gcing flag on page during block migration
     - [armhf] drm/exynos: Call drm_atomic_helper_shutdown() at shutdown/unbind
       time
     - IB/ipoib: Fix mcast list locking
     - media: ddbridge: fix an error code problem in ddb_probe
     - drm/amd/display: For prefetch mode > 0, extend prefetch if possible
     - [arm64] drm/msm/dpu: Ratelimit framedone timeout msgs
     - [arm64] drm/msm/dpu: fix writeback programming for YUV cases
     - drm/amdgpu: fix ftrace event amdgpu_bo_move always move on same heap
     - [x86] watchdog: it87_wdt: Keep WDTCTRL bit 3 unmodified for IT8784/IT8786
     - drm/amd/display: make flip_timestamp_in_us a 64-bit variable
     - drm/amdgpu: Fix ecc irq enable/disable unpaired
     - drm/amdgpu: Let KFD sync with VM fences
     - drm/amdgpu: Fix '*fw' from request_firmware() not released in
       'amdgpu_ucode_request()'
     - drm/amdgpu: Drop 'fence' check in 'to_amdgpu_amdkfd_fence()'
     - ALSA: hda/conexant: Fix headset auto detect fail in cx8070 and SN6140
     - leds: trigger: panic: Don't register panic notifier if creating the
       trigger failed
     - xen/gntdev: Fix the abuse of underlying struct page in DMA-buf import
     - PCI: Only override AMD USB controller if required
     - PCI: switchtec: Fix stdev_release() crash after surprise hot remove
     - perf cs-etm: Bump minimum OpenCSD version to ensure a bugfix is present
     - usb: hub: Replace hardcoded quirk value with BIT() macro
     - usb: hub: Add quirk to decrease IN-ep poll interval for Microchip USB491x
       hub
     - tty: allow TIOCSLCKTRMIOS with CAP_CHECKPOINT_RESTORE
     - fs/kernfs/dir: obey S_ISGID
     - PCI: Fix 64GT/s effective data rate calculation
     - PCI/AER: Decode Requester ID when no error info found
     - 9p: Fix initialisation of netfs_inode for 9p
     - libsubcmd: Fix memory leak in uniq()
     - virtio_net: Fix "‘%d’ directive writing between 1 and 11 bytes into a
       region of size 10" warnings
     - blk-mq: fix IO hang from sbitmap wakeup race
     - ceph: reinitialize mds feature bit even when session in open
     - ceph: fix deadlock or deadcode of misusing dget()
     - ceph: fix invalid pointer access if get_quota_realm return ERR_PTR
     - drm/amd/powerplay: Fix kzalloc parameter 'ATOM_Tonga_PPM_Table' in
       'get_platform_power_management_table()'
     - drm/amdgpu: Fix with right return code '-EIO' in
       'amdgpu_gmc_vram_checking()'
     - drm/amdgpu: Release 'adev->pm.fw' before return in
       'amdgpu_device_need_post()'
     - perf: Fix the nr_addr_filters fix
     - wifi: cfg80211: fix RCU dereference in __cfg80211_bss_update
     - drm: using mul_u32_u32() requires linux/math64.h
     - scsi: isci: Fix an error code problem in isci_io_request_build()
     - [armhf] regulator: ti-abb: don't use devm_platform_ioremap_resource_byname
       for shared interrupt register
     - scsi: core: Move scsi_host_busy() out of host lock for waking up EH
       handler
     - HID: hidraw: fix a problem of memory leak in hidraw_release()
     - ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()
     - ipv4: raw: add drop reasons
     - ipmr: fix kernel panic when forwarding mcast packets
     - tcp: add sanity checks to rx zerocopy
     - ixgbe: Refactor returning internal error codes
     - ixgbe: Refactor overtemp event handling
     - ixgbe: Fix an error handling path in ixgbe_read_iosf_sb_reg_x550()
     - ipv6: Ensure natural alignment of const ipv6 loopback and router addresses
     - llc: call sock_orphan() at release time
     - bridge: mcast: fix disabled snooping after long uptime
     - netfilter: conntrack: correct window scaling with retransmitted SYN
     - netfilter: nf_tables: restrict tunnel object to NFPROTO_NETDEV
     - netfilter: nf_log: replace BUG_ON by WARN_ON_ONCE when putting logger
     - netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom
       expectations
     - net: ipv4: fix a memleak in ip_setup_cork
     - af_unix: fix lockdep positive in sk_diag_dump_icons()
     - net: sysfs: Fix /sys/class/net/<iface> path
     - [arm64] irq: set the correct node for shadow call stack
     - Revert "drm/amd/display: Disable PSR-SU on Parade 0803 TCON again"
     - [arm64] drm/msm/dsi: Enable runtime PM
     - gve: Fix use-after-free vulnerability
     - bonding: remove print in bond_verify_device_path
     - drm/amdgpu: Fix missing error code in 'gmc_v6/7/8/9_0_hw_init()'
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.78
     - ext4: regenerate buddy after block freeing failed if under fc replay
     - [arm64] dmaengine: ti: k3-udma: Report short packet errors
     - [arm64] dmaengine: fsl-qdma: Fix a memory leak related to the status queue
       DMA
     - [arm64] dmaengine: fsl-qdma: Fix a memory leak related to the queue
       command DMA
     - [arm64] phy: renesas: rcar-gen3-usb2: Fix returning wrong error code
     - dmaengine: fix is_slave_direction() return false when DMA_DEV_TO_DEV
     - [armhf] phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP
     - cifs: failure to add channel on iface should bump up weight
     - [arm64] drm/msms/dp: fixed link clock divider bits be over written in BPC
       unknown case
     - [arm64] drm/msm/dp: return correct Colorimetry for
       DP_TEST_DYNAMIC_RANGE_CEA case
     - [arm64] drm/msm/dpu: check for valid hw_pp in
       dpu_encoder_helper_phys_cleanup
     - net: stmmac: xgmac: fix handling of DPP safety error for DMA channels
     - wifi: mac80211: fix waiting for beacons logic
     - netdevsim: avoid potential loop in nsim_dev_trap_report_work()
     - net: atlantic: Fix DMA mapping for PTP hwts ring
     - tunnels: fix out of bounds access when building IPv6 PMTU error
     - atm: idt77252: fix a memleak in open_card_ubr0
     - [armhf] hwmon: (aspeed-pwm-tacho) mutex for tach reading
     - [x86] hwmon: (coretemp) Fix out-of-bounds memory access
     - [x86] hwmon: (coretemp) Fix bogus core_id to attr name mapping
     - inet: read sk->sk_family once in inet_recv_error()
     - [x86] drm/i915/gvt: Fix uninitialized variable in handle_mmio()
     - rxrpc: Fix response to PING RESPONSE ACKs to a dead call
     - tipc: Check the bearer type before calling tipc_udp_nl_bearer_add()
     - af_unix: Call kfree_skb() for dead unix_(sk)->oob_skb in GC.
     - ppp_async: limit MRU to 64K
     - selftests: cmsg_ipv6: repeat the exact packet
     - netfilter: nft_compat: narrow down revision to unsigned 8-bits
     - netfilter: nft_compat: reject unused compat flag
     - netfilter: nft_compat: restrict match/target protocol to u16
     - drm/amd/display: Implement bounds check for stream encoder creation in
       DCN301
     - netfilter: nft_ct: reject direction for ct id
     - netfilter: nft_set_pipapo: store index in scratch maps
     - netfilter: nft_set_pipapo: add helper to release pcpu scratch area
     - netfilter: nft_set_pipapo: remove scratch_aligned pointer
     - fs/ntfs3: Fix an NULL dereference bug
     - scsi: core: Move scsi_host_busy() out of host lock if it is for
       per-command
     - blk-iocost: Fix an UBSAN shift-out-of-bounds warning
     - fs: dlm: don't put dlm_local_addrs on heap (Closes: #1063338)
     - mtd: parsers: ofpart: add workaround for #size-cells 0
     - ALSA: usb-audio: Add delay quirk for MOTU M Series 2nd revision
     - ALSA: usb-audio: Add a quirk for Yamaha YIT-W12TX transmitter
     - ALSA: usb-audio: add quirk for RODE NT-USB+
     - USB: serial: qcserial: add new usb-id for Dell Wireless DW5826e
     - USB: serial: option: add Fibocom FM101-GL variant
     - USB: serial: cp210x: add ID for IMST iM871A-USB
     - [arm64,armhf] usb: dwc3: host: Set XHCI_SG_TRB_CACHE_SIZE_QUIRK
     - [arm64,armhf] usb: host: xhci-plat: Add support for
       XHCI_SG_TRB_CACHE_SIZE_QUIRK
     - hrtimer: Report offline hrtimer enqueue
     - Input: i8042 - fix strange behavior of touchpad on Clevo NS70PU
     - Input: atkbd - skip ATKBD_CMD_SETLEDS when skipping ATKBD_CMD_GETID
       (Closes: #1061521)
     - io_uring/net: fix sr->len for IORING_OP_RECV with MSG_WAITALL and buffers
     - Revert "ASoC: amd: Add new dmi entries for acp5x platform"
     - vhost: use kzalloc() instead of kmalloc() followed by memset()
       (CVE-2024-0340)
     - RDMA/irdma: Fix support for 64k pages
     - f2fs: add helper to check compression level (Closes: #1063422)
     - block: treat poll queue enter similarly to timeouts
     - clocksource: Skip watchdog check for large watchdog intervals
     - net: stmmac: xgmac: use #define for string constants
     - ALSA: usb-audio: Sort quirk table entries
     - net: stmmac: xgmac: fix a typo of register name in DPP safety handling
     - netfilter: nft_set_rbtree: skip end interval element from gc
       (CVE-2024-26581)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.79
     - work around gcc bugs with 'asm goto' with outputs
     - update workarounds for gcc "asm goto" issue
     - btrfs: add and use helper to check if block group is used
     - btrfs: do not delete unused block group if it may be used soon
     - btrfs: forbid creating subvol qgroups
     - btrfs: do not ASSERT() if the newly created subvolume already got read
       (CVE-2024-23850)
     - btrfs: forbid deleting live subvol qgroup
     - btrfs: send: return EOPNOTSUPP on unknown flags
     - btrfs: don't reserve space for checksums when writing to nocow files
     - btrfs: reject encoded write if inode has nodatasum flag set
     - btrfs: don't drop extent_map for free space inode on write error
     - driver core: Fix device_link_flag_is_sync_state_only()
     - wifi: iwlwifi: Fix some error codes
     - wifi: iwlwifi: uninitialized variable in iwl_acpi_get_ppag_table()
     - of: property: Improve finding the supplier of a remote-endpoint property
     - net: openvswitch: limit the number of recursions from action sets
       (CVE-2024-1151)
     - lan966x: Fix crash when adding interface under a lag
     - tls/sw: Use splice_eof() to flush
     - tls: extract context alloc/initialization out of tls_set_sw_offload
     - net: tls: factor out tls_*crypt_async_wait()
     - tls: fix race between async notify and socket close (CVE-2024-26583)
     - net: tls: fix use-after-free with partial reads and async decrypt
       (CVE-2024-26582)
     - net: tls: fix returned read length with async decrypt
     - ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work()
     - net: sysfs: Fix /sys/class/net/<iface> path for statistics
     - nouveau/svm: fix kvcalloc() argument order
     - [mips*] Add 'memory' clobber to csum_ipv6_magic() inline assembler
     - i40e: Do not allow untrusted VF to remove administratively set MAC
     - i40e: Fix waiting for queues of all VSIs to be disabled
     - tracing/trigger: Fix to return error if failed to alloc snapshot
     - mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again
     - scsi: storvsc: Fix ring buffer size calculation
     - dm-crypt, dm-verity: disable tasklets
     - [x86] ASoC: amd: yc: Add DMI quirk for MSI Bravo 15 C7VF
     - ALSA: hda/realtek: Fix the external mic not being recognised for Acer
       Swift 1 SF114-32
     - ALSA: hda/realtek: Enable Mute LED on HP Laptop 14-fq0xxx
     - HID: i2c-hid-of: fix NULL-deref on failed power up
     - HID: wacom: generic: Avoid reporting a serial of '0' to userspace
     - HID: wacom: Do not register input devices until after hid_hw_start
     - iio: hid-sensor-als: Return 0 for HID_USAGE_SENSOR_TIME_TIMESTAMP
     - usb: ucsi: Add missing ppm_lock
     - usb: ulpi: Fix debugfs directory leak
     - usb: ucsi_acpi: Fix command completion handling
     - USB: hub: check for alternate port before enabling A_ALT_HNP_SUPPORT
     - usb: f_mass_storage: forbid async queue when shutdown happen
     - usb: dwc3: gadget: Fix NULL pointer dereference in dwc3_gadget_suspend
     - driver core: fw_devlink: Improve detection of overlapping cycles
     - cifs: fix underflow in parse_server_interfaces()
     - i2c: qcom-geni: Correct I2C TRE sequence
     - irqchip/loongson-eiointc: Use correct struct type in
       eiointc_domain_alloc()
     - i2c: pasemi: split driver into two separate modules
     - i2c: i801: Fix block process call transactions (CVE-2024-26593)
     - modpost: trim leading spaces when processing source files list
     - mptcp: get rid of msk->subflow
     - mptcp: fix data re-injection from stale subflow
     - mptcp: drop the push_pending field
     - mptcp: check addrs list in userspace_pm_get_local_id
     - media: Revert "media: rkisp1: Drop IRQF_SHARED"
     - scsi: Revert "scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock"
     - Revert "drm/amd: flush any delayed gfxoff on suspend entry"
     - drm/virtio: Set segment size for virtio_gpu device
     - lsm: fix the logic in security_inode_getsecctx()
     - firewire: core: correct documentation of fw_csr_string() kernel API
     - ALSA: hda/realtek: Apply headset jack quirk for non-bass alc287 thinkpads
     - kbuild: Fix changing ELF file type for output of gen_btf for big endian
     - nfc: nci: free rx_data_reassembly skb on NCI device cleanup
     - net: hsr: remove WARN_ONCE() in send_hsr_supervision_frame()
     - net: stmmac: do not clear TBS enable bit on link up/down
     - xen-netback: properly sync TX responses
     - modpost: propagate W=1 build option to modpost
     - modpost: Don't let "driver"s reference .exit.*
     - linux/init: remove __memexit* annotations
     - modpost: Include '.text.*' in TEXT_SECTIONS
     - modpost: Add '.ltext' and '.ltext.*' to TEXT_SECTIONS
     - ALSA: hda/realtek: Enable headset mic on Vaio VJFE-ADL
     - ASoC: codecs: wcd938x: handle deferred probe
     - ALSA: hda/cs8409: Suppress vmaster control for Dolphin models
     - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power
     - [arm*] binder: signal epoll threads of self-work (CVE-2024-26606)
     - misc: fastrpc: Mark all sessions as invalid in cb_remove
     - ext4: fix double-free of blocks due to wrong extents moved_len
     - ext4: avoid bb_free and bb_fragments inconsistency in mb_free_blocks()
     - tracing: Fix wasted memory in saved_cmdlines logic
     - staging: iio: ad5933: fix type mismatch regression
     - iio: magnetometer: rm3100: add boundary check for the value read from
       RM3100_REG_TMRC
     - iio: core: fix memleak in iio_device_register_sysfs
     - iio: commom: st_sensors: ensure proper DMA alignment
     - iio: accel: bma400: Fix a compilation problem
     - iio: adc: ad_sigma_delta: ensure proper DMA alignment
     - iio: imu: adis: ensure proper DMA alignment
     - iio: imu: bno055: serdev requires REGMAP
     - media: rc: bpf attach/detach requires write permission
     - ksmbd: free aux buffer if ksmbd_iov_pin_rsp_read fails
     - xfrm: Remove inner/outer modes from output path
     - xfrm: Remove inner/outer modes from input path
     - [arm64] drm/msm: Wire up tlb ops
     - drm/prime: Support page array >= 4GB
     - drm/amd/display: Increase frame-larger-than for all display_mode_vba files
     - drm/amd/display: Preserve original aspect ratio in create stream
     - hv_netvsc: Fix race condition between netvsc_probe and netvsc_remove
     - ring-buffer: Clean ring_buffer_poll_wait() error return
     - nfp: flower: fix hardware offload for the transfer layer port
     - [powerpc*] 64: Set task pt_regs->link to the LR value on scv entry
     - [powerpc*] cputable: Add missing PPC_FEATURE_BOOKE on PPC64 Book-E
     - [powerpc*] pseries: fix accuracy of stolen time
     - [x86] fpu: Stop relying on userspace for info to fault in xsave buffer
       (CVE-2024-26603)
     - [x86] KVM: x86/pmu: Fix type length error when reading pmu->fixed_ctr_ctrl
     - [x86] mm/ident_map: Use gbpages only where full GB page should be mapped.
     - io_uring/net: fix multishot accept overflow handling
     - mmc: slot-gpio: Allow non-sleeping GPIO ro
     - ALSA: hda/realtek: fix mute/micmute LED For HP mt645
     - ALSA: hda/conexant: Add quirk for SWS JS201D
     - nilfs2: fix data corruption in dsync block recovery for small block sizes
     - nilfs2: fix hang in nilfs_lookup_dirty_data_buffers()
     - crypto: ccp - Fix null pointer dereference in
       __sev_platform_shutdown_locked
     - nfp: use correct macro for LengthSelect in BAR config
     - nfp: flower: prevent re-adding mac index for bonded port
     - wifi: cfg80211: fix wiphy delayed work queueing
     - wifi: mac80211: reload info pointer in ieee80211_tx_dequeue()
     - irqchip/irq-brcmstb-l2: Add write memory barrier before exit
     - irqchip/gic-v3-its: Fix GICv4.1 VPE affinity update
     - zonefs: Improve error handling
     - mmc: sdhci-pci-o2micro: Fix a warm reboot issue that disk can't be
       detected by BIOS (Closes: #1056056)
     - [x86] ASoC: amd: yc: Add DMI quirk for Lenovo Ideapad Pro 5 16ARP8
     - fs: relax mount_setattr() permission checks
     - net: ethernet: ti: cpsw: enable mac_managed_pm to fix mdio
     - [s390x] qeth: Fix potential loss of L3-IP@ in case of network issues
     - net: ethernet: ti: cpsw_new: enable mac_managed_pm to fix mdio
     - hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed
     - ceph: prevent use-after-free in encode_cap_msg()
     - fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super
       (CVE-2024-0841)
     - mm: hugetlb pages should not be reserved by shmat() if SHM_NORESERVE
     - of: property: fix typo in io-channels
     - can: netlink: Fix TDCO calculation using the old data bittiming
     - can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock
     - can: j1939: Fix UAF in j1939_sk_match_filter during
       setsockopt(SO_J1939_FILTER)
     - pmdomain: core: Move the unused cleanup to a _sync initcall
     - fs/proc: do_task_stat: move thread_group_cputime_adjusted() outside of
       lock_task_sighand()
     - tracing: Inform kmemleak of saved_cmdlines allocation
     - xfrm: Use xfrm_state selector for BEET input
     - xfrm: Silence warnings triggerable by bad packets
     - tls: fix NULL deref on tls_sw_splice_eof() with empty record
     - md: bypass block throttle for superblock update
     - wifi: mwifiex: Support SD8978 chipset
     - wifi: mwifiex: add extra delay for firmware ready
     - bus: moxtet: Add spi device table
     - [arm64] dts: qcom: msm8916: Enable blsp_dma by default
     - [arm64] dts: qcom: msm8916: Make blsp_dma controlled-remotely
     - [arm64] dts: qcom: sdm845: fix USB SS wakeup
     - [arm64] dts: qcom: sm8150: fix USB SS wakeup
     - wifi: mwifiex: fix uninitialized firmware_stat
     - crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init
     - block: fix partial zone append completion handling in req_bio_endio()
     - netfilter: ipset: fix performance regression in swap operation
     - netfilter: ipset: Missing gc cancellations fixed
     - nfsd: fix RELEASE_LOCKOWNER
     - nfsd: don't take fi_lock in nfsd_break_deleg_cb()
     - hrtimer: Ignore slack time for RT tasks in schedule_hrtimeout_range()
     - RDMA/irdma: Ensure iWarp QP queue memory is OS paged aligned
     - smb: client: fix potential OOBs in smb2_parse_contexts() (CVE-2023-52434)
     - smb: client: fix parsing of SMB3.1.1 POSIX create context
     - net: prevent mss overflow in skb_segment() (CVE-2023-52435)
     - bpf: Add struct for bin_args arg in bpf_bprintf_prepare
     - bpf: Do cleanup in bpf_bprintf_cleanup only when needed
     - bpf: Remove trace_printk_lock
     - userfaultfd: fix mmap_changing checking in mfill_atomic_hugetlb
     - dmaengine: ioat: Free up __cleanup() name
     - apparmor: Free up __cleanup() name
     - locking: Introduce __cleanup() based infrastructure
     - kbuild: Drop -Wdeclaration-after-statement
     - sched/membarrier: reduce the ability to hammer on sys_membarrier
       (CVE-2024-26602)
     - of: property: Add in-ports/out-ports support to of_graph_get_port_parent()
     - nilfs2: fix potential bug in end_buffer_async_write
     - nilfs2: replace WARN_ONs for invalid DAT metadata block requests
     - dm: limit the number of targets and parameter size area (CVE-2024-23851,
       CVE-2023-52429)
     - [arm64:]Subscribe Microsoft Azure Cobalt 100 to ARM Neoverse N2 errata
     - mlxsw: spectrum_acl_tcam: Fix stack corruption (CVE-2024-26586)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.80
     - net/sched: Retire CBQ qdisc
     - net/sched: Retire ATM qdisc
     - net/sched: Retire dsmark qdisc
     - sched/rt: Disallow writing invalid values to sched_rt_period_us
     - sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset
     - scsi: target: core: Add TMF to tmr_list handling
     - cifs: open_cached_dir should not rely on primary channel
     - wifi: cfg80211: fix missing interfaces when dumping
     - wifi: mac80211: fix race condition on enabling fast-xmit
     - fbdev: savage: Error out if pixclock equals zero
     - fbdev: sis: Error out if pixclock equals zero
     - block: Fix WARNING in _copy_from_iter
     - smb: Work around Clang __bdos() type confusion
     - cifs: translate network errors on send to -ECONNABORTED
     - ahci: asm1166: correct count of reported ports
     - aoe: avoid potential deadlock at set_capacity
     - ahci: add 43-bit DMA address quirk for ASMedia ASM1061 controllers
     - [mips*] reserve exception vector space ONLY ONCE
     - [x86] platform/x86: touchscreen_dmi: Add info for the TECLAST X16 Plus
       tablet
     - ext4: avoid dividing by 0 in mb_update_avg_fragment_size() when block
       bitmap corrupt
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_try_best_found()
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_find_by_goal()
     - Input: goodix - accept ACPI resources with gpio_count == 3 && gpio_int_idx
       == 0
     - [armhf] dmaengine: ti: edma: Add some null pointer checks to the
       edma_probe
     - [arm64] regulator: pwm-regulator: Add validity checks in continuous
       .get_voltage
     - nvmet-tcp: fix nvme tcp ida memory leak
     - usb: ucsi_acpi: Quirk to ack a connector change ack cmd
     - ALSA: usb-audio: Check presence of valid altsetting control
     - [armhf] ASoC: sunxi: sun4i-spdif: Add support for Allwinner H616
     - Input: xpad - add Lenovo Legion Go controllers
     - netfilter: conntrack: check SCTP_CID_SHUTDOWN_ACK for vtag setting in
       sctp_new
     - drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz
     - [x86] ASoC: wm_adsp: Don't overwrite fwf_name with the default
     - ALSA: usb-audio: Ignore clock selector errors for single connection
     - nvme-fc: do not wait in vain when unloading module
     - nvmet-fcloop: swap the list_add_tail arguments
     - nvmet-fc: release reference on target port
     - nvmet-fc: defer cleanup using RCU properly
     - nvmet-fc: hold reference on hostport match
     - nvmet-fc: abort command when there is no binding
     - nvmet-fc: avoid deadlock on delete association path
     - nvmet-fc: take ref count on tgtport before delete assoc
     - smb: client: increase number of PDUs allowed in a compound request
     - ext4: correct the hole length returned by ext4_map_blocks()
     - Input: i8042 - add Fujitsu Lifebook U728 to i8042 quirk table
     - wifi: mac80211: set station RX-NSS on reconfig
     - wifi: mac80211: adding missing drv_mgd_complete_tx() call
     - efi: runtime: Fix potential overflow of soft-reserved region size
     - efi: Don't add memblocks for soft-reserved memory
     - [x86] hwmon: (coretemp) Enlarge per package core count limit
     - scsi: lpfc: Use unsigned type for num_sge
     - scsi: ufs: core: Remove the ufshcd_release() in
       ufshcd_err_handling_prepare()
     - firewire: core: send bus reset promptly on gap count error
     - drm/amdgpu: skip to program GFXDEC registers for suspend abort
     - drm/amdgpu: reset gpu for s3 suspend abort case
     - smb: client: set correct d_type for reparse points under DFS mounts
     - virtio-blk: Ensure no requests in virtqueues before deleting vqs.
     - smb3: clarify mount warning
     - [amd64] IB/hfi1: Fix sdma.h tx->num_descs off-by-one error
     - drm/ttm: Fix an invalid freeing on already freed page in error path
     - [s390x] cio: fix invalid -EBUSY on ccw_device_start
     - ata: libata-core: Do not try to set sleeping devices to standby
     - dm-crypt: recheck the integrity tag after a failure
     - dm-integrity: recheck the integrity tag after a failure
     - dm-crypt: don't modify the data when using authenticated encryption
     - dm-verity: recheck the hash after a failure
     - cxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS
       window
     - scsi: target: pscsi: Fix bio_put() for error case
     - scsi: core: Consult supported VPD page list prior to fetching page
     - mm/swap: fix race when skipping swapcache
     - mm: memcontrol: clarify swapaccount=0 deprecation warning
     - [x86] platform/x86: intel-vbtn: Stop calling "VBDL" from notify_handler
     - [x86] platform/x86: touchscreen_dmi: Allow partial (prefix) matches for
       ACPI names
     - cachefiles: fix memory leak in cachefiles_add_cache()
     - md: Fix missing release of 'active_io' for flush
     - [arm64] KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler
     - [arm64] KVM: arm64: vgic-its: Test for valid IRQ in
       its_sync_lpi_pending_table()
     - gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp()
     - crypto: virtio/akcipher - Fix stack overflow on memcpy
     - irqchip/gic-v3-its: Do not assume vPE tables are preallocated
     - irqchip/sifive-plic: Enable interrupt if needed before EOI
     - PCI/MSI: Prevent MSI hardware interrupt number truncation
     - l2tp: pass correct message length to ip6_append_data
     - [x86] returnthunk: Allow different return thunks
     - [x86] Revert "x86/alternative: Make custom return thunk unconditional"
     - [x86] alternative: Make custom return thunk unconditional
     - dm-integrity, dm-verity: reduce stack usage for recheck
     - erofs: fix refcount on the metabuf used for inode lookup
     - serial: amba-pl011: Fix DMA transmission in RS485 mode
     - [arm64,armhf] usb: dwc3: gadget: Don't disconnect if not started
     - usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs
     - usb: roles: fix NULL pointer issue when put module's reference
     - usb: roles: don't get/set_role() when usb_role_switch is unregistered
     - mptcp: make userspace_pm_append_new_local_addr static
     - mptcp: add needs_id for userspace appending addr
     - mptcp: fix lockless access in subflow ULP diag
     - Revert "drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz"
     - [amd64] IB/hfi1: Fix a memleak in init_credit_return
     - RDMA/bnxt_re: Return error for SRQ resize
     - RDMA/irdma: Fix KASAN issue with tasklet
     - RDMA/irdma: Validate max_send_wr and max_recv_wr
     - RDMA/irdma: Set the CQ read threshold for GEN 1
     - RDMA/irdma: Add AE for too many RNRS
     - RDMA/srpt: Support specifying the srpt_service_guid parameter
     - iommufd/iova_bitmap: Bounds check mapped::pages access
     - iommufd/iova_bitmap: Switch iova_bitmap::bitmap to an u8 array
     - iommufd/iova_bitmap: Consider page offset for the pages to be pinned
     - RDMA/qedr: Fix qedr_create_user_qp error flow
     - [arm64] dts: rockchip: set num-cs property for spi on px30
     - RDMA/srpt: fix function pointer cast warnings
     - bpf, scripts: Correct GPL license name
     - scsi: smartpqi: Fix disable_managed_interrupts
     - net: bridge: switchdev: Skip MDB replays of deferred events on offload
     - net: bridge: switchdev: Ensure deferred event delivery on unoffload
     - dccp/tcp: Unhash sk from ehash for tb2 alloc failure after
       check_estalblished().
     - nouveau: fix function cast warnings
     - [x86] numa: Fix the address overlap check in numa_fill_memblks()
     - [x86] numa: Fix the sort compare func used in numa_fill_memblks()
     - net: stmmac: Fix incorrect dereference in interrupt handlers
     - ipv4: properly combine dev_base_seq and ipv4.dev_addr_genid
     - ipv6: properly combine dev_base_seq and ipv6.dev_addr_genid
     - ata: ahci_ceva: fix error handling for Xilinx GT PHY support
     - bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel
     - afs: Increase buffer size in afs_update_volume_status()
     - ipv6: sr: fix possible use-after-free and null-ptr-deref
     - net: dev: Convert sa_data to flexible array in struct sockaddr
     - [arm64] sme: Restore SME registers on exit from suspend
     - [x86] platform/x86: thinkpad_acpi: Only update profile if successfully
       converted
     - [s390x] use the correct count for __iowrite64_copy()
     - bpf, sockmap: Fix NULL pointer dereference in
       sk_psock_verdict_data_ready()
     - tls: break out of main loop when PEEK gets a non-data record
     - tls: stop recv() if initial process_rx_list gave us non-DATA
     - tls: don't skip over different type records from the rx_list
     - netfilter: nf_tables: set dormant flag on hook register failure
     - netfilter: flowtable: simplify route logic
     - netfilter: nft_flow_offload: reset dst in route object after setting up
       flow
     - netfilter: nft_flow_offload: release dst in case direct xmit path is used
     - netfilter: nf_tables: rename function to destroy hook list
     - netfilter: nf_tables: register hooks last when adding new chain/flowtable
     - netfilter: nf_tables: use kzalloc for hook allocation
     - net: mctp: put sock on tag allocation failure
     - Fix write to cloned skb in ipv6_hop_ioam()
     - net: phy: realtek: Fix rtl8211f_config_init() for RTL8211F(D)(I)-VD-CG PHY
     - drm/syncobj: call drm_syncobj_fence_add_wait when WAIT_AVAILABLE flag is
       set
     - drm/amd/display: Fix memory leak in dm_sw_fini()
     - [arm64,armhf] i2c: imx: when being a target, mark the last read as
       processed
     - erofs: simplify compression configuration parser
     - erofs: fix inconsistent per-file compression format (CVE-2024-26590)
     - fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio
     - mm: zswap: fix missing folio cleanup in writeback race path
     - mptcp: userspace pm send RM_ADDR for ID 0
     - mptcp: add needs_id for netlink appending addr
     - ata: ahci: add identifiers for ASM2116 series adapters
     - ahci: Extend ASM1061 43-bit DMA address quirk to other ASM106x parts
     - arp: Prevent overflow in arp_req_get().
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.81
     - netfilter: nf_tables: disallow timeout for anonymous sets (CVE-2023-52620)
     - [arm64] drm/meson: fix unbind path if HDMI fails to bind
     - [arm64] drm/meson: Don't remove bridges which are created by other drivers
     - scsi: core: Add struct for args to execution functions
     - scsi: sd: usb_storage: uas: Access media prior to querying device
       properties
     - af_unix: Fix task hung while purging oob_skb in GC.
     - of: overlay: Reorder struct fragment fields kerneldoc
     - usb: gadget: Properly configure the device for remote wakeup
     - Input: xpad - add constants for GIP interface numbers
     - [arm64] iommu/arm-smmu-v3: Acknowledge pri/event queue overflow if any
     - [arm64] iommu/arm-smmu-qcom: Limit the SMR groups to 128
     - RDMA/core: Fix multiple -Warray-bounds warnings
     - mm: huge_memory: don't force huge page alignment on 32 bit
       (CVE-2024-26621) (Closes: #1024149)
     - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter
     - netlink: add nla be16/32 types to minlen array
     - net: ip_tunnel: prevent perpetual headroom growth
     - net: mctp: take ownership of skb in mctp_local_output
     - tun: Fix xdp_rxq_info's queue_index when detaching
     - cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call
       back
     - net: veth: clear GRO when clearing XDP even when down
     - ipv6: fix potential "struct net" leak in inet6_rtm_getaddr()
     - lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is
       detected
     - veth: try harder when allocating queue memory
     - net: usb: dm9601: fix wrong return value in dm9601_mdio_read
     - net: lan78xx: fix "softirq work is pending" error
     - uapi: in6: replace temporary label with rfc9486
     - stmmac: Clear variable when destroying workqueue
     - Bluetooth: hci_sync: Check the correct flag before starting a scan
     - Bluetooth: Avoid potential use-after-free in hci_error_reset
     - Bluetooth: hci_sync: Fix accept_list when attempting to suspend
     - Bluetooth: hci_event: Fix wrongly recorded wakeup BD_ADDR
     - Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST
     - Bluetooth: Enforce validation on max value of connection interval
     - Bluetooth: qca: Fix wrong event type for patch config command
     - Bluetooth: hci_qca: mark OF related data as maybe unused
     - Bluetooth: hci_qca: Add support for QTI Bluetooth chip wcn6855
     - Bluetooth: btqca: use le32_to_cpu for ver.soc_id
     - Bluetooth: btqca: Add WCN3988 support
     - Bluetooth: qca: use switch case for soc type behavior
     - Bluetooth: qca: add support for WCN7850
     - Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT
     - netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()
     - netfilter: let reset rules clean out conntrack entries
     - netfilter: bridge: confirm multicast packets before passing them up the
       stack
     - rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back
     - igb: extend PTP timestamp adjustments to i211
     - net: hsr: Use correct offset for HSR TLV values in supervisory HSR frames
     - tls: decrement decrypt_pending if no async completion will be called
     - tls: fix peeking with sync+async decryption
     - efi/capsule-loader: fix incorrect allocation size
     - ALSA: Drop leftover snd-rtctimer stuff from Makefile
     - [arm64,armhf] drm/tegra: Remove existing framebuffer only if we support
       display
     - fbcon: always restore the old font data in fbcon_do_set_font()
     - afs: Fix endless loop in directory parsing
     - of: property: fw_devlink: Fix stupid bug in remote-endpoint parsing
     - tomoyo: fix UAF write bug in tomoyo_write_control() (CVE-2024-26622)
     - ALSA: firewire-lib: fix to check cycle continuity
     - ALSA: hda/realtek: Enable Mute LED on HP 840 G8 (MB 8AB8)
     - ALSA: hda/realtek: fix mute/micmute LED For HP mt440
     - landlock: Fix asymmetric private inodes referring
     - gtp: fix use-after-free and null-ptr-deref in gtp_newlink()
     - wifi: nl80211: reject iftype change with mesh ID change
     - btrfs: fix double free of anonymous device after snapshot creation failure
     - btrfs: dev-replace: properly validate device names
     - btrfs: send: don't issue unnecessary zero writes for trailing hole
     - Revert "drm/amd/pm: resolve reboot exception for si oland"
     - drm/buddy: fix range bias
     - [arm64] dmaengine: fsl-qdma: fix SoC may hang on 16 byte unaligned read
     - [arm64] crypto: arm64/neonbs - fix out-of-bounds access on short input
     - [arm64] dmaengine: fsl-qdma: init irq after reg initialization
     - [arm64,armhf] mmc: mmci: stm32: fix DMA API overlapping mappings warning
     - mmc: core: Fix eMMC initialization with 1-bit bus connection
     - [arm64] mmc: sdhci-xenon: add timeout for PHY init complete
     - [arm64] mmc: sdhci-xenon: fix PHY init clock stability
     - efivarfs: Request at most 512 bytes for variable names
     - [arm64] pmdomain: qcom: rpmhpd: Fix enabled_corner aggregation
     - [x86] e820: Don't reserve SETUP_RNG_SEED in e820
     - [x86] cpu/intel: Detect TME keyid bits before setting MTRR mask registers
     - mptcp: fix data races on local_id
     - mptcp: fix data races on remote_id
     - mptcp: fix duplicate subflow creation
     - mptcp: continue marking the first subflow as UNCONNECTED
     - mptcp: map v4 address to v6 when destroying subflow
     - mptcp: push at DSS boundaries
     - mptcp: fix snd_wnd initialization for passive socket
     - mptcp: fix double-free on socket dismantle
     - mptcp: fix possible deadlock in subflow diag
     - RDMA/core: Refactor rdma_bind_addr (CVE-2023-2176)
     - RDMA/core: Update CMA destination address on rdma_resolve_addr
     - efi: libstub: use EFI_LOADER_CODE region when moving the kernel in memory
     - [x86] boot/compressed: Rename efi_thunk_64.S to efi-mixed.S
     - [x86] boot/compressed: Move 32-bit entrypoint code into .text section
     - [x86] boot/compressed: Move bootargs parsing out of 32-bit startup code
     - [x86] boot/compressed: Move efi32_pe_entry into .text section
     - [x86] boot/compressed: Move efi32_entry out of head_64.S
     - [x86] boot/compressed: Move efi32_pe_entry() out of head_64.S
     - [x86] boot/compressed, efi: Merge multiple definitions of image_offset
       into one
     - [x86] boot/compressed: Simplify IDT/GDT preserve/restore in the EFI thunk
     - [x86] boot/compressed: Avoid touching ECX in startup32_set_idt_entry()
     - [x86] boot/compressed: Pull global variable reference into
       startup32_load_idt()
     - [x86] boot/compressed: Move startup32_load_idt() into .text section
     - [x86] boot/compressed: Move startup32_load_idt() out of head_64.S
     - [x86] boot/compressed: Move startup32_check_sev_cbit() into .text
     - [x86] boot/compressed: Move startup32_check_sev_cbit() out of head_64.S
     - [x86] boot/compressed: Adhere to calling convention in
       get_sev_encryption_bit()
     - [x86] boot/compressed: Only build mem_encrypt.S if AMD_MEM_ENCRYPT=y
     - efi: verify that variable services are supported
     - [x86] efi: Make the deprecated EFI handover protocol optional
     - [x86] boot: Robustify calling startup_{32,64}() from the decompressor code
     - [x86] efistub: Branch straight to kernel entry point from C code
     - [x86] decompressor: Store boot_params pointer in callee save register
     - [x86] decompressor: Assign paging related global variables earlier
     - [x86] decompressor: Call trampoline as a normal function
     - [x86] decompressor: Use standard calling convention for trampoline
     - [x86] decompressor: Avoid the need for a stack in the 32-bit trampoline
     - [x86] decompressor: Call trampoline directly from C code
     - [x86] decompressor: Only call the trampoline when changing paging levels
     - [x86] decompressor: Pass pgtable address to trampoline directly
     - [x86] decompressor: Merge trampoline cleanup with switching code
     - [x86] decompressor: Move global symbol references to C code
     - decompress: Use 8 byte alignment
     - drm/amd/display: Increase frame warning limit with KASAN or KCSAN in dml
     - NFS: Fix data corruption caused by congestion.
     - NFSD: Simplify READ_PLUS
     - NFSD: Remove redundant assignment to variable host_err
     - nfsd: ignore requests to disable unsupported versions
     - nfsd: move nfserrno() to vfs.c
     - nfsd: allow disabling NFSv2 at compile time
     - exportfs: use pr_debug for unreachable debug statements
     - NFSD: Flesh out a documenting comment for filecache.c
     - NFSD: Clean up nfs4_preprocess_stateid_op() call sites
     - NFSD: Trace stateids returned via DELEGRETURN
     - NFSD: Trace delegation revocations
     - NFSD: Use const pointers as parameters to fh_ helpers
     - NFSD: Update file_hashtbl() helpers
     - NFSD: Clean up nfsd4_init_file()
     - NFSD: Add a nfsd4_file_hash_remove() helper
     - NFSD: Clean up find_or_add_file()
     - NFSD: Refactor find_file()
     - NFSD: Use rhashtable for managing nfs4_file objects
     - NFSD: Fix licensing header in filecache.c
     - filelock: add a new locks_inode_context accessor function
     - lockd: use locks_inode_context helper
     - nfsd: use locks_inode_context helper
     - nfsd: fix up the filecache laundrette scheduling
     - NFSD: Use struct_size() helper in alloc_session()
     - lockd: set missing fl_flags field when retrieving args
     - lockd: ensure we use the correct file descriptor when unlocking
     - lockd: fix file selection in nlmsvc_cancel_blocked
     - trace: Relocate event helper files
     - NFSD: refactoring courtesy_client_reaper to a generic low memory shrinker
     - NFSD: add support for sending CB_RECALL_ANY
     - NFSD: add delegation reaper to react to low memory condition
     - NFSD: add CB_RECALL_ANY tracepoints
     - NFSD: Use only RQ_DROPME to signal the need to drop a reply
     - NFSD: Avoid clashing function prototypes
     - NFSD: Use set_bit(RQ_DROPME)
     - NFSD: register/unregister of nfsd-client shrinker at nfsd startup/shutdown
       time
     - NFSD: replace delayed_work with work_struct for nfsd_client_shrinker
     - nfsd: don't destroy global nfs4_file table in per-net shutdown
     - [arm64] efi: Limit allocations to 48-bit addressable physical region
     - efi: efivars: prevent double registration
     - [x86] efistub: Simplify and clean up handover entry code
     - [x86] decompressor: Avoid magic offsets for EFI handover entrypoint
     - [x86] efistub: Clear BSS in EFI handover protocol entrypoint
     - efi/libstub: Add memory attribute protocol definitions
     - efi/libstub: Add limit argument to efi_random_alloc()
     - [x86] efistub: Perform 4/5 level paging switch from the stub
     - [x86] decompressor: Factor out kernel decompression and relocation
     - [x86] efistub: Prefer EFI memory attributes protocol over DXE services
     - [x86] efistub: Perform SNP feature test while running in the firmware
     - [x86] efistub: Avoid legacy decompressor when doing EFI boot
     - [x86] efi/x86: Avoid physical KASLR on older Dell systems
     - [x86] efistub: Avoid placing the kernel below LOAD_PHYSICAL_ADDR
     - [x86] boot: Rename conflicting 'boot_params' pointer to 'boot_params_ptr'
     - [x86] boot: efistub: Assign global boot_params variable
     - [x86] efi/x86: Fix the missing KASLR_FLAG bit in
       boot_params->hdr.loadflags
     - af_unix: Drop oob_skb ref before purging queue in GC.
     - [arm64] phy: freescale: phy-fsl-imx8-mipi-dphy: Fix alias name to use
       dashes
     - [powerpc*] pseries/iommu: IOMMU table is not initialized for kdump over
       SR-IOV
     - gpio: 74x164: Enable output pins after registers are reset
     - gpiolib: Fix the error path order in gpiochip_add_data_with_key()
     - gpio: fix resource unwinding order in error path
     - block: define bvec_iter as __packed __aligned(4)
     - [arm64,armhf] Revert "interconnect: Fix locking for runpm vs reclaim"
     - [arm64,armhf] Revert "interconnect: Teach lockdep about icc_bw_lock order"
     - [x86] bugs: Add asm helpers for executing VERW
     - [x86] entry_64: Add VERW just before userspace transition
     - [x86] entry_32: Add VERW just before userspace transition
     - [x86] bugs: Use ALTERNATIVE() instead of mds_user_clear static key
     - [x86] KVM/VMX: Use BT+JNC, i.e. EFLAGS.CF to select VMRESUME vs. VMLAUNCH
     - [x86] KVM/VMX: Move VERW closer to VMentry for MDS mitigation
     - bpf: Add table ID to bpf_fib_lookup BPF helper
     - bpf: Derive source IP addr via bpf_*_fib_lookup()
     - [x86] efistub: Give up if memory attribute protocol returns an error
     - xen/events: close evtchn after mapping cleanup
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.82
     - ceph: switch to corrected encoding of max_xattr_size in mdsmap
     - net: lan78xx: fix runtime PM count underflow on link stop
     - ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able
     - i40e: disable NAPI right after disabling irqs when handling xsk_pool
     - ice: reorder disabling IRQ and NAPI in ice_qp_dis
     - tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string
     - geneve: make sure to pull inner header in geneve_rx()
     - ice: virtchnl: stop pretending to support RSS over AQ or registers
     - net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()
     - igc: avoid returning frame twice in XDP_REDIRECT
     - net/ipv6: avoid possible UAF in ip6_route_mpath_notify()
     - cpumap: Zero-initialise xdp_rxq_info struct before running XDP program
     - net: dsa: microchip: fix register write order in ksz8_ind_write8()
     - net/rds: fix WARNING in rds_conn_connect_if_down
     - netfilter: nft_ct: fix l3num expectations with inet pseudo family
     - netfilter: nf_conntrack_h323: Add protection for bmp length out of range
     - erofs: apply proper VMA alignment for memory mapped files on THP
     - netrom: Fix a data-race around sysctl_netrom_default_path_quality
     - netrom: Fix a data-race around
       sysctl_netrom_obsolescence_count_initialiser
     - netrom: Fix data-races around sysctl_netrom_network_ttl_initialiser
     - netrom: Fix a data-race around sysctl_netrom_transport_timeout
     - netrom: Fix a data-race around sysctl_netrom_transport_maximum_tries
     - netrom: Fix a data-race around sysctl_netrom_transport_acknowledge_delay
     - netrom: Fix a data-race around sysctl_netrom_transport_busy_delay
     - netrom: Fix a data-race around
       sysctl_netrom_transport_requested_window_size
     - netrom: Fix a data-race around sysctl_netrom_transport_no_activity_timeout
     - netrom: Fix a data-race around sysctl_netrom_routing_control
     - netrom: Fix a data-race around sysctl_netrom_link_fails_count
     - netrom: Fix data-races around sysctl_net_busy_read
     - [s390x] KVM: s390: add stat counter for shadow gmap events
     - [s390x] KVM: s390: vsie: fix race during shadow creation
     - drm/amd/display: Fix uninitialized variable usage in core_link_
       'read_dpcd() & write_dpcd()' functions
     - nfp: flower: add goto_chain_index for ct entry
     - nfp: flower: add hardware offload check for post ct entry
     - readahead: avoid multiple marked readahead pages
     - xhci: process isoc TD properly when there was a transaction error mid TD.
     - xhci: handle isoc Babble and Buffer Overrun events properly
     - drm/amdgpu: Reset IH OVERFLOW_CLEAR bit
     - [x86] Mitigate Register File Data Sampling (RFDS) vulnerability
       (CVE-2023-28746):
       + [x86] mmio: Disable KVM mitigation when X86_FEATURE_CLEAR_CPU_BUF is set
       + Documentation/hw-vuln: Add documentation for RFDS
       + [x86] rfds: Mitigate Register File Data Sampling (RFDS)
       + [x86] KVM/x86: Export RFDS_NO and RFDS_CLEAR to guests
     - drm/amd/display: Wrong colorimetry workaround
     - drm/amd/display: Fix MST Null Ptr for RV
     - getrusage: add the "signal_struct *sig" local variable
     - getrusage: move thread_group_cputime_adjusted() outside of
       lock_task_sighand()
     - getrusage: use __for_each_thread()
     - getrusage: use sig->stats_lock rather than lock_task_sighand()
     - fs/proc: do_task_stat: use __for_each_thread()
     - fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children
       stats
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 19
   * [rt] Refresh "sched: avoid false lockdep splat in put_task_struct()"
   * Drop now unknown config options for retired CBQ, ATM and dsmark qdisc
   * [x86] efistub: Clear decompressor BSS in native EFI entrypoint
   * [x86] efistub: Don't clear BSS twice in mixed mode
   * efi: fix panic in kdump kernel
   * efi/libstub: fix efi_random_alloc() to allocate memory at alloc_min or
     higher address
   * efi/libstub: Cast away type warning in use of max()
   * aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts
     (CVE-2023-6270)
   * wifi: ath10k: fix NULL pointer dereference in
     ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (CVE-2023-7042)
   * Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security
     (CVE-2024-22099)
   * sr9800: Add check for usbnet_get_endpoints (CVE-2024-26651)
   * [rt] Update to 6.1.82-rt27

linux-signed-arm64 (6.1.94+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.94-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.91
     - [arm64,armhf] dmaengine: pl330: issue_pending waits until WFP state
     - dmaengine: Revert "dmaengine: pl330: issue_pending waits until WFP state"
     - wifi: nl80211: don't free NULL coalescing rule
     - eeprom: at24: Use dev_err_probe for nvmem register failure
     - eeprom: at24: Probe for DDR3 thermal sensor in the SPD case
     - eeprom: at24: fix memory corruption race condition (CVE-2024-35848)
     - Bluetooth: qca: add support for QCA2066
     - mm/hugetlb: add folio support to hugetlb specific flag macros
     - mm: add private field of first tail to struct page and struct folio
     - mm/hugetlb: add hugetlb_folio_subpool() helpers
     - mm/hugetlb: add folio_hstate()
     - mm/hugetlb_cgroup: convert __set_hugetlb_cgroup() to folios
     - mm/hugetlb_cgroup: convert hugetlb_cgroup_from_page() to folios
     - mm/hugetlb: convert free_huge_page to folios
     - mm/hugetlb_cgroup: convert hugetlb_cgroup_uncharge_page() to folios
     - mm/hugetlb: fix missing hugetlb_lock for resv uncharge
     - kbuild: refactor host*_flags
     - kbuild: specify output names separately for each emission type from rustc
     - cifs: use the least loaded channel for sending requests
     - smb3: missing lock when picking channel
     - [armhf] pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of
       GPIOR-T
     - [arm64] pinctrl/meson: fix typo in PDM's pin name
     - pinctrl: core: delete incorrect free in pinctrl_enable()
     - sunrpc: add a struct rpc_stats arg to rpc_create_args
     - nfs: expose /proc/net/sunrpc/nfs in net namespaces
     - nfs: make the rpc_stat per net namespace
     - nfs: Handle error of rpc_proc_register() in nfs_net_init().
     - pinctrl: Introduce struct pinfunction and PINCTRL_PINFUNCTION() macro
     - [x86] pinctrl: intel: Make use of struct pinfunction and
       PINCTRL_PINFUNCTION()
     - [x86] pinctrl: baytrail: Fix selecting gpio pinctrl state
     - pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()
     - regulator: change stubbed devm_regulator_get_enable to return Ok
     - regulator: change devm_regulator_get_enable_optional() stub to return Ok
     - bpf, kconfig: Fix DEBUG_INFO_BTF_MODULES Kconfig definition
     - bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue
     - nvme: fix warn output about shared namespaces without
       CONFIG_NVME_MULTIPATH
     - bpf: Fix a verifier verbose message
     - spi: introduce new helpers with using modern naming
     - [arm64] bpf, arm64: Fix incorrect runtime stats
     - [s390x] mm: Fix storage key clearing for guest huge pages
     - [s390x] mm: Fix clearing storage keys for huge pages
     - xdp: use flags field to disambiguate broadcast redirect
     - bna: ensure the copied buf is NUL terminated
     - nsh: Restore skb->{protocol,data,mac_header} for outer header in
       nsh_gso_segment().
     - net l2tp: drop flow hash on forward
     - [s390x] vdso: Add CFI for RA register to asm macro vdso_func
     - net: qede: sanitize 'rc' in qede_add_tc_flower_fltr()
     - net: qede: use return from qede_parse_flow_attr() for flower
     - net: qede: use return from qede_parse_flow_attr() for flow_spec
     - net: qede: use return from qede_parse_actions()
     - [arm64] ASoC: meson: axg-fifo: use FIELD helpers
     - [arm64] ASoC: meson: axg-fifo: use threaded irq to check periods
     - [arm64] ASoC: meson: axg-card: make links nonatomic
     - [arm64] ASoC: meson: axg-tdm-interface: manage formatters in trigger
     - [arm64] ASoC: meson: cards: select SND_DYNAMIC_MINORS
     - ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()
     - [s390x] cio: Ensure the copied buf is NUL terminated
     - cxgb4: Properly lock TX queue for the selftest.
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix number of databases for 88E6141 /
       88E6341
     - spi: fix null pointer dereference within spi_sync
     - net: bridge: fix multicast-to-unicast with fraglist GSO
     - net: core: reject skb_copy(_expand) for fraglist GSO skbs
     - vxlan: Pull inner IP header in vxlan_rcv().
     - [s390x] qeth: Fix kernel panic after setting hsuid
     - net: gro: add flush check in udp_gro_receive_segment
     - [arm64] clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change
     - [powerpc*] pseries: replace kmalloc with kzalloc in PLPKS driver
     - [powerpc*] pseries: Move PLPKS constants to header file
     - [powerpc*] pseries: make max polling consistent for longer H_CALLs
     - [powerpc*] pseries/iommu: LPAR panics during boot up with a frozen PE
     - [arm64] KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id
     - [arm64] KVM: arm64: vgic-v2: Check for non-NULL vCPU in
       vgic_v2_parse_attr()
     - scsi: lpfc: Move NPIV's transport unregistration to after resource clean
       up
     - scsi: lpfc: Update lpfc_ramp_down_queue_handler() logic
     - scsi: lpfc: Replace hbalock with ndlp lock in lpfc_nvme_unregister_port()
     - scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up()
     - gfs2: Fix invalid metadata access in punch_hole
     - wifi: mac80211: fix ieee80211_bss_*_flags kernel-doc
     - wifi: cfg80211: fix rdev_dump_mpp() arguments order
     - net: mark racy access on sk->sk_rcvbuf
     - scsi: mpi3mr: Avoid memcpy field-spanning write WARNING
     - scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload
     - btrfs: return accurate error code on open failure in open_fs_devices()
     - bpf: Check bloom filter map value size
     - kbuild: Disable KCSAN for autogenerated *.mod.c intermediaries
     - scsi: ufs: core: WLUN suspend dev/link state error recovery
     - ALSA: line6: Zero-initialize message buffers
     - block: fix overflow in blk_ioctl_discard()
     - net: bcmgenet: Reset RBUF on first open
     - ata: sata_gemini: Check clk_enable() result
     - firewire: ohci: mask bus reset interrupts between ISR and bottom half
     - tools/power turbostat: Fix added raw MSR output
     - tools/power turbostat: Increase the limit for fd opened
     - tools/power turbostat: Fix Bzy_MHz documentation typo
     - btrfs: make btrfs_clear_delalloc_extent() free delalloc reserve
     - btrfs: always clear PERTRANS metadata during commit
     - scsi: target: Fix SELinux error when systemd-modules loads the target
       module
     - blk-iocost: avoid out of bounds shift
     - [arm64,armhf] gpu: host1x: Do not setup DMA for virtual devices
     - [mips*] scall: Save thread_info.syscall unconditionally on entry
       (Closes: #1068365)
     - tools/power/turbostat: Fix uncore frequency file string
     - drm/amdgpu: Refine IB schedule error logging
     - Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl
     - [x86] uio_hv_generic: Don't free decrypted memory
     - Drivers: hv: vmbus: Don't free ring buffers that couldn't be re-encrypted
     - fs/9p: only translate RWX permissions for plain 9P2000
     - fs/9p: translate O_TRUNC into OTRUNC
     - 9p: explicitly deny setlease attempts
     - gpio: wcove: Use -ENOTSUPP consistently
     - gpio: crystalcove: Use -ENOTSUPP consistently
     - clk: Don't hold prepare_lock when calling kref_put()
     - fs/9p: drop inodes immediately on non-.L too
     - drm/nouveau/dp: Don't probe eDP ports twice harder
     - net:usb:qmi_wwan: support Rolling modules
     - kbuild: rust: avoid creating temporary files
     - spi: Merge spi_controller.{slave,target}_abort()
     - perf unwind-libunwind: Fix base address for .eh_frame
     - perf unwind-libdw: Handle JIT-generated DSOs properly
     - qibfs: fix dentry leak
     - xfrm: Preserve vlan tags for transport mode software GRO
     - tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets
     - tcp: Use refcount_inc_not_zero() in tcp_twsk_unique().
     - Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout
       (CVE-2024-27398)
     - Bluetooth: msft: fix slab-use-after-free in msft_do_close()
     - Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout
       (CVE-2024-27399)
     - net: ks8851: Queue RX packets in IRQ handler instead of disabling BHs
     - rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation
     - [x86] hwmon: (corsair-cpro) Use a separate buffer for sending commands
     - [x86] hwmon: (corsair-cpro) Use complete_all() instead of complete() in
       ccp_raw_event()
     - [x86] hwmon: (corsair-cpro) Protect ccp->wait_input_report with a spinlock
     - phonet: fix rtm_phonet_notify() skb allocation
     - net: bridge: fix corrupted ethernet header on multicast-to-unicast
     - ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action()
     - timers: Get rid of del_singleshot_timer_sync()
     - timers: Rename del_timer() to timer_delete()
     - net-sysfs: convert dev->operstate reads to lockless ones
     - hsr: Simplify code for announcing HSR nodes timer setup
     - ipv6: annotate data-races around cnf.disable_ipv6
     - ipv6: prevent NULL dereference in ip6_output()
     - net/smc: fix neighbour and rtable leak in smc_ib_find_route()
     - [arm64] net: hns3: using user configure after hardware reset
     - [arm64] net: hns3: direct return when receive a unknown mailbox message
     - [arm64] net: hns3: change type of numa_node_mask as nodemask_t
     - [arm64] net: hns3: release PTP resources if pf initialization failed
     - [arm64] net: hns3: use appropriate barrier function after setting a bit
       value
     - [arm64] net: hns3: fix port vlan filter not disabled issue
     - [arm64] net: hns3: fix kernel crash when devlink reload during
       initialization
     - [arm64] drm/meson: dw-hdmi: power up phy on device init
     - [arm64] drm/meson: dw-hdmi: add bandgap setting for g12
     - drm/connector: Add \n to message about demoting connector force-probes
     - dm/amd/pm: Fix problems with reboot/shutdown for some SMU 13.0.4/13.0.11
       users
     - gpiolib: cdev: Add missing header(s)
     - gpiolib: cdev: relocate debounce_period_us from struct gpio_desc
     - gpiolib: cdev: fix uninitialised kfifo
     - drm/amd/display: Atom Integrated System Info v2_2 for DCN35
     - MAINTAINERS: add leah to 6.1 MAINTAINERS file
     - drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2
     - btrfs: fix kvcalloc() arguments order in btrfs_ioctl_send()
     - firewire: nosy: ensure user_length is taken into account when fetching
       packet contents (CVE-2024-27401)
     - Reapply "drm/qxl: simplify qxl_fence_wait"
     - btf, scripts: rust: drop is_rust_module.sh
     - usb: typec: ucsi: Check for notifications after init
     - usb: typec: ucsi: Fix connector check on init
     - usb: Fix regression caused by invalid ep0 maxpacket in virtual SuperSpeed
       device
     - usb: ohci: Prevent missed ohci interrupts
     - USB: core: Fix access violation during port device removal
     - usb: gadget: composite: fix OS descriptors w_value logic
     - usb: gadget: f_fs: Fix a race condition when processing setup packets.
     - usb: xhci-plat: Don't include xhci.h
     - usb: dwc3: core: Prevent phy suspend during init
     - usb: typec: tcpm: unregister existing source caps before re-registration
     - usb: typec: tcpm: Check for port partner validity before consuming it
     - ALSA: hda/realtek: Fix mute led of HP Laptop 15-da3001TU
     - btrfs: add missing mutex_unlock in btrfs_relocate_sys_chunks()
     - mm/slab: make __free(kfree) accept error pointers
     - mptcp: ensure snd_nxt is properly initialized on connect
     - dt-bindings: iio: health: maxim,max30102: fix compatible check
     - iio:imu: adis16475: Fix sync mode setting
     - iio: accel: mxc4005: Interrupt handling fixes
     - [armhf] ASoC: ti: davinci-mcasp: Fix race condition during probe
     - dyndbg: fix old BUG_ON in >control parser
     - slimbus: qcom-ngd-ctrl: Add timeout for wait operation
     - mei: me: add lunar lake point M DID
     - drm/vmwgfx: Fix invalid reads in fence signaled events
     - [x86] drm/i915/bios: Fix parsing backlight BDB data
     - drm/amd/display: Handle Y carry-over in VCP X.Y calculation
     - net: fix out-of-bounds access in ops_init
     - hwmon: (pmbus/ucd9000) Increase delay from 250 to 500us
     - mm: use memalloc_nofs_save() in page_cache_ra_order()
     - regulator: core: fix debugfs creation regression
     - spi: microchip-core-qspi: fix setting spi bus clock rate
     - ksmbd: off ipv6only for both ipv4/ipv6 binding
     - ksmbd: avoid to send duplicate lease break notifications
     - ksmbd: do not grant v2 lease if parent lease key and epoch are not set
     - Bluetooth: qca: add missing firmware sanity checks
     - Bluetooth: qca: fix NVM configuration parsing
     - Bluetooth: qca: fix info leak when fetching board id
     - Bluetooth: qca: fix info leak when fetching fw build id
     - Bluetooth: qca: fix firmware check error path
     - VFIO: Add the SPR_DSA and SPR_IAX devices to the denylist (CVE-2024-21823)
     - dmaengine: idxd: add a new security check to deal with a hardware erratum
       (CVE-2024-21823)
     - dmaengine: idxd: add a write() method for applications to submit work
       (CVE-2024-21823)
     - keys: Fix overwrite of key expiration on instantiation
     - btrfs: do not wait for short bulk allocation
     - mm/hugetlb: fix DEBUG_LOCKS_WARN_ON(1) when dissolve_free_hugetlb_folio()
     - mm,swapops: update check in is_pfn_swap_entry for hwpoison entries
     - md: fix kmemleak of rdev->serial (CVE-2024-26900)
     - net: bcmgenet: Clear RGMII_LINK upon link down
     - net: bcmgenet: synchronize EXT_RGMII_OOB_CTRL access
     - net: bcmgenet: synchronize use of bcmgenet_set_rx_mode()
     - net: bcmgenet: synchronize UMAC_CMD access
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.92
     - drm/amd/display: Fix division by zero in setup_dsc_config
     - net: ks8851: Fix another TX stall caused by wrong ISR flag handling
     - ice: pass VSI pointer into ice_vc_isvalid_q_id
     - ice: remove unnecessary duplicate checks for VF VSI ID
     - pinctrl: core: handle radix_tree_insert() errors in
       pinctrl_register_one_pin()
     - mfd: stpmic1: Fix swapped mask/unmask in irq chip
     - nfsd: don't allow nfsd threads to be signalled.
     - KEYS: trusted: Fix memory leak in tpm2_key_encode()
     - mmc: core: Add HS400 tuning in HS400es initialization
     - xfs: write page faults in iomap are not buffered writes
     - xfs: punching delalloc extents on write failure is racy
     - xfs: use byte ranges for write cleanup ranges
     - xfs,iomap: move delalloc punching to iomap
     - iomap: buffered write failure should not truncate the page cache
     - xfs: xfs_bmap_punch_delalloc_range() should take a byte range
     - iomap: write iomap validity checks
     - xfs: use iomap_valid method to detect stale cached iomaps
     - xfs: drop write error injection is unfixable, remove it
     - xfs: fix off-by-one-block in xfs_discard_folio()
     - xfs: fix incorrect error-out in xfs_remove
     - xfs: fix sb write verify for lazysbcount
     - xfs: fix incorrect i_nlink caused by inode racing
     - xfs: invalidate block device page cache during unmount
     - xfs: attach dquots to inode before reading data/cow fork mappings
     - xfs: wait iclog complete before tearing down AIL
     - xfs: fix super block buf log item UAF during force shutdown
     - xfs: hoist refcount record merge predicates
     - xfs: estimate post-merge refcounts correctly
     - xfs: invalidate xfs_bufs when allocating cow extents
     - xfs: allow inode inactivation during a ro mount log recovery
     - xfs: fix log recovery when unknown rocompat bits are set
     - xfs: get root inode correctly at bulkstat
     - xfs: short circuit xfs_growfs_data_private() if delta is zero
     - [arm64] atomics: lse: remove stale dependency on JUMP_LABEL
     - drm/amdgpu: Fix possible NULL dereference in
       amdgpu_ras_query_error_status_helper() (CVE-2023-52585)
     - [arm*] binder: fix max_thread type inconsistency
     - [arm64,armhf] usb: dwc3: Wait unconditionally after issuing EndXfer
       command
     - net: usb: ax88179_178a: fix link status when link is set to down/up
     - usb: typec: ucsi: displayport: Fix potential deadlock
     - usb: typec: tipd: fix event checking for tps6598x
     - serial: kgdboc: Fix NMI-safety problems from keyboard reset code
     - KEYS: trusted: Do not use WARN when encode fails
     - admin-guide/hw-vuln/core-scheduling: fix return type of PR_SCHED_CORE_GET
     - docs: kernel_include.py: Cope with docutils 0.21
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.93
     - SUNRPC: Fix loop termination condition in gss_free_in_token_pages()
     - [x86] tsc: Trust initial offset in architectural TSC-adjust MSRs
     - ftrace: Fix possible use-after-free issue in ftrace_location()
     - tty: n_gsm: fix possible out-of-bounds in gsm0_receive() (CVE-2024-36016)
     - tty: n_gsm: fix missing receive state reset after mode switch
     - speakup: Fix sizeof() vs ARRAY_SIZE() bug
     - serial: 8250_bcm7271: use default_mux_rate if possible
     - serial: 8520_mtk: Set RTS on shutdown for Rx in-band wakeup
     - io_uring: fail NOP if non-zero op flags is passed in
     - Revert "r8169: don't try to disable interrupts if NAPI is, scheduled
       already"
     - r8169: Fix possible ring buffer corruption on fragmented Tx packets.
     - ring-buffer: Fix a race between readers and resize checks
     - net: smc91x: Fix m68k kernel compilation for ColdFire CPU
     - nilfs2: fix unexpected freezing of nilfs_segctor_sync()
     - nilfs2: fix potential hang in nilfs_detach_log_writer()
     - ksmbd: avoid to send duplicate oplock break notifications
     - ksmbd: ignore trailing slashes in share paths
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for ProBook 440/460
       G11.
     - ALSA: core: Fix NULL module pointer assignment at card init
     - ALSA: Fix deadlocks with kctl removals at disconnection
     - KEYS: asymmetric: Add missing dependencies of FIPS_SIGNATURE_SELFTEST
     - wifi: mac80211: don't use rate mask for scanning
     - wifi: mac80211: ensure beacon is non-S1G prior to extracting the beacon
       timestamp field
     - wifi: cfg80211: fix the order of arguments for trace events of the
       tx_rx_evt class
     - dt-bindings: rockchip: grf: Add missing type to 'pcie-phy' node
     - net: usb: qmi_wwan: add Telit FN920C04 compositions
     - drm/amd/display: Set color_mgmt_changed to true on unsuspend
     - drm/amdgpu: Update BO eviction priorities
     - drm/amdgpu: Fix the ring buffer size for queue VM flush
     - drm/amdgpu/mes: fix use-after-free issue
     - sched/isolation: Fix boot crash when maxcpus < first housekeeping CPU
     - [x86] ASoC: Intel: bytcr_rt5640: Apply Asus T100TA quirk to Asus T100TAM
       too
     - regulator: irq_helpers: duplicate IRQ name
     - ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating
     - ASoC: dt-bindings: rt5645: add cbj sleeve gpio property
     - regulator: vqmmc-ipq4019: fix module autoloading
     - ASoC: rt715: add vendor clear control register
     - ASoC: rt715-sdca: volume step modification
     - [x86] efistub: Omit physical KASLR when memory reservations exist
     - efi: libstub: only free priv.runtime_map when allocated
     - [x86] KVM: x86: Don't advertise guest.MAXPHYADDR as host.MAXPHYADDR in
       CPUID
     - genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline
     - fpga: dfl-pci: add PCI subdevice ID for Intel D5005 card
     - softirq: Fix suspicious RCU usage in __do_softirq()
     - ASoC: da7219-aad: fix usage of device_get_named_child_node()
     - ALSA: hda: intel-dsp-config: harden I2C/I2S codec detection
     - drm/amd/display: Add dtbclk access to dcn315
     - drm/amd/display: Add VCO speed parameter for DCN31 FPU
     - drm/amdkfd: Flush the process wq before creating a kfd_process
     - [x86] mm: Remove broken vsyscall emulation code from the page fault code
     - nvme: find numa distance only if controller has valid numa id
     - nvmet-auth: return the error code to the nvmet_auth_host_hash() callers
     - nvmet-auth: replace pr_debug() with pr_err() to report an error.
     - nvmet-tcp: fix possible memory leak when tearing down a controller
     - nvmet: fix nvme status code when namespace is disabled
     - epoll: be better about file lifetimes
     - nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists()
     - openpromfs: finish conversion to the new mount API
     - crypto: bcm - Fix pointer arithmetic
     - mm/slub, kunit: Use inverted data to corrupt kmem cache
     - firmware: raspberrypi: Use correct device for DMA mappings
     - ecryptfs: Fix buffer size for tag 66 packet
     - nilfs2: fix out-of-range warning
     - [x86] crypto: ccp - drop platform ifdef checks
     - [amd64] crypto: x86/nh-avx2 - add missing vzeroupper
     - [amd64] crypto: x86/sha256-avx2 - add missing vzeroupper
     - [amd64] crypto: x86/sha512-avx2 - add missing vzeroupper
     - [s390x] cio: fix tracepoint subchannel type field
     - io_uring: don't use TIF_NOTIFY_SIGNAL to test for availability of
       task_work
     - io_uring: use the right type for work_llist empty check
     - rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow
     - rcu: Fix buffer overflow in print_cpu_stall_info()
     - jffs2: prevent xattr node from overflowing the eraseblock
     - soc: mediatek: cmdq: Fix typo of CMDQ_JUMP_RELATIVE
     - null_blk: Fix missing mutex_destroy() at module removal
     - md: fix resync softlockup when bitmap size is less than array size
     - block: open code __blk_account_io_start()
     - block: open code __blk_account_io_done()
     - block: support to account io_ticks precisely
     - wifi: ath10k: poll service ready message before failing
     - wifi: brcmfmac: pcie: handle randbuf allocation failure
     - wifi: ath11k: don't force enable power save on non-running vdevs
     - bpftool: Fix missing pids during link show
     - [x86] boot: Ignore relocations in .notes sections in walk_relocs() too
     - sched/fair: Add EAS checks before updating root_domain::overutilized
     - ACPI: Fix Generic Initiator Affinity _OSC bit
     - qed: avoid truncating work queue length
     - net/mlx5e: Fail with messages when params are not valid for XSK
     - mlx5: stop warning for 64KB pages
     - bitops: add missing prototype check
     - wifi: carl9170: re-fix fortified-memset warning
     - bpf: Pack struct bpf_fib_lookup
     - scsi: ufs: qcom: Perform read back after writing reset bit
     - scsi: ufs: qcom: Perform read back after writing REG_UFS_SYS1CLK_1US
     - scsi: ufs: ufs-qcom: Fix the Qcom register name for offset 0xD0
     - scsi: ufs: ufs-qcom: Clear qunipro_g4_sel for HW version major 5
     - scsi: ufs: qcom: Perform read back after writing unipro mode
     - scsi: ufs: qcom: Perform read back after writing CGC enable
     - scsi: ufs: cdns-pltfrm: Perform read back after writing HCLKDIV
     - scsi: ufs: core: Perform read back after disabling interrupts
     - scsi: ufs: core: Perform read back after disabling UIC_COMMAND_COMPL
     - ACPI: LPSS: Advertise number of chip selects via property
     - irqchip/alpine-msi: Fix off-by-one in allocation error path
     - irqchip/loongson-pch-msi: Fix off-by-one on allocation error path
     - ACPI: disable -Wstringop-truncation
     - gfs2: Don't forget to complete delayed withdraw
     - gfs2: Fix "ignore unlock failures after withdraw"
     - [x86] boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57
     - cpufreq: exit() callback is optional
     - [x86] pat: Introduce lookup_address_in_pgd_attr()
     - [x86] pat: Restructure _lookup_address_cpa()
     - [x86] pat: Fix W^X violation false-positives when running as Xen PV guest
     - net: export inet_lookup_reuseport and inet6_lookup_reuseport
     - net: remove duplicate reuseport_lookup functions
     - udp: Avoid call to compute_score on multiple sites
     - cppc_cpufreq: Fix possible null pointer dereference
     - scsi: libsas: Fix the failure of adding phy with zero-address to port
     - scsi: hpsa: Fix allocation size for Scsi_Host private data
     - [x86] purgatory: Switch to the position-independent small code model
     - thermal/drivers/tsens: Fix null pointer dereference
     - wifi: ath10k: Fix an error code problem in
       ath10k_dbg_sta_write_peer_debug_trigger()
     - wifi: ath10k: populate board data for WCN3990
     - net: dsa: mv88e6xxx: Add support for model-specific pre- and post-reset
       handlers
     - net: dsa: mv88e6xxx: Avoid EEPROM timeout without EEPROM on 88E6250-family
       switches
     - tcp: avoid premature drops in tcp_add_backlog()
     - pwm: sti: Convert to platform remove callback returning void
     - pwm: sti: Prepare removing pwm_chip from driver data
     - pwm: sti: Simplify probe function using devm functions
     - drivers/perf: hisi_pcie: Fix out-of-bound access when valid event group
     - drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group
     - drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset()
     - net: give more chances to rcu in netdev_wait_allrefs_any()
     - wifi: carl9170: add a proper sanity check for endpoints
     - wifi: ar5523: enable proper endpoint verification
     - wifi: mt76: mt7603: add wpdma tx eof flag for PSE client reset
     - libbpf: Fix error message in attach_kprobe_multi
     - HID: intel-ish-hid: ipc: Add check for pci_alloc_irq_vectors
     - scsi: bfa: Ensure the copied buf is NUL terminated
     - scsi: qedf: Ensure the copied buf is NUL terminated
     - scsi: qla2xxx: Fix debugfs output for fw_resource_count
     - kernel/numa.c: Move logging out of numa.h
     - [x86] numa: Fix SRAT lookup of CFMWS ranges with numa_fill_memblks()
     - wifi: mwl8k: initialize cmd->addr[] properly
     - HID: amd_sfh: Handle "no sensors" in PM operations
     - usb: aqc111: stop lying about skb->truesize
     - net: usb: sr9700: stop lying about skb->truesize
     - net: ipv6: fix wrong start position when receive hop-by-hop fragment
     - eth: sungem: remove .ndo_poll_controller to avoid deadlocks
     - net: ethernet: cortina: Locking fixes
     - af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg
     - net: usb: smsc95xx: stop lying about skb->truesize
     - net: openvswitch: fix overwriting ct original tuple for ICMPv6
     - ipv6: sr: add missing seg6_local_exit
     - ipv6: sr: fix incorrect unregister order
     - ipv6: sr: fix invalid unregister error path
     - net/mlx5: Add a timeout to acquire the command queue semaphore
     - net/mlx5: Discard command completions in internal error
     - [s390x] bpf: Emit a barrier for BPF_FETCH instructions
     - riscv, bpf: make some atomic operations fully ordered
     - ax25: Use kernel universal linked list to implement ax25_dev_list
     - ax25: Fix reference count leak issues of ax25_dev
     - ax25: Fix reference count leak issue of net_device
     - mptcp: SO_KEEPALIVE: fix getsockopt support
     - Bluetooth: Consolidate code around sk_alloc into a helper function
     - Bluetooth: compute LE flow credits based on recvbuf space
     - Bluetooth: qca: Fix error code in qca_read_fw_build_info()
     - drm/bridge: Fix improper bridge init order with pre_enable_prev_first
     - printk: Let no_printk() use _printk()
     - dev_printk: Add and use dev_no_printk()
     - drm/lcdif: Do not disable clocks on already suspended hardware
     - drm/panel-samsung-atna33xc20: Use ktime_get_boottime for delays
     - drm/dp: Don't attempt AUX transfers when eDP panels are not powered
     - drm/panel: atna33xc20: Fix unbalanced regulator in the case HPD doesn't
       assert
     - drm/amd/display: Fix potential index out of bounds in color transformation
       function
     - [x86] ASoC: Intel: Disable route checks for Skylake boards
     - [x86] ASoC: Intel: avs: ssm4567: Do not ignore route checks
     - mtd: core: Report error if first mtd_otp_size() call fails in
       mtd_otp_nvmem_add()
     - mtd: rawnand: hynix: fixed typo
     - fbdev: shmobile: fix snprintf truncation
     - [armel,armhf] ASoC: kirkwood: Fix potential NULL dereference
     - drm/meson: vclk: fix calculation of 59.94 fractional rates
     - drm/mediatek: Add 0 size check to mtk_drm_gem_obj
     - [powerpc*] fsl-soc: hide unused const variable
     - fbdev: sisfb: hide unused variables
     - [x86] ASoC: Intel: avs: Fix ASRC module initialization
     - [x86] ASoC: Intel: avs: Fix potential integer overflow
     - media: ngene: Add dvb_ca_en50221_init return value check
     - media: rcar-vin: work around -Wenum-compare-conditional warning
     - media: radio-shark2: Avoid led_names truncations
     - drm: bridge: cdns-mhdp8546: Fix possible null pointer dereference
     - [arm64] drm/msm/dp: allow voltage swing / pre emphasis of 3
     - [arm64] drm/msm/dp: Return IRQ_NONE for unhandled interrupts
     - [arm64] drm/msm/dp: Avoid a long timeout for AUX transfer if nothing
       connected
     - media: ipu3-cio2: Request IRQ earlier
     - media: dt-bindings: ovti,ov2680: Fix the power supply names
     - fbdev: sh7760fb: allow modular build
     - media: atomisp: ssh_css: Fix a null-pointer dereference in
       load_video_binaries
     - [arm64] drm/arm/malidp: fix a possible null pointer dereference
       (CVE-2024-36014)
     - drm: vc4: Fix possible null pointer dereference
     - ASoC: tracing: Export SND_SOC_DAPM_DIR_OUT to its value
     - drm/bridge: anx7625: Don't log an error when DSI host can't be found
     - drm/bridge: icn6211: Don't log an error when DSI host can't be found
     - drm/bridge: lt8912b: Don't log an error when DSI host can't be found
     - drm/bridge: lt9611: Don't log an error when DSI host can't be found
     - drm/bridge: lt9611uxc: Don't log an error when DSI host can't be found
     - drm/bridge: tc358775: Don't log an error when DSI host can't be found
     - drm/bridge: dpc3433: Don't log an error when DSI host can't be found
     - drm/panel: novatek-nt35950: Don't log an error when DSI host can't be
       found
     - drm/panel: simple: Add missing Innolux G121X1-L03 format, flags, connector
     - drm/mipi-dsi: use correct return type for the DSC functions
     - drm/rockchip: vop2: Do not divide height twice for YUV
     - clk: samsung: exynosautov9: fix wrong pll clock id value
     - RDMA/mlx5: Adding remote atomic access flag to updatable flags
     - [arm64] RDMA/hns: Fix return value in hns_roce_map_mr_sg
     - [arm64] RDMA/hns: Fix deadlock on SRQ async events.
     - [arm64] RDMA/hns: Fix UAF for cq async event
     - [arm64] RDMA/hns: Fix GMV table pagesize
     - [arm64] RDMA/hns: Use complete parentheses in macros
     - [arm64] RDMA/hns: Modify the print level of CQE error
     - clk: mediatek: mt8365-mm: fix DPI0 parent
     - clk: rs9: fix wrong default value for clock amplitude
     - RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt
     - RDMA/rxe: Replace pr_xxx by rxe_dbg_xxx in rxe_net.c
     - RDMA/rxe: Fix incorrect rxe_put in error path
     - IB/mlx5: Use __iowrite64_copy() for write combining stores
     - clk: renesas: r8a779a0: Fix CANFD parent clock
     - clk: renesas: r9a07g043: Add clock and reset entry for PLIC
     - lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure
     - clk: qcom: dispcc-sm8450: fix DisplayPort clocks
     - clk: qcom: dispcc-sm6350: fix DisplayPort clocks
     - clk: qcom: mmcc-msm8998: fix venus clock issue
     - [x86] insn: Fix PUSH instruction in x86 instruction decoder opcode map
     - [x86] insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and
       VPDPWSSDS
     - ext4: avoid excessive credit estimate in ext4_tmpfile()
     - virt: acrn: stop using follow_pfn
     - drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map()
     - sunrpc: removed redundant procp check
     - ext4: simplify calculation of blkoff in ext4_mb_new_blocks_simple
     - ext4: fix unit mismatch in ext4_mb_new_blocks_simple
     - ext4: try all groups in ext4_mb_new_blocks_simple
     - ext4: remove unused parameter from ext4_mb_new_blocks_simple()
     - ext4: fix potential unnitialized variable
     - SUNRPC: Fix gss_free_in_token_pages()
     - RDMA/IPoIB: Fix format truncation compilation errors
     - net: add pskb_may_pull_reason() helper
     - net: bridge: xmit: make sure we have at least eth header len bytes
     - net: bridge: mst: fix vlan use-after-free
     - net: qrtr: ns: Fix module refcnt
     - netrom: fix possible dead-lock in nr_rt_ioctl()
     - af_packet: do not call packet_read_pending() from tpacket_destruct_skb()
     - sched/fair: Allow disabling sched_balance_newidle with
       sched_relax_domain_level
     - sched/core: Fix incorrect initialization of the 'burst' parameter in
       cpu_max_write()
     - scsi: ufs: ufs-qcom: Clear qunipro_g4_sel for HW major version > 5
     - perf record: Delete session after stopping sideband thread
     - perf probe: Add missing libgen.h header needed for using basename()
     - iio: core: Leave private pointer NULL when no private data supplied
     - greybus: lights: check return of get_channel_from_mode
     - f2fs: multidev: fix to recognize valid zero block address
     - f2fs: fix to wait on page writeback in __clone_blkaddrs()
     - counter: linux/counter.h: fix Excess kernel-doc description warning
     - perf annotate: Get rid of duplicate --group option item
     - soundwire: cadence: fix invalid PDI offset
     - dmaengine: idma64: Add check for dma_set_max_seg_size
     - firmware: dmi-id: add a release callback function
     - serial: max3100: Lock port->lock when calling uart_handle_cts_change()
     - serial: max3100: Update uart_driver_registered on driver removal
     - serial: max3100: Fix bitwise types
     - greybus: arche-ctrl: move device table to its right location
     - PCI: tegra194: Fix probe path for Endpoint mode
     - serial: sc16is7xx: add proper sched.h include for sched_set_fifo()
     - interconnect: qcom: qcm2290: Fix mas_snoc_bimc QoS port assignment
     - [arm64] dts: meson: fix S4 power-controller node
     - perf tests: Make "test data symbol" more robust on Neoverse N1
     - dt-bindings: PCI: rcar-pci-host: Add optional regulators
     - dt-bindings: PCI: rcar-pci-host: Add missing IOMMU properties
     - f2fs: compress: fix to relocate check condition in
       f2fs_{release,reserve}_compress_blocks()
     - f2fs: compress: fix to relocate check condition in
       f2fs_ioc_{,de}compress_file()
     - f2fs: fix typos in comments
     - f2fs: fix to relocate check condition in f2fs_fallocate()
     - f2fs: fix to check pinfile flag in f2fs_move_file_range()
     - iio: adc: stm32: Fixing err code to not indicate success
     - coresight: etm4x: Fix unbalanced pm_runtime_enable()
     - perf docs: Document bpf event modifier
     - iio: pressure: dps310: support negative temperature values
     - coresight: etm4x: Do not hardcode IOMEM access for register restore
     - coresight: etm4x: Do not save/restore Data trace control registers
     - coresight: etm4x: Safe access for TRCQCLTR
     - coresight: etm4x: Fix access to resource selector registers
     - fpga: region: add owner module and take its refcount
     - microblaze: Remove gcc flag for non existing early_printk.c file
     - microblaze: Remove early printk call from cpuinfo-static.c
     - perf intel-pt: Fix unassigned instruction op (discovered by
       MemorySanitizer)
     - ovl: remove upper umask handling from ovl_create_upper()
     - VMCI: Fix an error handling path in vmci_guest_probe_device()
     - dt-bindings: pinctrl: mediatek: mt7622: fix array properties
     - watchdog: bd9576: Drop "always-running" property
     - watchdog: sa1100: Fix PTR_ERR_OR_ZERO() vs NULL check in sa1100dog_probe()
     - usb: gadget: u_audio: Fix race condition use of controls after free during
       gadget unbind.
     - usb: gadget: u_audio: Clear uac pointer when freed.
     - stm class: Fix a double free in stm_register_device()
     - ppdev: Remove usage of the deprecated ida_simple_xx() API
     - ppdev: Add an error check in register_device (CVE-2024-36015)
     - perf bench internals inject-build-id: Fix trap divide when collecting just
       one DSO
     - perf ui browser: Don't save pointer to stack memory
     - extcon: max8997: select IRQ_DOMAIN instead of depending on it
     - PCI/EDR: Align EDR_PORT_DPC_ENABLE_DSM with PCI Firmware r3.3
     - PCI/EDR: Align EDR_PORT_LOCATE_DSM with PCI Firmware r3.3
     - perf ui browser: Avoid SEGV on title
     - perf report: Avoid SEGV in report__setup_sample_type()
     - f2fs: compress: fix to update i_compr_blocks correctly
     - f2fs: compress: fix to cover {reserve,release}_compress_blocks() w/
       cp_rwsem lock
     - f2fs: fix to release node block count in error path of
       f2fs_new_node_page()
     - f2fs: compress: don't allow unaligned truncation on released compress
       inode
     - serial: sh-sci: protect invalidating RXDMA on shutdown
     - libsubcmd: Fix parse-options memory leak
     - perf daemon: Fix file leak in daemon_session__control
     - f2fs: fix to add missing iput() in gc_data_segment()
     - perf stat: Don't display metric header for non-leader uncore events
     - [s390x] vdso: filter out mno-pic-data-is-text-relative cflag
     - [s390x] vdso64: filter out munaligned-symbols flag for vdso
     - [s390x] vdso: Generate unwind information for C modules
     - [s390x] vdso: Use standard stack frame layout
     - [s390x] ipl: Fix incorrect initialization of len fields in nvme reipl
       block
     - [s390x] ipl: Fix incorrect initialization of nvme dump block
     - [s390x] boot: Remove alt_stfle_fac_list from decompressor
     - Input: ims-pcu - fix printf string overflow
     - Input: ioc3kbd - convert to platform remove callback returning void
     - Input: ioc3kbd - add device table
     - mmc: sdhci_am654: Add tuning algorithm for delay chain
     - mmc: sdhci_am654: Write ITAPDLY for DDR52 timing
     - mmc: sdhci_am654: Drop lookup for deprecated ti,otap-del-sel
     - mmc: sdhci_am654: Add OTAP/ITAP delay enable
     - mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock
     - mmc: sdhci_am654: Fix ITAPDLY for HS400 timing
     - Input: pm8xxx-vibrator - correct VIB_MAX_LEVELS calculation
     - [arm64] drm/msm/dsi: Print dual-DSI-adjusted pclk instead of original mode
       pclk
     - [arm64] drm/msm/dpu: Always flush the slave INTF on the CTL
     - drm/bridge: tc358775: fix support for jeida-18 and jeida-24
     - media: stk1160: fix bounds checking in stk1160_copy_video()
     - scsi: qla2xxx: Replace all non-returning strlcpy() with strscpy()
     - Input: cyapa - add missing input core locking to suspend/resume functions
     - media: flexcop-usb: fix sanity check of bNumEndpoints
     - [powerpc*] pseries: Add failure related checks for h_get_mpp and h_get_ppp
     - media: sunxi: a83-mips-csi2: also select GENERIC_PHY
     - media: cec: cec-adap: always cancel work in cec_transmit_msg_fh
     - media: cec: cec-api: add locking in cec_release()
     - media: cec: core: avoid recursive cec_claim_log_addrs
     - media: cec: core: avoid confusing "transmit timed out" message
     - Revert "drm/bridge: ti-sn65dsi83: Fix enable error path"
     - [arm64] drm/msm: Enable clamp_to_idle for 7c3
     - [arm64] drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting
       fails
     - null_blk: Fix the WARNING: modpost: missing MODULE_DESCRIPTION()
     - ALSA: hda/cs_dsp_ctl: Use private_free for control cleanup
     - ASoC: mediatek: mt8192: fix register configuration for tdm
     - regulator: bd71828: Don't overwrite runtime voltages
     - perf/arm-dmc620: Fix lockdep assert in ->event_init()
     - [x86] kconfig: Select ARCH_WANT_FRAME_POINTERS again when
       UNWINDER_FRAME_POINTER=y
     - net: Always descend into dsa/ folder with CONFIG_NET_DSA enabled
     - ipv6: sr: fix missing sk_buff release in seg6_input_core
     - nfc: nci: Fix uninit-value in nci_rx_work
     - ASoC: tas2552: Add TX path for capturing AUDIO-OUT data
     - NFSv4: Fixup smatch warning for ambiguous return
     - nfs: keep server info for remounts
     - sunrpc: fix NFSACL RPC retry on soft mount
     - rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL
     - af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock.
       (CVE-2024-36972)
     - ipv6: sr: fix memleak in seg6_hmac_init_algo
     - tcp: Fix shift-out-of-bounds in dctcp_update_alpha().
     - pNFS/filelayout: fixup pNfs allocation modes
     - openvswitch: Set the skbuff pkt_type for proper pmtud support.
     - [arm64] asm-bug: Add .align 2 to the end of __BUG_ENTRY
     - rv: Update rv_en(dis)able_monitor doc to match kernel-doc
     - virtio: delete vq in vp_find_vqs_msix() when request_irq() fails
     - Revert "ixgbe: Manual AN-37 for troublesome link partners for X550 SFI"
     - net: fec: avoid lock evasion when reading pps_enable
     - tls: fix missing memory barrier in tls_init
     - inet: factor out locked section of inet_accept() in a new helper
     - net: relax socket state check at accept time.
     - nfc: nci: Fix kcov check in nci_rx_work()
     - nfc: nci: Fix handling of zero-length payload packets in nci_rx_work()
     - drivers/xen: Improve the late XenStore init protocol
     - ice: Interpret .set_channels() input differently
     - netfilter: nfnetlink_queue: acquire rcu_read_lock() in
       instance_destroy_rcu()
     - netfilter: nft_payload: restore vlan q-in-q match support
     - spi: Don't mark message DMA mapped when no transfer in it is
     - dma-mapping: benchmark: fix node id validation
     - dma-mapping: benchmark: handle NUMA_NO_NODE correctly
     - nvmet: fix ns enable/disable possible hang
     - net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ8061
     - net/mlx5: Lag, do bond only if slaves agree on roce state
     - net/mlx5e: Fix IPsec tunnel mode offload feature check
     - net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer
       exhaustion
     - net/mlx5e: Fix UDP GSO for encapsulated packets
     - dma-buf/sw-sync: don't enable IRQ from sync_print_obj()
     - bpf: Fix potential integer overflow in resolve_btfids
     - ALSA: jack: Use guard() for locking
     - ALSA: core: Remove debugfs at disconnection
     - ALSA: hda/realtek: Add quirk for ASUS ROG G634Z
     - ALSA: hda/realtek: Amend G634 quirk to enable rear speakers
     - ALSA: hda/realtek: Adjust G814JZR to use SPI init for amp
     - enic: Validate length of nl attributes in enic_set_vf_port
     - af_unix: Read sk->sk_hash under bindlock during bind().
     - net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM
     - bpf: Allow delete from sockmap/sockhash only if update is allowed
     - net:fec: Add fec_enet_deinit()
     - ice: fix accounting if a VLAN already exists
     - netfilter: nft_payload: move struct nft_payload_set definition where it
       belongs
     - netfilter: nft_payload: rebuild vlan header when needed
     - netfilter: nft_payload: rebuild vlan header on h_proto access
     - netfilter: nft_payload: skbuff vlan metadata mangle support
     - netfilter: tproxy: bail out if IP has been disabled on the device
     - netfilter: nft_fib: allow from forward/input without iif selector
     - kconfig: fix comparison to constant symbols, 'm', 'n'
     - [x86] drm/i915/guc: avoid FIELD_PREP warning
     - spi: stm32: Don't warn about spurious interrupts
     - net: dsa: microchip: fix RGMII error in KSZ DSA driver
     - net: ena: Add dynamic recycling mechanism for rx buffers
     - net: ena: Reduce lines with longer column width boundary
     - net: ena: Fix redundant device NUMA node override
     - ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound
     - [powerpc*] pseries/lparcfg: drop error message from guest name lookup
     - hwmon: (shtc1) Fix property misspelling
     - ALSA: timer: Set lower bound of start tick time
     - net: ena: Fix DMA syncing in XDP path when SWIOTLB is on
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.94
     - drm: Check output polling initialized before disabling (CVE-2024-35927)
     - drm: Check polling initialized before enabling in
       drm_helper_probe_single_connector_modes
     - Bluetooth: btrtl: Add missing MODULE_FIRMWARE declarations
     - maple_tree: fix allocation in mas_sparse_area()
     - maple_tree: fix mas_empty_area_rev() null pointer dereference
       (CVE-2024-36891)
     - mmc: core: Do not force a retune before RPMB switch
     - afs: Don't cross .backup mountpoint from backup volume
     - nilfs2: fix use-after-free of timer for log writer thread (CVE-2024-38583)
     - [x86] drm/i915/audio: Fix audio time stamp programming for DP
     - mptcp: avoid some duplicate code in socket option handling
     - mptcp: cleanup SOL_TCP handling
     - mptcp: fix full TCP keep-alive support
     - vxlan: Fix regression when dropping packets due to invalid src addresses
     - scripts/gdb: fix SB_* constants parsing
     - f2fs: fix to do sanity check on i_xattr_nid in sanity_check_inode()
     - media: lgdt3306a: Add a check against null-pointer-def
     - drm/amdgpu: add error handle to avoid out-of-bounds
     - bcache: fix variable length array abuse in btree_iter
     - wifi: rtw89: correct aSIFSTime for 6GHz band
     - ata: pata_legacy: make legacy_exit() work again
     - thermal/drivers/qcom/lmh: Check for SCM availability at probe
     - [arm64] soc: qcom: rpmh-rsc: Enhance check for VRM in-flight request
     - ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx
     - [arm64] tegra: Correct Tegra132 I2C alias
     - [arm64] dts: qcom: qcs404: fix bluetooth device address
     - md/raid5: fix deadlock that raid5d() wait for itself to clear
       MD_SB_CHANGE_PENDING
     - wifi: rtw89: pci: correct TX resource checking for PCI DMA channel of
       firmware command
     - wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU
     - wifi: rtlwifi: rtl8192de: Fix 5 GHz TX power
     - wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE
     - wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path
     - [arm64] dts: hi3798cv200: fix the size of GICR
     - media: mc: Fix graph walk in media_pipeline_start
     - media: mc: mark the media devnode as registered from the, start
     - media: mxl5xx: Move xpt structures off stack
     - media: v4l2-core: hold videodev_lock until dev reg, finishes
     - mmc: core: Add mmc_gpiod_set_cd_config() function
     - mmc: sdhci: Add support for "Tuning Error" interrupts
     - mmc: sdhci-acpi: Sort DMI quirks alphabetically
     - mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working
     - mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A
     - mmc: sdhci-acpi: Add quirk to enable pull-up on the card-detect GPIO on
       Asus T100TA
     - fbdev: savage: Handle err return when savagefb_check_var failed
     - drm/amdgpu/atomfirmware: add intergrated info v2.3 table
     - 9p: add missing locking around taking dentry fid list
     - drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms
     - [arm64] KVM: arm64: Fix AArch32 register narrowing on userspace write
     - [arm64] KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode
     - [arm64] KVM: arm64: AArch32: Fix spurious trapping of conditional
       instructions
     - crypto: ecdsa - Fix module auto-load on add-key
     - crypto: ecrdsa - Fix module auto-load on add_key
     - [x86] crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak
     - mm: fix race between __split_huge_pmd_locked() and GUP-fast
     - scsi: core: Handle devices which return an unusually large VPD page count
     - net/ipv6: Fix route deleting failure when metric equals 0
     - net/9p: fix uninit-value in p9_client_rpc()
     - kmsan: do not wipe out origin when doing partial unpoisoning
     - cpufreq: amd-pstate: Fix the inconsistency in max frequency units
     - [x86] intel_th: pci: Add Meteor Lake-S CPU support
     - mm/cma: drop incorrect alignment check in cma_init_reserved_mem
     - mm/hugetlb: pass correct order_per_bit to cma_declare_contiguous_nid
     - watchdog: rti_wdt: Set min_hw_heartbeat_ms to accommodate a safety margin
     - kdb: Fix buffer overflow during tab-complete
     - kdb: Use format-strings rather than '\0' injection in kdb_read()
     - kdb: Fix console handling when editing and tab-completing commands
     - kdb: Merge identical case statements in kdb_read()
     - kdb: Use format-specifiers rather than memset() for padding in kdb_read()
     - net: fix __dst_negative_advice() race (CVE-2024-36971)
     - ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow
     - ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()
     - [s390x] ap: Fix crash in AP internal function modify_bitmap()
     - [s390x] cpacf: Split and rework cpacf query functions
     - [s390x] cpacf: Make use of invalid opcode produce a link error
     - i3c: master: svc: fix invalidate IBI type and miss call client IBI handler
     - EDAC/igen6: Convert PCIBIOS_* return codes to errnos
     - nfs: fix undefined behavior in nfs_block_bits()
     - NFS: Fix READ_PLUS when server doesn't support OP_READ_PLUS
     - btrfs: fix crash on racing fsync and size-extending write into prealloc
     - [powerpc*] bpf: enforce full ordering for ATOMIC operations with BPF_FETCH
     - smb: client: fix deadlock in smb2_find_smb_tcon()
     - smp: Provide 'setup_max_cpus' definition on UP too
 .
   [ Uwe Kleine-König ]
   * [arm*] Enable symbols in Raspberry Pi device trees for simplified overlay
     application.
   * d/rules: Let blhc ignore perf tests binaries that are compiled without
     fortification
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 22
   * [rt] Update to 6.1.90-rt30
   * net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (CVE-2024-36974)
linux-signed-arm64 (6.1.90+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.90-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.86
     - amdkfd: use calloc instead of kzalloc to avoid integer overflow
       (CVE-2024-26817)
     - wifi: ath9k: fix LNA selection in ath_ant_try_scan()
     - bnx2x: Fix firmware version string character counts
     - wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor
     - [x86] VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host()
     - wifi: iwlwifi: pcie: Add the PCI device id for new hardware
     - panic: Flush kernel log buffer at the end
     - cpuidle: Avoid potential overflow in integer multiplication
     - [arm64] dts: rockchip: fix rk3328 hdmi ports node
     - [arm64] dts: rockchip: fix rk3399 hdmi ports node
     - ionic: set adminq irq affinity
     - net: skbuff: add overflow debug check to pull/push helpers
     - wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro
     - pstore/zone: Add a null pointer check to the psz_kmsg_read
     - net: pcs: xpcs: Return EINVAL in the internal methods
     - dma-direct: Leak pages on dma_set_decrypted() failure
     - wifi: ath11k: decrease MHI channel buffer length to 8KB
     - cpufreq: Don't unregister cpufreq cooling on CPU hotplug
     - btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks()
     - btrfs: export: handle invalid inode or root reference in
       btrfs_get_parent()
     - btrfs: send: handle path ref underflow in header iterate_inode_ref()
     - ice: use relative VSI index for VFs instead of PF VSI number
     - net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list()
     - Bluetooth: btintel: Fix null ptr deref in btintel_read_version
     - Bluetooth: btmtk: Add MODULE_FIRMWARE() for MT7922
     - [arm64,armhf] drm/vc4: don't check if plane->state->fb == state->fb
     - Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails
     - drm: panel-orientation-quirks: Add quirk for GPD Win Mini
     - pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs
     - sysv: don't call sb_bread() with pointers_lock held
     - scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc()
     - isofs: handle CDs with bad root inode but good Joliet root directory
     - ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710)
       laptops
     - rcu-tasks: Repair RCU Tasks Trace quiescence check
     - Julia Lawall reported this null pointer dereference, this should fix it.
     - media: sta2x11: fix irq handler cast
     - ALSA: firewire-lib: handle quirk to calculate payload quadlets as data
       block counter
     - ext4: add a hint for block bitmap corrupt state in mb_groups
     - ext4: forbid commit inconsistent quota data when errors=remount-ro
     - drm/amd/display: Fix nanosec stat overflow
     - drm/amd/amdgpu: Fix potential ioremap() memory leaks in
       amdgpu_device_init()
     - SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to
       unsigned int
     - Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default"
     - libperf evlist: Avoid out-of-bounds access
     - input/touchscreen: imagis: Correct the maximum touch area value
     - block: prevent division by zero in blk_rq_stat_sum()
     - RDMA/cm: add timeout to cm_destroy_id wait
     - Input: imagis - use FIELD_GET where applicable
     - Input: allocate keycode for Display refresh rate toggle
     - platform/x86: touchscreen_dmi: Add an extra entry for a variant of the
       Chuwi Vi8 tablet
     - [x86] perf/x86/amd/lbr: Discard erroneous branch entries
     - ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent
       environment
     - bus: mhi: host: Add MHI_PM_SYS_ERR_FAIL state
     - usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR
     - [x86] thunderbolt: Keep the domain powered when USB4 port is in redrive
       mode
     - usb: typec: tcpci: add generic tcpci fallback compatible
     - usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined
     - thermal/of: Assume polling-delay(-passive) 0 when absent
     - ASoC: soc-core.c: Skip dummy codec when adding platforms
     - fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2
     - io_uring: clear opcode specific data for an early failure
     - drivers/nvme: Add quirks for device 126f:2262
     - fbmon: prevent division by zero in fb_videomode_from_videomode()
     - netfilter: nf_tables: release batch on table validation from abort path
     - netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path
       (CVE-2024-26925)
     - netfilter: nf_tables: discard table flag update with pending basechain
       deletion
     - gcc-plugins/stackleak: Avoid .head.text section
     - virtio: reenable config if freezing device failed
     - randomize_kstack: Improve entropy diffusion
     - [x86] platform/x86: intel-vbtn: Update tablet mode switch at end of probe
     - Bluetooth: btintel: Fixe build regression
     - net: mpls: error out if inner headers are not set
     - [x86] VMCI: Fix possible memcpy() run-time warning in
       vmci_datagram_invoke_guest_handler()
     - Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in
       amdgpu_device_init()"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.87
     - smb3: fix Open files on server counter going negative
     - ata: libata-scsi: Fix ata_scsi_dev_rescan() error path
     - batman-adv: Avoid infinite loop trying to resize local TT
     - ring-buffer: Only update pages_touched when a new page is touched
     - Bluetooth: Fix memory leak in hci_req_sync_complete()
     - drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11
     - PM: s2idle: Make sure CPUs will wakeup directly on resume
     - media: cec: core: remove length check of Timer Status
     - Revert "drm/qxl: simplify qxl_fence_wait" (Closes: #1054514)
     - nouveau: fix function cast warning
     - scsi: hisi_sas: Modify the deadline for ata_wait_after_reset()
     - scsi: qla2xxx: Fix off by one in qla_edif_app_getstats()
     - net: openvswitch: fix unwanted error log on timeout policy probing
     - u64_stats: fix u64_stats_init() for lockdep when used repeatedly in one
       file
     - xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING
     - geneve: fix header validation in geneve[6]_xmit_skb
     - bnxt_en: Reset PTP tx_avail after possible firmware reset
     - af_unix: Clear stale u->oob_skb.
     - ipv6: fib: hide unused 'pn' variable
     - ipv4/route: avoid unused-but-set-variable warning
     - ipv6: fix race condition between ipv6_get_ifaddr and ipv6_del_addr
     - Bluetooth: SCO: Fix not validating setsockopt user input
     - Bluetooth: L2CAP: Fix not validating setsockopt user input
     - netfilter: complete validation of user input
     - net/mlx5: Properly link new fs rules into the tree
     - net/mlx5e: Fix mlx5e_priv_init() cleanup flow
     - net/mlx5e: HTB, Fix inconsistencies with QoS SQs number
     - af_unix: Do not use atomic ops for unix_sk(sk)->inflight.
     - af_unix: Fix garbage collector racing against connect() (CVE-2024-26923)
     - net: ena: Fix potential sign extension issue
     - net: ena: Wrong missing IO completions check order
     - net: ena: Fix incorrect descriptor free behavior
     - tracing: hide unused ftrace_event_id_fops
     - [amd64] iommu/vt-d: Allocate local memory for page request queue
     - btrfs: qgroup: correctly model root qgroup rsv in convert
     - btrfs: record delayed inode root in transaction
     - btrfs: qgroup: convert PREALLOC to PERTRANS after record_root_in_trans
     - io_uring/net: restore msg_control on sendzc retry
     - kprobes: Fix possible use-after-free issue on kprobe registration
     - [x86] drm/i915/vrr: Disable VRR when using bigjoiner
     - drm/ast: Fix soft lockup
     - drm/client: Fully protect modes[] with dev->mode_config.mutex
     - vhost: Add smp_rmb() in vhost_vq_avail_empty()
     - vhost: Add smp_rmb() in vhost_enable_notify()
     - [x86] perf/x86: Fix out of range data
     - [x86] cpu: Actually turn off mitigations by default for
       SPECULATION_MITIGATIONS=n
     - [x86] apic: Force native_apic_mem_read() to use the MOV instruction
     - irqflags: Explicitly ignore lockdep_hrtimer_exit() argument
     - [x86] bugs: Fix return type of spectre_bhi_state()
     - [x86] bugs: Fix BHI documentation
     - [x86] bugs: Cache the value of MSR_IA32_ARCH_CAPABILITIES
     - [x86] bugs: Rename various 'ia32_cap' variables to 'x86_arch_cap_msr'
     - [x86] bugs: Fix BHI handling of RRSBA
     - [x86] bugs: Clarify that syscall hardening isn't a BHI mitigation
     - [x86] bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto
     - [x86] bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with
       CONFIG_MITIGATION_SPECTRE_BHI
     - [x86] drm/i915/cdclk: Fix CDCLK programming order when pipes are active
     - [x86] drm/i915: Disable port sync when bigjoiner is used
     - drm/amdgpu: Reset dGPU if suspend got aborted
     - drm/amdgpu: always force full reset for SOC21
     - drm/amd/display: fix disable otg wa logic in DCN316
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.88
     - drm/vmwgfx: Enable DMA mappings with SEV
     - drm/amdgpu: fix incorrect active rb bitmap for gfx11
     - drm/amdgpu: fix incorrect number of active RBs for gfx11
     - drm/amd/display: Do not recursively call manual trigger programming
     - io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64()
       failure
     - SUNRPC: Fix rpcgss_context trace event acceptor field
     - random: handle creditable entropy from atomic process context
     - net: usb: ax88179_178a: avoid writing the mac address before first reading
     - [x86] drm/i915/vma: Fix UAF on destroy against retire race
     - [x86] efi: Drop EFI stub .bss from .data section
     - [x86] efi: Disregard setup header of loaded image
     - [x86] efistub: Reinstate soft limit for initrd loading
     - [x86] efi: Drop alignment flags from PE section headers
     - [x86] boot: Remove the 'bugger off' message
     - [x86] boot: Omit compression buffer from PE/COFF image memory footprint
     - [x86] boot: Drop redundant code setting the root device
     - [x86] boot: Drop references to startup_64
     - [x86] boot: Grab kernel_info offset from zoffset header directly
     - [x86] boot: Set EFI handover offset directly in header asm
     - [x86] boot: Define setup size in linker script
     - [x86] boot: Derive file size from _edata symbol
     - [x86] boot: Construct PE/COFF .text section from assembler
     - [x86] boot: Drop PE/COFF .reloc section
     - [x86] boot: Split off PE/COFF .data section
     - [x86] boot: Increase section and file alignment to 4k/512
     - [x86] efistub: Use 1:1 file:memory mapping for PE/COFF .compat section
     - [x86] mm: Remove P*D_PAGE_MASK and P*D_PAGE_SIZE macros
     - [x86] head/64: Add missing __head annotation to startup_64_load_idt()
     - [x86] head/64: Move the __head definition to <asm/init.h>
     - [x86] sme: Move early SME kernel encryption handling into .head.text
     - [x86] sev: Move early startup code into .head.text section
     - [x86] efistub: Remap kernel text read-only before dropping NX attribute
     - netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()
     - netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()
     - netfilter: br_netfilter: skip conntrack input hook for promisc packets
     - netfilter: nft_set_pipapo: do not free live element (CVE-2024-26924)
     - netfilter: flowtable: validate pppoe header
     - netfilter: flowtable: incorrect pppoe tuple
     - af_unix: Call manage_oob() for every skb in unix_stream_read_generic().
     - af_unix: Don't peek OOB data without MSG_OOB.
     - net/mlx5: Lag, restore buckets number to default after hash LAG
       deactivation
     - net/mlx5e: Prevent deadlock while disabling aRFS
     - ice: tc: allow zero flags in parsing tc flower
     - tun: limit printing rate when illegal packet received by tun dev
     - [arm64] net: ethernet: ti: am65-cpsw-nuss: cleanup DMA Channels before
       using them
     - RDMA/rxe: Fix the problem "mutex_destroy missing"
     - RDMA/cm: Print the old state when cm_destroy_id gets timeout
     - RDMA/mlx5: Fix port number for counter query in multi-port configuration
     - [s390x] qdio: handle deferred cc1
     - [s390x] cio: fix race condition during online processing
     - drm: nv04: Fix out of bounds access
     - [armhf] omap2: n8x0: stop instantiating codec platform data
     - PCI: Avoid FLR for SolidRun SNET DPU rev 1
     - HID: kye: Sort kye devices
     - usb: pci-quirks: Reduce the length of a spinlock section in
       usb_amd_find_chipset_info()
     - PCI: Delay after FLR of Solidigm P44 Pro NVMe
     - [x86] quirks: Include linux/pnp.h for arch_pnpbios_disabled()
     - [x86] thunderbolt: Log function name of the called quirk
     - [x86] thunderbolt: Add debug log for link controller power quirk
     - PCI: Execute quirk_enable_clear_retrain_link() earlier
     - ALSA: scarlett2: Move USB IDs out from device_info struct
     - ALSA: scarlett2: Add support for Clarett 8Pre USB
     - ASoC: ti: Convert Pandora ASoC to GPIO descriptors
     - ALSA: scarlett2: Default mixer driver to enabled
     - ALSA: scarlett2: Add correct product series name to messages
     - ALSA: scarlett2: Add Focusrite Clarett+ 2Pre and 4Pre support
     - ALSA: scarlett2: Add Focusrite Clarett 2Pre and 4Pre USB support
     - PCI/DPC: Use FIELD_GET()
     - PCI: Simplify pcie_capability_clear_and_set_word() to ..._clear_word()
     - ALSA: scarlett2: Rename scarlett_gen2 to scarlett2
     - drm: panel-orientation-quirks: Add quirk for Lenovo Legion Go
     - usb: xhci: Add timeout argument in address_device USB HCD callback
     - usb: new quirk to reduce the SET_ADDRESS request timeout
     - clk: Remove prepare_lock hold assertion in __clk_release()
     - clk: Print an info line before disabling unused clocks
     - clk: Initialize struct clk_core kref earlier
     - clk: Get runtime PM before walking tree during disable_unused
     - clk: remove unnecessary (void*) conversions
     - clk: Show active consumers of clocks in debugfs
     - clk: Get runtime PM before walking tree for clk_summary
     - [x86] bugs: Fix BHI retpoline check
     - [x86] cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ
     - ALSA: hda/realtek - Enable audio jacks of Haier Boyue G42 with ALC269VC
     - [arm*] binder: check offset alignment in binder_get_object()
       (CVE-2024-26926)
     - [x86] thunderbolt: Avoid notify PM core about runtime PM resume
     - [x86] thunderbolt: Fix wake configurations after device unplug
     - [x86] comedi: vmk80xx: fix incomplete endpoint checking
     - [armhf] serial: stm32: Return IRQ_NONE in the ISR if no handling happend
     - [armhf] serial: stm32: Reset .throttled state in .startup()
     - USB: serial: option: add Fibocom FM135-GL variants
     - USB: serial: option: add support for Fibocom FM650/FG650
     - USB: serial: option: add Lonsung U8300/U9300 product
     - USB: serial: option: support Quectel EM060K sub-models
     - USB: serial: option: add Rolling RW101-GL and RW135-GL support
     - USB: serial: option: add Telit FN920C04 rmnet compositions
     - Revert "usb: cdc-wdm: close race between read and workqueue"
     - [arm64,armhf] usb: dwc2: host: Fix dereference issue in DDMA completion
       flow.
     - usb: Disable USB3 LPM at shutdown
     - usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport
       error
     - mei: me: disable RPL-S on SPS and IGN firmwares
     - speakup: Avoid crash on very long word
     - fs: sysfs: Fix reference leak in sysfs_break_active_protection()
     - [x86] KVM: x86: Snapshot if a vCPU's vendor model is AMD vs. Intel
       compatible
     - [x86] KVM: x86/pmu: Disable support for adaptive PEBS
     - [x86] KVM: x86/pmu: Do not mask LVTPC when handling a PMI on AMD platforms
     - [arm64] hibernate: Fix level3 translation fault in swsusp_save()
     - init/main.c: Fix potential static_command_line memory overflow
     - mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled
     - drm/amdgpu: validate the parameters of bo mapping operations more clearly
       (CVE-2024-26922)
     - drm/vmwgfx: Sort primary plane formats by order of preference
     - drm/vmwgfx: Fix crtc's atomic check conditional
     - nouveau: fix instmem race condition around ptr stores
     - bootconfig: use memblock_free_late to free xbc memory to buddy
     - nilfs2: fix OOB in nilfs_set_de_type
     - net: dsa: introduce preferred_default_local_cpu_port and use on MT7530
     - ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf
     - ksmbd: validate request buffer size in smb2_allocate_rsp_buf()
     - ksmbd: clear RENAME_NOREPLACE before calling vfs_rename
     - ksmbd: common: use struct_group_attr instead of struct_group for
       network_open_info
     - PCI/ASPM: Fix deadlock when enabling ASPM (CVE-2024-26605)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.89
     - Revert "ASoC: ti: Convert Pandora ASoC to GPIO descriptors"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.90
     - smb: client: fix rename(2) regression against samba
     - cifs: reinstate original behavior again for forceuid/forcegid
     - [amd64] HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized
       dev->devc
     - HID: logitech-dj: allow mice to use all types of reports
     - wifi: iwlwifi: mvm: remove old PASN station when adding a new one
     - wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd
     - vxlan: drop packets from invalid src-address
     - icmp: prevent possible NULL dereferences from icmp_build_probe()
     - bridge/br_netlink.c: no need to return void function
     - bnxt_en: refactor reset close code
     - bnxt_en: Fix the PCI-AER routines
     - NFC: trf7970a: disable all regulators on removal
     - ax25: Fix netdev refcount issue
     - net: make SK_MEMORY_PCPU_RESERV tunable
     - net: fix sk_memory_allocated_{add|sub} vs softirqs
     - ipv4: check for NULL idev in ip_route_use_hint()
     - net: usb: ax88179_178a: stop lying about skb->truesize
     - net: gtp: Fix Use-After-Free in gtp_dellink
     - Bluetooth: MGMT: Fix failing to MGMT_OP_ADD_UUID/MGMT_OP_REMOVE_UUID
     - Bluetooth: hci_sync: Using hci_cmd_sync_submit when removing Adv Monitor
     - Bluetooth: qca: set power_ctrl_enabled on NULL returned by
       gpiod_get_optional()
     - ipvs: Fix checksumming on GSO of SCTP packets
     - net: openvswitch: Fix Use-After-Free in ovs_ct_exit
     - eth: bnxt: fix counting packets discarded due to OOM and netpoll
     - netfilter: nf_tables: honor table dormant flag from netdev release event
       path
     - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue
     - i40e: Report MFS in decimal base instead of hex
     - iavf: Fix TC config comparison with existing adapter TC config
     - net: ethernet: ti: am65-cpts: Fix PTPv1 message type on TX packets
     - af_unix: Suppress false-positive lockdep splat for spin_lock() in
       __unix_gc().
     - cifs: Replace remaining 1-element arrays (Closes: #1069102, #1069092)
     - Revert "crypto: api - Disallow identical driver names"
     - virtio_net: Do not send RSS key if it is not supported
     - fork: defer linking file vma until vma is fully initialized
       (CVE-2024-27022)
     - [x86] cpu: Fix check for RDPKRU in __show_regs()
     - Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853
     - Bluetooth: qca: fix NULL-deref on non-serdev suspend
     - [arm64] mmc: sdhci-msm: pervent access to suspended controller
     - smb: client: Fix struct_group() usage in __packed structs
     - smb3: fix lock ordering potential deadlock in cifs_sync_mid_result
     - HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up
     - btrfs: fix information leak in btrfs_ioctl_logical_to_ino()
     - cpu: Re-enable CPU mitigations by default for !X86 architectures
     - drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3
     - drm/amdgpu: Fix leak when GPU memory allocation fails
     - irqchip/gic-v3-its: Prevent double free on error
     - ACPI: CPPC: Use access_width over bit_width for system memory accesses
     - ACPI: CPPC: Fix bit_offset shift in MASK_VAL() macro
     - ACPI: CPPC: Fix access width used for PCC registers
     - ethernet: Add helper for assigning packet type when dest address does not
       match device address
     - net: b44: set pause params only when interface is up
     - stackdepot: respect __GFP_NOLOCKDEP allocation flag
     - fbdev: fix incorrect address computation in deferred IO
     - udp: preserve the connected status if only UDP cmsg
     - mtd: diskonchip: work around ubsan link failure
     - [x86] tdx: Preserve shared bit on mprotect()
     - [x86] idma64: Don't try to serve interrupts when device is powered off
     - [arm64,armhf] phy: marvell: a3700-comphy: Fix out of bounds read
     - [arm64,armhf] phy: marvell: a3700-comphy: Fix hardcoded array size
     - [arm64] phy: rockchip-snps-pcie3: fix bifurcation on rk3588
     - [arm64] phy: rockchip-snps-pcie3: fix clearing PHP_GRF_PCIESEL_CON bits
     - [amd64] dmaengine: idxd: Fix oops during rmmod on single-CPU platforms
     - i2c: smbus: fix NULL function pointer dereference
     - bounds: Use the right number of bits for power-of-two CONFIG_NR_CPUS
     - macsec: Enable devices to advertise whether they update sk_buff md_dst
       during offloads
     - macsec: Detect if Rx skb is macsec-related for offloading devices that
       update md_dst
     - net/mlx5e: Advertise mlx5 ethernet driver updates sk_buff md_dst for
       MACsec
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 21
   * drivers/tty: Disable N_GSM
   * tipc: fix UAF in error path
   * tipc: fix a possible memleak in tipc_buf_append
linux-signed-arm64 (6.1.90+1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Sign kernel from linux 6.1.90-1~bpo11+1
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.21
linux-signed-arm64 (6.1.85+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.85-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.83
     - md: fix data corruption for raid456 when reshape restart while grow up
     - md/raid10: prevent soft lockup while flush writes
     - io_uring/unix: drop usage of io_uring socket
     - io_uring: drop any code related to SCM_RIGHTS
     - nfsd: allow nfsd_file_get to sanely handle a NULL pointer
     - nfsd: don't open-code clear_and_wake_up_bit
     - nfsd: NFSD_FILE_KEY_INODE only needs to find GC'ed entries
     - nfsd: simplify test_bit return in NFSD_FILE_KEY_FULL comparator
     - nfsd: don't kill nfsd_files because of lease break error
     - nfsd: add some comments to nfsd_file_do_acquire
     - nfsd: don't take/put an extra reference when putting a file
     - nfsd: update comment over __nfsd_file_cache_purge
     - nfsd: allow reaping files still under writeback
     - NFSD: Convert filecache to rhltable
     - nfsd: simplify the delayed disposal list code
     - NFSD: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop
     - NFSD: Add an nfsd4_encode_nfstime4() helper
     - nfsd: Fix creation time serialization order
     - [arm64] media: rkisp1: Fix IRQ handling due to shared interrupts
     - perf/arm-cmn: Workaround AmpereOneX errata AC04_MESH_1 (incorrect child
       count)
     - ASoC: rt5645: Make LattePanda board DMI match more precise
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82UU
     - [x86] xen: Add some null pointer checking to smp.c
     - [mips*] Clear Cause.BD in instruction_pointer_set
     - HID: multitouch: Add required quirk for Synaptics 0xcddc device
     - gen_compile_commands: fix invalid escape sequence warning
     - [arm64] sve: Lower the maximum allocation for the SVE ptrace regset
     - soc: microchip: Fix POLARFIRE_SOC_SYS_CTRL input prompt
     - RDMA/mlx5: Fix fortify source warning while accessing Eth segment
     - RDMA/mlx5: Relax DEVX access upon modify commands
     - [x86] mm: Move is_vsyscall_vaddr() into asm/vsyscall.h
     - [x86] mm: Disallow vsyscall page read for copy_from_kernel_nofault()
     - net/iucv: fix the allocation size of iucv_path_table array
     - block: sed-opal: handle empty atoms when parsing response
     - dm-verity, dm-crypt: align "struct bvec_iter" correctly
     - [arm64] dts: Fix dtc interrupt_provider warnings
     - btrfs: fix data races when accessing the reserved amount of block reserves
     - btrfs: fix data race at btrfs_use_block_rsv() when accessing block reserve
     - net: smsc95xx: add support for SYS TEC USB-SPEmodule1
     - wifi: mac80211: only call drv_sta_rc_update for uploaded stations
     - [x86] ASoC: amd: yc: Add Lenovo ThinkBook 21J0 into DMI quirk table
     - scsi: mpt3sas: Prevent sending diag_reset when the controller is ready
     - ALSA: hda/realtek - ALC285 reduce pop noise from Headphone port
     - drm/amdgpu: Enable gpu reset for S3 abort cases on Raven series
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 21J2
     - Bluetooth: mgmt: Fix limited discoverable off timeout
     - firewire: core: use long bus reset on gap count error
     - [arm64] tegra: Set the correct PHY mode for MGBE
     - [x86] ASoC: Intel: bytcr_rt5640: Add an extra entry for the Chuwi Vi8
       tablet
     - Input: gpio_keys_polled - suppress deferred probe error for gpio
     - [x86] ASoC: wm8962: Enable oscillator if selecting WM8962_FLL_OSC
     - [x86] ASoC: wm8962: Enable both SPKOUTR_ENA and SPKOUTL_ENA in mono mode
     - [x86] ASoC: wm8962: Fix up incorrect error message in wm8962_set_fll
     - do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak
     - fs: Fix rw_hint validation
     - [s390x] dasd: add autoquiesce feature
     - [s390x] dasd: Use dev_*() for device log messages
     - [s390x] dasd: fix double module refcount decrement
     - rcu/exp: Fix RCU expedited parallel grace period kworker allocation
       failure recovery
     - rcu/exp: Handle RCU expedited grace period kworker allocation failure
     - nbd: null check for nla_nest_start
     - fs/select: rework stack allocation hack for clang
     - md: Don't clear MD_CLOSING when the raid is about to stop
     - lib/cmdline: Fix an invalid format specifier in an assertion msg
     - lib: memcpy_kunit: Fix an invalid format specifier in an assertion msg
     - time: test: Fix incorrect format specifier
     - rtc: test: Fix invalid format specifier.
     - io_uring/net: unify how recvmsg and sendmsg copy in the msghdr
     - io_uring/net: move receive multishot out of the generic msghdr path
     - io_uring/net: fix overflow check in io_recvmsg_mshot_prep()
     - [x86] resctrl: Implement new mba_MBps throttling heuristic
     - [x86] sme: Fix memory encryption setting if enabled by default and not
       overridden
     - timekeeping: Fix cross-timestamp interpolation on counter wrap
     - timekeeping: Fix cross-timestamp interpolation corner case decision
     - timekeeping: Fix cross-timestamp interpolation for non-x86
     - sched/fair: Take the scheduling domain into account in select_idle_smt()
     - sched/fair: Take the scheduling domain into account in select_idle_core()
     - wifi: b43: Stop/wake correct queue in DMA Tx path when QoS is disabled
     - wifi: b43: Stop/wake correct queue in PIO Tx path when QoS is disabled
     - wifi: b43: Stop correct queue in DMA worker when QoS is disabled
     - wifi: b43: Disable QoS for bcm4331
     - wifi: wilc1000: fix declarations ordering
     - wifi: wilc1000: fix RCU usage in connect path
     - wifi: rtl8xxxu: add cancel_work_sync() for c2hcmd_work
     - wifi: wilc1000: do not realloc workqueue everytime an interface is added
     - wifi: wilc1000: fix multi-vif management when deleting a vif
     - wifi: mwifiex: debugfs: Drop unnecessary error check for
       debugfs_create_dir()
     - cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value
     - cpufreq: Explicitly include correct DT includes
     - cpufreq: mediatek-hw: Wait for CPU supplies before probing
     - sock_diag: annotate data-races around sock_diag_handlers[family]
     - inet_diag: annotate data-races around inet_diag_table[]
     - bpftool: Silence build warning about calloc()
     - libbpf: Apply map_set_def_max_entries() for inner_maps on creation
     - af_unix: Annotate data-race of gc_in_progress in wait_for_unix_gc().
     - cpufreq: mediatek-hw: Don't error out if supply is not found
     - libbpf: Fix faccessat() usage on Android
     - pmdomain: qcom: rpmhpd: Drop SA8540P gfx.lvl
     - [arm64] dts: imx8mm-kontron: Disable pullups for I2C signals on OSM-S
       i.MX8MM
     - [arm64] dts: imx8mm-kontron: Disable pullups for I2C signals on SL/BL
       i.MX8MM
     - [arm64] dts: imx8mm-kontron: Disable pullups for onboard UART signals on
       BL OSM-S board
     - [arm64] dts: imx8mm-kontron: Disable pullups for onboard UART signals on
       BL board
     - [arm64] dts: imx8mm-kontron: Disable pull resistors for SD card signals on
       BL OSM-S board
     - [arm64] dts: imx8mm-kontron: Disable pull resistors for SD card signals on
       BL board
     - [arm64] dts: imx8mm-kontron: Fix interrupt for RTC on OSM-S i.MX8MM module
     - libbpf: Add missing LIBBPF_API annotation to libbpf_set_memlock_rlim API
     - wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete
     - wifi: iwlwifi: mvm: report beacon protection failures
     - wifi: iwlwifi: dbg-tlv: ensure NUL termination
     - wifi: iwlwifi: fix EWRD table validity check
     - gpio: vf610: allow disabling the vf610 driver
     - [arm64] dts: imx8mm-venice-gw71xx: fix USB OTG VBUS
     - net: blackhole_dev: fix build warning for ethh set but not used
     - wifi: ath11k: initialize rx_mcs_80 and rx_mcs_160 before use
     - wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer()
     - wifi: wfx: fix memory leak when starting AP
     - printk: Disable passing console lock owner completely during panic()
     - pwm: sti: Fix capture for st,pwm-num-chan < st,capture-num-chan
     - tools/resolve_btfids: Refactor set sorting with types from btf_ids.h
     - tools/resolve_btfids: Fix cross-compilation to non-host endianness
     - wifi: iwlwifi: mvm: don't set replay counters to 0xff
     - [s390x] pai: fix attr_event_free upper limit for pai device drivers
     - [s390x] vdso: drop '-fPIC' from LDFLAGS
     - ipv6: mcast: remove one synchronize_net() barrier in ipv6_mc_down()
     - [arm64] dts: mt8183: kukui: Split out keyboard node and describe
       detachables
     - [arm64] dts: mt8183: Move CrosEC base detection node to kukui-based DTs
     - [arm64] dts: mediatek: mt7986: add "#reset-cells" to infracfg
     - [arm64] dts: mediatek: mt8192-asurada: Remove CrosEC base detection node
     - [arm64] dts: mediatek: mt8192: fix vencoder clock name
     - [arm64] dts: mediatek: mt7622: add missing "device_type" to memory nodes
     - bpf: Mark bpf_spin_{lock,unlock}() helpers with notrace correctly
     - wifi: wilc1000: prevent use-after-free on vif when cleaning up all
       interfaces
     - ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit()
     - bus: tegra-aconnect: Update dependency to ARCH_TEGRA
     - [amd64] iommu/amd: Mark interrupt as managed
     - wifi: brcmsmac: avoid function pointer casts
     - [arm64] dts: qcom: sdm845-db845c: correct PCIe wake-gpios
     - [arm64] dts: qcom: sm8150: use 'gpios' suffix for PCI GPIOs
     - [arm64] dts: qcom: sm8150: correct PCIe wake-gpios
     - powercap: dtpm_cpu: Fix error check against freq_qos_add_request()
     - net: ena: Remove ena_select_queue
     - [arm64] dts: mt8195-cherry-tomato: change watchdog reset boot flow
     - firmware: arm_scmi: Fix double free in SMC transport cleanup path
     - wifi: wilc1000: revert reset line logic flip
     - net: mctp: copy skb ext data when fragmenting
     - pstore: inode: Convert mutex usage to guard(mutex)
     - pstore: inode: Only d_invalidate() is needed
     - [arm64] dts: allwinner: h6: Add RX DMA channel for SPDIF
     - ACPI: resource: Add Infinity laptops to irq1_edge_low_force_override
     - ACPI: resource: Do IRQ override on Lunnen Ground laptops
     - ACPI: resource: Add MAIBENBEN X577 to irq1_edge_low_force_override
     - ACPI: scan: Fix device check notification handling
     - [x86] relocs: Ignore relocations in .notes section (CVE-2024-26816)
     - SUNRPC: fix some memleaks in gssx_dec_option_array
     - mmc: wmt-sdmmc: remove an incorrect release_mem_region() call in the
       .remove function
     - ACPI: CPPC: enable AMD CPPC V2 support for family 17h processors
     - wifi: rtw88: 8821c: Fix beacon loss and disconnect
     - wifi: rtw88: 8821c: Fix false alarm count
     - PCI: Make pci_dev_is_disconnected() helper public for other drivers
     - [amd64] iommu/vt-d: Don't issue ATS Invalidation request when device is
       disconnected
     - igb: Fix missing time sync events
     - Bluetooth: Remove HCI_POWER_OFF_TIMEOUT
     - Bluetooth: mgmt: Remove leftover queuing of power_off work
     - Bluetooth: Remove superfluous call to hci_conn_check_pending()
     - Bluetooth: hci_qca: don't use IS_ERR_OR_NULL() with gpiod_get_optional()
     - Bluetooth: Cancel sync command before suspend and power off
     - Bluetooth: hci_sync: Only allow hci_cmd_sync_queue if running
     - Bluetooth: hci_conn: Consolidate code for aborting connections
     - Bluetooth: hci_core: Cancel request on command timeout
     - Bluetooth: hci_sync: Fix overwriting request callback
     - Bluetooth: hci_core: Fix possible buffer overflow
     - Bluetooth: af_bluetooth: Fix deadlock
     - Bluetooth: fix use-after-free in accessing skb after sending it
     - [s390x] cache: prevent rebuild of shared_cpu_list
     - bpf: Fix DEVMAP_HASH overflow check on 32-bit arches
     - bpf: Fix hashtab overflow check on 32-bit arches
     - bpf: Fix stackmap overflow check on 32-bit arches
     - [amd64] iommu/vt-d: Retrieve IOMMU perfmon capability information
     - ipv6: fib6_rules: flush route cache when rule is changed
     - net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv()
     - net: phy: fix phy_get_internal_delay accessing an empty array
     - [arm64] net: hns3: fix wrong judgment condition issue
     - [arm64] net: hns3: fix kernel crash when 1588 is received on HIP08 devices
     - [arm64] net: hns3: fix port duplex configure error in IMP reset
     - Bluetooth: MGMT: Fix always using HCI_MAX_AD_LENGTH
     - Bluetooth: hci_core: Fix missing instances using HCI_MAX_AD_LENGTH
     - Bluetooth: Fix eir name length
     - net: phy: dp83822: Fix RGMII TX delay configuration
     - OPP: debugfs: Fix warning around icc_get_name()
     - tcp: fix incorrect parameter validation in the do_tcp_getsockopt()
       function
     - ipmr: fix incorrect parameter validation in the ip_mroute_getsockopt()
       function
     - l2tp: fix incorrect parameter validation in the pppol2tp_getsockopt()
       function
     - udp: fix incorrect parameter validation in the udp_lib_getsockopt()
       function
     - net: kcm: fix incorrect parameter validation in the kcm_getsockopt)
       function
     - nfp: flower: handle acti_netdevs allocation failure
     - bpf: hardcode BPF_PROG_PACK_SIZE to 2MB * num_possible_nodes()
     - dm raid: fix false positive for requeue needed during reshape
     - dm: call the resume method on internal suspend
     - [arm64,armhf] drm/tegra: dsi: Add missing check for of_find_device_by_node
     - [arm64,armhf] drm/tegra: dpaux: Fix PM disable depth imbalance in
       tegra_dpaux_probe
     - [arm64,armhf] drm/tegra: dsi: Make use of the helper function
       dev_err_probe()
     - [arm64,armhf] drm/tegra: dsi: Fix some error handling paths in
       tegra_dsi_probe()
     - [arm64,armhf] drm/tegra: dsi: Fix missing pm_runtime_disable() in the
       error handling path of tegra_dsi_probe()
     - [arm64,armhf] drm/tegra: hdmi: Convert to devm_platform_ioremap_resource()
     - [arm64,armhf] drm/tegra: hdmi: Fix some error handling paths in
       tegra_hdmi_probe()
     - [arm64,armhf] drm/tegra: rgb: Fix some error handling paths in
       tegra_dc_rgb_probe()
     - [arm64,armhf] drm/tegra: rgb: Fix missing clk_put() in the error handling
       paths of tegra_dc_rgb_probe()
     - [arm64,armhf] drm/tegra: output: Fix missing i2c_put_adapter() in the
       error handling paths of tegra_output_probe()
     - drm: Don't treat 0 as -1 in drm_fixp2int_ceil
     - drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node
     - drm/panel-edp: use put_sync in unprepare
     - drm/lima: fix a memleak in lima_heap_alloc
     - [x86] ASoC: amd: acp: Add missing error handling in sof-mach
     - dmaengine: tegra210-adma: Update dependency to ARCH_TEGRA
     - media: tc358743: register v4l2 async device only after successful setup
     - PCI/DPC: Print all TLP Prefixes, not just the first
     - perf record: Fix possible incorrect free in record__switch_output()
     - HID: lenovo: Add middleclick_workaround sysfs knob for cptkbd
     - drm/amd/display: Fix a potential buffer overflow in
       'dp_dsc_clock_en_read()'
     - drm/amd/display: Fix potential NULL pointer dereferences in
       'dcn10_set_output_transfer_func()'
     - pinctrl: renesas: r8a779g0: Add Audio SSI pins, groups, and functions
     - pinctrl: renesas: r8a779g0: Add missing SCIF_CLK2 pin group/function
     - clk: samsung: exynos850: Propagate SPI IPCLK rate change
     - perf evsel: Fix duplicate initialization of data->id in
       evsel__parse_sample()
     - clk: meson: Add missing clocks to axg_clk_regmaps
     - media: em28xx: annotate unchecked call to media_device_register()
     - media: v4l2-tpg: fix some memleaks in tpg_alloc
     - media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity
     - media: edia: dvbdev: fix a use-after-free
     - clk: qcom: reset: Commonize the de/assert functions
     - clk: qcom: reset: Ensure write completion on reset de/assertion
     - quota: simplify drop_dquot_ref()
     - quota: Fix potential NULL pointer dereference
     - quota: Fix rcu annotations of inode dquot pointers
     - PCI: switchtec: Fix an error handling path in switchtec_pci_probe()
     - crypto: xilinx - call finalize with bh disabled
     - perf thread_map: Free strlist on normal path in
       thread_map__new_by_tid_str()
     - [arm64] drm/msm/dpu: fix the programming of INTF_CFG2_DATA_HCTL_EN
     - [arm64] drm/msm/dpu: Only enable DSC_MODE_MULTIPLEX if dsc_merge is
       enabled
     - drm/radeon/ni: Fix wrong firmware size logging in ni_init_microcode()
     - ALSA: seq: fix function cast warnings
     - perf stat: Avoid metric-only segv
     - [arm64,armhf] ASoC: meson: aiu: fix function pointer type mismatch
     - [arm64,armhf] ASoC: meson: t9015: fix function pointer type mismatch
     - [powerpc*] Force inlining of arch_vmap_p{u/m}d_supported()
     - [x86] ASoC: SOF: Introduce container struct for SOF firmware
     - [x86] ASoC: SOF: Add some bounds checking to firmware data
     - NTB: EPF: fix possible memory leak in pci_vntb_probe()
     - NTB: fix possible name leak in ntb_register_device()
     - media: cedrus: h265: Associate mv col buffers with buffer
     - media: cedrus: h265: Fix configuring bitstream size
     - media: sun8i-di: Fix coefficient writes
     - media: sun8i-di: Fix power on/off sequences
     - media: sun8i-di: Fix chroma difference threshold
     - media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak
     - media: go7007: add check of return value of go7007_read_addr()
     - media: pvrusb2: remove redundant NULL check
     - media: pvrusb2: fix pvr2_stream_callback casts
     - clk: qcom: dispcc-sdm845: Adjust internal GDSC wait times
     - PCI: Mark 3ware-9650SE Root Port Extended Tags as broken
     - clk: hisilicon: hi3519: Release the correct number of gates in
       hi3519_clk_unregister()
     - clk: hisilicon: hi3559a: Fix an erroneous devm_kfree()
     - [arm64,armhf] drm/tegra: put drm_gem_object ref on error in
       tegra_fb_create
     - mfd: syscon: Call of_node_put() only when of_parse_phandle() takes a ref
     - mfd: altera-sysmgr: Call of_node_put() only when of_parse_phandle() takes
       a ref
     - crypto: jitter - fix CRYPTO_JITTERENTROPY help text
     - drm/tidss: Fix initial plane zpos values
     - drm/tidss: Fix sync-lost issue with two displays
     - mtd: maps: physmap-core: fix flash size larger than 32-bit
     - mtd: rawnand: lpc32xx_mlc: fix irq handler prototype
     - [arm64,armhf] ASoC: meson: axg-tdm-interface: fix mclk setup without
       mclk-fs
     - [arm64,armhf] ASoC: meson: axg-tdm-interface: add frame rate constraint
     - HID: amd_sfh: Update HPD sensor structure elements
     - HID: amd_sfh: Avoid disabling the interrupt
     - drm/amdgpu: Fix missing break in ATOM_ARG_IMM Case of atom_get_src_int()
     - media: pvrusb2: fix uaf in pvr2_context_set_notify
     - media: dvb-frontends: avoid stack overflow warnings with clang
     - media: go7007: fix a memleak in go7007_load_encoder
     - media: ttpci: fix two memleaks in budget_av_attach
     - media: mediatek: vcodec: avoid -Wcast-function-type-strict warning
     - gpio: nomadik: fix offset bug in nmk_pmx_set()
     - [powerpc*] pseries: Fix potential memleak in papr_get_attr()
     - [powerpc*] hv-gpci: Fix the H_GET_PERF_COUNTER_INFO hcall return value
       checks
     - [arm64] drm/msm/dpu: add division of drm_display_mode's hskew parameter
     - modules: wait do_free_init correctly
     - powerpc/embedded6xx: Fix no previous prototype for avr_uart_send() etc.
     - leds: aw2013: Unlock mutex before destroying it
     - leds: sgm3140: Add missing timer cleanup and flash gpio control
     - backlight: lm3630a: Initialize backlight_properties on init
     - backlight: lm3630a: Don't set bl->props.brightness in get_brightness
     - backlight: da9052: Fully initialize backlight_properties during probe
     - backlight: lm3639: Fully initialize backlight_properties during probe
     - backlight: lp8788: Fully initialize backlight_properties during probe
     - clk: Fix clk_core_get NULL dereference
     - clk: zynq: Prevent null pointer dereference caused by kmalloc failure
     - ALSA: hda/realtek: fix ALC285 issues on HP Envy x360 laptops
     - ALSA: usb-audio: Stop parsing channels bits when all channels are found.
     - RDMA/irdma: Allow accurate reporting on QP max send/recv WR
     - RDMA/irdma: Remove duplicate assignment
     - RDMA/srpt: Do not register event handler until srpt device is fully setup
     - f2fs: reduce stack memory cost by using bitfield in struct f2fs_io_info
     - f2fs: compress: fix to guarantee persisting compressed blocks by CP
     - f2fs: compress: fix to cover normal cluster write with cp_rwsem
     - f2fs: compress: fix to check unreleased compressed cluster
     - f2fs: simplify __allocate_data_block
     - f2fs: delete obsolete FI_FIRST_BLOCK_WRITTEN
     - f2fs: delete obsolete FI_DROP_CACHE
     - f2fs: introduce get_dnode_addr() to clean up codes
     - f2fs: update blkaddr in __set_data_blkaddr() for cleanup
     - f2fs: compress: fix to avoid inconsistence bewteen i_blocks and dnode
     - f2fs: compress: fix to cover f2fs_disable_compressed_file() w/ i_sem
     - f2fs: fix to avoid potential panic during recovery
     - scsi: csiostor: Avoid function pointer casts
     - [arm64] RDMA/hns: Fix mis-modifying default congestion control algorithm
     - RDMA/device: Fix a race between mad_client and cm_client init
     - RDMA/rtrs-clt: Check strnlen return len in sysfs mpath_policy_store()
     - scsi: bfa: Fix function pointer type mismatch for hcb_qe->cbfn
     - f2fs: compress: fix to check zstd compress level correctly in mount option
     - net: sunrpc: Fix an off by one in rpc_sockaddr2uaddr()
     - NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102
     - NFSv4.2: fix listxattr maximum XDR buffer size
     - f2fs: compress: fix to check compress flag w/ .i_sem lock
     - f2fs: check number of blocks in a current section
     - watchdog: stm32_iwdg: initialize default timeout
     - f2fs: ro: compress: fix to avoid caching unaligned extent
     - NFS: Fix an off by one in root_nfs_cat()
     - f2fs: convert to use sbi directly
     - f2fs: compress: relocate some judgments in f2fs_reserve_compress_blocks
     - f2fs: compress: fix reserve_cblocks counting error when out of space
     - [x86] perf/x86/amd/core: Avoid register reset when CPU is dead
     - afs: Revert "afs: Hide silly-rename files from userspace"
     - nfs: fix panic when nfs4_ff_layout_prepare_ds() fails
     - io_uring/net: correct the type of variable
     - comedi: comedi_test: Prevent timers rescheduling during deletion
     - [armhf] remoteproc: stm32: use correct format strings on 64-bit
     - [armhf] remoteproc: stm32: Fix incorrect type in assignment for va
     - [armhf] remoteproc: stm32: Fix incorrect type assignment returned by
       stm32_rproc_get_loaded_rsc_tablef
     - usb: phy: generic: Get the vbus supply
     - tty: vt: fix 20 vs 0x20 typo in EScsiignore
     - serial: max310x: fix syntax error in IRQ error message
     - tty: serial: samsung: fix tx_empty() to return TIOCSER_TEMT
     - [arm64] dts: broadcom: bcmbca: bcm4908: drop invalid switch cells
     - hwtracing: hisi_ptt: Move type check to the beginning of
       hisi_ptt_pmu_event_init()
     - rtc: mt6397: select IRQ_DOMAIN instead of depending on it
     - serial: 8250_exar: Don't remove GPIO device on suspend
     - staging: greybus: fix get_channel_from_mode() failure path
     - usb: gadget: net2272: Use irqflags in the call to net2272_probe_fin
     - nouveau: reset the bo resource bus info after an eviction
     - tcp: Fix NEW_SYN_RECV handling in inet_twsk_purge()
     - rds: tcp: Fix use-after-free of net in reqsk_timer_handler().
     - [s390x] vtime: fix average steal time calculation
     - net/sched: taprio: proper TCA_TAPRIO_TC_ENTRY_INDEX check (CVE-2024-26815)
     - soc: fsl: dpio: fix kcalloc() argument order
     - tcp: Fix refcnt handling in __inet_hash_connect().
     - hsr: Fix uninit-value access in hsr_get_node()
     - nvme: only set reserved_tags in nvme_alloc_io_tag_set for fabrics
       controllers
     - nvme: add the Apple shared tag workaround to nvme_alloc_io_tag_set
     - nvme: fix reconnection fail due to reserved tag allocation
     - net: mediatek: mtk_eth_soc: clear MAC_MCR_FORCE_LINK only when MAC is up
     - net: ethernet: mtk_eth_soc: fix PPE hanging issue
     - packet: annotate data-races around ignore_outgoing
     - net: veth: do not manipulate GRO when using XDP
     - net: dsa: mt7530: prevent possible incorrect XTAL frequency selection
     - drm: Fix drm_fixp2int_round() making it add 0.5
     - vdpa_sim: reset must not run
     - vdpa/mlx5: Allow CVQ size changes
     - wireguard: receive: annotate data-race around receiving_counter.counter
     - rds: introduce acquire/release ordering in acquire/release_in_xmit()
     - hsr: Handle failures in module init
     - ipv4: raw: Fix sending packets from raw sockets via IPsec tunnels
     - net: phy: fix phy_read_poll_timeout argument type in genphy_loopback
     - dm-integrity: fix a memory leak when rechecking the data
     - net/bnx2x: Prevent access to a freed page in page_pool
     - netfilter: nft_set_pipapo: release elements in clone only from destroy
       path (CVE-2024-26809)
     - netfilter: nf_tables: do not compare internal table flags on updates
     - rcu: add a helper to report consolidated flavor QS
     - net: report RCU QS on threaded NAPI repolling
     - bpf: report RCU QS in cpumap kthread
     - net: dsa: mt7530: fix link-local frames that ingress vlan filtering ports
     - net: dsa: mt7530: fix handling of all link-local frames
     - spi: spi-mt65xx: Fix NULL pointer access in interrupt handler
     - dm: address indent/space issues
     - dm io: Support IO priority
     - dm-integrity: align the outgoing bio in integrity_recheck
     - [armhf] remoteproc: stm32: fix incorrect optional pointers
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.84
     - [x86] cpu: Support AMD Automatic IBRS
     - [x86] bugs: Use sysfs_emit()
     - [x86] KVM: x86: Update KVM-only leaf handling to allow for 100% KVM-only
       leafs
     - [x86] KVM: x86: Advertise CPUID.(EAX=7,ECX=2):EDX[5:0] to userspace
     - [x86] KVM: x86: Use a switch statement and macros in __feature_translate()
     - timers: Update kernel-doc for various functions
     - timers: Use del_timer_sync() even on UP
     - timers: Rename del_timer_sync() to timer_delete_sync()
     - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach
     - media: staging: ipu3-imgu: Set fields before media_entity_pads_init()
     - [arm64] dts: qcom: sc7280: Add additional MSI interrupts
     - [arm64,armhf] remoteproc: virtio: Fix wdg cannot recovery remote processor
     - [arm64] clk: qcom: gcc-sdm845: Add soft dependency on rpmhpd
     - [armhf] arm: dts: marvell: Fix maxium->maxim typo in brownstone dts
     - drm/vmwgfx: Fix possible null pointer derefence with invalid contexts
     - serial: max310x: fix NULL pointer dereference in I2C instantiation
     - pci_iounmap(): Fix MMIO mapping leak
     - media: xc4000: Fix atomicity violation in xc4000_get_frequency
     - media: mc: Add local pad to pipeline regardless of the link state
     - media: mc: Fix flags handling when creating pad links
     - media: mc: Add num_links flag to media_pad
     - media: mc: Rename pad variable to clarify intent
     - media: mc: Expand MUST_CONNECT flag to always require an enabled link
     - KVM: Always flush async #PF workqueue when vCPU is being destroyed
     - [x86] cpufreq: amd-pstate: Fix min_perf assignment in
       amd_pstate_adjust_perf()
     - [powerpc*] smp: Adjust nr_cpu_ids to cover all threads of a core
     - [powerpc*] smp: Increase nr_cpu_ids to include the boot CPU
     - [x86] crypto: qat - fix double free during reset
     - [x86] crypto: qat - resolve race condition during AER recovery
     - ext4: correct best extent lstart adjustment logic
     - block: Clear zone limits for a non-zoned stacked queue
     - bounds: support non-power-of-two CONFIG_NR_CPUS
     - fat: fix uninitialized field in nostale filehandles
     - ubifs: Set page uptodate in the correct place
     - ubi: Check for too small LEB size in VTBL code
     - ubi: correct the calculation of fastmap size
     - md/raid5: fix atomicity violation in raid5_cache_count
     - cpufreq: Limit resolving a frequency to policy min/max
     - PM: suspend: Set mem_sleep_current during kernel command line setup
     - usb: xhci: Add error handling in xhci_map_urb_for_dma
     - [powerpc*] fsl: Fix mfpmr build errors with newer binutils
     - USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB
     - USB: serial: add device ID for VeriFone adapter
     - USB: serial: cp210x: add ID for MGP Instruments PDS100
     - USB: serial: option: add MeiG Smart SLM320 product
     - [x86] KVM: x86/xen: inject vCPU upcall vector when local APIC is enabled
     - USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M
     - PM: sleep: wakeirq: fix wake irq warning in system suspend
     - mmc: tmio: avoid concurrent runs of mmc_request_done()
     - fuse: fix root lookup with nonzero generation
     - fuse: don't unhash root
     - usb: typec: ucsi: Clean up UCSI_CABLE_PROP macros
     - serial: Lock console when calling into driver before registration
     - btrfs: qgroup: always free reserved space for extent records
     - btrfs: fix off-by-one chunk length calculation at
       contains_pending_extent()
     - PCI/PM: Drain runtime-idle callbacks before driver removal
     - PCI/DPC: Quirk PIO log size for Intel Raptor Lake Root Ports
     - dm-raid: fix lockdep waring in "pers->hot_add_disk"
     - [powerpc*] xor_vmx: Add '-mhard-float' to CFLAGS
     - mac802154: fix llsec key resources release in mac802154_llsec_key_del
     - swap: comments get_swap_device() with usage rule
     - mm: swap: fix race between free_swap_and_cache() and swapoff()
     - mmc: core: Fix switch on gp3 partition
     - [arm64,armhf] drm/etnaviv: Restore some id values
     - landlock: Warn once if a Landlock action is requested while disabled
     - hwmon: (amc6821) add of_match table
     - ext4: fix corruption during on-line resize
     - nvmem: meson-efuse: fix function pointer type mismatch
     - slimbus: core: Remove usage of the deprecated ida_simple_xx() API
     - phy: tegra: xusb: Add API to retrieve the port number of phy
     - usb: gadget: tegra-xudc: Fix USB3 PHY retrieval logic
     - speakup: Fix 8bit characters from direct synth
     - PCI/AER: Block runtime suspend when handling errors
     - io_uring/net: correctly handle multishot recvmsg retry setup
     - nfs: fix UAF in direct writes
     - kbuild: Move -Wenum-{compare-conditional,enum-conversion} into W=1
     - [arm64] PCI: qcom: Rename qcom_pcie_config_sid_sm8250() to reflect IP
       version
     - [arm64] PCI: qcom: Enable BDF to SID translation properly
     - [amd64,arm64] PCI: hv: Fix ring buffer size calculation
     - vfio: Use GFP_KERNEL_ACCOUNT for userspace persistent allocations
     - vfio/pci: Consolidate irq cleanup on MSI/MSI-X disable
     - vfio/pci: Remove negative check on unsigned vector
     - vfio/pci: Lock external INTx masking ops (CVE-2024-26810)
     - vfio/platform: Disable virqfds on cleanup
     - ksmbd: retrieve number of blocks using vfs_getattr in
       set_file_allocation_info
     - ring-buffer: Fix waking up ring buffer readers
     - ring-buffer: Do not set shortest_full when full target is hit
     - ring-buffer: Fix resetting of shortest_full
     - ring-buffer: Fix full_waiters_pending in poll
     - ring-buffer: Use wait_event_interruptible() in ring_buffer_wait()
     - [s390x] zcrypt: fix reference counting on zcrypt card objects
     - drm/probe-helper: warn about negative .get_modes()
     - drm/panel: do not return negative error codes from drm_panel_get_modes()
     - [armhf] drm/exynos: do not return negative values from .get_modes()
     - [armhf] drm/imx/ipuv3: do not return negative values from .get_modes()
     - [arm64,armhf] drm/vc4: hdmi: do not return negative values from
       .get_modes()
     - memtest: use {READ,WRITE}_ONCE in memory scanning
     - Revert "block/mq-deadline: use correct way to throttling write requests"
     - f2fs: mark inode dirty for FI_ATOMIC_COMMITTED flag
     - f2fs: truncate page cache before clearing flags when aborting atomic write
     - nilfs2: fix failure to detect DAT corruption in btree and direct mappings
     - nilfs2: prevent kernel bug at submit_bh_wbc()
     - cifs: open_cached_dir(): add FILE_READ_EA to desired access
     - cpufreq: dt: always allocate zeroed cpumask
     - [amd64] x86/CPU/AMD: Update the Zenbleed microcode revisions
     - NFSD: Fix nfsd_clid_class use of __string_len() macro
     - net: hns3: tracing: fix hclgevf trace event strings
     - wireguard: netlink: check for dangling peer via is_dead instead of empty
       list
     - wireguard: netlink: access device through ctx instead of peer
     - ahci: asm1064: correct count of reported ports
     - ahci: asm1064: asm1166: don't limit reported ports
     - drm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag
     - drm/amd/display: Return the correct HDCP error code
     - drm/amd/display: Fix noise issue on HDMI AV mute
     - dm snapshot: fix lockup in dm_exception_table_exit
     - [x86] pm: Work around false positive kmemleak report in
       msr_build_context()
     - cpufreq: brcmstb-avs-cpufreq: fix up "add check for cpufreq_cpu_get's
       return value"
     - [x86] platform/x86: p2sb: On Goldmont only cache P2SB and SPI devfn BAR
       (Closes: #1065320)
     - tls: fix race between tx work scheduling and socket close (CVE-2024-26585)
     - netfilter: nf_tables: mark set as dead when unbinding anonymous set with
       timeout (CVE-2024-26643)
     - netfilter: nf_tables: disallow anonymous set with timeout flag
       (CVE-2024-26642)
     - netfilter: nf_tables: reject constant set with timeout
     - Drivers: hv: vmbus: Calculate ring buffer size for more efficient use of
       memory
     - init/Kconfig: lower GCC version check for -Warray-bounds
     - [x86] KVM: x86: Mark target gfn of emulated atomic instruction as dirty
     - [x86] KVM: SVM: Flush pages under kvm->lock to fix UAF in
       svm_register_enc_region()
     - tracing: Use .flush() call to wake up readers
     - drm/amdgpu/pm: Fix the error of pwm1_enable setting
     - [x86] drm/i915: Check before removing mm notifier
     - ALSA: hda/realtek - Fix headset Mic no show at resume back for Lenovo
       ALC897 platform
     - USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command
     - usb: gadget: ncm: Fix handling of zero block length packets
     - usb: port: Don't try to peer unused USB ports based on location
     - tty: serial: fsl_lpuart: avoid idle preamble pending if CTS is enabled
     - misc: lis3lv02d_i2c: Fix regulators getting en-/dis-abled twice on
       suspend/resume
     - mei: me: add arrow lake point S DID
     - mei: me: add arrow lake point H DID
     - vt: fix unicode buffer corruption when deleting characters
     - fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion
     - ALSA: hda/realtek - Add Headset Mic supported Acer NB platform
     - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook
     - tee: optee: Fix kernel panic caused by incorrect error handling
     - mm, vmscan: prevent infinite loop for costly GFP_NOIO |
       __GFP_RETRY_MAYFAIL allocations
     - iio: accel: adxl367: fix DEVID read after reset
     - iio: accel: adxl367: fix I2C FIFO data register
     - i2c: i801: Avoid potential double call to gpiod_remove_lookup_table
     - drm/amd/display: handle range offsets in VRR ranges
     - [x86] efistub: Call mixed mode boot services on the firmware's stack
     - net: tls: handle backlogging of crypto requests (CVE-2024-26584)
     - [x86] ASoC: amd: yc: Revert "Fix non-functional mic on Lenovo 21J2"
     - iommu: Avoid races around default domain allocations
     - clocksource/drivers/arm_global_timer: Fix maximum prescaler value
     - entry: Respect changes to system call number by trace_sys_enter()
     - minmax: add umin(a, b) and umax(a, b)
     - swiotlb: Fix alignment checks when both allocation and DMA masks are
       present
     - iommu/dma: Force swiotlb_max_mapping_size on an untrusted device
     - printk: Update @console_may_schedule in console_trylock_spinning()
     - irqchip/renesas-rzg2l: Implement restriction when writing ISCR register
     - irqchip/renesas-rzg2l: Flush posted write in irq_eoi()
     - irqchip/renesas-rzg2l: Add macro to retrieve TITSR register offset based
       on register's index
     - irqchip/renesas-rzg2l: Rename rzg2l_tint_eoi()
     - irqchip/renesas-rzg2l: Rename rzg2l_irq_eoi()
     - irqchip/renesas-rzg2l: Prevent spurious interrupts when setting trigger
       type
     - [x86] kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe
       address
     - [x86] fpu: Keep xfd_state in sync with MSR_IA32_XFD
     - pwm: img: fix pwm clock lookup
     - tty: serial: imx: Fix broken RS485
     - block: Fix page refcounts for unaligned buffers in __bio_release_pages()
     - blk-mq: release scheduler resource when request completes
     - vfio/pci: Disable auto-enable of exclusive INTx IRQ (CVE-2024-27437)
     - vfio: Introduce interface to flush virqfd inject workqueue
     - vfio/pci: Create persistent INTx handler (CVE-2024-26812)
     - vfio/platform: Create persistent IRQ handlers (CVE-2024-26813)
     - vfio/fsl-mc: Block calling interrupt handler without trigger
       (CVE-2024-26814)
     - [x86] coco: Export cc_vendor
     - [x86] coco: Get rid of accessor functions
     - [x86] Kconfig: Remove CONFIG_AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT
     - [x86] sev: Fix position dependent variable references in startup code
     - mm/migrate: set swap entry values of THP tail pages properly.
     - init: open /initrd.image with O_LARGEFILE
     - [x86] efistub: Add missing boot_params for mixed mode compat entry
     - btrfs: zoned: don't skip block groups with 100% zone unusable
     - btrfs: zoned: use zone aware sb location for scrub
     - wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes
     - wifi: iwlwifi: fw: don't always use FW dump trig
     - exec: Fix NOMMU linux_binprm::exec in transfer_args_to_stack()
     - hexagon: vmlinux.lds.S: handle attributes section
     - mmc: sdhci-omap: re-tuning is needed after a pm transition to support emmc
       HS200 mode
     - mmc: core: Initialize mmc_blk_ioc_data
     - mmc: core: Avoid negative index with array access
     - block: Do not force full zone append completion in req_bio_endio()
     - thermal: devfreq_cooling: Fix perf state when calculate dfc res_util
     - nouveau/dmem: handle kcalloc() allocation failure
     - net: ll_temac: platform_get_resource replaced by wrong function
     - drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed
     - [x86] drm/i915/bios: Tolerate devdata==NULL in
       intel_bios_encoder_supports_dp_dual_mode()
     - [x86] drm/i915/gt: Reset queue_priority_hint on parking
     - Bluetooth: hci_sync: Fix not checking error on hci_cmd_sync_cancel_sync
     - Revert "usb: phy: generic: Get the vbus supply"
     - usb: cdc-wdm: close race between read and workqueue
     - USB: UAS: return ENODEV when submit urbs fail with device not attached
     - usb: dwc3-am62: Rename private data
     - usb: dwc3-am62: fix module unload/reload behavior
     - ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs
       (CVE-2024-26654)
     - scsi: core: Fix unremoved procfs host directory regression
     - staging: vc04_services: changen strncpy() to strscpy_pad()
     - staging: vc04_services: fix information leak in create_component()
     - USB: core: Add hub_get() and hub_put() routines
     - USB: core: Fix deadlock in port "disable" sysfs attribute
     - scsi: sd: Fix TCG OPAL unlock on system resume
     - usb: dwc2: host: Fix remote wakeup from hibernation
     - usb: dwc2: host: Fix hibernation flow
     - usb: dwc2: host: Fix ISOC flow in DDMA mode
     - usb: dwc2: gadget: Fix exiting from clock gating
     - usb: dwc2: gadget: LPM flow fix
     - usb: udc: remove warning when queue disabled ep
     - usb: typec: Return size of buffer if pd_set operation succeeds
     - usb: typec: ucsi: Clear EVENT_PENDING under PPM lock
     - usb: typec: ucsi: Ack unsupported commands
     - usb: typec: ucsi_acpi: Refactor and fix DELL quirk
     - usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset
     - scsi: qla2xxx: Prevent command send on chip reset
     - scsi: qla2xxx: Fix N2N stuck connection
     - scsi: qla2xxx: Split FCE|EFT trace control
     - scsi: qla2xxx: Update manufacturer detail
     - scsi: qla2xxx: NVME|FCP prefer flag not being honored
     - scsi: qla2xxx: Fix command flush on cable pull
     - scsi: qla2xxx: Fix double free of fcport
     - scsi: qla2xxx: Change debug message during driver unload
     - scsi: qla2xxx: Delay I/O Abort on PCI error
     - [x86] cpu: Enable STIBP on AMD if Automatic IBRS is enabled
     - tls: fix use-after-free on failed backlog decryption (CVE-2024-26800)
     - scsi: lpfc: Correct size for cmdwqe/rspwqe for memset()
     - scsi: lpfc: Correct size for wqe for memset()
     - scsi: libsas: Add a helper sas_get_sas_addr_and_dev_type()
     - scsi: libsas: Fix disk not being scanned in after being removed
     - [x86] sev: Skip ROM range scans and validation for SEV-SNP guests
     - USB: core: Fix deadlock in usb_deauthorize_interface()
     - tools/resolve_btfids: fix build with musl libc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.85
     - scripts/bpf_doc: Use silent mode when exec make cmd
     - dma-buf: Fix NULL pointer dereference in sanitycheck()
     - nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet
     - mlxbf_gige: stop PHY during open() error paths
     - wifi: iwlwifi: mvm: rfi: fix potential response leaks
     - ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa()
     - [s390x] qeth: handle deferred cc1
     - tcp: properly terminate timers for kernel sockets
     - net: wwan: t7xx: Split 64bit accesses to fix alignment issues
     - [arm64] net: hns3: fix index limit to support all queue stats
     - [arm64] net: hns3: fix kernel crash when devlink reload during pf
       initialization
     - [arm64] net: hns3: mark unexcuted loopback test result as UNEXECUTED
     - tls: recv: process_rx_list shouldn't use an offset with kvec
     - tls: adjust recv return with async crypto and failed copy to userspace
     - tls: get psock ref after taking rxlock to avoid leak
     - mlxbf_gige: call request_irq() after NAPI initialized
     - bpf: Protect against int overflow for stack access size
     - cifs: Fix duplicate fscache cookie warnings
     - net: lan743x: Add set RFE read fifo threshold for PCI1x1x chips
     - inet: inet_defrag: prevent sk release while still in use
     - dm integrity: fix out-of-range warning
     - [x86] cpufeatures: Add new word for scattered features
     - [x86] perf/x86/amd/lbr: Use freeze based on availability
     - [arm64] KVM: arm64: Fix host-programmed guest events in nVHE
     - r8169: fix issue caused by buggy BIOS on certain boards with RTL8168d
     - [x86] cpufeatures: Add CPUID_LNX_5 to track recently added Linux-defined
       word
     - Revert "Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT"
     - [arm64] dts: qcom: sc7180-trogdor: mark bluetooth address as broken
     - Bluetooth: qca: fix device-address endianness
     - Bluetooth: add quirk for broken address properties
     - Bluetooth: hci_event: set the conn encrypted before conn establishes
     - Bluetooth: Fix TOCTOU in HCI debugfs implementation (CVE-2024-24857,
       CVE-2024-24858)
     - xen-netfront: Add missing skb_mark_for_recycle
     - net/rds: fix possible cp null dereference
     - net: usb: ax88179_178a: avoid the interface always configured as random
       address
     - vsock/virtio: fix packet delivery to tap device
     - Revert "x86/mm/ident_map: Use gbpages only where full GB page should be
       mapped."
     - netfilter: nf_tables: reject new basechain after table flag update
     - netfilter: nf_tables: flush pending destroy work before exit_net release
     - netfilter: nf_tables: Fix potential data-race in
       __nft_flowtable_type_get()
     - netfilter: validate user input for expected length
     - vboxsf: Avoid an spurious warning if load_nls_xxx() fails
     - bpf, sockmap: Prevent lock inversion deadlock in map delete elem
     - net/sched: act_skbmod: prevent kernel-infoleak
     - net/sched: fix lockdep splat in qdisc_tree_reduce_backlog()
     - net: stmmac: fix rx queue priority assignment
     - net: phy: micrel: lan8814: Fix when enabling/disabling 1-step timestamping
     - net: phy: micrel: Fix potential null pointer dereference
     - gro: fix ownership transfer
     - [x86] bugs: Fix the SRSO mitigation on Zen3/4
     - [x86] retpoline: Do the necessary fixup to the Zen3/4 srso return thunk
       for !SRSO
     - i40e: Fix VF MAC filter removal
     - erspan: make sure erspan_base_hdr is present in skb->head
     - ipv6: Fix infinite recursion in fib6_dump_done().
     - mlxbf_gige: stop interface during shutdown
     - r8169: skip DASH fw status checks when DASH is disabled
     - udp: do not accept non-tunnel GSO skbs landing in a tunnel
     - udp: do not transition UDP GRO fraglist partial checksums to unnecessary
     - udp: prevent local UDP tunnel packets from being GROed
     - i40e: fix i40e_count_filters() to count only active/new filters
     - i40e: fix vf may be used uninitialized in this function warning
     - drm/amd: Evict resources during PM ops prepare() callback
     - drm/amd: Add concept of running prepare_suspend() sequence for IP blocks
     - drm/amd: Flush GFXOFF requests in prepare stage
     - i40e: Store the irq number in i40e_q_vector
     - i40e: Remove _t suffix from enum type names
     - i40e: Enforce software interrupt during busy-poll exit
     - r8169: use spinlock to protect mac ocp register access
     - r8169: use spinlock to protect access to registers Config2 and Config5
     - r8169: prepare rtl_hw_aspm_clkreq_enable for usage in atomic context
     - tcp: Fix bind() regression for v6-only wildcard and v4(-mapped-v6)
       non-wildcard addresses.
     - drivers: net: convert to boolean for the mac_managed_pm flag
     - net: fec: Set mac_managed_pm during probe
     - [x86] KVM: SVM: enhance info printk's in SEV init
     - [x86] KVM: SVM: WARN, but continue, if misc_cg_set_capacity() fails
     - [x86] KVM: SVM: Use unsigned integers when dealing with ASIDs
     - [x86] KVM: SVM: Add support for allowing zero SEV ASIDs
     - fs/pipe: Fix lockdep false-positive in watchqueue pipe_write()
     - 9p: Fix read/write debug statements to report server reply
     - drivers/perf: riscv: Disable PERF_SAMPLE_BRANCH_* while not supported
     - drm/panfrost: fix power transition timeout warnings
     - ASoC: rt5682-sdw: fix locking sequence
     - [x86] ASoC: rt711-sdca: fix locking sequence
     - ASoC: rt711-sdw: fix locking sequence
     - ASoC: ops: Fix wraparound for mask in snd_soc_get_volsw
     - ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit
     - scsi: mylex: Fix sysfs buffer lengths
     - scsi: sd: Unregister device if device_add_disk() failed in sd_probe()
     - cifs: Fix caching to try to do open O_WRONLY as rdwr on server
     - ata: sata_mv: Fix PCI device ID table declaration compilation warning
     - nfsd: hold a lighter-weight client reference over CB_RECALL_ANY
     - [x86] retpoline: Add NOENDBR annotation to the SRSO dummy return thunk
     - ksmbd: don't send oplock break if rename fails
     - ksmbd: validate payload size in ipc response (CVE-2024-26811)
     - ksmbd: do not set SMB2_GLOBAL_CAP_ENCRYPTION for SMB 3.1.1
     - ALSA: hda/realtek - Fix inactive headset mic jack
     - ALSA: hda/realtek: Update Panasonic CF-SZ6 quirk to support headset with
       microphone
     - driver core: Introduce device_link_wait_removal()
     - of: dynamic: Synchronize of_changeset_destroy() with the devlink removals
     - [x86] mm/pat: fix VM_PAT handling in COW mappings
     - [x86] mce: Make sure to grab mce_sysfs_mutex in set_bank()
     - [x86] coco: Require seeding RNG with RDRAND on CoCo systems
     - [s390x] entry: align system call table on 8 bytes
     - smb3: retrying on failed server close
     - smb: client: fix potential UAF in cifs_debug_files_proc_show()
     - smb: client: fix potential UAF in cifs_stats_proc_write()
     - smb: client: fix potential UAF in cifs_stats_proc_show()
     - smb: client: fix potential UAF in smb2_is_valid_oplock_break()
     - smb: client: fix potential UAF in smb2_is_valid_lease_break()
     - smb: client: fix potential UAF in is_valid_oplock_break()
     - smb: client: fix potential UAF in smb2_is_network_name_deleted()
     - smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect()
     - mptcp: don't account accept() of non-MPC client as fallback to TCP
     - mm/secretmem: fix GUP-fast succeeding on secretmem folios
     - nvme: fix miss command type check
     - [x86] bugs: Change commas to semicolons in 'spectre_v2' sysfs file
     - [x86] syscall: Don't force use of indirect calls for system calls
     - [x86] Mitigate Native Branch History Injection vulnerability
       (CVE-2024-2201):
       + [x86] bhi: Add support for clearing branch history at syscall entry
       + [x86] bhi: Define SPEC_CTRL_BHI_DIS_S
       + [x86] bhi: Enumerate Branch History Injection (BHI) bug
       + [x86] bhi: Add BHI mitigation knob
       + [x86] bhi: Mitigate KVM by default
       + [x86] KVM: x86: Add BHI_NO
       + [x86] set SPECTRE_BHI_ON as default
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 20
   * Refresh "efi: Lock down the kernel if booted in secure boot mode" (context
     changes in 6.1.84)
   * [rt] Refresh "serial: 8250: implement write_atomic"
   * Refresh "x86: Make x32 syscall support conditional on a kernel parameter"
   * tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc
     (Closes: #1068770)
   * Revert "scsi: sd: usb_storage: uas: Access media prior to querying device
     properties" (Closes: #1068675)
   * Revert "scsi: core: Add struct for args to execution functions"
   * scsi: sd: usb_storage: uas: Access media prior to querying device properties
linux-signed-arm64 (6.1.82+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.82-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.77
     - asm-generic: make sparse happy with odd-sized put_unaligned_*()
     - [powerpc*] mm: Fix null-pointer dereference in pgtable_cache_add
     - [arm64] irq: set the correct node for VMAP stack
     - [arm64] drivers/perf: pmuv3: don't expose SW_INCR event in sysfs
     - [powerpc*] Fix build error due to is_valid_bugaddr()
     - [powerpc*] mm: Fix build failures due to arch_reserved_kernel_pages()
     - [x86] boot: Ignore NMIs during very early boot
     - [powerpc*] pmd_move_must_withdraw() is only needed for
       CONFIG_TRANSPARENT_HUGEPAGE
     - [powerpc*] lib: Validate size for vector operations
     - [x86*] mce: Mark fatal MCE's page as poison to avoid panic in the kdump
       kernel
     - perf/core: Fix narrow startup race when creating the perf nr_addr_filters
       sysfs file
     - debugobjects: Stop accessing objects after releasing hash bucket lock
     - regulator: core: Only increment use_count when enable_count changes
     - audit: Send netlink ACK before setting connection in auditd_set
     - ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop
     - PNP: ACPI: fix fortify warning
     - ACPI: extlog: fix NULL pointer dereference check
     - ACPI: NUMA: Fix the logic of getting the fake_pxm value
     - PM / devfreq: Synchronize devfreq_monitor_[start/stop]
     - ACPI: APEI: set memory failure flags as MF_ACTION_REQUIRED on synchronous
       events
     - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree
     - UBSAN: array-index-out-of-bounds in dtSplitRoot
     - jfs: fix slab-out-of-bounds Read in dtSearch
     - jfs: fix array-index-out-of-bounds in dbAdjTree
     - jfs: fix uaf in jfs_evict_inode
     - pstore/ram: Fix crash when setting number of cpus to an odd number
     - erofs: fix ztailpacking for subpage compressed blocks
     - [armhf] crypto: stm32/crc32 - fix parsing list of devices
     - afs: fix the usage of read_seqbegin_or_lock() in afs_lookup_volume_rcu()
     - afs: fix the usage of read_seqbegin_or_lock() in afs_find_server*()
     - rxrpc_find_service_conn_rcu: fix the usage of read_seqbegin_or_lock()
     - jfs: fix array-index-out-of-bounds in diNewExt
     - arch: consolidate arch_irq_work_raise prototypes
     - [s390x] vfio-ap: fix sysfs status attribute for AP queue devices
     - [s390x] ptrace: handle setting of fpc register correctly
     - [s390x] KVM: s390: fix setting of fpc register
     - SUNRPC: Fix a suspicious RCU usage warning (CVE-2023-52623)
     - ecryptfs: Reject casefold directory inodes
     - ext4: fix inconsistent between segment fstrim and full fstrim
     - ext4: unify the type of flexbg_size to unsigned int
     - ext4: remove unnecessary check from alloc_flex_gd()
     - ext4: avoid online resizing failures due to oversized flex bg
       (CVE-2023-52622)
     - wifi: rt2x00: restart beacon queue when hardware reset
     - wifi: rt2x00: correct wrong BBP register in RxDCOC calibration
     - [arm64] soc: xilinx: Fix for call trace due to the usage of
       smp_processor_id()
     - [arm64] soc: xilinx: fix unhandled SGI warning message
     - scsi: lpfc: Fix possible file string name overflow when updating firmware
     - PCI: Add no PM reset quirk for NVIDIA Spectrum devices
     - bonding: return -ENOMEM instead of BUG in alb_upper_dev_walk
     - net: usb: ax88179_178a: avoid two consecutive device resets
     - scsi: mpi3mr: Add PCI checks where SAS5116 diverges from SAS4116
     - scsi: arcmsr: Support new PCI device IDs 1883 and 1886
     - wifi: ath9k: Fix potential array-index-out-of-bounds read in
       ath9k_htc_txstatus()
     - wifi: ath11k: fix race due to setting ATH11K_FLAG_EXT_IRQ_ENABLED too
       early
     - bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers
       (CVE-2023-52621)
     - scsi: libfc: Don't schedule abort twice
     - scsi: libfc: Fix up timeout error in fc_fcp_rec_error()
     - bpf: Set uattr->batch.count as zero before batched update or deletion
     - net: phy: at803x: fix passing the wrong reference for config_intr
     - [arm64] scsi: hisi_sas: Set .phy_attached before notifing phyup event
       HISI_PHYE_PHY_UP_PM
     - ice: fix ICE_AQ_VSI_Q_OPT_RSS_* register values
     - net: atlantic: eliminate double free in error handling logic
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix mv88e6352_serdes_get_stats error
       path
     - block: prevent an integer overflow in bvec_try_merge_hw_page
     - md: Whenassemble the array, consult the superblock of the freshest device
     - [arm64] dts: qcom: msm8996: Fix 'in-ports' is a required property
     - [arm64] dts: qcom: msm8998: Fix 'out-ports' is a required property
     - ice: fix pre-shifted bit usage
     - [arm64] dts: amlogic: fix format for s4 uart node
     - wifi: rtl8xxxu: Add additional USB IDs for RTL8192EU devices
     - libbpf: Fix NULL pointer dereference in bpf_object__collect_prog_relos
     - wifi: rtlwifi: rtl8723{be,ae}: using calculate_bit_shift()
     - wifi: cfg80211: free beacon_ies when overridden from hidden BSS
     - Bluetooth: qca: Set both WIDEBAND_SPEECH and LE_STATES quirks for QCA2066
     - Bluetooth: hci_sync: fix BR/EDR wakeup bug
     - Bluetooth: L2CAP: Fix possible multiple reject send
     - net/smc: disable SEID on non-s390 archs where virtual ISM may be used
     - i40e: Fix VF disable behavior to block all traffic
     - net: dsa: qca8k: put MDIO bus OF node on qca8k_mdio_register() failure
     - f2fs: fix to check return value of f2fs_reserve_new_block()
     - ALSA: hda: Refer to correct stream index at loops
     - ASoC: doc: Fix undefined SND_SOC_DAPM_NOPM argument
     - fast_dput(): handle underflows gracefully
     - RDMA/IPoIB: Fix error code return in ipoib_mcast_join
     - [arm64,armhf] drm/panel-edp: Add override_edid_mode quirk for generic edp
     - drm/amd/display: Fix tiled display misalignment
     - f2fs: fix write pointers on zoned device after roll forward
     - [x86] ASoC: amd: Add new dmi entries for acp5x platform
     - drm/drm_file: fix use of uninitialized variable
     - drm/framebuffer: Fix use of uninitialized variable
     - drm/mipi-dsi: Fix detach call without attach
     - media: stk1160: Fixed high volume of stk1160_dbg messages
     - [arm64,armhf]  media: rockchip: rga: fix swizzling for RGB formats
     - PCI: add INTEL_HDA_ARL to pci_ids.h
     - [x86] ALSA: hda: Intel: add HDA_ARL PCI ID support
     - [arm64] media: rkisp1: Drop IRQF_SHARED
     - [arm64] media: rkisp1: Fix IRQ handler return values
     - [arm64] media: rkisp1: Store IRQ lines
     - [arm64] media: rkisp1: Fix IRQ disable race issue
     - hwmon: (nct6775) Fix fan speed set failure in automatic mode
     - f2fs: fix to tag gcing flag on page during block migration
     - [armhf] drm/exynos: Call drm_atomic_helper_shutdown() at shutdown/unbind
       time
     - IB/ipoib: Fix mcast list locking
     - media: ddbridge: fix an error code problem in ddb_probe
     - drm/amd/display: For prefetch mode > 0, extend prefetch if possible
     - [arm64] drm/msm/dpu: Ratelimit framedone timeout msgs
     - [arm64] drm/msm/dpu: fix writeback programming for YUV cases
     - drm/amdgpu: fix ftrace event amdgpu_bo_move always move on same heap
     - [x86] watchdog: it87_wdt: Keep WDTCTRL bit 3 unmodified for IT8784/IT8786
     - drm/amd/display: make flip_timestamp_in_us a 64-bit variable
     - drm/amdgpu: Fix ecc irq enable/disable unpaired
     - drm/amdgpu: Let KFD sync with VM fences
     - drm/amdgpu: Fix '*fw' from request_firmware() not released in
       'amdgpu_ucode_request()'
     - drm/amdgpu: Drop 'fence' check in 'to_amdgpu_amdkfd_fence()'
     - ALSA: hda/conexant: Fix headset auto detect fail in cx8070 and SN6140
     - leds: trigger: panic: Don't register panic notifier if creating the
       trigger failed
     - xen/gntdev: Fix the abuse of underlying struct page in DMA-buf import
     - PCI: Only override AMD USB controller if required
     - PCI: switchtec: Fix stdev_release() crash after surprise hot remove
     - perf cs-etm: Bump minimum OpenCSD version to ensure a bugfix is present
     - usb: hub: Replace hardcoded quirk value with BIT() macro
     - usb: hub: Add quirk to decrease IN-ep poll interval for Microchip USB491x
       hub
     - tty: allow TIOCSLCKTRMIOS with CAP_CHECKPOINT_RESTORE
     - fs/kernfs/dir: obey S_ISGID
     - PCI: Fix 64GT/s effective data rate calculation
     - PCI/AER: Decode Requester ID when no error info found
     - 9p: Fix initialisation of netfs_inode for 9p
     - libsubcmd: Fix memory leak in uniq()
     - virtio_net: Fix "‘%d’ directive writing between 1 and 11 bytes into a
       region of size 10" warnings
     - blk-mq: fix IO hang from sbitmap wakeup race
     - ceph: reinitialize mds feature bit even when session in open
     - ceph: fix deadlock or deadcode of misusing dget()
     - ceph: fix invalid pointer access if get_quota_realm return ERR_PTR
     - drm/amd/powerplay: Fix kzalloc parameter 'ATOM_Tonga_PPM_Table' in
       'get_platform_power_management_table()'
     - drm/amdgpu: Fix with right return code '-EIO' in
       'amdgpu_gmc_vram_checking()'
     - drm/amdgpu: Release 'adev->pm.fw' before return in
       'amdgpu_device_need_post()'
     - perf: Fix the nr_addr_filters fix
     - wifi: cfg80211: fix RCU dereference in __cfg80211_bss_update
     - drm: using mul_u32_u32() requires linux/math64.h
     - scsi: isci: Fix an error code problem in isci_io_request_build()
     - [armhf] regulator: ti-abb: don't use devm_platform_ioremap_resource_byname
       for shared interrupt register
     - scsi: core: Move scsi_host_busy() out of host lock for waking up EH
       handler
     - HID: hidraw: fix a problem of memory leak in hidraw_release()
     - ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()
     - ipv4: raw: add drop reasons
     - ipmr: fix kernel panic when forwarding mcast packets
     - tcp: add sanity checks to rx zerocopy
     - ixgbe: Refactor returning internal error codes
     - ixgbe: Refactor overtemp event handling
     - ixgbe: Fix an error handling path in ixgbe_read_iosf_sb_reg_x550()
     - ipv6: Ensure natural alignment of const ipv6 loopback and router addresses
     - llc: call sock_orphan() at release time
     - bridge: mcast: fix disabled snooping after long uptime
     - netfilter: conntrack: correct window scaling with retransmitted SYN
     - netfilter: nf_tables: restrict tunnel object to NFPROTO_NETDEV
     - netfilter: nf_log: replace BUG_ON by WARN_ON_ONCE when putting logger
     - netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom
       expectations
     - net: ipv4: fix a memleak in ip_setup_cork
     - af_unix: fix lockdep positive in sk_diag_dump_icons()
     - net: sysfs: Fix /sys/class/net/<iface> path
     - [arm64] irq: set the correct node for shadow call stack
     - Revert "drm/amd/display: Disable PSR-SU on Parade 0803 TCON again"
     - [arm64] drm/msm/dsi: Enable runtime PM
     - gve: Fix use-after-free vulnerability
     - bonding: remove print in bond_verify_device_path
     - drm/amdgpu: Fix missing error code in 'gmc_v6/7/8/9_0_hw_init()'
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.78
     - ext4: regenerate buddy after block freeing failed if under fc replay
     - [arm64] dmaengine: ti: k3-udma: Report short packet errors
     - [arm64] dmaengine: fsl-qdma: Fix a memory leak related to the status queue
       DMA
     - [arm64] dmaengine: fsl-qdma: Fix a memory leak related to the queue
       command DMA
     - [arm64] phy: renesas: rcar-gen3-usb2: Fix returning wrong error code
     - dmaengine: fix is_slave_direction() return false when DMA_DEV_TO_DEV
     - [armhf] phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP
     - cifs: failure to add channel on iface should bump up weight
     - [arm64] drm/msms/dp: fixed link clock divider bits be over written in BPC
       unknown case
     - [arm64] drm/msm/dp: return correct Colorimetry for
       DP_TEST_DYNAMIC_RANGE_CEA case
     - [arm64] drm/msm/dpu: check for valid hw_pp in
       dpu_encoder_helper_phys_cleanup
     - net: stmmac: xgmac: fix handling of DPP safety error for DMA channels
     - wifi: mac80211: fix waiting for beacons logic
     - netdevsim: avoid potential loop in nsim_dev_trap_report_work()
     - net: atlantic: Fix DMA mapping for PTP hwts ring
     - tunnels: fix out of bounds access when building IPv6 PMTU error
     - atm: idt77252: fix a memleak in open_card_ubr0
     - [armhf] hwmon: (aspeed-pwm-tacho) mutex for tach reading
     - [x86] hwmon: (coretemp) Fix out-of-bounds memory access
     - [x86] hwmon: (coretemp) Fix bogus core_id to attr name mapping
     - inet: read sk->sk_family once in inet_recv_error()
     - [x86] drm/i915/gvt: Fix uninitialized variable in handle_mmio()
     - rxrpc: Fix response to PING RESPONSE ACKs to a dead call
     - tipc: Check the bearer type before calling tipc_udp_nl_bearer_add()
     - af_unix: Call kfree_skb() for dead unix_(sk)->oob_skb in GC.
     - ppp_async: limit MRU to 64K
     - selftests: cmsg_ipv6: repeat the exact packet
     - netfilter: nft_compat: narrow down revision to unsigned 8-bits
     - netfilter: nft_compat: reject unused compat flag
     - netfilter: nft_compat: restrict match/target protocol to u16
     - drm/amd/display: Implement bounds check for stream encoder creation in
       DCN301
     - netfilter: nft_ct: reject direction for ct id
     - netfilter: nft_set_pipapo: store index in scratch maps
     - netfilter: nft_set_pipapo: add helper to release pcpu scratch area
     - netfilter: nft_set_pipapo: remove scratch_aligned pointer
     - fs/ntfs3: Fix an NULL dereference bug
     - scsi: core: Move scsi_host_busy() out of host lock if it is for
       per-command
     - blk-iocost: Fix an UBSAN shift-out-of-bounds warning
     - fs: dlm: don't put dlm_local_addrs on heap (Closes: #1063338)
     - mtd: parsers: ofpart: add workaround for #size-cells 0
     - ALSA: usb-audio: Add delay quirk for MOTU M Series 2nd revision
     - ALSA: usb-audio: Add a quirk for Yamaha YIT-W12TX transmitter
     - ALSA: usb-audio: add quirk for RODE NT-USB+
     - USB: serial: qcserial: add new usb-id for Dell Wireless DW5826e
     - USB: serial: option: add Fibocom FM101-GL variant
     - USB: serial: cp210x: add ID for IMST iM871A-USB
     - [arm64,armhf] usb: dwc3: host: Set XHCI_SG_TRB_CACHE_SIZE_QUIRK
     - [arm64,armhf] usb: host: xhci-plat: Add support for
       XHCI_SG_TRB_CACHE_SIZE_QUIRK
     - hrtimer: Report offline hrtimer enqueue
     - Input: i8042 - fix strange behavior of touchpad on Clevo NS70PU
     - Input: atkbd - skip ATKBD_CMD_SETLEDS when skipping ATKBD_CMD_GETID
       (Closes: #1061521)
     - io_uring/net: fix sr->len for IORING_OP_RECV with MSG_WAITALL and buffers
     - Revert "ASoC: amd: Add new dmi entries for acp5x platform"
     - vhost: use kzalloc() instead of kmalloc() followed by memset()
       (CVE-2024-0340)
     - RDMA/irdma: Fix support for 64k pages
     - f2fs: add helper to check compression level (Closes: #1063422)
     - block: treat poll queue enter similarly to timeouts
     - clocksource: Skip watchdog check for large watchdog intervals
     - net: stmmac: xgmac: use #define for string constants
     - ALSA: usb-audio: Sort quirk table entries
     - net: stmmac: xgmac: fix a typo of register name in DPP safety handling
     - netfilter: nft_set_rbtree: skip end interval element from gc
       (CVE-2024-26581)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.79
     - work around gcc bugs with 'asm goto' with outputs
     - update workarounds for gcc "asm goto" issue
     - btrfs: add and use helper to check if block group is used
     - btrfs: do not delete unused block group if it may be used soon
     - btrfs: forbid creating subvol qgroups
     - btrfs: do not ASSERT() if the newly created subvolume already got read
       (CVE-2024-23850)
     - btrfs: forbid deleting live subvol qgroup
     - btrfs: send: return EOPNOTSUPP on unknown flags
     - btrfs: don't reserve space for checksums when writing to nocow files
     - btrfs: reject encoded write if inode has nodatasum flag set
     - btrfs: don't drop extent_map for free space inode on write error
     - driver core: Fix device_link_flag_is_sync_state_only()
     - wifi: iwlwifi: Fix some error codes
     - wifi: iwlwifi: uninitialized variable in iwl_acpi_get_ppag_table()
     - of: property: Improve finding the supplier of a remote-endpoint property
     - net: openvswitch: limit the number of recursions from action sets
       (CVE-2024-1151)
     - lan966x: Fix crash when adding interface under a lag
     - tls/sw: Use splice_eof() to flush
     - tls: extract context alloc/initialization out of tls_set_sw_offload
     - net: tls: factor out tls_*crypt_async_wait()
     - tls: fix race between async notify and socket close (CVE-2024-26583)
     - net: tls: fix use-after-free with partial reads and async decrypt
       (CVE-2024-26582)
     - net: tls: fix returned read length with async decrypt
     - ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work()
     - net: sysfs: Fix /sys/class/net/<iface> path for statistics
     - nouveau/svm: fix kvcalloc() argument order
     - [mips*] Add 'memory' clobber to csum_ipv6_magic() inline assembler
     - i40e: Do not allow untrusted VF to remove administratively set MAC
     - i40e: Fix waiting for queues of all VSIs to be disabled
     - tracing/trigger: Fix to return error if failed to alloc snapshot
     - mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again
     - scsi: storvsc: Fix ring buffer size calculation
     - dm-crypt, dm-verity: disable tasklets
     - [x86] ASoC: amd: yc: Add DMI quirk for MSI Bravo 15 C7VF
     - ALSA: hda/realtek: Fix the external mic not being recognised for Acer
       Swift 1 SF114-32
     - ALSA: hda/realtek: Enable Mute LED on HP Laptop 14-fq0xxx
     - HID: i2c-hid-of: fix NULL-deref on failed power up
     - HID: wacom: generic: Avoid reporting a serial of '0' to userspace
     - HID: wacom: Do not register input devices until after hid_hw_start
     - iio: hid-sensor-als: Return 0 for HID_USAGE_SENSOR_TIME_TIMESTAMP
     - usb: ucsi: Add missing ppm_lock
     - usb: ulpi: Fix debugfs directory leak
     - usb: ucsi_acpi: Fix command completion handling
     - USB: hub: check for alternate port before enabling A_ALT_HNP_SUPPORT
     - usb: f_mass_storage: forbid async queue when shutdown happen
     - usb: dwc3: gadget: Fix NULL pointer dereference in dwc3_gadget_suspend
     - driver core: fw_devlink: Improve detection of overlapping cycles
     - cifs: fix underflow in parse_server_interfaces()
     - i2c: qcom-geni: Correct I2C TRE sequence
     - irqchip/loongson-eiointc: Use correct struct type in
       eiointc_domain_alloc()
     - i2c: pasemi: split driver into two separate modules
     - i2c: i801: Fix block process call transactions (CVE-2024-26593)
     - modpost: trim leading spaces when processing source files list
     - mptcp: get rid of msk->subflow
     - mptcp: fix data re-injection from stale subflow
     - mptcp: drop the push_pending field
     - mptcp: check addrs list in userspace_pm_get_local_id
     - media: Revert "media: rkisp1: Drop IRQF_SHARED"
     - scsi: Revert "scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock"
     - Revert "drm/amd: flush any delayed gfxoff on suspend entry"
     - drm/virtio: Set segment size for virtio_gpu device
     - lsm: fix the logic in security_inode_getsecctx()
     - firewire: core: correct documentation of fw_csr_string() kernel API
     - ALSA: hda/realtek: Apply headset jack quirk for non-bass alc287 thinkpads
     - kbuild: Fix changing ELF file type for output of gen_btf for big endian
     - nfc: nci: free rx_data_reassembly skb on NCI device cleanup
     - net: hsr: remove WARN_ONCE() in send_hsr_supervision_frame()
     - net: stmmac: do not clear TBS enable bit on link up/down
     - xen-netback: properly sync TX responses
     - modpost: propagate W=1 build option to modpost
     - modpost: Don't let "driver"s reference .exit.*
     - linux/init: remove __memexit* annotations
     - modpost: Include '.text.*' in TEXT_SECTIONS
     - modpost: Add '.ltext' and '.ltext.*' to TEXT_SECTIONS
     - ALSA: hda/realtek: Enable headset mic on Vaio VJFE-ADL
     - ASoC: codecs: wcd938x: handle deferred probe
     - ALSA: hda/cs8409: Suppress vmaster control for Dolphin models
     - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power
     - [arm*] binder: signal epoll threads of self-work (CVE-2024-26606)
     - misc: fastrpc: Mark all sessions as invalid in cb_remove
     - ext4: fix double-free of blocks due to wrong extents moved_len
     - ext4: avoid bb_free and bb_fragments inconsistency in mb_free_blocks()
     - tracing: Fix wasted memory in saved_cmdlines logic
     - staging: iio: ad5933: fix type mismatch regression
     - iio: magnetometer: rm3100: add boundary check for the value read from
       RM3100_REG_TMRC
     - iio: core: fix memleak in iio_device_register_sysfs
     - iio: commom: st_sensors: ensure proper DMA alignment
     - iio: accel: bma400: Fix a compilation problem
     - iio: adc: ad_sigma_delta: ensure proper DMA alignment
     - iio: imu: adis: ensure proper DMA alignment
     - iio: imu: bno055: serdev requires REGMAP
     - media: rc: bpf attach/detach requires write permission
     - ksmbd: free aux buffer if ksmbd_iov_pin_rsp_read fails
     - xfrm: Remove inner/outer modes from output path
     - xfrm: Remove inner/outer modes from input path
     - [arm64] drm/msm: Wire up tlb ops
     - drm/prime: Support page array >= 4GB
     - drm/amd/display: Increase frame-larger-than for all display_mode_vba files
     - drm/amd/display: Preserve original aspect ratio in create stream
     - hv_netvsc: Fix race condition between netvsc_probe and netvsc_remove
     - ring-buffer: Clean ring_buffer_poll_wait() error return
     - nfp: flower: fix hardware offload for the transfer layer port
     - [powerpc*] 64: Set task pt_regs->link to the LR value on scv entry
     - [powerpc*] cputable: Add missing PPC_FEATURE_BOOKE on PPC64 Book-E
     - [powerpc*] pseries: fix accuracy of stolen time
     - [x86] fpu: Stop relying on userspace for info to fault in xsave buffer
       (CVE-2024-26603)
     - [x86] KVM: x86/pmu: Fix type length error when reading pmu->fixed_ctr_ctrl
     - [x86] mm/ident_map: Use gbpages only where full GB page should be mapped.
     - io_uring/net: fix multishot accept overflow handling
     - mmc: slot-gpio: Allow non-sleeping GPIO ro
     - ALSA: hda/realtek: fix mute/micmute LED For HP mt645
     - ALSA: hda/conexant: Add quirk for SWS JS201D
     - nilfs2: fix data corruption in dsync block recovery for small block sizes
     - nilfs2: fix hang in nilfs_lookup_dirty_data_buffers()
     - crypto: ccp - Fix null pointer dereference in
       __sev_platform_shutdown_locked
     - nfp: use correct macro for LengthSelect in BAR config
     - nfp: flower: prevent re-adding mac index for bonded port
     - wifi: cfg80211: fix wiphy delayed work queueing
     - wifi: mac80211: reload info pointer in ieee80211_tx_dequeue()
     - irqchip/irq-brcmstb-l2: Add write memory barrier before exit
     - irqchip/gic-v3-its: Fix GICv4.1 VPE affinity update
     - zonefs: Improve error handling
     - mmc: sdhci-pci-o2micro: Fix a warm reboot issue that disk can't be
       detected by BIOS (Closes: #1056056)
     - [x86] ASoC: amd: yc: Add DMI quirk for Lenovo Ideapad Pro 5 16ARP8
     - fs: relax mount_setattr() permission checks
     - net: ethernet: ti: cpsw: enable mac_managed_pm to fix mdio
     - [s390x] qeth: Fix potential loss of L3-IP@ in case of network issues
     - net: ethernet: ti: cpsw_new: enable mac_managed_pm to fix mdio
     - hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed
     - ceph: prevent use-after-free in encode_cap_msg()
     - fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super
       (CVE-2024-0841)
     - mm: hugetlb pages should not be reserved by shmat() if SHM_NORESERVE
     - of: property: fix typo in io-channels
     - can: netlink: Fix TDCO calculation using the old data bittiming
     - can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock
     - can: j1939: Fix UAF in j1939_sk_match_filter during
       setsockopt(SO_J1939_FILTER)
     - pmdomain: core: Move the unused cleanup to a _sync initcall
     - fs/proc: do_task_stat: move thread_group_cputime_adjusted() outside of
       lock_task_sighand()
     - tracing: Inform kmemleak of saved_cmdlines allocation
     - xfrm: Use xfrm_state selector for BEET input
     - xfrm: Silence warnings triggerable by bad packets
     - tls: fix NULL deref on tls_sw_splice_eof() with empty record
     - md: bypass block throttle for superblock update
     - wifi: mwifiex: Support SD8978 chipset
     - wifi: mwifiex: add extra delay for firmware ready
     - bus: moxtet: Add spi device table
     - [arm64] dts: qcom: msm8916: Enable blsp_dma by default
     - [arm64] dts: qcom: msm8916: Make blsp_dma controlled-remotely
     - [arm64] dts: qcom: sdm845: fix USB SS wakeup
     - [arm64] dts: qcom: sm8150: fix USB SS wakeup
     - wifi: mwifiex: fix uninitialized firmware_stat
     - crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init
     - block: fix partial zone append completion handling in req_bio_endio()
     - netfilter: ipset: fix performance regression in swap operation
     - netfilter: ipset: Missing gc cancellations fixed
     - nfsd: fix RELEASE_LOCKOWNER
     - nfsd: don't take fi_lock in nfsd_break_deleg_cb()
     - hrtimer: Ignore slack time for RT tasks in schedule_hrtimeout_range()
     - RDMA/irdma: Ensure iWarp QP queue memory is OS paged aligned
     - smb: client: fix potential OOBs in smb2_parse_contexts() (CVE-2023-52434)
     - smb: client: fix parsing of SMB3.1.1 POSIX create context
     - net: prevent mss overflow in skb_segment() (CVE-2023-52435)
     - bpf: Add struct for bin_args arg in bpf_bprintf_prepare
     - bpf: Do cleanup in bpf_bprintf_cleanup only when needed
     - bpf: Remove trace_printk_lock
     - userfaultfd: fix mmap_changing checking in mfill_atomic_hugetlb
     - dmaengine: ioat: Free up __cleanup() name
     - apparmor: Free up __cleanup() name
     - locking: Introduce __cleanup() based infrastructure
     - kbuild: Drop -Wdeclaration-after-statement
     - sched/membarrier: reduce the ability to hammer on sys_membarrier
       (CVE-2024-26602)
     - of: property: Add in-ports/out-ports support to of_graph_get_port_parent()
     - nilfs2: fix potential bug in end_buffer_async_write
     - nilfs2: replace WARN_ONs for invalid DAT metadata block requests
     - dm: limit the number of targets and parameter size area (CVE-2024-23851,
       CVE-2023-52429)
     - [arm64:]Subscribe Microsoft Azure Cobalt 100 to ARM Neoverse N2 errata
     - mlxsw: spectrum_acl_tcam: Fix stack corruption (CVE-2024-26586)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.80
     - net/sched: Retire CBQ qdisc
     - net/sched: Retire ATM qdisc
     - net/sched: Retire dsmark qdisc
     - sched/rt: Disallow writing invalid values to sched_rt_period_us
     - sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset
     - scsi: target: core: Add TMF to tmr_list handling
     - cifs: open_cached_dir should not rely on primary channel
     - wifi: cfg80211: fix missing interfaces when dumping
     - wifi: mac80211: fix race condition on enabling fast-xmit
     - fbdev: savage: Error out if pixclock equals zero
     - fbdev: sis: Error out if pixclock equals zero
     - block: Fix WARNING in _copy_from_iter
     - smb: Work around Clang __bdos() type confusion
     - cifs: translate network errors on send to -ECONNABORTED
     - ahci: asm1166: correct count of reported ports
     - aoe: avoid potential deadlock at set_capacity
     - ahci: add 43-bit DMA address quirk for ASMedia ASM1061 controllers
     - [mips*] reserve exception vector space ONLY ONCE
     - [x86] platform/x86: touchscreen_dmi: Add info for the TECLAST X16 Plus
       tablet
     - ext4: avoid dividing by 0 in mb_update_avg_fragment_size() when block
       bitmap corrupt
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_try_best_found()
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_find_by_goal()
     - Input: goodix - accept ACPI resources with gpio_count == 3 && gpio_int_idx
       == 0
     - [armhf] dmaengine: ti: edma: Add some null pointer checks to the
       edma_probe
     - [arm64] regulator: pwm-regulator: Add validity checks in continuous
       .get_voltage
     - nvmet-tcp: fix nvme tcp ida memory leak
     - usb: ucsi_acpi: Quirk to ack a connector change ack cmd
     - ALSA: usb-audio: Check presence of valid altsetting control
     - [armhf] ASoC: sunxi: sun4i-spdif: Add support for Allwinner H616
     - Input: xpad - add Lenovo Legion Go controllers
     - netfilter: conntrack: check SCTP_CID_SHUTDOWN_ACK for vtag setting in
       sctp_new
     - drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz
     - [x86] ASoC: wm_adsp: Don't overwrite fwf_name with the default
     - ALSA: usb-audio: Ignore clock selector errors for single connection
     - nvme-fc: do not wait in vain when unloading module
     - nvmet-fcloop: swap the list_add_tail arguments
     - nvmet-fc: release reference on target port
     - nvmet-fc: defer cleanup using RCU properly
     - nvmet-fc: hold reference on hostport match
     - nvmet-fc: abort command when there is no binding
     - nvmet-fc: avoid deadlock on delete association path
     - nvmet-fc: take ref count on tgtport before delete assoc
     - smb: client: increase number of PDUs allowed in a compound request
     - ext4: correct the hole length returned by ext4_map_blocks()
     - Input: i8042 - add Fujitsu Lifebook U728 to i8042 quirk table
     - wifi: mac80211: set station RX-NSS on reconfig
     - wifi: mac80211: adding missing drv_mgd_complete_tx() call
     - efi: runtime: Fix potential overflow of soft-reserved region size
     - efi: Don't add memblocks for soft-reserved memory
     - [x86] hwmon: (coretemp) Enlarge per package core count limit
     - scsi: lpfc: Use unsigned type for num_sge
     - scsi: ufs: core: Remove the ufshcd_release() in
       ufshcd_err_handling_prepare()
     - firewire: core: send bus reset promptly on gap count error
     - drm/amdgpu: skip to program GFXDEC registers for suspend abort
     - drm/amdgpu: reset gpu for s3 suspend abort case
     - smb: client: set correct d_type for reparse points under DFS mounts
     - virtio-blk: Ensure no requests in virtqueues before deleting vqs.
     - smb3: clarify mount warning
     - [amd64] IB/hfi1: Fix sdma.h tx->num_descs off-by-one error
     - drm/ttm: Fix an invalid freeing on already freed page in error path
     - [s390x] cio: fix invalid -EBUSY on ccw_device_start
     - ata: libata-core: Do not try to set sleeping devices to standby
     - dm-crypt: recheck the integrity tag after a failure
     - dm-integrity: recheck the integrity tag after a failure
     - dm-crypt: don't modify the data when using authenticated encryption
     - dm-verity: recheck the hash after a failure
     - cxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS
       window
     - scsi: target: pscsi: Fix bio_put() for error case
     - scsi: core: Consult supported VPD page list prior to fetching page
     - mm/swap: fix race when skipping swapcache
     - mm: memcontrol: clarify swapaccount=0 deprecation warning
     - [x86] platform/x86: intel-vbtn: Stop calling "VBDL" from notify_handler
     - [x86] platform/x86: touchscreen_dmi: Allow partial (prefix) matches for
       ACPI names
     - cachefiles: fix memory leak in cachefiles_add_cache()
     - md: Fix missing release of 'active_io' for flush
     - [arm64] KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler
     - [arm64] KVM: arm64: vgic-its: Test for valid IRQ in
       its_sync_lpi_pending_table()
     - gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp()
     - crypto: virtio/akcipher - Fix stack overflow on memcpy
     - irqchip/gic-v3-its: Do not assume vPE tables are preallocated
     - irqchip/sifive-plic: Enable interrupt if needed before EOI
     - PCI/MSI: Prevent MSI hardware interrupt number truncation
     - l2tp: pass correct message length to ip6_append_data
     - [x86] returnthunk: Allow different return thunks
     - [x86] Revert "x86/alternative: Make custom return thunk unconditional"
     - [x86] alternative: Make custom return thunk unconditional
     - dm-integrity, dm-verity: reduce stack usage for recheck
     - erofs: fix refcount on the metabuf used for inode lookup
     - serial: amba-pl011: Fix DMA transmission in RS485 mode
     - [arm64,armhf] usb: dwc3: gadget: Don't disconnect if not started
     - usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs
     - usb: roles: fix NULL pointer issue when put module's reference
     - usb: roles: don't get/set_role() when usb_role_switch is unregistered
     - mptcp: make userspace_pm_append_new_local_addr static
     - mptcp: add needs_id for userspace appending addr
     - mptcp: fix lockless access in subflow ULP diag
     - Revert "drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz"
     - [amd64] IB/hfi1: Fix a memleak in init_credit_return
     - RDMA/bnxt_re: Return error for SRQ resize
     - RDMA/irdma: Fix KASAN issue with tasklet
     - RDMA/irdma: Validate max_send_wr and max_recv_wr
     - RDMA/irdma: Set the CQ read threshold for GEN 1
     - RDMA/irdma: Add AE for too many RNRS
     - RDMA/srpt: Support specifying the srpt_service_guid parameter
     - iommufd/iova_bitmap: Bounds check mapped::pages access
     - iommufd/iova_bitmap: Switch iova_bitmap::bitmap to an u8 array
     - iommufd/iova_bitmap: Consider page offset for the pages to be pinned
     - RDMA/qedr: Fix qedr_create_user_qp error flow
     - [arm64] dts: rockchip: set num-cs property for spi on px30
     - RDMA/srpt: fix function pointer cast warnings
     - bpf, scripts: Correct GPL license name
     - scsi: smartpqi: Fix disable_managed_interrupts
     - net: bridge: switchdev: Skip MDB replays of deferred events on offload
     - net: bridge: switchdev: Ensure deferred event delivery on unoffload
     - dccp/tcp: Unhash sk from ehash for tb2 alloc failure after
       check_estalblished().
     - nouveau: fix function cast warnings
     - [x86] numa: Fix the address overlap check in numa_fill_memblks()
     - [x86] numa: Fix the sort compare func used in numa_fill_memblks()
     - net: stmmac: Fix incorrect dereference in interrupt handlers
     - ipv4: properly combine dev_base_seq and ipv4.dev_addr_genid
     - ipv6: properly combine dev_base_seq and ipv6.dev_addr_genid
     - ata: ahci_ceva: fix error handling for Xilinx GT PHY support
     - bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel
     - afs: Increase buffer size in afs_update_volume_status()
     - ipv6: sr: fix possible use-after-free and null-ptr-deref
     - net: dev: Convert sa_data to flexible array in struct sockaddr
     - [arm64] sme: Restore SME registers on exit from suspend
     - [x86] platform/x86: thinkpad_acpi: Only update profile if successfully
       converted
     - [s390x] use the correct count for __iowrite64_copy()
     - bpf, sockmap: Fix NULL pointer dereference in
       sk_psock_verdict_data_ready()
     - tls: break out of main loop when PEEK gets a non-data record
     - tls: stop recv() if initial process_rx_list gave us non-DATA
     - tls: don't skip over different type records from the rx_list
     - netfilter: nf_tables: set dormant flag on hook register failure
     - netfilter: flowtable: simplify route logic
     - netfilter: nft_flow_offload: reset dst in route object after setting up
       flow
     - netfilter: nft_flow_offload: release dst in case direct xmit path is used
     - netfilter: nf_tables: rename function to destroy hook list
     - netfilter: nf_tables: register hooks last when adding new chain/flowtable
     - netfilter: nf_tables: use kzalloc for hook allocation
     - net: mctp: put sock on tag allocation failure
     - Fix write to cloned skb in ipv6_hop_ioam()
     - net: phy: realtek: Fix rtl8211f_config_init() for RTL8211F(D)(I)-VD-CG PHY
     - drm/syncobj: call drm_syncobj_fence_add_wait when WAIT_AVAILABLE flag is
       set
     - drm/amd/display: Fix memory leak in dm_sw_fini()
     - [arm64,armhf] i2c: imx: when being a target, mark the last read as
       processed
     - erofs: simplify compression configuration parser
     - erofs: fix inconsistent per-file compression format (CVE-2024-26590)
     - fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio
     - mm: zswap: fix missing folio cleanup in writeback race path
     - mptcp: userspace pm send RM_ADDR for ID 0
     - mptcp: add needs_id for netlink appending addr
     - ata: ahci: add identifiers for ASM2116 series adapters
     - ahci: Extend ASM1061 43-bit DMA address quirk to other ASM106x parts
     - arp: Prevent overflow in arp_req_get().
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.81
     - netfilter: nf_tables: disallow timeout for anonymous sets (CVE-2023-52620)
     - [arm64] drm/meson: fix unbind path if HDMI fails to bind
     - [arm64] drm/meson: Don't remove bridges which are created by other drivers
     - scsi: core: Add struct for args to execution functions
     - scsi: sd: usb_storage: uas: Access media prior to querying device
       properties
     - af_unix: Fix task hung while purging oob_skb in GC.
     - of: overlay: Reorder struct fragment fields kerneldoc
     - usb: gadget: Properly configure the device for remote wakeup
     - Input: xpad - add constants for GIP interface numbers
     - [arm64] iommu/arm-smmu-v3: Acknowledge pri/event queue overflow if any
     - [arm64] iommu/arm-smmu-qcom: Limit the SMR groups to 128
     - RDMA/core: Fix multiple -Warray-bounds warnings
     - mm: huge_memory: don't force huge page alignment on 32 bit
       (CVE-2024-26621) (Closes: #1024149)
     - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter
     - netlink: add nla be16/32 types to minlen array
     - net: ip_tunnel: prevent perpetual headroom growth
     - net: mctp: take ownership of skb in mctp_local_output
     - tun: Fix xdp_rxq_info's queue_index when detaching
     - cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call
       back
     - net: veth: clear GRO when clearing XDP even when down
     - ipv6: fix potential "struct net" leak in inet6_rtm_getaddr()
     - lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is
       detected
     - veth: try harder when allocating queue memory
     - net: usb: dm9601: fix wrong return value in dm9601_mdio_read
     - net: lan78xx: fix "softirq work is pending" error
     - uapi: in6: replace temporary label with rfc9486
     - stmmac: Clear variable when destroying workqueue
     - Bluetooth: hci_sync: Check the correct flag before starting a scan
     - Bluetooth: Avoid potential use-after-free in hci_error_reset
     - Bluetooth: hci_sync: Fix accept_list when attempting to suspend
     - Bluetooth: hci_event: Fix wrongly recorded wakeup BD_ADDR
     - Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST
     - Bluetooth: Enforce validation on max value of connection interval
     - Bluetooth: qca: Fix wrong event type for patch config command
     - Bluetooth: hci_qca: mark OF related data as maybe unused
     - Bluetooth: hci_qca: Add support for QTI Bluetooth chip wcn6855
     - Bluetooth: btqca: use le32_to_cpu for ver.soc_id
     - Bluetooth: btqca: Add WCN3988 support
     - Bluetooth: qca: use switch case for soc type behavior
     - Bluetooth: qca: add support for WCN7850
     - Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT
     - netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()
     - netfilter: let reset rules clean out conntrack entries
     - netfilter: bridge: confirm multicast packets before passing them up the
       stack
     - rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back
     - igb: extend PTP timestamp adjustments to i211
     - net: hsr: Use correct offset for HSR TLV values in supervisory HSR frames
     - tls: decrement decrypt_pending if no async completion will be called
     - tls: fix peeking with sync+async decryption
     - efi/capsule-loader: fix incorrect allocation size
     - ALSA: Drop leftover snd-rtctimer stuff from Makefile
     - [arm64,armhf] drm/tegra: Remove existing framebuffer only if we support
       display
     - fbcon: always restore the old font data in fbcon_do_set_font()
     - afs: Fix endless loop in directory parsing
     - of: property: fw_devlink: Fix stupid bug in remote-endpoint parsing
     - tomoyo: fix UAF write bug in tomoyo_write_control() (CVE-2024-26622)
     - ALSA: firewire-lib: fix to check cycle continuity
     - ALSA: hda/realtek: Enable Mute LED on HP 840 G8 (MB 8AB8)
     - ALSA: hda/realtek: fix mute/micmute LED For HP mt440
     - landlock: Fix asymmetric private inodes referring
     - gtp: fix use-after-free and null-ptr-deref in gtp_newlink()
     - wifi: nl80211: reject iftype change with mesh ID change
     - btrfs: fix double free of anonymous device after snapshot creation failure
     - btrfs: dev-replace: properly validate device names
     - btrfs: send: don't issue unnecessary zero writes for trailing hole
     - Revert "drm/amd/pm: resolve reboot exception for si oland"
     - drm/buddy: fix range bias
     - [arm64] dmaengine: fsl-qdma: fix SoC may hang on 16 byte unaligned read
     - [arm64] crypto: arm64/neonbs - fix out-of-bounds access on short input
     - [arm64] dmaengine: fsl-qdma: init irq after reg initialization
     - [arm64,armhf] mmc: mmci: stm32: fix DMA API overlapping mappings warning
     - mmc: core: Fix eMMC initialization with 1-bit bus connection
     - [arm64] mmc: sdhci-xenon: add timeout for PHY init complete
     - [arm64] mmc: sdhci-xenon: fix PHY init clock stability
     - efivarfs: Request at most 512 bytes for variable names
     - [arm64] pmdomain: qcom: rpmhpd: Fix enabled_corner aggregation
     - [x86] e820: Don't reserve SETUP_RNG_SEED in e820
     - [x86] cpu/intel: Detect TME keyid bits before setting MTRR mask registers
     - mptcp: fix data races on local_id
     - mptcp: fix data races on remote_id
     - mptcp: fix duplicate subflow creation
     - mptcp: continue marking the first subflow as UNCONNECTED
     - mptcp: map v4 address to v6 when destroying subflow
     - mptcp: push at DSS boundaries
     - mptcp: fix snd_wnd initialization for passive socket
     - mptcp: fix double-free on socket dismantle
     - mptcp: fix possible deadlock in subflow diag
     - RDMA/core: Refactor rdma_bind_addr (CVE-2023-2176)
     - RDMA/core: Update CMA destination address on rdma_resolve_addr
     - efi: libstub: use EFI_LOADER_CODE region when moving the kernel in memory
     - [x86] boot/compressed: Rename efi_thunk_64.S to efi-mixed.S
     - [x86] boot/compressed: Move 32-bit entrypoint code into .text section
     - [x86] boot/compressed: Move bootargs parsing out of 32-bit startup code
     - [x86] boot/compressed: Move efi32_pe_entry into .text section
     - [x86] boot/compressed: Move efi32_entry out of head_64.S
     - [x86] boot/compressed: Move efi32_pe_entry() out of head_64.S
     - [x86] boot/compressed, efi: Merge multiple definitions of image_offset
       into one
     - [x86] boot/compressed: Simplify IDT/GDT preserve/restore in the EFI thunk
     - [x86] boot/compressed: Avoid touching ECX in startup32_set_idt_entry()
     - [x86] boot/compressed: Pull global variable reference into
       startup32_load_idt()
     - [x86] boot/compressed: Move startup32_load_idt() into .text section
     - [x86] boot/compressed: Move startup32_load_idt() out of head_64.S
     - [x86] boot/compressed: Move startup32_check_sev_cbit() into .text
     - [x86] boot/compressed: Move startup32_check_sev_cbit() out of head_64.S
     - [x86] boot/compressed: Adhere to calling convention in
       get_sev_encryption_bit()
     - [x86] boot/compressed: Only build mem_encrypt.S if AMD_MEM_ENCRYPT=y
     - efi: verify that variable services are supported
     - [x86] efi: Make the deprecated EFI handover protocol optional
     - [x86] boot: Robustify calling startup_{32,64}() from the decompressor code
     - [x86] efistub: Branch straight to kernel entry point from C code
     - [x86] decompressor: Store boot_params pointer in callee save register
     - [x86] decompressor: Assign paging related global variables earlier
     - [x86] decompressor: Call trampoline as a normal function
     - [x86] decompressor: Use standard calling convention for trampoline
     - [x86] decompressor: Avoid the need for a stack in the 32-bit trampoline
     - [x86] decompressor: Call trampoline directly from C code
     - [x86] decompressor: Only call the trampoline when changing paging levels
     - [x86] decompressor: Pass pgtable address to trampoline directly
     - [x86] decompressor: Merge trampoline cleanup with switching code
     - [x86] decompressor: Move global symbol references to C code
     - decompress: Use 8 byte alignment
     - drm/amd/display: Increase frame warning limit with KASAN or KCSAN in dml
     - NFS: Fix data corruption caused by congestion.
     - NFSD: Simplify READ_PLUS
     - NFSD: Remove redundant assignment to variable host_err
     - nfsd: ignore requests to disable unsupported versions
     - nfsd: move nfserrno() to vfs.c
     - nfsd: allow disabling NFSv2 at compile time
     - exportfs: use pr_debug for unreachable debug statements
     - NFSD: Flesh out a documenting comment for filecache.c
     - NFSD: Clean up nfs4_preprocess_stateid_op() call sites
     - NFSD: Trace stateids returned via DELEGRETURN
     - NFSD: Trace delegation revocations
     - NFSD: Use const pointers as parameters to fh_ helpers
     - NFSD: Update file_hashtbl() helpers
     - NFSD: Clean up nfsd4_init_file()
     - NFSD: Add a nfsd4_file_hash_remove() helper
     - NFSD: Clean up find_or_add_file()
     - NFSD: Refactor find_file()
     - NFSD: Use rhashtable for managing nfs4_file objects
     - NFSD: Fix licensing header in filecache.c
     - filelock: add a new locks_inode_context accessor function
     - lockd: use locks_inode_context helper
     - nfsd: use locks_inode_context helper
     - nfsd: fix up the filecache laundrette scheduling
     - NFSD: Use struct_size() helper in alloc_session()
     - lockd: set missing fl_flags field when retrieving args
     - lockd: ensure we use the correct file descriptor when unlocking
     - lockd: fix file selection in nlmsvc_cancel_blocked
     - trace: Relocate event helper files
     - NFSD: refactoring courtesy_client_reaper to a generic low memory shrinker
     - NFSD: add support for sending CB_RECALL_ANY
     - NFSD: add delegation reaper to react to low memory condition
     - NFSD: add CB_RECALL_ANY tracepoints
     - NFSD: Use only RQ_DROPME to signal the need to drop a reply
     - NFSD: Avoid clashing function prototypes
     - NFSD: Use set_bit(RQ_DROPME)
     - NFSD: register/unregister of nfsd-client shrinker at nfsd startup/shutdown
       time
     - NFSD: replace delayed_work with work_struct for nfsd_client_shrinker
     - nfsd: don't destroy global nfs4_file table in per-net shutdown
     - [arm64] efi: Limit allocations to 48-bit addressable physical region
     - efi: efivars: prevent double registration
     - [x86] efistub: Simplify and clean up handover entry code
     - [x86] decompressor: Avoid magic offsets for EFI handover entrypoint
     - [x86] efistub: Clear BSS in EFI handover protocol entrypoint
     - efi/libstub: Add memory attribute protocol definitions
     - efi/libstub: Add limit argument to efi_random_alloc()
     - [x86] efistub: Perform 4/5 level paging switch from the stub
     - [x86] decompressor: Factor out kernel decompression and relocation
     - [x86] efistub: Prefer EFI memory attributes protocol over DXE services
     - [x86] efistub: Perform SNP feature test while running in the firmware
     - [x86] efistub: Avoid legacy decompressor when doing EFI boot
     - [x86] efi/x86: Avoid physical KASLR on older Dell systems
     - [x86] efistub: Avoid placing the kernel below LOAD_PHYSICAL_ADDR
     - [x86] boot: Rename conflicting 'boot_params' pointer to 'boot_params_ptr'
     - [x86] boot: efistub: Assign global boot_params variable
     - [x86] efi/x86: Fix the missing KASLR_FLAG bit in
       boot_params->hdr.loadflags
     - af_unix: Drop oob_skb ref before purging queue in GC.
     - [arm64] phy: freescale: phy-fsl-imx8-mipi-dphy: Fix alias name to use
       dashes
     - [powerpc*] pseries/iommu: IOMMU table is not initialized for kdump over
       SR-IOV
     - gpio: 74x164: Enable output pins after registers are reset
     - gpiolib: Fix the error path order in gpiochip_add_data_with_key()
     - gpio: fix resource unwinding order in error path
     - block: define bvec_iter as __packed __aligned(4)
     - [arm64,armhf] Revert "interconnect: Fix locking for runpm vs reclaim"
     - [arm64,armhf] Revert "interconnect: Teach lockdep about icc_bw_lock order"
     - [x86] bugs: Add asm helpers for executing VERW
     - [x86] entry_64: Add VERW just before userspace transition
     - [x86] entry_32: Add VERW just before userspace transition
     - [x86] bugs: Use ALTERNATIVE() instead of mds_user_clear static key
     - [x86] KVM/VMX: Use BT+JNC, i.e. EFLAGS.CF to select VMRESUME vs. VMLAUNCH
     - [x86] KVM/VMX: Move VERW closer to VMentry for MDS mitigation
     - bpf: Add table ID to bpf_fib_lookup BPF helper
     - bpf: Derive source IP addr via bpf_*_fib_lookup()
     - [x86] efistub: Give up if memory attribute protocol returns an error
     - xen/events: close evtchn after mapping cleanup
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.82
     - ceph: switch to corrected encoding of max_xattr_size in mdsmap
     - net: lan78xx: fix runtime PM count underflow on link stop
     - ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able
     - i40e: disable NAPI right after disabling irqs when handling xsk_pool
     - ice: reorder disabling IRQ and NAPI in ice_qp_dis
     - tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string
     - geneve: make sure to pull inner header in geneve_rx()
     - ice: virtchnl: stop pretending to support RSS over AQ or registers
     - net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()
     - igc: avoid returning frame twice in XDP_REDIRECT
     - net/ipv6: avoid possible UAF in ip6_route_mpath_notify()
     - cpumap: Zero-initialise xdp_rxq_info struct before running XDP program
     - net: dsa: microchip: fix register write order in ksz8_ind_write8()
     - net/rds: fix WARNING in rds_conn_connect_if_down
     - netfilter: nft_ct: fix l3num expectations with inet pseudo family
     - netfilter: nf_conntrack_h323: Add protection for bmp length out of range
     - erofs: apply proper VMA alignment for memory mapped files on THP
     - netrom: Fix a data-race around sysctl_netrom_default_path_quality
     - netrom: Fix a data-race around
       sysctl_netrom_obsolescence_count_initialiser
     - netrom: Fix data-races around sysctl_netrom_network_ttl_initialiser
     - netrom: Fix a data-race around sysctl_netrom_transport_timeout
     - netrom: Fix a data-race around sysctl_netrom_transport_maximum_tries
     - netrom: Fix a data-race around sysctl_netrom_transport_acknowledge_delay
     - netrom: Fix a data-race around sysctl_netrom_transport_busy_delay
     - netrom: Fix a data-race around
       sysctl_netrom_transport_requested_window_size
     - netrom: Fix a data-race around sysctl_netrom_transport_no_activity_timeout
     - netrom: Fix a data-race around sysctl_netrom_routing_control
     - netrom: Fix a data-race around sysctl_netrom_link_fails_count
     - netrom: Fix data-races around sysctl_net_busy_read
     - [s390x] KVM: s390: add stat counter for shadow gmap events
     - [s390x] KVM: s390: vsie: fix race during shadow creation
     - drm/amd/display: Fix uninitialized variable usage in core_link_
       'read_dpcd() & write_dpcd()' functions
     - nfp: flower: add goto_chain_index for ct entry
     - nfp: flower: add hardware offload check for post ct entry
     - readahead: avoid multiple marked readahead pages
     - xhci: process isoc TD properly when there was a transaction error mid TD.
     - xhci: handle isoc Babble and Buffer Overrun events properly
     - drm/amdgpu: Reset IH OVERFLOW_CLEAR bit
     - [x86] Mitigate Register File Data Sampling (RFDS) vulnerability
       (CVE-2023-28746):
       + [x86] mmio: Disable KVM mitigation when X86_FEATURE_CLEAR_CPU_BUF is set
       + Documentation/hw-vuln: Add documentation for RFDS
       + [x86] rfds: Mitigate Register File Data Sampling (RFDS)
       + [x86] KVM/x86: Export RFDS_NO and RFDS_CLEAR to guests
     - drm/amd/display: Wrong colorimetry workaround
     - drm/amd/display: Fix MST Null Ptr for RV
     - getrusage: add the "signal_struct *sig" local variable
     - getrusage: move thread_group_cputime_adjusted() outside of
       lock_task_sighand()
     - getrusage: use __for_each_thread()
     - getrusage: use sig->stats_lock rather than lock_task_sighand()
     - fs/proc: do_task_stat: use __for_each_thread()
     - fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children
       stats
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 19
   * [rt] Refresh "sched: avoid false lockdep splat in put_task_struct()"
   * Drop now unknown config options for retired CBQ, ATM and dsmark qdisc
   * [x86] efistub: Clear decompressor BSS in native EFI entrypoint
   * [x86] efistub: Don't clear BSS twice in mixed mode
   * efi: fix panic in kdump kernel
   * efi/libstub: fix efi_random_alloc() to allocate memory at alloc_min or
     higher address
   * efi/libstub: Cast away type warning in use of max()
   * aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts
     (CVE-2023-6270)
   * wifi: ath10k: fix NULL pointer dereference in
     ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (CVE-2023-7042)
   * Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security
     (CVE-2024-22099)
   * sr9800: Add check for usbnet_get_endpoints (CVE-2024-26651)
   * [rt] Update to 6.1.82-rt27

linux-signed-i386 (6.1.94+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.94-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.91
     - [arm64,armhf] dmaengine: pl330: issue_pending waits until WFP state
     - dmaengine: Revert "dmaengine: pl330: issue_pending waits until WFP state"
     - wifi: nl80211: don't free NULL coalescing rule
     - eeprom: at24: Use dev_err_probe for nvmem register failure
     - eeprom: at24: Probe for DDR3 thermal sensor in the SPD case
     - eeprom: at24: fix memory corruption race condition (CVE-2024-35848)
     - Bluetooth: qca: add support for QCA2066
     - mm/hugetlb: add folio support to hugetlb specific flag macros
     - mm: add private field of first tail to struct page and struct folio
     - mm/hugetlb: add hugetlb_folio_subpool() helpers
     - mm/hugetlb: add folio_hstate()
     - mm/hugetlb_cgroup: convert __set_hugetlb_cgroup() to folios
     - mm/hugetlb_cgroup: convert hugetlb_cgroup_from_page() to folios
     - mm/hugetlb: convert free_huge_page to folios
     - mm/hugetlb_cgroup: convert hugetlb_cgroup_uncharge_page() to folios
     - mm/hugetlb: fix missing hugetlb_lock for resv uncharge
     - kbuild: refactor host*_flags
     - kbuild: specify output names separately for each emission type from rustc
     - cifs: use the least loaded channel for sending requests
     - smb3: missing lock when picking channel
     - [armhf] pinctrl: pinctrl-aspeed-g6: Fix register offset for pinconf of
       GPIOR-T
     - [arm64] pinctrl/meson: fix typo in PDM's pin name
     - pinctrl: core: delete incorrect free in pinctrl_enable()
     - sunrpc: add a struct rpc_stats arg to rpc_create_args
     - nfs: expose /proc/net/sunrpc/nfs in net namespaces
     - nfs: make the rpc_stat per net namespace
     - nfs: Handle error of rpc_proc_register() in nfs_net_init().
     - pinctrl: Introduce struct pinfunction and PINCTRL_PINFUNCTION() macro
     - [x86] pinctrl: intel: Make use of struct pinfunction and
       PINCTRL_PINFUNCTION()
     - [x86] pinctrl: baytrail: Fix selecting gpio pinctrl state
     - pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map()
     - regulator: change stubbed devm_regulator_get_enable to return Ok
     - regulator: change devm_regulator_get_enable_optional() stub to return Ok
     - bpf, kconfig: Fix DEBUG_INFO_BTF_MODULES Kconfig definition
     - bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue
     - nvme: fix warn output about shared namespaces without
       CONFIG_NVME_MULTIPATH
     - bpf: Fix a verifier verbose message
     - spi: introduce new helpers with using modern naming
     - [arm64] bpf, arm64: Fix incorrect runtime stats
     - [s390x] mm: Fix storage key clearing for guest huge pages
     - [s390x] mm: Fix clearing storage keys for huge pages
     - xdp: use flags field to disambiguate broadcast redirect
     - bna: ensure the copied buf is NUL terminated
     - nsh: Restore skb->{protocol,data,mac_header} for outer header in
       nsh_gso_segment().
     - net l2tp: drop flow hash on forward
     - [s390x] vdso: Add CFI for RA register to asm macro vdso_func
     - net: qede: sanitize 'rc' in qede_add_tc_flower_fltr()
     - net: qede: use return from qede_parse_flow_attr() for flower
     - net: qede: use return from qede_parse_flow_attr() for flow_spec
     - net: qede: use return from qede_parse_actions()
     - [arm64] ASoC: meson: axg-fifo: use FIELD helpers
     - [arm64] ASoC: meson: axg-fifo: use threaded irq to check periods
     - [arm64] ASoC: meson: axg-card: make links nonatomic
     - [arm64] ASoC: meson: axg-tdm-interface: manage formatters in trigger
     - [arm64] ASoC: meson: cards: select SND_DYNAMIC_MINORS
     - ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node()
     - [s390x] cio: Ensure the copied buf is NUL terminated
     - cxgb4: Properly lock TX queue for the selftest.
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix number of databases for 88E6141 /
       88E6341
     - spi: fix null pointer dereference within spi_sync
     - net: bridge: fix multicast-to-unicast with fraglist GSO
     - net: core: reject skb_copy(_expand) for fraglist GSO skbs
     - vxlan: Pull inner IP header in vxlan_rcv().
     - [s390x] qeth: Fix kernel panic after setting hsuid
     - net: gro: add flush check in udp_gro_receive_segment
     - [arm64] clk: sunxi-ng: h6: Reparent CPUX during PLL CPUX rate change
     - [powerpc*] pseries: replace kmalloc with kzalloc in PLPKS driver
     - [powerpc*] pseries: Move PLPKS constants to header file
     - [powerpc*] pseries: make max polling consistent for longer H_CALLs
     - [powerpc*] pseries/iommu: LPAR panics during boot up with a frozen PE
     - [arm64] KVM: arm64: vgic-v2: Use cpuid from userspace as vcpu_id
     - [arm64] KVM: arm64: vgic-v2: Check for non-NULL vCPU in
       vgic_v2_parse_attr()
     - scsi: lpfc: Move NPIV's transport unregistration to after resource clean
       up
     - scsi: lpfc: Update lpfc_ramp_down_queue_handler() logic
     - scsi: lpfc: Replace hbalock with ndlp lock in lpfc_nvme_unregister_port()
     - scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up()
     - gfs2: Fix invalid metadata access in punch_hole
     - wifi: mac80211: fix ieee80211_bss_*_flags kernel-doc
     - wifi: cfg80211: fix rdev_dump_mpp() arguments order
     - net: mark racy access on sk->sk_rcvbuf
     - scsi: mpi3mr: Avoid memcpy field-spanning write WARNING
     - scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload
     - btrfs: return accurate error code on open failure in open_fs_devices()
     - bpf: Check bloom filter map value size
     - kbuild: Disable KCSAN for autogenerated *.mod.c intermediaries
     - scsi: ufs: core: WLUN suspend dev/link state error recovery
     - ALSA: line6: Zero-initialize message buffers
     - block: fix overflow in blk_ioctl_discard()
     - net: bcmgenet: Reset RBUF on first open
     - ata: sata_gemini: Check clk_enable() result
     - firewire: ohci: mask bus reset interrupts between ISR and bottom half
     - tools/power turbostat: Fix added raw MSR output
     - tools/power turbostat: Increase the limit for fd opened
     - tools/power turbostat: Fix Bzy_MHz documentation typo
     - btrfs: make btrfs_clear_delalloc_extent() free delalloc reserve
     - btrfs: always clear PERTRANS metadata during commit
     - scsi: target: Fix SELinux error when systemd-modules loads the target
       module
     - blk-iocost: avoid out of bounds shift
     - [arm64,armhf] gpu: host1x: Do not setup DMA for virtual devices
     - [mips*] scall: Save thread_info.syscall unconditionally on entry
       (Closes: #1068365)
     - tools/power/turbostat: Fix uncore frequency file string
     - drm/amdgpu: Refine IB schedule error logging
     - Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl
     - [x86] uio_hv_generic: Don't free decrypted memory
     - Drivers: hv: vmbus: Don't free ring buffers that couldn't be re-encrypted
     - fs/9p: only translate RWX permissions for plain 9P2000
     - fs/9p: translate O_TRUNC into OTRUNC
     - 9p: explicitly deny setlease attempts
     - gpio: wcove: Use -ENOTSUPP consistently
     - gpio: crystalcove: Use -ENOTSUPP consistently
     - clk: Don't hold prepare_lock when calling kref_put()
     - fs/9p: drop inodes immediately on non-.L too
     - drm/nouveau/dp: Don't probe eDP ports twice harder
     - net:usb:qmi_wwan: support Rolling modules
     - kbuild: rust: avoid creating temporary files
     - spi: Merge spi_controller.{slave,target}_abort()
     - perf unwind-libunwind: Fix base address for .eh_frame
     - perf unwind-libdw: Handle JIT-generated DSOs properly
     - qibfs: fix dentry leak
     - xfrm: Preserve vlan tags for transport mode software GRO
     - tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets
     - tcp: Use refcount_inc_not_zero() in tcp_twsk_unique().
     - Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout
       (CVE-2024-27398)
     - Bluetooth: msft: fix slab-use-after-free in msft_do_close()
     - Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout
       (CVE-2024-27399)
     - net: ks8851: Queue RX packets in IRQ handler instead of disabling BHs
     - rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation
     - [x86] hwmon: (corsair-cpro) Use a separate buffer for sending commands
     - [x86] hwmon: (corsair-cpro) Use complete_all() instead of complete() in
       ccp_raw_event()
     - [x86] hwmon: (corsair-cpro) Protect ccp->wait_input_report with a spinlock
     - phonet: fix rtm_phonet_notify() skb allocation
     - net: bridge: fix corrupted ethernet header on multicast-to-unicast
     - ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action()
     - timers: Get rid of del_singleshot_timer_sync()
     - timers: Rename del_timer() to timer_delete()
     - net-sysfs: convert dev->operstate reads to lockless ones
     - hsr: Simplify code for announcing HSR nodes timer setup
     - ipv6: annotate data-races around cnf.disable_ipv6
     - ipv6: prevent NULL dereference in ip6_output()
     - net/smc: fix neighbour and rtable leak in smc_ib_find_route()
     - [arm64] net: hns3: using user configure after hardware reset
     - [arm64] net: hns3: direct return when receive a unknown mailbox message
     - [arm64] net: hns3: change type of numa_node_mask as nodemask_t
     - [arm64] net: hns3: release PTP resources if pf initialization failed
     - [arm64] net: hns3: use appropriate barrier function after setting a bit
       value
     - [arm64] net: hns3: fix port vlan filter not disabled issue
     - [arm64] net: hns3: fix kernel crash when devlink reload during
       initialization
     - [arm64] drm/meson: dw-hdmi: power up phy on device init
     - [arm64] drm/meson: dw-hdmi: add bandgap setting for g12
     - drm/connector: Add \n to message about demoting connector force-probes
     - dm/amd/pm: Fix problems with reboot/shutdown for some SMU 13.0.4/13.0.11
       users
     - gpiolib: cdev: Add missing header(s)
     - gpiolib: cdev: relocate debounce_period_us from struct gpio_desc
     - gpiolib: cdev: fix uninitialised kfifo
     - drm/amd/display: Atom Integrated System Info v2_2 for DCN35
     - MAINTAINERS: add leah to 6.1 MAINTAINERS file
     - drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2
     - btrfs: fix kvcalloc() arguments order in btrfs_ioctl_send()
     - firewire: nosy: ensure user_length is taken into account when fetching
       packet contents (CVE-2024-27401)
     - Reapply "drm/qxl: simplify qxl_fence_wait"
     - btf, scripts: rust: drop is_rust_module.sh
     - usb: typec: ucsi: Check for notifications after init
     - usb: typec: ucsi: Fix connector check on init
     - usb: Fix regression caused by invalid ep0 maxpacket in virtual SuperSpeed
       device
     - usb: ohci: Prevent missed ohci interrupts
     - USB: core: Fix access violation during port device removal
     - usb: gadget: composite: fix OS descriptors w_value logic
     - usb: gadget: f_fs: Fix a race condition when processing setup packets.
     - usb: xhci-plat: Don't include xhci.h
     - usb: dwc3: core: Prevent phy suspend during init
     - usb: typec: tcpm: unregister existing source caps before re-registration
     - usb: typec: tcpm: Check for port partner validity before consuming it
     - ALSA: hda/realtek: Fix mute led of HP Laptop 15-da3001TU
     - btrfs: add missing mutex_unlock in btrfs_relocate_sys_chunks()
     - mm/slab: make __free(kfree) accept error pointers
     - mptcp: ensure snd_nxt is properly initialized on connect
     - dt-bindings: iio: health: maxim,max30102: fix compatible check
     - iio:imu: adis16475: Fix sync mode setting
     - iio: accel: mxc4005: Interrupt handling fixes
     - [armhf] ASoC: ti: davinci-mcasp: Fix race condition during probe
     - dyndbg: fix old BUG_ON in >control parser
     - slimbus: qcom-ngd-ctrl: Add timeout for wait operation
     - mei: me: add lunar lake point M DID
     - drm/vmwgfx: Fix invalid reads in fence signaled events
     - [x86] drm/i915/bios: Fix parsing backlight BDB data
     - drm/amd/display: Handle Y carry-over in VCP X.Y calculation
     - net: fix out-of-bounds access in ops_init
     - hwmon: (pmbus/ucd9000) Increase delay from 250 to 500us
     - mm: use memalloc_nofs_save() in page_cache_ra_order()
     - regulator: core: fix debugfs creation regression
     - spi: microchip-core-qspi: fix setting spi bus clock rate
     - ksmbd: off ipv6only for both ipv4/ipv6 binding
     - ksmbd: avoid to send duplicate lease break notifications
     - ksmbd: do not grant v2 lease if parent lease key and epoch are not set
     - Bluetooth: qca: add missing firmware sanity checks
     - Bluetooth: qca: fix NVM configuration parsing
     - Bluetooth: qca: fix info leak when fetching board id
     - Bluetooth: qca: fix info leak when fetching fw build id
     - Bluetooth: qca: fix firmware check error path
     - VFIO: Add the SPR_DSA and SPR_IAX devices to the denylist (CVE-2024-21823)
     - dmaengine: idxd: add a new security check to deal with a hardware erratum
       (CVE-2024-21823)
     - dmaengine: idxd: add a write() method for applications to submit work
       (CVE-2024-21823)
     - keys: Fix overwrite of key expiration on instantiation
     - btrfs: do not wait for short bulk allocation
     - mm/hugetlb: fix DEBUG_LOCKS_WARN_ON(1) when dissolve_free_hugetlb_folio()
     - mm,swapops: update check in is_pfn_swap_entry for hwpoison entries
     - md: fix kmemleak of rdev->serial (CVE-2024-26900)
     - net: bcmgenet: Clear RGMII_LINK upon link down
     - net: bcmgenet: synchronize EXT_RGMII_OOB_CTRL access
     - net: bcmgenet: synchronize use of bcmgenet_set_rx_mode()
     - net: bcmgenet: synchronize UMAC_CMD access
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.92
     - drm/amd/display: Fix division by zero in setup_dsc_config
     - net: ks8851: Fix another TX stall caused by wrong ISR flag handling
     - ice: pass VSI pointer into ice_vc_isvalid_q_id
     - ice: remove unnecessary duplicate checks for VF VSI ID
     - pinctrl: core: handle radix_tree_insert() errors in
       pinctrl_register_one_pin()
     - mfd: stpmic1: Fix swapped mask/unmask in irq chip
     - nfsd: don't allow nfsd threads to be signalled.
     - KEYS: trusted: Fix memory leak in tpm2_key_encode()
     - mmc: core: Add HS400 tuning in HS400es initialization
     - xfs: write page faults in iomap are not buffered writes
     - xfs: punching delalloc extents on write failure is racy
     - xfs: use byte ranges for write cleanup ranges
     - xfs,iomap: move delalloc punching to iomap
     - iomap: buffered write failure should not truncate the page cache
     - xfs: xfs_bmap_punch_delalloc_range() should take a byte range
     - iomap: write iomap validity checks
     - xfs: use iomap_valid method to detect stale cached iomaps
     - xfs: drop write error injection is unfixable, remove it
     - xfs: fix off-by-one-block in xfs_discard_folio()
     - xfs: fix incorrect error-out in xfs_remove
     - xfs: fix sb write verify for lazysbcount
     - xfs: fix incorrect i_nlink caused by inode racing
     - xfs: invalidate block device page cache during unmount
     - xfs: attach dquots to inode before reading data/cow fork mappings
     - xfs: wait iclog complete before tearing down AIL
     - xfs: fix super block buf log item UAF during force shutdown
     - xfs: hoist refcount record merge predicates
     - xfs: estimate post-merge refcounts correctly
     - xfs: invalidate xfs_bufs when allocating cow extents
     - xfs: allow inode inactivation during a ro mount log recovery
     - xfs: fix log recovery when unknown rocompat bits are set
     - xfs: get root inode correctly at bulkstat
     - xfs: short circuit xfs_growfs_data_private() if delta is zero
     - [arm64] atomics: lse: remove stale dependency on JUMP_LABEL
     - drm/amdgpu: Fix possible NULL dereference in
       amdgpu_ras_query_error_status_helper() (CVE-2023-52585)
     - [arm*] binder: fix max_thread type inconsistency
     - [arm64,armhf] usb: dwc3: Wait unconditionally after issuing EndXfer
       command
     - net: usb: ax88179_178a: fix link status when link is set to down/up
     - usb: typec: ucsi: displayport: Fix potential deadlock
     - usb: typec: tipd: fix event checking for tps6598x
     - serial: kgdboc: Fix NMI-safety problems from keyboard reset code
     - KEYS: trusted: Do not use WARN when encode fails
     - admin-guide/hw-vuln/core-scheduling: fix return type of PR_SCHED_CORE_GET
     - docs: kernel_include.py: Cope with docutils 0.21
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.93
     - SUNRPC: Fix loop termination condition in gss_free_in_token_pages()
     - [x86] tsc: Trust initial offset in architectural TSC-adjust MSRs
     - ftrace: Fix possible use-after-free issue in ftrace_location()
     - tty: n_gsm: fix possible out-of-bounds in gsm0_receive() (CVE-2024-36016)
     - tty: n_gsm: fix missing receive state reset after mode switch
     - speakup: Fix sizeof() vs ARRAY_SIZE() bug
     - serial: 8250_bcm7271: use default_mux_rate if possible
     - serial: 8520_mtk: Set RTS on shutdown for Rx in-band wakeup
     - io_uring: fail NOP if non-zero op flags is passed in
     - Revert "r8169: don't try to disable interrupts if NAPI is, scheduled
       already"
     - r8169: Fix possible ring buffer corruption on fragmented Tx packets.
     - ring-buffer: Fix a race between readers and resize checks
     - net: smc91x: Fix m68k kernel compilation for ColdFire CPU
     - nilfs2: fix unexpected freezing of nilfs_segctor_sync()
     - nilfs2: fix potential hang in nilfs_detach_log_writer()
     - ksmbd: avoid to send duplicate oplock break notifications
     - ksmbd: ignore trailing slashes in share paths
     - ALSA: hda/realtek: fix mute/micmute LEDs don't work for ProBook 440/460
       G11.
     - ALSA: core: Fix NULL module pointer assignment at card init
     - ALSA: Fix deadlocks with kctl removals at disconnection
     - KEYS: asymmetric: Add missing dependencies of FIPS_SIGNATURE_SELFTEST
     - wifi: mac80211: don't use rate mask for scanning
     - wifi: mac80211: ensure beacon is non-S1G prior to extracting the beacon
       timestamp field
     - wifi: cfg80211: fix the order of arguments for trace events of the
       tx_rx_evt class
     - dt-bindings: rockchip: grf: Add missing type to 'pcie-phy' node
     - net: usb: qmi_wwan: add Telit FN920C04 compositions
     - drm/amd/display: Set color_mgmt_changed to true on unsuspend
     - drm/amdgpu: Update BO eviction priorities
     - drm/amdgpu: Fix the ring buffer size for queue VM flush
     - drm/amdgpu/mes: fix use-after-free issue
     - sched/isolation: Fix boot crash when maxcpus < first housekeeping CPU
     - [x86] ASoC: Intel: bytcr_rt5640: Apply Asus T100TA quirk to Asus T100TAM
       too
     - regulator: irq_helpers: duplicate IRQ name
     - ASoC: rt5645: Fix the electric noise due to the CBJ contacts floating
     - ASoC: dt-bindings: rt5645: add cbj sleeve gpio property
     - regulator: vqmmc-ipq4019: fix module autoloading
     - ASoC: rt715: add vendor clear control register
     - ASoC: rt715-sdca: volume step modification
     - [x86] efistub: Omit physical KASLR when memory reservations exist
     - efi: libstub: only free priv.runtime_map when allocated
     - [x86] KVM: x86: Don't advertise guest.MAXPHYADDR as host.MAXPHYADDR in
       CPUID
     - genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline
     - fpga: dfl-pci: add PCI subdevice ID for Intel D5005 card
     - softirq: Fix suspicious RCU usage in __do_softirq()
     - ASoC: da7219-aad: fix usage of device_get_named_child_node()
     - ALSA: hda: intel-dsp-config: harden I2C/I2S codec detection
     - drm/amd/display: Add dtbclk access to dcn315
     - drm/amd/display: Add VCO speed parameter for DCN31 FPU
     - drm/amdkfd: Flush the process wq before creating a kfd_process
     - [x86] mm: Remove broken vsyscall emulation code from the page fault code
     - nvme: find numa distance only if controller has valid numa id
     - nvmet-auth: return the error code to the nvmet_auth_host_hash() callers
     - nvmet-auth: replace pr_debug() with pr_err() to report an error.
     - nvmet-tcp: fix possible memory leak when tearing down a controller
     - nvmet: fix nvme status code when namespace is disabled
     - epoll: be better about file lifetimes
     - nvmet: prevent sprintf() overflow in nvmet_subsys_nsid_exists()
     - openpromfs: finish conversion to the new mount API
     - crypto: bcm - Fix pointer arithmetic
     - mm/slub, kunit: Use inverted data to corrupt kmem cache
     - firmware: raspberrypi: Use correct device for DMA mappings
     - ecryptfs: Fix buffer size for tag 66 packet
     - nilfs2: fix out-of-range warning
     - [x86] crypto: ccp - drop platform ifdef checks
     - [amd64] crypto: x86/nh-avx2 - add missing vzeroupper
     - [amd64] crypto: x86/sha256-avx2 - add missing vzeroupper
     - [amd64] crypto: x86/sha512-avx2 - add missing vzeroupper
     - [s390x] cio: fix tracepoint subchannel type field
     - io_uring: don't use TIF_NOTIFY_SIGNAL to test for availability of
       task_work
     - io_uring: use the right type for work_llist empty check
     - rcu-tasks: Fix show_rcu_tasks_trace_gp_kthread buffer overflow
     - rcu: Fix buffer overflow in print_cpu_stall_info()
     - jffs2: prevent xattr node from overflowing the eraseblock
     - soc: mediatek: cmdq: Fix typo of CMDQ_JUMP_RELATIVE
     - null_blk: Fix missing mutex_destroy() at module removal
     - md: fix resync softlockup when bitmap size is less than array size
     - block: open code __blk_account_io_start()
     - block: open code __blk_account_io_done()
     - block: support to account io_ticks precisely
     - wifi: ath10k: poll service ready message before failing
     - wifi: brcmfmac: pcie: handle randbuf allocation failure
     - wifi: ath11k: don't force enable power save on non-running vdevs
     - bpftool: Fix missing pids during link show
     - [x86] boot: Ignore relocations in .notes sections in walk_relocs() too
     - sched/fair: Add EAS checks before updating root_domain::overutilized
     - ACPI: Fix Generic Initiator Affinity _OSC bit
     - qed: avoid truncating work queue length
     - net/mlx5e: Fail with messages when params are not valid for XSK
     - mlx5: stop warning for 64KB pages
     - bitops: add missing prototype check
     - wifi: carl9170: re-fix fortified-memset warning
     - bpf: Pack struct bpf_fib_lookup
     - scsi: ufs: qcom: Perform read back after writing reset bit
     - scsi: ufs: qcom: Perform read back after writing REG_UFS_SYS1CLK_1US
     - scsi: ufs: ufs-qcom: Fix the Qcom register name for offset 0xD0
     - scsi: ufs: ufs-qcom: Clear qunipro_g4_sel for HW version major 5
     - scsi: ufs: qcom: Perform read back after writing unipro mode
     - scsi: ufs: qcom: Perform read back after writing CGC enable
     - scsi: ufs: cdns-pltfrm: Perform read back after writing HCLKDIV
     - scsi: ufs: core: Perform read back after disabling interrupts
     - scsi: ufs: core: Perform read back after disabling UIC_COMMAND_COMPL
     - ACPI: LPSS: Advertise number of chip selects via property
     - irqchip/alpine-msi: Fix off-by-one in allocation error path
     - irqchip/loongson-pch-msi: Fix off-by-one on allocation error path
     - ACPI: disable -Wstringop-truncation
     - gfs2: Don't forget to complete delayed withdraw
     - gfs2: Fix "ignore unlock failures after withdraw"
     - [x86] boot/64: Clear most of CR4 in startup_64(), except PAE, MCE and LA57
     - cpufreq: exit() callback is optional
     - [x86] pat: Introduce lookup_address_in_pgd_attr()
     - [x86] pat: Restructure _lookup_address_cpa()
     - [x86] pat: Fix W^X violation false-positives when running as Xen PV guest
     - net: export inet_lookup_reuseport and inet6_lookup_reuseport
     - net: remove duplicate reuseport_lookup functions
     - udp: Avoid call to compute_score on multiple sites
     - cppc_cpufreq: Fix possible null pointer dereference
     - scsi: libsas: Fix the failure of adding phy with zero-address to port
     - scsi: hpsa: Fix allocation size for Scsi_Host private data
     - [x86] purgatory: Switch to the position-independent small code model
     - thermal/drivers/tsens: Fix null pointer dereference
     - wifi: ath10k: Fix an error code problem in
       ath10k_dbg_sta_write_peer_debug_trigger()
     - wifi: ath10k: populate board data for WCN3990
     - net: dsa: mv88e6xxx: Add support for model-specific pre- and post-reset
       handlers
     - net: dsa: mv88e6xxx: Avoid EEPROM timeout without EEPROM on 88E6250-family
       switches
     - tcp: avoid premature drops in tcp_add_backlog()
     - pwm: sti: Convert to platform remove callback returning void
     - pwm: sti: Prepare removing pwm_chip from driver data
     - pwm: sti: Simplify probe function using devm functions
     - drivers/perf: hisi_pcie: Fix out-of-bound access when valid event group
     - drivers/perf: hisi: hns3: Fix out-of-bound access when valid event group
     - drivers/perf: hisi: hns3: Actually use devm_add_action_or_reset()
     - net: give more chances to rcu in netdev_wait_allrefs_any()
     - wifi: carl9170: add a proper sanity check for endpoints
     - wifi: ar5523: enable proper endpoint verification
     - wifi: mt76: mt7603: add wpdma tx eof flag for PSE client reset
     - libbpf: Fix error message in attach_kprobe_multi
     - HID: intel-ish-hid: ipc: Add check for pci_alloc_irq_vectors
     - scsi: bfa: Ensure the copied buf is NUL terminated
     - scsi: qedf: Ensure the copied buf is NUL terminated
     - scsi: qla2xxx: Fix debugfs output for fw_resource_count
     - kernel/numa.c: Move logging out of numa.h
     - [x86] numa: Fix SRAT lookup of CFMWS ranges with numa_fill_memblks()
     - wifi: mwl8k: initialize cmd->addr[] properly
     - HID: amd_sfh: Handle "no sensors" in PM operations
     - usb: aqc111: stop lying about skb->truesize
     - net: usb: sr9700: stop lying about skb->truesize
     - net: ipv6: fix wrong start position when receive hop-by-hop fragment
     - eth: sungem: remove .ndo_poll_controller to avoid deadlocks
     - net: ethernet: cortina: Locking fixes
     - af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg
     - net: usb: smsc95xx: stop lying about skb->truesize
     - net: openvswitch: fix overwriting ct original tuple for ICMPv6
     - ipv6: sr: add missing seg6_local_exit
     - ipv6: sr: fix incorrect unregister order
     - ipv6: sr: fix invalid unregister error path
     - net/mlx5: Add a timeout to acquire the command queue semaphore
     - net/mlx5: Discard command completions in internal error
     - [s390x] bpf: Emit a barrier for BPF_FETCH instructions
     - riscv, bpf: make some atomic operations fully ordered
     - ax25: Use kernel universal linked list to implement ax25_dev_list
     - ax25: Fix reference count leak issues of ax25_dev
     - ax25: Fix reference count leak issue of net_device
     - mptcp: SO_KEEPALIVE: fix getsockopt support
     - Bluetooth: Consolidate code around sk_alloc into a helper function
     - Bluetooth: compute LE flow credits based on recvbuf space
     - Bluetooth: qca: Fix error code in qca_read_fw_build_info()
     - drm/bridge: Fix improper bridge init order with pre_enable_prev_first
     - printk: Let no_printk() use _printk()
     - dev_printk: Add and use dev_no_printk()
     - drm/lcdif: Do not disable clocks on already suspended hardware
     - drm/panel-samsung-atna33xc20: Use ktime_get_boottime for delays
     - drm/dp: Don't attempt AUX transfers when eDP panels are not powered
     - drm/panel: atna33xc20: Fix unbalanced regulator in the case HPD doesn't
       assert
     - drm/amd/display: Fix potential index out of bounds in color transformation
       function
     - [x86] ASoC: Intel: Disable route checks for Skylake boards
     - [x86] ASoC: Intel: avs: ssm4567: Do not ignore route checks
     - mtd: core: Report error if first mtd_otp_size() call fails in
       mtd_otp_nvmem_add()
     - mtd: rawnand: hynix: fixed typo
     - fbdev: shmobile: fix snprintf truncation
     - [armel,armhf] ASoC: kirkwood: Fix potential NULL dereference
     - drm/meson: vclk: fix calculation of 59.94 fractional rates
     - drm/mediatek: Add 0 size check to mtk_drm_gem_obj
     - [powerpc*] fsl-soc: hide unused const variable
     - fbdev: sisfb: hide unused variables
     - [x86] ASoC: Intel: avs: Fix ASRC module initialization
     - [x86] ASoC: Intel: avs: Fix potential integer overflow
     - media: ngene: Add dvb_ca_en50221_init return value check
     - media: rcar-vin: work around -Wenum-compare-conditional warning
     - media: radio-shark2: Avoid led_names truncations
     - drm: bridge: cdns-mhdp8546: Fix possible null pointer dereference
     - [arm64] drm/msm/dp: allow voltage swing / pre emphasis of 3
     - [arm64] drm/msm/dp: Return IRQ_NONE for unhandled interrupts
     - [arm64] drm/msm/dp: Avoid a long timeout for AUX transfer if nothing
       connected
     - media: ipu3-cio2: Request IRQ earlier
     - media: dt-bindings: ovti,ov2680: Fix the power supply names
     - fbdev: sh7760fb: allow modular build
     - media: atomisp: ssh_css: Fix a null-pointer dereference in
       load_video_binaries
     - [arm64] drm/arm/malidp: fix a possible null pointer dereference
       (CVE-2024-36014)
     - drm: vc4: Fix possible null pointer dereference
     - ASoC: tracing: Export SND_SOC_DAPM_DIR_OUT to its value
     - drm/bridge: anx7625: Don't log an error when DSI host can't be found
     - drm/bridge: icn6211: Don't log an error when DSI host can't be found
     - drm/bridge: lt8912b: Don't log an error when DSI host can't be found
     - drm/bridge: lt9611: Don't log an error when DSI host can't be found
     - drm/bridge: lt9611uxc: Don't log an error when DSI host can't be found
     - drm/bridge: tc358775: Don't log an error when DSI host can't be found
     - drm/bridge: dpc3433: Don't log an error when DSI host can't be found
     - drm/panel: novatek-nt35950: Don't log an error when DSI host can't be
       found
     - drm/panel: simple: Add missing Innolux G121X1-L03 format, flags, connector
     - drm/mipi-dsi: use correct return type for the DSC functions
     - drm/rockchip: vop2: Do not divide height twice for YUV
     - clk: samsung: exynosautov9: fix wrong pll clock id value
     - RDMA/mlx5: Adding remote atomic access flag to updatable flags
     - [arm64] RDMA/hns: Fix return value in hns_roce_map_mr_sg
     - [arm64] RDMA/hns: Fix deadlock on SRQ async events.
     - [arm64] RDMA/hns: Fix UAF for cq async event
     - [arm64] RDMA/hns: Fix GMV table pagesize
     - [arm64] RDMA/hns: Use complete parentheses in macros
     - [arm64] RDMA/hns: Modify the print level of CQE error
     - clk: mediatek: mt8365-mm: fix DPI0 parent
     - clk: rs9: fix wrong default value for clock amplitude
     - RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt
     - RDMA/rxe: Replace pr_xxx by rxe_dbg_xxx in rxe_net.c
     - RDMA/rxe: Fix incorrect rxe_put in error path
     - IB/mlx5: Use __iowrite64_copy() for write combining stores
     - clk: renesas: r8a779a0: Fix CANFD parent clock
     - clk: renesas: r9a07g043: Add clock and reset entry for PLIC
     - lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure
     - clk: qcom: dispcc-sm8450: fix DisplayPort clocks
     - clk: qcom: dispcc-sm6350: fix DisplayPort clocks
     - clk: qcom: mmcc-msm8998: fix venus clock issue
     - [x86] insn: Fix PUSH instruction in x86 instruction decoder opcode map
     - [x86] insn: Add VEX versions of VPDPBUSD, VPDPBUSDS, VPDPWSSD and
       VPDPWSSDS
     - ext4: avoid excessive credit estimate in ext4_tmpfile()
     - virt: acrn: stop using follow_pfn
     - drivers/virt/acrn: fix PFNMAP PTE checks in acrn_vm_ram_map()
     - sunrpc: removed redundant procp check
     - ext4: simplify calculation of blkoff in ext4_mb_new_blocks_simple
     - ext4: fix unit mismatch in ext4_mb_new_blocks_simple
     - ext4: try all groups in ext4_mb_new_blocks_simple
     - ext4: remove unused parameter from ext4_mb_new_blocks_simple()
     - ext4: fix potential unnitialized variable
     - SUNRPC: Fix gss_free_in_token_pages()
     - RDMA/IPoIB: Fix format truncation compilation errors
     - net: add pskb_may_pull_reason() helper
     - net: bridge: xmit: make sure we have at least eth header len bytes
     - net: bridge: mst: fix vlan use-after-free
     - net: qrtr: ns: Fix module refcnt
     - netrom: fix possible dead-lock in nr_rt_ioctl()
     - af_packet: do not call packet_read_pending() from tpacket_destruct_skb()
     - sched/fair: Allow disabling sched_balance_newidle with
       sched_relax_domain_level
     - sched/core: Fix incorrect initialization of the 'burst' parameter in
       cpu_max_write()
     - scsi: ufs: ufs-qcom: Clear qunipro_g4_sel for HW major version > 5
     - perf record: Delete session after stopping sideband thread
     - perf probe: Add missing libgen.h header needed for using basename()
     - iio: core: Leave private pointer NULL when no private data supplied
     - greybus: lights: check return of get_channel_from_mode
     - f2fs: multidev: fix to recognize valid zero block address
     - f2fs: fix to wait on page writeback in __clone_blkaddrs()
     - counter: linux/counter.h: fix Excess kernel-doc description warning
     - perf annotate: Get rid of duplicate --group option item
     - soundwire: cadence: fix invalid PDI offset
     - dmaengine: idma64: Add check for dma_set_max_seg_size
     - firmware: dmi-id: add a release callback function
     - serial: max3100: Lock port->lock when calling uart_handle_cts_change()
     - serial: max3100: Update uart_driver_registered on driver removal
     - serial: max3100: Fix bitwise types
     - greybus: arche-ctrl: move device table to its right location
     - PCI: tegra194: Fix probe path for Endpoint mode
     - serial: sc16is7xx: add proper sched.h include for sched_set_fifo()
     - interconnect: qcom: qcm2290: Fix mas_snoc_bimc QoS port assignment
     - [arm64] dts: meson: fix S4 power-controller node
     - perf tests: Make "test data symbol" more robust on Neoverse N1
     - dt-bindings: PCI: rcar-pci-host: Add optional regulators
     - dt-bindings: PCI: rcar-pci-host: Add missing IOMMU properties
     - f2fs: compress: fix to relocate check condition in
       f2fs_{release,reserve}_compress_blocks()
     - f2fs: compress: fix to relocate check condition in
       f2fs_ioc_{,de}compress_file()
     - f2fs: fix typos in comments
     - f2fs: fix to relocate check condition in f2fs_fallocate()
     - f2fs: fix to check pinfile flag in f2fs_move_file_range()
     - iio: adc: stm32: Fixing err code to not indicate success
     - coresight: etm4x: Fix unbalanced pm_runtime_enable()
     - perf docs: Document bpf event modifier
     - iio: pressure: dps310: support negative temperature values
     - coresight: etm4x: Do not hardcode IOMEM access for register restore
     - coresight: etm4x: Do not save/restore Data trace control registers
     - coresight: etm4x: Safe access for TRCQCLTR
     - coresight: etm4x: Fix access to resource selector registers
     - fpga: region: add owner module and take its refcount
     - microblaze: Remove gcc flag for non existing early_printk.c file
     - microblaze: Remove early printk call from cpuinfo-static.c
     - perf intel-pt: Fix unassigned instruction op (discovered by
       MemorySanitizer)
     - ovl: remove upper umask handling from ovl_create_upper()
     - VMCI: Fix an error handling path in vmci_guest_probe_device()
     - dt-bindings: pinctrl: mediatek: mt7622: fix array properties
     - watchdog: bd9576: Drop "always-running" property
     - watchdog: sa1100: Fix PTR_ERR_OR_ZERO() vs NULL check in sa1100dog_probe()
     - usb: gadget: u_audio: Fix race condition use of controls after free during
       gadget unbind.
     - usb: gadget: u_audio: Clear uac pointer when freed.
     - stm class: Fix a double free in stm_register_device()
     - ppdev: Remove usage of the deprecated ida_simple_xx() API
     - ppdev: Add an error check in register_device (CVE-2024-36015)
     - perf bench internals inject-build-id: Fix trap divide when collecting just
       one DSO
     - perf ui browser: Don't save pointer to stack memory
     - extcon: max8997: select IRQ_DOMAIN instead of depending on it
     - PCI/EDR: Align EDR_PORT_DPC_ENABLE_DSM with PCI Firmware r3.3
     - PCI/EDR: Align EDR_PORT_LOCATE_DSM with PCI Firmware r3.3
     - perf ui browser: Avoid SEGV on title
     - perf report: Avoid SEGV in report__setup_sample_type()
     - f2fs: compress: fix to update i_compr_blocks correctly
     - f2fs: compress: fix to cover {reserve,release}_compress_blocks() w/
       cp_rwsem lock
     - f2fs: fix to release node block count in error path of
       f2fs_new_node_page()
     - f2fs: compress: don't allow unaligned truncation on released compress
       inode
     - serial: sh-sci: protect invalidating RXDMA on shutdown
     - libsubcmd: Fix parse-options memory leak
     - perf daemon: Fix file leak in daemon_session__control
     - f2fs: fix to add missing iput() in gc_data_segment()
     - perf stat: Don't display metric header for non-leader uncore events
     - [s390x] vdso: filter out mno-pic-data-is-text-relative cflag
     - [s390x] vdso64: filter out munaligned-symbols flag for vdso
     - [s390x] vdso: Generate unwind information for C modules
     - [s390x] vdso: Use standard stack frame layout
     - [s390x] ipl: Fix incorrect initialization of len fields in nvme reipl
       block
     - [s390x] ipl: Fix incorrect initialization of nvme dump block
     - [s390x] boot: Remove alt_stfle_fac_list from decompressor
     - Input: ims-pcu - fix printf string overflow
     - Input: ioc3kbd - convert to platform remove callback returning void
     - Input: ioc3kbd - add device table
     - mmc: sdhci_am654: Add tuning algorithm for delay chain
     - mmc: sdhci_am654: Write ITAPDLY for DDR52 timing
     - mmc: sdhci_am654: Drop lookup for deprecated ti,otap-del-sel
     - mmc: sdhci_am654: Add OTAP/ITAP delay enable
     - mmc: sdhci_am654: Add ITAPDLYSEL in sdhci_j721e_4bit_set_clock
     - mmc: sdhci_am654: Fix ITAPDLY for HS400 timing
     - Input: pm8xxx-vibrator - correct VIB_MAX_LEVELS calculation
     - [arm64] drm/msm/dsi: Print dual-DSI-adjusted pclk instead of original mode
       pclk
     - [arm64] drm/msm/dpu: Always flush the slave INTF on the CTL
     - drm/bridge: tc358775: fix support for jeida-18 and jeida-24
     - media: stk1160: fix bounds checking in stk1160_copy_video()
     - scsi: qla2xxx: Replace all non-returning strlcpy() with strscpy()
     - Input: cyapa - add missing input core locking to suspend/resume functions
     - media: flexcop-usb: fix sanity check of bNumEndpoints
     - [powerpc*] pseries: Add failure related checks for h_get_mpp and h_get_ppp
     - media: sunxi: a83-mips-csi2: also select GENERIC_PHY
     - media: cec: cec-adap: always cancel work in cec_transmit_msg_fh
     - media: cec: cec-api: add locking in cec_release()
     - media: cec: core: avoid recursive cec_claim_log_addrs
     - media: cec: core: avoid confusing "transmit timed out" message
     - Revert "drm/bridge: ti-sn65dsi83: Fix enable error path"
     - [arm64] drm/msm: Enable clamp_to_idle for 7c3
     - [arm64] drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting
       fails
     - null_blk: Fix the WARNING: modpost: missing MODULE_DESCRIPTION()
     - ALSA: hda/cs_dsp_ctl: Use private_free for control cleanup
     - ASoC: mediatek: mt8192: fix register configuration for tdm
     - regulator: bd71828: Don't overwrite runtime voltages
     - perf/arm-dmc620: Fix lockdep assert in ->event_init()
     - [x86] kconfig: Select ARCH_WANT_FRAME_POINTERS again when
       UNWINDER_FRAME_POINTER=y
     - net: Always descend into dsa/ folder with CONFIG_NET_DSA enabled
     - ipv6: sr: fix missing sk_buff release in seg6_input_core
     - nfc: nci: Fix uninit-value in nci_rx_work
     - ASoC: tas2552: Add TX path for capturing AUDIO-OUT data
     - NFSv4: Fixup smatch warning for ambiguous return
     - nfs: keep server info for remounts
     - sunrpc: fix NFSACL RPC retry on soft mount
     - rpcrdma: fix handling for RDMA_CM_EVENT_DEVICE_REMOVAL
     - af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock.
       (CVE-2024-36972)
     - ipv6: sr: fix memleak in seg6_hmac_init_algo
     - tcp: Fix shift-out-of-bounds in dctcp_update_alpha().
     - pNFS/filelayout: fixup pNfs allocation modes
     - openvswitch: Set the skbuff pkt_type for proper pmtud support.
     - [arm64] asm-bug: Add .align 2 to the end of __BUG_ENTRY
     - rv: Update rv_en(dis)able_monitor doc to match kernel-doc
     - virtio: delete vq in vp_find_vqs_msix() when request_irq() fails
     - Revert "ixgbe: Manual AN-37 for troublesome link partners for X550 SFI"
     - net: fec: avoid lock evasion when reading pps_enable
     - tls: fix missing memory barrier in tls_init
     - inet: factor out locked section of inet_accept() in a new helper
     - net: relax socket state check at accept time.
     - nfc: nci: Fix kcov check in nci_rx_work()
     - nfc: nci: Fix handling of zero-length payload packets in nci_rx_work()
     - drivers/xen: Improve the late XenStore init protocol
     - ice: Interpret .set_channels() input differently
     - netfilter: nfnetlink_queue: acquire rcu_read_lock() in
       instance_destroy_rcu()
     - netfilter: nft_payload: restore vlan q-in-q match support
     - spi: Don't mark message DMA mapped when no transfer in it is
     - dma-mapping: benchmark: fix node id validation
     - dma-mapping: benchmark: handle NUMA_NO_NODE correctly
     - nvmet: fix ns enable/disable possible hang
     - net: phy: micrel: set soft_reset callback to genphy_soft_reset for KSZ8061
     - net/mlx5: Lag, do bond only if slaves agree on roce state
     - net/mlx5e: Fix IPsec tunnel mode offload feature check
     - net/mlx5e: Use rx_missed_errors instead of rx_dropped for reporting buffer
       exhaustion
     - net/mlx5e: Fix UDP GSO for encapsulated packets
     - dma-buf/sw-sync: don't enable IRQ from sync_print_obj()
     - bpf: Fix potential integer overflow in resolve_btfids
     - ALSA: jack: Use guard() for locking
     - ALSA: core: Remove debugfs at disconnection
     - ALSA: hda/realtek: Add quirk for ASUS ROG G634Z
     - ALSA: hda/realtek: Amend G634 quirk to enable rear speakers
     - ALSA: hda/realtek: Adjust G814JZR to use SPI init for amp
     - enic: Validate length of nl attributes in enic_set_vf_port
     - af_unix: Read sk->sk_hash under bindlock during bind().
     - net: usb: smsc95xx: fix changing LED_SEL bit value updated from EEPROM
     - bpf: Allow delete from sockmap/sockhash only if update is allowed
     - net:fec: Add fec_enet_deinit()
     - ice: fix accounting if a VLAN already exists
     - netfilter: nft_payload: move struct nft_payload_set definition where it
       belongs
     - netfilter: nft_payload: rebuild vlan header when needed
     - netfilter: nft_payload: rebuild vlan header on h_proto access
     - netfilter: nft_payload: skbuff vlan metadata mangle support
     - netfilter: tproxy: bail out if IP has been disabled on the device
     - netfilter: nft_fib: allow from forward/input without iif selector
     - kconfig: fix comparison to constant symbols, 'm', 'n'
     - [x86] drm/i915/guc: avoid FIELD_PREP warning
     - spi: stm32: Don't warn about spurious interrupts
     - net: dsa: microchip: fix RGMII error in KSZ DSA driver
     - net: ena: Add dynamic recycling mechanism for rx buffers
     - net: ena: Reduce lines with longer column width boundary
     - net: ena: Fix redundant device NUMA node override
     - ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound
     - [powerpc*] pseries/lparcfg: drop error message from guest name lookup
     - hwmon: (shtc1) Fix property misspelling
     - ALSA: timer: Set lower bound of start tick time
     - net: ena: Fix DMA syncing in XDP path when SWIOTLB is on
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.94
     - drm: Check output polling initialized before disabling (CVE-2024-35927)
     - drm: Check polling initialized before enabling in
       drm_helper_probe_single_connector_modes
     - Bluetooth: btrtl: Add missing MODULE_FIRMWARE declarations
     - maple_tree: fix allocation in mas_sparse_area()
     - maple_tree: fix mas_empty_area_rev() null pointer dereference
       (CVE-2024-36891)
     - mmc: core: Do not force a retune before RPMB switch
     - afs: Don't cross .backup mountpoint from backup volume
     - nilfs2: fix use-after-free of timer for log writer thread (CVE-2024-38583)
     - [x86] drm/i915/audio: Fix audio time stamp programming for DP
     - mptcp: avoid some duplicate code in socket option handling
     - mptcp: cleanup SOL_TCP handling
     - mptcp: fix full TCP keep-alive support
     - vxlan: Fix regression when dropping packets due to invalid src addresses
     - scripts/gdb: fix SB_* constants parsing
     - f2fs: fix to do sanity check on i_xattr_nid in sanity_check_inode()
     - media: lgdt3306a: Add a check against null-pointer-def
     - drm/amdgpu: add error handle to avoid out-of-bounds
     - bcache: fix variable length array abuse in btree_iter
     - wifi: rtw89: correct aSIFSTime for 6GHz band
     - ata: pata_legacy: make legacy_exit() work again
     - thermal/drivers/qcom/lmh: Check for SCM availability at probe
     - [arm64] soc: qcom: rpmh-rsc: Enhance check for VRM in-flight request
     - ACPI: resource: Do IRQ override on TongFang GXxHRXx and GMxHGxx
     - [arm64] tegra: Correct Tegra132 I2C alias
     - [arm64] dts: qcom: qcs404: fix bluetooth device address
     - md/raid5: fix deadlock that raid5d() wait for itself to clear
       MD_SB_CHANGE_PENDING
     - wifi: rtw89: pci: correct TX resource checking for PCI DMA channel of
       firmware command
     - wifi: rtl8xxxu: Fix the TX power of RTL8192CU, RTL8723AU
     - wifi: rtlwifi: rtl8192de: Fix 5 GHz TX power
     - wifi: rtlwifi: rtl8192de: Fix low speed with WPA3-SAE
     - wifi: rtlwifi: rtl8192de: Fix endianness issue in RX path
     - [arm64] dts: hi3798cv200: fix the size of GICR
     - media: mc: Fix graph walk in media_pipeline_start
     - media: mc: mark the media devnode as registered from the, start
     - media: mxl5xx: Move xpt structures off stack
     - media: v4l2-core: hold videodev_lock until dev reg, finishes
     - mmc: core: Add mmc_gpiod_set_cd_config() function
     - mmc: sdhci: Add support for "Tuning Error" interrupts
     - mmc: sdhci-acpi: Sort DMI quirks alphabetically
     - mmc: sdhci-acpi: Fix Lenovo Yoga Tablet 2 Pro 1380 sdcard slot not working
     - mmc: sdhci-acpi: Disable write protect detection on Toshiba WT10-A
     - mmc: sdhci-acpi: Add quirk to enable pull-up on the card-detect GPIO on
       Asus T100TA
     - fbdev: savage: Handle err return when savagefb_check_var failed
     - drm/amdgpu/atomfirmware: add intergrated info v2.3 table
     - 9p: add missing locking around taking dentry fid list
     - drm/amd: Fix shutdown (again) on some SMU v13.0.4/11 platforms
     - [arm64] KVM: arm64: Fix AArch32 register narrowing on userspace write
     - [arm64] KVM: arm64: Allow AArch32 PSTATE.M to be restored as System mode
     - [arm64] KVM: arm64: AArch32: Fix spurious trapping of conditional
       instructions
     - crypto: ecdsa - Fix module auto-load on add-key
     - crypto: ecrdsa - Fix module auto-load on add_key
     - [x86] crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak
     - mm: fix race between __split_huge_pmd_locked() and GUP-fast
     - scsi: core: Handle devices which return an unusually large VPD page count
     - net/ipv6: Fix route deleting failure when metric equals 0
     - net/9p: fix uninit-value in p9_client_rpc()
     - kmsan: do not wipe out origin when doing partial unpoisoning
     - cpufreq: amd-pstate: Fix the inconsistency in max frequency units
     - [x86] intel_th: pci: Add Meteor Lake-S CPU support
     - mm/cma: drop incorrect alignment check in cma_init_reserved_mem
     - mm/hugetlb: pass correct order_per_bit to cma_declare_contiguous_nid
     - watchdog: rti_wdt: Set min_hw_heartbeat_ms to accommodate a safety margin
     - kdb: Fix buffer overflow during tab-complete
     - kdb: Use format-strings rather than '\0' injection in kdb_read()
     - kdb: Fix console handling when editing and tab-completing commands
     - kdb: Merge identical case statements in kdb_read()
     - kdb: Use format-specifiers rather than memset() for padding in kdb_read()
     - net: fix __dst_negative_advice() race (CVE-2024-36971)
     - ext4: set type of ac_groups_linear_remaining to __u32 to avoid overflow
     - ext4: fix mb_cache_entry's e_refcnt leak in ext4_xattr_block_cache_find()
     - [s390x] ap: Fix crash in AP internal function modify_bitmap()
     - [s390x] cpacf: Split and rework cpacf query functions
     - [s390x] cpacf: Make use of invalid opcode produce a link error
     - i3c: master: svc: fix invalidate IBI type and miss call client IBI handler
     - EDAC/igen6: Convert PCIBIOS_* return codes to errnos
     - nfs: fix undefined behavior in nfs_block_bits()
     - NFS: Fix READ_PLUS when server doesn't support OP_READ_PLUS
     - btrfs: fix crash on racing fsync and size-extending write into prealloc
     - [powerpc*] bpf: enforce full ordering for ATOMIC operations with BPF_FETCH
     - smb: client: fix deadlock in smb2_find_smb_tcon()
     - smp: Provide 'setup_max_cpus' definition on UP too
 .
   [ Uwe Kleine-König ]
   * [arm*] Enable symbols in Raspberry Pi device trees for simplified overlay
     application.
   * d/rules: Let blhc ignore perf tests binaries that are compiled without
     fortification
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 22
   * [rt] Update to 6.1.90-rt30
   * net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (CVE-2024-36974)
linux-signed-i386 (6.1.90+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.90-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.86
     - amdkfd: use calloc instead of kzalloc to avoid integer overflow
       (CVE-2024-26817)
     - wifi: ath9k: fix LNA selection in ath_ant_try_scan()
     - bnx2x: Fix firmware version string character counts
     - wifi: rtw89: pci: enlarge RX DMA buffer to consider size of RX descriptor
     - [x86] VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host()
     - wifi: iwlwifi: pcie: Add the PCI device id for new hardware
     - panic: Flush kernel log buffer at the end
     - cpuidle: Avoid potential overflow in integer multiplication
     - [arm64] dts: rockchip: fix rk3328 hdmi ports node
     - [arm64] dts: rockchip: fix rk3399 hdmi ports node
     - ionic: set adminq irq affinity
     - net: skbuff: add overflow debug check to pull/push helpers
     - wifi: brcmfmac: Add DMI nvram filename quirk for ACEPC W5 Pro
     - pstore/zone: Add a null pointer check to the psz_kmsg_read
     - net: pcs: xpcs: Return EINVAL in the internal methods
     - dma-direct: Leak pages on dma_set_decrypted() failure
     - wifi: ath11k: decrease MHI channel buffer length to 8KB
     - cpufreq: Don't unregister cpufreq cooling on CPU hotplug
     - btrfs: handle chunk tree lookup error in btrfs_relocate_sys_chunks()
     - btrfs: export: handle invalid inode or root reference in
       btrfs_get_parent()
     - btrfs: send: handle path ref underflow in header iterate_inode_ref()
     - ice: use relative VSI index for VFs instead of PF VSI number
     - net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list()
     - Bluetooth: btintel: Fix null ptr deref in btintel_read_version
     - Bluetooth: btmtk: Add MODULE_FIRMWARE() for MT7922
     - [arm64,armhf] drm/vc4: don't check if plane->state->fb == state->fb
     - Input: synaptics-rmi4 - fail probing if memory allocation for "phys" fails
     - drm: panel-orientation-quirks: Add quirk for GPD Win Mini
     - pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs
     - sysv: don't call sb_bread() with pointers_lock held
     - scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc()
     - isofs: handle CDs with bad root inode but good Joliet root directory
     - ASoC: Intel: common: DMI remap for rebranded Intel NUC M15 (LAPRC710)
       laptops
     - rcu-tasks: Repair RCU Tasks Trace quiescence check
     - Julia Lawall reported this null pointer dereference, this should fix it.
     - media: sta2x11: fix irq handler cast
     - ALSA: firewire-lib: handle quirk to calculate payload quadlets as data
       block counter
     - ext4: add a hint for block bitmap corrupt state in mb_groups
     - ext4: forbid commit inconsistent quota data when errors=remount-ro
     - drm/amd/display: Fix nanosec stat overflow
     - drm/amd/amdgpu: Fix potential ioremap() memory leaks in
       amdgpu_device_init()
     - SUNRPC: increase size of rpc_wait_queue.qlen from unsigned short to
       unsigned int
     - Revert "ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default"
     - libperf evlist: Avoid out-of-bounds access
     - input/touchscreen: imagis: Correct the maximum touch area value
     - block: prevent division by zero in blk_rq_stat_sum()
     - RDMA/cm: add timeout to cm_destroy_id wait
     - Input: imagis - use FIELD_GET where applicable
     - Input: allocate keycode for Display refresh rate toggle
     - platform/x86: touchscreen_dmi: Add an extra entry for a variant of the
       Chuwi Vi8 tablet
     - [x86] perf/x86/amd/lbr: Discard erroneous branch entries
     - ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent
       environment
     - bus: mhi: host: Add MHI_PM_SYS_ERR_FAIL state
     - usb: gadget: uvc: mark incomplete frames with UVC_STREAM_ERR
     - [x86] thunderbolt: Keep the domain powered when USB4 port is in redrive
       mode
     - usb: typec: tcpci: add generic tcpci fallback compatible
     - usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined
     - thermal/of: Assume polling-delay(-passive) 0 when absent
     - ASoC: soc-core.c: Skip dummy codec when adding platforms
     - fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2
     - io_uring: clear opcode specific data for an early failure
     - drivers/nvme: Add quirks for device 126f:2262
     - fbmon: prevent division by zero in fb_videomode_from_videomode()
     - netfilter: nf_tables: release batch on table validation from abort path
     - netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path
       (CVE-2024-26925)
     - netfilter: nf_tables: discard table flag update with pending basechain
       deletion
     - gcc-plugins/stackleak: Avoid .head.text section
     - virtio: reenable config if freezing device failed
     - randomize_kstack: Improve entropy diffusion
     - [x86] platform/x86: intel-vbtn: Update tablet mode switch at end of probe
     - Bluetooth: btintel: Fixe build regression
     - net: mpls: error out if inner headers are not set
     - [x86] VMCI: Fix possible memcpy() run-time warning in
       vmci_datagram_invoke_guest_handler()
     - Revert "drm/amd/amdgpu: Fix potential ioremap() memory leaks in
       amdgpu_device_init()"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.87
     - smb3: fix Open files on server counter going negative
     - ata: libata-scsi: Fix ata_scsi_dev_rescan() error path
     - batman-adv: Avoid infinite loop trying to resize local TT
     - ring-buffer: Only update pages_touched when a new page is touched
     - Bluetooth: Fix memory leak in hci_req_sync_complete()
     - drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11
     - PM: s2idle: Make sure CPUs will wakeup directly on resume
     - media: cec: core: remove length check of Timer Status
     - Revert "drm/qxl: simplify qxl_fence_wait" (Closes: #1054514)
     - nouveau: fix function cast warning
     - scsi: hisi_sas: Modify the deadline for ata_wait_after_reset()
     - scsi: qla2xxx: Fix off by one in qla_edif_app_getstats()
     - net: openvswitch: fix unwanted error log on timeout policy probing
     - u64_stats: fix u64_stats_init() for lockdep when used repeatedly in one
       file
     - xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING
     - geneve: fix header validation in geneve[6]_xmit_skb
     - bnxt_en: Reset PTP tx_avail after possible firmware reset
     - af_unix: Clear stale u->oob_skb.
     - ipv6: fib: hide unused 'pn' variable
     - ipv4/route: avoid unused-but-set-variable warning
     - ipv6: fix race condition between ipv6_get_ifaddr and ipv6_del_addr
     - Bluetooth: SCO: Fix not validating setsockopt user input
     - Bluetooth: L2CAP: Fix not validating setsockopt user input
     - netfilter: complete validation of user input
     - net/mlx5: Properly link new fs rules into the tree
     - net/mlx5e: Fix mlx5e_priv_init() cleanup flow
     - net/mlx5e: HTB, Fix inconsistencies with QoS SQs number
     - af_unix: Do not use atomic ops for unix_sk(sk)->inflight.
     - af_unix: Fix garbage collector racing against connect() (CVE-2024-26923)
     - net: ena: Fix potential sign extension issue
     - net: ena: Wrong missing IO completions check order
     - net: ena: Fix incorrect descriptor free behavior
     - tracing: hide unused ftrace_event_id_fops
     - [amd64] iommu/vt-d: Allocate local memory for page request queue
     - btrfs: qgroup: correctly model root qgroup rsv in convert
     - btrfs: record delayed inode root in transaction
     - btrfs: qgroup: convert PREALLOC to PERTRANS after record_root_in_trans
     - io_uring/net: restore msg_control on sendzc retry
     - kprobes: Fix possible use-after-free issue on kprobe registration
     - [x86] drm/i915/vrr: Disable VRR when using bigjoiner
     - drm/ast: Fix soft lockup
     - drm/client: Fully protect modes[] with dev->mode_config.mutex
     - vhost: Add smp_rmb() in vhost_vq_avail_empty()
     - vhost: Add smp_rmb() in vhost_enable_notify()
     - [x86] perf/x86: Fix out of range data
     - [x86] cpu: Actually turn off mitigations by default for
       SPECULATION_MITIGATIONS=n
     - [x86] apic: Force native_apic_mem_read() to use the MOV instruction
     - irqflags: Explicitly ignore lockdep_hrtimer_exit() argument
     - [x86] bugs: Fix return type of spectre_bhi_state()
     - [x86] bugs: Fix BHI documentation
     - [x86] bugs: Cache the value of MSR_IA32_ARCH_CAPABILITIES
     - [x86] bugs: Rename various 'ia32_cap' variables to 'x86_arch_cap_msr'
     - [x86] bugs: Fix BHI handling of RRSBA
     - [x86] bugs: Clarify that syscall hardening isn't a BHI mitigation
     - [x86] bugs: Remove CONFIG_BHI_MITIGATION_AUTO and spectre_bhi=auto
     - [x86] bugs: Replace CONFIG_SPECTRE_BHI_{ON,OFF} with
       CONFIG_MITIGATION_SPECTRE_BHI
     - [x86] drm/i915/cdclk: Fix CDCLK programming order when pipes are active
     - [x86] drm/i915: Disable port sync when bigjoiner is used
     - drm/amdgpu: Reset dGPU if suspend got aborted
     - drm/amdgpu: always force full reset for SOC21
     - drm/amd/display: fix disable otg wa logic in DCN316
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.88
     - drm/vmwgfx: Enable DMA mappings with SEV
     - drm/amdgpu: fix incorrect active rb bitmap for gfx11
     - drm/amdgpu: fix incorrect number of active RBs for gfx11
     - drm/amd/display: Do not recursively call manual trigger programming
     - io_uring: Fix io_cqring_wait() not restoring sigmask on get_timespec64()
       failure
     - SUNRPC: Fix rpcgss_context trace event acceptor field
     - random: handle creditable entropy from atomic process context
     - net: usb: ax88179_178a: avoid writing the mac address before first reading
     - [x86] drm/i915/vma: Fix UAF on destroy against retire race
     - [x86] efi: Drop EFI stub .bss from .data section
     - [x86] efi: Disregard setup header of loaded image
     - [x86] efistub: Reinstate soft limit for initrd loading
     - [x86] efi: Drop alignment flags from PE section headers
     - [x86] boot: Remove the 'bugger off' message
     - [x86] boot: Omit compression buffer from PE/COFF image memory footprint
     - [x86] boot: Drop redundant code setting the root device
     - [x86] boot: Drop references to startup_64
     - [x86] boot: Grab kernel_info offset from zoffset header directly
     - [x86] boot: Set EFI handover offset directly in header asm
     - [x86] boot: Define setup size in linker script
     - [x86] boot: Derive file size from _edata symbol
     - [x86] boot: Construct PE/COFF .text section from assembler
     - [x86] boot: Drop PE/COFF .reloc section
     - [x86] boot: Split off PE/COFF .data section
     - [x86] boot: Increase section and file alignment to 4k/512
     - [x86] efistub: Use 1:1 file:memory mapping for PE/COFF .compat section
     - [x86] mm: Remove P*D_PAGE_MASK and P*D_PAGE_SIZE macros
     - [x86] head/64: Add missing __head annotation to startup_64_load_idt()
     - [x86] head/64: Move the __head definition to <asm/init.h>
     - [x86] sme: Move early SME kernel encryption handling into .head.text
     - [x86] sev: Move early startup code into .head.text section
     - [x86] efistub: Remap kernel text read-only before dropping NX attribute
     - netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get()
     - netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get()
     - netfilter: br_netfilter: skip conntrack input hook for promisc packets
     - netfilter: nft_set_pipapo: do not free live element (CVE-2024-26924)
     - netfilter: flowtable: validate pppoe header
     - netfilter: flowtable: incorrect pppoe tuple
     - af_unix: Call manage_oob() for every skb in unix_stream_read_generic().
     - af_unix: Don't peek OOB data without MSG_OOB.
     - net/mlx5: Lag, restore buckets number to default after hash LAG
       deactivation
     - net/mlx5e: Prevent deadlock while disabling aRFS
     - ice: tc: allow zero flags in parsing tc flower
     - tun: limit printing rate when illegal packet received by tun dev
     - [arm64] net: ethernet: ti: am65-cpsw-nuss: cleanup DMA Channels before
       using them
     - RDMA/rxe: Fix the problem "mutex_destroy missing"
     - RDMA/cm: Print the old state when cm_destroy_id gets timeout
     - RDMA/mlx5: Fix port number for counter query in multi-port configuration
     - [s390x] qdio: handle deferred cc1
     - [s390x] cio: fix race condition during online processing
     - drm: nv04: Fix out of bounds access
     - [armhf] omap2: n8x0: stop instantiating codec platform data
     - PCI: Avoid FLR for SolidRun SNET DPU rev 1
     - HID: kye: Sort kye devices
     - usb: pci-quirks: Reduce the length of a spinlock section in
       usb_amd_find_chipset_info()
     - PCI: Delay after FLR of Solidigm P44 Pro NVMe
     - [x86] quirks: Include linux/pnp.h for arch_pnpbios_disabled()
     - [x86] thunderbolt: Log function name of the called quirk
     - [x86] thunderbolt: Add debug log for link controller power quirk
     - PCI: Execute quirk_enable_clear_retrain_link() earlier
     - ALSA: scarlett2: Move USB IDs out from device_info struct
     - ALSA: scarlett2: Add support for Clarett 8Pre USB
     - ASoC: ti: Convert Pandora ASoC to GPIO descriptors
     - ALSA: scarlett2: Default mixer driver to enabled
     - ALSA: scarlett2: Add correct product series name to messages
     - ALSA: scarlett2: Add Focusrite Clarett+ 2Pre and 4Pre support
     - ALSA: scarlett2: Add Focusrite Clarett 2Pre and 4Pre USB support
     - PCI/DPC: Use FIELD_GET()
     - PCI: Simplify pcie_capability_clear_and_set_word() to ..._clear_word()
     - ALSA: scarlett2: Rename scarlett_gen2 to scarlett2
     - drm: panel-orientation-quirks: Add quirk for Lenovo Legion Go
     - usb: xhci: Add timeout argument in address_device USB HCD callback
     - usb: new quirk to reduce the SET_ADDRESS request timeout
     - clk: Remove prepare_lock hold assertion in __clk_release()
     - clk: Print an info line before disabling unused clocks
     - clk: Initialize struct clk_core kref earlier
     - clk: Get runtime PM before walking tree during disable_unused
     - clk: remove unnecessary (void*) conversions
     - clk: Show active consumers of clocks in debugfs
     - clk: Get runtime PM before walking tree for clk_summary
     - [x86] bugs: Fix BHI retpoline check
     - [x86] cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ
     - ALSA: hda/realtek - Enable audio jacks of Haier Boyue G42 with ALC269VC
     - [arm*] binder: check offset alignment in binder_get_object()
       (CVE-2024-26926)
     - [x86] thunderbolt: Avoid notify PM core about runtime PM resume
     - [x86] thunderbolt: Fix wake configurations after device unplug
     - [x86] comedi: vmk80xx: fix incomplete endpoint checking
     - [armhf] serial: stm32: Return IRQ_NONE in the ISR if no handling happend
     - [armhf] serial: stm32: Reset .throttled state in .startup()
     - USB: serial: option: add Fibocom FM135-GL variants
     - USB: serial: option: add support for Fibocom FM650/FG650
     - USB: serial: option: add Lonsung U8300/U9300 product
     - USB: serial: option: support Quectel EM060K sub-models
     - USB: serial: option: add Rolling RW101-GL and RW135-GL support
     - USB: serial: option: add Telit FN920C04 rmnet compositions
     - Revert "usb: cdc-wdm: close race between read and workqueue"
     - [arm64,armhf] usb: dwc2: host: Fix dereference issue in DDMA completion
       flow.
     - usb: Disable USB3 LPM at shutdown
     - usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport
       error
     - mei: me: disable RPL-S on SPS and IGN firmwares
     - speakup: Avoid crash on very long word
     - fs: sysfs: Fix reference leak in sysfs_break_active_protection()
     - [x86] KVM: x86: Snapshot if a vCPU's vendor model is AMD vs. Intel
       compatible
     - [x86] KVM: x86/pmu: Disable support for adaptive PEBS
     - [x86] KVM: x86/pmu: Do not mask LVTPC when handling a PMI on AMD platforms
     - [arm64] hibernate: Fix level3 translation fault in swsusp_save()
     - init/main.c: Fix potential static_command_line memory overflow
     - mm/memory-failure: fix deadlock when hugetlb_optimize_vmemmap is enabled
     - drm/amdgpu: validate the parameters of bo mapping operations more clearly
       (CVE-2024-26922)
     - drm/vmwgfx: Sort primary plane formats by order of preference
     - drm/vmwgfx: Fix crtc's atomic check conditional
     - nouveau: fix instmem race condition around ptr stores
     - bootconfig: use memblock_free_late to free xbc memory to buddy
     - nilfs2: fix OOB in nilfs_set_de_type
     - net: dsa: introduce preferred_default_local_cpu_port and use on MT7530
     - ksmbd: fix slab-out-of-bounds in smb2_allocate_rsp_buf
     - ksmbd: validate request buffer size in smb2_allocate_rsp_buf()
     - ksmbd: clear RENAME_NOREPLACE before calling vfs_rename
     - ksmbd: common: use struct_group_attr instead of struct_group for
       network_open_info
     - PCI/ASPM: Fix deadlock when enabling ASPM (CVE-2024-26605)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.89
     - Revert "ASoC: ti: Convert Pandora ASoC to GPIO descriptors"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.90
     - smb: client: fix rename(2) regression against samba
     - cifs: reinstate original behavior again for forceuid/forcegid
     - [amd64] HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized
       dev->devc
     - HID: logitech-dj: allow mice to use all types of reports
     - wifi: iwlwifi: mvm: remove old PASN station when adding a new one
     - wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd
     - vxlan: drop packets from invalid src-address
     - icmp: prevent possible NULL dereferences from icmp_build_probe()
     - bridge/br_netlink.c: no need to return void function
     - bnxt_en: refactor reset close code
     - bnxt_en: Fix the PCI-AER routines
     - NFC: trf7970a: disable all regulators on removal
     - ax25: Fix netdev refcount issue
     - net: make SK_MEMORY_PCPU_RESERV tunable
     - net: fix sk_memory_allocated_{add|sub} vs softirqs
     - ipv4: check for NULL idev in ip_route_use_hint()
     - net: usb: ax88179_178a: stop lying about skb->truesize
     - net: gtp: Fix Use-After-Free in gtp_dellink
     - Bluetooth: MGMT: Fix failing to MGMT_OP_ADD_UUID/MGMT_OP_REMOVE_UUID
     - Bluetooth: hci_sync: Using hci_cmd_sync_submit when removing Adv Monitor
     - Bluetooth: qca: set power_ctrl_enabled on NULL returned by
       gpiod_get_optional()
     - ipvs: Fix checksumming on GSO of SCTP packets
     - net: openvswitch: Fix Use-After-Free in ovs_ct_exit
     - eth: bnxt: fix counting packets discarded due to OOM and netpoll
     - netfilter: nf_tables: honor table dormant flag from netdev release event
       path
     - i40e: Do not use WQ_MEM_RECLAIM flag for workqueue
     - i40e: Report MFS in decimal base instead of hex
     - iavf: Fix TC config comparison with existing adapter TC config
     - net: ethernet: ti: am65-cpts: Fix PTPv1 message type on TX packets
     - af_unix: Suppress false-positive lockdep splat for spin_lock() in
       __unix_gc().
     - cifs: Replace remaining 1-element arrays (Closes: #1069102, #1069092)
     - Revert "crypto: api - Disallow identical driver names"
     - virtio_net: Do not send RSS key if it is not supported
     - fork: defer linking file vma until vma is fully initialized
       (CVE-2024-27022)
     - [x86] cpu: Fix check for RDPKRU in __show_regs()
     - Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853
     - Bluetooth: qca: fix NULL-deref on non-serdev suspend
     - [arm64] mmc: sdhci-msm: pervent access to suspended controller
     - smb: client: Fix struct_group() usage in __packed structs
     - smb3: fix lock ordering potential deadlock in cifs_sync_mid_result
     - HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up
     - btrfs: fix information leak in btrfs_ioctl_logical_to_ino()
     - cpu: Re-enable CPU mitigations by default for !X86 architectures
     - drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3
     - drm/amdgpu: Fix leak when GPU memory allocation fails
     - irqchip/gic-v3-its: Prevent double free on error
     - ACPI: CPPC: Use access_width over bit_width for system memory accesses
     - ACPI: CPPC: Fix bit_offset shift in MASK_VAL() macro
     - ACPI: CPPC: Fix access width used for PCC registers
     - ethernet: Add helper for assigning packet type when dest address does not
       match device address
     - net: b44: set pause params only when interface is up
     - stackdepot: respect __GFP_NOLOCKDEP allocation flag
     - fbdev: fix incorrect address computation in deferred IO
     - udp: preserve the connected status if only UDP cmsg
     - mtd: diskonchip: work around ubsan link failure
     - [x86] tdx: Preserve shared bit on mprotect()
     - [x86] idma64: Don't try to serve interrupts when device is powered off
     - [arm64,armhf] phy: marvell: a3700-comphy: Fix out of bounds read
     - [arm64,armhf] phy: marvell: a3700-comphy: Fix hardcoded array size
     - [arm64] phy: rockchip-snps-pcie3: fix bifurcation on rk3588
     - [arm64] phy: rockchip-snps-pcie3: fix clearing PHP_GRF_PCIESEL_CON bits
     - [amd64] dmaengine: idxd: Fix oops during rmmod on single-CPU platforms
     - i2c: smbus: fix NULL function pointer dereference
     - bounds: Use the right number of bits for power-of-two CONFIG_NR_CPUS
     - macsec: Enable devices to advertise whether they update sk_buff md_dst
       during offloads
     - macsec: Detect if Rx skb is macsec-related for offloading devices that
       update md_dst
     - net/mlx5e: Advertise mlx5 ethernet driver updates sk_buff md_dst for
       MACsec
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 21
   * drivers/tty: Disable N_GSM
   * tipc: fix UAF in error path
   * tipc: fix a possible memleak in tipc_buf_append
linux-signed-i386 (6.1.90+1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Sign kernel from linux 6.1.90-1~bpo11+1
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.21
linux-signed-i386 (6.1.85+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.85-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.83
     - md: fix data corruption for raid456 when reshape restart while grow up
     - md/raid10: prevent soft lockup while flush writes
     - io_uring/unix: drop usage of io_uring socket
     - io_uring: drop any code related to SCM_RIGHTS
     - nfsd: allow nfsd_file_get to sanely handle a NULL pointer
     - nfsd: don't open-code clear_and_wake_up_bit
     - nfsd: NFSD_FILE_KEY_INODE only needs to find GC'ed entries
     - nfsd: simplify test_bit return in NFSD_FILE_KEY_FULL comparator
     - nfsd: don't kill nfsd_files because of lease break error
     - nfsd: add some comments to nfsd_file_do_acquire
     - nfsd: don't take/put an extra reference when putting a file
     - nfsd: update comment over __nfsd_file_cache_purge
     - nfsd: allow reaping files still under writeback
     - NFSD: Convert filecache to rhltable
     - nfsd: simplify the delayed disposal list code
     - NFSD: Fix problem of COMMIT and NFS4ERR_DELAY in infinite loop
     - NFSD: Add an nfsd4_encode_nfstime4() helper
     - nfsd: Fix creation time serialization order
     - [arm64] media: rkisp1: Fix IRQ handling due to shared interrupts
     - perf/arm-cmn: Workaround AmpereOneX errata AC04_MESH_1 (incorrect child
       count)
     - ASoC: rt5645: Make LattePanda board DMI match more precise
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82UU
     - [x86] xen: Add some null pointer checking to smp.c
     - [mips*] Clear Cause.BD in instruction_pointer_set
     - HID: multitouch: Add required quirk for Synaptics 0xcddc device
     - gen_compile_commands: fix invalid escape sequence warning
     - [arm64] sve: Lower the maximum allocation for the SVE ptrace regset
     - soc: microchip: Fix POLARFIRE_SOC_SYS_CTRL input prompt
     - RDMA/mlx5: Fix fortify source warning while accessing Eth segment
     - RDMA/mlx5: Relax DEVX access upon modify commands
     - [x86] mm: Move is_vsyscall_vaddr() into asm/vsyscall.h
     - [x86] mm: Disallow vsyscall page read for copy_from_kernel_nofault()
     - net/iucv: fix the allocation size of iucv_path_table array
     - block: sed-opal: handle empty atoms when parsing response
     - dm-verity, dm-crypt: align "struct bvec_iter" correctly
     - [arm64] dts: Fix dtc interrupt_provider warnings
     - btrfs: fix data races when accessing the reserved amount of block reserves
     - btrfs: fix data race at btrfs_use_block_rsv() when accessing block reserve
     - net: smsc95xx: add support for SYS TEC USB-SPEmodule1
     - wifi: mac80211: only call drv_sta_rc_update for uploaded stations
     - [x86] ASoC: amd: yc: Add Lenovo ThinkBook 21J0 into DMI quirk table
     - scsi: mpt3sas: Prevent sending diag_reset when the controller is ready
     - ALSA: hda/realtek - ALC285 reduce pop noise from Headphone port
     - drm/amdgpu: Enable gpu reset for S3 abort cases on Raven series
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 21J2
     - Bluetooth: mgmt: Fix limited discoverable off timeout
     - firewire: core: use long bus reset on gap count error
     - [arm64] tegra: Set the correct PHY mode for MGBE
     - [x86] ASoC: Intel: bytcr_rt5640: Add an extra entry for the Chuwi Vi8
       tablet
     - Input: gpio_keys_polled - suppress deferred probe error for gpio
     - [x86] ASoC: wm8962: Enable oscillator if selecting WM8962_FLL_OSC
     - [x86] ASoC: wm8962: Enable both SPKOUTR_ENA and SPKOUTL_ENA in mono mode
     - [x86] ASoC: wm8962: Fix up incorrect error message in wm8962_set_fll
     - do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak
     - fs: Fix rw_hint validation
     - [s390x] dasd: add autoquiesce feature
     - [s390x] dasd: Use dev_*() for device log messages
     - [s390x] dasd: fix double module refcount decrement
     - rcu/exp: Fix RCU expedited parallel grace period kworker allocation
       failure recovery
     - rcu/exp: Handle RCU expedited grace period kworker allocation failure
     - nbd: null check for nla_nest_start
     - fs/select: rework stack allocation hack for clang
     - md: Don't clear MD_CLOSING when the raid is about to stop
     - lib/cmdline: Fix an invalid format specifier in an assertion msg
     - lib: memcpy_kunit: Fix an invalid format specifier in an assertion msg
     - time: test: Fix incorrect format specifier
     - rtc: test: Fix invalid format specifier.
     - io_uring/net: unify how recvmsg and sendmsg copy in the msghdr
     - io_uring/net: move receive multishot out of the generic msghdr path
     - io_uring/net: fix overflow check in io_recvmsg_mshot_prep()
     - [x86] resctrl: Implement new mba_MBps throttling heuristic
     - [x86] sme: Fix memory encryption setting if enabled by default and not
       overridden
     - timekeeping: Fix cross-timestamp interpolation on counter wrap
     - timekeeping: Fix cross-timestamp interpolation corner case decision
     - timekeeping: Fix cross-timestamp interpolation for non-x86
     - sched/fair: Take the scheduling domain into account in select_idle_smt()
     - sched/fair: Take the scheduling domain into account in select_idle_core()
     - wifi: b43: Stop/wake correct queue in DMA Tx path when QoS is disabled
     - wifi: b43: Stop/wake correct queue in PIO Tx path when QoS is disabled
     - wifi: b43: Stop correct queue in DMA worker when QoS is disabled
     - wifi: b43: Disable QoS for bcm4331
     - wifi: wilc1000: fix declarations ordering
     - wifi: wilc1000: fix RCU usage in connect path
     - wifi: rtl8xxxu: add cancel_work_sync() for c2hcmd_work
     - wifi: wilc1000: do not realloc workqueue everytime an interface is added
     - wifi: wilc1000: fix multi-vif management when deleting a vif
     - wifi: mwifiex: debugfs: Drop unnecessary error check for
       debugfs_create_dir()
     - cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value
     - cpufreq: Explicitly include correct DT includes
     - cpufreq: mediatek-hw: Wait for CPU supplies before probing
     - sock_diag: annotate data-races around sock_diag_handlers[family]
     - inet_diag: annotate data-races around inet_diag_table[]
     - bpftool: Silence build warning about calloc()
     - libbpf: Apply map_set_def_max_entries() for inner_maps on creation
     - af_unix: Annotate data-race of gc_in_progress in wait_for_unix_gc().
     - cpufreq: mediatek-hw: Don't error out if supply is not found
     - libbpf: Fix faccessat() usage on Android
     - pmdomain: qcom: rpmhpd: Drop SA8540P gfx.lvl
     - [arm64] dts: imx8mm-kontron: Disable pullups for I2C signals on OSM-S
       i.MX8MM
     - [arm64] dts: imx8mm-kontron: Disable pullups for I2C signals on SL/BL
       i.MX8MM
     - [arm64] dts: imx8mm-kontron: Disable pullups for onboard UART signals on
       BL OSM-S board
     - [arm64] dts: imx8mm-kontron: Disable pullups for onboard UART signals on
       BL board
     - [arm64] dts: imx8mm-kontron: Disable pull resistors for SD card signals on
       BL OSM-S board
     - [arm64] dts: imx8mm-kontron: Disable pull resistors for SD card signals on
       BL board
     - [arm64] dts: imx8mm-kontron: Fix interrupt for RTC on OSM-S i.MX8MM module
     - libbpf: Add missing LIBBPF_API annotation to libbpf_set_memlock_rlim API
     - wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete
     - wifi: iwlwifi: mvm: report beacon protection failures
     - wifi: iwlwifi: dbg-tlv: ensure NUL termination
     - wifi: iwlwifi: fix EWRD table validity check
     - gpio: vf610: allow disabling the vf610 driver
     - [arm64] dts: imx8mm-venice-gw71xx: fix USB OTG VBUS
     - net: blackhole_dev: fix build warning for ethh set but not used
     - wifi: ath11k: initialize rx_mcs_80 and rx_mcs_160 before use
     - wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer()
     - wifi: wfx: fix memory leak when starting AP
     - printk: Disable passing console lock owner completely during panic()
     - pwm: sti: Fix capture for st,pwm-num-chan < st,capture-num-chan
     - tools/resolve_btfids: Refactor set sorting with types from btf_ids.h
     - tools/resolve_btfids: Fix cross-compilation to non-host endianness
     - wifi: iwlwifi: mvm: don't set replay counters to 0xff
     - [s390x] pai: fix attr_event_free upper limit for pai device drivers
     - [s390x] vdso: drop '-fPIC' from LDFLAGS
     - ipv6: mcast: remove one synchronize_net() barrier in ipv6_mc_down()
     - [arm64] dts: mt8183: kukui: Split out keyboard node and describe
       detachables
     - [arm64] dts: mt8183: Move CrosEC base detection node to kukui-based DTs
     - [arm64] dts: mediatek: mt7986: add "#reset-cells" to infracfg
     - [arm64] dts: mediatek: mt8192-asurada: Remove CrosEC base detection node
     - [arm64] dts: mediatek: mt8192: fix vencoder clock name
     - [arm64] dts: mediatek: mt7622: add missing "device_type" to memory nodes
     - bpf: Mark bpf_spin_{lock,unlock}() helpers with notrace correctly
     - wifi: wilc1000: prevent use-after-free on vif when cleaning up all
       interfaces
     - ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit()
     - bus: tegra-aconnect: Update dependency to ARCH_TEGRA
     - [amd64] iommu/amd: Mark interrupt as managed
     - wifi: brcmsmac: avoid function pointer casts
     - [arm64] dts: qcom: sdm845-db845c: correct PCIe wake-gpios
     - [arm64] dts: qcom: sm8150: use 'gpios' suffix for PCI GPIOs
     - [arm64] dts: qcom: sm8150: correct PCIe wake-gpios
     - powercap: dtpm_cpu: Fix error check against freq_qos_add_request()
     - net: ena: Remove ena_select_queue
     - [arm64] dts: mt8195-cherry-tomato: change watchdog reset boot flow
     - firmware: arm_scmi: Fix double free in SMC transport cleanup path
     - wifi: wilc1000: revert reset line logic flip
     - net: mctp: copy skb ext data when fragmenting
     - pstore: inode: Convert mutex usage to guard(mutex)
     - pstore: inode: Only d_invalidate() is needed
     - [arm64] dts: allwinner: h6: Add RX DMA channel for SPDIF
     - ACPI: resource: Add Infinity laptops to irq1_edge_low_force_override
     - ACPI: resource: Do IRQ override on Lunnen Ground laptops
     - ACPI: resource: Add MAIBENBEN X577 to irq1_edge_low_force_override
     - ACPI: scan: Fix device check notification handling
     - [x86] relocs: Ignore relocations in .notes section (CVE-2024-26816)
     - SUNRPC: fix some memleaks in gssx_dec_option_array
     - mmc: wmt-sdmmc: remove an incorrect release_mem_region() call in the
       .remove function
     - ACPI: CPPC: enable AMD CPPC V2 support for family 17h processors
     - wifi: rtw88: 8821c: Fix beacon loss and disconnect
     - wifi: rtw88: 8821c: Fix false alarm count
     - PCI: Make pci_dev_is_disconnected() helper public for other drivers
     - [amd64] iommu/vt-d: Don't issue ATS Invalidation request when device is
       disconnected
     - igb: Fix missing time sync events
     - Bluetooth: Remove HCI_POWER_OFF_TIMEOUT
     - Bluetooth: mgmt: Remove leftover queuing of power_off work
     - Bluetooth: Remove superfluous call to hci_conn_check_pending()
     - Bluetooth: hci_qca: don't use IS_ERR_OR_NULL() with gpiod_get_optional()
     - Bluetooth: Cancel sync command before suspend and power off
     - Bluetooth: hci_sync: Only allow hci_cmd_sync_queue if running
     - Bluetooth: hci_conn: Consolidate code for aborting connections
     - Bluetooth: hci_core: Cancel request on command timeout
     - Bluetooth: hci_sync: Fix overwriting request callback
     - Bluetooth: hci_core: Fix possible buffer overflow
     - Bluetooth: af_bluetooth: Fix deadlock
     - Bluetooth: fix use-after-free in accessing skb after sending it
     - [s390x] cache: prevent rebuild of shared_cpu_list
     - bpf: Fix DEVMAP_HASH overflow check on 32-bit arches
     - bpf: Fix hashtab overflow check on 32-bit arches
     - bpf: Fix stackmap overflow check on 32-bit arches
     - [amd64] iommu/vt-d: Retrieve IOMMU perfmon capability information
     - ipv6: fib6_rules: flush route cache when rule is changed
     - net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv()
     - net: phy: fix phy_get_internal_delay accessing an empty array
     - [arm64] net: hns3: fix wrong judgment condition issue
     - [arm64] net: hns3: fix kernel crash when 1588 is received on HIP08 devices
     - [arm64] net: hns3: fix port duplex configure error in IMP reset
     - Bluetooth: MGMT: Fix always using HCI_MAX_AD_LENGTH
     - Bluetooth: hci_core: Fix missing instances using HCI_MAX_AD_LENGTH
     - Bluetooth: Fix eir name length
     - net: phy: dp83822: Fix RGMII TX delay configuration
     - OPP: debugfs: Fix warning around icc_get_name()
     - tcp: fix incorrect parameter validation in the do_tcp_getsockopt()
       function
     - ipmr: fix incorrect parameter validation in the ip_mroute_getsockopt()
       function
     - l2tp: fix incorrect parameter validation in the pppol2tp_getsockopt()
       function
     - udp: fix incorrect parameter validation in the udp_lib_getsockopt()
       function
     - net: kcm: fix incorrect parameter validation in the kcm_getsockopt)
       function
     - nfp: flower: handle acti_netdevs allocation failure
     - bpf: hardcode BPF_PROG_PACK_SIZE to 2MB * num_possible_nodes()
     - dm raid: fix false positive for requeue needed during reshape
     - dm: call the resume method on internal suspend
     - [arm64,armhf] drm/tegra: dsi: Add missing check for of_find_device_by_node
     - [arm64,armhf] drm/tegra: dpaux: Fix PM disable depth imbalance in
       tegra_dpaux_probe
     - [arm64,armhf] drm/tegra: dsi: Make use of the helper function
       dev_err_probe()
     - [arm64,armhf] drm/tegra: dsi: Fix some error handling paths in
       tegra_dsi_probe()
     - [arm64,armhf] drm/tegra: dsi: Fix missing pm_runtime_disable() in the
       error handling path of tegra_dsi_probe()
     - [arm64,armhf] drm/tegra: hdmi: Convert to devm_platform_ioremap_resource()
     - [arm64,armhf] drm/tegra: hdmi: Fix some error handling paths in
       tegra_hdmi_probe()
     - [arm64,armhf] drm/tegra: rgb: Fix some error handling paths in
       tegra_dc_rgb_probe()
     - [arm64,armhf] drm/tegra: rgb: Fix missing clk_put() in the error handling
       paths of tegra_dc_rgb_probe()
     - [arm64,armhf] drm/tegra: output: Fix missing i2c_put_adapter() in the
       error handling paths of tegra_output_probe()
     - drm: Don't treat 0 as -1 in drm_fixp2int_ceil
     - drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node
     - drm/panel-edp: use put_sync in unprepare
     - drm/lima: fix a memleak in lima_heap_alloc
     - [x86] ASoC: amd: acp: Add missing error handling in sof-mach
     - dmaengine: tegra210-adma: Update dependency to ARCH_TEGRA
     - media: tc358743: register v4l2 async device only after successful setup
     - PCI/DPC: Print all TLP Prefixes, not just the first
     - perf record: Fix possible incorrect free in record__switch_output()
     - HID: lenovo: Add middleclick_workaround sysfs knob for cptkbd
     - drm/amd/display: Fix a potential buffer overflow in
       'dp_dsc_clock_en_read()'
     - drm/amd/display: Fix potential NULL pointer dereferences in
       'dcn10_set_output_transfer_func()'
     - pinctrl: renesas: r8a779g0: Add Audio SSI pins, groups, and functions
     - pinctrl: renesas: r8a779g0: Add missing SCIF_CLK2 pin group/function
     - clk: samsung: exynos850: Propagate SPI IPCLK rate change
     - perf evsel: Fix duplicate initialization of data->id in
       evsel__parse_sample()
     - clk: meson: Add missing clocks to axg_clk_regmaps
     - media: em28xx: annotate unchecked call to media_device_register()
     - media: v4l2-tpg: fix some memleaks in tpg_alloc
     - media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity
     - media: edia: dvbdev: fix a use-after-free
     - clk: qcom: reset: Commonize the de/assert functions
     - clk: qcom: reset: Ensure write completion on reset de/assertion
     - quota: simplify drop_dquot_ref()
     - quota: Fix potential NULL pointer dereference
     - quota: Fix rcu annotations of inode dquot pointers
     - PCI: switchtec: Fix an error handling path in switchtec_pci_probe()
     - crypto: xilinx - call finalize with bh disabled
     - perf thread_map: Free strlist on normal path in
       thread_map__new_by_tid_str()
     - [arm64] drm/msm/dpu: fix the programming of INTF_CFG2_DATA_HCTL_EN
     - [arm64] drm/msm/dpu: Only enable DSC_MODE_MULTIPLEX if dsc_merge is
       enabled
     - drm/radeon/ni: Fix wrong firmware size logging in ni_init_microcode()
     - ALSA: seq: fix function cast warnings
     - perf stat: Avoid metric-only segv
     - [arm64,armhf] ASoC: meson: aiu: fix function pointer type mismatch
     - [arm64,armhf] ASoC: meson: t9015: fix function pointer type mismatch
     - [powerpc*] Force inlining of arch_vmap_p{u/m}d_supported()
     - [x86] ASoC: SOF: Introduce container struct for SOF firmware
     - [x86] ASoC: SOF: Add some bounds checking to firmware data
     - NTB: EPF: fix possible memory leak in pci_vntb_probe()
     - NTB: fix possible name leak in ntb_register_device()
     - media: cedrus: h265: Associate mv col buffers with buffer
     - media: cedrus: h265: Fix configuring bitstream size
     - media: sun8i-di: Fix coefficient writes
     - media: sun8i-di: Fix power on/off sequences
     - media: sun8i-di: Fix chroma difference threshold
     - media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak
     - media: go7007: add check of return value of go7007_read_addr()
     - media: pvrusb2: remove redundant NULL check
     - media: pvrusb2: fix pvr2_stream_callback casts
     - clk: qcom: dispcc-sdm845: Adjust internal GDSC wait times
     - PCI: Mark 3ware-9650SE Root Port Extended Tags as broken
     - clk: hisilicon: hi3519: Release the correct number of gates in
       hi3519_clk_unregister()
     - clk: hisilicon: hi3559a: Fix an erroneous devm_kfree()
     - [arm64,armhf] drm/tegra: put drm_gem_object ref on error in
       tegra_fb_create
     - mfd: syscon: Call of_node_put() only when of_parse_phandle() takes a ref
     - mfd: altera-sysmgr: Call of_node_put() only when of_parse_phandle() takes
       a ref
     - crypto: jitter - fix CRYPTO_JITTERENTROPY help text
     - drm/tidss: Fix initial plane zpos values
     - drm/tidss: Fix sync-lost issue with two displays
     - mtd: maps: physmap-core: fix flash size larger than 32-bit
     - mtd: rawnand: lpc32xx_mlc: fix irq handler prototype
     - [arm64,armhf] ASoC: meson: axg-tdm-interface: fix mclk setup without
       mclk-fs
     - [arm64,armhf] ASoC: meson: axg-tdm-interface: add frame rate constraint
     - HID: amd_sfh: Update HPD sensor structure elements
     - HID: amd_sfh: Avoid disabling the interrupt
     - drm/amdgpu: Fix missing break in ATOM_ARG_IMM Case of atom_get_src_int()
     - media: pvrusb2: fix uaf in pvr2_context_set_notify
     - media: dvb-frontends: avoid stack overflow warnings with clang
     - media: go7007: fix a memleak in go7007_load_encoder
     - media: ttpci: fix two memleaks in budget_av_attach
     - media: mediatek: vcodec: avoid -Wcast-function-type-strict warning
     - gpio: nomadik: fix offset bug in nmk_pmx_set()
     - [powerpc*] pseries: Fix potential memleak in papr_get_attr()
     - [powerpc*] hv-gpci: Fix the H_GET_PERF_COUNTER_INFO hcall return value
       checks
     - [arm64] drm/msm/dpu: add division of drm_display_mode's hskew parameter
     - modules: wait do_free_init correctly
     - powerpc/embedded6xx: Fix no previous prototype for avr_uart_send() etc.
     - leds: aw2013: Unlock mutex before destroying it
     - leds: sgm3140: Add missing timer cleanup and flash gpio control
     - backlight: lm3630a: Initialize backlight_properties on init
     - backlight: lm3630a: Don't set bl->props.brightness in get_brightness
     - backlight: da9052: Fully initialize backlight_properties during probe
     - backlight: lm3639: Fully initialize backlight_properties during probe
     - backlight: lp8788: Fully initialize backlight_properties during probe
     - clk: Fix clk_core_get NULL dereference
     - clk: zynq: Prevent null pointer dereference caused by kmalloc failure
     - ALSA: hda/realtek: fix ALC285 issues on HP Envy x360 laptops
     - ALSA: usb-audio: Stop parsing channels bits when all channels are found.
     - RDMA/irdma: Allow accurate reporting on QP max send/recv WR
     - RDMA/irdma: Remove duplicate assignment
     - RDMA/srpt: Do not register event handler until srpt device is fully setup
     - f2fs: reduce stack memory cost by using bitfield in struct f2fs_io_info
     - f2fs: compress: fix to guarantee persisting compressed blocks by CP
     - f2fs: compress: fix to cover normal cluster write with cp_rwsem
     - f2fs: compress: fix to check unreleased compressed cluster
     - f2fs: simplify __allocate_data_block
     - f2fs: delete obsolete FI_FIRST_BLOCK_WRITTEN
     - f2fs: delete obsolete FI_DROP_CACHE
     - f2fs: introduce get_dnode_addr() to clean up codes
     - f2fs: update blkaddr in __set_data_blkaddr() for cleanup
     - f2fs: compress: fix to avoid inconsistence bewteen i_blocks and dnode
     - f2fs: compress: fix to cover f2fs_disable_compressed_file() w/ i_sem
     - f2fs: fix to avoid potential panic during recovery
     - scsi: csiostor: Avoid function pointer casts
     - [arm64] RDMA/hns: Fix mis-modifying default congestion control algorithm
     - RDMA/device: Fix a race between mad_client and cm_client init
     - RDMA/rtrs-clt: Check strnlen return len in sysfs mpath_policy_store()
     - scsi: bfa: Fix function pointer type mismatch for hcb_qe->cbfn
     - f2fs: compress: fix to check zstd compress level correctly in mount option
     - net: sunrpc: Fix an off by one in rpc_sockaddr2uaddr()
     - NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102
     - NFSv4.2: fix listxattr maximum XDR buffer size
     - f2fs: compress: fix to check compress flag w/ .i_sem lock
     - f2fs: check number of blocks in a current section
     - watchdog: stm32_iwdg: initialize default timeout
     - f2fs: ro: compress: fix to avoid caching unaligned extent
     - NFS: Fix an off by one in root_nfs_cat()
     - f2fs: convert to use sbi directly
     - f2fs: compress: relocate some judgments in f2fs_reserve_compress_blocks
     - f2fs: compress: fix reserve_cblocks counting error when out of space
     - [x86] perf/x86/amd/core: Avoid register reset when CPU is dead
     - afs: Revert "afs: Hide silly-rename files from userspace"
     - nfs: fix panic when nfs4_ff_layout_prepare_ds() fails
     - io_uring/net: correct the type of variable
     - comedi: comedi_test: Prevent timers rescheduling during deletion
     - [armhf] remoteproc: stm32: use correct format strings on 64-bit
     - [armhf] remoteproc: stm32: Fix incorrect type in assignment for va
     - [armhf] remoteproc: stm32: Fix incorrect type assignment returned by
       stm32_rproc_get_loaded_rsc_tablef
     - usb: phy: generic: Get the vbus supply
     - tty: vt: fix 20 vs 0x20 typo in EScsiignore
     - serial: max310x: fix syntax error in IRQ error message
     - tty: serial: samsung: fix tx_empty() to return TIOCSER_TEMT
     - [arm64] dts: broadcom: bcmbca: bcm4908: drop invalid switch cells
     - hwtracing: hisi_ptt: Move type check to the beginning of
       hisi_ptt_pmu_event_init()
     - rtc: mt6397: select IRQ_DOMAIN instead of depending on it
     - serial: 8250_exar: Don't remove GPIO device on suspend
     - staging: greybus: fix get_channel_from_mode() failure path
     - usb: gadget: net2272: Use irqflags in the call to net2272_probe_fin
     - nouveau: reset the bo resource bus info after an eviction
     - tcp: Fix NEW_SYN_RECV handling in inet_twsk_purge()
     - rds: tcp: Fix use-after-free of net in reqsk_timer_handler().
     - [s390x] vtime: fix average steal time calculation
     - net/sched: taprio: proper TCA_TAPRIO_TC_ENTRY_INDEX check (CVE-2024-26815)
     - soc: fsl: dpio: fix kcalloc() argument order
     - tcp: Fix refcnt handling in __inet_hash_connect().
     - hsr: Fix uninit-value access in hsr_get_node()
     - nvme: only set reserved_tags in nvme_alloc_io_tag_set for fabrics
       controllers
     - nvme: add the Apple shared tag workaround to nvme_alloc_io_tag_set
     - nvme: fix reconnection fail due to reserved tag allocation
     - net: mediatek: mtk_eth_soc: clear MAC_MCR_FORCE_LINK only when MAC is up
     - net: ethernet: mtk_eth_soc: fix PPE hanging issue
     - packet: annotate data-races around ignore_outgoing
     - net: veth: do not manipulate GRO when using XDP
     - net: dsa: mt7530: prevent possible incorrect XTAL frequency selection
     - drm: Fix drm_fixp2int_round() making it add 0.5
     - vdpa_sim: reset must not run
     - vdpa/mlx5: Allow CVQ size changes
     - wireguard: receive: annotate data-race around receiving_counter.counter
     - rds: introduce acquire/release ordering in acquire/release_in_xmit()
     - hsr: Handle failures in module init
     - ipv4: raw: Fix sending packets from raw sockets via IPsec tunnels
     - net: phy: fix phy_read_poll_timeout argument type in genphy_loopback
     - dm-integrity: fix a memory leak when rechecking the data
     - net/bnx2x: Prevent access to a freed page in page_pool
     - netfilter: nft_set_pipapo: release elements in clone only from destroy
       path (CVE-2024-26809)
     - netfilter: nf_tables: do not compare internal table flags on updates
     - rcu: add a helper to report consolidated flavor QS
     - net: report RCU QS on threaded NAPI repolling
     - bpf: report RCU QS in cpumap kthread
     - net: dsa: mt7530: fix link-local frames that ingress vlan filtering ports
     - net: dsa: mt7530: fix handling of all link-local frames
     - spi: spi-mt65xx: Fix NULL pointer access in interrupt handler
     - dm: address indent/space issues
     - dm io: Support IO priority
     - dm-integrity: align the outgoing bio in integrity_recheck
     - [armhf] remoteproc: stm32: fix incorrect optional pointers
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.84
     - [x86] cpu: Support AMD Automatic IBRS
     - [x86] bugs: Use sysfs_emit()
     - [x86] KVM: x86: Update KVM-only leaf handling to allow for 100% KVM-only
       leafs
     - [x86] KVM: x86: Advertise CPUID.(EAX=7,ECX=2):EDX[5:0] to userspace
     - [x86] KVM: x86: Use a switch statement and macros in __feature_translate()
     - timers: Update kernel-doc for various functions
     - timers: Use del_timer_sync() even on UP
     - timers: Rename del_timer_sync() to timer_delete_sync()
     - wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach
     - media: staging: ipu3-imgu: Set fields before media_entity_pads_init()
     - [arm64] dts: qcom: sc7280: Add additional MSI interrupts
     - [arm64,armhf] remoteproc: virtio: Fix wdg cannot recovery remote processor
     - [arm64] clk: qcom: gcc-sdm845: Add soft dependency on rpmhpd
     - [armhf] arm: dts: marvell: Fix maxium->maxim typo in brownstone dts
     - drm/vmwgfx: Fix possible null pointer derefence with invalid contexts
     - serial: max310x: fix NULL pointer dereference in I2C instantiation
     - pci_iounmap(): Fix MMIO mapping leak
     - media: xc4000: Fix atomicity violation in xc4000_get_frequency
     - media: mc: Add local pad to pipeline regardless of the link state
     - media: mc: Fix flags handling when creating pad links
     - media: mc: Add num_links flag to media_pad
     - media: mc: Rename pad variable to clarify intent
     - media: mc: Expand MUST_CONNECT flag to always require an enabled link
     - KVM: Always flush async #PF workqueue when vCPU is being destroyed
     - [x86] cpufreq: amd-pstate: Fix min_perf assignment in
       amd_pstate_adjust_perf()
     - [powerpc*] smp: Adjust nr_cpu_ids to cover all threads of a core
     - [powerpc*] smp: Increase nr_cpu_ids to include the boot CPU
     - [x86] crypto: qat - fix double free during reset
     - [x86] crypto: qat - resolve race condition during AER recovery
     - ext4: correct best extent lstart adjustment logic
     - block: Clear zone limits for a non-zoned stacked queue
     - bounds: support non-power-of-two CONFIG_NR_CPUS
     - fat: fix uninitialized field in nostale filehandles
     - ubifs: Set page uptodate in the correct place
     - ubi: Check for too small LEB size in VTBL code
     - ubi: correct the calculation of fastmap size
     - md/raid5: fix atomicity violation in raid5_cache_count
     - cpufreq: Limit resolving a frequency to policy min/max
     - PM: suspend: Set mem_sleep_current during kernel command line setup
     - usb: xhci: Add error handling in xhci_map_urb_for_dma
     - [powerpc*] fsl: Fix mfpmr build errors with newer binutils
     - USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB
     - USB: serial: add device ID for VeriFone adapter
     - USB: serial: cp210x: add ID for MGP Instruments PDS100
     - USB: serial: option: add MeiG Smart SLM320 product
     - [x86] KVM: x86/xen: inject vCPU upcall vector when local APIC is enabled
     - USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M
     - PM: sleep: wakeirq: fix wake irq warning in system suspend
     - mmc: tmio: avoid concurrent runs of mmc_request_done()
     - fuse: fix root lookup with nonzero generation
     - fuse: don't unhash root
     - usb: typec: ucsi: Clean up UCSI_CABLE_PROP macros
     - serial: Lock console when calling into driver before registration
     - btrfs: qgroup: always free reserved space for extent records
     - btrfs: fix off-by-one chunk length calculation at
       contains_pending_extent()
     - PCI/PM: Drain runtime-idle callbacks before driver removal
     - PCI/DPC: Quirk PIO log size for Intel Raptor Lake Root Ports
     - dm-raid: fix lockdep waring in "pers->hot_add_disk"
     - [powerpc*] xor_vmx: Add '-mhard-float' to CFLAGS
     - mac802154: fix llsec key resources release in mac802154_llsec_key_del
     - swap: comments get_swap_device() with usage rule
     - mm: swap: fix race between free_swap_and_cache() and swapoff()
     - mmc: core: Fix switch on gp3 partition
     - [arm64,armhf] drm/etnaviv: Restore some id values
     - landlock: Warn once if a Landlock action is requested while disabled
     - hwmon: (amc6821) add of_match table
     - ext4: fix corruption during on-line resize
     - nvmem: meson-efuse: fix function pointer type mismatch
     - slimbus: core: Remove usage of the deprecated ida_simple_xx() API
     - phy: tegra: xusb: Add API to retrieve the port number of phy
     - usb: gadget: tegra-xudc: Fix USB3 PHY retrieval logic
     - speakup: Fix 8bit characters from direct synth
     - PCI/AER: Block runtime suspend when handling errors
     - io_uring/net: correctly handle multishot recvmsg retry setup
     - nfs: fix UAF in direct writes
     - kbuild: Move -Wenum-{compare-conditional,enum-conversion} into W=1
     - [arm64] PCI: qcom: Rename qcom_pcie_config_sid_sm8250() to reflect IP
       version
     - [arm64] PCI: qcom: Enable BDF to SID translation properly
     - [amd64,arm64] PCI: hv: Fix ring buffer size calculation
     - vfio: Use GFP_KERNEL_ACCOUNT for userspace persistent allocations
     - vfio/pci: Consolidate irq cleanup on MSI/MSI-X disable
     - vfio/pci: Remove negative check on unsigned vector
     - vfio/pci: Lock external INTx masking ops (CVE-2024-26810)
     - vfio/platform: Disable virqfds on cleanup
     - ksmbd: retrieve number of blocks using vfs_getattr in
       set_file_allocation_info
     - ring-buffer: Fix waking up ring buffer readers
     - ring-buffer: Do not set shortest_full when full target is hit
     - ring-buffer: Fix resetting of shortest_full
     - ring-buffer: Fix full_waiters_pending in poll
     - ring-buffer: Use wait_event_interruptible() in ring_buffer_wait()
     - [s390x] zcrypt: fix reference counting on zcrypt card objects
     - drm/probe-helper: warn about negative .get_modes()
     - drm/panel: do not return negative error codes from drm_panel_get_modes()
     - [armhf] drm/exynos: do not return negative values from .get_modes()
     - [armhf] drm/imx/ipuv3: do not return negative values from .get_modes()
     - [arm64,armhf] drm/vc4: hdmi: do not return negative values from
       .get_modes()
     - memtest: use {READ,WRITE}_ONCE in memory scanning
     - Revert "block/mq-deadline: use correct way to throttling write requests"
     - f2fs: mark inode dirty for FI_ATOMIC_COMMITTED flag
     - f2fs: truncate page cache before clearing flags when aborting atomic write
     - nilfs2: fix failure to detect DAT corruption in btree and direct mappings
     - nilfs2: prevent kernel bug at submit_bh_wbc()
     - cifs: open_cached_dir(): add FILE_READ_EA to desired access
     - cpufreq: dt: always allocate zeroed cpumask
     - [amd64] x86/CPU/AMD: Update the Zenbleed microcode revisions
     - NFSD: Fix nfsd_clid_class use of __string_len() macro
     - net: hns3: tracing: fix hclgevf trace event strings
     - wireguard: netlink: check for dangling peer via is_dead instead of empty
       list
     - wireguard: netlink: access device through ctx instead of peer
     - ahci: asm1064: correct count of reported ports
     - ahci: asm1064: asm1166: don't limit reported ports
     - drm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag
     - drm/amd/display: Return the correct HDCP error code
     - drm/amd/display: Fix noise issue on HDMI AV mute
     - dm snapshot: fix lockup in dm_exception_table_exit
     - [x86] pm: Work around false positive kmemleak report in
       msr_build_context()
     - cpufreq: brcmstb-avs-cpufreq: fix up "add check for cpufreq_cpu_get's
       return value"
     - [x86] platform/x86: p2sb: On Goldmont only cache P2SB and SPI devfn BAR
       (Closes: #1065320)
     - tls: fix race between tx work scheduling and socket close (CVE-2024-26585)
     - netfilter: nf_tables: mark set as dead when unbinding anonymous set with
       timeout (CVE-2024-26643)
     - netfilter: nf_tables: disallow anonymous set with timeout flag
       (CVE-2024-26642)
     - netfilter: nf_tables: reject constant set with timeout
     - Drivers: hv: vmbus: Calculate ring buffer size for more efficient use of
       memory
     - init/Kconfig: lower GCC version check for -Warray-bounds
     - [x86] KVM: x86: Mark target gfn of emulated atomic instruction as dirty
     - [x86] KVM: SVM: Flush pages under kvm->lock to fix UAF in
       svm_register_enc_region()
     - tracing: Use .flush() call to wake up readers
     - drm/amdgpu/pm: Fix the error of pwm1_enable setting
     - [x86] drm/i915: Check before removing mm notifier
     - ALSA: hda/realtek - Fix headset Mic no show at resume back for Lenovo
       ALC897 platform
     - USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command
     - usb: gadget: ncm: Fix handling of zero block length packets
     - usb: port: Don't try to peer unused USB ports based on location
     - tty: serial: fsl_lpuart: avoid idle preamble pending if CTS is enabled
     - misc: lis3lv02d_i2c: Fix regulators getting en-/dis-abled twice on
       suspend/resume
     - mei: me: add arrow lake point S DID
     - mei: me: add arrow lake point H DID
     - vt: fix unicode buffer corruption when deleting characters
     - fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion
     - ALSA: hda/realtek - Add Headset Mic supported Acer NB platform
     - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook
     - tee: optee: Fix kernel panic caused by incorrect error handling
     - mm, vmscan: prevent infinite loop for costly GFP_NOIO |
       __GFP_RETRY_MAYFAIL allocations
     - iio: accel: adxl367: fix DEVID read after reset
     - iio: accel: adxl367: fix I2C FIFO data register
     - i2c: i801: Avoid potential double call to gpiod_remove_lookup_table
     - drm/amd/display: handle range offsets in VRR ranges
     - [x86] efistub: Call mixed mode boot services on the firmware's stack
     - net: tls: handle backlogging of crypto requests (CVE-2024-26584)
     - [x86] ASoC: amd: yc: Revert "Fix non-functional mic on Lenovo 21J2"
     - iommu: Avoid races around default domain allocations
     - clocksource/drivers/arm_global_timer: Fix maximum prescaler value
     - entry: Respect changes to system call number by trace_sys_enter()
     - minmax: add umin(a, b) and umax(a, b)
     - swiotlb: Fix alignment checks when both allocation and DMA masks are
       present
     - iommu/dma: Force swiotlb_max_mapping_size on an untrusted device
     - printk: Update @console_may_schedule in console_trylock_spinning()
     - irqchip/renesas-rzg2l: Implement restriction when writing ISCR register
     - irqchip/renesas-rzg2l: Flush posted write in irq_eoi()
     - irqchip/renesas-rzg2l: Add macro to retrieve TITSR register offset based
       on register's index
     - irqchip/renesas-rzg2l: Rename rzg2l_tint_eoi()
     - irqchip/renesas-rzg2l: Rename rzg2l_irq_eoi()
     - irqchip/renesas-rzg2l: Prevent spurious interrupts when setting trigger
       type
     - [x86] kprobes/x86: Use copy_from_kernel_nofault() to read from unsafe
       address
     - [x86] fpu: Keep xfd_state in sync with MSR_IA32_XFD
     - pwm: img: fix pwm clock lookup
     - tty: serial: imx: Fix broken RS485
     - block: Fix page refcounts for unaligned buffers in __bio_release_pages()
     - blk-mq: release scheduler resource when request completes
     - vfio/pci: Disable auto-enable of exclusive INTx IRQ (CVE-2024-27437)
     - vfio: Introduce interface to flush virqfd inject workqueue
     - vfio/pci: Create persistent INTx handler (CVE-2024-26812)
     - vfio/platform: Create persistent IRQ handlers (CVE-2024-26813)
     - vfio/fsl-mc: Block calling interrupt handler without trigger
       (CVE-2024-26814)
     - [x86] coco: Export cc_vendor
     - [x86] coco: Get rid of accessor functions
     - [x86] Kconfig: Remove CONFIG_AMD_MEM_ENCRYPT_ACTIVE_BY_DEFAULT
     - [x86] sev: Fix position dependent variable references in startup code
     - mm/migrate: set swap entry values of THP tail pages properly.
     - init: open /initrd.image with O_LARGEFILE
     - [x86] efistub: Add missing boot_params for mixed mode compat entry
     - btrfs: zoned: don't skip block groups with 100% zone unusable
     - btrfs: zoned: use zone aware sb location for scrub
     - wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes
     - wifi: iwlwifi: fw: don't always use FW dump trig
     - exec: Fix NOMMU linux_binprm::exec in transfer_args_to_stack()
     - hexagon: vmlinux.lds.S: handle attributes section
     - mmc: sdhci-omap: re-tuning is needed after a pm transition to support emmc
       HS200 mode
     - mmc: core: Initialize mmc_blk_ioc_data
     - mmc: core: Avoid negative index with array access
     - block: Do not force full zone append completion in req_bio_endio()
     - thermal: devfreq_cooling: Fix perf state when calculate dfc res_util
     - nouveau/dmem: handle kcalloc() allocation failure
     - net: ll_temac: platform_get_resource replaced by wrong function
     - drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed
     - [x86] drm/i915/bios: Tolerate devdata==NULL in
       intel_bios_encoder_supports_dp_dual_mode()
     - [x86] drm/i915/gt: Reset queue_priority_hint on parking
     - Bluetooth: hci_sync: Fix not checking error on hci_cmd_sync_cancel_sync
     - Revert "usb: phy: generic: Get the vbus supply"
     - usb: cdc-wdm: close race between read and workqueue
     - USB: UAS: return ENODEV when submit urbs fail with device not attached
     - usb: dwc3-am62: Rename private data
     - usb: dwc3-am62: fix module unload/reload behavior
     - ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs
       (CVE-2024-26654)
     - scsi: core: Fix unremoved procfs host directory regression
     - staging: vc04_services: changen strncpy() to strscpy_pad()
     - staging: vc04_services: fix information leak in create_component()
     - USB: core: Add hub_get() and hub_put() routines
     - USB: core: Fix deadlock in port "disable" sysfs attribute
     - scsi: sd: Fix TCG OPAL unlock on system resume
     - usb: dwc2: host: Fix remote wakeup from hibernation
     - usb: dwc2: host: Fix hibernation flow
     - usb: dwc2: host: Fix ISOC flow in DDMA mode
     - usb: dwc2: gadget: Fix exiting from clock gating
     - usb: dwc2: gadget: LPM flow fix
     - usb: udc: remove warning when queue disabled ep
     - usb: typec: Return size of buffer if pd_set operation succeeds
     - usb: typec: ucsi: Clear EVENT_PENDING under PPM lock
     - usb: typec: ucsi: Ack unsupported commands
     - usb: typec: ucsi_acpi: Refactor and fix DELL quirk
     - usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset
     - scsi: qla2xxx: Prevent command send on chip reset
     - scsi: qla2xxx: Fix N2N stuck connection
     - scsi: qla2xxx: Split FCE|EFT trace control
     - scsi: qla2xxx: Update manufacturer detail
     - scsi: qla2xxx: NVME|FCP prefer flag not being honored
     - scsi: qla2xxx: Fix command flush on cable pull
     - scsi: qla2xxx: Fix double free of fcport
     - scsi: qla2xxx: Change debug message during driver unload
     - scsi: qla2xxx: Delay I/O Abort on PCI error
     - [x86] cpu: Enable STIBP on AMD if Automatic IBRS is enabled
     - tls: fix use-after-free on failed backlog decryption (CVE-2024-26800)
     - scsi: lpfc: Correct size for cmdwqe/rspwqe for memset()
     - scsi: lpfc: Correct size for wqe for memset()
     - scsi: libsas: Add a helper sas_get_sas_addr_and_dev_type()
     - scsi: libsas: Fix disk not being scanned in after being removed
     - [x86] sev: Skip ROM range scans and validation for SEV-SNP guests
     - USB: core: Fix deadlock in usb_deauthorize_interface()
     - tools/resolve_btfids: fix build with musl libc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.85
     - scripts/bpf_doc: Use silent mode when exec make cmd
     - dma-buf: Fix NULL pointer dereference in sanitycheck()
     - nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet
     - mlxbf_gige: stop PHY during open() error paths
     - wifi: iwlwifi: mvm: rfi: fix potential response leaks
     - ixgbe: avoid sleeping allocation in ixgbe_ipsec_vf_add_sa()
     - [s390x] qeth: handle deferred cc1
     - tcp: properly terminate timers for kernel sockets
     - net: wwan: t7xx: Split 64bit accesses to fix alignment issues
     - [arm64] net: hns3: fix index limit to support all queue stats
     - [arm64] net: hns3: fix kernel crash when devlink reload during pf
       initialization
     - [arm64] net: hns3: mark unexcuted loopback test result as UNEXECUTED
     - tls: recv: process_rx_list shouldn't use an offset with kvec
     - tls: adjust recv return with async crypto and failed copy to userspace
     - tls: get psock ref after taking rxlock to avoid leak
     - mlxbf_gige: call request_irq() after NAPI initialized
     - bpf: Protect against int overflow for stack access size
     - cifs: Fix duplicate fscache cookie warnings
     - net: lan743x: Add set RFE read fifo threshold for PCI1x1x chips
     - inet: inet_defrag: prevent sk release while still in use
     - dm integrity: fix out-of-range warning
     - [x86] cpufeatures: Add new word for scattered features
     - [x86] perf/x86/amd/lbr: Use freeze based on availability
     - [arm64] KVM: arm64: Fix host-programmed guest events in nVHE
     - r8169: fix issue caused by buggy BIOS on certain boards with RTL8168d
     - [x86] cpufeatures: Add CPUID_LNX_5 to track recently added Linux-defined
       word
     - Revert "Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT"
     - [arm64] dts: qcom: sc7180-trogdor: mark bluetooth address as broken
     - Bluetooth: qca: fix device-address endianness
     - Bluetooth: add quirk for broken address properties
     - Bluetooth: hci_event: set the conn encrypted before conn establishes
     - Bluetooth: Fix TOCTOU in HCI debugfs implementation (CVE-2024-24857,
       CVE-2024-24858)
     - xen-netfront: Add missing skb_mark_for_recycle
     - net/rds: fix possible cp null dereference
     - net: usb: ax88179_178a: avoid the interface always configured as random
       address
     - vsock/virtio: fix packet delivery to tap device
     - Revert "x86/mm/ident_map: Use gbpages only where full GB page should be
       mapped."
     - netfilter: nf_tables: reject new basechain after table flag update
     - netfilter: nf_tables: flush pending destroy work before exit_net release
     - netfilter: nf_tables: Fix potential data-race in
       __nft_flowtable_type_get()
     - netfilter: validate user input for expected length
     - vboxsf: Avoid an spurious warning if load_nls_xxx() fails
     - bpf, sockmap: Prevent lock inversion deadlock in map delete elem
     - net/sched: act_skbmod: prevent kernel-infoleak
     - net/sched: fix lockdep splat in qdisc_tree_reduce_backlog()
     - net: stmmac: fix rx queue priority assignment
     - net: phy: micrel: lan8814: Fix when enabling/disabling 1-step timestamping
     - net: phy: micrel: Fix potential null pointer dereference
     - gro: fix ownership transfer
     - [x86] bugs: Fix the SRSO mitigation on Zen3/4
     - [x86] retpoline: Do the necessary fixup to the Zen3/4 srso return thunk
       for !SRSO
     - i40e: Fix VF MAC filter removal
     - erspan: make sure erspan_base_hdr is present in skb->head
     - ipv6: Fix infinite recursion in fib6_dump_done().
     - mlxbf_gige: stop interface during shutdown
     - r8169: skip DASH fw status checks when DASH is disabled
     - udp: do not accept non-tunnel GSO skbs landing in a tunnel
     - udp: do not transition UDP GRO fraglist partial checksums to unnecessary
     - udp: prevent local UDP tunnel packets from being GROed
     - i40e: fix i40e_count_filters() to count only active/new filters
     - i40e: fix vf may be used uninitialized in this function warning
     - drm/amd: Evict resources during PM ops prepare() callback
     - drm/amd: Add concept of running prepare_suspend() sequence for IP blocks
     - drm/amd: Flush GFXOFF requests in prepare stage
     - i40e: Store the irq number in i40e_q_vector
     - i40e: Remove _t suffix from enum type names
     - i40e: Enforce software interrupt during busy-poll exit
     - r8169: use spinlock to protect mac ocp register access
     - r8169: use spinlock to protect access to registers Config2 and Config5
     - r8169: prepare rtl_hw_aspm_clkreq_enable for usage in atomic context
     - tcp: Fix bind() regression for v6-only wildcard and v4(-mapped-v6)
       non-wildcard addresses.
     - drivers: net: convert to boolean for the mac_managed_pm flag
     - net: fec: Set mac_managed_pm during probe
     - [x86] KVM: SVM: enhance info printk's in SEV init
     - [x86] KVM: SVM: WARN, but continue, if misc_cg_set_capacity() fails
     - [x86] KVM: SVM: Use unsigned integers when dealing with ASIDs
     - [x86] KVM: SVM: Add support for allowing zero SEV ASIDs
     - fs/pipe: Fix lockdep false-positive in watchqueue pipe_write()
     - 9p: Fix read/write debug statements to report server reply
     - drivers/perf: riscv: Disable PERF_SAMPLE_BRANCH_* while not supported
     - drm/panfrost: fix power transition timeout warnings
     - ASoC: rt5682-sdw: fix locking sequence
     - [x86] ASoC: rt711-sdca: fix locking sequence
     - ASoC: rt711-sdw: fix locking sequence
     - ASoC: ops: Fix wraparound for mask in snd_soc_get_volsw
     - ata: sata_sx4: fix pdc20621_get_from_dimm() on 64-bit
     - scsi: mylex: Fix sysfs buffer lengths
     - scsi: sd: Unregister device if device_add_disk() failed in sd_probe()
     - cifs: Fix caching to try to do open O_WRONLY as rdwr on server
     - ata: sata_mv: Fix PCI device ID table declaration compilation warning
     - nfsd: hold a lighter-weight client reference over CB_RECALL_ANY
     - [x86] retpoline: Add NOENDBR annotation to the SRSO dummy return thunk
     - ksmbd: don't send oplock break if rename fails
     - ksmbd: validate payload size in ipc response (CVE-2024-26811)
     - ksmbd: do not set SMB2_GLOBAL_CAP_ENCRYPTION for SMB 3.1.1
     - ALSA: hda/realtek - Fix inactive headset mic jack
     - ALSA: hda/realtek: Update Panasonic CF-SZ6 quirk to support headset with
       microphone
     - driver core: Introduce device_link_wait_removal()
     - of: dynamic: Synchronize of_changeset_destroy() with the devlink removals
     - [x86] mm/pat: fix VM_PAT handling in COW mappings
     - [x86] mce: Make sure to grab mce_sysfs_mutex in set_bank()
     - [x86] coco: Require seeding RNG with RDRAND on CoCo systems
     - [s390x] entry: align system call table on 8 bytes
     - smb3: retrying on failed server close
     - smb: client: fix potential UAF in cifs_debug_files_proc_show()
     - smb: client: fix potential UAF in cifs_stats_proc_write()
     - smb: client: fix potential UAF in cifs_stats_proc_show()
     - smb: client: fix potential UAF in smb2_is_valid_oplock_break()
     - smb: client: fix potential UAF in smb2_is_valid_lease_break()
     - smb: client: fix potential UAF in is_valid_oplock_break()
     - smb: client: fix potential UAF in smb2_is_network_name_deleted()
     - smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect()
     - mptcp: don't account accept() of non-MPC client as fallback to TCP
     - mm/secretmem: fix GUP-fast succeeding on secretmem folios
     - nvme: fix miss command type check
     - [x86] bugs: Change commas to semicolons in 'spectre_v2' sysfs file
     - [x86] syscall: Don't force use of indirect calls for system calls
     - [x86] Mitigate Native Branch History Injection vulnerability
       (CVE-2024-2201):
       + [x86] bhi: Add support for clearing branch history at syscall entry
       + [x86] bhi: Define SPEC_CTRL_BHI_DIS_S
       + [x86] bhi: Enumerate Branch History Injection (BHI) bug
       + [x86] bhi: Add BHI mitigation knob
       + [x86] bhi: Mitigate KVM by default
       + [x86] KVM: x86: Add BHI_NO
       + [x86] set SPECTRE_BHI_ON as default
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 20
   * Refresh "efi: Lock down the kernel if booted in secure boot mode" (context
     changes in 6.1.84)
   * [rt] Refresh "serial: 8250: implement write_atomic"
   * Refresh "x86: Make x32 syscall support conditional on a kernel parameter"
   * tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc
     (Closes: #1068770)
   * Revert "scsi: sd: usb_storage: uas: Access media prior to querying device
     properties" (Closes: #1068675)
   * Revert "scsi: core: Add struct for args to execution functions"
   * scsi: sd: usb_storage: uas: Access media prior to querying device properties
linux-signed-i386 (6.1.82+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.82-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.77
     - asm-generic: make sparse happy with odd-sized put_unaligned_*()
     - [powerpc*] mm: Fix null-pointer dereference in pgtable_cache_add
     - [arm64] irq: set the correct node for VMAP stack
     - [arm64] drivers/perf: pmuv3: don't expose SW_INCR event in sysfs
     - [powerpc*] Fix build error due to is_valid_bugaddr()
     - [powerpc*] mm: Fix build failures due to arch_reserved_kernel_pages()
     - [x86] boot: Ignore NMIs during very early boot
     - [powerpc*] pmd_move_must_withdraw() is only needed for
       CONFIG_TRANSPARENT_HUGEPAGE
     - [powerpc*] lib: Validate size for vector operations
     - [x86*] mce: Mark fatal MCE's page as poison to avoid panic in the kdump
       kernel
     - perf/core: Fix narrow startup race when creating the perf nr_addr_filters
       sysfs file
     - debugobjects: Stop accessing objects after releasing hash bucket lock
     - regulator: core: Only increment use_count when enable_count changes
     - audit: Send netlink ACK before setting connection in auditd_set
     - ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop
     - PNP: ACPI: fix fortify warning
     - ACPI: extlog: fix NULL pointer dereference check
     - ACPI: NUMA: Fix the logic of getting the fake_pxm value
     - PM / devfreq: Synchronize devfreq_monitor_[start/stop]
     - ACPI: APEI: set memory failure flags as MF_ACTION_REQUIRED on synchronous
       events
     - FS:JFS:UBSAN:array-index-out-of-bounds in dbAdjTree
     - UBSAN: array-index-out-of-bounds in dtSplitRoot
     - jfs: fix slab-out-of-bounds Read in dtSearch
     - jfs: fix array-index-out-of-bounds in dbAdjTree
     - jfs: fix uaf in jfs_evict_inode
     - pstore/ram: Fix crash when setting number of cpus to an odd number
     - erofs: fix ztailpacking for subpage compressed blocks
     - [armhf] crypto: stm32/crc32 - fix parsing list of devices
     - afs: fix the usage of read_seqbegin_or_lock() in afs_lookup_volume_rcu()
     - afs: fix the usage of read_seqbegin_or_lock() in afs_find_server*()
     - rxrpc_find_service_conn_rcu: fix the usage of read_seqbegin_or_lock()
     - jfs: fix array-index-out-of-bounds in diNewExt
     - arch: consolidate arch_irq_work_raise prototypes
     - [s390x] vfio-ap: fix sysfs status attribute for AP queue devices
     - [s390x] ptrace: handle setting of fpc register correctly
     - [s390x] KVM: s390: fix setting of fpc register
     - SUNRPC: Fix a suspicious RCU usage warning (CVE-2023-52623)
     - ecryptfs: Reject casefold directory inodes
     - ext4: fix inconsistent between segment fstrim and full fstrim
     - ext4: unify the type of flexbg_size to unsigned int
     - ext4: remove unnecessary check from alloc_flex_gd()
     - ext4: avoid online resizing failures due to oversized flex bg
       (CVE-2023-52622)
     - wifi: rt2x00: restart beacon queue when hardware reset
     - wifi: rt2x00: correct wrong BBP register in RxDCOC calibration
     - [arm64] soc: xilinx: Fix for call trace due to the usage of
       smp_processor_id()
     - [arm64] soc: xilinx: fix unhandled SGI warning message
     - scsi: lpfc: Fix possible file string name overflow when updating firmware
     - PCI: Add no PM reset quirk for NVIDIA Spectrum devices
     - bonding: return -ENOMEM instead of BUG in alb_upper_dev_walk
     - net: usb: ax88179_178a: avoid two consecutive device resets
     - scsi: mpi3mr: Add PCI checks where SAS5116 diverges from SAS4116
     - scsi: arcmsr: Support new PCI device IDs 1883 and 1886
     - wifi: ath9k: Fix potential array-index-out-of-bounds read in
       ath9k_htc_txstatus()
     - wifi: ath11k: fix race due to setting ATH11K_FLAG_EXT_IRQ_ENABLED too
       early
     - bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers
       (CVE-2023-52621)
     - scsi: libfc: Don't schedule abort twice
     - scsi: libfc: Fix up timeout error in fc_fcp_rec_error()
     - bpf: Set uattr->batch.count as zero before batched update or deletion
     - net: phy: at803x: fix passing the wrong reference for config_intr
     - [arm64] scsi: hisi_sas: Set .phy_attached before notifing phyup event
       HISI_PHYE_PHY_UP_PM
     - ice: fix ICE_AQ_VSI_Q_OPT_RSS_* register values
     - net: atlantic: eliminate double free in error handling logic
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix mv88e6352_serdes_get_stats error
       path
     - block: prevent an integer overflow in bvec_try_merge_hw_page
     - md: Whenassemble the array, consult the superblock of the freshest device
     - [arm64] dts: qcom: msm8996: Fix 'in-ports' is a required property
     - [arm64] dts: qcom: msm8998: Fix 'out-ports' is a required property
     - ice: fix pre-shifted bit usage
     - [arm64] dts: amlogic: fix format for s4 uart node
     - wifi: rtl8xxxu: Add additional USB IDs for RTL8192EU devices
     - libbpf: Fix NULL pointer dereference in bpf_object__collect_prog_relos
     - wifi: rtlwifi: rtl8723{be,ae}: using calculate_bit_shift()
     - wifi: cfg80211: free beacon_ies when overridden from hidden BSS
     - Bluetooth: qca: Set both WIDEBAND_SPEECH and LE_STATES quirks for QCA2066
     - Bluetooth: hci_sync: fix BR/EDR wakeup bug
     - Bluetooth: L2CAP: Fix possible multiple reject send
     - net/smc: disable SEID on non-s390 archs where virtual ISM may be used
     - i40e: Fix VF disable behavior to block all traffic
     - net: dsa: qca8k: put MDIO bus OF node on qca8k_mdio_register() failure
     - f2fs: fix to check return value of f2fs_reserve_new_block()
     - ALSA: hda: Refer to correct stream index at loops
     - ASoC: doc: Fix undefined SND_SOC_DAPM_NOPM argument
     - fast_dput(): handle underflows gracefully
     - RDMA/IPoIB: Fix error code return in ipoib_mcast_join
     - [arm64,armhf] drm/panel-edp: Add override_edid_mode quirk for generic edp
     - drm/amd/display: Fix tiled display misalignment
     - f2fs: fix write pointers on zoned device after roll forward
     - [x86] ASoC: amd: Add new dmi entries for acp5x platform
     - drm/drm_file: fix use of uninitialized variable
     - drm/framebuffer: Fix use of uninitialized variable
     - drm/mipi-dsi: Fix detach call without attach
     - media: stk1160: Fixed high volume of stk1160_dbg messages
     - [arm64,armhf]  media: rockchip: rga: fix swizzling for RGB formats
     - PCI: add INTEL_HDA_ARL to pci_ids.h
     - [x86] ALSA: hda: Intel: add HDA_ARL PCI ID support
     - [arm64] media: rkisp1: Drop IRQF_SHARED
     - [arm64] media: rkisp1: Fix IRQ handler return values
     - [arm64] media: rkisp1: Store IRQ lines
     - [arm64] media: rkisp1: Fix IRQ disable race issue
     - hwmon: (nct6775) Fix fan speed set failure in automatic mode
     - f2fs: fix to tag gcing flag on page during block migration
     - [armhf] drm/exynos: Call drm_atomic_helper_shutdown() at shutdown/unbind
       time
     - IB/ipoib: Fix mcast list locking
     - media: ddbridge: fix an error code problem in ddb_probe
     - drm/amd/display: For prefetch mode > 0, extend prefetch if possible
     - [arm64] drm/msm/dpu: Ratelimit framedone timeout msgs
     - [arm64] drm/msm/dpu: fix writeback programming for YUV cases
     - drm/amdgpu: fix ftrace event amdgpu_bo_move always move on same heap
     - [x86] watchdog: it87_wdt: Keep WDTCTRL bit 3 unmodified for IT8784/IT8786
     - drm/amd/display: make flip_timestamp_in_us a 64-bit variable
     - drm/amdgpu: Fix ecc irq enable/disable unpaired
     - drm/amdgpu: Let KFD sync with VM fences
     - drm/amdgpu: Fix '*fw' from request_firmware() not released in
       'amdgpu_ucode_request()'
     - drm/amdgpu: Drop 'fence' check in 'to_amdgpu_amdkfd_fence()'
     - ALSA: hda/conexant: Fix headset auto detect fail in cx8070 and SN6140
     - leds: trigger: panic: Don't register panic notifier if creating the
       trigger failed
     - xen/gntdev: Fix the abuse of underlying struct page in DMA-buf import
     - PCI: Only override AMD USB controller if required
     - PCI: switchtec: Fix stdev_release() crash after surprise hot remove
     - perf cs-etm: Bump minimum OpenCSD version to ensure a bugfix is present
     - usb: hub: Replace hardcoded quirk value with BIT() macro
     - usb: hub: Add quirk to decrease IN-ep poll interval for Microchip USB491x
       hub
     - tty: allow TIOCSLCKTRMIOS with CAP_CHECKPOINT_RESTORE
     - fs/kernfs/dir: obey S_ISGID
     - PCI: Fix 64GT/s effective data rate calculation
     - PCI/AER: Decode Requester ID when no error info found
     - 9p: Fix initialisation of netfs_inode for 9p
     - libsubcmd: Fix memory leak in uniq()
     - virtio_net: Fix "‘%d’ directive writing between 1 and 11 bytes into a
       region of size 10" warnings
     - blk-mq: fix IO hang from sbitmap wakeup race
     - ceph: reinitialize mds feature bit even when session in open
     - ceph: fix deadlock or deadcode of misusing dget()
     - ceph: fix invalid pointer access if get_quota_realm return ERR_PTR
     - drm/amd/powerplay: Fix kzalloc parameter 'ATOM_Tonga_PPM_Table' in
       'get_platform_power_management_table()'
     - drm/amdgpu: Fix with right return code '-EIO' in
       'amdgpu_gmc_vram_checking()'
     - drm/amdgpu: Release 'adev->pm.fw' before return in
       'amdgpu_device_need_post()'
     - perf: Fix the nr_addr_filters fix
     - wifi: cfg80211: fix RCU dereference in __cfg80211_bss_update
     - drm: using mul_u32_u32() requires linux/math64.h
     - scsi: isci: Fix an error code problem in isci_io_request_build()
     - [armhf] regulator: ti-abb: don't use devm_platform_ioremap_resource_byname
       for shared interrupt register
     - scsi: core: Move scsi_host_busy() out of host lock for waking up EH
       handler
     - HID: hidraw: fix a problem of memory leak in hidraw_release()
     - ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()
     - ipv4: raw: add drop reasons
     - ipmr: fix kernel panic when forwarding mcast packets
     - tcp: add sanity checks to rx zerocopy
     - ixgbe: Refactor returning internal error codes
     - ixgbe: Refactor overtemp event handling
     - ixgbe: Fix an error handling path in ixgbe_read_iosf_sb_reg_x550()
     - ipv6: Ensure natural alignment of const ipv6 loopback and router addresses
     - llc: call sock_orphan() at release time
     - bridge: mcast: fix disabled snooping after long uptime
     - netfilter: conntrack: correct window scaling with retransmitted SYN
     - netfilter: nf_tables: restrict tunnel object to NFPROTO_NETDEV
     - netfilter: nf_log: replace BUG_ON by WARN_ON_ONCE when putting logger
     - netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom
       expectations
     - net: ipv4: fix a memleak in ip_setup_cork
     - af_unix: fix lockdep positive in sk_diag_dump_icons()
     - net: sysfs: Fix /sys/class/net/<iface> path
     - [arm64] irq: set the correct node for shadow call stack
     - Revert "drm/amd/display: Disable PSR-SU on Parade 0803 TCON again"
     - [arm64] drm/msm/dsi: Enable runtime PM
     - gve: Fix use-after-free vulnerability
     - bonding: remove print in bond_verify_device_path
     - drm/amdgpu: Fix missing error code in 'gmc_v6/7/8/9_0_hw_init()'
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.78
     - ext4: regenerate buddy after block freeing failed if under fc replay
     - [arm64] dmaengine: ti: k3-udma: Report short packet errors
     - [arm64] dmaengine: fsl-qdma: Fix a memory leak related to the status queue
       DMA
     - [arm64] dmaengine: fsl-qdma: Fix a memory leak related to the queue
       command DMA
     - [arm64] phy: renesas: rcar-gen3-usb2: Fix returning wrong error code
     - dmaengine: fix is_slave_direction() return false when DMA_DEV_TO_DEV
     - [armhf] phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP
     - cifs: failure to add channel on iface should bump up weight
     - [arm64] drm/msms/dp: fixed link clock divider bits be over written in BPC
       unknown case
     - [arm64] drm/msm/dp: return correct Colorimetry for
       DP_TEST_DYNAMIC_RANGE_CEA case
     - [arm64] drm/msm/dpu: check for valid hw_pp in
       dpu_encoder_helper_phys_cleanup
     - net: stmmac: xgmac: fix handling of DPP safety error for DMA channels
     - wifi: mac80211: fix waiting for beacons logic
     - netdevsim: avoid potential loop in nsim_dev_trap_report_work()
     - net: atlantic: Fix DMA mapping for PTP hwts ring
     - tunnels: fix out of bounds access when building IPv6 PMTU error
     - atm: idt77252: fix a memleak in open_card_ubr0
     - [armhf] hwmon: (aspeed-pwm-tacho) mutex for tach reading
     - [x86] hwmon: (coretemp) Fix out-of-bounds memory access
     - [x86] hwmon: (coretemp) Fix bogus core_id to attr name mapping
     - inet: read sk->sk_family once in inet_recv_error()
     - [x86] drm/i915/gvt: Fix uninitialized variable in handle_mmio()
     - rxrpc: Fix response to PING RESPONSE ACKs to a dead call
     - tipc: Check the bearer type before calling tipc_udp_nl_bearer_add()
     - af_unix: Call kfree_skb() for dead unix_(sk)->oob_skb in GC.
     - ppp_async: limit MRU to 64K
     - selftests: cmsg_ipv6: repeat the exact packet
     - netfilter: nft_compat: narrow down revision to unsigned 8-bits
     - netfilter: nft_compat: reject unused compat flag
     - netfilter: nft_compat: restrict match/target protocol to u16
     - drm/amd/display: Implement bounds check for stream encoder creation in
       DCN301
     - netfilter: nft_ct: reject direction for ct id
     - netfilter: nft_set_pipapo: store index in scratch maps
     - netfilter: nft_set_pipapo: add helper to release pcpu scratch area
     - netfilter: nft_set_pipapo: remove scratch_aligned pointer
     - fs/ntfs3: Fix an NULL dereference bug
     - scsi: core: Move scsi_host_busy() out of host lock if it is for
       per-command
     - blk-iocost: Fix an UBSAN shift-out-of-bounds warning
     - fs: dlm: don't put dlm_local_addrs on heap (Closes: #1063338)
     - mtd: parsers: ofpart: add workaround for #size-cells 0
     - ALSA: usb-audio: Add delay quirk for MOTU M Series 2nd revision
     - ALSA: usb-audio: Add a quirk for Yamaha YIT-W12TX transmitter
     - ALSA: usb-audio: add quirk for RODE NT-USB+
     - USB: serial: qcserial: add new usb-id for Dell Wireless DW5826e
     - USB: serial: option: add Fibocom FM101-GL variant
     - USB: serial: cp210x: add ID for IMST iM871A-USB
     - [arm64,armhf] usb: dwc3: host: Set XHCI_SG_TRB_CACHE_SIZE_QUIRK
     - [arm64,armhf] usb: host: xhci-plat: Add support for
       XHCI_SG_TRB_CACHE_SIZE_QUIRK
     - hrtimer: Report offline hrtimer enqueue
     - Input: i8042 - fix strange behavior of touchpad on Clevo NS70PU
     - Input: atkbd - skip ATKBD_CMD_SETLEDS when skipping ATKBD_CMD_GETID
       (Closes: #1061521)
     - io_uring/net: fix sr->len for IORING_OP_RECV with MSG_WAITALL and buffers
     - Revert "ASoC: amd: Add new dmi entries for acp5x platform"
     - vhost: use kzalloc() instead of kmalloc() followed by memset()
       (CVE-2024-0340)
     - RDMA/irdma: Fix support for 64k pages
     - f2fs: add helper to check compression level (Closes: #1063422)
     - block: treat poll queue enter similarly to timeouts
     - clocksource: Skip watchdog check for large watchdog intervals
     - net: stmmac: xgmac: use #define for string constants
     - ALSA: usb-audio: Sort quirk table entries
     - net: stmmac: xgmac: fix a typo of register name in DPP safety handling
     - netfilter: nft_set_rbtree: skip end interval element from gc
       (CVE-2024-26581)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.79
     - work around gcc bugs with 'asm goto' with outputs
     - update workarounds for gcc "asm goto" issue
     - btrfs: add and use helper to check if block group is used
     - btrfs: do not delete unused block group if it may be used soon
     - btrfs: forbid creating subvol qgroups
     - btrfs: do not ASSERT() if the newly created subvolume already got read
       (CVE-2024-23850)
     - btrfs: forbid deleting live subvol qgroup
     - btrfs: send: return EOPNOTSUPP on unknown flags
     - btrfs: don't reserve space for checksums when writing to nocow files
     - btrfs: reject encoded write if inode has nodatasum flag set
     - btrfs: don't drop extent_map for free space inode on write error
     - driver core: Fix device_link_flag_is_sync_state_only()
     - wifi: iwlwifi: Fix some error codes
     - wifi: iwlwifi: uninitialized variable in iwl_acpi_get_ppag_table()
     - of: property: Improve finding the supplier of a remote-endpoint property
     - net: openvswitch: limit the number of recursions from action sets
       (CVE-2024-1151)
     - lan966x: Fix crash when adding interface under a lag
     - tls/sw: Use splice_eof() to flush
     - tls: extract context alloc/initialization out of tls_set_sw_offload
     - net: tls: factor out tls_*crypt_async_wait()
     - tls: fix race between async notify and socket close (CVE-2024-26583)
     - net: tls: fix use-after-free with partial reads and async decrypt
       (CVE-2024-26582)
     - net: tls: fix returned read length with async decrypt
     - ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work()
     - net: sysfs: Fix /sys/class/net/<iface> path for statistics
     - nouveau/svm: fix kvcalloc() argument order
     - [mips*] Add 'memory' clobber to csum_ipv6_magic() inline assembler
     - i40e: Do not allow untrusted VF to remove administratively set MAC
     - i40e: Fix waiting for queues of all VSIs to be disabled
     - tracing/trigger: Fix to return error if failed to alloc snapshot
     - mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again
     - scsi: storvsc: Fix ring buffer size calculation
     - dm-crypt, dm-verity: disable tasklets
     - [x86] ASoC: amd: yc: Add DMI quirk for MSI Bravo 15 C7VF
     - ALSA: hda/realtek: Fix the external mic not being recognised for Acer
       Swift 1 SF114-32
     - ALSA: hda/realtek: Enable Mute LED on HP Laptop 14-fq0xxx
     - HID: i2c-hid-of: fix NULL-deref on failed power up
     - HID: wacom: generic: Avoid reporting a serial of '0' to userspace
     - HID: wacom: Do not register input devices until after hid_hw_start
     - iio: hid-sensor-als: Return 0 for HID_USAGE_SENSOR_TIME_TIMESTAMP
     - usb: ucsi: Add missing ppm_lock
     - usb: ulpi: Fix debugfs directory leak
     - usb: ucsi_acpi: Fix command completion handling
     - USB: hub: check for alternate port before enabling A_ALT_HNP_SUPPORT
     - usb: f_mass_storage: forbid async queue when shutdown happen
     - usb: dwc3: gadget: Fix NULL pointer dereference in dwc3_gadget_suspend
     - driver core: fw_devlink: Improve detection of overlapping cycles
     - cifs: fix underflow in parse_server_interfaces()
     - i2c: qcom-geni: Correct I2C TRE sequence
     - irqchip/loongson-eiointc: Use correct struct type in
       eiointc_domain_alloc()
     - i2c: pasemi: split driver into two separate modules
     - i2c: i801: Fix block process call transactions (CVE-2024-26593)
     - modpost: trim leading spaces when processing source files list
     - mptcp: get rid of msk->subflow
     - mptcp: fix data re-injection from stale subflow
     - mptcp: drop the push_pending field
     - mptcp: check addrs list in userspace_pm_get_local_id
     - media: Revert "media: rkisp1: Drop IRQF_SHARED"
     - scsi: Revert "scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock"
     - Revert "drm/amd: flush any delayed gfxoff on suspend entry"
     - drm/virtio: Set segment size for virtio_gpu device
     - lsm: fix the logic in security_inode_getsecctx()
     - firewire: core: correct documentation of fw_csr_string() kernel API
     - ALSA: hda/realtek: Apply headset jack quirk for non-bass alc287 thinkpads
     - kbuild: Fix changing ELF file type for output of gen_btf for big endian
     - nfc: nci: free rx_data_reassembly skb on NCI device cleanup
     - net: hsr: remove WARN_ONCE() in send_hsr_supervision_frame()
     - net: stmmac: do not clear TBS enable bit on link up/down
     - xen-netback: properly sync TX responses
     - modpost: propagate W=1 build option to modpost
     - modpost: Don't let "driver"s reference .exit.*
     - linux/init: remove __memexit* annotations
     - modpost: Include '.text.*' in TEXT_SECTIONS
     - modpost: Add '.ltext' and '.ltext.*' to TEXT_SECTIONS
     - ALSA: hda/realtek: Enable headset mic on Vaio VJFE-ADL
     - ASoC: codecs: wcd938x: handle deferred probe
     - ALSA: hda/cs8409: Suppress vmaster control for Dolphin models
     - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power
     - [arm*] binder: signal epoll threads of self-work (CVE-2024-26606)
     - misc: fastrpc: Mark all sessions as invalid in cb_remove
     - ext4: fix double-free of blocks due to wrong extents moved_len
     - ext4: avoid bb_free and bb_fragments inconsistency in mb_free_blocks()
     - tracing: Fix wasted memory in saved_cmdlines logic
     - staging: iio: ad5933: fix type mismatch regression
     - iio: magnetometer: rm3100: add boundary check for the value read from
       RM3100_REG_TMRC
     - iio: core: fix memleak in iio_device_register_sysfs
     - iio: commom: st_sensors: ensure proper DMA alignment
     - iio: accel: bma400: Fix a compilation problem
     - iio: adc: ad_sigma_delta: ensure proper DMA alignment
     - iio: imu: adis: ensure proper DMA alignment
     - iio: imu: bno055: serdev requires REGMAP
     - media: rc: bpf attach/detach requires write permission
     - ksmbd: free aux buffer if ksmbd_iov_pin_rsp_read fails
     - xfrm: Remove inner/outer modes from output path
     - xfrm: Remove inner/outer modes from input path
     - [arm64] drm/msm: Wire up tlb ops
     - drm/prime: Support page array >= 4GB
     - drm/amd/display: Increase frame-larger-than for all display_mode_vba files
     - drm/amd/display: Preserve original aspect ratio in create stream
     - hv_netvsc: Fix race condition between netvsc_probe and netvsc_remove
     - ring-buffer: Clean ring_buffer_poll_wait() error return
     - nfp: flower: fix hardware offload for the transfer layer port
     - [powerpc*] 64: Set task pt_regs->link to the LR value on scv entry
     - [powerpc*] cputable: Add missing PPC_FEATURE_BOOKE on PPC64 Book-E
     - [powerpc*] pseries: fix accuracy of stolen time
     - [x86] fpu: Stop relying on userspace for info to fault in xsave buffer
       (CVE-2024-26603)
     - [x86] KVM: x86/pmu: Fix type length error when reading pmu->fixed_ctr_ctrl
     - [x86] mm/ident_map: Use gbpages only where full GB page should be mapped.
     - io_uring/net: fix multishot accept overflow handling
     - mmc: slot-gpio: Allow non-sleeping GPIO ro
     - ALSA: hda/realtek: fix mute/micmute LED For HP mt645
     - ALSA: hda/conexant: Add quirk for SWS JS201D
     - nilfs2: fix data corruption in dsync block recovery for small block sizes
     - nilfs2: fix hang in nilfs_lookup_dirty_data_buffers()
     - crypto: ccp - Fix null pointer dereference in
       __sev_platform_shutdown_locked
     - nfp: use correct macro for LengthSelect in BAR config
     - nfp: flower: prevent re-adding mac index for bonded port
     - wifi: cfg80211: fix wiphy delayed work queueing
     - wifi: mac80211: reload info pointer in ieee80211_tx_dequeue()
     - irqchip/irq-brcmstb-l2: Add write memory barrier before exit
     - irqchip/gic-v3-its: Fix GICv4.1 VPE affinity update
     - zonefs: Improve error handling
     - mmc: sdhci-pci-o2micro: Fix a warm reboot issue that disk can't be
       detected by BIOS (Closes: #1056056)
     - [x86] ASoC: amd: yc: Add DMI quirk for Lenovo Ideapad Pro 5 16ARP8
     - fs: relax mount_setattr() permission checks
     - net: ethernet: ti: cpsw: enable mac_managed_pm to fix mdio
     - [s390x] qeth: Fix potential loss of L3-IP@ in case of network issues
     - net: ethernet: ti: cpsw_new: enable mac_managed_pm to fix mdio
     - hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed
     - ceph: prevent use-after-free in encode_cap_msg()
     - fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super
       (CVE-2024-0841)
     - mm: hugetlb pages should not be reserved by shmat() if SHM_NORESERVE
     - of: property: fix typo in io-channels
     - can: netlink: Fix TDCO calculation using the old data bittiming
     - can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock
     - can: j1939: Fix UAF in j1939_sk_match_filter during
       setsockopt(SO_J1939_FILTER)
     - pmdomain: core: Move the unused cleanup to a _sync initcall
     - fs/proc: do_task_stat: move thread_group_cputime_adjusted() outside of
       lock_task_sighand()
     - tracing: Inform kmemleak of saved_cmdlines allocation
     - xfrm: Use xfrm_state selector for BEET input
     - xfrm: Silence warnings triggerable by bad packets
     - tls: fix NULL deref on tls_sw_splice_eof() with empty record
     - md: bypass block throttle for superblock update
     - wifi: mwifiex: Support SD8978 chipset
     - wifi: mwifiex: add extra delay for firmware ready
     - bus: moxtet: Add spi device table
     - [arm64] dts: qcom: msm8916: Enable blsp_dma by default
     - [arm64] dts: qcom: msm8916: Make blsp_dma controlled-remotely
     - [arm64] dts: qcom: sdm845: fix USB SS wakeup
     - [arm64] dts: qcom: sm8150: fix USB SS wakeup
     - wifi: mwifiex: fix uninitialized firmware_stat
     - crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init
     - block: fix partial zone append completion handling in req_bio_endio()
     - netfilter: ipset: fix performance regression in swap operation
     - netfilter: ipset: Missing gc cancellations fixed
     - nfsd: fix RELEASE_LOCKOWNER
     - nfsd: don't take fi_lock in nfsd_break_deleg_cb()
     - hrtimer: Ignore slack time for RT tasks in schedule_hrtimeout_range()
     - RDMA/irdma: Ensure iWarp QP queue memory is OS paged aligned
     - smb: client: fix potential OOBs in smb2_parse_contexts() (CVE-2023-52434)
     - smb: client: fix parsing of SMB3.1.1 POSIX create context
     - net: prevent mss overflow in skb_segment() (CVE-2023-52435)
     - bpf: Add struct for bin_args arg in bpf_bprintf_prepare
     - bpf: Do cleanup in bpf_bprintf_cleanup only when needed
     - bpf: Remove trace_printk_lock
     - userfaultfd: fix mmap_changing checking in mfill_atomic_hugetlb
     - dmaengine: ioat: Free up __cleanup() name
     - apparmor: Free up __cleanup() name
     - locking: Introduce __cleanup() based infrastructure
     - kbuild: Drop -Wdeclaration-after-statement
     - sched/membarrier: reduce the ability to hammer on sys_membarrier
       (CVE-2024-26602)
     - of: property: Add in-ports/out-ports support to of_graph_get_port_parent()
     - nilfs2: fix potential bug in end_buffer_async_write
     - nilfs2: replace WARN_ONs for invalid DAT metadata block requests
     - dm: limit the number of targets and parameter size area (CVE-2024-23851,
       CVE-2023-52429)
     - [arm64:]Subscribe Microsoft Azure Cobalt 100 to ARM Neoverse N2 errata
     - mlxsw: spectrum_acl_tcam: Fix stack corruption (CVE-2024-26586)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.80
     - net/sched: Retire CBQ qdisc
     - net/sched: Retire ATM qdisc
     - net/sched: Retire dsmark qdisc
     - sched/rt: Disallow writing invalid values to sched_rt_period_us
     - sched/rt: sysctl_sched_rr_timeslice show default timeslice after reset
     - scsi: target: core: Add TMF to tmr_list handling
     - cifs: open_cached_dir should not rely on primary channel
     - wifi: cfg80211: fix missing interfaces when dumping
     - wifi: mac80211: fix race condition on enabling fast-xmit
     - fbdev: savage: Error out if pixclock equals zero
     - fbdev: sis: Error out if pixclock equals zero
     - block: Fix WARNING in _copy_from_iter
     - smb: Work around Clang __bdos() type confusion
     - cifs: translate network errors on send to -ECONNABORTED
     - ahci: asm1166: correct count of reported ports
     - aoe: avoid potential deadlock at set_capacity
     - ahci: add 43-bit DMA address quirk for ASMedia ASM1061 controllers
     - [mips*] reserve exception vector space ONLY ONCE
     - [x86] platform/x86: touchscreen_dmi: Add info for the TECLAST X16 Plus
       tablet
     - ext4: avoid dividing by 0 in mb_update_avg_fragment_size() when block
       bitmap corrupt
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_try_best_found()
     - ext4: avoid allocating blocks from corrupted group in
       ext4_mb_find_by_goal()
     - Input: goodix - accept ACPI resources with gpio_count == 3 && gpio_int_idx
       == 0
     - [armhf] dmaengine: ti: edma: Add some null pointer checks to the
       edma_probe
     - [arm64] regulator: pwm-regulator: Add validity checks in continuous
       .get_voltage
     - nvmet-tcp: fix nvme tcp ida memory leak
     - usb: ucsi_acpi: Quirk to ack a connector change ack cmd
     - ALSA: usb-audio: Check presence of valid altsetting control
     - [armhf] ASoC: sunxi: sun4i-spdif: Add support for Allwinner H616
     - Input: xpad - add Lenovo Legion Go controllers
     - netfilter: conntrack: check SCTP_CID_SHUTDOWN_ACK for vtag setting in
       sctp_new
     - drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz
     - [x86] ASoC: wm_adsp: Don't overwrite fwf_name with the default
     - ALSA: usb-audio: Ignore clock selector errors for single connection
     - nvme-fc: do not wait in vain when unloading module
     - nvmet-fcloop: swap the list_add_tail arguments
     - nvmet-fc: release reference on target port
     - nvmet-fc: defer cleanup using RCU properly
     - nvmet-fc: hold reference on hostport match
     - nvmet-fc: abort command when there is no binding
     - nvmet-fc: avoid deadlock on delete association path
     - nvmet-fc: take ref count on tgtport before delete assoc
     - smb: client: increase number of PDUs allowed in a compound request
     - ext4: correct the hole length returned by ext4_map_blocks()
     - Input: i8042 - add Fujitsu Lifebook U728 to i8042 quirk table
     - wifi: mac80211: set station RX-NSS on reconfig
     - wifi: mac80211: adding missing drv_mgd_complete_tx() call
     - efi: runtime: Fix potential overflow of soft-reserved region size
     - efi: Don't add memblocks for soft-reserved memory
     - [x86] hwmon: (coretemp) Enlarge per package core count limit
     - scsi: lpfc: Use unsigned type for num_sge
     - scsi: ufs: core: Remove the ufshcd_release() in
       ufshcd_err_handling_prepare()
     - firewire: core: send bus reset promptly on gap count error
     - drm/amdgpu: skip to program GFXDEC registers for suspend abort
     - drm/amdgpu: reset gpu for s3 suspend abort case
     - smb: client: set correct d_type for reparse points under DFS mounts
     - virtio-blk: Ensure no requests in virtqueues before deleting vqs.
     - smb3: clarify mount warning
     - [amd64] IB/hfi1: Fix sdma.h tx->num_descs off-by-one error
     - drm/ttm: Fix an invalid freeing on already freed page in error path
     - [s390x] cio: fix invalid -EBUSY on ccw_device_start
     - ata: libata-core: Do not try to set sleeping devices to standby
     - dm-crypt: recheck the integrity tag after a failure
     - dm-integrity: recheck the integrity tag after a failure
     - dm-crypt: don't modify the data when using authenticated encryption
     - dm-verity: recheck the hash after a failure
     - cxl/pci: Fix disabling memory if DVSEC CXL Range does not match a CFMWS
       window
     - scsi: target: pscsi: Fix bio_put() for error case
     - scsi: core: Consult supported VPD page list prior to fetching page
     - mm/swap: fix race when skipping swapcache
     - mm: memcontrol: clarify swapaccount=0 deprecation warning
     - [x86] platform/x86: intel-vbtn: Stop calling "VBDL" from notify_handler
     - [x86] platform/x86: touchscreen_dmi: Allow partial (prefix) matches for
       ACPI names
     - cachefiles: fix memory leak in cachefiles_add_cache()
     - md: Fix missing release of 'active_io' for flush
     - [arm64] KVM: arm64: vgic-its: Test for valid IRQ in MOVALL handler
     - [arm64] KVM: arm64: vgic-its: Test for valid IRQ in
       its_sync_lpi_pending_table()
     - gtp: fix use-after-free and null-ptr-deref in gtp_genl_dump_pdp()
     - crypto: virtio/akcipher - Fix stack overflow on memcpy
     - irqchip/gic-v3-its: Do not assume vPE tables are preallocated
     - irqchip/sifive-plic: Enable interrupt if needed before EOI
     - PCI/MSI: Prevent MSI hardware interrupt number truncation
     - l2tp: pass correct message length to ip6_append_data
     - [x86] returnthunk: Allow different return thunks
     - [x86] Revert "x86/alternative: Make custom return thunk unconditional"
     - [x86] alternative: Make custom return thunk unconditional
     - dm-integrity, dm-verity: reduce stack usage for recheck
     - erofs: fix refcount on the metabuf used for inode lookup
     - serial: amba-pl011: Fix DMA transmission in RS485 mode
     - [arm64,armhf] usb: dwc3: gadget: Don't disconnect if not started
     - usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs
     - usb: roles: fix NULL pointer issue when put module's reference
     - usb: roles: don't get/set_role() when usb_role_switch is unregistered
     - mptcp: make userspace_pm_append_new_local_addr static
     - mptcp: add needs_id for userspace appending addr
     - mptcp: fix lockless access in subflow ULP diag
     - Revert "drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz"
     - [amd64] IB/hfi1: Fix a memleak in init_credit_return
     - RDMA/bnxt_re: Return error for SRQ resize
     - RDMA/irdma: Fix KASAN issue with tasklet
     - RDMA/irdma: Validate max_send_wr and max_recv_wr
     - RDMA/irdma: Set the CQ read threshold for GEN 1
     - RDMA/irdma: Add AE for too many RNRS
     - RDMA/srpt: Support specifying the srpt_service_guid parameter
     - iommufd/iova_bitmap: Bounds check mapped::pages access
     - iommufd/iova_bitmap: Switch iova_bitmap::bitmap to an u8 array
     - iommufd/iova_bitmap: Consider page offset for the pages to be pinned
     - RDMA/qedr: Fix qedr_create_user_qp error flow
     - [arm64] dts: rockchip: set num-cs property for spi on px30
     - RDMA/srpt: fix function pointer cast warnings
     - bpf, scripts: Correct GPL license name
     - scsi: smartpqi: Fix disable_managed_interrupts
     - net: bridge: switchdev: Skip MDB replays of deferred events on offload
     - net: bridge: switchdev: Ensure deferred event delivery on unoffload
     - dccp/tcp: Unhash sk from ehash for tb2 alloc failure after
       check_estalblished().
     - nouveau: fix function cast warnings
     - [x86] numa: Fix the address overlap check in numa_fill_memblks()
     - [x86] numa: Fix the sort compare func used in numa_fill_memblks()
     - net: stmmac: Fix incorrect dereference in interrupt handlers
     - ipv4: properly combine dev_base_seq and ipv4.dev_addr_genid
     - ipv6: properly combine dev_base_seq and ipv6.dev_addr_genid
     - ata: ahci_ceva: fix error handling for Xilinx GT PHY support
     - bpf: Fix racing between bpf_timer_cancel_and_free and bpf_timer_cancel
     - afs: Increase buffer size in afs_update_volume_status()
     - ipv6: sr: fix possible use-after-free and null-ptr-deref
     - net: dev: Convert sa_data to flexible array in struct sockaddr
     - [arm64] sme: Restore SME registers on exit from suspend
     - [x86] platform/x86: thinkpad_acpi: Only update profile if successfully
       converted
     - [s390x] use the correct count for __iowrite64_copy()
     - bpf, sockmap: Fix NULL pointer dereference in
       sk_psock_verdict_data_ready()
     - tls: break out of main loop when PEEK gets a non-data record
     - tls: stop recv() if initial process_rx_list gave us non-DATA
     - tls: don't skip over different type records from the rx_list
     - netfilter: nf_tables: set dormant flag on hook register failure
     - netfilter: flowtable: simplify route logic
     - netfilter: nft_flow_offload: reset dst in route object after setting up
       flow
     - netfilter: nft_flow_offload: release dst in case direct xmit path is used
     - netfilter: nf_tables: rename function to destroy hook list
     - netfilter: nf_tables: register hooks last when adding new chain/flowtable
     - netfilter: nf_tables: use kzalloc for hook allocation
     - net: mctp: put sock on tag allocation failure
     - Fix write to cloned skb in ipv6_hop_ioam()
     - net: phy: realtek: Fix rtl8211f_config_init() for RTL8211F(D)(I)-VD-CG PHY
     - drm/syncobj: call drm_syncobj_fence_add_wait when WAIT_AVAILABLE flag is
       set
     - drm/amd/display: Fix memory leak in dm_sw_fini()
     - [arm64,armhf] i2c: imx: when being a target, mark the last read as
       processed
     - erofs: simplify compression configuration parser
     - erofs: fix inconsistent per-file compression format (CVE-2024-26590)
     - fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio
     - mm: zswap: fix missing folio cleanup in writeback race path
     - mptcp: userspace pm send RM_ADDR for ID 0
     - mptcp: add needs_id for netlink appending addr
     - ata: ahci: add identifiers for ASM2116 series adapters
     - ahci: Extend ASM1061 43-bit DMA address quirk to other ASM106x parts
     - arp: Prevent overflow in arp_req_get().
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.81
     - netfilter: nf_tables: disallow timeout for anonymous sets (CVE-2023-52620)
     - [arm64] drm/meson: fix unbind path if HDMI fails to bind
     - [arm64] drm/meson: Don't remove bridges which are created by other drivers
     - scsi: core: Add struct for args to execution functions
     - scsi: sd: usb_storage: uas: Access media prior to querying device
       properties
     - af_unix: Fix task hung while purging oob_skb in GC.
     - of: overlay: Reorder struct fragment fields kerneldoc
     - usb: gadget: Properly configure the device for remote wakeup
     - Input: xpad - add constants for GIP interface numbers
     - [arm64] iommu/arm-smmu-v3: Acknowledge pri/event queue overflow if any
     - [arm64] iommu/arm-smmu-qcom: Limit the SMR groups to 128
     - RDMA/core: Fix multiple -Warray-bounds warnings
     - mm: huge_memory: don't force huge page alignment on 32 bit
       (CVE-2024-26621) (Closes: #1024149)
     - netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter
     - netlink: add nla be16/32 types to minlen array
     - net: ip_tunnel: prevent perpetual headroom growth
     - net: mctp: take ownership of skb in mctp_local_output
     - tun: Fix xdp_rxq_info's queue_index when detaching
     - cpufreq: intel_pstate: fix pstate limits enforcement for adjust_perf call
       back
     - net: veth: clear GRO when clearing XDP even when down
     - ipv6: fix potential "struct net" leak in inet6_rtm_getaddr()
     - lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is
       detected
     - veth: try harder when allocating queue memory
     - net: usb: dm9601: fix wrong return value in dm9601_mdio_read
     - net: lan78xx: fix "softirq work is pending" error
     - uapi: in6: replace temporary label with rfc9486
     - stmmac: Clear variable when destroying workqueue
     - Bluetooth: hci_sync: Check the correct flag before starting a scan
     - Bluetooth: Avoid potential use-after-free in hci_error_reset
     - Bluetooth: hci_sync: Fix accept_list when attempting to suspend
     - Bluetooth: hci_event: Fix wrongly recorded wakeup BD_ADDR
     - Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST
     - Bluetooth: Enforce validation on max value of connection interval
     - Bluetooth: qca: Fix wrong event type for patch config command
     - Bluetooth: hci_qca: mark OF related data as maybe unused
     - Bluetooth: hci_qca: Add support for QTI Bluetooth chip wcn6855
     - Bluetooth: btqca: use le32_to_cpu for ver.soc_id
     - Bluetooth: btqca: Add WCN3988 support
     - Bluetooth: qca: use switch case for soc type behavior
     - Bluetooth: qca: add support for WCN7850
     - Bluetooth: hci_qca: Set BDA quirk bit if fwnode exists in DT
     - netfilter: nf_tables: allow NFPROTO_INET in nft_(match/target)_validate()
     - netfilter: let reset rules clean out conntrack entries
     - netfilter: bridge: confirm multicast packets before passing them up the
       stack
     - rtnetlink: fix error logic of IFLA_BRIDGE_FLAGS writing back
     - igb: extend PTP timestamp adjustments to i211
     - net: hsr: Use correct offset for HSR TLV values in supervisory HSR frames
     - tls: decrement decrypt_pending if no async completion will be called
     - tls: fix peeking with sync+async decryption
     - efi/capsule-loader: fix incorrect allocation size
     - ALSA: Drop leftover snd-rtctimer stuff from Makefile
     - [arm64,armhf] drm/tegra: Remove existing framebuffer only if we support
       display
     - fbcon: always restore the old font data in fbcon_do_set_font()
     - afs: Fix endless loop in directory parsing
     - of: property: fw_devlink: Fix stupid bug in remote-endpoint parsing
     - tomoyo: fix UAF write bug in tomoyo_write_control() (CVE-2024-26622)
     - ALSA: firewire-lib: fix to check cycle continuity
     - ALSA: hda/realtek: Enable Mute LED on HP 840 G8 (MB 8AB8)
     - ALSA: hda/realtek: fix mute/micmute LED For HP mt440
     - landlock: Fix asymmetric private inodes referring
     - gtp: fix use-after-free and null-ptr-deref in gtp_newlink()
     - wifi: nl80211: reject iftype change with mesh ID change
     - btrfs: fix double free of anonymous device after snapshot creation failure
     - btrfs: dev-replace: properly validate device names
     - btrfs: send: don't issue unnecessary zero writes for trailing hole
     - Revert "drm/amd/pm: resolve reboot exception for si oland"
     - drm/buddy: fix range bias
     - [arm64] dmaengine: fsl-qdma: fix SoC may hang on 16 byte unaligned read
     - [arm64] crypto: arm64/neonbs - fix out-of-bounds access on short input
     - [arm64] dmaengine: fsl-qdma: init irq after reg initialization
     - [arm64,armhf] mmc: mmci: stm32: fix DMA API overlapping mappings warning
     - mmc: core: Fix eMMC initialization with 1-bit bus connection
     - [arm64] mmc: sdhci-xenon: add timeout for PHY init complete
     - [arm64] mmc: sdhci-xenon: fix PHY init clock stability
     - efivarfs: Request at most 512 bytes for variable names
     - [arm64] pmdomain: qcom: rpmhpd: Fix enabled_corner aggregation
     - [x86] e820: Don't reserve SETUP_RNG_SEED in e820
     - [x86] cpu/intel: Detect TME keyid bits before setting MTRR mask registers
     - mptcp: fix data races on local_id
     - mptcp: fix data races on remote_id
     - mptcp: fix duplicate subflow creation
     - mptcp: continue marking the first subflow as UNCONNECTED
     - mptcp: map v4 address to v6 when destroying subflow
     - mptcp: push at DSS boundaries
     - mptcp: fix snd_wnd initialization for passive socket
     - mptcp: fix double-free on socket dismantle
     - mptcp: fix possible deadlock in subflow diag
     - RDMA/core: Refactor rdma_bind_addr (CVE-2023-2176)
     - RDMA/core: Update CMA destination address on rdma_resolve_addr
     - efi: libstub: use EFI_LOADER_CODE region when moving the kernel in memory
     - [x86] boot/compressed: Rename efi_thunk_64.S to efi-mixed.S
     - [x86] boot/compressed: Move 32-bit entrypoint code into .text section
     - [x86] boot/compressed: Move bootargs parsing out of 32-bit startup code
     - [x86] boot/compressed: Move efi32_pe_entry into .text section
     - [x86] boot/compressed: Move efi32_entry out of head_64.S
     - [x86] boot/compressed: Move efi32_pe_entry() out of head_64.S
     - [x86] boot/compressed, efi: Merge multiple definitions of image_offset
       into one
     - [x86] boot/compressed: Simplify IDT/GDT preserve/restore in the EFI thunk
     - [x86] boot/compressed: Avoid touching ECX in startup32_set_idt_entry()
     - [x86] boot/compressed: Pull global variable reference into
       startup32_load_idt()
     - [x86] boot/compressed: Move startup32_load_idt() into .text section
     - [x86] boot/compressed: Move startup32_load_idt() out of head_64.S
     - [x86] boot/compressed: Move startup32_check_sev_cbit() into .text
     - [x86] boot/compressed: Move startup32_check_sev_cbit() out of head_64.S
     - [x86] boot/compressed: Adhere to calling convention in
       get_sev_encryption_bit()
     - [x86] boot/compressed: Only build mem_encrypt.S if AMD_MEM_ENCRYPT=y
     - efi: verify that variable services are supported
     - [x86] efi: Make the deprecated EFI handover protocol optional
     - [x86] boot: Robustify calling startup_{32,64}() from the decompressor code
     - [x86] efistub: Branch straight to kernel entry point from C code
     - [x86] decompressor: Store boot_params pointer in callee save register
     - [x86] decompressor: Assign paging related global variables earlier
     - [x86] decompressor: Call trampoline as a normal function
     - [x86] decompressor: Use standard calling convention for trampoline
     - [x86] decompressor: Avoid the need for a stack in the 32-bit trampoline
     - [x86] decompressor: Call trampoline directly from C code
     - [x86] decompressor: Only call the trampoline when changing paging levels
     - [x86] decompressor: Pass pgtable address to trampoline directly
     - [x86] decompressor: Merge trampoline cleanup with switching code
     - [x86] decompressor: Move global symbol references to C code
     - decompress: Use 8 byte alignment
     - drm/amd/display: Increase frame warning limit with KASAN or KCSAN in dml
     - NFS: Fix data corruption caused by congestion.
     - NFSD: Simplify READ_PLUS
     - NFSD: Remove redundant assignment to variable host_err
     - nfsd: ignore requests to disable unsupported versions
     - nfsd: move nfserrno() to vfs.c
     - nfsd: allow disabling NFSv2 at compile time
     - exportfs: use pr_debug for unreachable debug statements
     - NFSD: Flesh out a documenting comment for filecache.c
     - NFSD: Clean up nfs4_preprocess_stateid_op() call sites
     - NFSD: Trace stateids returned via DELEGRETURN
     - NFSD: Trace delegation revocations
     - NFSD: Use const pointers as parameters to fh_ helpers
     - NFSD: Update file_hashtbl() helpers
     - NFSD: Clean up nfsd4_init_file()
     - NFSD: Add a nfsd4_file_hash_remove() helper
     - NFSD: Clean up find_or_add_file()
     - NFSD: Refactor find_file()
     - NFSD: Use rhashtable for managing nfs4_file objects
     - NFSD: Fix licensing header in filecache.c
     - filelock: add a new locks_inode_context accessor function
     - lockd: use locks_inode_context helper
     - nfsd: use locks_inode_context helper
     - nfsd: fix up the filecache laundrette scheduling
     - NFSD: Use struct_size() helper in alloc_session()
     - lockd: set missing fl_flags field when retrieving args
     - lockd: ensure we use the correct file descriptor when unlocking
     - lockd: fix file selection in nlmsvc_cancel_blocked
     - trace: Relocate event helper files
     - NFSD: refactoring courtesy_client_reaper to a generic low memory shrinker
     - NFSD: add support for sending CB_RECALL_ANY
     - NFSD: add delegation reaper to react to low memory condition
     - NFSD: add CB_RECALL_ANY tracepoints
     - NFSD: Use only RQ_DROPME to signal the need to drop a reply
     - NFSD: Avoid clashing function prototypes
     - NFSD: Use set_bit(RQ_DROPME)
     - NFSD: register/unregister of nfsd-client shrinker at nfsd startup/shutdown
       time
     - NFSD: replace delayed_work with work_struct for nfsd_client_shrinker
     - nfsd: don't destroy global nfs4_file table in per-net shutdown
     - [arm64] efi: Limit allocations to 48-bit addressable physical region
     - efi: efivars: prevent double registration
     - [x86] efistub: Simplify and clean up handover entry code
     - [x86] decompressor: Avoid magic offsets for EFI handover entrypoint
     - [x86] efistub: Clear BSS in EFI handover protocol entrypoint
     - efi/libstub: Add memory attribute protocol definitions
     - efi/libstub: Add limit argument to efi_random_alloc()
     - [x86] efistub: Perform 4/5 level paging switch from the stub
     - [x86] decompressor: Factor out kernel decompression and relocation
     - [x86] efistub: Prefer EFI memory attributes protocol over DXE services
     - [x86] efistub: Perform SNP feature test while running in the firmware
     - [x86] efistub: Avoid legacy decompressor when doing EFI boot
     - [x86] efi/x86: Avoid physical KASLR on older Dell systems
     - [x86] efistub: Avoid placing the kernel below LOAD_PHYSICAL_ADDR
     - [x86] boot: Rename conflicting 'boot_params' pointer to 'boot_params_ptr'
     - [x86] boot: efistub: Assign global boot_params variable
     - [x86] efi/x86: Fix the missing KASLR_FLAG bit in
       boot_params->hdr.loadflags
     - af_unix: Drop oob_skb ref before purging queue in GC.
     - [arm64] phy: freescale: phy-fsl-imx8-mipi-dphy: Fix alias name to use
       dashes
     - [powerpc*] pseries/iommu: IOMMU table is not initialized for kdump over
       SR-IOV
     - gpio: 74x164: Enable output pins after registers are reset
     - gpiolib: Fix the error path order in gpiochip_add_data_with_key()
     - gpio: fix resource unwinding order in error path
     - block: define bvec_iter as __packed __aligned(4)
     - [arm64,armhf] Revert "interconnect: Fix locking for runpm vs reclaim"
     - [arm64,armhf] Revert "interconnect: Teach lockdep about icc_bw_lock order"
     - [x86] bugs: Add asm helpers for executing VERW
     - [x86] entry_64: Add VERW just before userspace transition
     - [x86] entry_32: Add VERW just before userspace transition
     - [x86] bugs: Use ALTERNATIVE() instead of mds_user_clear static key
     - [x86] KVM/VMX: Use BT+JNC, i.e. EFLAGS.CF to select VMRESUME vs. VMLAUNCH
     - [x86] KVM/VMX: Move VERW closer to VMentry for MDS mitigation
     - bpf: Add table ID to bpf_fib_lookup BPF helper
     - bpf: Derive source IP addr via bpf_*_fib_lookup()
     - [x86] efistub: Give up if memory attribute protocol returns an error
     - xen/events: close evtchn after mapping cleanup
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.82
     - ceph: switch to corrected encoding of max_xattr_size in mdsmap
     - net: lan78xx: fix runtime PM count underflow on link stop
     - ixgbe: {dis, en}able irqs in ixgbe_txrx_ring_{dis, en}able
     - i40e: disable NAPI right after disabling irqs when handling xsk_pool
     - ice: reorder disabling IRQ and NAPI in ice_qp_dis
     - tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string
     - geneve: make sure to pull inner header in geneve_rx()
     - ice: virtchnl: stop pretending to support RSS over AQ or registers
     - net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()
     - igc: avoid returning frame twice in XDP_REDIRECT
     - net/ipv6: avoid possible UAF in ip6_route_mpath_notify()
     - cpumap: Zero-initialise xdp_rxq_info struct before running XDP program
     - net: dsa: microchip: fix register write order in ksz8_ind_write8()
     - net/rds: fix WARNING in rds_conn_connect_if_down
     - netfilter: nft_ct: fix l3num expectations with inet pseudo family
     - netfilter: nf_conntrack_h323: Add protection for bmp length out of range
     - erofs: apply proper VMA alignment for memory mapped files on THP
     - netrom: Fix a data-race around sysctl_netrom_default_path_quality
     - netrom: Fix a data-race around
       sysctl_netrom_obsolescence_count_initialiser
     - netrom: Fix data-races around sysctl_netrom_network_ttl_initialiser
     - netrom: Fix a data-race around sysctl_netrom_transport_timeout
     - netrom: Fix a data-race around sysctl_netrom_transport_maximum_tries
     - netrom: Fix a data-race around sysctl_netrom_transport_acknowledge_delay
     - netrom: Fix a data-race around sysctl_netrom_transport_busy_delay
     - netrom: Fix a data-race around
       sysctl_netrom_transport_requested_window_size
     - netrom: Fix a data-race around sysctl_netrom_transport_no_activity_timeout
     - netrom: Fix a data-race around sysctl_netrom_routing_control
     - netrom: Fix a data-race around sysctl_netrom_link_fails_count
     - netrom: Fix data-races around sysctl_net_busy_read
     - [s390x] KVM: s390: add stat counter for shadow gmap events
     - [s390x] KVM: s390: vsie: fix race during shadow creation
     - drm/amd/display: Fix uninitialized variable usage in core_link_
       'read_dpcd() & write_dpcd()' functions
     - nfp: flower: add goto_chain_index for ct entry
     - nfp: flower: add hardware offload check for post ct entry
     - readahead: avoid multiple marked readahead pages
     - xhci: process isoc TD properly when there was a transaction error mid TD.
     - xhci: handle isoc Babble and Buffer Overrun events properly
     - drm/amdgpu: Reset IH OVERFLOW_CLEAR bit
     - [x86] Mitigate Register File Data Sampling (RFDS) vulnerability
       (CVE-2023-28746):
       + [x86] mmio: Disable KVM mitigation when X86_FEATURE_CLEAR_CPU_BUF is set
       + Documentation/hw-vuln: Add documentation for RFDS
       + [x86] rfds: Mitigate Register File Data Sampling (RFDS)
       + [x86] KVM/x86: Export RFDS_NO and RFDS_CLEAR to guests
     - drm/amd/display: Wrong colorimetry workaround
     - drm/amd/display: Fix MST Null Ptr for RV
     - getrusage: add the "signal_struct *sig" local variable
     - getrusage: move thread_group_cputime_adjusted() outside of
       lock_task_sighand()
     - getrusage: use __for_each_thread()
     - getrusage: use sig->stats_lock rather than lock_task_sighand()
     - fs/proc: do_task_stat: use __for_each_thread()
     - fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children
       stats
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 19
   * [rt] Refresh "sched: avoid false lockdep splat in put_task_struct()"
   * Drop now unknown config options for retired CBQ, ATM and dsmark qdisc
   * [x86] efistub: Clear decompressor BSS in native EFI entrypoint
   * [x86] efistub: Don't clear BSS twice in mixed mode
   * efi: fix panic in kdump kernel
   * efi/libstub: fix efi_random_alloc() to allocate memory at alloc_min or
     higher address
   * efi/libstub: Cast away type warning in use of max()
   * aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts
     (CVE-2023-6270)
   * wifi: ath10k: fix NULL pointer dereference in
     ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() (CVE-2023-7042)
   * Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security
     (CVE-2024-22099)
   * sr9800: Add check for usbnet_get_endpoints (CVE-2024-26651)
   * [rt] Update to 6.1.82-rt27

lua5.4 (5.4.4-3+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * debian/version-script: Export additional missing symbols for lua 5.4.4.
     (Closes: #1034800)

lxc-templates (3.0.4.48.g4765da8-1+deb12u1) bookworm; urgency=medium
 .
   * d/p/0004-Fix-debian-mirror-issues-in-lxc-debian.in.patch:
     Fixes two issues with the mirror argument in lxc-debian
     (Closes: #1073130, #1073131)

mailman3 (3.3.8-2~deb12u2) bookworm; urgency=medium
 .
   * bookworm-pu of two fixes
     - s/postgres/postgresql/ in config files
     - Add replacement dependency on cron to cron-daemon

mediawiki (1:1.39.7-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 1.39.7, fixing CVE-2023-51704, T355538 (XSS
     in edit summary parser, CVE pending) and T357760 (DoS in
     Special:MovePage, CVE pending).
mediawiki (1:1.39.6-1) unstable; urgency=medium
 .
   * New upstream version 1.39.6, fixing CVE-2023-51704.
mediawiki (1:1.39.5-1) unstable; urgency=medium
 .
   * New upstream version 1.39.5, fixing CVE-2023-3550,
     CVE-2023-45359, CVE-2023-45360, CVE-2023-45361, CVE-2023-45362,
     CVE-2023-45363, CVE-2023-45364.

mksh (59c-28+deb12u1) bookworm; urgency=low
 .
   * d/p/typeset-p-fix.diff, d/p/dot-args-fix.diff,
     d/p/crash-nest-bashism.diff: cherry-pick upstream bugfixes
   * d/p/metadata-update.diff: cherry-pick relevant documentation
     changes and adjust user-visible version to indicate the
     above fixes were applied
   * fix paths missing wildcards in lintian overrides, postinst, prerm
   * cherry-pick usrmerge /etc/shells change (Closes: #1063905)

mobian-keyring (20230202.0+deb12u1) bookworm; urgency=medium
 .
   [ Arnaud Ferraris ]
   * Update Mobian archive key (Closes: #1073853)

ms-gsl (4.0.0-2+deb12u1) bookworm; urgency=medium
 .
   * New Mark-gsl-not_null-constructors-as-noexcept.patch (Closes: #1051289)

nano (7.2-1+deb12u1) bookworm; urgency=medium
 .
   * The "Premio Nacional de Tauromaquia" release.
   * Fix a partial sync of debian/nanorc in the previous upload.
     This updates some example bindings to the new syntax, avoiding
     having control characters in the configuration file (closes: #1032422).
   * Add 4 post-7.2 upstream patches to fix two minor security issues and
     a potential data-loss situation. Thanks, Benno Schulenberg!
   * Set debian-branch to bookworm.

netcfg (1.187+deb12u1) bookworm; urgency=medium
 .
   * Handle routing for single-address netmasks (closes: #1064005).

ngircd (26.1-1+deb12u1) bookworm; urgency=high
 .
   * Cherry-pick "Respect "SSLConnect" option for incoming
     connections". Closes: #1067237
   * Cherry-pick "Support for server certificate validation on server
     links [S2S-TLS]"
   * Cherry-pick "METADATA: Fix unsetting "cloakhost""
ngircd (26.1-1+deb11u1) bullseye; urgency=high
 .
   * Cherry-pick "Respect "SSLConnect" option for incoming
     connections". Closes: #1067237
   * Cherry-pick "Support for server certificate validation on server
     links [S2S-TLS]"
   * Cherry-pick "METADATA: Fix unsetting "cloakhost""

node-babel7 (7.20.15+ds1+~cs214.269.168-3+deb12u2) bookworm; urgency=medium
 .
   * Team upload
   * Improve tsc-workaround patch, fixing compilation against
     nodejs 18.19.0+dfsg-6~deb12u1. Closes: #1068933.
 .
   [ Andreas Beckmann ]
   * Backport Breaks+Replaces fixes from 7.20.15+ds1+~cs214.269.168-4.
 .
   [ Yadd ]
   * Add missing Breaks+Replaces against all node-babel-* that were in Debian 10
     (Closes: #1037234)

node-undici (5.15.0+dfsg1+~cs20.10.9.3-1+deb12u4) bookworm; urgency=medium
 .
   * Team upload.
   * Upload to bookworm.
 .
   [ Ryan Gonzalez ]
   * Import upstream patch that moves index.d.ts to types/ (closes #1063530)
   * Force @types/node to use local copy of undici-types
   * Fix build failures on lld 15+

node-v8-compile-cache (2.3.0-3+deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm-p-u
   * patch: NativeCompileCache-test for Node 18.13 and 18.19
     and fix test mock. Closes: #1068921

node-zx (7.1.1+~cs6.7.23-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * patch: fix flaky test (upstream). Closes: #1068918

nodejs (18.19.0+dfsg-6~deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Skip failing tests on MIPS.
nodejs (18.19.0+dfsg-6~deb12u1) bookworm-security; urgency=medium
 .
   * Upstream update.
   * CVE-2023-23918: Permissions policies can be bypassed via
     process.mainModule. Closes #1031834.
   * CVE-2023-23919: OpenSSL error handling issues in nodejs crypto
     library. Closes: #1031834.
   * CVE-2023-23920: Insecure loading of ICU data through ICU_DATA
     environment variable. Closes: #1031834.
   * CVE-2023-30590: DiffieHellman do not generate keys after setting a
     private key. Closes: #1039990.
   * CVE-2023-30589: HTTP Request Smuggling via Empty headers separated by CR.
     Closes: #1039990.
   * CVE-2023-30588: Process interuption due to invalid Public Key information
     in x509 certificates. Closes: #1039990.
   * CVE-2023-32559: Permissions policies can be bypassed via process.binding.
     Closes: #1050739.
   * CVE-2023-30581: mainModule.proto bypass experimental policy mechanism.
     Closes: #1039990.
   * CVE-2023-32002: Permissions policies can be bypassed via Module._load.
     Closes: #1050739.
   * CVE-2023-32006: Permissions policies can impersonate other modules in
     using module.constructor.createRequire(). Closes: #1050739.
   * CVE-2023-38552: Integrity checks according to policies can be
     circumvented. Closes: #1054892.
   * CVE-2023-39333: Code injection via WebAssembly export names.
     Closes: #1054892.
nodejs (18.19.0+dfsg-5) unstable; urgency=medium
 .
   * patch: disable openssl test that depends on error message format
nodejs (18.19.0+dfsg-4) unstable; urgency=medium
 .
   * patch:
     + remove a failed attempt for test dns-resolveany-bad-ancount
       skip it, it uselessly hangs.
     + disable some icu test to allow transition to 74
     + fix test-crypto-dh.js to pass with openssl 3.0.11, 3.1.4
     + riscv64: some tests have been fixed, but new ones fail
nodejs (18.19.0+dfsg-3) unstable; urgency=medium
 .
   * patch: drop fixed openssl test patch
   * patch: allow bad-ancount test to fail
nodejs (18.19.0+dfsg-2) unstable; urgency=medium
 .
   * patch: fix test_dns_resolveany_bad_ancount_timeout.patch
nodejs (18.19.0+dfsg-1) experimental; urgency=medium
 .
   [ Jérémy Lal ]
   * New upstream version 18.19.0+dfsg
     + tests pass with openssl 3.1, closes: #1055416
     + tests pass with libc-ares >= 1.23.0, closes: #1054690
   * Harmonize stack size patch for arm64. Closes: 1030284
   * Install dir usr/lib/<tripler>/nodejs. Fix #1035463
   * No longer force gcc 11 for sid
   * Fix Vcs fields to point to the right branch
   * builtins: set correct version in builtins headers
   * dfsg-exclude for non-preferred form for modification:
     + deps/ada
     + deps/minimatch
     + test/fixtures/postject-copy
   * component: ./ada
   * copyright:
     + add missing authors to histogram
     + drop unnecessary snapshot.blob exclusion
     + licenses for ada
     + deps/cares now using Expat
     + document some new files
   * patches:
     + test-process-versions must use system versions
     + drop the test using postject
     + build using ada component instead of deps/ada
     + minimatch is actually not needed for build
     + fix test-runner-output, forwarded
     + mark parallel/test-debugger-preserve-breaks as flaky,
       it is failing in sbuild for now
     + fix test-dns-resolveany-bad-ancount to work with c-ares,
       also to not hang the testsuite in sbuild
 .
   [ Yadd ]
   * Declare compliance with policy 4.6.2
nodejs (18.13.0+dfsg1-1.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Adapt testsuite failures in test-crypto-dh since OpenSSL 3.0.12/3.1.4
     (Closes: #1055416).
   * Adapt testsuite failures due TLSv < 1.1 available only at seclevel 0
     (Closes: #1052470).
   * CVE-2023-23919 (Node.js OpenSSL error handling issues in nodejs crypto
     library). (Closes: #1031834).
   * CVE-2023-23920 (Node.js insecure loading of ICU data through ICU_DATA
     environment variable) (Closes: #1031834).
   * CVE-2023-30590 (DiffieHellman do not generate keys after setting a private
     key) (Closes: #1039990).
   * CVE-2023-30589 (HTTP Request Smuggling via Empty headers separated by CR)
    (Closes: #1039990).
   * CVE-2023-30588 (Process interuption due to invalid Public Key information
     in x509 certificates) (Closes: #1039990).
   * CVE-2023-32559 (Permissions policies can be bypassed via process.binding)
     (Closes: #1050739).
   * CVE-2023-30581 (mainModule.proto bypass experimental policy mechanism)
     (Closes: #1039990).
   * CVE-2023-32002 (Permissions policies can be bypassed via Module._load)
     (Closes: #1050739).
   * CVE-2023-32006 (Permissions policies can impersonate other modules in
     using module.constructor.createRequire()) (Closes: #1050739).
   * CVE-2023-38552 (Integrity checks according to policies can be
     circumvented) (Closes: #1054892).
   * CVE-2023-39333 (Code injection via WebAssembly export names)
     (Closes: #1054892).

nsis (3.08-3+deb12u1) bookworm; urgency=medium
 .
   * Cherry-pick upstream commits to fix CVE-2023-37378 (Closes: #1040880)
   * Use common options for nsis-doc installation
   * Exclude Debian revison suffix from VER_REVISION
   * Backport upstream commit to disable stub relocations (Closes: #1050288)

nvidia-graphics-drivers (535.183.01-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (535.183.01-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.183.01 (2024-06-04).
     * Fixed CVE-2024-0090, CVE-2024-0092.  (Closes: #1072792)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5551
     - Fixed a bug that could cause additional X screens to claim displays
       that should have been assigned to a prior X screen based on the given X
       configuration.
   * New upstream long term support branch release 535.179 (2024-05-09).
   * New upstream long term support branch release 535.171.04 (2024-03-21).
     - Fixed Xid error when playing Alan Wake 2 with ray tracing enabled.
     - Fixed a regression which prevented some Vulkan applications from
       receiving VK_DEVICE_LOST upon a VT switch, which could lead to the
       application hanging or behaving incorrectly.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (535.161.08-3) unstable; urgency=medium
 .
   * Add systemd drop-in configuration files setting
     - SYSTEMD_SLEEP_FREEZE_USER_SESSIONS=false and
     - SYSTEMD_HOME_LOCK_FREEZE_SESSION=false
     needed from systemd 256 onwards.  (Closes: #1072722)
   * libegl-nvidia0: Add manual dependency on libnvidia-egl-wayland1 as
     libnvidia-egl-wayland.so.1 seems to get dlopen()ed now. (Closes: #1072142)
   * Bump Standards-Version to 4.7.0. No changes needed.
nvidia-graphics-drivers (535.183.01-1~deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 nvidia-graphics-drivers (535.183.01-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (535.183.01-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.183.01 (2024-06-04).
     * Fixed CVE-2024-0090, CVE-2024-0092.  (Closes: #1072792)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5551
     - Fixed a bug that could cause additional X screens to claim displays
       that should have been assigned to a prior X screen based on the given X
       configuration.
   * New upstream long term support branch release 535.179 (2024-05-09).
   * New upstream long term support branch release 535.171.04 (2024-03-21).
     - Fixed Xid error when playing Alan Wake 2 with ray tracing enabled.
     - Fixed a regression which prevented some Vulkan applications from
       receiving VK_DEVICE_LOST upon a VT switch, which could lead to the
       application hanging or behaving incorrectly.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (535.161.08-3) unstable; urgency=medium
 .
   * Add systemd drop-in configuration files setting
     - SYSTEMD_SLEEP_FREEZE_USER_SESSIONS=false and
     - SYSTEMD_HOME_LOCK_FREEZE_SESSION=false
     needed from systemd 256 onwards.  (Closes: #1072722)
   * libegl-nvidia0: Add manual dependency on libnvidia-egl-wayland1 as
     libnvidia-egl-wayland.so.1 seems to get dlopen()ed now. (Closes: #1072142)
   * Bump Standards-Version to 4.7.0. No changes needed.
nvidia-graphics-drivers (535.161.08-3) unstable; urgency=medium
 .
   * Add systemd drop-in configuration files setting
     - SYSTEMD_SLEEP_FREEZE_USER_SESSIONS=false and
     - SYSTEMD_HOME_LOCK_FREEZE_SESSION=false
     needed from systemd 256 onwards.  (Closes: #1072722)
   * libegl-nvidia0: Add manual dependency on libnvidia-egl-wayland1 as
     libnvidia-egl-wayland.so.1 seems to get dlopen()ed now. (Closes: #1072142)
   * Bump Standards-Version to 4.7.0. No changes needed.
nvidia-graphics-drivers (535.161.08-2) unstable; urgency=medium
 .
   * nvidia-driver-full: libnvidia-fbc1 and libnvidia-rtcore are not available
     on ppc64el.
   * Add autopkgtest testing the installation of the full driver suite.
nvidia-graphics-drivers (535.161.08-2~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (535.161.08-2) unstable; urgency=medium
 .
   * nvidia-driver-full: libnvidia-fbc1 and libnvidia-rtcore are not available
     on ppc64el.
   * Add autopkgtest testing the installation of the full driver suite.
 .
 nvidia-graphics-drivers (535.161.08-1) unstable; urgency=medium
 .
   * New upstream Tesla branch release 535.161.08 (2024-03-18).
     (Closes: #1061269, #1061597, #1059339)
   * Upload to unstable.
 .
 nvidia-graphics-drivers (535.161.07-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.161.07 (2024-02-22).
     * Fixed CVE-2024-0074, CVE-2024-0075, CVE-2024-0078.  (Closes: #1064983)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5520
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (535.154.05-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.154.05 (2024-01-16).
     * Improved compatibility with recent Linux kernels.
   * New upstream long term support branch release 535.146.02 (2023-12-07).
     - Fixed a bug that could cause some multi-GPU systems to crash on suspend.
     - Fixed a bug that could cause the system to crash when an application
       is run with __NV_PRIME_RENDER_OFFLOAD=1.
     - Fixed a bug which prevented application profiles from getting applied
       to PRIME Render Offloaded applications running via Wine.
     - Disabled PRIME Display Offload Sink support for virtual displays on
       datacenter GPUs. This prevents unusable desktop layouts from getting
       automatically configured on systems with a mix of physical and virtual
       displays.
     - Fixed a bug that caused high CPU usage during system suspend, which could
       lead to the system not entering s2idle in some cases.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (535.129.03-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.129.03 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug that could cause modes to fail validation when
       Option "ModeValidation" "NoExtendedGpuCapabilitiesCheck" is specified in
       xorg.conf.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (535.113.01-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 535.113.01 (2023-09-21).
     - Fixed a bug that intermittently caused the display to freeze when
       resuming from suspend on some Ada GPUs.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update package descriptions.  (Closes: #1013462)
   * Upload to unstable.
 .
 nvidia-graphics-drivers (535.104.12-2) experimental; urgency=medium
 .
   * Backport drm_unlocked_ioctl_flag_present changes from 470.239.06 to fix
     kernel module build for Linux 6.8.
   * Backport screen_info changes from 470.182.03 and 470.239.06 to fix kernel
     module build for Linux 6.7 on arm64.
 .
 nvidia-graphics-drivers (535.104.12-1) experimental; urgency=medium
 .
   * New upstream Tesla branch release 535.104.12 (2023-09-25).
   * New upstream LTS and Tesla branch release 535.104.05 (2023-08-22).
   * New upstream long term support branch release 535.98 (2023-08-08).
     - Fixed an issue which caused the following error message to appear
       spuriously when using SLI with the NVIDIA Open GPU Kernel Modules:
       (EE) NVIDIA: Unable to disable FB size compare
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
   * Merge changes from 525.147.05-9.  (Closes: #1064194)
 .
 nvidia-graphics-drivers (535.86.10-1) experimental; urgency=medium
 .
   * New upstream Tesla branch release 535.86.10 (2023-07-31).
 .
   [ Andreas Beckmann ]
   * Update symbols files.
 .
 nvidia-graphics-drivers (535.86.05-1) experimental; urgency=medium
 .
   * New upstream long term support branch release 535.86.05 (2023-07-18).
     - Fixed a bug that caused excessive memory consumption when OpenGL and
       Vulkan applications were running while VT-switched away from X.
     - Fixed a bug that could cause the kernel to panic when video memory
       is full.
     - Fixed a bug that prevented displays from refreshing when using an
       NVIDIA PRIME Display Offload sink.
     - Fixed a bug that could cause some Variable Refresh Rate (VRR)
       monitors to flicker by allowing the refresh rate to drop below
       the monitor's minimum.
     - Fixed a bug that caused corruption when running Vulkan applications.
     - Fixed a regression that could cause a system hang when running windowed
       Vulkan applications with sync-to-vblank enabled.
     - Fixed a video memory leak observed when turning off a connected
       monitor while using certain Wayland compositors.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Merge changes from 525.147.05-7.
   * Add nvidia-driver-full metapackage depending on all driver components and
     libraries.  (Closes: #1063881)
 .
 nvidia-graphics-drivers (535.54.03-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.54.03 (2023-06-14).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039678)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     - Fixed a bug that caused modesets to fail in some Wayland configurations.
     - Fixed a bug that caused head-mounted displays (HMDs) to display black
       after a modeset.
     - Fixed a bug that could cause image corruption when unbinding Vulkan
       sparse textures.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update symbols files.
   * Merge changes from 525.147.05-6.
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063363, #1062932)
 .
 nvidia-graphics-drivers (535.43.02-1) experimental; urgency=medium
 .
   * New upstream beta 535.43.02 (2023-05-30).  (Closes: #1053562)
     - Added support for the VK_EXT_memory_priority, and
       VK_EXT_pageable_device_memory extensions for Turing+ GPUs.
     - Improved the performance of Minecraft Java Edition on RTX 3000
       series GPUs.
     - Fixed a memory leak in the NVIDIA GLX driver, as reported at:
       https://forums.developer.nvidia.com/t/222697
     - Added support for driving very high pixel clock mode timings such as 8K @
       60Hz.  Please see the "MaxOneHardwareHead" X11 ModeValidation token in the
       README for details.  (Closes: #1050809)
     - Extended Dynamic Boost support on notebooks to include older Renoir
       and Cezanne chipsets, in addition to Rembrandt and newer AMD chipsets.
     - Fixed a bug that caused Vulkan X11 swapchain creation to fail on GPUs
       without a display engine when the VK_KHR_present_id extension is used.
     - Fixed console restore on legacy VGA consoles when using the NVIDIA
       Open GPU Kernel Modules.
     - Added nvoptix.bin to the driver package.  This data file is used by the
       OptiX ray tracing engine library, libnvoptix.so.1.
     - Removed libnvidia-compiler.so.VERSION from the driver package.  This
       functionality is now provided by other driver libraries.
     - Updated NV_CTRL_GPU_POWER_SOURCE NV-CONTROL API to report undersized
       power source.
     - Add support for version 4 of the linux-dmabuf wayland protocol.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Update d/copyright with new NVIDIA Driver License Agreement.
   * Backport nv_drm_gem_res_obj changes from 535.54.03 to fix kernel module
     build for Linux <= 3.16.
   * Refresh patches.
   * Drop the libnvidia-compiler package.
   * libnvidia-pkcs11-openssl3: New package for the NVIDIA PKCS #11 library
     with OpenSSL 3 backend.
   * libnvoptix1: Ship nvoptix.bin.
   * Update symbols files.
   * libcuda1: Add Provides: libcuda-12.2-1.
   * Restrict watch file to releases from the 535.xx long term support branch.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (530.41.03-4) unstable; urgency=medium
 .
   * Merge changes from 525.147.05-10.
   * Backport drm_unlocked_ioctl_flag_present changes from 470.239.06 to fix
     kernel module build for Linux 6.8.
   * Backport screen_info changes from 470.182.03 and 470.239.06 to fix kernel
     module build for Linux 6.7 on arm64.
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063363, #1062932)
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
   * Restrict watch file to releases from the 530.xx new feature branch.
   * Upload to unstable.
 .
 nvidia-graphics-drivers (530.41.03-3) experimental; urgency=medium
 .
   * Merge changes from 525.125.06-2.
   * Backport get_user_pages changes from 535.86.05 to fix kernel module build
     for Linux 6.5.  (Closes: #1050935)
 .
 nvidia-graphics-drivers (530.41.03-2) experimental; urgency=medium
 .
   * Merge changes from 525.125.06-1.
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.  (Closes: #1042081, #1041991)
   * libcuda1: Add Provides: libcuda-12.1-1.
 .
 nvidia-graphics-drivers (530.41.03-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 530.41.03 (2023-03-23).
     (Closes: #1033602)
     * Fixed CVE-2023-0184, CVE-2023-0189, CVE-2023-0180, CVE-2023-0183,
       CVE-2023-0185, CVE-2023-0187, CVE-2023-0198, CVE-2023-0199,
       CVE-2023-0188, CVE-2023-0190, CVE-2023-0194, CVE-2023-0195,
       CVE-2023-0191.  (Closes: #1033774)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5452
     - Added NV-CONTROL attributes NV_CTRL_FRAMELOCK_MULTIPLY_DIVIDE_MODE
       and NV_CTRL_FRAMELOCK_MULTIPLY_DIVIDE_VALUE to allow syncing a
       Quadro Sync II card to different House Sync signal rates. This
       feature requires firmware version 2.18 or later; to download the
       latest firmware version, please visit:
       https://www.nvidia.com/en-us/drivers/firmware/quadro-sync-firmware-driver/
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Updated Turkish (tr) debconf translations by Atila KOÇ.
 .
 nvidia-graphics-drivers (530.30.02-1) experimental; urgency=medium
 .
   * New upstream beta 530.30.02 (2023-02-28).  (Closes: #1032647)
     - Added support for the VK_KHR_video_queue, VK_KHR_video_decode_queue,
       VK_KHR_video_decode_h264 and VK_KHR_video_decode_h265 extensions.
     - Added an application profile to avoid performance problems in Xfce 4
       when the OpenGL compositor backend is enabled along with G-SYNC.
     - Added support for suspend and resume when using GSP firmware.
     - Fixed a bug that prevented PRIME render offload from working for
       Wayland applications when running on a system with an AMD iGPU.
     - Changed the behavior of glXGetRefreshRateSGI() for non-integer
       refresh rates to round to the nearest whole number rather than
       truncating.
     - Changed the compression format of the .run installer package from xz
       to zstd. This results in a smaller compressed package, and faster
       decompression performance. A fallback zstd decompressor is embedded
       into the installer package for systems which do not already have a
       zstd decompression program installed.
 .
   [ Andreas Beckmann ]
   * Add Build-Depends: zstd.
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
   * Update lintian overrides.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (525.147.05-10) unstable; urgency=medium
 .
   * Backport drm_unlocked_ioctl_flag_present changes from 470.239.06 to fix
     kernel module build for Linux 6.8.
   * Backport screen_info changes from 470.182.03 and 470.239.06 to fix kernel
     module build for Linux 6.7 on arm64.
 .
 nvidia-graphics-drivers (525.147.05-9) unstable; urgency=medium
 .
   * Packaging sync.
 .
 nvidia-graphics-drivers (525.147.05-8) unstable; urgency=medium
 .
   * xserver-xorg-video-nvidia: Recommend nvidia-vulkan-icd.
   * Move the libnvidia-glvkspirv dependency to libnvidia-(e)glcore.
     (Cf. #1064194)
nvidia-graphics-drivers (535.161.08-2~deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
   * libnvidia-pkcs11-openssl3: Ship the library built against OpenSSL 1.1
     (instead of OpenSSL 3), but don't change the package name.
 .
 nvidia-graphics-drivers (535.161.08-2~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (535.161.08-2) unstable; urgency=medium
 .
   * nvidia-driver-full: libnvidia-fbc1 and libnvidia-rtcore are not available
     on ppc64el.
   * Add autopkgtest testing the installation of the full driver suite.
 .
 nvidia-graphics-drivers (535.161.08-1) unstable; urgency=medium
 .
   * New upstream Tesla branch release 535.161.08 (2024-03-18).
     (Closes: #1061269, #1061597, #1059339)
   * Upload to unstable.
 .
 nvidia-graphics-drivers (535.161.07-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.161.07 (2024-02-22).
     * Fixed CVE-2024-0074, CVE-2024-0075, CVE-2024-0078.  (Closes: #1064983)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5520
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (535.154.05-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.154.05 (2024-01-16).
     * Improved compatibility with recent Linux kernels.
   * New upstream long term support branch release 535.146.02 (2023-12-07).
     - Fixed a bug that could cause some multi-GPU systems to crash on suspend.
     - Fixed a bug that could cause the system to crash when an application
       is run with __NV_PRIME_RENDER_OFFLOAD=1.
     - Fixed a bug which prevented application profiles from getting applied
       to PRIME Render Offloaded applications running via Wine.
     - Disabled PRIME Display Offload Sink support for virtual displays on
       datacenter GPUs. This prevents unusable desktop layouts from getting
       automatically configured on systems with a mix of physical and virtual
       displays.
     - Fixed a bug that caused high CPU usage during system suspend, which could
       lead to the system not entering s2idle in some cases.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (535.129.03-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.129.03 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug that could cause modes to fail validation when
       Option "ModeValidation" "NoExtendedGpuCapabilitiesCheck" is specified in
       xorg.conf.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (535.113.01-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 535.113.01 (2023-09-21).
     - Fixed a bug that intermittently caused the display to freeze when
       resuming from suspend on some Ada GPUs.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update package descriptions.  (Closes: #1013462)
   * Upload to unstable.
 .
 nvidia-graphics-drivers (535.104.12-2) experimental; urgency=medium
 .
   * Backport drm_unlocked_ioctl_flag_present changes from 470.239.06 to fix
     kernel module build for Linux 6.8.
   * Backport screen_info changes from 470.182.03 and 470.239.06 to fix kernel
     module build for Linux 6.7 on arm64.
 .
 nvidia-graphics-drivers (535.104.12-1) experimental; urgency=medium
 .
   * New upstream Tesla branch release 535.104.12 (2023-09-25).
   * New upstream LTS and Tesla branch release 535.104.05 (2023-08-22).
   * New upstream long term support branch release 535.98 (2023-08-08).
     - Fixed an issue which caused the following error message to appear
       spuriously when using SLI with the NVIDIA Open GPU Kernel Modules:
       (EE) NVIDIA: Unable to disable FB size compare
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
   * Merge changes from 525.147.05-9.  (Closes: #1064194)
 .
 nvidia-graphics-drivers (535.86.10-1) experimental; urgency=medium
 .
   * New upstream Tesla branch release 535.86.10 (2023-07-31).
 .
   [ Andreas Beckmann ]
   * Update symbols files.
 .
 nvidia-graphics-drivers (535.86.05-1) experimental; urgency=medium
 .
   * New upstream long term support branch release 535.86.05 (2023-07-18).
     - Fixed a bug that caused excessive memory consumption when OpenGL and
       Vulkan applications were running while VT-switched away from X.
     - Fixed a bug that could cause the kernel to panic when video memory
       is full.
     - Fixed a bug that prevented displays from refreshing when using an
       NVIDIA PRIME Display Offload sink.
     - Fixed a bug that could cause some Variable Refresh Rate (VRR)
       monitors to flicker by allowing the refresh rate to drop below
       the monitor's minimum.
     - Fixed a bug that caused corruption when running Vulkan applications.
     - Fixed a regression that could cause a system hang when running windowed
       Vulkan applications with sync-to-vblank enabled.
     - Fixed a video memory leak observed when turning off a connected
       monitor while using certain Wayland compositors.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Merge changes from 525.147.05-7.
   * Add nvidia-driver-full metapackage depending on all driver components and
     libraries.  (Closes: #1063881)
 .
 nvidia-graphics-drivers (535.54.03-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.54.03 (2023-06-14).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039678)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     - Fixed a bug that caused modesets to fail in some Wayland configurations.
     - Fixed a bug that caused head-mounted displays (HMDs) to display black
       after a modeset.
     - Fixed a bug that could cause image corruption when unbinding Vulkan
       sparse textures.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update symbols files.
   * Merge changes from 525.147.05-6.
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063363, #1062932)
 .
 nvidia-graphics-drivers (535.43.02-1) experimental; urgency=medium
 .
   * New upstream beta 535.43.02 (2023-05-30).  (Closes: #1053562)
     - Added support for the VK_EXT_memory_priority, and
       VK_EXT_pageable_device_memory extensions for Turing+ GPUs.
     - Improved the performance of Minecraft Java Edition on RTX 3000
       series GPUs.
     - Fixed a memory leak in the NVIDIA GLX driver, as reported at:
       https://forums.developer.nvidia.com/t/222697
     - Added support for driving very high pixel clock mode timings such as 8K @
       60Hz.  Please see the "MaxOneHardwareHead" X11 ModeValidation token in the
       README for details.  (Closes: #1050809)
     - Extended Dynamic Boost support on notebooks to include older Renoir
       and Cezanne chipsets, in addition to Rembrandt and newer AMD chipsets.
     - Fixed a bug that caused Vulkan X11 swapchain creation to fail on GPUs
       without a display engine when the VK_KHR_present_id extension is used.
     - Fixed console restore on legacy VGA consoles when using the NVIDIA
       Open GPU Kernel Modules.
     - Added nvoptix.bin to the driver package.  This data file is used by the
       OptiX ray tracing engine library, libnvoptix.so.1.
     - Removed libnvidia-compiler.so.VERSION from the driver package.  This
       functionality is now provided by other driver libraries.
     - Updated NV_CTRL_GPU_POWER_SOURCE NV-CONTROL API to report undersized
       power source.
     - Add support for version 4 of the linux-dmabuf wayland protocol.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Update d/copyright with new NVIDIA Driver License Agreement.
   * Backport nv_drm_gem_res_obj changes from 535.54.03 to fix kernel module
     build for Linux <= 3.16.
   * Refresh patches.
   * Drop the libnvidia-compiler package.
   * libnvidia-pkcs11-openssl3: New package for the NVIDIA PKCS #11 library
     with OpenSSL 3 backend.
   * libnvoptix1: Ship nvoptix.bin.
   * Update symbols files.
   * libcuda1: Add Provides: libcuda-12.2-1.
   * Restrict watch file to releases from the 535.xx long term support branch.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (530.41.03-4) unstable; urgency=medium
 .
   * Merge changes from 525.147.05-10.
   * Backport drm_unlocked_ioctl_flag_present changes from 470.239.06 to fix
     kernel module build for Linux 6.8.
   * Backport screen_info changes from 470.182.03 and 470.239.06 to fix kernel
     module build for Linux 6.7 on arm64.
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063363, #1062932)
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
   * Restrict watch file to releases from the 530.xx new feature branch.
   * Upload to unstable.
 .
 nvidia-graphics-drivers (530.41.03-3) experimental; urgency=medium
 .
   * Merge changes from 525.125.06-2.
   * Backport get_user_pages changes from 535.86.05 to fix kernel module build
     for Linux 6.5.  (Closes: #1050935)
 .
 nvidia-graphics-drivers (530.41.03-2) experimental; urgency=medium
 .
   * Merge changes from 525.125.06-1.
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.  (Closes: #1042081, #1041991)
   * libcuda1: Add Provides: libcuda-12.1-1.
 .
 nvidia-graphics-drivers (530.41.03-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 530.41.03 (2023-03-23).
     (Closes: #1033602)
     * Fixed CVE-2023-0184, CVE-2023-0189, CVE-2023-0180, CVE-2023-0183,
       CVE-2023-0185, CVE-2023-0187, CVE-2023-0198, CVE-2023-0199,
       CVE-2023-0188, CVE-2023-0190, CVE-2023-0194, CVE-2023-0195,
       CVE-2023-0191.  (Closes: #1033774)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5452
     - Added NV-CONTROL attributes NV_CTRL_FRAMELOCK_MULTIPLY_DIVIDE_MODE
       and NV_CTRL_FRAMELOCK_MULTIPLY_DIVIDE_VALUE to allow syncing a
       Quadro Sync II card to different House Sync signal rates. This
       feature requires firmware version 2.18 or later; to download the
       latest firmware version, please visit:
       https://www.nvidia.com/en-us/drivers/firmware/quadro-sync-firmware-driver/
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Updated Turkish (tr) debconf translations by Atila KOÇ.
 .
 nvidia-graphics-drivers (530.30.02-1) experimental; urgency=medium
 .
   * New upstream beta 530.30.02 (2023-02-28).  (Closes: #1032647)
     - Added support for the VK_KHR_video_queue, VK_KHR_video_decode_queue,
       VK_KHR_video_decode_h264 and VK_KHR_video_decode_h265 extensions.
     - Added an application profile to avoid performance problems in Xfce 4
       when the OpenGL compositor backend is enabled along with G-SYNC.
     - Added support for suspend and resume when using GSP firmware.
     - Fixed a bug that prevented PRIME render offload from working for
       Wayland applications when running on a system with an AMD iGPU.
     - Changed the behavior of glXGetRefreshRateSGI() for non-integer
       refresh rates to round to the nearest whole number rather than
       truncating.
     - Changed the compression format of the .run installer package from xz
       to zstd. This results in a smaller compressed package, and faster
       decompression performance. A fallback zstd decompressor is embedded
       into the installer package for systems which do not already have a
       zstd decompression program installed.
 .
   [ Andreas Beckmann ]
   * Add Build-Depends: zstd.
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
   * Update lintian overrides.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (525.147.05-10) unstable; urgency=medium
 .
   * Backport drm_unlocked_ioctl_flag_present changes from 470.239.06 to fix
     kernel module build for Linux 6.8.
   * Backport screen_info changes from 470.182.03 and 470.239.06 to fix kernel
     module build for Linux 6.7 on arm64.
 .
 nvidia-graphics-drivers (525.147.05-9) unstable; urgency=medium
 .
   * Packaging sync.
 .
 nvidia-graphics-drivers (525.147.05-8) unstable; urgency=medium
 .
   * xserver-xorg-video-nvidia: Recommend nvidia-vulkan-icd.
   * Move the libnvidia-glvkspirv dependency to libnvidia-(e)glcore.
     (Cf. #1064194)
nvidia-graphics-drivers (535.161.08-1) unstable; urgency=medium
 .
   * New upstream Tesla branch release 535.161.08 (2024-03-18).
     (Closes: #1061269, #1061597, #1059339)
   * Upload to unstable.
nvidia-graphics-drivers (535.161.07-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.161.07 (2024-02-22).
     * Fixed CVE-2024-0074, CVE-2024-0075, CVE-2024-0078.  (Closes: #1064983)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5520
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
nvidia-graphics-drivers (535.154.05-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.154.05 (2024-01-16).
     * Improved compatibility with recent Linux kernels.
   * New upstream long term support branch release 535.146.02 (2023-12-07).
     - Fixed a bug that could cause some multi-GPU systems to crash on suspend.
     - Fixed a bug that could cause the system to crash when an application
       is run with __NV_PRIME_RENDER_OFFLOAD=1.
     - Fixed a bug which prevented application profiles from getting applied
       to PRIME Render Offloaded applications running via Wine.
     - Disabled PRIME Display Offload Sink support for virtual displays on
       datacenter GPUs. This prevents unusable desktop layouts from getting
       automatically configured on systems with a mix of physical and virtual
       displays.
     - Fixed a bug that caused high CPU usage during system suspend, which could
       lead to the system not entering s2idle in some cases.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
nvidia-graphics-drivers (535.129.03-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.129.03 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug that could cause modes to fail validation when
       Option "ModeValidation" "NoExtendedGpuCapabilitiesCheck" is specified in
       xorg.conf.
   * New upstream long term support branch release 535.113.01 (2023-09-21).
     * Fixed a bug that intermittently caused the display to freeze when
       resuming from suspend on some Ada GPUs.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
nvidia-graphics-drivers (535.113.01-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 535.113.01 (2023-09-21).
     - Fixed a bug that intermittently caused the display to freeze when
       resuming from suspend on some Ada GPUs.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update package descriptions.  (Closes: #1013462)
   * Upload to unstable.
nvidia-graphics-drivers (535.104.12-2) experimental; urgency=medium
 .
   * Backport drm_unlocked_ioctl_flag_present changes from 470.239.06 to fix
     kernel module build for Linux 6.8.
   * Backport screen_info changes from 470.182.03 and 470.239.06 to fix kernel
     module build for Linux 6.7 on arm64.
nvidia-graphics-drivers (535.104.12-1) experimental; urgency=medium
 .
   * New upstream Tesla branch release 535.104.12 (2023-09-25).
   * New upstream LTS and Tesla branch release 535.104.05 (2023-08-22).
   * New upstream long term support branch release 535.98 (2023-08-08).
     - Fixed an issue which caused the following error message to appear
       spuriously when using SLI with the NVIDIA Open GPU Kernel Modules:
       (EE) NVIDIA: Unable to disable FB size compare
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
   * Merge changes from 525.147.05-9.  (Closes: #1064194)
nvidia-graphics-drivers (535.86.10-1) experimental; urgency=medium
 .
   * New upstream Tesla release 535.86.10 (2023-07-31).
 .
   [ Andreas Beckmann ]
   * Update symbols files.
nvidia-graphics-drivers (535.86.05-1) experimental; urgency=medium
 .
   * New upstream long term support branch release 535.86.05 (2023-07-18).
     - Fixed a bug that caused excessive memory consumption when OpenGL and
       Vulkan applications were running while VT-switched away from X.
     - Fixed a bug that could cause the kernel to panic when video memory
       is full.
     - Fixed a bug that prevented displays from refreshing when using an
       NVIDIA PRIME Display Offload sink.
     - Fixed a bug that could cause some Variable Refresh Rate (VRR)
       monitors to flicker by allowing the refresh rate to drop below
       the monitor's minimum.
     - Fixed a bug that caused corruption when running Vulkan applications.
     - Fixed a regression that could cause a system hang when running windowed
       Vulkan applications with sync-to-vblank enabled.
     - Fixed a video memory leak observed when turning off a connected
       monitor while using certain Wayland compositors.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Merge changes from 525.147.05-7.
   * Add nvidia-driver-full metapackage depending on all driver components and
     libraries.  (Closes: #1063881)
nvidia-graphics-drivers (535.54.03-1) experimental; urgency=medium
 .
   * New upstream long term support branch release 535.54.03 (2023-06-14).
     - Fixed a bug that caused modesets to fail in some Wayland configurations.
     - Fixed a bug that caused head-mounted displays (HMDs) to display black
       after a modeset.
     - Fixed a bug that could cause image corruption when unbinding Vulkan
       sparse textures.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Merge changes from 525.147.05-6.
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063363, #1062932)
   * Update symbols files.
nvidia-graphics-drivers (535.43.02-1) experimental; urgency=medium
 .
   * New upstream beta 535.43.02 (2023-05-30).  (Closes: #1053562)
     - Added support for the VK_EXT_memory_priority, and
       VK_EXT_pageable_device_memory extensions for Turing+ GPUs.
     - Improved the performance of Minecraft Java Edition on RTX 3000
       series GPUs.
     - Fixed a memory leak in the NVIDIA GLX driver, as reported at:
       https://forums.developer.nvidia.com/t/222697
     - Added support for driving very high pixel clock mode timings such as 8K @
       60Hz.  Please see the "MaxOneHardwareHead" X11 ModeValidation token in the
       README for details.  (Closes: #1050809)
     - Extended Dynamic Boost support on notebooks to include older Renoir
       and Cezanne chipsets, in addition to Rembrandt and newer AMD chipsets.
     - Fixed a bug that caused Vulkan X11 swapchain creation to fail on GPUs
       without a display engine when the VK_KHR_present_id extension is used.
     - Fixed console restore on legacy VGA consoles when using the NVIDIA
       Open GPU Kernel Modules.
     - Added nvoptix.bin to the driver package.  This data file is used by the
       OptiX ray tracing engine library, libnvoptix.so.1.
     - Removed libnvidia-compiler.so.VERSION from the driver package.  This
       functionality is now provided by other driver libraries.
     - Updated NV_CTRL_GPU_POWER_SOURCE NV-CONTROL API to report undersized
       power source.
     - Add support for version 4 of the linux-dmabuf wayland protocol.
 .
   [ Andreas Beckmann ]
   * Update d/copyright with new NVIDIA Driver License Agreement.
   * Backport nv_drm_gem_res_obj changes from 535.54.03 to fix kernel module
     build for Linux <= 3.16.
   * Refresh patches.
   * Drop the libnvidia-compiler package.
   * libnvidia-pkcs11-openssl3: New package for the NVIDIA PKCS #11 library
     with OpenSSL 3 backend.
   * libnvoptix1: Ship nvoptix.bin.
   * Update symbols files.
   * libcuda1: Add Provides: libcuda-12.2-1.
   * Restrict watch file to releases from the 535.xx long term support branch.
   * Upload to experimental.
nvidia-graphics-drivers (530.41.03-4) unstable; urgency=medium
 .
   * Merge changes from 525.147.05-10.
   * Backport drm_unlocked_ioctl_flag_present changes from 470.239.06 to fix
     kernel module build for Linux 6.8.
   * Backport screen_info changes from 470.182.03 and 470.239.06 to fix kernel
     module build for Linux 6.7 on arm64.
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063363, #1062932)
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
   * Restrict watch file to releases from the 530.xx new feature branch.
   * Upload to unstable.
nvidia-graphics-drivers (530.41.03-3) experimental; urgency=medium
 .
   * Merge changes from 525.125.06-2.
   * Backport get_user_pages changes from 535.86.05 to fix kernel module build
     for Linux 6.5.  (Closes: #1050935)
nvidia-graphics-drivers (530.41.03-2) experimental; urgency=medium
 .
   * Merge changes from 525.125.06-1.
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.  (Closes: #1042081, #1041991)
   * libcuda1: Add Provides: libcuda-12.1-1.
   * nvidia-suspend-common: New package for the systemd power management
     integration scripts.  (Closes: #1038006)
nvidia-graphics-drivers (530.41.03-1) experimental; urgency=medium
 .
   * New upstream release 530.41.03 (2023-03-23).  (Closes: #1033602)
     - Added NV-CONTROL attributes NV_CTRL_FRAMELOCK_MULTIPLY_DIVIDE_MODE
       and NV_CTRL_FRAMELOCK_MULTIPLY_DIVIDE_VALUE to allow syncing a
       Quadro Sync II card to different House Sync signal rates. This
       feature requires firmware version 2.18 or later; to download the
       latest firmware version, please visit:
       https://www.nvidia.com/en-us/drivers/firmware/quadro-sync-firmware-driver/
   * New upstream release 525 series.
     - Fixed a bug that could cause the nvidia-settings control panel to
       crash when resetting the display layout.
     - Fixed a bug that could cause excessive GPU power consumption at idle
       when driving multiple displays with a high refresh rate.
     - Fixed a bug in nvidia-powerd which could cause excessive CPU usage.
     - Fixed an issue which could cause applications to run at 1 FPS when
       using an NVIDIA PRIME Display Offload sink as the only active display.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Updated Turkish (tr) debconf translations by Atila KOÇ.
nvidia-graphics-drivers (530.30.02-1) experimental; urgency=medium
 .
   * New upstream beta 530.30.02 (2023-02-28).  (Closes: #1032647)
     - Added an application profile to avoid performance problems in Xfce 4
       when the OpenGL compositor backend is enabled along with G-SYNC.
     - Added support for suspend and resume when using GSP firmware.
     - Fixed a bug that prevented PRIME render offload from working for
       Wayland applications when running on a system with an AMD iGPU.
     - Changed the behavior of glXGetRefreshRateSGI() for non-integer
       refresh rates to round to the nearest whole number rather than
       truncating.
     - Changed the compression format of the .run installer package from xz
       to zstd. This results in a smaller compressed package, and faster
       decompression performance. A fallback zstd decompressor is embedded
       into the installer package for systems which do not already have a
       zstd decompression program installed.
   * New upstream release 525 series.
     - Added compatibility for Linux kernels with Indirect Branch Tracking
       IBT).
 .
   [ Andreas Beckmann ]
   * Add Build-Depends: zstd.
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
   * Update lintian overrides.
   * Upload to experimental.
nvidia-graphics-drivers (525.147.05-10) unstable; urgency=medium
 .
   * Backport drm_unlocked_ioctl_flag_present changes from 470.239.06 to fix
     kernel module build for Linux 6.8.
   * Backport screen_info changes from 470.182.03 and 470.239.06 to fix kernel
     module build for Linux 6.7 on arm64.
nvidia-graphics-drivers (525.147.05-9) unstable; urgency=medium
 .
   * Packaging sync.
nvidia-graphics-drivers (525.147.05-8) unstable; urgency=medium
 .
   * xserver-xorg-video-nvidia: Recommend nvidia-vulkan-icd.
   * Move the libnvidia-glvkspirv dependency to libnvidia-(e)glcore.
     (Cf. #1064194)
nvidia-graphics-drivers (525.147.05-7) unstable; urgency=medium
 .
   * nvidia-detect: Fix mismerge breaking Tesla 470 detection.
     (Closes: #1063910)
   * Relax dh-dkms build-dependency, satisfied in stable.
nvidia-graphics-drivers (525.147.05-7~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.147.05-7) unstable; urgency=medium
 .
   * nvidia-detect: Fix mismerge breaking Tesla 470 detection.
     (Closes: #1063910)
   * Relax dh-dkms build-dependency, satisfied in stable.
nvidia-graphics-drivers (525.147.05-7~deb12u1~bpo11+2) bullseye-backports; urgency=medium
 .
   * Move firmware-nvidia-gsp back to non-free.
nvidia-graphics-drivers (525.147.05-7~deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 nvidia-graphics-drivers (525.147.05-7~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.147.05-7) unstable; urgency=medium
 .
   * nvidia-detect: Fix mismerge breaking Tesla 470 detection.
     (Closes: #1063910)
   * Relax dh-dkms build-dependency, satisfied in stable.
 .
 nvidia-graphics-drivers (525.147.05-6~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.147.05-6) unstable; urgency=medium
 .
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063363, #1062932)
   * nvidia-detect: Tesla and regular driver packages have been merged.
   * nvidia-detect: Add superficial autopkgtest for checking codename support.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (525.147.05-5) unstable; urgency=medium
 .
   * Switch src:nvidia-graphics-drivers to the Tesla driver series.
   * Build for ppc64el.
   * Build all unversioned packages from src:nvidia-graphics-drivers.
   * Enable nvidia-suspend-common.  (Closes: #1059581, #1056557, #1062281)
   * nvidia-suspend-common: Depend on kbd for chvt.  (Closes: #1058081)
   * New Romanian (ro) debconf translations by Remus-Gabriel Chelu.
     (Closes: #1059590)
 .
 nvidia-graphics-drivers (525.147.05-4~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.147.05-4) unstable; urgency=medium
 .
   * Build libnvidia-fbc1 for arm64, too.  (Closes: #1057078)
   * bug-control: Report information about more driver components.
   * Do not yet recommend nvidia-suspend-common.
 .
 nvidia-graphics-drivers (525.147.05-3) UNRELEASED; urgency=medium
 .
   * nvidia-suspend-common: Do not start services on installation/upgrade.
     (Closes: #1056384)
 .
 nvidia-graphics-drivers (525.147.05-2) UNRELEASED; urgency=medium
 .
   * nvidia-suspend-common: Do not stop/restart services on upgrade.
 .
 nvidia-graphics-drivers (525.147.05-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.147.05 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which could cause some DisplayPort monitors to flicker.
     - Fixed a bug that could cause monitors to flicker when the performance
       state changes on Turing GPUs.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (525.125.06-3) UNRELEASED; urgency=medium
 .
   * nvidia-suspend-common: New package for the systemd power management
     integration scripts.  (Closes: #1038006)
 .
 nvidia-graphics-drivers (525.125.06-3) unstable; urgency=medium
 .
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
   * Switch suggestion from obsolete vulkan-utils to vulkan-tools.
     (Closes: #1055503)
 .
 nvidia-graphics-drivers (525.125.06-2) unstable; urgency=medium
 .
   * Backport get_user_pages and pin_user_pages changes from
     535.86.05 to fix kernel module build for Linux 6.5.
 .
 nvidia-graphics-drivers (525.125.06-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.125.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.125.06 (2023-06-26).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039678)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     - Fixed a bug which prevented running a Wayland compositor in headless
       mode on GPUs without display hardware.
     * Fixed undisclosed bugs.  (Closes: #1037468)
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (525.116.04-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.116.04 (2023-05-09).
   * New upstream production branch release 525.116.03 (2023-04-25).
     - Fixed a regression in Luxmark performance between 525.89.02 and
       525.105.17.
     - Fixed a bug that could cause an unexpected
       VK_ERROR_NATIVE_WINDOW_IN_USE_KHR error in certain circumstances when
       recreating Vulkan surfaces.
     - Fixed a regression that caused brightness control to not vary
       smoothly across the range of values.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (525.105.17-2) unstable; urgency=medium
 .
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.
 .
 nvidia-graphics-drivers (525.105.17-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.105.17 (2023-03-30).
     * Fixed CVE-2023-0184, CVE-2023-0189, CVE-2023-0180, CVE-2023-0183,
       CVE-2023-0185, CVE-2023-0187, CVE-2023-0198, CVE-2023-0199,
       CVE-2023-0188, CVE-2023-0190, CVE-2023-0194, CVE-2023-0195,
       CVE-2023-0191.  (Closes: #1033774)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5452
     - Fixed a bug that could cause excessive GPU power consumption at idle
       when driving multiple displays with a high refresh rate.
     - Fixed a bug in nvidia-powerd which could cause excessive CPU usage.
     - Fixed an issue which could cause applications to run at 1 FPS when
       using an NVIDIA PRIME Display Offload sink as the only active display.
     - Added compatibility for Linux kernels with Indirect Branch Tracking
       (IBT).
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Updated Turkish (tr) debconf translations by Atila KOÇ.
 .
 nvidia-graphics-drivers (525.89.02-2) unstable; urgency=medium
 .
   * Add libnvidia-nvvm.so.#VERSION# alternative, needed by nvidia-opencl-icd.
     (Closes: #1030336)
   * Prevent co-installation with EoL drivers.
   * Restrict watch file to releases from the 525.xx production branch.
 .
 nvidia-graphics-drivers (525.89.02-1) unstable; urgency=medium
 .
   * The firmware-nvidia-gsp package has been moved to the newly created
     'non-free-firmware' archive area. This area needs to be enabled in
     /etc/apt/sources.list (/etc/apt/sources.list.d/*.list) in addition to
     'non-free' in order to upgrade to the 525 driver series.
     https://www.debian.org/releases/bookworm/amd64/release-notes/ch-information.en.html#non-free-split
     (Closes: #1030981)
 .
   * New upstream production branch release 525.89.02 (2023-02-08).
     - Fixed a bug that could cause banding or flickering of color
       gradients on DisplayPort monitors.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * Fix nvngx.dll install location.  (Closes: #1031185)
   * nvidia-opencl-icd: Add dependency on libnvidia-nvvm4.  (Closes: #1031080)
 .
 nvidia-graphics-drivers (525.85.12-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.85.12 (2023-01-30).
   * New upstream production branch release 525.85.05 (2023-01-19).
     - Improved the reliability of suspend and resume on UEFI systems
       when using certain display panels.
     - Fixed a bug that could cause VK_ERROR_DEVICE_LOST when using
       VK_MEMORY_ALLOCATE_DEVICE_ADDRESS_CAPTURE_REPLAY_BIT to allocate
       memory.
   * New upstream production branch release 525.78.01 (2023-01-05).
     - Fixed a regression that prevented the G-SYNC/G-SYNC Compatible Visual
       Indicator from being displayed when running Vulkan X11 applications.
     - Fixed a bug where usage of VK_KHR_present_id could cause applications to
       crash with Xid 32 errors.
     - Fixed excess CPU usage in hybrid graphics configurations where an
       external display is connected to an NVIDIA discrete GPU and configured
       as a PRIME Display Offload sink (also known as "Reverse Prime").
     * Improved compatibility with recent Linux kernels.  (Closes: #1027790)
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.  (Closes: #1028496)
   * libcuda1: Add Provides: libcuda-12.0-1.
   * Upload to unstable.
 .
 nvidia-graphics-drivers (525.60.13-1) experimental; urgency=medium
 .
   * New upstream production branch release 525.60.13 (2022-12-05).
   * New upstream production branch release 525.60.11 (2022-11-28).
     (Closes: #1025883)
     * Fixed CVE-2022-34670, CVE-2022-34673, CVE-2022-34674, CVE-2022-34675,
       CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, CVE-2022-34682,
       CVE-2022-34684, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256,
       CVE-2022-42257, CVE-2022-42258, CVE-2022-42259, CVE-2022-42263,
       CVE-2022-42264, CVE-2022-42265.  (Closes: #1025279)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5415
     - Improved the performance of PRIME render-offloaded applications.
     - Fixed a bug which caused suspend to fail on systems running GNOME 3
       as a Wayland compositor with NVreg_PreserveVideoMemoryAllocations
       enabled.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (525.53-1) experimental; urgency=medium
 .
   * New upstream beta 525.53 (2022-11-10).
     - Fixed a bug which caused Dynamic Boost to not engage on certain Ampere
       GPU based notebooks.
     - Added support for Dynamic Boost on notebooks with AMD CPUs.
     - Fixed a regression that prevented Warp & Blend from working correctly.
     - Fixed a bug that resulted in stutter when moving windows in GNOME.
     - Added support for the EGL_MESA_platform_surfaceless extension.
     - Updated the open kernel modules to support Quadro Sync, Stereo,
       rotation in X11, and YUV 4:2:0 on Turing.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update symbols files.
   * libnvidia-api1: New package for the NVIDIA API runtime library.
   * firmware-nvidia-gsp: Move non-free-firmware archive area.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (520.56.06-2) unstable; urgency=medium
 .
   * libcuda1: Add Provides: libcuda-11.8-1.
   * Upload to unstable.
 .
 nvidia-graphics-drivers (520.56.06-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 520.56.06 (2022-10-12).
     - Implemented support for over-the-air updates in the Proton and Wine
       NVIDIA NGX build. This feature is disabled by default and can be enabled
       by setting the "PROTON_ENABLE_NGX_UPDATER" environment variable to a
       value of "1".
     - Updated the Vulkan driver so that the following extensions no longer
       depend on nvidia-uvm.ko being loaded at runtime:
       VK_KHR_acceleration_structure, VK_KHR_deferred_host_operations,
       VK_KHR_ray_query, VK_KHR_ray_tracing_pipeline, VK_NV_cuda_kernel_launch,
       VK_NV_ray_tracing, VK_NV_ray_tracing_motion_blur, VK_NVX_binary_import,
       VK_NVX_image_view_handle.
     - Fixed a bug in the Vulkan driver which could lead to corruption in
       geometry and tessellation control shaders.
     - Added a new CUDA Debugger implementation for Pascal and newer
       architectures as a part of the driver package: libcudadebugger.so
       (previously released separately as "CUDA GDB Developer Preview").
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
   * libcudadebugger1: New package for the CUDA Debugger library.
   * Update lintian overrides.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (515.105.01-1) UNRELEASED; urgency=medium
 .
   * New upstream Tesla release 515.105.01 (2023-03-30).
     * Fixed CVE-2023-0184, CVE-2023-0189, CVE-2023-0180, CVE-2023-0183,
       CVE-2023-0185, CVE-2023-0187, CVE-2023-0198, CVE-2023-0199,
       CVE-2023-0188, CVE-2023-0190, CVE-2023-0194, CVE-2023-0195,
       CVE-2023-0191.
       https://nvidia.custhelp.com/app/answers/detail/a_id/5452
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.
   * Backport vm_area_struct_has_const_vm_flags changes from 470.199.02 to fix
     kernel module build for Linux 6.3.
 .
 nvidia-graphics-drivers (515.86.01-1) unstable; urgency=medium
 .
   * New upstream production branch release 515.86.01 (2022-11-22).
     * Fixed CVE-2022-34670, CVE-2022-34673, CVE-2022-34674, CVE-2022-34675,
       CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, CVE-2022-34682,
       CVE-2022-34684, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256,
       CVE-2022-42257, CVE-2022-42258, CVE-2022-42259, CVE-2022-42263,
       CVE-2022-42264, CVE-2022-42265.  (Closes: #1025279)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5415
     - Fixed a regression in 515.76 that caused blank screens and hangs when
       starting an X server on RTX 30 series GPUs in some configurations where
       the boot display is connected via HDMI.
     - Fixed a bug where Marvel's Spider-Man Remastered would sometimes crash
       with Xid 13 errors on Turing and later.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update symbols files.
   * Upload to unstable.
 .
 nvidia-graphics-drivers (515.76-1) experimental; urgency=medium
 .
   * New upstream production branch release 515.76 (2022-09-20).
     (Closes: #1022165)
     - Turing and later: fixed possible excessive GPU power draw on an idle
       X11 or Wayland desktop when driving high resolutions or refresh rates.
     * Improved compatibility with recent Linux kernels.
   * New upstream Tesla release (amd64 only) 515.65.07 (2022-10-19).
 .
   [ Andreas Beckmann ]
   * Refresh patches.
 .
 nvidia-graphics-drivers (515.65.01-1) experimental; urgency=medium
 .
   * New upstream production branch release 515.65.01 (2022-08-02).
     - Fixed a bug that caused the X server to hang when VT-switching with
       stereo enabled.
     - Fixed an issue that caused OpenGL applications to be unresponsive in SLI
       Mosaic mode with no monitors enabled on the primary GPU.
     * Improved compatibility with recent Linux kernels.
   * New upstream production branch release 515.57 (2022-06-28).
     - Fixed a bug that could cause some graphics applications to crash when
       they are started while nvidia-drm.ko is not loaded.
     - Fixed an issue where NvFBC could return an incorrect frame if a capture
       request timed out.
     - Fixed an issue where NvFBC direct capture would wait for multiple queued
       frames to finish rendering, instead of returning the next rendered
       frame.
     - Added support for NvFBC direct capture to composite the mouse cursor
       onto frames.
     - Fixed an issue where Vulkan direct to display could not drive more than
       4 displays from a single VkInstance.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Apply kernel module patches at package build time.
   * Add versioned Provides: nvidia-kernel-dkms-any.
 .
 nvidia-graphics-drivers (515.48.07-3) experimental; urgency=medium
 .
   * Merge changes from 510.108.03-3.
   * Extract nv-readme-open.ids from README.
   * nvidia-detect: Report GPUs that can be used with the open kernel module.
   * Allow nvidia-open-kernel-dkms as alternative to nvidia-kernel-dkms.
   * nvidia-alternative: Register another alternative if
     nvidia-open-kernel-dkms is available.
 .
 nvidia-graphics-drivers (515.48.07-2) experimental; urgency=medium
 .
   * Merge changes from 510.108.03-1.
   * Backport find_vma_intersection from 515.57 and num_registered_fb changes
     from 515.76 to fix kernel module build for Linux 6.1.
   * libcuda1: Add Provides: libcuda-11.7-1{,-i386}.
   * Put the kernel module patches under Expat license.
 .
 nvidia-graphics-drivers (515.48.07-1) experimental; urgency=medium
 .
   * New upstream production branch release 515.48.07 (2022-05-31).
     (Closes: #1012815)
     - Improved performance of GLX and Vulkan applications running in
       gamescope.
     - Added a "kernelopen" feature tag to the supported-gpus.json file,
       to indicate which GPUs are compatible with open-gpu-kernel-modules.
     - Improved Vulkan swapchain creation failure reporting. Applications can
       use the VK_EXT_debug_utils extension to receive additional information
       when an error was encountered in vkCreateSwapchainKHR().
   * New upstream beta 515.43.04 (2022-05-11).
     - Published the source code to a variant of the NVIDIA Linux kernel
       modules dual-licensed as MIT/GPLv2. The source is available here:
           https://github.com/NVIDIA/open-gpu-kernel-modules
       and will be updated each driver release. Please see the "Open
       Linux Kernel Modules" chapter in the README for details.
     - Added support for the VK_EXT_external_memory_dma_buf and
       VK_EXT_image_drm_format_modifier Vulkan extensions. To use this
       functionality, the nvidia-drm kernel module must be loaded with DRM KMS
       mode setting enabled. See the DRM KMS section of the README for guidance
       on enabling mode setting.
     - Changed nvidia-suspend.service, nvidia-resume.service, and
       nvidia-hibernate.service to use WantedBy= rather than RequiredBy=
       dependencies for systemd-suspend.service and systemd-hibernate.service.
       This avoids a problem where suspend or hibernate fails if the NVIDIA
       driver is uninstalled without disabling these services first.
       See https://github.com/systemd/systemd/issues/21991
       If these services were manually enabled, it may be necessary to update
       their dependencies by running
         sudo systemctl reenable nvidia-suspend.service \
           nvidia-resume.service nvidia-hibernate.service
     - Interlaced modes are now disabled when active stereo is enabled.
     - Removed the warning message about mismatches between the compiler
       used to build the Linux kernel and the compiler used to build the
       NVIDIA kernel modules from nvidia-installer. Modern compilers are less
       likely to cause problems when this type of mismatch occurs, and it has
       become common in many distributions to build the Linux kernel with a
       different compiler than the default system compiler.
     - Updated the RTD3 Video Memory Utilization Threshold
       (NVreg_DynamicPowerManagementVideoMemoryThreshold) maximum value from
       200 MB to 1024 MB.
 .
   [ Andreas Beckmann ]
   * Bump minimum supported kernel version to 3.10.
   * Backport get_task_ioprio changes from 510.85.02, acpi changes from
     515.65.01, drm_frambuffer.h changes from 515.76 to fix kernel module build
     for Linux 6.0.
   * Refresh patches.
   * Update symbols files.
   * Update lintian overrides.
   * Restrict watch file to releases from the 515.xx production branch.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (510.108.03-4) UNRELEASED; urgency=medium
 .
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.
   * Backport vm_area_struct_has_const_vm_flags changes from 470.199.02 to fix
     kernel module build for Linux 6.3.
 .
 nvidia-graphics-drivers (510.108.03-3) UNRELEASED; urgency=medium
 .
   * Add versioned Provides: nvidia-kernel-dkms-any (515.65.01-1).
   * Fix nvngx.dll install location (525.89.02-1).  (Closes: #1031185)
   * Updated Turkish (tr) debconf translations by Atila KOÇ. (Closes: #1033418)
 .
 nvidia-graphics-drivers (510.108.03-3) unstable; urgency=medium
 .
   * Backport drm_connector_has_override_edid changes from 525.78.01 to fix
     kernel module build for Linux 6.2.  (Closes: #1027790)
   * Drop support for building modules for non-native kernel architectures.
   * nvidia-alternative: Access kmod config files over a versioned symlink.
   * New Brazilian Portuguese (pt_BR) debconf translations by Paulo Henrique de
     Lima Santana.  (Closes: #1028259)
 .
 nvidia-graphics-drivers (510.108.03-2) unstable; urgency=medium
 .
   * nvidia-detect: Drop support for stretch(-lts) (EoL).
   * nvidia-detect: Add support for Tesla drivers.
   * nvidia-detect: Restrict support to driver series in bookworm.
   * Stop building the nvidia-nonglvnd-vulkan-common package, will be built
     from src:nvidia-graphics-drivers-tesla-418.
   * Bump Standards-Version to 4.6.2. No changes needed.
 .
 nvidia-graphics-drivers (510.108.03-1) unstable; urgency=medium
 .
   * New upstream production branch release 510.108.03 (2022-11-22).
     * Fixed CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
       CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-34684,
       CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, CVE-2022-42257,
       CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261,
       CVE-2022-42262, CVE-2022-42263, CVE-2022-42264.  (Closes: #1025279)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5415
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Add missing #includes to fix kernel module build for ppc64el.
   * Rename the internally used ARCH variable which might clash on externally
     set values.
   * Use substitutions for ${nvidia-kernel} and friends.
   * Try to compile a kernel module at package build time.
 .
 nvidia-graphics-drivers (510.85.02-6) unstable; urgency=medium
 .
   * Split firmware-nvidia-gsp from nvidia-kernel-support.
 .
 nvidia-graphics-drivers (510.85.02-5) unstable; urgency=medium
 .
   * Restrict nvidia-legacy-check dependency to driver architectures.
   * Backport nv-acpi.c changes from 515.65.01 and drm_frambuffer.h changes
     from 515.76 to fix kernel module build for Linux 6.0.  (Closes: #1021958)
 .
 nvidia-graphics-drivers (510.85.02-4) unstable; urgency=medium
 .
   * Set BUILD_EXCLUSIVE_CONFIG="!CONFIG_PREEMPT_RT" for
     module-assistant-autopkgtest, too.
 .
 nvidia-graphics-drivers (510.85.02-3) unstable; urgency=medium
 .
   * Upload to unstable.  (Closes: #1020761)
 .
 nvidia-graphics-drivers (510.85.02-2) experimental; urgency=medium
 .
   * Merge changes from 470.141.03-2.
   * Switch to module-assistant-autopkgtest.
 .
 nvidia-graphics-drivers (510.85.02-1) UNRELEASED; urgency=medium
 .
   * Build the nvidia-powerd package, but ship the insecure nvidia-dbus.conf as
     an example only.  (Closes: #1014283)
 .
 nvidia-graphics-drivers (510.85.02-1) UNRELEASED; urgency=medium
 .
   * New upstream Tesla release 510.85.02 (2022-08-02).
     * Fixed CVE-2022-31607, CVE-2022-31608, CVE-2022-31615. (Closes: #1016621)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5383
     * Improved compatibility with recent Linux kernels.
 .
 nvidia-graphics-drivers (510.85.02-1) experimental; urgency=medium
 .
   * New upstream production branch release 510.85.02 (2022-08-02).
     (Closes: #1012713, #1016614)
     * Fixed CVE-2022-31607, CVE-2022-31608, CVE-2022-31615.
       https://nvidia.custhelp.com/app/answers/detail/a_id/5383
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Merge changes from 470.141.03-1.
   * Refresh patches.
   * Update nv-readme.ids.
   * Restrict watch file to releases from the 510.xx production branch.
 .
 nvidia-graphics-drivers (510.73.08-3) experimental; urgency=medium
 .
   * Merge changes from 470.129.06-5.
   * Try new dkms feature BUILD_EXCLUSIVE_CONFIG.
 .
 nvidia-graphics-drivers (510.73.08-2) experimental; urgency=medium
 .
   * Add nvidia-drm_gbm.so symlink.  (Closes: #1012514)
   * nvidia-driver-libs: Recommend libnvidia-allocator1.
   * libnvidia-allocator1: Recommend libnvidia-egl-gbm1.
 .
 nvidia-graphics-drivers (510.73.08-1) experimental; urgency=medium
 .
   * New upstream Tesla release 510.73.08 (2022-05-23).
   * New upstream production branch release 510.73.05 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185,
       CVE-2022-28191, CVE-2022-28192.  (Closes: #1011140)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Added a new configuration option for NVIDIA NGX to allow disabling the
       DSO signature check. See the "NGX" chapter of the README for more
       information.
   * New upstream production branch release 510.68.02 (2022-04-26).
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
 .
 nvidia-graphics-drivers (510.60.02-1) experimental; urgency=medium
 .
   * New upstream production branch release 510.60.02 (2022-03-22).
     - Added support for the following GPUs: NVIDIA RTX A4000H,
       NVIDIA RTX A5500.
     - Fixed a bug that could cause displays with HDMI or DisplayPort audio
       to be deselected as the default audio output device after resuming
       from suspend.
     - Fixed a regression that could cause OpenGL applications to hang or
       render incorrectly after suspend/resume cycles or VT-switches
     - Fixed a bug, introduced in 495.29.05, that caused GPU "Model:" in
       /proc/driver/nvidia/gpus/<Bus:Device.Function>/information to be
       "Unknown" for some GPUs.
 .
   [ Luca Boccassi ]
   * Update nv-readme.ids.
   * Refresh use-kbuild-flags.patch.
 .
 nvidia-graphics-drivers (510.54-1) experimental; urgency=medium
 .
   * New upstream production branch release 510.54 (2022-02-14).
     - Fixed a bug that could cause GPU exceptions when minimizing a fullscreen
       Vulkan application on certain desktops, such as Plasma.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream.
   * Declare Testsuite: autopkgtest-pkg-dkms.
   * Disable building nvidia-cuda-mps, will be built from
     src:nvidia-graphics-drivers-tesla-470.
 .
 nvidia-graphics-drivers (510.47.03-1) experimental; urgency=medium
 .
   * New upstream production branch release 510.47.03 (2022-02-01).
     * Fixed CVE-2022-21813, CVE-2022-21814.  (Closes: #1004847)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5312
     - Added support for Vulkan 1.3.
   * New upstream beta 510.39.01 (2022-01-11).
     - Added a new daemon, nvidia-powerd, to provide support for the Dynamic
       Boost feature on supported systems. Dynamic Boost balances power between
       the CPU and the GPU for improved performance. For more details, see the
       "Dynamic Boost on Linux" chapter in the README.
     - Updated nvidia-bug-report.sh to search the systemd journal for
       nvidia-powerd logs.
     - Fixed several issues which caused the supported-gpus.json file to
       contain incorrect product information.
     - Added a new module parameter, "peerdirect_support", to the
       nvidia-peermem.ko kernel module, to correctly support GPUDirect RDMA on
       MOFED 5.0 and older releases.
     - Fixed a bug which caused Vulkan applications to hang when the
       __GL_THREADED_OPTIMIZATIONS environment variable was set to enable
       threaded optimizations in the NVIDIA driver.
     - Fixed a bug where calls to vkWaitForPresentKHR would fail with
       VK_TIMEOUT on Maxwell and Pascal GPUs.
     - Added support for the VK_EXT_depth_clip_control extension.
     - Added support for the VK_EXT_border_color_swizzle extension.
     - Added support for the VK_EXT_image_view_min_lod extension.
     - Fixed a bug in the Vulkan compiler where 64-bit atomics were partially
       broken.
     - Fixed a bug in the Vulkan driver where VK_NULL_HANDLE was not properly
       handled as input to
       VkRenderingFragmentShadingRateAttachmentInfoKHR.imageView.
     - Added support for the VK_KHR_dynamic_rendering extension.
     - Added support for the bufferDeviceAddressCaptureReplay Vulkan feature.
     - Optimized the Vulkan fullscreen presentation path for X11 and
       direct-to-display swapchains.
     - Added AV1 decode support to the NVIDIA VDPAU driver. See the
       VDPAU Support appendix in the README for supported AV1 decoder
       profiles.
     - Added support for the VK_KHR_format_feature_flags2 extension.
     - Added support for the VK_KHR_maintenance4 extension.
     - Fixed a bug in the Vulkan driver where the SPIR-V Centroid interpolation
       decoration was not ignored when used in conjunction with FragCoord.
     - Fixed a bug in the Vulkan driver where unreferenced descriptor bindings
       were sometimes not ignored properly.
     - Fixed a bug in the Vulkan driver where vkCmdBindDescriptorSets would not
       properly handle pDynamicOffsets for compute pipelines.
     - Added support for the VK_KHR_shader_integer_dot_product extension.
     - Added support for the VK_EXT_primitive_topology_list_restart extension.
     - Added support for the VK_EXT_load_store_op_none extension.
     - Fixed a bug which caused OpenGL and Vulkan applications to generate
       excessive traffic over dbus while attempting to communicate with
       nvidia-powerd, even though nvidia-powerd was not running.
     - Enabled GSP Firmware by default on NVIDIA T4, A100, A30, A40, A16, A2,
       and several other Tesla products.  Please see the "GSP Firmware"
       chapter in the README for details.
   * New upstream release 495 series.
     - Fixed a bug in the Vulkan driver where some Ray Tracing shaders would
       timeout, resulting in device loss.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Update symbols files.
   * libcuda1: Add Provides: libcuda-11.6-1{,-i386}.
   * nvidia-detect: Add support for Tesla 510 drivers.
   * Prepare nvidia-powerd: New package for the NVIDIA Dynamic Boost daemon.
   * Do not ship libnvidia-compiler-next.so.*.
 .
 nvidia-graphics-drivers (495.46-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 495.46 (2021-12-13).
 .
 nvidia-graphics-drivers (495.44-1) experimental; urgency=medium
 .
   * New upstream new feature branch release 495.44 (2021-10-26).
     - Fixed a bug in the Vulkan driver where unused input attributes to a
       vertex shader would corrupt the interpolation qualifiers for the shader.
     - Fixed a bug in the Vulkan driver where individual components of
       barycentric inputs could not be read.
     - Added support for the VK_KHR_present_id extension.
     - Added support for the VK_KHR_present_wait extension.
     - Added support for the VK_KHR_shader_subgroup_uniform_control_flow
       extension.
     - Fixed a bug where VK_NVX_binary_import was advertised as supported on
       unsupported platforms. This caused calls to vkCreateDevice to fail if
       applications attempted to enable VK_NVX_binary_import on such platforms.
   * New upstream beta 495.29.05 (2021-10-14).
     - Added support for the GBM API. This adds the new symlink
       nvidia-drm_gbm.so pointing to the file libnvidia-allocator.so.VERSION to
       implement a GBM backend driver usable with the GBM loader from the Mesa
       project version 21.2 and above, as well as the files
       libnvidia-egl-gbm.so.1.1.0 and 15_nvidia_gbm.json, which implement EGL
       support for the GBM platform (EGL_KHR_platform_gbm).
     - Add indicator for Resizable BAR support on compatible systems.
     - Fixed a bug that could cause the X server to crash when starting a
       new server generation on PRIME configurations.
     - Removed support for NvIFROpenGL. This functionality was deprecated
       in the 470.xx driver release.
     - Removed libnvidia-cbl.so from the driver package.  This
       functionality is now provided by other driver libraries.
     - Changed the minimum required Linux kernel version from 2.6.32 to 3.10.
     - Updated nvidia.ko to load even if no supported NVIDIA GPUs are present
       when an NVIDIA NVSwitch device is detected in the system. Previously,
       nvidia.ko would fail to load into the kernel if no supported GPUs were
       present.
     * Removed support for cards based on the Kepler architecture.
 .
   [ Luca Boccassi ]
   * Update nv-readme.ids.
   * Drop libnvidia-ifr1 package, removed upstream.
   * Drop libnvidia-cbl package, removed upstream.
   * Update symbols files.
 .
   [ Andreas Beckmann ]
   * libcuda1: Add Provides: libcuda-11.5-1{,-i386}.
   * Ship the gsp.bin firmware blob on arm64.
   * Add NEWS entry and update nvidia-legacy-check to suggest using
     nvidia-tesla-470-driver for Kepler cards.
   * Upload to experimental.
 .
 nvidia-graphics-drivers (470.223.02-2) UNRELEASED; urgency=medium
 .
   * Build libnvidia-fbc1 for arm64, too.  (Closes: #1057078)
   * bug-control: Report information about more driver components.
   * nvidia-detect: Drop support for Tesla 450 drivers (EoL).
 .
 nvidia-graphics-drivers (470.223.02-1) bullseye; urgency=medium
 .
   * New upstream long term support branch release 470.223.02 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which caused incorrect reporting of presentation
       times when using the VK_NV_present_barrier Vulkan extension.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Upload to bullseye.
 .
 nvidia-graphics-drivers (470.199.02-4) UNRELEASED; urgency=medium
 .
   * Refuse to load module if IBT is enabled.  (Closes: #1052069)
   * Switch suggestion from obsolete vulkan-utils to vulkan-tools
     (525.125.06-3).  (Closes: #1055503)
 .
 nvidia-graphics-drivers (470.199.02-3) UNRELEASED; urgency=medium
 .
   * Revert backport of pin_user_pages changes.
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
 .
 nvidia-graphics-drivers (470.199.02-2) UNRELEASED; urgency=medium
 .
   * Backport get_user_pages and pin_user_pages changes from 520.56.06,
     525.53 and 535.86.05 to fix kernel module build for Linux 6.5.
 .
 nvidia-graphics-drivers (470.199.02-1) bullseye; urgency=medium
 .
   * New upstream long term support branch release 470.199.02 (2023-06-26).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039678)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Upload to bullseye.
 .
 nvidia-graphics-drivers (470.182.03-2) UNRELEASED; urgency=medium
 .
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.
   * Backport vm_area_struct_has_const_vm_flags changes from 470.199.02 to fix
     kernel module build for Linux 6.3.  (Closes: #1038004)
 .
 nvidia-graphics-drivers (470.182.03-1) bullseye; urgency=medium
 .
   * New upstream long term support branch release 470.182.03 (2023-03-30).
     * Fixed CVE-2023-0184, CVE-2023-0189, CVE-2023-0180, CVE-2023-0185,
       CVE-2023-0187, CVE-2023-0198, CVE-2023-0199, CVE-2023-0188,
       CVE-2023-0190, CVE-2023-0194, CVE-2023-0195, CVE-2023-0191.
       https://nvidia.custhelp.com/app/answers/detail/a_id/5452
       (Closes: #1033774)
     - Fixed a bug that could cause fullscreen PRIME Render Offload
       applications and/or X to crash when an NVIDIA GPU is driving
       multiple displays with Reverse PRIME.
     - Added support for console restoration when using simpledrm.
     - Disabled Fixed Rate Link (FRL) when using passive DisplayPort
       to HDMI dongles, which are incompatible with FRL.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * nvidia-detect: Drop support for stretch(-lts) (EoL).
   * Drop support for building modules for non-native kernel architectures.
   * nvidia-alternative: Access kmod config files over a versioned
     symlink (510.108.03-3).
   * Add versioned Provides: nvidia-kernel-dkms-any (515.65.01-1).
   * Fix nvngx.dll install location (525.89.02-1).  (Closes: #1031185)
   * New Brazilian Portuguese (pt_BR) debconf translations by Paulo Henrique de
     Lima Santana.
   * Updated Turkish (tr) debconf translations by Atila KOÇ.
   * Bump Standards-Version to 4.6.2. No changes needed.
   * Upload to bullseye.
 .
 nvidia-graphics-drivers (470.161.03-2) UNRELEASED; urgency=medium
 .
   * Backport acpi_op_remove changes from 470.182.03 to fix kernel module build
     for Linux 6.2.
   * Backport drm_connector_has_override_edid changes from 525.78.01 to fix
     kernel module build for Linux 6.2.
   * Drop support for building modules for non-native kernel architectures.
   * nvidia-alternative: Access kmod config files over a versioned
     symlink (510.108.03-3).
   * Add versioned Provides: nvidia-kernel-dkms-any (515.65.01-1).
   * Fix nvngx.dll install location (525.89.02-1).  (Closes: #1031185)
   * Bump Standards-Version to 4.6.2. No changes needed.
 .
 nvidia-graphics-drivers (470.161.03-1) bullseye; urgency=medium
 .
   * New upstream long term support branch release 470.161.03 (2022-11-22).
     * Fixed CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
       CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-42254,
       CVE-2022-42255, CVE-2022-42256, CVE-2022-42257, CVE-2022-42258,
       CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262,
       CVE-2022-42263, CVE-2022-42264.  (Closes: #1025279)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5415
     - Fixed a bug that caused the Xorg server to crash if an NvFBC capture
       session is started while video memory is full.
     * Improved compatibility with recent Linux kernels.  (Closes: #1024852)
   * New upstream Tesla release (amd64 only) 470.141.10 (2022-10-19).
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Add missing #includes to fix kernel module build for ppc64el.
   * Rename the internally used ARCH variable which might clash on externally
     set values.
   * Use substitutions for ${nvidia-kernel} and friends (510.108.03-1).
   * Try to compile a kernel module at package build time (510.108.03-1).
   * Upload to bullseye.
 .
 nvidia-graphics-drivers (470.141.03-3) UNRELEASED; urgency=medium
 .
   * Backport get_task_ioprio changes from 510.85.02, acpi changes from
     510.85.02 and 515.65.01, drm_frambuffer.h changes from 515.76 to fix
     kernel module build for Linux 6.0.  (Closes: #1021974, #1022738)
 .
 nvidia-graphics-drivers (470.141.03-2) unstable; urgency=medium
 .
   * Add support for unversioned Tesla packages (tesla 510.85.02-1).
     (Closes: #1020697)
   * Switch *-source to a modern module-assistant based template.
   * Drop support for kernel-package and make-kpkg, gone since stretch.
 .
 nvidia-graphics-drivers (470.141.03-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers (470.141.03-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 470.141.03 (2022-08-02).
     * Fixed CVE-2022-31607, CVE-2022-31608, CVE-2022-31615. (Closes: #1016614)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5383
     - Added support for the following GPU: GeForce RTX 3050 OEM.
     - Fixed an issue where HDMI audio output was not working in some cases,
       especially with high display refresh rates (120Hz, 100Hz, etc.) using
       Fixed Rate Link (FRL) transmission mode.
     * Improved compatibility with recent Linux kernels.  (Closes: #1016736)
 .
   [ Andreas Beckmann ]
   * Replace obsolete pci_*() functions with their dma_*() counterparts in
     ppc64el specific code paths to fix kernel module build for ppc64el.
   * Refresh patches.
   * Update nv-readme.ids.
   * More generic handling of architectures with gsp firmware.
   * Drop references to kernel-package and make-kpkg, gone since stretch.
   * Overhaul build-module-packages.sh.
   * Add module-assistant based autopkgtest for the *-source package.
   * Simplify changelog management for the *-source package.
   * Copy the Source stanza from d/control to the module control file.
 .
 nvidia-graphics-drivers (470.129.06-6~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers (470.129.06-6) unstable; urgency=medium
 .
   * Minor packaging sync and cleanup.
   * Disable building nvidia-cuda-mps, will be built from
     src:nvidia-graphics-drivers-tesla-470.
 .
 nvidia-graphics-drivers (470.129.06-5) unstable; urgency=medium
 .
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (470.129.06-4) unstable; urgency=medium
 .
   * Use different virtual packages for firmware file Conflicts and Depends.
 .
 nvidia-graphics-drivers (470.129.06-3) unstable; urgency=medium
 .
   * Do not create backups when patching README.txt.
 .
 nvidia-graphics-drivers (470.129.06-2) unstable; urgency=medium
 .
   * Fix discrepancy between amd64 and i386 README.txt.  (Closes: #1011527)
 .
 nvidia-graphics-drivers (470.129.06-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 470.129.06 (2022-05-16).
     * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185,
       CVE-2022-28191, CVE-2022-28192.  (Closes: #1011140)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5353
     - Added support for the following GPUs: GeForce RTX 3050,
       GeForce RTX 3070 Ti Laptop GPU, GeForce RTX 3080 Ti Laptop GPU,
       GeForce RTX 3090 Ti, RTX A500 Laptop GPU, RTX A1000 Embedded GPU,
       RTX A2000 Embedded GPU, RTX A1000 Laptop GPU, RTX A2000 8GB Laptop GPU,
       RTX A3000 12GB Laptop GPU, RTX A4500 Embedded GPU, RTX A4500 Laptop GPU,
       RTX A5500 Laptop GPU, T550 Laptop GPU.  (Closes: #1011183)
     - Fixed an issue where NvFBC was requesting Vulkan 1.0 while using
       Vulkan 1.1 core features. This caused NvFBC to fail to initialize with
       Vulkan loader versions 1.3.204 or newer.
     * Improved compatibility with recent Linux kernels.  (Closes: #1013359)
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Import missing legacy IDs from the 510.* README.txt.
     The Kepler notebook GPUs seem still supported by the 470.* driver.
     (Closes: #1011245, #939447, #939067)
   * Bump Standards-Version to 4.6.1. No changes needed.
 .
 nvidia-graphics-drivers (470.103.01-4) unstable; urgency=medium
 .
   * Update 0003-fix-conftest-includes.patch to fix kernel module build for
     ppc64el.
   * Backport mt_device_gre changes from 510.39.01 to fix kernel module build
     for arm64.
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.103.01-3~deb11u2) bullseye; urgency=medium
 .
   * Re-enable building libnvidia-nvvm4.
 .
 nvidia-graphics-drivers (470.103.01-3~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
   * Temporarily disable building libnvidia-nvvm4 to avoid NEW.
 .
 nvidia-graphics-drivers (470.103.01-3) unstable; urgency=medium
 .
   * dkms.conf: Use a BUILD_EXCLUSIVE equivalent hack to skip building for -rt
     kernels, not supported upstream (510.54-1).
   * Declare Testsuite: autopkgtest-pkg-dkms (510.54-1).
   * nvidia-detect: Drop support for Tesla 460 drivers (EoL).
 .
 nvidia-graphics-drivers (470.103.01-2) unstable; urgency=medium
 .
   * Add xorg-video-abi-25 (Xorg Xserver 21) as alternative dependency.
     (Closes: #1005311)
   * nvidia-detect: Add support for (Tesla) 470 drivers in bullseye.
nvidia-graphics-drivers (525.147.05-6) unstable; urgency=medium
 .
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063363, #1062932)
   * nvidia-detect: Tesla and regular driver packages have been merged.
   * Update lintian overrides.
nvidia-graphics-drivers (525.147.05-6~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.147.05-6) unstable; urgency=medium
 .
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063363, #1062932)
   * nvidia-detect: Tesla and regular driver packages have been merged.
   * nvidia-detect: Add superficial autopkgtest for checking codename support.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers (525.147.05-5) unstable; urgency=medium
 .
   * Switch src:nvidia-graphics-drivers to the Tesla driver series.
   * Build for ppc64el.
   * Build all unversioned packages from src:nvidia-graphics-drivers.
   * Enable nvidia-suspend-common.  (Closes: #1059581, #1056557, #1062281)
   * nvidia-suspend-common: Depend on kbd for chvt.  (Closes: #1058081)
   * New Romanian (ro) debconf translations by Remus-Gabriel Chelu.
     (Closes: #1059590)
nvidia-graphics-drivers (525.147.05-5) unstable; urgency=medium
 .
   * Switch src:nvidia-graphics-drivers to the Tesla driver series.
   * Build for ppc64el.
   * Build all unversioned packages from src:nvidia-graphics-drivers.
   * Enable nvidia-suspend-common.  (Closes: #1059581)
   * nvidia-suspend-common: Depend on kbd for chvt.  (Closes: #1058081)
   * New Romanian (ro) debconf translations by Remus-Gabriel Chelu.
     (Closes: #1059590)
nvidia-graphics-drivers (525.147.05-4) unstable; urgency=medium
 .
   * Build libnvidia-fbc1 for arm64, too.  (Closes: #1057078)
   * bug-control: Report information about more driver components.
   * Do not yet recommend nvidia-suspend-common.

nvidia-graphics-drivers-tesla (525.147.05-7~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla (525.147.05-7) unstable; urgency=medium
 .
   * Relax the dependencies on libnvidia*-glcore/libnvidia*-eglcore for the
     transitional packages.
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063362)
 .
 nvidia-graphics-drivers (525.147.05-7~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.147.05-7) unstable; urgency=medium
 .
   * nvidia-detect: Fix mismerge breaking Tesla 470 detection.
     (Closes: #1063910)
   * Relax dh-dkms build-dependency, satisfied in stable.
 .
 nvidia-graphics-drivers (525.147.05-6~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.147.05-6) unstable; urgency=medium
 .
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063363, #1062932)
   * nvidia-detect: Tesla and regular driver packages have been merged.
   * nvidia-detect: Add superficial autopkgtest for checking codename support.
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla (525.147.05-6) unstable; urgency=medium
 .
   * Turn metapackages into transitional packages to aid switching to
     nvidia-graphics-drivers.
   * Provide less virtual packages.
   * Remove the Tesla driver from the nvidia alternative.
 .
 nvidia-graphics-drivers-tesla (525.147.05-5) unstable; urgency=medium
 .
   * Rebuild as Tesla driver.
 .
 nvidia-graphics-drivers (525.147.05-5) unstable; urgency=medium
 .
   * Switch src:nvidia-graphics-drivers to the Tesla driver series.
   * Build for ppc64el.
   * Build all unversioned packages from src:nvidia-graphics-drivers.
   * Enable nvidia-suspend-common.  (Closes: #1059581, #1056557, #1062281)
   * nvidia-suspend-common: Depend on kbd for chvt.  (Closes: #1058081)
   * New Romanian (ro) debconf translations by Remus-Gabriel Chelu.
     (Closes: #1059590)
nvidia-graphics-drivers-tesla (525.147.05-6) unstable; urgency=medium
 .
   * Turn metapackages into transitional packages to aid switching to
     nvidia-graphics-drivers.
   * Provide less virtual packages.
   * Remove the Tesla driver from the nvidia alternative.
nvidia-graphics-drivers-tesla (525.147.05-5) unstable; urgency=medium
 .
   * Rebuild as Tesla driver.
 .
 nvidia-graphics-drivers (525.147.05-5) unstable; urgency=medium
 .
   * Switch src:nvidia-graphics-drivers to the Tesla driver series.
   * Build for ppc64el.
   * Build all unversioned packages from src:nvidia-graphics-drivers.
   * Enable nvidia-suspend-common.  (Closes: #1059581)
   * nvidia-suspend-common: Depend on kbd for chvt.  (Closes: #1058081)
   * New Romanian (ro) debconf translations by Remus-Gabriel Chelu.
     (Closes: #1059590)
nvidia-graphics-drivers-tesla (525.147.05-4) unstable; urgency=medium
 .
   * Rebuild as Tesla driver.
 .
 nvidia-graphics-drivers (525.147.05-4~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.147.05-4) unstable; urgency=medium
 .
   * Build libnvidia-fbc1 for arm64, too.  (Closes: #1057078)
   * bug-control: Report information about more driver components.
   * Do not yet recommend nvidia-suspend-common.

nvidia-graphics-drivers-tesla-470 (470.256.02-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla-470 (470.256.02-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 470.256.02 (2024-06-04).
     * Fixed CVE-2024-0090, CVE-2024-0092.  (Closes: #1072798)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5551
     - Fixed a bug that could cause the X server to crash when graphics
       applications requested single-buffered drawables while certain
       features (such as Vulkan sharpening) are enabled.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.256.02-1) bullseye; urgency=medium
 .
   * New upstream LTS and Tesla branch release 470.256.02 (2024-06-04).
     * Fixed CVE-2024-0090, CVE-2024-0092.  (Closes: #1072792)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5551
     - Fixed a bug that could cause the X server to crash when graphics
       applications requested single-buffered drawables while certain
       features (such as Vulkan sharpening) are enabled.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * xserver-xorg-video-nvidia: Recommend nvidia-vulkan-icd.
   * Move the libnvidia-glvkspirv dependency to libnvidia-(e)glcore.
     (Cf. #1064194)
   * Bump Standards-Version to 4.7.0. No changes needed.
   * Upload to bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.239.06-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
nvidia-graphics-drivers-tesla-470 (470.256.02-1~deb11u2) bullseye; urgency=medium
 .
   * Rebuild as Tesla 470 driver for bullseye.
 .
 nvidia-graphics-drivers (470.256.02-2) bullseye; urgency=medium
 .
   * ppc64el: Use pfn_valid() variant with rcu_read_{,un}lock_sched() for
     Linux 5.10 from 5.10.210 onwards to avoid using GPL symbols.
   * Upload to bullseye.
nvidia-graphics-drivers-tesla-470 (470.256.02-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.256.02-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla-470 (470.256.02-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 470.256.02 (2024-06-04).
     * Fixed CVE-2024-0090, CVE-2024-0092.  (Closes: #1072798)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5551
     - Fixed a bug that could cause the X server to crash when graphics
       applications requested single-buffered drawables while certain
       features (such as Vulkan sharpening) are enabled.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.256.02-1) bullseye; urgency=medium
 .
   * New upstream LTS and Tesla branch release 470.256.02 (2024-06-04).
     * Fixed CVE-2024-0090, CVE-2024-0092.  (Closes: #1072792)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5551
     - Fixed a bug that could cause the X server to crash when graphics
       applications requested single-buffered drawables while certain
       features (such as Vulkan sharpening) are enabled.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * xserver-xorg-video-nvidia: Recommend nvidia-vulkan-icd.
   * Move the libnvidia-glvkspirv dependency to libnvidia-(e)glcore.
     (Cf. #1064194)
   * Bump Standards-Version to 4.7.0. No changes needed.
   * Upload to bullseye.
nvidia-graphics-drivers-tesla-470 (470.239.06-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 470.239.06 (2024-02-22).
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
nvidia-graphics-drivers-tesla-470 (470.239.06-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla-470 (470.239.06-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 470.239.06 (2024-02-22).
     * Fixed CVE-2024-0074, CVE-2024-0078, CVE-2022-42265.  (Closes: #1064989)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5520
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.239.06-1) bullseye; urgency=medium
 .
   * New upstream long term support branch release 470.239.06 (2024-02-22).
     * Fixed CVE-2024-0074, CVE-2024-0078, CVE-2022-42265.  (Closes: #1064983)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5520
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Upload to bullseye.
nvidia-graphics-drivers-tesla-470 (470.239.06-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.239.06-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla-470 (470.239.06-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 470.239.06 (2024-02-22).
     * Fixed CVE-2024-0074, CVE-2024-0078, CVE-2022-42265.  (Closes: #1064989)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5520
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.239.06-1) bullseye; urgency=medium
 .
   * New upstream long term support branch release 470.239.06 (2024-02-22).
     * Fixed CVE-2024-0074, CVE-2024-0078, CVE-2022-42265.  (Closes: #1064983)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5520
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Upload to bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-4~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-4) unstable; urgency=medium
 .
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063361)
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-3) unstable; urgency=medium
 .
   * nvidia-cuda-mps is again built from src:nvidia-graphics-drivers.
 .
 nvidia-graphics-drivers (470.223.02-3) UNRELEASED; urgency=medium
 .
   * Switch src:nvidia-graphics-drivers to the Tesla 470 driver series.
   * Build for ppc64el.
   * Build all unversioned packages from src:nvidia-graphics-drivers.
   * New Romanian (ro) debconf translations by Remus-Gabriel Chelu.
nvidia-graphics-drivers-tesla-470 (470.223.02-4) unstable; urgency=medium
 .
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063361)
   * Update lintian overrides.
nvidia-graphics-drivers-tesla-470 (470.223.02-4~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-4) unstable; urgency=medium
 .
   * Apply pfn_valid patch from gentoo to fix kernel module build for
     Linux 6.1.76, 6.6.15, 6.7.3, 6.8.  (Closes: #1063361)
   * Update lintian overrides.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-3) unstable; urgency=medium
 .
   * nvidia-cuda-mps is again built from src:nvidia-graphics-drivers.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-2~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
nvidia-graphics-drivers-tesla-470 (470.223.02-3) unstable; urgency=medium
 .
   * nvidia-cuda-mps is again built from from src:nvidia-graphics-drivers.
nvidia-graphics-drivers-tesla-470 (470.223.02-2) unstable; urgency=medium
 .
   * Build libnvidia-tesla-470-fbc1 for arm64, too.  (Closes: #1057078)
   * bug-control: Report information about more driver components.

nvidia-modprobe (535.161.07-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-modprobe (535.161.07-1) unstable; urgency=medium
 .
   * New upstream release.
nvidia-modprobe (535.161.07-1~deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 nvidia-modprobe (535.161.07-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-modprobe (535.161.07-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-modprobe (535.54.03-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-modprobe (535.54.03-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-modprobe (530.30.02-2) unstable; urgency=medium
 .
   * Updated nvidia-modprobe to create symbolic links in /dev/char when
     creating the /dev/nvidia* device nodes. This resolves an issue that
     prevented the device nodes from working with newer versions of runc:
     https://github.com/opencontainers/runc/issues/3708
     (Cherry-picked from 525.105.17)
 .
 nvidia-modprobe (530.30.02-1) unstable; urgency=medium
 .
   * New upstream release.
nvidia-modprobe (535.54.03-1) unstable; urgency=medium
 .
   * New upstream release.

nvidia-open-gpu-kernel-modules (535.183.01-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-open-gpu-kernel-modules (535.183.01-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.183.01 (2024-06-04).
     * Fixed CVE-2024-0090, CVE-2024-0092.  (Closes: #1072800)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5551
   * New upstream long term support branch release 535.179 (2024-05-09).
   * New upstream long term support branch release 535.171.04 (2024-03-21).
   * Sync with src:nvidia-graphics-drivers.
   * Refresh patches.
nvidia-open-gpu-kernel-modules (535.161.08-1) unstable; urgency=medium
 .
   * New upstream Tesla branch release 535.161.08 (2024-03-18).
   * Upload to unstable.
nvidia-open-gpu-kernel-modules (535.161.08-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-open-gpu-kernel-modules (535.161.08-1) unstable; urgency=medium
 .
   * New upstream Tesla branch release 535.161.08 (2024-03-18).
   * Upload to unstable.
 .
 nvidia-open-gpu-kernel-modules (535.161.07-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.161.07 (2024-02-22).
     * Fixed CVE-2024-0074, CVE-2024-0075, CVE-2024-0078.  (Closes: #1064991)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5520
   * Sync with src:nvidia-graphics-drivers.
   * Refresh patches.
   * Upload to experimental.
 .
 nvidia-open-gpu-kernel-modules (535.154.05-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.154.05 (2024-01-16).
   * New upstream long term support branch release 535.146.02 (2023-12-07).
   * Sync with src:nvidia-graphics-drivers.
 .
 nvidia-open-gpu-kernel-modules (535.129.03-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.129.03 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
   * Sync with src:nvidia-graphics-drivers.
 .
 nvidia-open-gpu-kernel-modules (535.113.01-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 535.113.01 (2023-09-21).
   * New upstream Tesla branch release 535.104.12 (2023-09-25).
   * New upstream LTS and Tesla branch release 535.104.05 (2023-08-22).
   * New upstream long term support branch release 535.98 (2023-08-08).
   * New upstream Tesla branch release 535.86.10 (2023-07-31).
   * New upstream long term support branch release 535.86.05 (2023-07-18).
   * Sync with src:nvidia-graphics-drivers.
   * Refresh patches.
 .
 nvidia-open-gpu-kernel-modules (535.54.03-1) UNRELEASED; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.54.03 (2023-06-14).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039686)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
   * Sync with src:nvidia-graphics-drivers.
 .
 nvidia-open-gpu-kernel-modules (535.43.02-1) UNRELEASED; urgency=medium
 .
   * New upstream beta 535.43.02 (2023-05-30).
   * Refresh patches.
   * Sync with src:nvidia-graphics-drivers.
 .
 nvidia-open-gpu-kernel-modules (530.41.03-1) unstable; urgency=medium
 .
   * New upstream new feature branch release 530.41.03 (2023-03-23).
     * Fixed CVE-2023-0184, CVE-2023-0189, CVE-2023-0180, CVE-2023-0183,
       CVE-2023-0185, CVE-2023-0187, CVE-2023-0198, CVE-2023-0199,
       CVE-2023-0188, CVE-2023-0190, CVE-2023-0194, CVE-2023-0195,
       CVE-2023-0191.  (Closes: #1033783)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5452
   * Sync with src:nvidia-graphics-drivers.
   * Fix package build reproducibility.
 .
 nvidia-open-gpu-kernel-modules (530.30.02-1) UNRELEASED; urgency=medium
 .
   * New upstream beta 530.30.02 (2023-02-28).
   * Refresh patches.
   * Sync with src:nvidia-graphics-drivers.
 .
 nvidia-open-gpu-kernel-modules (525.147.05-3) unstable; urgency=medium
 .
   * Sync with src:nvidia-graphics-drivers.
 .
 nvidia-open-gpu-kernel-modules (525.147.05-2) unstable; urgency=medium
 .
   * Sync with src:nvidia-graphics-drivers.
nvidia-open-gpu-kernel-modules (535.161.07-1) experimental; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.161.07 (2024-02-22).
     * Fixed CVE-2024-0074, CVE-2024-0075, CVE-2024-0078.  (Closes: #1064991)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5520
   * New upstream LTS and Tesla branch release 535.154.05 (2024-01-16).
   * New upstream long term support branch release 535.146.02 (2023-12-07).
   * New upstream LTS and Tesla branch release 535.129.03 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
   * Refresh patches.
   * Sync with src:nvidia-graphics-drivers.
   * Upload to experimental.
nvidia-open-gpu-kernel-modules (535.154.05-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.154.05 (2024-01-16).
   * New upstream long term support branch release 535.146.02 (2023-12-07).
   * Sync with src:nvidia-graphics-drivers.
nvidia-open-gpu-kernel-modules (535.129.03-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.129.03 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
   * Sync with src:nvidia-graphics-drivers.
nvidia-open-gpu-kernel-modules (535.113.01-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 535.113.01 (2023-09-21).
   * New upstream Tesla branch release 535.104.12 (2023-09-25).
   * New upstream LTS and Tesla branch release 535.104.05 (2023-08-22).
   * New upstream long term support branch release 535.98 (2023-08-08).
   * New upstream Tesla branch release 535.86.10 (2023-07-31).
   * New upstream long term support branch release 535.86.05 (2023-07-18).
   * New upstream LTS and Tesla branch release 535.54.03 (2023-06-14).
   * New upstream beta 535.43.02 (2023-05-30).
   * Refresh patches.
   * Sync with src:nvidia-graphics-drivers.
nvidia-open-gpu-kernel-modules (530.41.03-1) unstable; urgency=medium
 .
   * New upstream new feature branch release 530.41.03 (2023-03-23).
   * New upstream beta 530.30.02 (2023-02-28).
   * Refresh patches.
   * Sync with src:nvidia-graphics-drivers.
   * Fix package build reproducibility.
nvidia-open-gpu-kernel-modules (525.147.05-3) unstable; urgency=medium
 .
   * Sync with src:nvidia-graphics-drivers.
nvidia-open-gpu-kernel-modules (525.147.05-2) unstable; urgency=medium
 .
   * Sync with src:nvidia-graphics-drivers.
nvidia-open-gpu-kernel-modules (525.147.05-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.147.05 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
   * Refresh patches.
   * Fix FTBFS with quilt 0.67.

nvidia-persistenced (535.171.04-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-persistenced (535.171.04-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-persistenced (530.41.03-1) unstable; urgency=medium
 .
   * New upstream release.
   * Switch B-D from pkg-config to pkgconf.
 .
 nvidia-persistenced (525.147.05-1) unstable; urgency=medium
 .
   * New upstream release.
   * Update the list of supported drivers.
nvidia-persistenced (535.171.04-1~deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 nvidia-persistenced (535.171.04-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-persistenced (535.171.04-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-persistenced (530.41.03-1) unstable; urgency=medium
 .
   * New upstream release.
   * Switch B-D from pkg-config to pkgconf.
 .
 nvidia-persistenced (525.147.05-1) unstable; urgency=medium
 .
   * New upstream release.
   * Update the list of supported drivers.
 .
 nvidia-persistenced (525.85.05-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-persistenced (520.56.06-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-persistenced (515.86.01-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-persistenced (510.108.03-1) unstable; urgency=medium
 .
   * New upstream release.
   * Update the list of supported drivers.
   * Do not build for armhf and i386.
   * Bump Standards-Version to 4.6.2. No changes needed.
 .
 nvidia-persistenced (510.85.02-1) unstable; urgency=medium
 .
   * New upstream release.
   * Refresh patches.
 .
 nvidia-persistenced (470.129.06-1) unstable; urgency=medium
 .
   [ Andreas Beckmann ]
   * New upstream release.
   * Add salsa-ci.yml.
   * Fix bashism in initscript.
   * Bump Standards-Version to 4.6.1. No changes needed.
   * Update Lintian overrides.
 .
   [ Luca Boccassi ]
   * Add patch to fix manpage build reproducibility.
nvidia-persistenced (530.41.03-1) unstable; urgency=medium
 .
   * New upstream release.
   * Switch B-D from pkg-config to pkgconf.
nvidia-persistenced (525.147.05-1) unstable; urgency=medium
 .
   * New upstream release.
   * Update the list of supported drivers.

nvidia-settings (535.171.04-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-settings (535.171.04-1) unstable; urgency=medium
 .
   * New upstream release 535.171.04.
     - Updated the nvidia-settings control panel to ensure that the entire
       Display Configuration page can be used when the Layout window is shown.
     - Updated the nvidia-settings control panel to allow the primary display
       to be set on any GPU in a multi-GPU system.
   * New upstream release 535.146.02.
     - Fixed a bug that caused the nvidia-settings control panel to crash
       when running on Wayland with newer versions of libwayland-client.
   * New upstream release 535.54.03.
     - Fixed a bug that prevented SLI Mosaic controls from being displayed in
       the nvidia-settings control panel when using GSP Firmware.
   * New upstream release 535.43.02.
     - Added power usage and power limits information to nvidia-settings
       PowerMizer page.
 .
 nvidia-settings (530.41.03-1) unstable; urgency=medium
 .
   * New upstream release 530.41.03.
   * Switch B-D from pkg-config to pkgconf.
nvidia-settings (535.171.04-1~deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 nvidia-settings (535.171.04-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-settings (535.171.04-1) unstable; urgency=medium
 .
   * New upstream release 535.171.04.
     - Updated the nvidia-settings control panel to ensure that the entire
       Display Configuration page can be used when the Layout window is shown.
     - Updated the nvidia-settings control panel to allow the primary display
       to be set on any GPU in a multi-GPU system.
   * New upstream release 535.146.02.
     - Fixed a bug that caused the nvidia-settings control panel to crash
       when running on Wayland with newer versions of libwayland-client.
   * New upstream release 535.54.03.
     - Fixed a bug that prevented SLI Mosaic controls from being displayed in
       the nvidia-settings control panel when using GSP Firmware.
   * New upstream release 535.43.02.
     - Added power usage and power limits information to nvidia-settings
       PowerMizer page.
 .
 nvidia-settings (530.41.03-1) unstable; urgency=medium
 .
   * New upstream release 530.41.03.
   * Switch B-D from pkg-config to pkgconf.
nvidia-settings (530.41.03-1) unstable; urgency=medium
 .
   * New upstream release 530.41.03.
   * Switch B-D from pkg-config to pkgconf.
nvidia-settings (525.147.05-1) unstable; urgency=medium
 .
   * New upstream release 525.147.05.
   * Build for ppc64el.
nvidia-settings (525.147.05-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-settings (525.147.05-1) unstable; urgency=medium
 .
   * New upstream release 525.147.05.
   * Build for ppc64el.
nvidia-settings (525.147.05-1~deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 nvidia-settings (525.147.05-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-settings (525.147.05-1) unstable; urgency=medium
 .
   * New upstream release 525.147.05.
   * Build for ppc64el.
 .
 nvidia-settings (525.125.06-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-settings (525.125.06-1) unstable; urgency=medium
 .
   * New upstream release 525.125.06.
   * New upstream release 525.105.17.
     - Fixed a bug that could cause the nvidia-settings control panel to
       crash when resetting the display layout.
   * Upload to unstable.
 .
 nvidia-settings (525.85.05-2) experimental; urgency=medium
 .
   * Move source package back to contrib.
   * libxnvctrl0, libxnvctrl-dev are now built by src:libxnvctrl.
   * Upload to experimental.
 .
 nvidia-settings (525.85.05-1) unstable; urgency=medium
 .
   * New upstream release 525.85.05.
     - Fixed a bug that prevented some controls in the nvidia-settings
       control panel from working when running an X server as an
       unprivileged user.
   * New upstream release 525.78.01.
     - Fixed a bug that could cause the nvidia-settings control panel to
       crash when using a newer control panel with an older driver.
   * New upstream release 525.53.
     - Updated the nvidia-settings control panel to prevent the creation
       of display layouts that exceed hardware size limitations when using
       the SLI Mosaic configuration page, and to display a warning if such
       a layout is created manually in the Display Configuration page.
     - Removed the hard dependency on GTK 2 when building nvidia-settings
       from source. nvidia-settings may now be built with support for GTK 2
       only, GTK 3 only, or both GTK 2 and GTK 3.
   * Refresh patches.
   * Upload to unstable.
 .
 nvidia-settings (520.56.06-1) unstable; urgency=medium
 .
   * New upstream release 520.56.06.
   * Upload to unstable.
 .
 nvidia-settings (515.86.01-1) unstable; urgency=medium
 .
   * New upstream release 515.86.01.
     - Fixed a bug that caused nvidia-settings to find incorrect fan speed
       ranges on some GPUs.  Lower-level layers of the driver protected
       the hardware from programming incorrect fan speeds, so the symptom
       was only incorrect reporting.  Now, reporting in nvidia-settings
       matches what actually gets programmed in hardware.
   * Upload to unstable.
 .
 nvidia-settings (515.76-1) experimental; urgency=medium
 .
   * New upstream release 515.76.
   * Refresh patches.
   * Build and ship the Wayland variant in addition to GTK+ 3.
   * Upload to experimental.
 .
 nvidia-settings (510.108.03-1) unstable; urgency=medium
 .
   * New upstream release 510.108.03.
   * Bump Standards-Version to 4.6.2. No changes needed.
 .
 nvidia-settings (510.85.02-2) unstable; urgency=medium
 .
   * Upload to unstable.
 .
 nvidia-settings (510.85.02-1) experimental; urgency=medium
 .
   * New upstream release 510.85.02.
   * Merge changes from 470.141.03-1.
 .
 nvidia-settings (510.73.05-1) experimental; urgency=medium
 .
   * New upstream release 510.73.05.
   * Merge changes from 470.129.06-1.
 .
 nvidia-settings (510.68.02-1) experimental; urgency=medium
 .
   * New upstream release 510.68.02.
 .
 nvidia-settings (510.60.02-1) experimental; urgency=medium
 .
   * New upstream release 510.60.02.
 .
   [ Helmut Grohne ]
   * Improve cross building: Pass more build tools to make. (Closes:
     #1005958)
 .
 nvidia-settings (510.54-1) experimental; urgency=medium
 .
   * New upstream release 510.54.
     - Fixed a bug that caused the nvidia-settings control panel to print
       spurious error messages.
 .
 nvidia-settings (510.47.03-1) experimental; urgency=medium
 .
   * New upstream release 510.47.03.
   * New upstream release 510.39.01.
     - Fixed a bug that caused the nvidia-settings control panel to report
       inaccurate ECC error counts, and completely prevented the reporting
       of aggregate ECC error counts. ECC error counts reported by nvidia-smi
       were not affected.
     - Added a GUI control for setting Image Sharpening values in the app
       profiles page of the nvidia-settings control panel.
     - Added support for nvidia-settings to use NVML for NV-CONTROL attributes.
 .
 nvidia-settings (495.46-1) experimental; urgency=medium
 .
   * New upstream release 495.46.
   * Upload to experimental.
 .
 nvidia-settings (470.141.03-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-settings (470.141.03-1) unstable; urgency=medium
 .
   * New upstream release 470.141.03.
     - Fixed a bug that prevented nvidia-settings from accurately reflecting
       changes to some configuration properties.
 .
 nvidia-settings (470.129.06-1) unstable; urgency=medium
 .
   * New upstream release 470.129.06.
   * Bump Standards-Version to 4.6.1. No changes needed.
   * Update Lintian overrides.
 .
 nvidia-settings (470.103.01-2) unstable; urgency=medium
 .
   [ Luca Boccassi ]
   * Add salsa-ci.yml.
 .
   [ Helmut Grohne ]
   * Improve cross building: Pass more build tools to make.  (Closes: #1005958)
 .
   [ Debian Janitor ]
   * Remove constraints unnecessary since buster:
     + Build-Depends: Drop versioned constraint on libvdpau-dev.
 .
 nvidia-settings (470.103.01-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-settings (470.103.01-1) unstable; urgency=medium
 .
   * New upstream release 470.103.01.
nvidia-settings (525.125.06-1) unstable; urgency=medium
 .
   * New upstream release 525.125.06.
   * New upstream release 525.105.17.
     - Fixed a bug that could cause the nvidia-settings control panel to
       crash when resetting the display layout.
   * Upload to unstable.

nvidia-xconfig (535.171.04-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-xconfig (535.171.04-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-xconfig (530.41.03-1) unstable; urgency=medium
 .
   * New upstream release.
 .
 nvidia-xconfig (525.147.05-1) unstable; urgency=medium
 .
   * New upstream release.
   * Switch B-D from pkg-config to pkgconf.
nvidia-xconfig (530.41.03-1) unstable; urgency=medium
 .
   * New upstream release.
nvidia-xconfig (525.147.05-1) unstable; urgency=medium
 .
   * New upstream release.
   * Switch B-D from pkg-config to pkgconf.

openjdk-17 (17.0.11+9-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm
openjdk-17 (17.0.11+9-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye
openjdk-17 (17.0.11~7ea-1) unstable; urgency=medium
 .
   * OpenJDK 17.0.11 early access, build 7.
 .
   [ Matthias Klose ]
   * Don't try to install jhsdb on armhf with a zero-only build.
   * Update cups dependencies for time_t64.
 .
   [ Pushkar Kulkarni ]
   * Fix a typo in the vendor name derivation logic.
   * copyright-generator: Derive release from debian/rules.
 .
   [ Vladimir Petko ]
   * Fix installing the s390x build.
openjdk-17 (17.0.11~6ea-1) unstable; urgency=medium
 .
   * OpenJDK 17.0.11 early access, build 6.
openjdk-17 (17.0.10+7-3) unstable; urgency=medium
 .
   * d/changelog: Whitespace cleanup.
   * Update build dependency on libfontconfig-dev.
   * Apply proposed patch for JDK-8307977. Addresses: #1034600.
   * libcups2, libfontconfig1: Make it a recommends in jre-headless,
     a dependency in jre.
   * Make the dependencies for libfontmanager.so and libjsound.so
     recommendations in jre-headless, and dependencies in jre.
   * Drop build dependencies on libgtk2 | libgtk3.
   * Disable running the tests for the time_t64 bootstrap.
openjdk-17 (17.0.10+7-2) unstable; urgency=medium
 .
   * d/changelog: Whitespace cleanup.
   * Update build dependency on libfontconfig-dev.
   * Apply proposed patch for JDK-8307977. Addresses: #1034600.
   * libcups2, libfontconfig1: Make it a recommends in jre-headless,
     a dependency in jre.
   * Make the dependencies for libfontmanager.so and libjsound.so
     recommendations in jre-headless, and dependencies in jre.
   * Drop build dependencies on libgtk2 | libgtk3.
   * Disable running the tests for the time_t64 bootstrap.
openjdk-17 (17.0.10+7-1) unstable; urgency=high
 .
   * OpenJDK 17.0.10 release, build 7.
     - CVEs:
       + CVE-2024-20918
       + CVE-2024-20919
       + CVE-2024-20921
       + CVE-2024-20932
       + CVE-2024-20945
       + CVE-2024-20952
     - Security fixes:
       + JDK-8276123, JDK-8316613: ZipFile::getEntry will not return a file entry
         when there is a directory entry of the same name within a Zip File.
       + JDK-8308204: Enhanced certificate processing.
       + JDK-8314295: Enhance verification of verifier.
       + JDK-8314307: Improve loop handling.
       + JDK-8314468: Improve Compiler loops.
       + JDK-8316976: Improve signature handling.
       + JDK-8317547: Enhance TLS connection support.
 .
   [ Vladimir Petko ]
   * d/t/jtreg-autopkgtest.sh: Regenerate test script.
   * Generate d/watch to cope with early access and release builds.
   * d/rules: Trim trailing whitespaces from debian/control.
 .
   [ Matthias Klose ]
   * Build again zero on amd64 (accidental change in 6ea-1).
 .
   [ Pushkar Kulkarni ]
   * Minor improvements to the copyright-generator.

openrc (0.45.2-2+deb12u1) bookworm; urgency=medium
 .
   * d/openrc.postinst: ignore non-executable scripts in /etc/init.d
     (Closes: #1070167)

openssl (3.0.13-1~deb12u1) bookworm; urgency=medium
 .
   * Import 3.0.13
    - CVE-2023-5678 (Fix excessive time spent in DH check / generation with
      large Q parameter value) (Closes: #1055473).
    - CVE-2023-6129 (POLY1305 MAC implementation corrupts vector registers on
      PowerPC) (Closes: #1060347).
    - CVE-2023-6237 (Excessive time spent checking invalid RSA public keys)
      (Closes: #1060858)
    - CVE-2024-0727 (PKCS12 Decoding crashes) (Closes: #1061582).
openssl (3.0.12-2) unstable; urgency=medium
 .
   * Invoke clean up from the openssl binary as a temporary workaround to avoid
     a crash in libp11/SoftHSM engine (Closes: #1054546).
   * CVE-2023-5678 (Excessive time spent in DH check / generation with large Q
     parameter value) (Closes: #1055473).
openssl (3.0.12-1) unstable; urgency=medium
 .
   * Import 3.0.12
    - CVE-2023-5363 (Incorrect cipher key and IV length processing).
openssl (3.0.11-1) unstable; urgency=medium
 .
   * Import 3.0.11

openvpn-dco-dkms (0.0+git20231103-1~deb12u1) bookworm; urgency=medium
 .
   * Upload 0.0+git20231103-1 to Debian Bookworm
   * Add d/gbp.conf for debian/bookworm branch
openvpn-dco-dkms (0.0+git20230816-2) unstable; urgency=medium
 .
   * Install compat-include directory (Closes: #1050211)
openvpn-dco-dkms (0.0+git20230816-1) unstable; urgency=medium
 .
   * New upstream version 0.0+git20230816
     - fix build error on kernel 6.5+ (Closes: #1043116)

openvswitch (3.1.0-2+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2023-5366: A flaw was found in Open vSwitch that allows ICMPv6 Neighbor
     Advertisement packets between virtual machines to bypass OpenFlow rules.
     This issue may allow a local attacker to create specially crafted packets
     with a modified or spoofed target IP address field that can redirect ICMPv6
     traffic to arbitrary IP addresses. Added upstream patch: "Fix missing masks
     on a final stage with ports trie".
   * CVE-2023-3966: Invalid memory access in Geneve with HW offload. Added
     upstream patch: netdev-offload-tc: Check geneve metadata length
     (Closes: #1063492).

ovn (23.03.1-1~deb12u2) bookworm; urgency=medium
 .
   * Team upload.
   * CVE-2024-2182: Fix insufficient validation of incoming BFD packets
     (LP: #2053113).
ovn (23.03.1-1~deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Update upstream source from tag 'upstream/23.03.1'
     - Add CoPP for the svc_monitor_mac. This addresses CVE-2023-3153.
     (Closes: #1043598)
   * d/p/*vif-plug-representor*: Lower severity of failure to set udev
     receive buffer size (LP: #2034700).
ovn (23.03.0-3) unstable; urgency=medium
 .
   * Cleans better (Closes: #1045869).
ovn (23.03.0-2) unstable; urgency=medium
 .
   * Added Build-Depends: architecture-is-64-bit, since the upstream code isn't
     32-bits compatible. See https://bugs.launchpad.net/neutron/+bug/2025985
     for more details.

pdns-recursor (4.8.8-1) bookworm-security; urgency=medium
 .
   * New upstream version 4.8.8
     * Fixes CVE-2024-25583, see
       https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-02.html
pdns-recursor (4.8.7-1) bookworm-security; urgency=medium
 .
   * New upstream version 4.8.7
     * Fixes regression introduced in the fixes for CVE-2023-50387 and CVE-2023-50868
pdns-recursor (4.8.6-1) bookworm-security; urgency=medium
 .
   * New upstream version 4.8.6
     * Fixes CVE-2023-50387 and CVE-2023-50868, see
       https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html
       Introduces new configuration settings:
       * aggressive-cache-max-nsec3-hash-cost
       * max-dnskeys
       * max-ds-per-zone
       * max-nsec3-hash-computations-per-query
       * max-nsec3s-per-record
       * max-rrsigs-per-record
       * max-signature-validations-per-query
     * Fixes integer overflow in yahttp (webserver)
     * Fixes partial reads in ixfrdist
     * Fixes setting of policy tags for packet cache hits
   * Setup gbp.conf for Debian bookworm
   * d/watch: set to 4.8 branch

pdudaemon (0.0.8.58.g597052b-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Add dependency on python3-aiohttp.  (Closes: #1060768)

php-composer-class-map-generator (1.0.0-2+deb12u1) bookworm; urgency=medium
 .
   * Track debian/bookworm
   * Force system dependencies loading

php-composer-pcre (3.1.0-1+deb12u1) bookworm; urgency=medium
 .
   * Track bookworm
   * Add missing Breaks+Replaces: composer (<< 2.2)
     Thanks to Andreas Beckmann <anbe@debian.org> (Closes: #1070423)

php-composer-xdebug-handler (3.0.3-2+deb12u1) bookworm; urgency=medium
 .
   * Track debian/bookworm-security
   * Force system dependencies loading

php-doctrine-annotations (2.0.1-1+deb12u1) bookworm; urgency=medium
 .
   * Track debian/bookworm
   * Force system dependencies loading

php-doctrine-deprecations (1.0.0-2+deb12u1) bookworm; urgency=medium
 .
   * Track debian/bookworm
   * Force system dependencies loading

php-doctrine-lexer (2.1.0-2+deb12u1) bookworm; urgency=medium
 .
   * Track debian/bookworm-security
   * Force system dependencies loading

php-dompdf-svg-lib (0.5.0-3+deb12u1) bookworm-security; urgency=medium
 .
   * Add patches for phar:// url validations
      - CVE-2023-50251 and CVE-2023-50252 (#1058641)
      - CVE-2024-25117 (#1064781)
   * Add a patch for infinite recursion vulnerability
      - CVE-2023-50251 (#1058641)

php-phpseclib (2.0.42-1+deb12u2) bookworm; urgency=medium
 .
   * Backport upstream fixes
     - BigInteger: put guardrails on isPrime() and randomPrime() [CVE-2024-27354]
     - BigInteger: rm visibility modifiers from static variables
     - ASN1: limit OID length [CVE-2024-27355]
     - Tests: updates for phpseclib 2.0
     - BigInteger: phpseclib 2.0 updates
     - BigInteger: fix getLength()

php-phpseclib3 (3.0.19-1+deb12u3) bookworm; urgency=medium
 .
   * Backport upstream fixes
     - BigInteger: put guardrails on isPrime() and randomPrime() [CVE-2024-27354]
     - Tests: add unit test for EC pub key with excessively large integer
     - ASN1: limit OID length [CVE-2024-27355]
     - Tests: updates for phpseclib 2.0
     - Tests: phpseclib 3.0 updates
     - BigInteger: optimize getLength()
   * Force system dependencies loading

php-proxy-manager (2.11.1+1.0.14-1+deb12u1) bookworm; urgency=medium
 .
   * Track debian/bookworm
   * Force system dependencies loading

php-symfony-contracts (2.5.2-1+deb12u1) bookworm; urgency=medium
 .
   * Track debian/bookworm-security
   * Force system dependencies loading

php-zend-code (4.8.0-1+deb12u1) bookworm; urgency=medium
 .
   * Track debian/bookworm
   * Force system dependencies loading

php8.2 (8.2.20-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream version 8.2.20
    + [CVE-2024-4577]: Bypass of CVE-2012-1823, Argument Injection in
      PHP-CGI.
    + [CVE-2024-5458]: Filter bypass in filter_var FILTER_VALIDATE_URL.
    + [CVE-2024-5585]: Bypass of CVE-2024-1874.
   * Fix GH-14480: Method visibility issue introduced in version 8.2.20.
php8.2 (8.2.18-1) unstable; urgency=medium
 .
   * New upstream version 8.2.18
php8.2 (8.2.18-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream version 8.2.18
    + CVE-2024-1874: Fixed bug GHSA-pc52-254m-w9w7 (Command injection via
      array-ish $command parameter of proc_open).
    + CVE-2024-2756: Fixed bug GHSA-wpj3-hf5j-x4v4 (__Host-/__Secure-
      cookie bypass due to partial CVE-2022-31629 fix).
    + CVE-2024-3096: Fixed bug GHSA-h746-cjrr-wfmr (password_verify can
      erroneously return true, opening ATO risk).
php8.2 (8.2.17-1) unstable; urgency=medium
 .
   [ Ondřej Surý ]
   * New upstream version 8.2.17
   * Remove hardcoded dependency on libmagic1 (Closes: #1065985)
   * Just don't set PHP extra version at all - it makes a little
     sense when we are just updating upstream versions
 .
   [ Andrey Rakhmatullin ]
   * Fix FTBFS with -Werror=implicit-function-declaration (Closes: #1066234).
php8.2 (8.2.16-2.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Fix FTBFS with -Werror=implicit-function-declaration (Closes: #1066234).
php8.2 (8.2.16-2) unstable; urgency=medium
 .
   * Regenerate d/tests for correct PHP version (Closes: #1064174)
php8.2 (8.2.16-1) unstable; urgency=medium
 .
   * New upstream version 8.2.16
php8.2 (8.2.12-1) unstable; urgency=medium
 .
   * New upstream version 8.2.12
php8.2 (8.2.10-2) unstable; urgency=medium
 .
   * Add systemtap-sdt-dev on all architectures (Closes: #1051246)
php8.2 (8.2.10-1) unstable; urgency=medium
 .
   * New upstream version 8.2.10
   * Enable DTrace on all architectures
php8.2 (8.2.7-1) unstable; urgency=medium
 .
   * New upstream version 8.2.7
    + Fixed GHSA-76gg-c692-v2mw: Missing error check and insufficient
      random bytes in HTTP Digest authentication for SOAP.

phpldapadmin (1.2.6.3-0.3+deb12u1) bookworm; urgency=medium
 .
   * Update the patch for PHP 7.4 LDAP login to work like PHP 8.1

phpseclib (1.0.20-1+deb12u2) bookworm; urgency=medium
 .
   * Backport upstream fixes
     - BigInteger: put guardrails on isPrime() and randomPrime() [CVE-2024-27354]
     - ASN1: limit OID length [CVE-2024-27355]
     - BigInteger: fix getLength()
   * Force system dependencies loading

pillow (9.4.0-1.1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Backport fixes for CVE-2023-44271, CVE-2023-50447, CVE-2024-28219.

postfix (3.7.11-0+deb12u1) bookworm; urgency=medium
 .
   [Wietse Venema]
 .
   * 3.7.11
     - Bugfix (defect introduced: Postfix 2.3, date 20051222): the
       Dovecot auth client did not reset the 'reason' from  a
       previous Dovecot auth service response, before parsing the
       next Dovecot auth server response in the same SMTP session.
       Reported by Stephan Bosch, File: xsasl/xsasl_dovecot_server.c.
     - Cleanup: Postfix SMTP server response with an empty
       authentication failure reason. File: smtpd/smtpd_sasl_glue.c.
     - Bugfix (defect introduced: Postfix 3.1, date: 20151128):
       "postqueue -j" produced broken JSON when escaping a control
       character as \uXXXX. Found during code maintenance. File:
       postqueue/showq_json.c.
     - Cleanup: posttls-finger certificate match expectations for
       all TLS security levels, including warnings for levels that
       don't implement certificate matching. Viktor Dukhovni.
       File: posttls-finger.c.
     - Bugfix (defect introduced: Postfix 2.3): after prepending
       a message header with a Postfix access table PREPEND action,
       a Milter request to delete or update an existing header
       could have no effect, or it could target the wrong instance
       of an existing header. Root cause: the fix dated 20141018
       for the Postfix Milter client was incomplete. The client
       did correctly hide the first, Postfix-generated, Received:
       header when sending message header information to a Milter
       with the smfi_header() application callback function, but
       it was still hiding the first header (instead of the first
       Received: header) when handling requests from a Milter to
       delete or update an existing header. Problem report by
       Carlos Velasco. This change was verified to have no effect
       on requests from a Milter to add or insert a header. File:
       cleanup/cleanup_milter.c.
     - Workaround: tlsmgr logfile spam. Some OS lies under load:
       it says that a socket is readable, then it says that the
       socket has unread data, and then it says that read returns
       EOF, causing Postfix to spam the log with a warning message.
       File: tlsmgr/tlsmgr.c.
     - Bugfix (defect introduced: Postfix 3.4): the SMTP server's
       BDAT command handler could be tricked to read $message_size_limit
       bytes into memory. Found during code maintenance. File:
       smtpd/smtpd.c.
     - Performance: eliminate worst-case behavior where the queue
       manager defers delivery to all destinations over a specific
       delivery transport, after only a single delivery agent
       failure. The scheduler now throttles one destination, and
       allows deliveries to other destinations to keep making
       progress. Files: *qmgr/qmgr_deliver.c.
     - Safety: drop and log over-size DNS responses resulting in
       more than 100 records. This 20x larger than the number of
       server addresses that the Postfix SMTP client is willing
       to consider when delivering mail, and is well below the
       number of records that could cause a tail recursion crash
       in dns_rr_append() as reported by Toshifumi Sakaguchi. This
       also limits the number of DNS requests from check_*_*_access
       restrictions. Files: dns/dns.h, dns/dns_lookup.c, dns/dns_rr.c,
       dns/test_dns_lookup.c, posttls-finger/posttls-finger.c,
       smtp/smtp_addr.c, smtpd/smtpd_check.c.

postgresql-15 (15.7-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream version.
 .
     + Restrict visibility of pg_stats_ext and pg_stats_ext_exprs entries to
       the table owner (Nathan Bossart)
 .
       These views failed to hide statistics for expressions that involve
       columns the accessing user does not have permission to read.  View
       columns such as most_common_vals might expose security-relevant data.
       The potential interactions here are not fully clear, so in the interest
       of erring on the side of safety, make rows in these views visible only
       to the owner of the associated table.
 .
       The PostgreSQL Project thanks Lukas Fittl for reporting this problem.
       (CVE-2024-4317)
 .
       By itself, this fix will only fix the behavior in newly initdb'd
       database clusters.  If you wish to apply this change in an existing
       cluster, you will need to do the following:
 .
         In each database of the cluster, run the fix-CVE-2024-4317.sql script
         as superuser. In psql this would look like
           \i /usr/share/postgresql/15/fix-CVE-2024-4317.sql
         Any error probably indicates that you've used the wrong script
         version.  It will not hurt to run the script more than once.
 .
         Do not forget to include the template0 and template1 databases, or the
         vulnerability will still exist in databases you create later.  To fix
         template0, you'll need to temporarily make it accept connections.  Do
         that with
           ALTER DATABASE template0 WITH ALLOW_CONNECTIONS true;
         and then after fixing template0, undo it with
           ALTER DATABASE template0 WITH ALLOW_CONNECTIONS false;
postgresql-15 (15.6-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version.
 .
     * Tighten security restrictions within REFRESH MATERIALIZED VIEW
       CONCURRENTLY (Heikki Linnakangas)
 .
       One step of a concurrent refresh command was run under weak security
       restrictions.  If a materialized view's owner could persuade a superuser
       or other high-privileged user to perform a concurrent refresh on that
       view, the view's owner could control code executed with the privileges
       of the user running REFRESH. Fix things so that all user-determined code
       is run as the view's owner, as expected.
 .
       The PostgreSQL Project thanks Pedro Gallegos for reporting this problem.
       (CVE-2024-0985)

prometheus-node-exporter-collectors (0.0~git20230203.6f710f8-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Fix deadlock with other apt update runs (Closes: #1028212)

pymongo (3.11.0-1+deb12u1) bookworm; urgency=medium
 .
   * QA upload
   * Fix CVE-2024-5629: An out-of-bounds read in the
     'bson' module allowed deserialization of malformed BSON
     provided by a Server to raise an exception which may
     contain arbitrary application memory

pypy3 (7.3.11+dfsg-2+deb12u2) bookworm; urgency=medium
 .
   * Security patches to the standard library:
     - Apply cPython upstream security fix for CVE-2023-24329:
       Strip C0 control and space characters in urlsplit.
     - Apply cPython upstream security fix for CVE-2023-40217:
       Avoid bypass TLS of handshake protections on closed sockets.
     - Apply cPython upstream security fix for CVE-2023-6597:
       tempfile.TemporaryDirectory: fix symlink bug in cleanup.
     - Apply cPython upstream security fix for CVE-2024-0450:
       Protect zipfile from "quoted-overlap" zipbomb.

python-aiosmtpd (1.4.3-1.1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * CVE-2024-27305 - SMTP smuggling due to poor handling of
     non-standard line endings (Closes: #1066820)
   * CVE-2024-34083 - STARTTLS unencrypted command injection
       (Closes: #1072119)

python-asdf (2.14.3-1+deb12u1) bookworm; urgency=medium
 .
   [ Andreas Beckmann ]
   * Non-maintainer upload.
   * Backport dependency fix from 3.0.0-2.
 .
   [ Ole Streicher ]
   * Remove asdf-unit-schemas as a dependency (Closes: #1054581)

python-channels-redis (4.0.0-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Cherry-pick from upstream:
     - Ensure pools are closed on loop close in core (closes: #1027387).

python-idna (3.3-1+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload.
   * Fix CVE-2024-3651: Specially crafted inputs to idna.encode() can consume
     significant resources, which may lead to denial of service.
     (Closes: #1069127)

python-jwcrypto (1.1.0-1+deb12u1) bookworm; urgency=medium
 .
   * Apply and tweak upstream security fix for CVE-2024-28102
     Address potential DoS with high compression ratio

python-pymysql (1.0.2-2+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2024-36039: PyMySQL through 1.1.0 allows SQL injection if used with
     untrusted JSON input because keys are not escaped by escape_dict. Applied
     upstream patch: forbid_dict_parameter.patch (Closes: #1071628).

python-xapian-haystack (2.1.1-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload, to stable.
   * Remove dependency on the django.utils.six module, which no longer exists,
     causing the package to be completely broken. Patch by Ole Peder Brandtzæg,
     based on reducing a patch from upstream. (Closes: #1066136)

python3.11 (3.11.2-6+deb12u2) bookworm; urgency=medium
 .
   [ Steve McIntyre ]
   * Apply upstream security fix for CVE-2024-0450
     Protect zipfile from "quoted-overlap" zipbomb.
     Closes: #1070133
   * Apply and tweak upstream security fix for CVE-2023-6597
     tempfile.TemporaryDirectory: fix symlink bug in cleanup
     Closes: #1070135
 .
   [ Stefano Rivera ]
   * Apply upstream patch to avoid a potential null pointer dereference in
     fileutils.
   * Apply upstream security fix for CVE-2023-41105
     os.path.normpath(): Path truncation at null bytes.
   * Apply upstream security fix for CVE-2023-40217
     Avoid bypass TLS of handshake protections on closed sockets.
   * Apply upstream security fix for CVE-2023-24329
     Strip C0 control and space characters in urlsplit.
python3.11 (3.11.2-6+deb12u1) bookworm; urgency=medium
 .
   [ Anders Kaseorg ]
   * Fix a use-after-free crash when deallocating a frame object
     (closes: #1050843).

qemu (1:7.2+dfsg-7+deb12u6) bookworm; urgency=medium
 .
   * update to upstream 7.2.11 stable/bugfix release, v7.2.11.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.11 :
     - Update version for 7.2.11 release
     - ppc/spapr: Initialize max_cpus limit to SPAPR_IRQ_NR_IPIS.
     - ppc/spapr: Introduce SPAPR_IRQ_NR_IPIS to refer IRQ range for CPU IPIs.
     - target/sh4: add missing CHECK_NOT_DELAY_SLOT
     - hw/sd/sdhci: Do not update TRNMOD when Command Inhibit (DAT) is set
       (Closes: #1068821, CVE-2024-3447)
     - hw/net/lan9118: Replace magic '2048' value by MIL_TXFIFO_SIZE definition
     - hw/net/lan9118: Fix overflow in MIL TX FIFO
     - backends/cryptodev: Do not abort for invalid session ID
     - hw/misc/applesmc: Fix memory leak in reset() handler
     - hw/block/nand: Fix out-of-bound access in NAND block buffer
     - hw/block/nand: Have blk_load() take unsigned offset and return boolean
     - hw/block/nand: Factor nand_load_iolen() method out
     - qemu-options: Fix CXL Fixed Memory Window interleave-granularity typo
     - hw/virtio/virtio-crypto: Protect from DMA re-entrancy bugs
       (Closes: #1068820, CVE-2024-3446)
     - hw/char/virtio-serial-bus: Protect from DMA re-entrancy bugs
       (Closes: #1068820, CVE-2024-3446)
     - hw/display/virtio-gpu: Protect from DMA re-entrancy bugs
       (Closes: #1068820, CVE-2024-3446)
     - hw/virtio: Introduce virtio_bh_new_guarded() helper
     - linux-user: Fix waitid return of siginfo_t and rusage
     - tcg/optimize: Do not attempt to constant fold neg_vec
     - hw/virtio: Fix packed virtqueue flush used_idx
     - hw/net/virtio-net: fix qemu set used ring flag even vhost started
     - hw/intc/arm_gicv3: ICC_HPPIR* return SPURIOUS if int group is disabled
     - gitlab-ci/cirrus: switch from 'master' to 'latest'
     - target/hppa: Clear psw_n for BE on use_nullify_skip path
     - tcg/optimize: Fix sign_mask for logical right-shift
     - virtio-net: Fix vhost virtqueue notifiers for RSS
     - monitor/hmp-cmds-target: Append a space in error message in gpa2hva()
     - hw/scsi/scsi-generic: Fix io_timeout property not applying
     - target/loongarch: Fix qemu-system-loongarch64 assert failed
       with the option '-d int'
     - target/i386: Revert monitor_puts() in do_inject_x86_mce()
     - target/i386: fix direction of "32-bit MMU" test
     - target/i386: use separate MMU indexes for 32-bit accesses
     - target/i386: introduce function to query MMU indices
     - tests: Raise timeouts for bufferiszero and crypto-tlscredsx509
     - tests/unit: Bump test-replication timeout to 60 seconds
     - tests/unit: Bump test-crypto-block test timeout to 5 minutes
     - tests/unit: Bump test-aio-multithread test timeout to 2 minutes
     - migration: Skip only empty block devices
     - hmat acpi: Fix out of bounds access due to missing use of indirection
     - pcie_sriov: Validate NumVFs
       (Closes: #1068819, CVE-2024-26327)
     - hw/nvme: Use pcie_sriov_num_vfs()
       (Closes: #1068819, CVE-2024-26328)
     - pcie: Introduce pcie_sriov_num_vfs
     - hw/nvme: add machine compatibility parameter to enable msix exclusive bar
     - hw/nvme: generalize the mbar size helper
     - hw/nvme: separate 'serial' property for VFs
     - hw/nvme: cleanup error reporting in nvme_init_pci()
     - hw/nvme: clean up confusing use of errp/local_err
     - Avoid unaligned fetch in ladr_match()
     - e1000e: fix link state on resume
     - make-release: switch to .xz format by default
     - hw/scsi/lsi53c895a: add timer to scripts processing
     - hw/scsi/lsi53c895a: add missing decrement of reentrancy counter
     - hw/scsi/lsi53c895a: stop script on phase mismatch
     - system/qdev-monitor: move drain_call_rcu call
       under if (!dev) in qmp_device_add()
     - hw/rtc/sun4v-rtc: Relicense to GPLv2-or-later
     - target/arm: Fix SME full tile indexing
     - tests/tcg/aarch64/sysregs.c: Use S syntax for
       id_aa64zfr0_el1 and id_aa64smfr0_el1
     - target/arm: align exposed ID registers with Linux
     - ui/cocoa: Fix window clipping on macOS 14
     - gitlab: update FreeBSD Cirrus CI image to 13.3
   * update to upstream 7.2.10 stable/bugfix release, v7.2.10.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.10 :
     - Update version for 7.2.10 release
     - target/i386: the sgx_epc_get_section stub is reachable
     - tests/unit/test-blockjob: Disable complete_in_standby test
     - tests/qtest/display-vga-test: Add proper checks if a device is available
     - test-vmstate: fix bad GTree usage, use-after-free
     - tests/unit/test-util-sockets: Remove temporary file after test
     - hw/usb/bus.c: PCAP adding 0xA in Windows version
     - gitlab: force allow use of pip in Cirrus jobs
     - tests/vm: avoid re-building the VM images all the time
     - tests/vm: update openbsd image to 7.4
     - target/i386: leave the A20 bit set in the final NPT walk
     - target/i386: remove unnecessary/wrong application of the A20 mask
     - target/i386: Fix physical address truncation
     - target/i386: check validity of VMCB addresses
     - target/i386: mask high bits of CR3 in 32-bit mode
     - pl031: Update last RTCLR value on write in case it's read back
     - hw/nvme: fix invalid endian conversion
     - target/ppc: Fix lxv/stxv MSR facility check
     - .gitlab-ci.d/windows.yml: Drop msys2-32bit job
     - system/vl: Update description for input grab key
     - docs/system: Update description for input grab key
     - audio: Depend on dbus_display1_dep
     - meson: ensure dbus-display generated code is built before other units
     - ui/console: Fix console resize with placeholder surface
     - ui/clipboard: add asserts for update and request
     - ui/clipboard: mark type as not available when there is no data
       (Closes: CVE-2023-6683, already fixed in debian)
     - ui: reject extended clipboard message if not activated
     - target/i386: Generate an illegal opcode exception on cmp instructions
       with lock prefix
     - i386/cpuid: Move leaf 7 to correct group
     - i386/cpuid: Decrease cpuid_i when skipping CPUID leaf 1F
     - i386/cpu: Mask with XCR0/XSS mask for FEAT_XSAVE_XCR0_HI and
       FEAT_XSAVE_XSS_HI leafs
     - i386/cpu: Clear FEAT_XSAVE_XSS_LO/HI leafs when CPUID_EXT_XSAVE
       is not available
     - iotests: Make 144 deterministic again
     - target/arm: Don't get MDCR_EL2 in pmu_counter_enabled()
       before checking ARM_FEATURE_PMU
     - target/arm: Fix SVE/SME gross MTE suppression checks
     - target/arm: Fix nregs computation in do_{ld,st}_zpa
     - linux-user/aarch64: Choose SYNC as the preferred MTE mode
     - tests/acpi: Update DSDT.cxl to reflect change _STA return value.
     - hw/i386: Fix _STA return value for ACPI0017
     - tests/acpi: Allow update of DSDT.cxl
     - smmu: Clear SMMUPciBus pointer cache when system reset
     - virtio_iommu: Clear IOMMUPciBus pointer cache when system reset
     - hw/cxl: Pass CXLComponentState to cache_mem_ops
     - cxl/cdat: Fix header sum value in CDAT checksum
     - cxl/cdat: Handle cdat table build errors
     - vhost-user.rst: Fix vring address description
     - hw/smbios: Fix port connector option validation
     - hw/smbios: Fix OEM strings table option validation
     - pci-host: designware: Limit value range of iATU viewport register
     - qemu-options.hx: Improve -serial option documentation
     - system/vl.c: Fix handling of '-serial none -serial something'
     - target/arm: fix exception syndrome for AArch32 bkpt insn
     - block/blkio: Make s->mem_region_alignment be 64 bits
     - qemu-docs: Update options for graphical frontends
     - migration: Fix use-after-free of migration state object
   * d/patches: remove
     revert-monitor-only-run-coroutine-commands-in-qemu_aio_context.patch
     This one turned out to be innocent, cryptsetup CI fails anyway.
   * d/patches: remove now included upstream
     ui-clipboard-mark-type-as-not-available-when-no-data-CVE-2023-6683.patch
   * d/changelog: mention previous CVE fixes:
     - CVE-2023-3019 fixed by 7.2+dfsg-7+deb12u4
     - CVE-2024-24474 & CVE-2023-5088 fixed by 7.2+dfsg-7+deb12u3
     - CVE-2023-3301 fixed by 7.2+dfsg-7+deb12u1

qtbase-opensource-src (5.15.8+dfsg-11+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2024-25580 (Closes: #1064053)
     fix buffer overflow due to crafted KTX image file
   * CVE-2023-51714 (Closes: #1060694)
     fix incorrect HPack integer overflow check.
qtbase-opensource-src (5.15.8+dfsg-11+deb12u1) bookworm; urgency=medium
 .
   [ Alexander Volkov ]
   * Backport upstream patches to fix regression caused by CVE-2023-24607.diff
     (closes: #1055280).
 .
   [ Dmitry Shachnev ]
   * Backport fixes for three CVEs from Debian unstable:
     - CVE-2023-34410: use of system CA certificates when not wanted
       (closes: #1037210).
     - CVE-2023-37369: potential buffer overflow in QXmlStreamReader.
     - CVE-2023-38197: infinite loop in XML recursive entity expansion
       (closes: #1041105).

rails (2:6.1.7.3+dfsg-2~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 rails (2:6.1.7.3+dfsg-2) unstable; urgency=medium
 .
   * debian/control:
     - Declare that ruby-activerecord breaks and replaces ruby-arel: it was
       merged five years ago, is therefore obsolete and to be removed.
       (Closes: #1038935)

redmine (5.0.4-5+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2023-47258 / CVE-2023-47259 / CVE-2023-47260 (Closes: #1055474)

riseup-vpn (0.21.11+ds1-5+deb12u1) bookworm; urgency=medium
 .
   * Add patch to fixup client verification problems with
     riseup-vpn which renders the package useless otherwise.
     At the moment, the current code is unable to identify the
     letsencrypt certs. Used a systempool for the same and create
     a newcertpool as a fallback. Also added a Depends in d/control
     for ca-certificates for the same reason.
     (Closes: #1070270)

roundcube (1.6.5+dfsg-1+deb12u2) bookworm-security; urgency=high
 .
   * Fix CVE-2024-37384: Cross-site scripting (XSS) vulnerability in handling
     list columns from user preferences. (Closes: #1071474)
   * Fix CVE-2024-37383: Cross-site scripting (XSS) vulnerability in handling
     SVG animate attributes. (Closes: #1071474)
roundcube (1.6.5+dfsg-1) unstable; urgency=high
 .
   * New upstream security and bugfix release:
     + Fix cross-site scripting (XSS) vulnerability in setting
       Content-Type/Content-Disposition for attachment preview/download.
       (Closes: #1055421)
     + Fix PHP8 fatal error when parsing a malformed BODYSTRUCTURE.
     + Fix UI issue when dealing with an invalid managesieve_default_headers
       value.
     + Fix bug where images attached to application/smil messages weren't
       displayed.
     + Fix PHP8 warnings.
     + Fix regression where ‘smtp_user’ did not allow pre/post strings
       before/after ‘%u’ placeholder.
   * d/control: Drop 10 year old Breaks+Replaces constraints.
   * d/rules: Update to reflect upstream Makefile.
   * roundcube-plugins: Remove obsolete maintscript.
   * roundcube-core: Suggests some potentially useful roundcube-plugin-*.
   * Refresh d/patches.

ruby-aws-partitions (1.653.0-3~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 ruby-aws-partitions (1.653.0-3) unstable; urgency=medium
 .
   * Team upload
   * Include partitions-metadata.json in binary package (Closes: #1042415)
   * Bump Standards-Version to 4.7.0 (no changes needed)
 .
 ruby-aws-partitions (1.653.0-2) unstable; urgency=medium
 .
   * Team upload
 .
   [ Stephen Gelman ]
   * Change DH_RUBY_GEM_INSTALL_WHITELIST_APPEND to DH_RUBY_GEM_INSTALL_INCLUDE
     in debian/rules to work with newer gem2deb and install back
     partitions.json. Thanks Stephen Gelman for the bug report and the fix
     (Closes: #1042415)
ruby-aws-partitions (1.653.0-2) unstable; urgency=medium
 .
   * Team upload
 .
   [ Stephen Gelman ]
   * Change DH_RUBY_GEM_INSTALL_WHITELIST_APPEND to DH_RUBY_GEM_INSTALL_INCLUDE
     in debian/rules to work with newer gem2deb and install back
     partitions.json. Thanks Stephen Gelman for the bug report and the fix
     (Closes: #1042415)

ruby-premailer-rails (1.10.3-4~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 ruby-premailer-rails (1.10.3-4) unstable; urgency=medium
 .
   * debian/control:
     - Drop Build-Depends on ruby-arel, which is obsolete and part of rails
       since five years. (Closes: #1039035)

ruby-rack (2.2.6.4-1+deb12u1) bookworm-security; urgency=medium
 .
   * Non-maintainer upload.
   * CVE-2024-25126: ReDoS in Content Type header parsing
   * CVE-2024-26141: Reject Range headers which are too large
   * CVE-2024-26146: ReDoS in Accept header parsing
   * Closes: #1064516

ruby-sanitize (6.0.0-1.1+deb12u1) bookworm-security; urgency=high
 .
   * Fix CVE-2023-36823. (Closes: #1041430)

ruby3.1 (3.1.2-7+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2024-27280 / CVE-2024-27281 / CVE-2024-27282
   * Cherrypick changes from 3.1.2-8.2 upload to sid:
     * Update test certificates from ruby 3.2.3. (Closes: #1064034)
     * Disable test needing a working DNS resolver.

rust-cbindgen-web (0.26.0-3~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Backport to bookworm as rust-cbindgen-web. Since we're vendoring
     the dependencies, we can't easily ship a librust-cbindgen-dev package
     as it's dependencies won't be available, and there are build-rdeps
     for that binary now so we can't just disable it.
   * Vendor dependencies, they are not available in bookworm.
   * Only build the cbindgen binary.
   * Build with rustc-web.
rust-cbindgen-web (0.26.0-3~deb11u1) bullseye; urgency=medium
 .
   * Backport to bullseye.
   * Lower dh-cargo requirement to 24.
   * Build with cargo-mozilla.

rustc-web (1.70.0+dfsg1-7~deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Increase allowed test failures on armhf and ppc64el to fix FTBFS.
   * Provide Conflicts/Replaces for rust*-mozilla*, which could still be
     installed from oldstable (closes: #1064562).
   * Add Provides/Conflicts/Replaces for libstd-rust-1.70 (closes: #1064563).
rustc-web (1.70.0+dfsg1-7~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rename rustc backport to rustc-web, intended to be used for browsers.
   * Generate & include bootstrap compilers via an orig-stage0.tar.xz.
   * Add mipsel bootstrap compiler back, as mipsel is still in bookworm.
   * Disable profiler on mipsel, as it likely doesn't work either.
   * Disable wasm.
   * Drop -all virtual package, which doesn't make sense for us.
rustc-web (1.70.0+dfsg1-7~deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * Backport to bullseye.

schleuder (4.0.3-7+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     - x-subscribe: fix parsing of arguments. Optional flags provided at the
       end are only taken into account if there is a valid fingerprint, and
       they are checked to be "true", or "false". Before, due to insufficient
       validation, an email address might have been erroneously subscribed with
       'admin' permissions. (Closes: #1068330)
     - x-add-key: fix importing keys from attachments as Thunderbird sends
       them. Before, such attachments were ignored. This regression was
       introduced in 4.0.0. (Closes: #1068331)
     - x-add-key: fix handling of emails without further content or
       attachments. A proper error message is returned. Before, a traceback was
       thrown. (Closes: #1068332)
     - Stop looking for keywords if email starts with other content. This
       allows to send usage instructions including keywords within an email to
       a Schleuder list. Before, these keywords would have been stripped, which
       limited the value of such an email. This change matches documentation,
       which tells that keywords require that they are written in the beginning
       of an email body. (Closes: #1068333)
     - receive_from_subscribed_emailaddresses_only(): check downcased email
       address. This follows and mirrors changes made in both schleuder-cli and
       schleuder-web, which nowadays enforce lowercase if adding subscriptions.
       Before, incoming emails might have been erroneously rejected, if an
       uppercase email address was used in the From: header. (Closes: #1068334)
     - Consider From: when finding reply address. Look for a subscription that
       matches the sending email address, in case of multiple subscriptions
       which rely on the same key. As a fallback, the first subscription found
       is used. Before, people might have received a reply to a different email
       address. (Closes: #1068335)

sendmail (8.17.1.9-2+deb12u2) bookworm; urgency=medium
 .
   * QA upload
   * Use correct location for debian/NEWS.
sendmail (8.17.1.9-2+deb12u1) bookworm; urgency=high
 .
   * QA upload
   * Fix CVE-2023-51765 (Closes: #1059386):
     sendmail allowed SMTP smuggling in certain configurations.
     Remote attackers can use a published exploitation
     technique to inject e-mail messages with a spoofed
     MAIL FROM address, allowing bypass of an SPF protection
     mechanism. This occurs because sendmail supports
     <LF>.<CR><LF> but some other popular e-mail servers
     do not. This is resolved with 'o' in srv_features.
   * Enable _FFR_REJECT_NUL_BYTE for rejecting mail that
     include NUL byte
   * By default enable rejecting mail that include NUL byte.
     set confREJECT_NUL to 'true' by default .
     User could disable by setting confREJECT_NUL to false.
     (Closes: #1070190). Close a variant of CVE-2023-51765
     aka SMTP smuggling.

slurm-wlm-contrib (22.05.8-4+deb12u2) bookworm-security; urgency=medium
 .
   * Fix CVE-2023-49933, CVE-2023-49936, CVE-2023-49937, CVE-2023-49938
     (Closes: #1062264)

software-properties (0.99.30-4.1~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 software-properties (0.99.30-4.1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * software-properties-qt: Add Conflicts+Replaces: software-properties-kde
     for smoother upgrades from bullseye.  (Closes: #1034993)

squid (5.7-2+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload.
   * Fix CVE-2023-46724, CVE-2023-46846, CVE-2023-46847, CVE-2023-46848,
     CVE-2023-49285, CVE-2023-49286, CVE-2023-50269, CVE-2024-23638,
     CVE-2024-25111, CVE-2024-25617.
   * Several security vulnerabilities have been discovered in Squid, a full
     featured web proxy cache. Due to programming errors in Squid's HTTP request
     parsing, remote attackers may be able to execute a denial of service attack
     by sending large X-Forwarded-For header or trigger a stack buffer overflow
     while performing HTTP Digest authentication. Other issues facilitate
     request smuggling past a firewall or a denial of service against Squid's
     Helper process management.
     In regard to CVE-2023-46728: Please note that support for the Gopher
     protocol has simply been removed in future Squid versions. There are no
     plans by the upstream developers of Squid to fix this issue. We recommend
     to reject all Gopher URL requests instead.

symfony (5.4.23+dfsg-1+deb12u2) bookworm; urgency=medium
 .
   * make sure that the submitted year is an accepted choice (Closes: #1061033)
   * Force system dependencies loading

systemd (252.26-1~deb12u2) bookworm; urgency=medium
 .
   [ Gioele Barabucci ]
   * d/libnss-myhostname.nss: Install after `files` (Closes: #1072380)
   * d/libnss-mymachines.nss: Install before `resolve` and `dns` Installing
     `mymachines` before `dns` and `resolve` (whatever comes first) is
     suggested in the manpage. It also avoids leaking information about
     local machines to the DNS resolver. (Closes: #825438, #851314)
systemd (252.26-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.26
   * autopkgtest: reboot before logind test. If the testbed hasn't rebooted
     the test session will be running in a logind session created by the
     existing logind instead of the one under test, so reboot before
     running.
   * d/t/boot-and-services: drop tmp check. LXC now sets up a tmpfs on /tmp
     as per upstream recommendation, so we cannot detect it via fstab
     anymore.
systemd (252.25-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.25
   * Refresh patches for v252.25
systemd (252.24-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.24
   * Refresh patches
systemd (252.23-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.23 (CVE-2023-50387, CVE-2023-50868)
   * Refresh patches

thunderbird (1:115.12.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:115.12.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.11.0-1) unstable; urgency=medium
 .
   * [47bb447] d/c-u-t.py: Ignore potentially non ESR versions
   * [f008566] New upstream version 115.11.0
     Fixed CVE issues in upstream version 115.11 (MFSA 2024-23):
     CVE-2024-4367: Arbitrary JavaScript execution in PDF.js
     CVE-2024-4767: IndexedDB files retained in private browsing mode
     CVE-2024-4768: Potential permissions request bypass via clickjacking
     CVE-2024-4769: Cross-origin responses could be distinguished between
                    script and non-script content-types
     CVE-2024-4770: Use-after-free could occur when printing to PDF
     CVE-2024-4777: Memory safety bugs fixed in Firefox 126, Firefox ESR 115.11,
                    and Thunderbird 115.11
   * [b029857] d/control: Re-add build and binary dep on rnp library
     (Closes: #1070871)
thunderbird (1:115.11.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:115.11.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.10.1-1) unstable; urgency=medium
 .
   [ William Desportes ]
   * [d0cbb66] Fix a typo in the wrapper file
 .
   [ Carsten Schoenert ]
   * [47d140b] New upstream version 115.10.1
     Fixed CVE issues in upstream version 115.10 (MFSA 2024-20):
     CVE-2024-3852: GetBoundName in the JIT returned the wrong object
     CVE-2024-3854: Out-of-bounds-read after mis-optimized switch statement
     CVE-2024-3857: Incorrect JITting of arguments led to use-after-free
                    during garbage collection
     CVE-2024-2609: Permission prompt input delay could expire when not in
                    focus
     CVE-2024-3859: Integer-overflow led to out-of-bounds-read in the
                    OpenType sanitizer
     CVE-2024-3861: Potential use-after-free due to AlignedBuffer self-move
     CVE-2024-3302: Denial of Service using HTTP/2 CONTINUATION frames
     CVE-2024-3864: Memory safety bug fixed in Firefox 125, Firefox ESR 115.10,
                    and Thunderbird 115.10
   * [5612f7b] d/control: Move libotr5 to libotr5t64 for bin:thunderbird
     (Closes: #1069337)
   * [195482a] d/mozconfig.default: Use internal shipped librnp version
     The Debian package has a RC bug for longer time which would prevent the
     migration of the thunderbird package to testing.
   * [cd4de72] d/control: Drop dependencies on librnp{0,-dev}
   * [761eb83] d/thunderbird.install: Install local built rnp tools
   * [ce212a8] d/control: Increase Standards-Version to 4.7.0
     No further changes needed.
thunderbird (1:115.10.1-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:115.10.1-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.9.0-1) unstable; urgency=medium
 .
   * [c122f7d] New upstream version 115.9.0
     Fixed CVE issues in upstream version 115.9 (MFSA 2024-14):
     CVE-2024-0743: Crash in NSS TLS method
     CVE-2024-2607: JIT code failed to save return registers on Armv7-A
     CVE-2024-2608: Integer overflow could have led to out of bounds write
     CVE-2024-2616: Improve handling of out-of-memory conditions in ICU
     CVE-2023-5388: NSS susceptible to timing attack against RSA decryption
     CVE-2024-2610: Improper handling of html and body tags enabled CSP nonce
                    leakage
     CVE-2024-2611: Clickjacking vulnerability could have led to a user
                    accidentally granting permissions
     CVE-2024-2612: Self referencing object could have potentially led to a
                    use-after-free
     CVE-2024-2614: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9,
                    and Thunderbird 115.9
thunderbird (1:115.9.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:115.9.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.8.1-1) unstable; urgency=medium
 .
   * [b9b4842] New upstream version 115.8.1
     Fixed CVE issues in upstream version 115.8.1 (MFSA 2024-11):
     CVE-2024-1936: Leaking of encrypted email subjects to other conversations
thunderbird (1:115.8.0-1) unstable; urgency=medium
 .
   * [68f2fbe] New upstream version 115.8.0
     Fixed CVE issues in upstream version 115.8 (MFSA 2024-07):
     CVE-2024-1546: Out-of-bounds memory read in networking channels
     CVE-2024-1547: Alert dialog could have been spoofed on another site
     CVE-2024-1548: Fullscreen Notification could have been hidden by select
                    element
     CVE-2024-1549: Custom cursor could obscure the permission dialog
     CVE-2024-1550: Mouse cursor re-positioned unexpectedly could have led to
                    unintended permission grants
     CVE-2024-1551: Multipart HTTP Responses would accept the Set-Cookie
                    header in response parts
     CVE-2024-1552: Incorrect code generation on 32-bit ARM devices
     CVE-2024-1553: Memory safety bugs fixed in Firefox 123, Firefox ESR 115.8,
                    and Thunderbird 115.8
thunderbird (1:115.8.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:115.8.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.7.0-1) unstable; urgency=medium
 .
   * [6e0c26c] New upstream version 115.7.0
     Fixed CVE issues in upstream version 115.7 (MFSA 2024-04):
     CVE-2024-0741: Out of bounds write in ANGLE
     CVE-2024-0742: Failure to update user input timestamp
     CVE-2024-0746: Crash when listing printers on Linux
     CVE-2024-0747: Bypass of Content Security Policy when directive
                    unsafe-inline was set
     CVE-2024-0749: Phishing site popup could show local origin in address bar
     CVE-2024-0750: Potential permissions request bypass via clickjacking
     CVE-2024-0751: Privilege escalation through devtools
     CVE-2024-0753: HSTS policy on subdomain could bypass policy of upper domain
     CVE-2024-0755: Memory safety bugs fixed in Firefox 122, Firefox ESR 115.7,
                    and Thunderbird 115.7

tinyproxy (1.11.1-2.1+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2023-49606 (Closes: #1070395)

tomcat10 (10.1.6-1+deb12u2) bookworm-security; urgency=high
 .
   * Team upload.
   * Fix CVE-2023-46589:
     Improper Input Validation vulnerability in Apache Tomcat. Tomcat 10 did not
     correctly parse HTTP trailer headers. A trailer header that exceeded the
     header size limit could cause Tomcat to treat a single request as multiple
     requests leading to the possibility of request smuggling when behind a
     reverse proxy.
   * Fix CVE-2024-24549:
     Denial of Service due to improper input validation vulnerability for
     HTTP/2. When processing an HTTP/2 request, if the request exceeded any of
     the configured limits for headers, the associated HTTP/2 stream was not
     reset until after all of the headers had been processed.
   * Fix CVE-2024-23672:
     Denial of Service via incomplete cleanup vulnerability. It was possible for
     WebSocket clients to keep WebSocket connections open leading to increased
     resource consumption.

trafficserver (9.2.4+ds-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 9.2.4+ds
   * Refresh d/patches for 9.2.4 release
   * CVEs fix (Closes: #1068417)
     - CVE-2024-31309: HTTP/2 CONTINUATION DoS attack

tryton-client (6.0.26-1+deb12u1) bookworm; urgency=medium
 .
   * Add 04-send-gzip-only-with-session.patch.
     To prevent zip bomb attacks the server accepts since
     https://foss.heptapod.net/tryton/tryton/-/commit/1923117e935de62276352585185ced6d854bcb3d
     only compressed content from authenticated users.
     This patch allows only to send gzip content within a session.

tryton-server (6.0.29-2+deb12u2) bookworm; urgency=medium
 .
   * Add 03_deny_compressed_content_from_unauth_request.patch.
     This patch fixes the vulnerabilty to zip bomb attacks via
     decoded gzip content from unauthenticated users.
     https://discuss.tryton.org/t/security-release-for-issue-13142/7196
   * Refresh 01_avoid_call_to_pypi.patch.

u-boot (2023.01+dfsg-2+deb12u1) bookworm; urgency=medium
 .
   * debian/patches: Apply fix from upstream for orion-timer, affecting
     sheevaplug and related platforms. (Closes: #1061137)

uif (1.99.0-4.1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0003_uif.pl-Support-VLAN-interfaces-allow-.-in-network-in.patch.
       Support VLAN interfaces in config's interfaces{} section. (Closes:
       #1053962).

unbound (1.17.1-2+deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Address DNSSEC protocol vulnerabilities (Closes: #1063845)
     - Fix CVE-2023-50387, DNSSEC verification complexity can be exploited to
       exhaust CPU resources and stall DNS resolvers.
     - Fix CVE-2023-50868, NSEC3 closest encloser proof can exhaust CPU.

util-linux (2.38.1-5+deb12u1) bookworm-security; urgency=medium
 .
   * Add upstream patches to fix CVE-2024-28085 (Closes: #1067849)
   * No longer install wall, write setgid tty to address CVE-2024-28085
   * d/gbp.conf: update for stable release

vlc (3.0.21-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 3.0.21
     - Fix security integer overflow in MMS module
vlc (3.0.21-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream version 3.0.21
     - Fix security integer overflow in MMS module
vlc (3.0.20-4) unstable; urgency=medium
 .
   [ Bastian Germann ]
   * Drop OMX support (see #1065623)
   * Drop kFreeBSD support
 .
   [ Sebastian Ramacher ]
   * debian/:
     - Complete omxil removal
     - Complete kfreebsd support removal
   * debian/control: Bump Standards-Version
vlc (3.0.20-3) unstable; urgency=medium
 .
   * debian/control: Add missing dpkg-dev BD for time_t
vlc (3.0.20-2) unstable; urgency=medium
 .
   * debian/patches: Bump module ABI for time_t transition
vlc (3.0.20-1) unstable; urgency=medium
 .
   * New upstream version 3.0.20.

wayfire (0.7.4-3+deb12u1) bookworm; urgency=medium
 .
   * debian/control: Add missing -dev package dependency for
     wayfire-dev package. (Closes: #1064011)

webkit2gtk (2.44.2-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
   * debian/rules:
     - Enable ENABLE_SOUP2, USE_OLD_DOC_PKG and USE_OLD_JSCBIN_PKG to keep
       using the old package names.
   * debian/control.in:
     - Replace gobject-introspection-bin with gobject-introspection.
     - Make the -dev packages depend on the gir packages.
     - Build depend on ccache.
webkit2gtk (2.44.2-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
   * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
     clang instead. Keep using gcc in other architectures because clang has
     problems in at least i386, arm64 and mipsel (see #1010329 and
     #1016811).
     - debian/rules: Tell CMake to use clang.
     - debian/control.in: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and
       USE_PREBUILT_DOCS=YES.
     - debian/control.in: Remove build dependency on ccache.
   * debian/rules:
     - Disable USE_AVI, USE_GBM, USE_GSTREAMER_TRANSCODER and USE_JPEGXL
       due to missing or additional build dependencies.
     - Enable USE_OLD_DOC_PKG and USE_OLD_JSCBIN_PKG to keep using the old
       package names.
   * debian/control.in:
     - Remove build dependencies on libgstreamer-plugins-bad1.0-dev,
       libjxl-dev and libavif-dev.
     - Make the -dev packages depend on the gir packages.
     - Replace gobject-introspection-bin with gobject-introspection.
   * debian/patches/disable-dmabuf.patch:
     - Disable the DMABuf renderer in all cases in bullseye
       (see #1054101).
webkit2gtk (2.44.1-1) unstable; urgency=medium
 .
   * New upstream release.
   * Re-enable WebGL on armel.
     - debian/rules: stop using -DENABLE_WEBGL=OFF on armel, powerpc and
       sh4.
   * debian/patches/fix-ftbfs-i386.patch:
     - Drop this patch, it is included in this release.
webkit2gtk (2.44.1-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
   * debian/rules:
     - Enable ENABLE_SOUP2, USE_OLD_DOC_PKG and USE_OLD_JSCBIN_PKG to keep
       using the old package names.
   * debian/control.in:
     - Replace gobject-introspection-bin with gobject-introspection.
     - Make the -dev packages depend on the gir packages.
     - Build depend on ccache.
webkit2gtk (2.44.1-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
   * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
     clang instead. Keep using gcc in other architectures because clang has
     problems in at least i386, arm64 and mipsel (see #1010329 and
     #1016811).
     - debian/rules: Tell CMake to use clang.
     - debian/control.in: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and
       USE_PREBUILT_DOCS=YES.
     - debian/control.in: Remove build dependency on ccache.
   * debian/rules:
     - Disable USE_AVI, USE_GBM, USE_GSTREAMER_TRANSCODER and USE_JPEGXL
       due to missing or additional build dependencies.
     - Enable USE_OLD_DOC_PKG and USE_OLD_JSCBIN_PKG to keep using the old
       package names.
   * debian/control.in:
     - Remove build dependencies on libgstreamer-plugins-bad1.0-dev,
       libjxl-dev and libavif-dev.
     - Make the -dev packages depend on the gir packages.
     - Replace gobject-introspection-bin with gobject-introspection.
   * debian/patches/disable-dmabuf.patch:
     - Disable the DMABuf renderer in all cases in bullseye
       (see #1054101).
webkit2gtk (2.44.0-2) unstable; urgency=high
 .
   * The WebKitGTK security advisory WSA-2024-0002 lists the following
     security fixes in the latest versions of WebKitGTK:
     - CVE-2024-23252, CVE-2024-23254, CVE-2024-23263, CVE-2024-23280,
       CVE-2024-23284, CVE-2023-42950, CVE-2023-42956, CVE-2023-42843
       (fixed in 2.44.0).
   * debian/patches/fix-ftbfs-riscv64.patch:
     - Treat riscv64 as an unknown CPU to fix a FTBFS in JavaScriptCore
       (webkit bug #271371).
webkit2gtk (2.44.0-1) unstable; urgency=medium
 .
   * New upstream release.
   * Stop building the 4.0 API packages.
     - debian/rules: Set ENABLE_SOUP2=NO
     - debian/control.in: Remove build dependency on ccache.
   * Replace debian/patches/fix-ftbfs-i386.patch with a new patch for this
     version.
   * debian/control.in:
     - Build depend on libsoup-3.0-doc instead of libsoup2.4-doc.
     - Enable the bubblewrap sandbox only in the architectures where
       libseccomp is working (Closes: #1067643).
   * Bring all changes from the 2.43 (experimental) branch.
   * debian/gbp.conf:
     - Update upstream branch name.
   * debian/control.in:
     - Add build dependency on libdrm-dev.
     - Replace gobject-introspection with gobject-introspection-bin.
     - Remove build dependendency on libwpebackend-fdo, upstream no longer
       uses it.
     - And missing ${gir:Depends} and ${gir:Provides} to the -dev and
       gir1.2 packages.
   * debian/rules:
     - GTK4 is now the default, pass -DUSE_GTK4=OFF to the GTK3 builds.
     - Build with -DUSE_LIBDRM=OFF in the Hurd.
     - Build with -DUSE_LIBBACKTRACE=OFF.
   * Use the documentation from the 6.0 API build and update path of
     installed docs, upstream no longer uses the gtk-doc dir (see webkit
     bug #265133).
   * Rename libwebkit2gtk-4.0-doc to libwebkitgtk-doc and
     libjavascriptcoregtk-4.0-bin to libjavascriptcoregtk-bin.
     - debian/control.in: add the necessary Conflicts / Breaks / Replaces.
     - debian/control-doc.in: control file for the transitional package.
     - debian/control-jscbin.in: control file for the transitional package.
     - Rename debian/libwebkit2gtk-4.0-doc.* -> libwebkitgtk-doc.*
     - Remove debian/libjavascriptcoregtk-4.0-bin.*
     - debian/rules: Add the USE_OLD_DOC_PKG and USE_OLD_JSCBIN_PKG
       variables and the logic to decide which packages to build.
   * Refresh debian/patches/disable-dmabuf-nvidia.patch.
   * debian/source/lintian-overrides:
     - Update source-is-missing overrides.
   * debian/copyright:
     - Update copyright information of all files.
webkit2gtk (2.43.4-2) experimental; urgency=medium
 .
   * debian/control.in:
     - Add build dependency on libdrm-dev.
     - Replace gobject-introspection with gobject-introspection-bin.
   * debian/patches/fix-ftbfs-riscv64.patch:
     - Drop this patch, the problem has been fixed upstream in commit
       6b46c24db814.
   * debian/rules:
     - Don't use ccache on the gtk4 build since it won't reuse any results
       from the gtk3 builds.
     - Don't copy CFLAGS to CXXFLAGS: -Werror=implicit-function-declaration
       (default since dpkg 1.22.6) causes a FTBFS when added to the latter
       (see #1066411).
   * Rename libwebkit2gtk-4.0-doc to libwebkitgtk-doc and
     libjavascriptcoregtk-4.0-bin to libjavascriptcoregtk-bin.
     - debian/control.in: add the necessary Conflicts / Breaks / Replaces.
     - debian/control-doc.in: control file for the transitional package.
     - debian/control-jscbin.in: control file for the transitional package.
     - Rename debian/libwebkit2gtk-4.0-doc.* -> libwebkitgtk-doc.*
     - Remove debian/libjavascriptcoregtk-4.0-bin.*
     - debian/rules: Add the USE_OLD_DOC_PKG and USE_OLD_JSCBIN_PKG
       variables and the logic to decide which packages to build.
webkit2gtk (2.43.4-1) experimental; urgency=medium
 .
   * New upstream development release.
   * debian/rules:
     - Remove last empty line from debian/control.
     - Build with -DUSE_LIBDRM=OFF in the Hurd.
   * debian/control.in:
     - And missing ${gir:Depends} and ${gir:Provides} to the -dev and
       gir1.2 packages.
     - Remove build dependencies on libseccomp-dev, bwrap, xdg-dbus-proxy
       and ccache on m68k (Closes: #1061879).
   * Stop overriding the typelib-package-name-does-not-match and
     gir-missing-typelib-dependency lintian warnings, they're not happening
     since the aforementioned changes to debian/control.
   * debian/copyright:
     - Update copyright information of all files.
   * debian/source/lintian-overrides:
     - Update source-is-missing overrides.
webkit2gtk (2.43.3-1) experimental; urgency=medium
 .
   * New upstream development release.
   * debian/patches/fix-ftbfs-riscv64.patch:
     - Fix FTBFS in riscv64 (#1058034).
   * debian/copyright:
     - Update copyright information of all files.
webkit2gtk (2.43.2-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Drop support for some arches that are unsupported or haven't worked in
     a long time: ia64, m68k, kfreebsd, mips and mipsel.
   * debian/control.in, debian/rules:
     - Remove build dependendency on libwpebackend-fdo, upstream no longer
       uses it.
   * debian/copyright:
     - Update copyright information of all files.
   * Use the documentation from the 6.0 API build and update path of
     installed docs, upstream no longer uses the gtk-doc dir (see webkit
     bug #265133).
webkit2gtk (2.43.1-1) experimental; urgency=medium
 .
   * New upstream development release.
   * debian/watch, debian/gbp.conf:
     - Update for 2.43.x packages in experimental.
   * Refresh all patches.
     - Remove disable-dmabuf-nvidia.patch.
     - Remove fix-ftbfs-m68k.patch (this hasn't worked in a long time).
   * debian/control.in:
     - Set the debhelper compatibility level to 13.
   * debian/rules:
     - GTK4 is now the default, pass -DUSE_GTK4=OFF to the GTK3 builds.
     - Build with -DUSE_LIBBACKTRACE=OFF.
     - Stop overriding dh_missing, no longer needed with dh compat 13.
   * debian/copyright:
     - Update copyright information of all files.
   * debian/source/lintian-overrides:
     - Update source-is-missing overrides.
webkit2gtk (2.42.5-2) unstable; urgency=medium
 .
   * debian/rules:
     - Don't copy CFLAGS to CXXFLAGS: -Werror=implicit-function-declaration
       (default since dpkg 1.22.6) causes a FTBFS when added to the latter
       (Closes: #1066411).
     - Don't use ccache on the gtk4 build since it won't reuse any results
       from the gtk3 builds.
webkit2gtk (2.42.5-1) unstable; urgency=high
 .
   * New upstream release.
   * debian/copyright:
     - Update copyright information of all files.
   * debian/rules:
     - Remove last empty line from debian/control.
   * debian/patches/fix-ftbfs-i386.patch:
     - i386 build fix.
webkit2gtk (2.42.5-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * The WebKitGTK security advisory WSA-2024-0001 lists the following
     security fixes in the latest versions of WebKitGTK:
     - CVE-2023-42833 (fixed in 2.38.0).
     - CVE-2014-1745 (fixed in 2.42.0).
     - CVE-2023-40414 (fixed in 2.42.1).
     - CVE-2024-23222, CVE-2024-23213, CVE-2024-23206 (fixed in 2.42.5).
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
webkit2gtk (2.42.5-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
   * The WebKitGTK security advisory WSA-2024-0001 lists the following
     security fixes in the latest versions of WebKitGTK:
     - CVE-2023-42833 (fixed in 2.38.0).
     - CVE-2014-1745 (fixed in 2.42.0).
     - CVE-2023-40414 (fixed in 2.42.1).
     - CVE-2024-23222, CVE-2024-23213, CVE-2024-23206 (fixed in 2.42.5).
   * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
     clang instead. Keep using gcc in other architectures because clang has
     problems in at least i386, arm64 and mipsel (see #1010329 and
     #1016811).
     - debian/rules: Tell CMake to use clang.
     - debian/control.in: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and
       USE_PREBUILT_DOCS=YES.
     - debian/control.in: Remove build dependency on ccache.
   * debian/rules:
     - Disable USE_AVI, USE_GBM, USE_GSTREAMER_TRANSCODER and USE_JPEGXL
       due to missing or additional build dependencies.
   * debian/control.in:
     - Don't require version 1.20.0 of libgstreamer-plugins-bad1.0-dev.
     - Remove build dependency on libjxl-dev.
   * debian/patches/disable-dmabuf.patch:
     - Disable the DMABuf renderer in all cases in bullseye
       (see #1054101).
webkit2gtk (2.42.4-1) unstable; urgency=high
 .
   * New upstream release.
webkit2gtk (2.42.4-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
     - Fixes CVE-2023-42883.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
webkit2gtk (2.42.4-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
     - Fixes CVE-2023-42883.
   * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
     clang instead. Keep using gcc in other architectures because clang has
     problems in at least i386, arm64 and mipsel (see #1010329 and
     #1016811).
     - debian/rules: Tell CMake to use clang.
     - debian/control.in: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and
       USE_PREBUILT_DOCS=YES.
     - debian/control.in: Remove build dependency on ccache.
   * debian/rules:
     - Disable USE_AVI, USE_GBM, USE_GSTREAMER_TRANSCODER and USE_JPEGXL
       due to missing or additional build dependencies.
   * debian/control.in:
     - Don't require version 1.20.0 of libgstreamer-plugins-bad1.0-dev.
     - Remove build dependency on libjxl-dev.
   * debian/patches/disable-dmabuf.patch:
     - Disable the DMABuf renderer in all cases in bullseye
       (see #1054101).
webkit2gtk (2.42.3-1) unstable; urgency=high
 .
   * New upstream release.
   * Drop tweaks for some arches that are unsupported or haven't worked in
     a long time: ia64, m68k, kfreebsd, mips and mipsel.
   * Refresh all patches.
   * debian/control.in:
     - Set the debhelper compatibility level to 13.
   * debian/rules:
     - Stop overriding dh_missing, no longer needed with dh compat 13.
webkit2gtk (2.42.3-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
     - Fixes CVE-2023-42916 and CVE-2023-42917.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
webkit2gtk (2.42.3-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
     - Fixes CVE-2023-42916 and CVE-2023-42917.
   * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
     clang instead. Keep using gcc in other architectures because clang has
     problems in at least i386, arm64 and mipsel (see #1010329 and
     #1016811).
     - debian/rules: Tell CMake to use clang.
     - debian/control.in: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and
       USE_PREBUILT_DOCS=YES.
     - debian/control.in: Remove build dependency on ccache.
   * debian/rules:
     - Disable USE_AVI, USE_GBM, USE_GSTREAMER_TRANSCODER and USE_JPEGXL
       due to missing or additional build dependencies.
   * debian/control.in:
     - Don't require version 1.20.0 of libgstreamer-plugins-bad1.0-dev.
     - Remove build dependency on libjxl-dev.
   * debian/patches/disable-dmabuf.patch:
     - Disable the DMABuf renderer in all cases in bullseye
       (see #1054101).
webkit2gtk (2.42.2-1) unstable; urgency=high
 .
   * New upstream release.
   * debian/copyright:
     - Update copyright information of all files.

what-is-python (13+deb12u1) bookworm; urgency=medium
 .
   [ Andreas Beckmann ]
   * Non-maintainer upload.
   * Bump version to 3.11.2.
   * Fix version mangling for NMU, stable or backports uploads, i.e. versions
     with a suffix starting with a non-digit ([.+~]).
 .
   [ Matthias Klose ]
   * python-is-python3: Add breaks/replaces to python-dev-is-python2.
     Closes: #1034995.

wordpress (6.1.6+dfsg1-0+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload.
   * Fix CVE-2024-31210, CVE-2023-39999, CVE-2023-38000, CVE-2023-5561,
     CVE-2023-2745.
     Several security vulnerabilities have been discovered in Wordpress, a
     popular content management framework, which may lead to exposure of
     sensitive information to an unauthorized actor in WordPress or allowing
     unauthenticated attackers to discern the email addresses of users who have
     published public posts on an affected website via an Oracle style attack.
     Furthermore this update resolves a possible cross-site-scripting
     vulnerability, a PHP File Upload bypass via the plugin installer and a
     possible remote code execution vulnerability which requires an attacker to
     control all the properties of a deserialized object though.

wpa (2:2.10-12+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload on behalf of the Security Team.
   * Fix CVE-2023-52160 (Closes: #1064061):
     The implementation of PEAP in wpa_supplicant allows
     authentication bypass. For a successful attack,
     wpa_supplicant must be configured to not verify
     the network's TLS certificate during Phase 1
     authentication, and an eap_peap_decrypt vulnerability
     can then be abused to skip Phase 2 authentication.
     The attack vector is sending an EAP-TLV Success packet
     instead of starting Phase 2. This allows an adversary
     to impersonate Enterprise Wi-Fi networks.

xorg-server (2:21.1.7-3+deb12u7) bookworm-security; urgency=high
 .
   * render: Avoid possible double-free in ProcRenderAddGlyphs()
xorg-server (2:21.1.7-3+deb12u6) bookworm-security; urgency=high
 .
   * CVE-2024-31080: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
   * CVE-2024-31081: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice
   * CVE-2024-31082: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap
   * CVE-2024-31083: User-after-free in ProcRenderAddGlyphs

xscreensaver (6.06+dfsg1-3+deb12u1) bookworm; urgency=medium
 .
   * Add debian/patches/91_remove_version_upgrade_warnings.patch:
     - Avoid upstream upgrade warning appearing from 2024-05-04
     (Closes: #1069617)

yapet (2.6-2~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm
 .
 yapet (2.6-2) unstable; urgency=medium
 .
   * crypt/blowfish: Remove EVP_CIPHER_CTX_set_key_length() (Closes: #1064724)
   * crypt/aes: Remove EVP_CIPHER_CTX_set_key_length()

yard (0.9.28-2+deb12u2) bookworm-security; urgency=high
 .
   * Update patch for CVE-2024-27285
     (Closes: #1065118)
yard (0.9.28-2+deb12u1) bookworm-security; urgency=high
 .
   * Add upstream patch to fix XSS vulnerability in frames.html
     [CVE-2024-27285]

=======================================
Sat, 10 Feb 2024 - Debian 12.5 released
=======================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:34:14 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
btrfs-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
btrfs-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
cdrom-core-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
cdrom-core-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
cdrom-core-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
crc-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
crc-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
crc-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
crypto-dm-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
crypto-dm-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
crypto-dm-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
crypto-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
crypto-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
crypto-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
dasd-extra-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
dasd-extra-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
dasd-extra-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
dasd-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
dasd-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
dasd-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
ext4-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
ext4-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
ext4-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
f2fs-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
f2fs-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
f2fs-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
fat-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
fat-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
fat-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
fuse-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
fuse-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
fuse-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
isofs-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
isofs-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
isofs-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
kernel-image-6.1.0-13-s390x-di |   6.1.55-1 | s390x
kernel-image-6.1.0-16-s390x-di |   6.1.67-1 | s390x
kernel-image-6.1.0-17-s390x-di |   6.1.69-1 | s390x
linux-headers-6.1.0-13-s390x |   6.1.55-1 | s390x
linux-headers-6.1.0-16-s390x |   6.1.67-1 | s390x
linux-headers-6.1.0-17-s390x |   6.1.69-1 | s390x
linux-image-6.1.0-13-s390x |   6.1.55-1 | s390x
linux-image-6.1.0-13-s390x-dbg |   6.1.55-1 | s390x
linux-image-6.1.0-16-s390x |   6.1.67-1 | s390x
linux-image-6.1.0-16-s390x-dbg |   6.1.67-1 | s390x
linux-image-6.1.0-17-s390x |   6.1.69-1 | s390x
linux-image-6.1.0-17-s390x-dbg |   6.1.69-1 | s390x
loop-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
loop-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
loop-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
md-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
md-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
md-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
mtd-core-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
mtd-core-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
mtd-core-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
multipath-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
multipath-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
multipath-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
nbd-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
nbd-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
nbd-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
nic-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
nic-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
nic-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
scsi-core-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
scsi-core-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
scsi-core-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
scsi-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
scsi-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
scsi-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
udf-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
udf-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
udf-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x
xfs-modules-6.1.0-13-s390x-di |   6.1.55-1 | s390x
xfs-modules-6.1.0-16-s390x-di |   6.1.67-1 | s390x
xfs-modules-6.1.0-17-s390x-di |   6.1.69-1 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:35:04 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
affs-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
affs-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
affs-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
affs-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
affs-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
ata-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
ata-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
ata-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
ata-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
ata-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
ata-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
btrfs-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
btrfs-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
btrfs-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
btrfs-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
btrfs-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
btrfs-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
cdrom-core-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
cdrom-core-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
cdrom-core-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
cdrom-core-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
cdrom-core-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
cdrom-core-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
crc-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
crc-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
crc-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
crc-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
crc-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
crc-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
crypto-dm-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
crypto-dm-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
crypto-dm-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
crypto-dm-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
crypto-dm-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
crypto-dm-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
crypto-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
crypto-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
crypto-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
crypto-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
crypto-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
crypto-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
event-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
event-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
event-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
event-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
event-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
event-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
ext4-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
ext4-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
ext4-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
ext4-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
ext4-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
ext4-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
f2fs-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
f2fs-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
f2fs-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
f2fs-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
f2fs-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
f2fs-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
fat-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
fat-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
fat-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
fat-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
fat-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
fat-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
fb-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
fb-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
fb-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
fb-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
fb-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
fb-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
firewire-core-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
firewire-core-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
firewire-core-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
firewire-core-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
firewire-core-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
firewire-core-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
fuse-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
fuse-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
fuse-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
fuse-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
fuse-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
fuse-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
input-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
input-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
input-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
input-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
input-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
input-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
isofs-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
isofs-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
isofs-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
isofs-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
isofs-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
isofs-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
jfs-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
jfs-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
jfs-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
jfs-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
jfs-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
jfs-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
kernel-image-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
kernel-image-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
kernel-image-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
kernel-image-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
kernel-image-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
kernel-image-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
linux-headers-6.1.0-13-4kc-malta |   6.1.55-1 | mipsel
linux-headers-6.1.0-13-mips32r2el |   6.1.55-1 | mipsel
linux-headers-6.1.0-16-4kc-malta |   6.1.67-1 | mipsel
linux-headers-6.1.0-16-mips32r2el |   6.1.67-1 | mipsel
linux-headers-6.1.0-17-4kc-malta |   6.1.69-1 | mipsel
linux-headers-6.1.0-17-mips32r2el |   6.1.69-1 | mipsel
linux-image-6.1.0-13-4kc-malta |   6.1.55-1 | mipsel
linux-image-6.1.0-13-4kc-malta-dbg |   6.1.55-1 | mipsel
linux-image-6.1.0-13-mips32r2el |   6.1.55-1 | mipsel
linux-image-6.1.0-13-mips32r2el-dbg |   6.1.55-1 | mipsel
linux-image-6.1.0-16-4kc-malta |   6.1.67-1 | mipsel
linux-image-6.1.0-16-4kc-malta-dbg |   6.1.67-1 | mipsel
linux-image-6.1.0-16-mips32r2el |   6.1.67-1 | mipsel
linux-image-6.1.0-16-mips32r2el-dbg |   6.1.67-1 | mipsel
linux-image-6.1.0-17-4kc-malta |   6.1.69-1 | mipsel
linux-image-6.1.0-17-4kc-malta-dbg |   6.1.69-1 | mipsel
linux-image-6.1.0-17-mips32r2el |   6.1.69-1 | mipsel
linux-image-6.1.0-17-mips32r2el-dbg |   6.1.69-1 | mipsel
loop-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
loop-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
loop-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
loop-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
loop-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
loop-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
md-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
md-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
md-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
md-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
md-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
md-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
minix-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
minix-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
minix-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
minix-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
minix-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
minix-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
mmc-core-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
mmc-core-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
mmc-core-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
mmc-core-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
mmc-core-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
mmc-core-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
mmc-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
mmc-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
mmc-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
mmc-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
mmc-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
mmc-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
mouse-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
mouse-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
mouse-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
mouse-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
mouse-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
mouse-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
multipath-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
multipath-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
multipath-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
multipath-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
multipath-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
multipath-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
nbd-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
nbd-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
nbd-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
nbd-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
nbd-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
nbd-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
nfs-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
nfs-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
nfs-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
nfs-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
nfs-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
nfs-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
nic-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
nic-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
nic-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
nic-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
nic-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
nic-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
nic-shared-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
nic-shared-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
nic-shared-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
nic-shared-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
nic-shared-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
nic-shared-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
nic-usb-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
nic-usb-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
nic-usb-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
nic-usb-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
nic-usb-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
nic-usb-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
nic-wireless-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
nic-wireless-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
nic-wireless-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
nic-wireless-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
nic-wireless-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
nic-wireless-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
pata-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
pata-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
pata-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
pata-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
pata-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
pata-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
ppp-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
ppp-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
ppp-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
ppp-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
ppp-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
ppp-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
sata-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
sata-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
sata-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
sata-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
sata-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
sata-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
scsi-core-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
scsi-core-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
scsi-core-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
scsi-core-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
scsi-core-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
scsi-core-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
scsi-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
scsi-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
scsi-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
scsi-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
scsi-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
scsi-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
scsi-nic-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
scsi-nic-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
scsi-nic-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
scsi-nic-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
scsi-nic-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
scsi-nic-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
sound-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
sound-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
sound-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
sound-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
sound-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
sound-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
speakup-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
speakup-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
speakup-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
speakup-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
speakup-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
speakup-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
squashfs-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
squashfs-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
squashfs-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
squashfs-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
squashfs-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
squashfs-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
udf-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
udf-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
udf-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
udf-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
udf-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
udf-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
usb-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
usb-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
usb-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
usb-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
usb-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
usb-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
usb-serial-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
usb-serial-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
usb-serial-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
usb-serial-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
usb-serial-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
usb-serial-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
usb-storage-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
usb-storage-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
usb-storage-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
usb-storage-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
usb-storage-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
usb-storage-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel
xfs-modules-6.1.0-13-4kc-malta-di |   6.1.55-1 | mipsel
xfs-modules-6.1.0-13-mips32r2el-di |   6.1.55-1 | mipsel
xfs-modules-6.1.0-16-4kc-malta-di |   6.1.67-1 | mipsel
xfs-modules-6.1.0-16-mips32r2el-di |   6.1.67-1 | mipsel
xfs-modules-6.1.0-17-4kc-malta-di |   6.1.69-1 | mipsel
xfs-modules-6.1.0-17-mips32r2el-di |   6.1.69-1 | mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:35:16 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
ata-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
ata-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
btrfs-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
btrfs-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
btrfs-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
cdrom-core-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
cdrom-core-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
cdrom-core-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
crc-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
crc-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
crc-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
crypto-dm-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
crypto-dm-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
crypto-dm-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
crypto-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
crypto-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
crypto-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
event-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
event-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
event-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
ext4-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
ext4-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
ext4-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
f2fs-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
f2fs-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
f2fs-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
fancontrol-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
fancontrol-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
fancontrol-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
fat-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
fat-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
fat-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
fb-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
fb-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
fb-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
firewire-core-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
firewire-core-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
firewire-core-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
fuse-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
fuse-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
fuse-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
hypervisor-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
hypervisor-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
hypervisor-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
i2c-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
i2c-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
i2c-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
input-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
input-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
input-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
isofs-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
isofs-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
isofs-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
jfs-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
jfs-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
jfs-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
kernel-image-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
kernel-image-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
kernel-image-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
linux-headers-6.1.0-13-powerpc64le |   6.1.55-1 | ppc64el
linux-headers-6.1.0-16-powerpc64le |   6.1.67-1 | ppc64el
linux-headers-6.1.0-17-powerpc64le |   6.1.69-1 | ppc64el
linux-image-6.1.0-13-powerpc64le |   6.1.55-1 | ppc64el
linux-image-6.1.0-13-powerpc64le-dbg |   6.1.55-1 | ppc64el
linux-image-6.1.0-16-powerpc64le |   6.1.67-1 | ppc64el
linux-image-6.1.0-16-powerpc64le-dbg |   6.1.67-1 | ppc64el
linux-image-6.1.0-17-powerpc64le |   6.1.69-1 | ppc64el
linux-image-6.1.0-17-powerpc64le-dbg |   6.1.69-1 | ppc64el
loop-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
loop-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
loop-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
md-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
md-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
md-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
mouse-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
mouse-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
mouse-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
mtd-core-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
mtd-core-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
mtd-core-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
multipath-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
multipath-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
multipath-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
nbd-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
nbd-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
nbd-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
nic-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
nic-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
nic-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
nic-shared-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
nic-shared-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
nic-shared-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
nic-usb-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
nic-usb-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
nic-usb-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
nic-wireless-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
nic-wireless-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
nic-wireless-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
ppp-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
ppp-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
ppp-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
sata-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
sata-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
sata-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
scsi-core-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
scsi-core-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
scsi-core-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
scsi-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
scsi-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
scsi-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
scsi-nic-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
scsi-nic-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
scsi-nic-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
serial-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
serial-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
serial-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
squashfs-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
squashfs-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
squashfs-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
udf-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
udf-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
udf-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
uinput-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
uinput-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
uinput-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
usb-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
usb-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
usb-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
usb-serial-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
usb-serial-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
usb-serial-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
usb-storage-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
usb-storage-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
usb-storage-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el
xfs-modules-6.1.0-13-powerpc64le-di |   6.1.55-1 | ppc64el
xfs-modules-6.1.0-16-powerpc64le-di |   6.1.67-1 | ppc64el
xfs-modules-6.1.0-17-powerpc64le-di |   6.1.69-1 | ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:35:29 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-13-amd64 |   6.1.55-1 | amd64
linux-headers-6.1.0-13-cloud-amd64 |   6.1.55-1 | amd64
linux-headers-6.1.0-13-rt-amd64 |   6.1.55-1 | amd64
linux-headers-6.1.0-16-amd64 |   6.1.67-1 | amd64
linux-headers-6.1.0-16-cloud-amd64 |   6.1.67-1 | amd64
linux-headers-6.1.0-16-rt-amd64 |   6.1.67-1 | amd64
linux-headers-6.1.0-17-amd64 |   6.1.69-1 | amd64
linux-headers-6.1.0-17-cloud-amd64 |   6.1.69-1 | amd64
linux-headers-6.1.0-17-rt-amd64 |   6.1.69-1 | amd64
linux-image-6.1.0-13-amd64-dbg |   6.1.55-1 | amd64
linux-image-6.1.0-13-amd64-unsigned |   6.1.55-1 | amd64
linux-image-6.1.0-13-cloud-amd64-dbg |   6.1.55-1 | amd64
linux-image-6.1.0-13-cloud-amd64-unsigned |   6.1.55-1 | amd64
linux-image-6.1.0-13-rt-amd64-dbg |   6.1.55-1 | amd64
linux-image-6.1.0-13-rt-amd64-unsigned |   6.1.55-1 | amd64
linux-image-6.1.0-16-amd64-dbg |   6.1.67-1 | amd64
linux-image-6.1.0-16-amd64-unsigned |   6.1.67-1 | amd64
linux-image-6.1.0-16-cloud-amd64-dbg |   6.1.67-1 | amd64
linux-image-6.1.0-16-cloud-amd64-unsigned |   6.1.67-1 | amd64
linux-image-6.1.0-16-rt-amd64-dbg |   6.1.67-1 | amd64
linux-image-6.1.0-16-rt-amd64-unsigned |   6.1.67-1 | amd64
linux-image-6.1.0-17-amd64-dbg |   6.1.69-1 | amd64
linux-image-6.1.0-17-amd64-unsigned |   6.1.69-1 | amd64
linux-image-6.1.0-17-cloud-amd64-dbg |   6.1.69-1 | amd64
linux-image-6.1.0-17-cloud-amd64-unsigned |   6.1.69-1 | amd64
linux-image-6.1.0-17-rt-amd64-dbg |   6.1.69-1 | amd64
linux-image-6.1.0-17-rt-amd64-unsigned |   6.1.69-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:35:46 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-13-arm64 |   6.1.55-1 | arm64
linux-headers-6.1.0-13-cloud-arm64 |   6.1.55-1 | arm64
linux-headers-6.1.0-13-rt-arm64 |   6.1.55-1 | arm64
linux-headers-6.1.0-16-arm64 |   6.1.67-1 | arm64
linux-headers-6.1.0-16-cloud-arm64 |   6.1.67-1 | arm64
linux-headers-6.1.0-16-rt-arm64 |   6.1.67-1 | arm64
linux-headers-6.1.0-17-arm64 |   6.1.69-1 | arm64
linux-headers-6.1.0-17-cloud-arm64 |   6.1.69-1 | arm64
linux-headers-6.1.0-17-rt-arm64 |   6.1.69-1 | arm64
linux-image-6.1.0-13-arm64-dbg |   6.1.55-1 | arm64
linux-image-6.1.0-13-arm64-unsigned |   6.1.55-1 | arm64
linux-image-6.1.0-13-cloud-arm64-dbg |   6.1.55-1 | arm64
linux-image-6.1.0-13-cloud-arm64-unsigned |   6.1.55-1 | arm64
linux-image-6.1.0-13-rt-arm64-dbg |   6.1.55-1 | arm64
linux-image-6.1.0-13-rt-arm64-unsigned |   6.1.55-1 | arm64
linux-image-6.1.0-16-arm64-dbg |   6.1.67-1 | arm64
linux-image-6.1.0-16-arm64-unsigned |   6.1.67-1 | arm64
linux-image-6.1.0-16-cloud-arm64-dbg |   6.1.67-1 | arm64
linux-image-6.1.0-16-cloud-arm64-unsigned |   6.1.67-1 | arm64
linux-image-6.1.0-16-rt-arm64-dbg |   6.1.67-1 | arm64
linux-image-6.1.0-16-rt-arm64-unsigned |   6.1.67-1 | arm64
linux-image-6.1.0-17-arm64-dbg |   6.1.69-1 | arm64
linux-image-6.1.0-17-arm64-unsigned |   6.1.69-1 | arm64
linux-image-6.1.0-17-cloud-arm64-dbg |   6.1.69-1 | arm64
linux-image-6.1.0-17-cloud-arm64-unsigned |   6.1.69-1 | arm64
linux-image-6.1.0-17-rt-arm64-dbg |   6.1.69-1 | arm64
linux-image-6.1.0-17-rt-arm64-unsigned |   6.1.69-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:35:56 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
btrfs-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
btrfs-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
cdrom-core-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
cdrom-core-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
cdrom-core-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
crc-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
crc-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
crc-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
crypto-dm-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
crypto-dm-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
crypto-dm-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
crypto-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
crypto-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
crypto-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
event-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
event-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
event-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
ext4-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
ext4-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
ext4-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
f2fs-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
f2fs-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
f2fs-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
fat-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
fat-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
fat-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
fb-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
fb-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
fb-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
fuse-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
fuse-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
fuse-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
input-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
input-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
input-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
ipv6-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
ipv6-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
ipv6-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
isofs-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
isofs-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
isofs-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
jffs2-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
jffs2-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
jffs2-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
jfs-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
jfs-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
jfs-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
kernel-image-6.1.0-13-marvell-di |   6.1.55-1 | armel
kernel-image-6.1.0-16-marvell-di |   6.1.67-1 | armel
kernel-image-6.1.0-17-marvell-di |   6.1.69-1 | armel
leds-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
leds-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
leds-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
linux-headers-6.1.0-13-marvell |   6.1.55-1 | armel
linux-headers-6.1.0-13-rpi |   6.1.55-1 | armel
linux-headers-6.1.0-16-marvell |   6.1.67-1 | armel
linux-headers-6.1.0-16-rpi |   6.1.67-1 | armel
linux-headers-6.1.0-17-marvell |   6.1.69-1 | armel
linux-headers-6.1.0-17-rpi |   6.1.69-1 | armel
linux-image-6.1.0-13-marvell |   6.1.55-1 | armel
linux-image-6.1.0-13-marvell-dbg |   6.1.55-1 | armel
linux-image-6.1.0-13-rpi |   6.1.55-1 | armel
linux-image-6.1.0-13-rpi-dbg |   6.1.55-1 | armel
linux-image-6.1.0-16-marvell |   6.1.67-1 | armel
linux-image-6.1.0-16-marvell-dbg |   6.1.67-1 | armel
linux-image-6.1.0-16-rpi |   6.1.67-1 | armel
linux-image-6.1.0-16-rpi-dbg |   6.1.67-1 | armel
linux-image-6.1.0-17-marvell |   6.1.69-1 | armel
linux-image-6.1.0-17-marvell-dbg |   6.1.69-1 | armel
linux-image-6.1.0-17-rpi |   6.1.69-1 | armel
linux-image-6.1.0-17-rpi-dbg |   6.1.69-1 | armel
loop-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
loop-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
loop-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
md-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
md-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
md-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
minix-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
minix-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
minix-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
mmc-core-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
mmc-core-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
mmc-core-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
mmc-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
mmc-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
mmc-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
mouse-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
mouse-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
mouse-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
mtd-core-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
mtd-core-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
mtd-core-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
mtd-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
mtd-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
mtd-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
multipath-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
multipath-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
multipath-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
nbd-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
nbd-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
nbd-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
nic-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
nic-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
nic-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
nic-shared-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
nic-shared-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
nic-shared-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
nic-usb-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
nic-usb-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
nic-usb-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
ppp-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
ppp-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
ppp-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
sata-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
sata-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
sata-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
scsi-core-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
scsi-core-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
scsi-core-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
squashfs-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
squashfs-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
squashfs-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
udf-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
udf-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
udf-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
uinput-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
uinput-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
uinput-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
usb-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
usb-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
usb-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
usb-serial-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
usb-serial-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
usb-serial-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel
usb-storage-modules-6.1.0-13-marvell-di |   6.1.55-1 | armel
usb-storage-modules-6.1.0-16-marvell-di |   6.1.67-1 | armel
usb-storage-modules-6.1.0-17-marvell-di |   6.1.69-1 | armel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:36:16 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
ata-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
ata-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
btrfs-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
btrfs-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
btrfs-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
cdrom-core-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
cdrom-core-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
cdrom-core-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
crc-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
crc-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
crc-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
crypto-dm-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
crypto-dm-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
crypto-dm-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
crypto-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
crypto-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
crypto-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
efi-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
efi-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
efi-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
event-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
event-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
event-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
ext4-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
ext4-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
ext4-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
f2fs-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
f2fs-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
f2fs-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
fat-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
fat-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
fat-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
fb-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
fb-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
fb-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
fuse-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
fuse-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
fuse-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
i2c-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
i2c-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
i2c-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
input-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
input-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
input-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
isofs-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
isofs-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
isofs-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
jfs-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
jfs-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
jfs-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
kernel-image-6.1.0-13-armmp-di |   6.1.55-1 | armhf
kernel-image-6.1.0-16-armmp-di |   6.1.67-1 | armhf
kernel-image-6.1.0-17-armmp-di |   6.1.69-1 | armhf
leds-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
leds-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
leds-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
linux-headers-6.1.0-13-armmp |   6.1.55-1 | armhf
linux-headers-6.1.0-13-armmp-lpae |   6.1.55-1 | armhf
linux-headers-6.1.0-13-rt-armmp |   6.1.55-1 | armhf
linux-headers-6.1.0-16-armmp |   6.1.67-1 | armhf
linux-headers-6.1.0-16-armmp-lpae |   6.1.67-1 | armhf
linux-headers-6.1.0-16-rt-armmp |   6.1.67-1 | armhf
linux-headers-6.1.0-17-armmp |   6.1.69-1 | armhf
linux-headers-6.1.0-17-armmp-lpae |   6.1.69-1 | armhf
linux-headers-6.1.0-17-rt-armmp |   6.1.69-1 | armhf
linux-image-6.1.0-13-armmp |   6.1.55-1 | armhf
linux-image-6.1.0-13-armmp-dbg |   6.1.55-1 | armhf
linux-image-6.1.0-13-armmp-lpae |   6.1.55-1 | armhf
linux-image-6.1.0-13-armmp-lpae-dbg |   6.1.55-1 | armhf
linux-image-6.1.0-13-rt-armmp |   6.1.55-1 | armhf
linux-image-6.1.0-13-rt-armmp-dbg |   6.1.55-1 | armhf
linux-image-6.1.0-16-armmp |   6.1.67-1 | armhf
linux-image-6.1.0-16-armmp-dbg |   6.1.67-1 | armhf
linux-image-6.1.0-16-armmp-lpae |   6.1.67-1 | armhf
linux-image-6.1.0-16-armmp-lpae-dbg |   6.1.67-1 | armhf
linux-image-6.1.0-16-rt-armmp |   6.1.67-1 | armhf
linux-image-6.1.0-16-rt-armmp-dbg |   6.1.67-1 | armhf
linux-image-6.1.0-17-armmp |   6.1.69-1 | armhf
linux-image-6.1.0-17-armmp-dbg |   6.1.69-1 | armhf
linux-image-6.1.0-17-armmp-lpae |   6.1.69-1 | armhf
linux-image-6.1.0-17-armmp-lpae-dbg |   6.1.69-1 | armhf
linux-image-6.1.0-17-rt-armmp |   6.1.69-1 | armhf
linux-image-6.1.0-17-rt-armmp-dbg |   6.1.69-1 | armhf
loop-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
loop-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
loop-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
md-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
md-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
md-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
mmc-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
mmc-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
mmc-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
mtd-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
mtd-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
mtd-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
multipath-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
multipath-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
multipath-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
nbd-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
nbd-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
nbd-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
nic-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
nic-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
nic-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
nic-shared-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
nic-shared-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
nic-shared-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
nic-usb-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
nic-usb-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
nic-usb-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
nic-wireless-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
nic-wireless-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
nic-wireless-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
pata-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
pata-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
pata-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
ppp-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
ppp-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
ppp-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
sata-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
sata-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
sata-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
scsi-core-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
scsi-core-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
scsi-core-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
scsi-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
scsi-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
scsi-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
scsi-nic-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
scsi-nic-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
scsi-nic-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
sound-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
sound-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
sound-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
speakup-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
speakup-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
speakup-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
squashfs-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
squashfs-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
squashfs-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
udf-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
udf-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
udf-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
uinput-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
uinput-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
uinput-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
usb-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
usb-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
usb-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
usb-serial-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
usb-serial-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
usb-serial-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf
usb-storage-modules-6.1.0-13-armmp-di |   6.1.55-1 | armhf
usb-storage-modules-6.1.0-16-armmp-di |   6.1.67-1 | armhf
usb-storage-modules-6.1.0-17-armmp-di |   6.1.69-1 | armhf

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:36:34 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-13-686 |   6.1.55-1 | i386
linux-headers-6.1.0-13-686-pae |   6.1.55-1 | i386
linux-headers-6.1.0-13-rt-686-pae |   6.1.55-1 | i386
linux-headers-6.1.0-16-686 |   6.1.67-1 | i386
linux-headers-6.1.0-16-686-pae |   6.1.67-1 | i386
linux-headers-6.1.0-16-rt-686-pae |   6.1.67-1 | i386
linux-headers-6.1.0-17-686 |   6.1.69-1 | i386
linux-headers-6.1.0-17-686-pae |   6.1.69-1 | i386
linux-headers-6.1.0-17-rt-686-pae |   6.1.69-1 | i386
linux-image-6.1.0-13-686-dbg |   6.1.55-1 | i386
linux-image-6.1.0-13-686-pae-dbg |   6.1.55-1 | i386
linux-image-6.1.0-13-686-pae-unsigned |   6.1.55-1 | i386
linux-image-6.1.0-13-686-unsigned |   6.1.55-1 | i386
linux-image-6.1.0-13-rt-686-pae-dbg |   6.1.55-1 | i386
linux-image-6.1.0-13-rt-686-pae-unsigned |   6.1.55-1 | i386
linux-image-6.1.0-16-686-dbg |   6.1.67-1 | i386
linux-image-6.1.0-16-686-pae-dbg |   6.1.67-1 | i386
linux-image-6.1.0-16-686-pae-unsigned |   6.1.67-1 | i386
linux-image-6.1.0-16-686-unsigned |   6.1.67-1 | i386
linux-image-6.1.0-16-rt-686-pae-dbg |   6.1.67-1 | i386
linux-image-6.1.0-16-rt-686-pae-unsigned |   6.1.67-1 | i386
linux-image-6.1.0-17-686-dbg |   6.1.69-1 | i386
linux-image-6.1.0-17-686-pae-dbg |   6.1.69-1 | i386
linux-image-6.1.0-17-686-pae-unsigned |   6.1.69-1 | i386
linux-image-6.1.0-17-686-unsigned |   6.1.69-1 | i386
linux-image-6.1.0-17-rt-686-pae-dbg |   6.1.69-1 | i386
linux-image-6.1.0-17-rt-686-pae-unsigned |   6.1.69-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:37:26 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
affs-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
affs-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
affs-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
affs-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
affs-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
ata-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
ata-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
ata-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
ata-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
ata-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
ata-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
btrfs-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
btrfs-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
btrfs-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
btrfs-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
btrfs-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
btrfs-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
cdrom-core-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
cdrom-core-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
cdrom-core-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
cdrom-core-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
cdrom-core-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
cdrom-core-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
crc-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
crc-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
crc-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
crc-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
crc-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
crc-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
crypto-dm-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
crypto-dm-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
crypto-dm-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
crypto-dm-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
crypto-dm-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
crypto-dm-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
crypto-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
crypto-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
crypto-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
crypto-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
crypto-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
crypto-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
event-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
event-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
event-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
event-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
event-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
event-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
ext4-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
ext4-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
ext4-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
ext4-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
ext4-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
ext4-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
f2fs-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
f2fs-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
f2fs-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
f2fs-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
f2fs-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
f2fs-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
fat-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
fat-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
fat-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
fat-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
fat-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
fat-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
fb-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
fb-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
fb-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
fb-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
fb-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
fb-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
firewire-core-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
firewire-core-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
firewire-core-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
firewire-core-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
firewire-core-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
firewire-core-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
fuse-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
fuse-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
fuse-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
fuse-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
fuse-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
fuse-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
input-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
input-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
input-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
input-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
input-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
input-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
isofs-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
isofs-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
isofs-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
isofs-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
isofs-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
isofs-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
jfs-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
jfs-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
jfs-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
jfs-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
jfs-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
jfs-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
kernel-image-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
kernel-image-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
kernel-image-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
kernel-image-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
kernel-image-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
kernel-image-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
linux-headers-6.1.0-13-5kc-malta |   6.1.55-1 | mips64el
linux-headers-6.1.0-13-mips64r2el |   6.1.55-1 | mips64el
linux-headers-6.1.0-16-5kc-malta |   6.1.67-1 | mips64el
linux-headers-6.1.0-16-mips64r2el |   6.1.67-1 | mips64el
linux-headers-6.1.0-17-5kc-malta |   6.1.69-1 | mips64el
linux-headers-6.1.0-17-mips64r2el |   6.1.69-1 | mips64el
linux-image-6.1.0-13-5kc-malta |   6.1.55-1 | mips64el
linux-image-6.1.0-13-5kc-malta-dbg |   6.1.55-1 | mips64el
linux-image-6.1.0-13-mips64r2el |   6.1.55-1 | mips64el
linux-image-6.1.0-13-mips64r2el-dbg |   6.1.55-1 | mips64el
linux-image-6.1.0-16-5kc-malta |   6.1.67-1 | mips64el
linux-image-6.1.0-16-5kc-malta-dbg |   6.1.67-1 | mips64el
linux-image-6.1.0-16-mips64r2el |   6.1.67-1 | mips64el
linux-image-6.1.0-16-mips64r2el-dbg |   6.1.67-1 | mips64el
linux-image-6.1.0-17-5kc-malta |   6.1.69-1 | mips64el
linux-image-6.1.0-17-5kc-malta-dbg |   6.1.69-1 | mips64el
linux-image-6.1.0-17-mips64r2el |   6.1.69-1 | mips64el
linux-image-6.1.0-17-mips64r2el-dbg |   6.1.69-1 | mips64el
loop-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
loop-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
loop-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
loop-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
loop-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
loop-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
md-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
md-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
md-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
md-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
md-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
md-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
minix-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
minix-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
minix-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
minix-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
minix-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
minix-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
mmc-core-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
mmc-core-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
mmc-core-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
mmc-core-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
mmc-core-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
mmc-core-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
mmc-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
mmc-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
mmc-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
mmc-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
mmc-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
mmc-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
mouse-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
mouse-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
mouse-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
mouse-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
mouse-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
mouse-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
multipath-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
multipath-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
multipath-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
multipath-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
multipath-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
multipath-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
nbd-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
nbd-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
nbd-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
nbd-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
nbd-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
nbd-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
nfs-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
nfs-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
nfs-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
nfs-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
nfs-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
nfs-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
nic-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
nic-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
nic-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
nic-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
nic-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
nic-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
nic-shared-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
nic-shared-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
nic-shared-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
nic-shared-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
nic-shared-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
nic-shared-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
nic-usb-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
nic-usb-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
nic-usb-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
nic-usb-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
nic-usb-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
nic-usb-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
nic-wireless-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
nic-wireless-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
nic-wireless-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
nic-wireless-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
nic-wireless-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
nic-wireless-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
pata-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
pata-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
pata-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
pata-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
pata-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
pata-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
ppp-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
ppp-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
ppp-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
ppp-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
ppp-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
ppp-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
sata-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
sata-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
sata-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
sata-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
sata-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
sata-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
scsi-core-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
scsi-core-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
scsi-core-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
scsi-core-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
scsi-core-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
scsi-core-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
scsi-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
scsi-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
scsi-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
scsi-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
scsi-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
scsi-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
scsi-nic-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
scsi-nic-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
scsi-nic-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
scsi-nic-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
scsi-nic-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
scsi-nic-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
sound-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
sound-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
sound-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
sound-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
sound-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
sound-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
speakup-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
speakup-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
speakup-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
speakup-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
speakup-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
speakup-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
squashfs-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
squashfs-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
squashfs-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
squashfs-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
squashfs-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
squashfs-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
udf-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
udf-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
udf-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
udf-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
udf-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
udf-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
usb-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
usb-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
usb-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
usb-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
usb-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
usb-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
usb-serial-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
usb-serial-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
usb-serial-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
usb-serial-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
usb-serial-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
usb-serial-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
usb-storage-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
usb-storage-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
usb-storage-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
usb-storage-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
usb-storage-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
usb-storage-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el
xfs-modules-6.1.0-13-5kc-malta-di |   6.1.55-1 | mips64el
xfs-modules-6.1.0-13-mips64r2el-di |   6.1.55-1 | mips64el
xfs-modules-6.1.0-16-5kc-malta-di |   6.1.67-1 | mips64el
xfs-modules-6.1.0-16-mips64r2el-di |   6.1.67-1 | mips64el
xfs-modules-6.1.0-17-5kc-malta-di |   6.1.69-1 | mips64el
xfs-modules-6.1.0-17-mips64r2el-di |   6.1.69-1 | mips64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:38:25 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
affs-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
affs-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
affs-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
affs-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
affs-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
ata-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
ata-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
ata-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
ata-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
ata-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
ata-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
btrfs-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
btrfs-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
btrfs-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
btrfs-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
btrfs-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
btrfs-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
crc-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
crc-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
crc-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
crc-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
crc-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
crc-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
crypto-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
crypto-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
crypto-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
crypto-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
crypto-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
crypto-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
event-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
event-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
event-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
event-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
event-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
event-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
ext4-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
ext4-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
ext4-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
ext4-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
ext4-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
ext4-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
f2fs-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
f2fs-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
f2fs-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
f2fs-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
f2fs-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
f2fs-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
fat-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
fat-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
fat-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
fat-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
fat-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
fat-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
fb-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
fb-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
fb-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
fb-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
fb-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
fb-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
firewire-core-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
firewire-core-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
firewire-core-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
firewire-core-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
firewire-core-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
firewire-core-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
fuse-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
fuse-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
fuse-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
fuse-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
fuse-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
fuse-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
input-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
input-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
input-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
input-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
input-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
input-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
isofs-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
isofs-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
isofs-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
isofs-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
isofs-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
isofs-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
jfs-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
jfs-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
jfs-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
jfs-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
jfs-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
jfs-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
kernel-image-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
kernel-image-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
kernel-image-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
kernel-image-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
kernel-image-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
kernel-image-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
linux-headers-6.1.0-13-loongson-3 |   6.1.55-1 | mips64el, mipsel
linux-headers-6.1.0-13-octeon |   6.1.55-1 | mips64el, mipsel
linux-headers-6.1.0-16-loongson-3 |   6.1.67-1 | mips64el, mipsel
linux-headers-6.1.0-16-octeon |   6.1.67-1 | mips64el, mipsel
linux-headers-6.1.0-17-loongson-3 |   6.1.69-1 | mips64el, mipsel
linux-headers-6.1.0-17-octeon |   6.1.69-1 | mips64el, mipsel
linux-image-6.1.0-13-loongson-3 |   6.1.55-1 | mips64el, mipsel
linux-image-6.1.0-13-loongson-3-dbg |   6.1.55-1 | mips64el, mipsel
linux-image-6.1.0-13-octeon |   6.1.55-1 | mips64el, mipsel
linux-image-6.1.0-13-octeon-dbg |   6.1.55-1 | mips64el, mipsel
linux-image-6.1.0-16-loongson-3 |   6.1.67-1 | mips64el, mipsel
linux-image-6.1.0-16-loongson-3-dbg |   6.1.67-1 | mips64el, mipsel
linux-image-6.1.0-16-octeon |   6.1.67-1 | mips64el, mipsel
linux-image-6.1.0-16-octeon-dbg |   6.1.67-1 | mips64el, mipsel
linux-image-6.1.0-17-loongson-3 |   6.1.69-1 | mips64el, mipsel
linux-image-6.1.0-17-loongson-3-dbg |   6.1.69-1 | mips64el, mipsel
linux-image-6.1.0-17-octeon |   6.1.69-1 | mips64el, mipsel
linux-image-6.1.0-17-octeon-dbg |   6.1.69-1 | mips64el, mipsel
loop-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
loop-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
loop-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
loop-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
loop-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
loop-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
md-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
md-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
md-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
md-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
md-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
md-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
minix-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
minix-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
minix-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
minix-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
minix-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
minix-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
mmc-core-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
mmc-core-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
mmc-core-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
mmc-core-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
mmc-core-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
mmc-core-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
mmc-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
mmc-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
mmc-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
mmc-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
mmc-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
mmc-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
mouse-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
mouse-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
mouse-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
mouse-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
mouse-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
mouse-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
multipath-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
multipath-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
multipath-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
multipath-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
multipath-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
multipath-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
nbd-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
nbd-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
nbd-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
nbd-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
nbd-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
nbd-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
nfs-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
nfs-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
nfs-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
nfs-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
nfs-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
nfs-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
nic-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
nic-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
nic-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
nic-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
nic-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
nic-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
nic-shared-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
nic-shared-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
nic-shared-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
nic-shared-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
nic-shared-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
nic-shared-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
nic-usb-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
nic-usb-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
nic-usb-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
nic-usb-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
nic-usb-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
nic-usb-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
pata-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
pata-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
pata-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
pata-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
pata-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
pata-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
ppp-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
ppp-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
ppp-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
ppp-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
ppp-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
ppp-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
sata-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
sata-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
sata-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
sata-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
sata-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
sata-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
scsi-core-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
scsi-core-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
scsi-core-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
scsi-core-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
scsi-core-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
scsi-core-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
scsi-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
scsi-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
scsi-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
scsi-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
scsi-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
scsi-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
sound-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
sound-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
sound-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
sound-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
sound-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
sound-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
speakup-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
speakup-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
speakup-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
speakup-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
speakup-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
speakup-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
squashfs-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
squashfs-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
squashfs-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
squashfs-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
squashfs-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
squashfs-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
udf-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
udf-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
udf-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
udf-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
udf-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
udf-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
usb-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
usb-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
usb-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
usb-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
usb-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
usb-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
usb-serial-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
usb-serial-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
usb-serial-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
usb-serial-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
usb-serial-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
usb-serial-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
usb-storage-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
usb-storage-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
usb-storage-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
usb-storage-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
usb-storage-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
usb-storage-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel
xfs-modules-6.1.0-13-loongson-3-di |   6.1.55-1 | mips64el, mipsel
xfs-modules-6.1.0-13-octeon-di |   6.1.55-1 | mips64el, mipsel
xfs-modules-6.1.0-16-loongson-3-di |   6.1.67-1 | mips64el, mipsel
xfs-modules-6.1.0-16-octeon-di |   6.1.67-1 | mips64el, mipsel
xfs-modules-6.1.0-17-loongson-3-di |   6.1.69-1 | mips64el, mipsel
xfs-modules-6.1.0-17-octeon-di |   6.1.69-1 | mips64el, mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:38:55 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
acpi-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
acpi-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
ata-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
ata-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
ata-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
btrfs-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
btrfs-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
btrfs-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
cdrom-core-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
cdrom-core-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
cdrom-core-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
crc-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
crc-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
crc-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
crypto-dm-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
crypto-dm-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
crypto-dm-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
crypto-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
crypto-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
crypto-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
efi-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
efi-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
efi-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
event-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
event-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
event-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
ext4-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
ext4-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
ext4-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
f2fs-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
f2fs-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
f2fs-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
fat-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
fat-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
fat-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
fb-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
fb-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
fb-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
firewire-core-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
firewire-core-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
firewire-core-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
fuse-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
fuse-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
fuse-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
i2c-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
i2c-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
i2c-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
input-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
input-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
input-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
isofs-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
isofs-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
isofs-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
jfs-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
jfs-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
jfs-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
kernel-image-6.1.0-13-amd64-di |   6.1.55-1 | amd64
kernel-image-6.1.0-16-amd64-di |   6.1.67-1 | amd64
kernel-image-6.1.0-17-amd64-di |   6.1.69-1 | amd64
linux-image-6.1.0-13-amd64 |   6.1.55-1 | amd64
linux-image-6.1.0-13-cloud-amd64 |   6.1.55-1 | amd64
linux-image-6.1.0-13-rt-amd64 |   6.1.55-1 | amd64
linux-image-6.1.0-16-amd64 |   6.1.67-1 | amd64
linux-image-6.1.0-16-cloud-amd64 |   6.1.67-1 | amd64
linux-image-6.1.0-16-rt-amd64 |   6.1.67-1 | amd64
linux-image-6.1.0-17-amd64 |   6.1.69-1 | amd64
linux-image-6.1.0-17-cloud-amd64 |   6.1.69-1 | amd64
linux-image-6.1.0-17-rt-amd64 |   6.1.69-1 | amd64
loop-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
loop-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
loop-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
md-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
md-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
md-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
mmc-core-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
mmc-core-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
mmc-core-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
mmc-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
mmc-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
mmc-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
mouse-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
mouse-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
mouse-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
mtd-core-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
mtd-core-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
mtd-core-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
multipath-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
multipath-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
multipath-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
nbd-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
nbd-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
nbd-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
nic-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
nic-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
nic-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
nic-pcmcia-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
nic-pcmcia-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
nic-pcmcia-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
nic-shared-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
nic-shared-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
nic-shared-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
nic-usb-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
nic-usb-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
nic-usb-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
nic-wireless-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
nic-wireless-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
nic-wireless-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
pata-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
pata-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
pata-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
pcmcia-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
pcmcia-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
pcmcia-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
pcmcia-storage-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
pcmcia-storage-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
pcmcia-storage-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
ppp-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
ppp-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
ppp-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
rfkill-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
rfkill-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
rfkill-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
sata-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
sata-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
sata-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
scsi-core-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
scsi-core-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
scsi-core-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
scsi-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
scsi-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
scsi-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
scsi-nic-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
scsi-nic-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
scsi-nic-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
serial-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
serial-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
serial-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
sound-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
sound-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
sound-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
speakup-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
speakup-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
speakup-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
squashfs-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
squashfs-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
squashfs-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
udf-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
udf-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
udf-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
uinput-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
uinput-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
uinput-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
usb-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
usb-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
usb-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
usb-serial-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
usb-serial-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
usb-serial-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
usb-storage-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
usb-storage-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
usb-storage-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64
xfs-modules-6.1.0-13-amd64-di |   6.1.55-1 | amd64
xfs-modules-6.1.0-16-amd64-di |   6.1.67-1 | amd64
xfs-modules-6.1.0-17-amd64-di |   6.1.69-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-amd64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:39:34 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
ata-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
ata-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
btrfs-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
btrfs-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
btrfs-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
cdrom-core-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
cdrom-core-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
cdrom-core-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
crc-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
crc-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
crc-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
crypto-dm-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
crypto-dm-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
crypto-dm-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
crypto-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
crypto-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
crypto-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
efi-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
efi-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
efi-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
event-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
event-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
event-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
ext4-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
ext4-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
ext4-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
f2fs-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
f2fs-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
f2fs-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
fat-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
fat-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
fat-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
fb-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
fb-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
fb-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
fuse-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
fuse-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
fuse-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
i2c-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
i2c-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
i2c-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
input-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
input-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
input-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
isofs-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
isofs-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
isofs-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
jfs-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
jfs-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
jfs-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
kernel-image-6.1.0-13-arm64-di |   6.1.55-1 | arm64
kernel-image-6.1.0-16-arm64-di |   6.1.67-1 | arm64
kernel-image-6.1.0-17-arm64-di |   6.1.69-1 | arm64
leds-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
leds-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
leds-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
linux-image-6.1.0-13-arm64 |   6.1.55-1 | arm64
linux-image-6.1.0-13-cloud-arm64 |   6.1.55-1 | arm64
linux-image-6.1.0-13-rt-arm64 |   6.1.55-1 | arm64
linux-image-6.1.0-16-arm64 |   6.1.67-1 | arm64
linux-image-6.1.0-16-cloud-arm64 |   6.1.67-1 | arm64
linux-image-6.1.0-16-rt-arm64 |   6.1.67-1 | arm64
linux-image-6.1.0-17-arm64 |   6.1.69-1 | arm64
linux-image-6.1.0-17-cloud-arm64 |   6.1.69-1 | arm64
linux-image-6.1.0-17-rt-arm64 |   6.1.69-1 | arm64
loop-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
loop-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
loop-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
md-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
md-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
md-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
mmc-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
mmc-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
mmc-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
mtd-core-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
mtd-core-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
mtd-core-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
multipath-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
multipath-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
multipath-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
nbd-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
nbd-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
nbd-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
nic-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
nic-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
nic-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
nic-shared-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
nic-shared-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
nic-shared-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
nic-usb-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
nic-usb-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
nic-usb-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
nic-wireless-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
nic-wireless-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
nic-wireless-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
ppp-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
ppp-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
ppp-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
sata-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
sata-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
sata-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
scsi-core-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
scsi-core-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
scsi-core-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
scsi-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
scsi-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
scsi-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
scsi-nic-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
scsi-nic-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
scsi-nic-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
sound-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
sound-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
sound-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
speakup-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
speakup-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
speakup-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
squashfs-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
squashfs-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
squashfs-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
udf-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
udf-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
udf-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
uinput-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
uinput-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
uinput-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
usb-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
usb-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
usb-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
usb-serial-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
usb-serial-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
usb-serial-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
usb-storage-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
usb-storage-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
usb-storage-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64
xfs-modules-6.1.0-13-arm64-di |   6.1.55-1 | arm64
xfs-modules-6.1.0-16-arm64-di |   6.1.67-1 | arm64
xfs-modules-6.1.0-17-arm64-di |   6.1.69-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-arm64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:40:19 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-13-686-di |   6.1.55-1 | i386
acpi-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
acpi-modules-6.1.0-16-686-di |   6.1.67-1 | i386
acpi-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
acpi-modules-6.1.0-17-686-di |   6.1.69-1 | i386
acpi-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
ata-modules-6.1.0-13-686-di |   6.1.55-1 | i386
ata-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
ata-modules-6.1.0-16-686-di |   6.1.67-1 | i386
ata-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
ata-modules-6.1.0-17-686-di |   6.1.69-1 | i386
ata-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
btrfs-modules-6.1.0-13-686-di |   6.1.55-1 | i386
btrfs-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
btrfs-modules-6.1.0-16-686-di |   6.1.67-1 | i386
btrfs-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
btrfs-modules-6.1.0-17-686-di |   6.1.69-1 | i386
btrfs-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
cdrom-core-modules-6.1.0-13-686-di |   6.1.55-1 | i386
cdrom-core-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
cdrom-core-modules-6.1.0-16-686-di |   6.1.67-1 | i386
cdrom-core-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
cdrom-core-modules-6.1.0-17-686-di |   6.1.69-1 | i386
cdrom-core-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
crc-modules-6.1.0-13-686-di |   6.1.55-1 | i386
crc-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
crc-modules-6.1.0-16-686-di |   6.1.67-1 | i386
crc-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
crc-modules-6.1.0-17-686-di |   6.1.69-1 | i386
crc-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
crypto-dm-modules-6.1.0-13-686-di |   6.1.55-1 | i386
crypto-dm-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
crypto-dm-modules-6.1.0-16-686-di |   6.1.67-1 | i386
crypto-dm-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
crypto-dm-modules-6.1.0-17-686-di |   6.1.69-1 | i386
crypto-dm-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
crypto-modules-6.1.0-13-686-di |   6.1.55-1 | i386
crypto-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
crypto-modules-6.1.0-16-686-di |   6.1.67-1 | i386
crypto-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
crypto-modules-6.1.0-17-686-di |   6.1.69-1 | i386
crypto-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
efi-modules-6.1.0-13-686-di |   6.1.55-1 | i386
efi-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
efi-modules-6.1.0-16-686-di |   6.1.67-1 | i386
efi-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
efi-modules-6.1.0-17-686-di |   6.1.69-1 | i386
efi-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
event-modules-6.1.0-13-686-di |   6.1.55-1 | i386
event-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
event-modules-6.1.0-16-686-di |   6.1.67-1 | i386
event-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
event-modules-6.1.0-17-686-di |   6.1.69-1 | i386
event-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
ext4-modules-6.1.0-13-686-di |   6.1.55-1 | i386
ext4-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
ext4-modules-6.1.0-16-686-di |   6.1.67-1 | i386
ext4-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
ext4-modules-6.1.0-17-686-di |   6.1.69-1 | i386
ext4-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
f2fs-modules-6.1.0-13-686-di |   6.1.55-1 | i386
f2fs-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
f2fs-modules-6.1.0-16-686-di |   6.1.67-1 | i386
f2fs-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
f2fs-modules-6.1.0-17-686-di |   6.1.69-1 | i386
f2fs-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
fat-modules-6.1.0-13-686-di |   6.1.55-1 | i386
fat-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
fat-modules-6.1.0-16-686-di |   6.1.67-1 | i386
fat-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
fat-modules-6.1.0-17-686-di |   6.1.69-1 | i386
fat-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
fb-modules-6.1.0-13-686-di |   6.1.55-1 | i386
fb-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
fb-modules-6.1.0-16-686-di |   6.1.67-1 | i386
fb-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
fb-modules-6.1.0-17-686-di |   6.1.69-1 | i386
fb-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
firewire-core-modules-6.1.0-13-686-di |   6.1.55-1 | i386
firewire-core-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
firewire-core-modules-6.1.0-16-686-di |   6.1.67-1 | i386
firewire-core-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
firewire-core-modules-6.1.0-17-686-di |   6.1.69-1 | i386
firewire-core-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
fuse-modules-6.1.0-13-686-di |   6.1.55-1 | i386
fuse-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
fuse-modules-6.1.0-16-686-di |   6.1.67-1 | i386
fuse-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
fuse-modules-6.1.0-17-686-di |   6.1.69-1 | i386
fuse-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
i2c-modules-6.1.0-13-686-di |   6.1.55-1 | i386
i2c-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
i2c-modules-6.1.0-16-686-di |   6.1.67-1 | i386
i2c-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
i2c-modules-6.1.0-17-686-di |   6.1.69-1 | i386
i2c-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
input-modules-6.1.0-13-686-di |   6.1.55-1 | i386
input-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
input-modules-6.1.0-16-686-di |   6.1.67-1 | i386
input-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
input-modules-6.1.0-17-686-di |   6.1.69-1 | i386
input-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
isofs-modules-6.1.0-13-686-di |   6.1.55-1 | i386
isofs-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
isofs-modules-6.1.0-16-686-di |   6.1.67-1 | i386
isofs-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
isofs-modules-6.1.0-17-686-di |   6.1.69-1 | i386
isofs-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
jfs-modules-6.1.0-13-686-di |   6.1.55-1 | i386
jfs-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
jfs-modules-6.1.0-16-686-di |   6.1.67-1 | i386
jfs-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
jfs-modules-6.1.0-17-686-di |   6.1.69-1 | i386
jfs-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
kernel-image-6.1.0-13-686-di |   6.1.55-1 | i386
kernel-image-6.1.0-13-686-pae-di |   6.1.55-1 | i386
kernel-image-6.1.0-16-686-di |   6.1.67-1 | i386
kernel-image-6.1.0-16-686-pae-di |   6.1.67-1 | i386
kernel-image-6.1.0-17-686-di |   6.1.69-1 | i386
kernel-image-6.1.0-17-686-pae-di |   6.1.69-1 | i386
linux-image-6.1.0-13-686 |   6.1.55-1 | i386
linux-image-6.1.0-13-686-pae |   6.1.55-1 | i386
linux-image-6.1.0-13-rt-686-pae |   6.1.55-1 | i386
linux-image-6.1.0-16-686 |   6.1.67-1 | i386
linux-image-6.1.0-16-686-pae |   6.1.67-1 | i386
linux-image-6.1.0-16-rt-686-pae |   6.1.67-1 | i386
linux-image-6.1.0-17-686 |   6.1.69-1 | i386
linux-image-6.1.0-17-686-pae |   6.1.69-1 | i386
linux-image-6.1.0-17-rt-686-pae |   6.1.69-1 | i386
loop-modules-6.1.0-13-686-di |   6.1.55-1 | i386
loop-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
loop-modules-6.1.0-16-686-di |   6.1.67-1 | i386
loop-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
loop-modules-6.1.0-17-686-di |   6.1.69-1 | i386
loop-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
md-modules-6.1.0-13-686-di |   6.1.55-1 | i386
md-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
md-modules-6.1.0-16-686-di |   6.1.67-1 | i386
md-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
md-modules-6.1.0-17-686-di |   6.1.69-1 | i386
md-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
mmc-core-modules-6.1.0-13-686-di |   6.1.55-1 | i386
mmc-core-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
mmc-core-modules-6.1.0-16-686-di |   6.1.67-1 | i386
mmc-core-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
mmc-core-modules-6.1.0-17-686-di |   6.1.69-1 | i386
mmc-core-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
mmc-modules-6.1.0-13-686-di |   6.1.55-1 | i386
mmc-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
mmc-modules-6.1.0-16-686-di |   6.1.67-1 | i386
mmc-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
mmc-modules-6.1.0-17-686-di |   6.1.69-1 | i386
mmc-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
mouse-modules-6.1.0-13-686-di |   6.1.55-1 | i386
mouse-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
mouse-modules-6.1.0-16-686-di |   6.1.67-1 | i386
mouse-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
mouse-modules-6.1.0-17-686-di |   6.1.69-1 | i386
mouse-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
mtd-core-modules-6.1.0-13-686-di |   6.1.55-1 | i386
mtd-core-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
mtd-core-modules-6.1.0-16-686-di |   6.1.67-1 | i386
mtd-core-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
mtd-core-modules-6.1.0-17-686-di |   6.1.69-1 | i386
mtd-core-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
multipath-modules-6.1.0-13-686-di |   6.1.55-1 | i386
multipath-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
multipath-modules-6.1.0-16-686-di |   6.1.67-1 | i386
multipath-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
multipath-modules-6.1.0-17-686-di |   6.1.69-1 | i386
multipath-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
nbd-modules-6.1.0-13-686-di |   6.1.55-1 | i386
nbd-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
nbd-modules-6.1.0-16-686-di |   6.1.67-1 | i386
nbd-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
nbd-modules-6.1.0-17-686-di |   6.1.69-1 | i386
nbd-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
nic-modules-6.1.0-13-686-di |   6.1.55-1 | i386
nic-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
nic-modules-6.1.0-16-686-di |   6.1.67-1 | i386
nic-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
nic-modules-6.1.0-17-686-di |   6.1.69-1 | i386
nic-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
nic-pcmcia-modules-6.1.0-13-686-di |   6.1.55-1 | i386
nic-pcmcia-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
nic-pcmcia-modules-6.1.0-16-686-di |   6.1.67-1 | i386
nic-pcmcia-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
nic-pcmcia-modules-6.1.0-17-686-di |   6.1.69-1 | i386
nic-pcmcia-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
nic-shared-modules-6.1.0-13-686-di |   6.1.55-1 | i386
nic-shared-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
nic-shared-modules-6.1.0-16-686-di |   6.1.67-1 | i386
nic-shared-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
nic-shared-modules-6.1.0-17-686-di |   6.1.69-1 | i386
nic-shared-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
nic-usb-modules-6.1.0-13-686-di |   6.1.55-1 | i386
nic-usb-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
nic-usb-modules-6.1.0-16-686-di |   6.1.67-1 | i386
nic-usb-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
nic-usb-modules-6.1.0-17-686-di |   6.1.69-1 | i386
nic-usb-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
nic-wireless-modules-6.1.0-13-686-di |   6.1.55-1 | i386
nic-wireless-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
nic-wireless-modules-6.1.0-16-686-di |   6.1.67-1 | i386
nic-wireless-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
nic-wireless-modules-6.1.0-17-686-di |   6.1.69-1 | i386
nic-wireless-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
pata-modules-6.1.0-13-686-di |   6.1.55-1 | i386
pata-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
pata-modules-6.1.0-16-686-di |   6.1.67-1 | i386
pata-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
pata-modules-6.1.0-17-686-di |   6.1.69-1 | i386
pata-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
pcmcia-modules-6.1.0-13-686-di |   6.1.55-1 | i386
pcmcia-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
pcmcia-modules-6.1.0-16-686-di |   6.1.67-1 | i386
pcmcia-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
pcmcia-modules-6.1.0-17-686-di |   6.1.69-1 | i386
pcmcia-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
pcmcia-storage-modules-6.1.0-13-686-di |   6.1.55-1 | i386
pcmcia-storage-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
pcmcia-storage-modules-6.1.0-16-686-di |   6.1.67-1 | i386
pcmcia-storage-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
pcmcia-storage-modules-6.1.0-17-686-di |   6.1.69-1 | i386
pcmcia-storage-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
ppp-modules-6.1.0-13-686-di |   6.1.55-1 | i386
ppp-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
ppp-modules-6.1.0-16-686-di |   6.1.67-1 | i386
ppp-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
ppp-modules-6.1.0-17-686-di |   6.1.69-1 | i386
ppp-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
rfkill-modules-6.1.0-13-686-di |   6.1.55-1 | i386
rfkill-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
rfkill-modules-6.1.0-16-686-di |   6.1.67-1 | i386
rfkill-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
rfkill-modules-6.1.0-17-686-di |   6.1.69-1 | i386
rfkill-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
sata-modules-6.1.0-13-686-di |   6.1.55-1 | i386
sata-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
sata-modules-6.1.0-16-686-di |   6.1.67-1 | i386
sata-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
sata-modules-6.1.0-17-686-di |   6.1.69-1 | i386
sata-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
scsi-core-modules-6.1.0-13-686-di |   6.1.55-1 | i386
scsi-core-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
scsi-core-modules-6.1.0-16-686-di |   6.1.67-1 | i386
scsi-core-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
scsi-core-modules-6.1.0-17-686-di |   6.1.69-1 | i386
scsi-core-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
scsi-modules-6.1.0-13-686-di |   6.1.55-1 | i386
scsi-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
scsi-modules-6.1.0-16-686-di |   6.1.67-1 | i386
scsi-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
scsi-modules-6.1.0-17-686-di |   6.1.69-1 | i386
scsi-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
scsi-nic-modules-6.1.0-13-686-di |   6.1.55-1 | i386
scsi-nic-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
scsi-nic-modules-6.1.0-16-686-di |   6.1.67-1 | i386
scsi-nic-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
scsi-nic-modules-6.1.0-17-686-di |   6.1.69-1 | i386
scsi-nic-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
serial-modules-6.1.0-13-686-di |   6.1.55-1 | i386
serial-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
serial-modules-6.1.0-16-686-di |   6.1.67-1 | i386
serial-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
serial-modules-6.1.0-17-686-di |   6.1.69-1 | i386
serial-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
sound-modules-6.1.0-13-686-di |   6.1.55-1 | i386
sound-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
sound-modules-6.1.0-16-686-di |   6.1.67-1 | i386
sound-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
sound-modules-6.1.0-17-686-di |   6.1.69-1 | i386
sound-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
speakup-modules-6.1.0-13-686-di |   6.1.55-1 | i386
speakup-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
speakup-modules-6.1.0-16-686-di |   6.1.67-1 | i386
speakup-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
speakup-modules-6.1.0-17-686-di |   6.1.69-1 | i386
speakup-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
squashfs-modules-6.1.0-13-686-di |   6.1.55-1 | i386
squashfs-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
squashfs-modules-6.1.0-16-686-di |   6.1.67-1 | i386
squashfs-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
squashfs-modules-6.1.0-17-686-di |   6.1.69-1 | i386
squashfs-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
udf-modules-6.1.0-13-686-di |   6.1.55-1 | i386
udf-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
udf-modules-6.1.0-16-686-di |   6.1.67-1 | i386
udf-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
udf-modules-6.1.0-17-686-di |   6.1.69-1 | i386
udf-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
uinput-modules-6.1.0-13-686-di |   6.1.55-1 | i386
uinput-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
uinput-modules-6.1.0-16-686-di |   6.1.67-1 | i386
uinput-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
uinput-modules-6.1.0-17-686-di |   6.1.69-1 | i386
uinput-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
usb-modules-6.1.0-13-686-di |   6.1.55-1 | i386
usb-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
usb-modules-6.1.0-16-686-di |   6.1.67-1 | i386
usb-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
usb-modules-6.1.0-17-686-di |   6.1.69-1 | i386
usb-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
usb-serial-modules-6.1.0-13-686-di |   6.1.55-1 | i386
usb-serial-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
usb-serial-modules-6.1.0-16-686-di |   6.1.67-1 | i386
usb-serial-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
usb-serial-modules-6.1.0-17-686-di |   6.1.69-1 | i386
usb-serial-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
usb-storage-modules-6.1.0-13-686-di |   6.1.55-1 | i386
usb-storage-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
usb-storage-modules-6.1.0-16-686-di |   6.1.67-1 | i386
usb-storage-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
usb-storage-modules-6.1.0-17-686-di |   6.1.69-1 | i386
usb-storage-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386
xfs-modules-6.1.0-13-686-di |   6.1.55-1 | i386
xfs-modules-6.1.0-13-686-pae-di |   6.1.55-1 | i386
xfs-modules-6.1.0-16-686-di |   6.1.67-1 | i386
xfs-modules-6.1.0-16-686-pae-di |   6.1.67-1 | i386
xfs-modules-6.1.0-17-686-di |   6.1.69-1 | i386
xfs-modules-6.1.0-17-686-pae-di |   6.1.69-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-i386)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 10 Feb 2024 09:41:06 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-13-common |   6.1.55-1 | all
linux-headers-6.1.0-13-common-rt |   6.1.55-1 | all
linux-headers-6.1.0-16-common |   6.1.67-1 | all
linux-headers-6.1.0-16-common-rt |   6.1.67-1 | all
linux-headers-6.1.0-17-common |   6.1.69-1 | all
linux-headers-6.1.0-17-common-rt |   6.1.69-1 | all
linux-support-6.1.0-13 |   6.1.55-1 | all
linux-support-6.1.0-16 |   6.1.67-1 | all
linux-support-6.1.0-17 |   6.1.69-1 | all

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux - based on source metadata)
----------------------------------------------
=========================================================================
apktool (2.7.0+dfsg-6+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * CVE-2024-21633: Prevent arbitrary file writes with malicious resource
     names. (Closes: #1060013)

atril (1.26.0-2+deb12u2) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0005-Use-a-blank-line-at-most.patch and 0006-comics-Use-libarchive-
       to-unpack-documents.patch. Use libarchive instead of external command for
       extracing documents (CVE-2023-51698, closes: #1060751).
atril (1.26.0-2+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 1002-avoid-crash-on-certain-epub-files.patch. Avoid crashes when
       opening certain epub files. (Closes: #972715).
     + Add 0001-Accessibility-add-button-description.patch. Accessibility: add
       'Hide sidebar' button description. (Cherry-picked from v1.26.1).
     + Add 0003-epub-Fix-index-loading-for-certain-documents-look-fo.patch. Fix
       index loading for certain epub documents. (Cherry-picked from v1.26.1).
     + Add 0004-epub-add-fallback-for-malformed-epub-files-in-check_.patch. epub:
       add fallback for malformed epub files in check_mime_type. (Cherry-picked from
       v1.26.1).

base-files (12.4+deb12u5) bookworm; urgency=medium
 .
   * Change /etc/debian_version to 12.5, for Debian 12.5 point release.

bluez (5.66-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * input.conf: Change default of ClassicBondedOnly (CVE-2023-45866)
     (Closes: #1057914)

caja (1.26.1-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0001_caja-desktop-window-Fix-the-xrandr-error.patch and
       0002_Replace-deprecated-code-from-xrandr-fix.patch. Fix desktop
       (background) rendering artifacts after resolution changes (or
       window resizings when MATE runs in a remote session).
     + Add 0003_caja-file-fix-yesterday-today-informal-date-bug.patch and
       0004_caja-file-fix-future-informal-date-bug.patch. Fix usage of the
       informal date format.

calibre (6.13.0+repack-2+deb12u3) bookworm; urgency=medium
 .
   * HTML Input: Don't add resources that exist outside the folder hierarchy
     rooted at the parent folder of the input HTML file by default (Fix for
     CVE-2023-46303)

chromium (121.0.6167.139-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-1060: Use after free in Canvas. Reported by Anonymous.
     - CVE-2024-1059: Use after free in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2024-1077: Use after free in Network.
       Reported by Microsoft Security Research Center.
chromium (121.0.6167.85-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-0807: Use after free in WebAudio.
       Reported by Huang Xilin of Ant Group Light-Year Security Lab.
     - CVE-2024-0812: Inappropriate implementation in Accessibility.
       Reported by Anonymous.
     - CVE-2024-0808: Integer underflow in WebUI.
       Reported by Lyra Rebane (rebane2001).
     - CVE-2024-0810: Insufficient policy enforcement in DevTools.
       Reported by Shaheen Fazim.
     - CVE-2024-0814: Incorrect security UI in Payments.
       Reported by Muneaki Nishimura (nishimunea).
     - CVE-2024-0813: Use after free in Reading Mode. Reported by @retsew0x01.
     - CVE-2024-0806: Use after free in Passwords.
       Reported by 18楼梦想改造家.
     - CVE-2024-0805: Inappropriate implementation in Downloads.
       Reported by Om Apip.
     - CVE-2024-0804: Insufficient policy enforcement in iOS Security UI.
       Reported by Narendra Bhati of Suma Soft Pvt. Ltd. Pune (India) .
     - CVE-2024-0811: Inappropriate implementation in Extensions API.
       Reported by Jann Horn of Google Project Zero.
     - CVE-2024-0809: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
   * d/copyright: drop another eu-strip binary.
   * d/patches:
     - fixes/atspi.patch: drop, merged upstream.
     - fixes/gcc13-headers.patch: drop portions that were merged upstream.
     - upstream/nullptr_t.patch: drop, merged upstream.
     - upstream/string-include.patch: drop, merged upstream.
     - ungoogled/disable-web-environment-integrity.patch: remove, upstream
       wisely backed off and removed WEI.
     - disable/signin.patch: refresh for minor upstream changes.
     - disable/catapult.patch: refresh for minor upstream changes.
     - system/openjpeg.patch: refresh for minor upstream changes.
     - bookworm/clang16.patch: drop portion that was merged upstream.
     - upstream/vector.patch: missing header fix, pulled from upstream.
     - upstream/display-header.patch: missing header fix, pulled from upstream.
     - upstream/bitset.patch: missing header fix, pulled from upstream.
     - upstream/once_flag.patch: missing header fix, pulled from upstream.
     - bookworm/constexpr-equality.patch: add clang-16 workaround.
     - bookworm/nvt.patch: revert an upstream c++-20 change that confuses
       clang-16.
     - fixes/libxml-parseerr.patch: revert change from a newer libxml than
       debian's.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/std-to-address.patch: work around incorrect template selection
       in Mojo ConvertTo()
     - fixes/stdint.patch: add missing stdint include to performance manager
   * d/patches/ppc64le:
     - fixes/fix-rust-linking.patch: allow linking C and Rust libraries in full
       archive mode
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh
       for upstream changes
     - third_party/skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       refresh for upstream changes
     - third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch:
       refresh for upstream changes
chromium (121.0.6167.85-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2024-0807: Use after free in WebAudio.
       Reported by Huang Xilin of Ant Group Light-Year Security Lab.
     - CVE-2024-0812: Inappropriate implementation in Accessibility.
       Reported by Anonymous.
     - CVE-2024-0808: Integer underflow in WebUI.
       Reported by Lyra Rebane (rebane2001).
     - CVE-2024-0810: Insufficient policy enforcement in DevTools.
       Reported by Shaheen Fazim.
     - CVE-2024-0814: Incorrect security UI in Payments.
       Reported by Muneaki Nishimura (nishimunea).
     - CVE-2024-0813: Use after free in Reading Mode. Reported by @retsew0x01.
     - CVE-2024-0806: Use after free in Passwords.
       Reported by 18楼梦想改造家.
     - CVE-2024-0805: Inappropriate implementation in Downloads.
       Reported by Om Apip.
     - CVE-2024-0804: Insufficient policy enforcement in iOS Security UI.
       Reported by Narendra Bhati of Suma Soft Pvt. Ltd. Pune (India) .
     - CVE-2024-0811: Inappropriate implementation in Extensions API.
       Reported by Jann Horn of Google Project Zero.
     - CVE-2024-0809: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
   * d/copyright: drop another eu-strip binary.
   * d/patches:
     - fixes/atspi.patch: drop, merged upstream.
     - fixes/gcc13-headers.patch: drop portions that were merged upstream.
     - upstream/nullptr_t.patch: drop, merged upstream.
     - upstream/string-include.patch: drop, merged upstream.
     - ungoogled/disable-web-environment-integrity.patch: remove, upstream
       wisely backed off and removed WEI.
     - disable/signin.patch: refresh for minor upstream changes.
     - disable/catapult.patch: refresh for minor upstream changes.
     - system/openjpeg.patch: refresh for minor upstream changes.
     - bookworm/clang16.patch: drop portion that was merged upstream.
     - upstream/vector.patch: missing header fix, pulled from upstream.
     - upstream/display-header.patch: missing header fix, pulled from upstream.
     - upstream/bitset.patch: missing header fix, pulled from upstream.
     - upstream/once_flag.patch: missing header fix, pulled from upstream.
     - bookworm/constexpr-equality.patch: add clang-16 workaround.
     - bookworm/nvt.patch: revert an upstream c++-20 change that confuses
       clang-16.
     - fixes/libxml-parseerr.patch: revert change from a newer libxml than
       debian's.
     - bookworm/undo-rust-req.patch: revert change that makes rust required
       to build (for now).
     - bookworm/eraseif-lamba.patch: revert changes switching to std::erase_if
       to work around libstdc++-12 bug.
 .
   [ Timothy Pearson ]
   * d/patches:
     - fixes/std-to-address.patch: work around incorrect template selection
       in Mojo ConvertTo()
     - fixes/stdint.patch: add missing stdint include to performance manager
   * d/patches/ppc64le:
     - fixes/fix-rust-linking.patch: allow linking C and Rust libraries in full
       archive mode
     - libaom/0001-Add-pregenerated-config-for-libaom-on-ppc64.patch: refresh
       for upstream changes
     - third_party/skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       refresh for upstream changes
     - third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch:
       refresh for upstream changes
chromium (120.0.6099.224-2) unstable; urgency=high
 .
   * d/patches/ppc64le/fixes/fix-rustc.patch: add patch to fix ppc64le build.
chromium (120.0.6099.224-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-0517: Out of bounds write in V8.
       Reported by Toan (suto) Pham of Qrious Secure.
     - CVE-2024-0518: Type Confusion in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-0519: Out of bounds memory access in V8. Reported by Anonymous.
   * d/rules: enable rust and (relatedly) fix search path for clang libs.
   * Add versioned build-dep on rustc >= 1.70.0+dfsg1-5 for profiler support.
chromium (120.0.6099.224-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-0517: Out of bounds write in V8.
       Reported by Toan (suto) Pham of Qrious Secure.
     - CVE-2024-0518: Type Confusion in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-0519: Out of bounds memory access in V8. Reported by Anonymous.
   * d/rules: fix search path for clang libs.
chromium (120.0.6099.224-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-0517: Out of bounds write in V8.
       Reported by Toan (suto) Pham of Qrious Secure.
     - CVE-2024-0518: Type Confusion in V8.
       Reported by Ganjiang Zhou(@refrain_areu) of ChaMd5-H1 team.
     - CVE-2024-0519: Out of bounds memory access in V8. Reported by Anonymous.
   * d/rules: fix search path for clang libs.
chromium (120.0.6099.216-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-0333: Insufficient data validation in Extensions.
       Reported by Malcolm Stagg (@malcolmst) of SODIUM-24, LLC.
chromium (120.0.6099.216-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-0333: Insufficient data validation in Extensions.
       Reported by Malcolm Stagg (@malcolmst) of SODIUM-24, LLC.
chromium (120.0.6099.216-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-0333: Insufficient data validation in Extensions.
       Reported by Malcolm Stagg (@malcolmst) of SODIUM-24, LLC.
chromium (120.0.6099.199-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2024-0222: Use after free in ANGLE.
       Reported by Toan (suto) Pham of Qrious Secure.
     - CVE-2024-0223: Heap buffer overflow in ANGLE.
       Reported by Toan (suto) Pham and Tri Dang of Qrious Secure.
     - CVE-2024-0224: Use after free in WebAudio.
       Reported by Huang Xilin of Ant Group Light-Year Security Lab.
     - CVE-2024-0225: Use after free in WebGPU. Reported by Anonymous.
chromium (120.0.6099.199-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-0222: Use after free in ANGLE.
       Reported by Toan (suto) Pham of Qrious Secure.
     - CVE-2024-0223: Heap buffer overflow in ANGLE.
       Reported by Toan (suto) Pham and Tri Dang of Qrious Secure.
     - CVE-2024-0224: Use after free in WebAudio.
       Reported by Huang Xilin of Ant Group Light-Year Security Lab.
     - CVE-2024-0225: Use after free in WebGPU. Reported by Anonymous.
chromium (120.0.6099.199-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2024-0222: Use after free in ANGLE.
       Reported by Toan (suto) Pham of Qrious Secure.
     - CVE-2024-0223: Heap buffer overflow in ANGLE.
       Reported by Toan (suto) Pham and Tri Dang of Qrious Secure.
     - CVE-2024-0224: Use after free in WebAudio.
       Reported by Huang Xilin of Ant Group Light-Year Security Lab.
     - CVE-2024-0225: Use after free in WebGPU. Reported by Anonymous.
chromium (120.0.6099.129-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-7024: Heap buffer overflow in WebRTC. Reported by
       Clément Lecigne and Vlad Stolyarov of Google's Threat Analysis Group.
chromium (120.0.6099.129-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-7024: Heap buffer overflow in WebRTC. Reported by
       Clément Lecigne and Vlad Stolyarov of Google's Threat Analysis Group.
chromium (120.0.6099.129-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-7024: Heap buffer overflow in WebRTC. Reported by
       Clément Lecigne and Vlad Stolyarov of Google's Threat Analysis Group.
chromium (120.0.6099.109-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-6702: Type Confusion in V8. Reported by
       Zhiyi Zhang and Zhunki from Codesafe Team of Legendsec at Qi'anxin Group.
     - CVE-2023-6703: Use after free in Blink.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6704: Use after free in libavif. Reported by Fudan University.
     - CVE-2023-6705: Use after free in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6706: Use after free in FedCM. Reported by anonymous.
     - CVE-2023-6707: Use after free in CSS. Reported by @ginggilBesel.
chromium (120.0.6099.109-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-6702: Type Confusion in V8. Reported by
       Zhiyi Zhang and Zhunki from Codesafe Team of Legendsec at Qi'anxin Group.
     - CVE-2023-6703: Use after free in Blink.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6704: Use after free in libavif. Reported by Fudan University.
     - CVE-2023-6705: Use after free in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6706: Use after free in FedCM. Reported by anonymous.
     - CVE-2023-6707: Use after free in CSS. Reported by @ginggilBesel.
chromium (120.0.6099.109-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-6702: Type Confusion in V8. Reported by
       Zhiyi Zhang and Zhunki from Codesafe Team of Legendsec at Qi'anxin Group.
     - CVE-2023-6703: Use after free in Blink.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6704: Use after free in libavif. Reported by Fudan University.
     - CVE-2023-6705: Use after free in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6706: Use after free in FedCM. Reported by anonymous.
     - CVE-2023-6707: Use after free in CSS. Reported by @ginggilBesel.
chromium (120.0.6099.71-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2023-6508: Use after free in Media Stream.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6509: Use after free in Side Panel Search.
       Reported by Khalil Zhani.
     - CVE-2023-6510: Use after free in Media Capture. Reported by [pwn2car].
     - CVE-2023-6511: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-6512: Inappropriate implementation in Web Browser UI.
       Reported by Om Apip.
   * d/copyright: adjust path for chai.js & mocha.js deletion.
     - delete third_party/libsecret.
   * d/control: new build depends on libsecret-1-dev.
   * d/scripts/unbundle: keep bundled libhwy; it's not available in bullseye.
     - also keep vulkan_memory_allocator and flatbuffers.
   * d/patches:
     - fixes/gcc13-headers.patch: refresh.
     - fixes/blink-frags.patch: drop part of patch & refresh.
     - disable/catapult.patch: refresh.
     - disable/driver-chrome-path.patch: update for minor upstream changes.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - ungoogled/disable-web-environment-integrity.patch: update from
       from ungoogled-chromium.
     - upstream/mojo.patch: update patch from upstream's git.
     - bookworm/clang16.patch: new patch working around upstream's clang18 flags.
     - upstream/nullptr_t.patch: more libstdc++13 build fixes.
     - upstream/string-include.patch: add a simple header include build fix.
     - fixes/absl-optional.patch: add a workaround for a clang bug
       (https://github.com/llvm/llvm-project/issues/50248) by providing our
       own 'optional' header.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-libdav1d.patch: refresh for
       upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       refresh for upstream changes
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       regenerate
     - third_party/skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/use-sysconf-page-size-on-ppc64.patch: refresh for upstream
       changes
     - Mass refresh all other patches against 120 codebase.  No functional
       change.
chromium (120.0.6099.71-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2023-6508: Use after free in Media Stream.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6509: Use after free in Side Panel Search.
       Reported by Khalil Zhani.
     - CVE-2023-6510: Use after free in Media Capture. Reported by [pwn2car].
     - CVE-2023-6511: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-6512: Inappropriate implementation in Web Browser UI.
       Reported by Om Apip.
   * d/copyright: adjust path for chai.js & mocha.js deletion.
     - delete third_party/libsecret.
   * d/control: new build depends on libsecret-1-dev.
   * d/scripts/unbundle: keep bundled libhwy; it's not available in bullseye.
     - also keep vulkan_memory_allocator and flatbuffers.
   * d/patches:
     - fixes/gcc13-headers.patch: refresh.
     - fixes/blink-frags.patch: drop part of patch & refresh.
     - disable/catapult.patch: refresh.
     - disable/driver-chrome-path.patch: update for minor upstream changes.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - ungoogled/disable-web-environment-integrity.patch: update from
       from ungoogled-chromium.
     - upstream/mojo.patch: update patch from upstream's git.
     - bookworm/clang16.patch: new patch working around upstream's clang18 flags.
     - upstream/nullptr_t.patch: more libstdc++13 build fixes.
     - upstream/string-include.patch: add a simple header include build fix.
     - fixes/absl-optional.patch: add a workaround for a clang bug
       (https://github.com/llvm/llvm-project/issues/50248) by providing our
       own 'optional' header.
     - bookworm/constcountrycode.patch: add workaround for older libstdc++.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-libdav1d.patch: refresh for
       upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       refresh for upstream changes
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       regenerate
     - third_party/skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/use-sysconf-page-size-on-ppc64.patch: refresh for upstream
       changes
     - Mass refresh all other patches against 120 codebase.  No functional
       change.
chromium (120.0.6099.71-1~deb11u1) bullseye-security; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2023-6508: Use after free in Media Stream.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-6509: Use after free in Side Panel Search.
       Reported by Khalil Zhani.
     - CVE-2023-6510: Use after free in Media Capture. Reported by [pwn2car].
     - CVE-2023-6511: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-6512: Inappropriate implementation in Web Browser UI.
       Reported by Om Apip.
   * d/copyright: adjust path for chai.js & mocha.js deletion.
     - delete third_party/libsecret.
   * d/control: new build depends on libsecret-1-dev.
   * d/scripts/unbundle: keep bundled libhwy; it's not available in bullseye.
     - also keep vulkan_memory_allocator and flatbuffers.
   * d/patches:
     - fixes/gcc13-headers.patch: refresh.
     - fixes/blink-frags.patch: drop part of patch & refresh.
     - disable/catapult.patch: refresh.
     - disable/driver-chrome-path.patch: update for minor upstream changes.
     - ungoogled/disable-privacy-sandbox.patch: update from ungoogled-chromium.
     - ungoogled/disable-web-environment-integrity.patch: update from
       from ungoogled-chromium.
     - upstream/mojo.patch: update patch from upstream's git.
     - bookworm/clang16.patch: new patch working around upstream's clang18 flags.
     - upstream/nullptr_t.patch: more libstdc++13 build fixes.
     - upstream/string-include.patch: add a simple header include build fix.
     - fixes/absl-optional.patch: add a workaround for a clang bug
       (https://github.com/llvm/llvm-project/issues/50248) by providing our
       own 'optional' header.
     - bookworm/constcountrycode.patch: add workaround for older libstdc++.
     - bullseye/constexpr.patch: drop due to upstream changes.
     - bullseye/downgrade-typescript.patch: refresh.
     - bullseye/devtools-ts-return.patch: add build fix needed for older
       typescript.
     - bullseye/pathmax.patch: another simple missing header build fix.
     - bullseye/framesensorconst.patch: constexpr -> const workaround.
     - bullseye/node-trustedtypes.patch: add a bunch more workarounds for
       our older node-typescript.
   * d/rules: grab typescript from third_party/devtools (which is downgraded
     from 5.1 to 5.0 via downgrade-typescript.patch) to overwrite
     third_party/node/node_modules/typescript (which was upgraded to 5.2).
   * d/NEWS: document the end of security support for bullseye.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - third_party/0001-Add-PPC64-support-for-libdav1d.patch: refresh for
       upstream changes
     - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       refresh for upstream changes
     - third_party/0003-third_party-ffmpeg-Add-ppc64-generated-config.patch:
       regenerate
     - third_party/skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/use-sysconf-page-size-on-ppc64.patch: refresh for upstream
       changes
     - Mass refresh all other patches against 120 codebase.  No functional
       change.
chromium (119.0.6045.199-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-6348: Type Confusion in Spellcheck.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-6347: Use after free in Mojo. Reported by
       Leecraso and Guang Gong of 360 Vulnerability Research Institute.
     - CVE-2023-6346: Use after free in WebAudio.
       Reported by Huang Xilin of Ant Group Light-Year Security Lab.
     - CVE-2023-6350: Out of bounds memory access in libavif.
       Reported by Fudan University.
     - CVE-2023-6351: Use after free in libavif. Reported by Fudan University.
     - CVE-2023-6345: Integer overflow in Skia. Reported by
       Benoît Sevens and Clément Lecigne of Google's Threat Analysis Group.

compton (1-1+deb12u1) bookworm; urgency=medium
 .
   * New maintainer. (Closes: #960779)
   * Neither recommend or suggest picom. It is a fork of compton,
     so a separate product. (Closes: #1061558).
compton (1-1+deb11u1) bullseye; urgency=medium
 .
   * New maintainer. (Closes: #960779)
   * Neither recommend or suggest picom. It is a fork of compton,
     so a separate product. (Closes: #1061558).

cryptsetup (2:2.6.1-4~deb12u2) bookworm; urgency=medium
 .
   [ Michael Biebl ]
   * cryptsetup-suspend-wrapper: Don't error out on missing
     /lib/systemd/system-sleep directory as systemd 254.1-3 and later no longer
     ship empty directories. (Closes: #1050606)
 .
   [ Kevin Locke ]
   * cryptsetup-initramfs: Add support for compressed kernel modules, which is
     the default as linux-image 6.6.4-1~exp1. (Closes: #1036049, #1057441)
 .
   [ Guilhem Moulin ]
   * add_modules(): Change suffix drop logic to match initramfs-tools.
   * Fix DEP-8 tests with kernels shipping compressed modules.
   * d/salsa-ci.yml: Set RELEASE=bookworm.

curl (7.88.1-10+deb12u5) bookworm-security; urgency=high
 .
   * Add patches to fix CVE-2023-46218 and CVE-2023-46219
   * d/rules: set CURL_PATCHSTAMP to package's version, so it shows up in
     "--version" output
curl (7.88.1-10+deb12u5~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 curl (7.88.1-10+deb12u5) bookworm-security; urgency=high
 .
   * Add patches to fix CVE-2023-46218 and CVE-2023-46219
   * d/rules: set CURL_PATCHSTAMP to package's version, so it shows up in
     "--version" output
 .
 curl (7.88.1-10+deb12u4) bookworm-security; urgency=high
 .
   * Add patches to fix CVE-2023-38545 and CVE-2023-38546

debian-edu-artwork (2.12.4-1~deb12u1) bookworm; urgency=medium
 .
   * Release to bookworm. This provides an Emerald theme based
     artwork for upcoming Debian Edu 12 release.
debian-edu-artwork (2.12.3-3) unstable; urgency=medium
 .
   * Revert "debian/update-debian-edu-artwork: Stop checking if this is a Debian
     Edu system." (Closes: #1057815, see also: #856789)
   * debian/update-debian-edu-artwork: Add comment to never introduce this
     regression again.
debian-edu-artwork (2.12.3-2) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * Install separate copies of update-debian-edu-artwork into each
     artwork variant bin:pkg. (Closes: #1054338).
debian-edu-artwork (2.12.3-2~deb12u1) bookworm; urgency=medium
 .
   * Release to bookworm. This provides an Emerald theme based
     artwork for upcoming Debian Edu 12 release.
debian-edu-artwork (2.12.3-1) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * Create proper Emerald-based theme
   * Use single script instead of individual update-debian-edu-artwork-* scripts.
 .
   [ Mike Gabriel ]
   * arctica-greeter: Add gsettings override for background and debian-edu'fied
     logo image.
   * logo/greeter-debian-edu-logo.*: Add huge versions of the Debian Edu logo
     used in the greeter.
   * debian/update-debian-edu-artwork: Stop checking if this is a Debian Edu
     system.

debian-edu-config (2.12.44~deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm.
debian-edu-config (2.12.43) unstable; urgency=medium
 .
   [ Holger Levsen ]
   * d/changelog:
     - add missing Closes: for #1021688, #1024033 and #1039461 in previous
       entries to ease future debugging.
     - fix too long line in previous entry.
debian-edu-config (2.12.42) unstable; urgency=medium
 .
   * share/debian-edu-config/tools/update-proxy-from-wpad: Ignore missing dconf
     command. (Closes: #1057777). It might be missing on main-server installations
     where no desktop environment is installed.
debian-edu-config (2.12.41) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * gosa-sync: Decode the user password which GOsa substitutes base64 encoded.
     This fixes a bug where the user password could not be set or changed.
     (related to #1052159).

debian-edu-doc (2.12.23~deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm
 .
 debian-edu-doc (2.12.23) unstable; urgency=medium
 .
   [ Fred Maranhão ]
   * (pt) Debian Edu Bookworm manual translation update via weblate.
   * (pt) Debian Edu Bullseye manual translation update via weblate.
 .
   [ Holger Levsen ]
   * Update my copyright years in d/copyright.packaging too.
 .
 debian-edu-doc (2.12.22) unstable; urgency=medium
 .
   [ Сергій ]
   * (uk) Debian Edu bookworm manual translation update via weblate.
 .
   [ Wolfgang Schweer ]
   * (uk) Debian Edu bookworm manual XML syntax fix.
 .
   [ Holger Levsen ]
   * d/copyright: update my years.
 .
 debian-edu-doc (2.12.21) unstable; urgency=medium
 .
   [ Holger Levsen ]
   * Updated the Debian Edu bookworm manual.
 .
   [ Frans Spiesschaert ]
   * Adding add-files for Ukrainian as the Ukrainian translations have passed
     the threshold of 15% translated messages.
   * Removing Traditional Chinese translations as they no longer meet the 15%
     of translated strings threshold. Keeping their respective add files to be
     able to give credit to previous translators in case the translations would
     pass the set threshold in the future again. Keeping also the po files in
     the weblate branch, so that new contributors at weblate can build upon the
     existing translation.
   * (uk) Add translation for string "Publish date:" so that add file can
     properly be applied.
 .
   [ Translation updates ]
   * Bookworm manual:
     - es: Francisco Javier Carro Orgeira.
     - nl: Frans Spiesschaert.
     - ro: Remus-Gabriel Chelu.
     - uk: Serhii Horichenko.
   * Bullseye manual:
     - ro: Remus-Gabriel Chelu.
     - uk: Serhii Horichenko.
debian-edu-doc (2.12.22) unstable; urgency=medium
 .
   [ Сергій ]
   * (uk) Debian Edu bookworm manual translation update via weblate.
 .
   [ Wolfgang Schweer ]
   * (uk) Debian Edu bookworm manual XML syntax fix.
 .
   [ Holger Levsen ]
   * d/copyright: update my years.
debian-edu-doc (2.12.21) unstable; urgency=medium
 .
   [ Holger Levsen ]
   * Updated the Debian Edu bookworm manual.
 .
   [ Frans Spiesschaert ]
   * Adding add-files for Ukrainian as the Ukrainian translations have passed
     the threshold of 15% translated messages.
   * Removing Traditional Chinese translations as they no longer meet the 15%
     of translated strings threshold. Keeping their respective add files to be
     able to give credit to previous translators in case the translations would
     pass the set threshold in the future again. Keeping also the po files in
     the weblate branch, so that new contributors at weblate can build upon the
     existing translation.
   * (uk) Add translation for string "Publish date:" so that add file can
     properly be applied.
 .
   [ Translation updates ]
   * Bookworm manual:
     - es: Francisco Javier Carro Orgeira.
     - nl: Frans Spiesschaert.
     - ro: Remus-Gabriel Chelu.
     - uk: Serhii Horichenko.
   * Bullseye manual:
     - ro: Remus-Gabriel Chelu.
     - uk: Serhii Horichenko.
debian-edu-doc (2.12.20) unstable; urgency=medium
 .
   [ Translation updates ]
   * Bookworm manual:
     - Brasilian Portuguese: Fred Maranhão.
     - Italian: Claudio Carboncini.
     - Spanish: Francisco Javier Carro Orgeira.
   * Bullseye manual:
     - Brasilian Portuguese: Fred Maranhão.
     - Spanish:Eulalio Barbero Espinosa and Francisco Javier Carro Orgeira.
 .
   [ Holger Levsen ]
   * stop sending monthly mails about the bullseye edu manual

debian-edu-fai (2024.02.01.2~deb12u1) bookworm; urgency=medium
 .
   * Release to Debian bookworm.
debian-edu-fai (2024.02.01.1) unstable; urgency=medium
 .
   * fai/config/class/40-parse-profiles.sh:
     + Enlarge menu window width by 5 chars.
   * fai/config/disk_config/LVM_EDU*:
     + Drop /dev/vg_system/usr volume. Causes conflicts with usr-merge
       initiative in Debian.
   * fai/config/disk_config/LVM_EDU_*_LEGACY:
     + Add BIOS Legacy partition tables again. Some old UEFIs/BIOSes
       can't handle BIOS legacy on GPT partition tables.
   * fai/config/_obsolete-files.d/debian-edu-fai.removed:
     + Add class/90_fai.profile.
   * fai/config/package_config/EDU:
     + Assure installation of systemd-timerd.
debian-edu-fai (2023.11.19.1) unstable; urgency=medium
 .
   * bin/debian-edu-router-fai_updateconfigspace:
     - Fix quoting typo in git command.

debian-edu-install (2.12.10~deb12u1) bookworm; urgency=medium
 .
   * Release to bookworm.
debian-edu-install (2.12.9) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * Adjust D-I auto-partitioning sizes for bullseye and bookworm (closes:
     #1038792):
     - Only show profiles in make minimum-diskreq
     - Add partition size data for bullseye
     - Properly declare phony targets in Makefile
     - Increase partition sizes for main-server (90edumain)
     - Increase partition sizes for main-server + thinclient-server (91edumain+
       ltsp)
     - Increase partition sizes for main-server + workstation (92edumain+ws)
     - Update after running 'make update-partman-recipes'
   * README: Fix measured sizes of /srv/ltsp.
 .
   [ Mike Gabriel ]
   * debian-edu-profile:
     - Use '=' instead of '==' in dash script. Thanks, lintian.
   * lib/debian-edu-common:
     - Add shebang (#!/bin/sh) to silence lintian with 'W: debian-edu-profile-
       udeb udeb: executable-not-elf-or-script [lib/debian-edu-common]'.
   * debian/debian-edu-profile-udeb.postinst:
     + Drop #DEBHELPER# macro. The have no effect in udeb:pkgs. Thanks, lintian.

debian-installer (20230607+deb12u5) bookworm; urgency=medium
 .
   * Bump Linux kernel ABI to 6.1.0-18.
   * Adjust linux-image build-deps as well.

debian-installer-netboot-images (20230607+deb12u5) bookworm; urgency=medium
 .
   * Update to 20230607+deb12u5, from bookworm-proposed-updates.

debian-ports-archive-keyring (2024.01.05~deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm.
debian-ports-archive-keyring (2024.01.05~deb11u1) bullseye; urgency=medium
 .
   * Upload to bullseye.

dpdk (22.11.4-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream release 22.11.4; for a full list of changes see:
     http://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html
   * Refresh patches for 22.11.4
   * Add internal/experimental symbols
dpdk (22.11.3-2) unstable; urgency=medium
 .
   * Team upload.
 .
   [ Luca Boccassi ]
   * d/rules: bump test timeout multiplier from 6 to 10
 .
   [ Frode Nordahl ]
   * d/p/testpmd-fix-early-exit-from-signal.patch: Cherry-pick fix for
     LP:#2040097.
dpdk (22.11.3-1) unstable; urgency=medium
 .
   [ Christian Ehrhardt ]
   * d/t/control: drop armhf
 .
   [ Luca Boccassi ]
   * New upstream release 22.11.3; for a full list of changes see:
     http://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html
   * Refresh patches to remove fuzz from 22.11.3
   * Update symbols file for internal experimental symbol in librte-common-
     sfc-efx23

dropbear (2022.83-1+deb12u1) bookworm; urgency=medium
 .
   * Fix CVE-2023-48795: (terrapin attack): The SSH transport protocol with
     certain OpenSSH extensions allows remote attackers to bypass integrity
     checks such that some packets are omitted (from the extension negotiation
     message), and a client and server may consequently end up with a
     connection for which some security features have been downgraded or
     disabled, aka a Terrapin attack. (Closes: #1059001)
dropbear (2022.83-1+deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
   * Add d/salsa-ci.yml for Salsa CI.
 .
 dropbear (2022.83-1+deb12u1) bookworm; urgency=medium
 .
   * Fix CVE-2023-48795: (terrapin attack): The SSH transport protocol with
     certain OpenSSH extensions allows remote attackers to bypass integrity
     checks such that some packets are omitted (from the extension negotiation
     message), and a client and server may consequently end up with a
     connection for which some security features have been downgraded or
     disabled, aka a Terrapin attack. (Closes: #1059001)

engrampa (1.26.0-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Cherry-pick various memleak fixes from upstream:
       0001_dlg-package-installer-fix-memory-leak.patch,
       0002_fr-window-fix-memory-leak.patch,
       0003_file-data-fix-memory-leak.patch, and
       0005_fr-process-fix-memory-leak.patch.
     + Add 0004_Fix-archive-file-save-as-function.patch. Fix archive 'save as'
       function. (Closes: #913075).

espeak-ng (1.51+dfsg-10+deb12u1) bookworm; urgency=medium
 .
   * patches/CVE: Fix CVE-2023-49990, CVE-2023-49991, CVE-2023-49992,
     CVE-2023-49993, CVE-2023-49994 (Closes: Bug#1059060)

exim4 (4.96-15+deb12u4) bookworm-security; urgency=high
 .
   * 77_CVE-2023-51766_4.97.1-release.diff from 4,97.1 release: Refuse to
     accept a line "dot, LF" as end-of-DATA unless operating in LF-only mode
     (as detected from the first header line) to fix smtp-smuggling
     (CVE-2023-51766). Closes: #1059387

filezilla (3.63.0-1+deb12u3) bookworm; urgency=medium
 .
   * [CVE-2023-48795] - Add patch: CVE-2023-48795.patch.
     - Ref: https://security-tracker.debian.org/tracker/CVE-2023-48795

firefox-esr (115.7.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-02, also known as:
     CVE-2024-0741, CVE-2024-0742, CVE-2024-0746, CVE-2024-0747,
     CVE-2024-0749, CVE-2024-0750, CVE-2024-0751, CVE-2024-0753,
     CVE-2024-0755.
firefox-esr (115.7.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2024-02, also known as:
     CVE-2024-0741, CVE-2024-0742, CVE-2024-0746, CVE-2024-0747,
     CVE-2024-0749, CVE-2024-0750, CVE-2024-0751, CVE-2024-0753,
     CVE-2024-0755.
firefox-esr (115.6.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-54, also known as:
     CVE-2023-6856, CVE-2023-6865, CVE-2023-6857, CVE-2023-6858,
     CVE-2023-6859, CVE-2023-6860, CVE-2023-6867, CVE-2023-6861,
     CVE-2023-6862, CVE-2023-6863, CVE-2023-6864.
 .
   * intl/locale/rust/oxilangtag-ffi/src/lib.rs: Allow to build with
     rustc < 1.65.
firefox-esr (115.6.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-54, also known as:
     CVE-2023-6856, CVE-2023-6865, CVE-2023-6857, CVE-2023-6858,
     CVE-2023-6859, CVE-2023-6860, CVE-2023-6867, CVE-2023-6861,
     CVE-2023-6862, CVE-2023-6863, CVE-2023-6864.
 .
   * intl/locale/rust/oxilangtag-ffi/src/lib.rs: Allow to build with
     rustc < 1.65.
firefox-esr (115.6.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-54, also known as:
     CVE-2023-6856, CVE-2023-6865, CVE-2023-6857, CVE-2023-6858,
     CVE-2023-6859, CVE-2023-6860, CVE-2023-6867, CVE-2023-6861,
     CVE-2023-6862, CVE-2023-6863, CVE-2023-6864.
 .
   * intl/locale/rust/oxilangtag-ffi/src/lib.rs: Allow to build with
     rustc < 1.65.
firefox-esr (115.5.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-50, also known as:
     CVE-2023-6204, CVE-2023-6205, CVE-2023-6206, CVE-2023-6207,
     CVE-2023-6208, CVE-2023-6209, CVE-2023-6212.

fish (3.6.0-3.1+deb12u1) bookworm; urgency=medium
 .
   * Cherry-pick upstream fix for CVE-2023-49284. (Closes: #1057455)
     fish shell uses certain Unicode non-characters internally for marking
     wildcards and expansions. It will incorrectly allow these markers to be
     read on command substitution output, rather than transforming them into
     a safe internal representation.

freeimage (3.18.0+ds2-9+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2020-21427 (Closes: #1051737)
   * CVE-2020-21428 (Closes: #1051738)
   * CVE-2020-22524 (Closes: #1051889)

fssync (1.6-1.1+deb12u1) bookworm; urgency=medium
 .
   * Disable extremely flaky test suite, as it has been failing randomly
     for several years. Closes: #858253.

ghostscript (10.0.0~dfsg-11+deb12u3) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix tiffsep(1) requirement for seekable output files (CVE-2023-46751)

glibc (2.36-9+deb12u4) bookworm-security; urgency=medium
 .
   * debian/patches/any/local-CVE-2023-6246.patch: Fix a heap buffer overflow
     in __vsyslog_internal (CVE-2023-6246).
   * debian/patches/any/local-CVE-2023-6779.patch: Fix an off-by-one heap
     buffer overflow in __vsyslog_internal (CVE-2023-6779).
   * debian/patches/any/local-CVE-2023-6780.patch: Fix an integer overflow in
     __vsyslog_internal (CVE-2023-6780).
   * debian/patches/any/local-qsort-memory-corruption.patch: Fix a memory
     corruption in qsort() when using nontransitive comparison functions.

gnutls28 (3.7.9-2+deb12u2) bookworm; urgency=medium
 .
   * Cherrypick two CVE fixes from 3.8.3:
     Fix assertion failure when verifying a certificate chain with a cycle of
     cross signatures. CVE-2024-0567 GNUTLS-SA-2024-01-09 Closes: #1061045
     Fix more timing side-channel inside RSA-PSK key exchange. CVE-2024-0553
     GNUTLS-SA-2024-01-14 Closes: #1061046

gst-plugins-bad1.0 (1.22.0-4+deb12u5) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * av1parser: Fix potential stack overflow during tile list parsing
     (CVE-2024-0444)
gst-plugins-bad1.0 (1.22.0-4+deb12u4) bookworm-security; urgency=medium
 .
   * GST-2023-0011

haproxy (2.6.12-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * REORG: http: move has_forbidden_char() from h2.c to http.h
   * BUG/MAJOR: h3: reject header values containing invalid chars
   * BUG/MAJOR: http: reject any empty content-length header value
     (CVE-2023-40225) (Closes: #1043502)
   * MINOR: ist: add new function ist_find_range() to find a character range
   * MINOR: http: add new function http_path_has_forbidden_char()
   * MINOR: h2: pass accept-invalid-http-request down the request parser
   * REGTESTS: http-rules: add accept-invalid-http-request for normalize-uri
     tests
   * BUG/MINOR: h1: do not accept '#' as part of the URI component
     (CVE-2023-45539)
   * BUG/MINOR: h2: reject more chars from the :path pseudo header
   * BUG/MINOR: h3: reject more chars from the :path pseudo header
   * REGTESTS: http-rules: verify that we block '#' by default for
     normalize-uri
   * DOC: clarify the handling of URL fragments in requests

indent (2.2.12-4+deb12u3) bookworm; urgency=medium
 .
   * Fix a heap buffer underread in set_buf_break(). Closes: #1061543.
     Patch by Petr Písař <ppisar@redhat.com>.
     This is CVE-2024-0911.

isl (0.25-1.1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Configure --without-gcc-arch.  Closes: #1038603.

jtreg7 (7.3.1+1-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm, needed for latest OpenJDK 17.x release
jtreg7 (7.3+1-1) unstable; urgency=medium
 .
   * New upstream release 7.3 build 1 (LP: #2031450).
   * Drop d/p/add-jcommander-to-classpath.patch - jtreg now adds all testng
     jars to the classpath.
jtreg7 (7.2+1-4) unstable; urgency=medium
 .
   [ Chris Lamb ]
   * d/p/reproducible-build.patch: Make jtreg7 build reproducible. Use
     SOURCE_DATE_EPOCH instead of the current build date. Make jtreg.jar
     writable so that it is not ignored by strip-nondeterminism.
     Closes: #1038957.
jtreg7 (7.2+1-3) unstable; urgency=medium
 .
   [ Vladimir Petko ]
   * Fix creating working directory in the autopkg test.
jtreg7 (7.2+1-2) unstable; urgency=medium
 .
   * Source-only upload.
jtreg7 (7.2+1-1) unstable; urgency=medium
 .
   * New upstream release. Closes: #1032981.
   * d/p/add-container-count.patch: drop patch, upstream JUnit is updated.
   * d/copyright: exclude make/checkstyle.

libdatetime-timezone-perl (1:2.60-1+2024a) bookworm; urgency=medium
 .
   * Update data to Olson database version 2024a.
     This update contains contemporary changes for Kazakhstan and Palestine.
 .
 libdatetime-timezone-perl (1:2.60-1+2023d) bookworm; urgency=medium
 .
   * Update data to Olson database version 2023d.
     This update contains contemporary changes for Antarctica and Greenland.
libdatetime-timezone-perl (1:2.60-1+2023d) bookworm; urgency=medium
 .
   * Update data to Olson database version 2023d.
     This update contains contemporary changes for Antarctica and Greenland.

libde265 (1.0.11-1+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
     (Closes: #1059275)
   * CVE-2023-49465
     heap-buffer-overflow in derive_spatial_luma_vector_prediction()
   * CVE-2023-49467
     heap-buffer-overflow in derive_combined_bipredictive_merging_candidates()
   * CVE-2023-49468
     global buffer overflow in read_coding_unit()

libfirefox-marionette-perl (1.35-1+deb12u1) bookworm; urgency=medium
 .
   * Add patch 0001-Fixes-to-capabilities-for-Firefox-112.-Looks-
     related.patch: "Fixes to capabilities for Firefox 112."
     (This is upstream commit 1e87850, included in the 1.36 release.)
     Closes: #1042299

libmateweather (1.26.0-1.1+deb12u2) bookworm; urgency=medium
 .
   * debian/patches:
     + Add follow-up patch 0004b_The-url-with-www.-is-a-permanent-redirect-308-
       to-the.patch. The url with 'www.aviationweather.gov' is a permanent
       redirect (308) to the url without 'www.'. (Cherry-picked from v1.26.3).

libreoffice (4:7.4.7-1+deb12u1) bookworm-security; urgency=high
 .
   * debian/patches/escape-url-passed-to-gstreamer.diff: add from
     libreoffice-7-5; fixes CVE-2023-6185: "Improper input validation
     enabling arbitrary Gstreamer pipeline injection"
   * debian/patches/floating-frame-targets-unneeded-protocols.diff,
     debian/patches/warn-about-exotic-protocols-as-well.diff,
     debian/patches/ignore-LO-special-purpose-hyperlinks-per-default.diff,
     debian/patches/reuse-AllowedLinkProtocolFromDocument-{1,2}.diff:
     add from libreoffice-7-5; fixes CVE-2023-6186: "Link targets allow
     arbitrary script execution"
   * debian/patches/work-around-expired-certificiate-in-test.diff: add from
     upstream https://gerrit.libreoffice.org/c/core/+/159909

libspreadsheet-parseexcel-perl (0.6500-4~deb12u1) bookworm-security; urgency=high
 .
   * Team upload.
   * Rebuild for bookworm-security
 .
 libspreadsheet-parseexcel-perl (0.6500-4) unstable; urgency=medium
 .
   * Team upload.
   * Do not use string eval for conditional formatting (CVE-2023-7101)
     (Closes: #1059450)

libspreadsheet-parsexlsx-perl (0.27-3+deb12u2) bookworm; urgency=medium
 .
   * Team upload.
   * Add a patch to fix an xml external entity (XEE) injection bug.
     [CVE-2024-23525]
     Patch taken from an upstream Git commit contained in the 0.30 release.
     (Closes: #1061098)
 .
 libspreadsheet-parsexlsx-perl (0.27-3+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Add a patch to fix a possible memory bomb. [CVE-2024-22368]
     Patch taken from two upstream Git commits contained in the 0.28 release.
libspreadsheet-parsexlsx-perl (0.27-3+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Add a patch to fix a possible memory bomb. [CVE-2024-22368]
     Patch taken from two upstream Git commits contained in the 0.28 release.

libssh (0.10.6-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream security release:
    - Fix Command injection using ProxyCommand
      (CVE-2023-6004, Closes: #1059061)
    - Fix missing checks for return values of MD functions
      (CVE-2023-6918, Closes: #1059059)
    - Fix potential downgrade attack using strict kex
      (CVE-2023-48795, Closes: #1059004)
   * Fix regression in IPv6 addresses in hostname parsing from CVE-2023-6004
     fix.  Patch and unit test backported from upstream stable-0.10 branch.
     See https://gitlab.com/libssh/libssh-mirror/-/issues/227
libssh (0.10.5-3) unstable; urgency=medium
 .
   * Bump debhelper compat level to 13.
   * Remove compile_commands.json during package cleaning. Fixes "Fails to
     build source after successful build". (Closes: #1045639)

linux (6.1.76-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.70
     - bpf: Fix prog_array_map_poke_run map poke update
     - HID: i2c-hid: acpi: Unify ACPI ID tables format
     - HID: i2c-hid: Add IDEA5002 to i2c_hid_acpi_blacklist[]
     - drm/amd/display: fix hw rotated modes when PSR-SU is enabled
     - [armhf] OMAP2+: Fix null pointer dereference and memory leak in
       omap_soc_device_init
     - reset: Fix crash when freeing non-existent optional resets
     - [s390x] vx: fix save/restore of fpu kernel context
     - wifi: iwlwifi: pcie: add another missing bh-disable for rxq->lock
     - wifi: mac80211: check if the existing link config remains unchanged
     - wifi: mac80211: mesh: check element parsing succeeded
     - wifi: mac80211: mesh_plink: fix matches_local logic
     - Revert "net/mlx5e: fix double free of encap_header in update funcs"
     - Revert "net/mlx5e: fix double free of encap_header"
     - net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list()
     - net/mlx5: Introduce and use opcode getter in command interface
     - net/mlx5: Prevent high-rate FW commands from populating all slots
     - net/mlx5: Re-organize mlx5_cmd struct
     - net/mlx5e: Fix a race in command alloc flow
     - net/mlx5e: fix a potential double-free in fs_udp_create_groups
     - net/mlx5: Fix fw tracer first block check
     - net/mlx5e: Correct snprintf truncation handling for fw_version buffer
     - net/mlx5e: Correct snprintf truncation handling for fw_version buffer used
       by representors
     - [arm64] net: mscc: ocelot: fix eMAC TX RMON stats for bucket 256-511 and
       above
     - net: Return error from sk_stream_wait_connect() if sk_wait_event() fails
     - net: sched: ife: fix potential use-after-free
     - ethernet: atheros: fix a memleak in atl1e_setup_ring_resources
     - net/rose: fix races in rose_kill_by_device()
     - Bluetooth: Fix deadlock in vhci_send_frame
     - Bluetooth: hci_event: shut up a false-positive warning
     - net: mana: select PAGE_POOL
     - net: check vlan filter feature in vlan_vids_add_by_dev() and
       vlan_vids_del_by_dev()
     - afs: Fix the dynamic root's d_delete to always delete unused dentries
     - afs: Fix dynamic root lookup DNS check
     - net: check dev->gso_max_size in gso_features_check()
     - keys, dns: Allow key types (eg. DNS) to be reclaimed immediately on expiry
     - afs: Fix overwriting of result of DNS query
     - afs: Fix use-after-free due to get/remove race in volume tree
     - [arm64,armhf] ASoC: hdmi-codec: fix missing report for jack initial status
     - [arm64] ASoC: fsl_sai: Fix channel swap issue on i.MX8MP
     - [armhf] i2c: aspeed: Handle the coalesced stop conditions with the start
       conditions.
     - gpiolib: cdev: add gpio_device locking wrapper around gpio_ioctl()
     - nvme-pci: fix sleeping function called from interrupt context
     - [x86] drm/i915/mtl: limit second scaler vertical scaling in ver >= 14
     - [x86] drm/i915: Relocate intel_atomic_setup_scalers()
     - [x86] drm/i915: Fix intel_atomic_setup_scalers() plane_state handling
     - [x86] drm/i915/dpt: Only do the POT stride remap when using DPT
     - [x86] drm/i915/mtl: Add MTL for remapping CCS FBs
     - [x86] drm/i915: Fix ADL+ tiled plane stride when the POT stride is smaller
       than the original
     - iio: imu: inv_mpu6050: fix an error code problem in inv_mpu6050_read_raw
     - interconnect: qcom: sm8250: Enable sync_state
     - scsi: bnx2fc: Fix skb double free in bnx2fc_rcv()
     - iio: common: ms_sensors: ms_sensors_i2c: fix humidity conversion time
       table
     - [armhf] iio: adc: ti_am335x_adc: Fix return value check of
       tiadc_request_dma()
     - iio: triggered-buffer: prevent possible freeing of wrong buffer
     - ALSA: usb-audio: Increase delay in MOTU M quirk
     - usb-storage: Add quirk for incorrect WP on Kingston DT Ultimate 3.0 G3
     - wifi: cfg80211: Add my certificate
     - wifi: cfg80211: fix certs build to not depend on file order
     - USB: serial: ftdi_sio: update Actisense PIDs constant names
     - USB: serial: option: add Quectel EG912Y module support
     - USB: serial: option: add Foxconn T99W265 with new baseline
     - USB: serial: option: add Quectel RM500Q R13 firmware support
     - ALSA: hda/realtek: Add quirk for ASUS ROG GV302XA
     - Bluetooth: hci_event: Fix not checking if HCI_OP_INQUIRY has been sent
     - Bluetooth: L2CAP: Send reject on command corrupted request
     - Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE
     - Bluetooth: Add more enc key size check
     - net: usb: ax88179_178a: avoid failed operations when device is
       disconnected
     - [x86] Input: soc_button_array - add mapping for airplane mode button
     - net: 9p: avoid freeing uninit memory in p9pdu_vreadf
     - net: rfkill: gpio: set GPIO direction
     - dt-bindings: nvmem: mxs-ocotp: Document fsl,ocotp
     - smb: client: fix OOB in cifsd when receiving compounded resps
     - smb: client: fix potential OOB in cifs_dump_detail()
     - smb: client: fix OOB in SMB2_query_info_init()
     - smb: client: fix OOB in smbCalcSize() (CVE-2023-6606)
     - [x86] drm/i915: Reject async flips with bigjoiner
     - 9p: prevent read overrun in protocol dump tracepoint
     - [riscv64] Fix do_notify_resume / do_work_pending prototype
     - loop: do not enforce max_loop hard limit by (new) default
     - dm thin metadata: Fix ABBA deadlock by resetting dm_bufio_client
     - Revert "drm/amd/display: Do not set DRR on pipe commit"
     - btrfs: zoned: no longer count fresh BG region as zone unusable
     - ubifs: fix possible dereference after free
     - ublk: move ublk_cancel_dev() out of ub->mutex
     - scsi: core: Always send batch on reset or error handling command
     - tracing / synthetic: Disable events after testing in
       synth_event_gen_test_init()
     - dm-integrity: don't modify bio's immutable bio_vec in integrity_metadata()
     - pinctrl: starfive: jh7100: ignore disabled device tree nodes
     - [armhf] bus: ti-sysc: Flush posted write only after srst_udelay
     - lib/vsprintf: Fix %pfwf when current node refcount == 0
     - [x86] thunderbolt: Fix memory leak in margining_port_remove()
     - [arm64] KVM: arm64: vgic: Simplify kvm_vgic_destroy()
     - [arm64] KVM: arm64: vgic: Add a non-locking primitive for
       kvm_vgic_vcpu_destroy()
     - [arm64] KVM: arm64: vgic: Force vcpu vgic teardown on vcpu destroy
     - [x86] alternatives: Sync core before enabling interrupts
     - fuse: share lookup state between submount and its parent
     - wifi: cfg80211: fix CQM for non-range use
     - wifi: nl80211: fix deadlock in nl80211_set_cqm_rssi (6.6.x)
     - loop: deprecate autoloading callback loop_probe()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.71
     - ksmbd: replace one-element arrays with flexible-array members
     - ksmbd: set SMB2_SESSION_FLAG_ENCRYPT_DATA when enforcing data encryption
       for this share
     - ksmbd: use F_SETLK when unlocking a file
     - ksmbd: Fix resource leak in smb2_lock()
     - ksmbd: Convert to use sysfs_emit()/sysfs_emit_at() APIs
     - ksmbd: Implements sess->rpc_handle_list as xarray
     - ksmbd: fix typo, syncronous->synchronous
     - ksmbd: Remove duplicated codes
     - ksmbd: update Kconfig to note Kerberos support and fix indentation
     - ksmbd: Fix spelling mistake "excceed" -> "exceeded"
     - ksmbd: Fix parameter name and comment mismatch
     - ksmbd: remove unused is_char_allowed function
     - ksmbd: delete asynchronous work from list (CVE-2023-1193)
     - ksmbd: set NegotiateContextCount once instead of every inc
     - ksmbd: avoid duplicate negotiate ctx offset increments
     - ksmbd: remove unused compression negotiate ctx packing
     - fs: introduce lock_rename_child() helper
     - ksmbd: fix racy issue from using ->d_parent and ->d_name
     - ksmbd: fix uninitialized pointer read in ksmbd_vfs_rename()
     - ksmbd: fix uninitialized pointer read in smb2_create_link()
     - ksmbd: call putname after using the last component
     - ksmbd: fix posix_acls and acls dereferencing possible ERR_PTR()
     - ksmbd: add mnt_want_write to ksmbd vfs functions
     - ksmbd: remove unused ksmbd_tree_conn_share function
     - ksmbd: use kzalloc() instead of __GFP_ZERO
     - ksmbd: return a literal instead of 'err' in ksmbd_vfs_kern_path_locked()
     - ksmbd: Change the return value of ksmbd_vfs_query_maximal_access to void
     - ksmbd: use kvzalloc instead of kvmalloc
     - ksmbd: Replace the ternary conditional operator with min()
     - ksmbd: Use struct_size() helper in ksmbd_negotiate_smb_dialect()
     - ksmbd: Replace one-element array with flexible-array member
     - ksmbd: Fix unsigned expression compared with zero
     - ksmbd: check if a mount point is crossed during path lookup
     - ksmbd: switch to use kmemdup_nul() helper
     - ksmbd: add support for read compound
     - ksmbd: fix wrong interim response on compound
     - ksmbd: fix `force create mode' and `force directory mode'
     - ksmbd: Fix one kernel-doc comment
     - ksmbd: add missing calling smb2_set_err_rsp() on error
     - ksmbd: remove experimental warning
     - ksmbd: remove unneeded mark_inode_dirty in set_info_sec()
     - ksmbd: fix passing freed memory 'aux_payload_buf'
     - ksmbd: return invalid parameter error response if smb2 request is invalid
     - ksmbd: check iov vector index in ksmbd_conn_write()
     - ksmbd: fix race condition with fp
     - ksmbd: fix race condition from parallel smb2 logoff requests
     - ksmbd: fix race condition from parallel smb2 lock requests
     - ksmbd: fix race condition between tree conn lookup and disconnect
     - ksmbd: fix wrong error response status by using set_smb2_rsp_status()
     - ksmbd: fix Null pointer dereferences in ksmbd_update_fstate()
     - ksmbd: fix potential double free on smb2_read_pipe() error path
     - ksmbd: Remove unused field in ksmbd_user struct
     - ksmbd: reorganize ksmbd_iov_pin_rsp()
     - ksmbd: fix kernel-doc comment of ksmbd_vfs_setxattr()
     - ksmbd: fix recursive locking in vfs helpers
     - ksmbd: fix missing RDMA-capable flag for IPoIB device in
       ksmbd_rdma_capable_netdev()
     - ksmbd: add support for surrogate pair conversion
     - ksmbd: no need to wait for binded connection termination at logoff
     - ksmbd: fix kernel-doc comment of ksmbd_vfs_kern_path_locked()
     - ksmbd: prevent memory leak on error return
     - ksmbd: fix possible deadlock in smb2_open
     - ksmbd: separately allocate ci per dentry
     - ksmbd: move oplock handling after unlock parent dir
     - ksmbd: release interim response after sending status pending response
     - ksmbd: move setting SMB2_FLAGS_ASYNC_COMMAND and AsyncId
     - ksmbd: don't update ->op_state as OPLOCK_STATE_NONE on error
     - ksmbd: set epoch in create context v2 lease
     - ksmbd: set v2 lease capability
     - ksmbd: downgrade RWH lease caching state to RH for directory
     - ksmbd: send v2 lease break notification for directory
     - ksmbd: lazy v2 lease break on smb2_write()
     - ksmbd: avoid duplicate opinfo_put() call on error of
       smb21_lease_break_ack()
     - ksmbd: fix wrong allocation size update in smb2_open()
     - spi: Introduce spi_get_device_match_data() helper
     - iio: imu: adis16475: add spi_device_id table
     - nfsd: separate nfsd_last_thread() from nfsd_put()
     - nfsd: call nfsd_last_thread() before final nfsd_put()
     - linux/export: Ensure natural alignment of kcrctab array
     - spi: Reintroduce spi_set_cs_timing()
     - spi: Add APIs in spi core to set/get spi->chip_select and spi->cs_gpiod
     - block: renumber QUEUE_FLAG_HW_WC
     - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-22705)
     - mm/filemap: avoid buffered read/write race to read inconsistent data
     - mm: migrate high-order folios in swap cache correctly
     - mm/memory-failure: cast index to loff_t before shifting it
     - mm/memory-failure: check the mapcount of the precise page
     - ring-buffer: Fix wake ups when buffer_percent is set to 100
     - tracing: Fix blocked reader of snapshot buffer
     - ring-buffer: Remove useless update to write_stamp in rb_try_to_discard()
     - ring-buffer: Fix slowpath of interrupted event
     - NFSD: fix possible oops when nfsd/pool_stats is closed.
     - spi: Constify spi parameters of chip select APIs
     - device property: Allow const parameter to dev_fwnode()
     - kallsyms: Make module_kallsyms_on_each_symbol generally available
     - tracing/kprobes: Fix symbol counting logic by looking at modules as well
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.72
     - keys, dns: Fix missing size check of V1 server-list header
     - block: Don't invalidate pagecache for invalid falloc modes
     - ALSA: hda/realtek: enable SND_PCI_QUIRK for hp pavilion 14-ec1xxx series
     - ALSA: hda/realtek: fix mute/micmute LEDs for a HP ZBook
     - ALSA: hda/realtek: Fix mute and mic-mute LEDs for HP ProBook 440 G6
     - mptcp: prevent tcp diag from closing listener subflows
     - Revert "PCI/ASPM: Remove pcie_aspm_pm_state_change()"
     - [x86] drm/mgag200: Fix gamma lut not initialized for G200ER, G200EV,
       G200SE
     - cifs: cifs_chan_is_iface_active should be called with chan_lock held
     - cifs: do not depend on release_iface for maintaining iface_list
     - [x86] KVM: x86/pmu: fix masking logic for MSR_CORE_PERF_GLOBAL_CTRL
     - wifi: iwlwifi: pcie: don't synchronize IRQs from IRQ (Closes: #1058887)
     - [arm64] drm/bridge: ti-sn65dsi86: Never store more than msg->size bytes in
       AUX xfer
     - netfilter: use skb_ip_totlen and iph_totlen
     - netfilter: nf_tables: set transport offset from mac header for
       netdev/egress
     - nfc: llcp_core: Hold a ref to llcp_local->dev when holding a ref to
       llcp_local
     - [x86] drm/i915/dp: Fix passing the correct DPCD_REV for
       drm_dp_set_phy_test_pattern
     - ice: Fix link_down_on_close message
     - ice: Shut down VSI with "link-down-on-close" enabled
     - i40e: Fix filter input checks to prevent config with invalid values
     - igc: Report VLAN EtherType matching back to user
     - igc: Check VLAN TCI mask
     - igc: Check VLAN EtherType mask
     - net: sched: em_text: fix possible memory leak in em_text_destroy()
     - r8169: Fix PCI error on system resume
     - can: raw: add support for SO_MARK
     - net-timestamp: extend SOF_TIMESTAMPING_OPT_ID to HW timestamps
     - net: annotate data-races around sk->sk_tsflags
     - net: annotate data-races around sk->sk_bind_phc
     - net: Implement missing getsockopt(SO_TIMESTAMPING_NEW)
     - [armhf] sun9i: smp: Fix array-index-out-of-bounds read in
       sunxi_mc_smp_init
     - sfc: fix a double-free bug in efx_probe_filters
     - [arm64] net: bcmgenet: Fix FCS generation for fragmented skbuffs
     - netfilter: nft_immediate: drop chain reference counter on error
     - net: Save and restore msg_namelen in sock_sendmsg
     - i40e: fix use-after-free in i40e_aqc_add_filters()
     - [arm64] ASoC: meson: g12a-toacodec: Validate written enum values
     - [arm64] ASoC: meson: g12a-tohdmitx: Validate written enum values
     - [arm64] ASoC: meson: g12a-toacodec: Fix event generation
     - [arm64] ASoC: meson: g12a-tohdmitx: Fix event generation for S/PDIF mux
     - i40e: Restore VF MSI-X state during PCI reset
     - igc: Fix hicredit calculation
     - net/qla3xxx: fix potential memleak in ql_alloc_buffer_queues
     - net/smc: fix invalid link access in dumping SMC-R connections
     - asix: Add check for usbnet_get_endpoints
     - bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters()
     - net: Implement missing SO_TIMESTAMPING_NEW cmsg support
     - cpu/SMT: Create topology_smt_thread_allowed()
     - cpu/SMT: Make SMT control more robust against enumeration failures
     - srcu: Fix callbacks acceleration mishandling
     - [x86] bpf, x64: Fix tailcall infinite loop
     - [x86] bpf, x86: Simplify the parsing logic of structure parameters
     - [x86] bpf, x86: save/restore regs with BPF_DW size
     - net: Declare MSG_SPLICE_PAGES internal sendmsg() flag
     - udp: Convert udp_sendpage() to use MSG_SPLICE_PAGES
     - splice, net: Add a splice_eof op to file-ops and socket-ops
     - ipv4, ipv6: Use splice_eof() to flush
     - udp: introduce udp->udp_flags
     - udp: move udp->no_check6_tx to udp->udp_flags
     - udp: move udp->no_check6_rx to udp->udp_flags
     - udp: move udp->gro_enabled to udp->udp_flags
     - udp: move udp->accept_udp_{l4|fraglist} to udp->udp_flags
     - udp: lockless UDP_ENCAP_L2TPINUDP / UDP_GRO
     - udp: annotate data-races around udp->encap_type
     - wifi: iwlwifi: yoyo: swap cdb and jacket bits values
     - [arm64] dts: qcom: sdm845: align RPMh regulator nodes with bindings
     - [arm64] dts: qcom: sdm845: Fix PSCI power domain names
     - bpf: decouple prune and jump points
     - bpf: remove unnecessary prune and jump points
     - bpf: Remove unused insn_cnt argument from visit_[func_call_]insn()
     - bpf: clean up visit_insn()'s instruction processing
     - bpf: Support new 32bit offset jmp instruction
     - bpf: handle ldimm64 properly in check_cfg()
     - bpf: fix precision backtracking instruction iteration
     - blk-mq: make sure active queue usage is held for bio_integrity_prep()
     - net/mlx5: Increase size of irq name buffer
     - [s390x] mm: add missing arch_set_page_dat() call to vmem_crst_alloc()
     - [s390x] cpumf: support user space events for counting
     - f2fs: clean up i_compress_flag and i_compress_level usage
     - f2fs: convert to use bitmap API
     - f2fs: assign default compression level
     - f2fs: set the default compress_level on ioctl
     - ext4: convert move_extent_per_page() to use folios
     - khugepage: replace try_to_release_page() with filemap_release_folio()
     - memory-failure: convert truncate_error_page() to use folio
     - mm: merge folio_has_private()/filemap_release_folio() call pairs
     - mm, netfs, fscache: stop read optimisation when folio removed from
       pagecache
     - filemap: add a per-mapping stable writes flag
     - block: update the stable_writes flag in bdev_add
     - smb: client: fix missing mode bits for SMB symlinks
     - net: dpaa2-eth: rearrange variable in dpaa2_eth_get_ethtool_stats
     - dpaa2-eth: recycle the RX buffer only after all processing done
     - ethtool: don't propagate EOPNOTSUPP from dumps
     - bpf, sockmap: af_unix stream sockets need to hold ref for pair sock
     - [arm64] firmware: arm_scmi: Fix frequency truncation by promoting
       multiplier type
     - ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7
     - genirq/affinity: Remove the 'firstvec' parameter from
       irq_build_affinity_masks
     - genirq/affinity: Pass affinity managed mask array to
       irq_build_affinity_masks
     - genirq/affinity: Don't pass irq_affinity_desc array to
       irq_build_affinity_masks
     - genirq/affinity: Rename irq_build_affinity_masks as group_cpus_evenly
     - genirq/affinity: Move group_cpus_evenly() into lib/
     - lib/group_cpus.c: avoid acquiring cpu hotplug lock in group_cpus_evenly
     - mm/memory_hotplug: add missing mem_hotplug_lock
     - mm/memory_hotplug: fix error handling in add_memory_resource()
     - net: sched: call tcf_ct_params_free to free params in tcf_ct_init
     - netfilter: flowtable: allow unidirectional rules
     - netfilter: flowtable: cache info of last offload
     - net/sched: act_ct: offload UDP NEW connections
     - net/sched: act_ct: Fix promotion of offloaded unreplied tuple
     - netfilter: flowtable: GC pushes back packets to classic path
     - net/sched: act_ct: Take per-cb reference to tcf_ct_flow_table
     - btrfs: fix qgroup_free_reserved_data int overflow
     - btrfs: mark the len field in struct btrfs_ordered_sum as unsigned
     - ring-buffer: Fix 32-bit rb_time_read() race with rb_time_cmpxchg()
     - firewire: ohci: suppress unexpected system reboot in AMD Ryzen machines
       and ASM108x/VT630x PCIe cards
     - [x86] kprobes: fix incorrect return address calculation in
       kprobe_emulate_call_indirect
     - mm: fix unmap_mapping_range high bits shift bug
     - drm/amdgpu: skip gpu_info fw loading on navi12
     - drm/amd/display: add nv12 bounding box
     - mmc: rpmb: fixes pause retune on all RPMB partitions.
     - mmc: core: Cancel delayed work before releasing host
     - genirq/affinity: Only build SMP-only helper functions on SMP kernels
     - f2fs: compress: fix to assign compress_level for lz4 correctly
     - net/sched: act_ct: additional checks for outdated flows
     - net/sched: act_ct: Always fill offloading tuple iifidx
     - bpf: Fix a verifier bug due to incorrect branch offset comparison with
       cpu=v4
     - bpf: syzkaller found null ptr deref in unix_bpf proto add
     - smb3: Replace smb2pdu 1-element arrays with flex-arrays
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.73
     - Revert "nfsd: call nfsd_last_thread() before final nfsd_put()"
     - Revert "nfsd: separate nfsd_last_thread() from nfsd_put()"
     - ipv6: remove max_size check inline with ipv4 (CVE-2023-52340)
     - cifs: fix flushing folio regression for 6.1 backport (Closes: #1060005)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.74
     - f2fs: explicitly null-terminate the xattr list
     - ALSA: hda - Fix speaker and headset mic pin config for CHUWI CoreBook XPro
     - mptcp: fix uninit-value in mptcp_incoming_options
     - wifi: cfg80211: lock wiphy mutex for rfkill poll
     - wifi: avoid offset calculation on NULL pointer
     - wifi: mac80211: handle 320 MHz in ieee80211_ht_cap_ie_to_sta_ht_cap
     - debugfs: fix automount d_fsdata usage
     - ALSA: hda: intel-nhlt: Ignore vbps when looking for DMIC 32 bps format
     - nvme-core: fix a memory leak in nvme_ns_info_from_identify()
     - drm/amd/display: update dcn315 lpddr pstate latency
     - drm/amdgpu: Fix cat debugfs amdgpu_regs_didt causes kernel null pointer
     - blk-mq: don't count completed flush data request as inflight in case of
       quiesce
     - nvme-core: check for too small lba shift
     - [x86] ASoC: Intel: Skylake: Fix mem leak in few functions
     - [x86] ASoC: Intel: Skylake: mem leak in skl register function
     - ASoC: rt5650: add mutex to avoid the jack detection failure
     - [x86] ASoC: Intel: skl_hda_dsp_generic: Drop HDMI routes when HDMI is not
       available
     - nouveau/tu102: flush all pdbs on vmm flush
     - [x86] ASoC: amd: yc: Add DMI entry to support System76 Pangolin 13
     - [x86] ASoC: hdac_hda: Conditionally register dais for HDMI and Analog
     - net/tg3: fix race condition in tg3_reset_task()
     - ASoC: da7219: Support low DC impedance headset
     - ASoC: ops: add correct range check for limiting volume
     - nvme: introduce helper function to get ctrl state
     - nvme: prevent potential spectre v1 gadget
     - [arm64] dts: rockchip: Fix PCI node addresses on rk3399-gru
     - drm/amdgpu: Add NULL checks for function pointers
     - [armhf] drm/exynos: fix a potential error pointer dereference
     - [armhf] drm/exynos: fix a wrong error checking
     - [x86] hwmon: (corsair-psu) Fix probe when built-in
     - [arm64] clk: rockchip: rk3568: Add PLL rate for 292.5MHz
     - [armhf] clk: rockchip: rk3128: Fix HCLK_OTG gate register
     - jbd2: correct the printing of write_flags in jbd2_write_superblock()
     - jbd2: increase the journal IO's priority
     - drm/crtc: Fix uninit-value bug in drm_mode_setcrtc
     - neighbour: Don't let neigh_forced_gc() disable preemption for long
     - [x86] platform/x86: intel-vbtn: Fix missing tablet-mode-switch events
     - jbd2: fix soft lockup in journal_finish_inode_data_buffers()
     - tracing: Have large events show up as '[LINE TOO BIG]' instead of nothing
     - tracing: Add size check when printing trace_marker output
     - tracing: Fix uaf issue when open the hist or hist_debug file
     - ring-buffer: Do not record in NMI if the arch does not support cmpxchg in
       NMI
     - Input: psmouse - enable Synaptics InterTouch for ThinkPad L14 G1
     - [arm64] reset: hisilicon: hi6220: fix Wvoid-pointer-to-enum-cast warning
     - Input: atkbd - skip ATKBD_CMD_GETID in translated mode
     - Input: i8042 - add nomux quirk for Acer P459-G2-M
     - [s390x] scm: fix virtual vs physical address confusion
     - wifi: iwlwifi: pcie: avoid a NULL pointer dereference
     - Input: xpad - add Razer Wolverine V2 support
     - HID: nintendo: fix initializer element is not constant error
     - [x86] platform/x86: thinkpad_acpi: fix for incorrect fan reporting on some
       ThinkPad systems
     - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for the Medion Lifetab S10346
     - [x86] ASoC: Intel: bytcr_rt5640: Add new swapped-speakers quirk
     - ALSA: hda/realtek: Add quirks for ASUS Zenbook 2022 Models
     - dm audit: fix Kconfig so DM_AUDIT depends on BLK_DEV_DM
     - HID: nintendo: Prevent divide-by-zero on code
     - smb: client: fix potential OOB in smb2_dump_detail() (CVE-2023-6610)
     - [arm64,armhf] i2c: rk3x: fix potential spinlock recursion on poll
     - drm/amd/display: get dprefclk ss info from integration info table
     - ida: Fix crash in ida_free when the bitmap is empty (CVE-2023-6915)
     - virtio_blk: fix snprintf truncation compiler warning
     - net: qrtr: ns: Return 0 if server port is not present
     - [armhf] sun9i: smp: fix return code check of of_property_match_string
     - drm/crtc: fix uninitialized variable use
     - ALSA: hda/realtek: Fix mute and mic-mute LEDs for HP Envy X360 13-ay0xxx
     - ACPI: resource: Add another DMI match for the TongFang GMxXGxx
     - [x86] ASoC: SOF: Intel: hda-codec: Delay the codec device registration
     - btf, scripts: Exclude Rust CUs with pahole
     - bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to
       pahole flags for v1.25
     - ksmbd: don't allow O_TRUNC open on read-only share
     - ksmbd: free ppace array on error in parse_dacl
     - Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d"
     - [arm*] binder: use EPOLLERR from eventpoll.h
     - [arm*] binder: fix use-after-free in shinker's callback
     - [arm*] binder: fix trivial typo of binder_free_buf_locked()
     - [arm*] binder: fix comment on binder_alloc_new_buf() return value
     - uio: Fix use-after-free in uio_open
     - parport: parport_serial: Add Brainboxes BAR details
     - parport: parport_serial: Add Brainboxes device IDs and geometry
     - PCI: Add ACS quirk for more Zhaoxin Root Ports
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.75
     - [x86] lib: Fix overflow when counting digits
     - [x86] mce/inject: Clear test status value
     - [arm64] EDAC/thunderx: Fix possible out-of-bounds string access
     - [powerpc*] remove checks for binutils older than 2.25
     - [powerpc*] add crtsavres.o to always-y instead of extra-y
     - [powerpc*] 44x: select I2C for CURRITUCK
     - [powerpc*] pseries/memhp: Fix access beyond end of drmem array
     - [powerpc*] powernv: Add a null pointer check to scom_debug_init_one()
     - [powerpc*] powernv: Add a null pointer check in opal_event_init()
     - [powerpc*] powernv: Add a null pointer check in opal_powercap_init()
     - [powerpc*] imc-pmu: Add a null pointer check in update_events_in_group()
     - ACPI: video: check for error while searching for backlight device parent
     - ACPI: LPIT: Avoid u32 multiplication overflow
     - KEYS: encrypted: Add check for strsep
     - [x86] platform/x86/intel/vsec: Enhance and Export intel_vsec_add_aux()
     - [x86] platform/x86/intel/vsec: Support private data
     - [x86] platform/x86/intel/vsec: Use mutex for ida_alloc() and ida_free()
     - [x86] platform/x86/intel/vsec: Fix xa_alloc memory leak
     - of: Add of_property_present() helper
     - cpufreq: Use of_property_present() for testing DT property presence
     - cpufreq: scmi: process the result of devm_of_clk_add_hw_provider()
     - calipso: fix memory leak in netlbl_calipso_add_pass()
     - efivarfs: force RO when remounting if SetVariable is not supported
     - efivarfs: Free s_fs_info on unmount
     - ACPI: LPSS: Fix the fractional clock divider flags
     - ACPI: extlog: Clear Extended Error Log status when RAS_CEC handled the
       error
     - mtd: Fix gluebi NULL pointer dereference caused by ftl notifier
     - selinux: Fix error priority for bind with AF_UNSPEC on PF_INET6 socket
     - crypto: virtio - Handle dataq logic with tasklet
     - [x86] crypto: ccp - fix memleak in ccp_init_dm_workarea
     - crypto: af_alg - Disallow multiple in-flight AIO requests
     - [arm64] crypto: safexcel - Add error handling for dma_map_sg() calls
     - crypto: hisilicon/qm - save capability registers in qm init process
     - crypto: hisilicon/zip - add zip comp high perf mode configuration
     - crypto: hisilicon/qm - add a function to set qm algs
     - crypto: hisilicon/hpre - save capability registers in probe process
     - crypto: hisilicon/sec2 - save capability registers in probe process
     - crypto: hisilicon/zip - save capability registers in probe process
     - pstore: ram_core: fix possible overflow in persistent_ram_init_ecc()
     - erofs: fix memory leak on short-lived bounced pages
     - fs: indicate request originates from old mount API
     - gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump
     - crypto: virtio - Wait for tasklet to complete on device remove
     - crypto: scomp - fix req->dst buffer overflow
     - csky: fix arch_jump_label_transform_static override
     - blocklayoutdriver: Fix reference leak of pnfs_device_node
     - NFSv4.1/pnfs: Ensure we handle the error NFS4ERR_RETURNCONFLICT
     - SUNRPC: fix _xprt_switch_find_current_entry logic
     - pNFS: Fix the pnfs block driver's calculation of layoutget size
     - wifi: plfxlc: check for allocation failure in plfxlc_usb_wreq_async()
     - wifi: rtw88: fix RX filter in FIF_ALLMULTI flag
     - bpf, lpm: Fix check prefixlen before walking trie
     - bpf: Add crosstask check to __bpf_get_stack
     - wifi: ath11k: Defer on rproc_get failure
     - wifi: libertas: stop selecting wext
     - [armhf] net/ncsi: Fix netlink major/minor version numbers
     - [arm64] firmware: ti_sci: Fix an off-by-one in ti_sci_debugfs_create()
     - [arm64] firmware: meson_sm: populate platform devices from sm device tree
       data
     - wifi: rtlwifi: rtl8821ae: phy: fix an undefined bitwise shift behavior
     - md: synchronize flush io with array reconfiguration
     - bpf: enforce precision of R0 on callback return
     - rcu-tasks: Provide rcu_trace_implies_rcu_gp()
     - bpf: add percpu stats for bpf_map elements insertions/deletions
     - bpf: Add map and need_defer parameters to .map_fd_put_ptr()
     - bpf: Defer the free of inner map when necessary
     - bpf: fix check for attempt to corrupt spilled pointer
     - scsi: fnic: Return error if vmalloc() failed
     - [arm64] dts: qcom: qrb5165-rb5: correct LED panic indicator
     - [arm64] dts: qcom: sdm845-db845c: correct LED panic indicator
     - bpf: Fix verification of indirect var-off stack access
     - dt-bindings: media: mediatek: mdp3: correct RDMA and WROT node with
       generic names
     - wifi: mt76: mt7921: fix country count limitation for CLC
     - block: Set memalloc_noio to false on device_add_disk() error path
     - [arm64] scsi: hisi_sas: Replace with standard error code return value
     - [arm64] scsi: hisi_sas: Rollback some operations if FLR failed
     - [arm64] scsi: hisi_sas: Correct the number of global debugfs registers
     - [armhf] dts: stm32: don't mix SCMI and non-SCMI board compatibles
     - ipmr: support IP_PKTINFO on cache report IGMP msg
     - virtio/vsock: fix logic which reduces credit update messages
     - dma-mapping: clear dev->dma_mem to NULL after freeing it
     - [arm64] dts: qcom: sm8150-hdk: fix SS USB regulators
     - block: add check of 'minors' and 'first_minor' in device_add_disk()
     - wifi: rtlwifi: add calculate_bit_shift()
     - wifi: rtlwifi: rtl8188ee: phy: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192c: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192cu: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192ce: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192de: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192ee: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192se: using calculate_bit_shift()
     - wifi: iwlwifi: mvm: set siso/mimo chains to 1 in FW SMPS request
     - wifi: iwlwifi: mvm: send TX path flush in rfkill
     - netfilter: nf_tables: mark newset as dead on transaction abort
     - Bluetooth: Fix bogus check for re-auth no supported with non-ssp
     - Bluetooth: btmtkuart: fix recv_buf() return value
     - block: make BLK_DEF_MAX_SECTORS unsigned
     - null_blk: don't cap max_hw_sectors to BLK_DEF_MAX_SECTORS
     - bpf: sockmap, fix proto update hook to avoid dup calls
     - sctp: support MSG_ERRQUEUE flag in recvmsg()
     - sctp: fix busy polling
     - net/sched: act_ct: fix skb leak and crash on ooo frags
     - mlxbf_gige: Fix intermittent no ip issue
     - mlxbf_gige: Enable the GigE port in mlxbf_gige_open
     - ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()
     - [armhf] Revert "drm/omapdrm: Annotate dma-fence critical section in commit
       path"
     - [arm64,armhf] drm/panfrost: Really power off GPU cores in
       panfrost_gpu_power_off()
     - RDMA/usnic: Silence uninitialized symbol smatch warnings
     - [arm64] RDMA/hns: Fix inappropriate err code for unsupported operations
     - drm/nouveau/fence:: fix warning directly dereferencing a rcu pointer
     - drm/bridge: tpd12s015: Drop buggy __exit annotation for remove function
     - drm/tilcdc: Fix irq free on unload
     - media: pvrusb2: fix use after free on context disconnection
     - media: mtk-jpegdec: export jpeg decoder functions
     - media: mtk-jpeg: Remove cancel worker in mtk_jpeg_remove to avoid the
       crash of multi-core JPEG devices
     - media: verisilicon: Hook the (TRY_)DECODER_CMD stateless ioctls
     - media: rkvdec: Hook the (TRY_)DECODER_CMD stateless ioctls
     - drm/bridge: Fix typo in post_disable() description
     - f2fs: fix to avoid dirent corruption
     - drm/radeon/r600_cs: Fix possible int overflows in r600_cs_check_reg()
     - drm/radeon/r100: Fix integer overflow issues in r100_cs_track_check()
     - drm/radeon: check return value of radeon_ring_lock()
     - [arm64] drm/msm/mdp4: flush vblank event on disable
     - [arm64] drm/msm/dsi: Use pm_runtime_resume_and_get to prevent refcnt leaks
     - drm/drv: propagate errors from drm_modeset_register_all()
     - [x86] ASoC: Intel: glk_rt5682_max98357a: fix board id mismatch
     - [arm64,armhf] drm/panfrost: Ignore core_mask for poweroff and disable
       PWRTRANS irq
     - drm/radeon: check the alloc_workqueue return value in radeon_crtc_init()
     - drm/radeon/dpm: fix a memleak in sumo_parse_power_table
     - drm/radeon/trinity_dpm: fix a memleak in trinity_parse_power_table
     - drm/bridge: cdns-mhdp8546: Fix use of uninitialized variable
     - drm/bridge: tc358767: Fix return value on error case
     - media: cx231xx: fix a memleak in cx231xx_init_isoc
     - [arm64] RDMA/hns: Fix memory leak in free_mr_init()
     - drm/panel: st7701: Fix AVCL calculation
     - f2fs: fix to wait on block writeback for post_read case
     - f2fs: fix to check compress file in f2fs_move_file_range()
     - f2fs: fix to update iostat correctly in f2fs_filemap_fault()
     - media: dvbdev: drop refcount on error path in dvb_device_open()
     - media: dvb-frontends: m88ds3103: Fix a memory leak in an error handling
       path of m88ds3103_probe()
     - [arm64] drm/msm/dpu: Set input_sel bit for INTF
     - [arm64] drm/msm/dpu: Drop enable and frame_count parameters from
       dpu_hw_setup_misr()
     - drm/amdgpu/debugfs: fix error code when smc register accessors are NULL
     - drm/amd/pm: fix a double-free in si_dpm_init
     - drivers/amd/pm: fix a use-after-free in kv_parse_power_table
     - gpu/drm/radeon: fix two memleaks in radeon_vm_init
     - drm/amd/pm: fix a double-free in amdgpu_parse_extended_power_table
     - f2fs: fix to check return value of f2fs_recover_xattr_data
     - dt-bindings: clock: Update the videocc resets for sm8150
     - [arm64] drivers: clk: zynqmp: calculate closest mux rate
     - [arm64] drivers: clk: zynqmp: update divider round rate logic
     - watchdog: set cdev owner before adding
     - watchdog/hpwdt: Only claim UNKNOWN NMI if from iLO
     - watchdog: bcm2835_wdt: Fix WDIOC_SETTIMEOUT handling
     - watchdog: rti_wdt: Drop runtime pm reference count when watchdog is unused
     - [arm64] clk: si5341: fix an error code problem in
       si5341_output_clk_set_rate
     - accel/habanalabs: fix information leak in sec_attest_info()
       (CVE-2023-50431)
     - clk: fixed-rate: fix clk_hw_register_fixed_rate_with_accuracy_parent_hw
     - ASoC: rt5645: Drop double EF20 entry from dmi_platform_data[]
     - ALSA: scarlett2: Add missing error check to scarlett2_config_save()
     - ALSA: scarlett2: Add missing error check to scarlett2_usb_set_config()
     - ALSA: scarlett2: Allow passing any output to line_out_remap()
     - ALSA: scarlett2: Add missing error checks to *_ctl_get()
     - ALSA: scarlett2: Add clamp() in scarlett2_mixer_ctl_put()
     - IB/iser: Prevent invalidating wrong MR
     - drm/amd/pm/smu7: fix a memleak in smu7_hwmgr_backend_init
     - ksmbd: validate the zero field of packet header
     - of: Fix double free in of_parse_phandle_with_args_map
     - keys, dns: Fix size check of V1 server-list header
     - [arm*] binder: fix async space check for 0-sized buffers
     - [arm*] binder: fix unused alloc->free_async_space
     - [mipel*] smp: Call rcutree_report_cpu_starting() earlier
     - Input: atkbd - use ab83 as id when skipping the getid command
     - xen-netback: don't produce zero-size SKB frags (CVE-2023-46838)
     - [arm*] binder: fix race between mmput() and do_exit()
     - [arm64,armhf] clocksource/drivers/timer-ti-dm: Fix make W=n kerneldoc
       warnings
     - [powerpc*] 64s: Increase default stack size to 32KB
     - tick-sched: Fix idle and iowait sleeptime accounting vs CPU hotplug
     - [armhf] usb: phy: mxs: remove CONFIG_USB_OTG condition for
       mxs_phy_is_otg_host()
     - [arm64,armhf] usb: dwc: ep0: Update request status in
       dwc3_ep0_stall_restart
     - [arm64,armhf] Revert "usb: dwc3: Soft reset phy on probe for host"
     - [arm64,armhf] Revert "usb: dwc3: don't reset device side if dwc3 was
       configured as host-only"
     - [arm64,armhf] usb: chipidea: wait controller resume finished for wakeup
       irq
     - Revert "usb: typec: class: fix typec_altmode_put_partner to put plugs"
     - usb: typec: class: fix typec_altmode_put_partner to put plugs
     - usb: mon: Fix atomicity violation in mon_bin_vma_fault
     - serial: core: fix sanitizing check for RTS settings
     - serial: core: make sure RS485 cannot be enabled when it is not supported
     - [arm64,armhf] serial: 8250_bcm2835aux: Restore clock error handling
     - serial: core, imx: do not set RS485 enabled if it is not supported
     - [arm64,armhf] serial: imx: Ensure that imx_uart_rs485_config() is called
       with enabled clock
     - serial: 8250_exar: Set missing rs485_supported flag
     - [armhf] serial: omap: do not override settings for RS485 support
     - drm/vmwgfx: Fix possible invalid drm gem put calls
     - drm/vmwgfx: Keep a gem reference to user bos in surfaces (CVE-2023-5633)
     - ALSA: oxygen: Fix right channel of capture volume mixer
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15s-fq2xxx
     - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on HP
       ZBook
     - ALSA: hda/realtek: Enable headset mic on Lenovo M70 Gen5
     - ksmbd: validate mech token in session setup
     - ksmbd: fix UAF issue in ksmbd_tcp_new_connection()
     - ksmbd: only v2 leases handle the directory
     - io_uring/rw: ensure io->bytes_done is always initialized
     - fbdev: flush deferred work in fb_deferred_io_fsync()
     - fbdev: flush deferred IO before closing
     - scsi: ufs: core: Simplify power management during async scan
     - scsi: target: core: add missing file_{start,end}_write()
     - scsi: mpi3mr: Refresh sdev queue depth after controller reset
     - scsi: mpi3mr: Block PEL Enable Command on Controller Reset and
       Unrecoverable State
     - drm/amd: Enable PCIe PME from D3
     - block: add check that partition length needs to be aligned with block size
     - block: Fix iterating over an empty bio with bio_for_each_folio_all
     - netfilter: nf_tables: check if catch-all set element is active in next
       generation (CVE-2024-1085)
     - pwm: Fix out-of-bounds access in of_pwm_single_xlate()
     - md/raid1: Use blk_opf_t for read and write operations
     - rootfs: Fix support for rootfstype= when root= is given
     - Bluetooth: Fix atomicity violation in {min,max}_key_size_set
     - bpf: Fix re-attachment branch in bpf_tracing_prog_attach
     - [arm64] iommu/arm-smmu-qcom: Add missing GMU entry to match table
     - iommu/dma: Trace bounce buffer usage when mapping buffers
     - wifi: mt76: fix broken precal loading from MTD for mt7915
     - wifi: rtlwifi: Remove bogus and dangerous ASPM disable/enable code
     - wifi: rtlwifi: Convert LNKCTL change to PCIe cap RMW accessors
     - wifi: mwifiex: configure BSSID consistently when starting AP
     - Revert "net: rtnetlink: Enslave device before bringing it up"
     - cxl/port: Fix decoder initialization when nr_targets > interleave_ways
     - PCI/P2PDMA: Remove reference to pci_p2pdma_map_sg()
     - [x86] kvm: Do not try to disable kvmclock if it was not enabled
     - [arm64] KVM: arm64: vgic-v4: Restore pending state on host userspace write
     - [arm64] KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache
     - iio: adc: ad7091r: Pass iio_dev to event handler
     - HID: wacom: Correct behavior when processing some confidence == false
       touches
     - mfd: syscon: Fix null pointer dereference in of_syscon_register()
     - [x86] mfd: intel-lpss: Fix the fractional clock divider flags
     - [mipsel] Fix incorrect max_low_pfn adjustment
     - [arm64] power: supply: cw2015: correct time_to_empty units in sysfs
     - [arm64] serial: 8250: omap: Don't skip resource freeing if
       pm_runtime_resume_and_get() failed
     - libapi: Add missing linux/types.h header to get the __u64 type on io.h
     - base/node.c: initialize the accessor list before registering
     - acpi: property: Let args be NULL in __acpi_node_get_property_reference
     - software node: Let args be NULL in software_node_get_reference_args
     - serial: imx: fix tx statemachine deadlock
     - iio: adc: ad9467: fix reset gpio handling
     - iio: adc: ad9467: don't ignore error codes
     - iio: adc: ad9467: fix scale setting
     - perf header: Fix one memory leakage in perf_event__fprintf_event_update()
     - perf hisi-ptt: Fix one memory leakage in hisi_ptt_process_auxtrace_event()
     - perf genelf: Set ELF program header addresses properly
     - tty: change tty_write_lock()'s ndelay parameter to bool
     - tty: early return from send_break() on TTY_DRIVER_HARDWARE_BREAK
     - tty: don't check for signal_pending() in send_break()
     - tty: use 'if' in send_break() instead of 'goto'
     - usb: cdc-acm: return correct error code on unsupported break
     - nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length
     - nvmet-tcp: fix a crash in nvmet_req_complete()
     - perf env: Avoid recursively taking env->bpf_progs.lock
     - cxl/region: fix x9 interleave typo
     - apparmor: avoid crash when parsed profile name is empty
     - [arm64,armhf] serial: imx: Correct clock error message in function probe()
     - nvmet: re-fix tracing strncpy() warning
     - nvme: trace: avoid memcpy overflow warning
     - nvmet-tcp: Fix the H2C expected PDU len calculation
     - [s390x] pci: fix max size calculation in zpci_memcpy_toio()
     - [arm64] net: ethernet: ti: am65-cpsw: Fix max mtu to fit ethernet frames
     - net: phy: micrel: populate .soft_reset for KSZ9131
     - mptcp: mptcp_parse_option() fix for MPTCPOPT_MP_JOIN
     - mptcp: strict validation before using mp_opt->hmac
     - mptcp: use OPTION_MPTCP_MPJ_SYNACK in subflow_finish_connect()
     - mptcp: use OPTION_MPTCP_MPJ_SYN in subflow_check_req()
     - mptcp: refine opt_mp_capable determination
     - block: ensure we hold a queue reference when using queue limits
     - udp: annotate data-races around up->pending
     - net: stmmac: ethtool: Fixed calltrace caused by unbalanced
       disable_irq_wake calls
     - bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS
     - mptcp: relax check on MPC passive fallback
     - netfilter: nf_tables: reject invalid set policy
     - netfilter: nft_limit: do not ignore unsupported flags
     - netfilter: nfnetlink_log: use proper helper for fetching physinif
     - netfilter: nf_queue: remove excess nf_bridge variable
     - netfilter: propagate net to nf_bridge_get_physindev
     - netfilter: bridge: replace physindev with physinif in nf_bridge_info
     - netfilter: nf_tables: do not allow mismatch field size and set key length
     - netfilter: nf_tables: skip dead set elements in netlink dump
     - netfilter: nf_tables: reject NFT_SET_CONCAT with not field length
       description
     - ipvs: avoid stat macros calls from preemptible context
     - kdb: Fix a potential buffer overflow in kdb_local()
     - ethtool: netlink: Add missing ethnl_ops_begin/complete
     - loop: fix the the direct I/O support check when used on top of block
       devices
     - ipv6: mcast: fix data-race in ipv6_mc_down / mld_ifc_work
     - [armhf] i2c: s3c24xx: fix read transfers in polling mode
     - [armhf] i2c: s3c24xx: fix transferring more than one message in polling
       mode
     - block: Remove special-casing of compound pages
     - Revert "KEYS: encrypted: Add check for strsep"
     - [arm64] dts: armada-3720-turris-mox: set irq type for RTC
     - Revert "Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d""
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.76
     - [arm64,armhf] usb: dwc3: gadget: Refactor EP0 forced stall/restart into a
       separate API
     - [arm64,armhf] usb: dwc3: gadget: Queue PM runtime idle on disconnect event
     - [arm64,armhf] usb: dwc3: gadget: Handle EP0 request dequeuing properly
     - [x86] Revert "nSVM: Check for reserved encodings of TLB_CONTROL in nested
       VMCB"
     - iio: adc: ad7091r: Set alert bit in config register
     - iio: adc: ad7091r: Allow users to configure device events
     - ext4: allow for the last group to be marked as trimmed
     - OPP: Pass rounded rate to _set_opp()
     - btrfs: sysfs: validate scrub_speed_max value
     - crypto: api - Disallow identical driver names
     - PM: hibernate: Enforce ordering during image compression/decompression
     - hwrng: core - Fix page fault dead lock on mmap-ed hwrng
     - [s390x] crypto: s390/aes - Fix buffer overread in CTR mode
     - [s390x] vfio-ap: unpin pages on gisc registration failure
     - PM / devfreq: Fix buffer overflow in trans_stat_show
     - media: imx355: Enable runtime PM before registering async sub-device
     - rpmsg: virtio: Free driver_override when rpmsg_remove()
     - media: ov9734: Enable runtime PM before registering async sub-device
     - [s390x] vfio-ap: always filter entire AP matrix
     - [s390x] vfio-ap: loop over the shadow APCB when filtering guest's AP
       configuration
     - [s390x] vfio-ap: let on_scan_complete() callback filter matrix and update
       guest's APCB
     - [mips*] Fix max_mapnr being uninitialized on early stages
     - bus: mhi: host: Add alignment check for event ring read pointer
     - bus: mhi: host: Drop chan lock before queuing buffers
     - bus: mhi: host: Add spinlock to protect WP access when queueing TREs
     - async: Split async_schedule_node_domain()
     - async: Introduce async_schedule_dev_nocall()
     - iio: adc: ad7091r: Enable internal vref if external vref is not supplied
     - dmaengine: fix NULL pointer in channel unregistration function
     - scsi: ufs: core: Remove the ufshcd_hba_exit() call from
       ufshcd_async_scan()
     - [arm64] dts: qcom: sc7180: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sdm845: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sm8150: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sc7280: fix usb_1 wakeup interrupt types
     - [arm64] dts: qcom: sdm845: fix USB DP/DM HS PHY interrupts
     - [arm64] dts: qcom: sm8150: fix USB DP/DM HS PHY interrupts
     - lsm: new security_file_ioctl_compat() hook
     - docs: kernel_abi.py: fix command injection
     - scripts/get_abi: fix source path leak
     - media: videobuf2-dma-sg: fix vmap callback
     - mmc: core: Use mrq.sbc in close-ended ffu
     - mmc: mmc_spi: remove custom DMA mapped buffers
     - media: mtk-jpeg: Fix use after free bug due to error path handling in
       mtk_jpeg_dec_device_run
     - [arm64] Rename ARM64_WORKAROUND_2966298
     - rtc: cmos: Use ACPI alarm for non-Intel x86 systems too
     - rtc: Adjust failure return code for cmos_set_alarm()
     - rtc: mc146818-lib: Adjust failure return code for mc146818_get_time()
     - rtc: Add support for configuring the UIP timeout for RTC reads
     - rtc: Extend timeout for waiting for UIP to clear to 1s
     - nouveau/vmm: don't set addr on the fail path to avoid warning
     - ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path
     - mm/rmap: fix misplaced parenthesis of a likely()
     - mm/sparsemem: fix race in accessing memory_section->usage
     - rename(): fix the locking of subdirectories
     - serial: sc16is7xx: improve regmap debugfs by using one regmap per port
     - serial: sc16is7xx: remove wasteful static buffer in
       sc16is7xx_regmap_name()
     - serial: sc16is7xx: remove global regmap from struct sc16is7xx_port
     - serial: sc16is7xx: remove unused line structure member
     - serial: sc16is7xx: change EFR lock to operate on each channels
     - serial: sc16is7xx: convert from _raw_ to _noinc_ regmap functions for FIFO
     - serial: sc16is7xx: fix invalid sc16is7xx_lines bitfield in case of probe
       error
     - serial: sc16is7xx: remove obsolete loop in sc16is7xx_port_irq()
     - serial: sc16is7xx: improve do/while loop in sc16is7xx_irq()
     - mm: page_alloc: unreserve highatomic page blocks before oom
     - ksmbd: set v2 lease version on lease upgrade
     - ksmbd: fix potential circular locking issue in smb2_set_ea()
     - ksmbd: don't increment epoch if current state and request state are same
     - ksmbd: send lease break notification on FILE_RENAME_INFORMATION
     - ksmbd: Add missing set_freezable() for freezable kthread
     - Revert "drm/amd: Enable PCIe PME from D3"
     - drm/amd/display: pbn_div need be updated for hotplug event
     - wifi: mac80211: fix potential sta-link leak
     - net/smc: fix illegal rmb_desc access in SMC-D connection dump
     - tcp: make sure init the accept_queue's spinlocks once
     - bnxt_en: Wait for FLR to complete during probe
     - vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING
     - llc: make llc_ui_sendmsg() more robust against bonding changes
     - llc: Drop support for ETH_P_TR_802_2.
     - udp: fix busy polling
     - net: fix removing a namespace with conflicting altnames
     - tun: fix missing dropped counter in tun_xdp_act
     - tun: add missing rx stats accounting in tun_xdp_act
     - net: micrel: Fix PTP frame parsing for lan8814
     - net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv
     - netfs, fscache: Prevent Oops in fscache_put_cache()
     - tracing: Ensure visibility when inserting an element into tracing_map
     - afs: Hide silly-rename files from userspace
     - tcp: Add memory barrier to tcp_push()
     - netlink: fix potential sleeping issue in mqueue_flush_file
     - ipv6: init the accept_queue's spinlocks in inet6_create
     - net/mlx5: DR, Use the right GVMI number for drop action
     - net/mlx5: DR, Can't go to uplink vport on RX rule
     - net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO
     - net/mlx5e: Allow software parsing when IPsec crypto is enabled
     - net/mlx5e: fix a double-free in arfs_create_groups
     - net/mlx5e: fix a potential double-free in fs_any_create_groups
     - rcu: Defer RCU kthreads wakeup when CPU is dying
     - netfilter: nft_limit: reject configurations that cause integer overflow
     - btrfs: fix infinite directory reads
     - btrfs: set last dir index to the current last index when opening dir
     - btrfs: refresh dir last index during a rewinddir(3) call
     - btrfs: fix race between reading a directory and adding entries to it
     - netfilter: nf_tables: restrict anonymous set and map names to 16 bytes
     - netfilter: nf_tables: validate NFPROTO_* family
     - net: stmmac: Wait a bit for the reset to take effect
     - net: mvpp2: clear BM pool before initialization
     - fjes: fix memleaks in fjes_hw_setup
     - net: fec: fix the unhandled context fault from smmu
     - nbd: always initialize struct msghdr completely
     - btrfs: avoid copying BTRFS_ROOT_SUBVOL_DEAD flag to snapshot of subvolume
       being deleted
     - btrfs: ref-verify: free ref cache before clearing mount opt
     - btrfs: tree-checker: fix inline ref size in error messages
     - btrfs: don't warn if discard range is not aligned to sector
     - btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args
     - btrfs: don't abort filesystem when attempting to snapshot deleted
       subvolume
     - rbd: don't move requests to the running list on errors
     - exec: Fix error handling in begin_new_exec()
     - wifi: iwlwifi: fix a memory corruption
     - hv_netvsc: Calculate correct ring size when PAGE_SIZE is not 4 Kbytes
     - netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress
       basechain
     - netfilter: nf_tables: reject QUEUE/DROP verdict parameters (CVE-2024-1086)
     - [x86] platform/x86: p2sb: Allow p2sb_bar() calls during PCI device probe
     - ksmbd: fix global oob in ksmbd_nl_policy
     - [arm64] firmware: arm_scmi: Check mailbox/SMT channel for consistency
     - xfs: read only mounts with fsopen mount API are busted
     - gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04
     - cpufreq: intel_pstate: Refine computation of P-state for given frequency
     - drm: Don't unref the same fb many times by mistake due to deadlock
       handling
     - drm/bridge: nxp-ptn3460: fix i2c_master_send() error checking
     - drm/tidss: Fix atomic_flush check
     - drm/amd/display: Disable PSR-SU on Parade 0803 TCON again
     - [x86] platform/x86: intel-uncore-freq: Fix types in sysfs callbacks
     - drm/bridge: nxp-ptn3460: simplify some error checking
     - drm/amd/display: Port DENTIST hang and TDR fixes to OTG disable W/A
     - drm/amdgpu/pm: Fix the power source flag error
     - erofs: get rid of the remaining kmap_atomic()
     - erofs: fix lz4 inplace decompression
     - media: ov13b10: Support device probe in non-zero ACPI D state
     - media: ov13b10: Enable runtime PM before registering async sub-device
     - bus: mhi: ep: Do not allocate event ring element on stack
     - PM: core: Remove unnecessary (void *) conversions
     - PM: sleep: Fix possible deadlocks in core system-wide PM code
     - [x86] thermal: intel: hfi: Refactor enabling code into helper functions
     - [x86] thermal: intel: hfi: Disable an HFI instance when all its CPUs go
       offline
     - [x86] thermal: intel: hfi: Add syscore callbacks for system-wide PM
     - fs/pipe: move check to pipe_has_watch_queue()
     - pipe: wakeup wr_wait after setting max_usage
     - dlm: use kernel_connect() and kernel_bind()
     - serial: core: Provide port lock wrappers
     - serial: sc16is7xx: Use port lock wrappers
     - serial: sc16is7xx: fix unconditional activation of THRI interrupt
     - btrfs: zoned: factor out prepare_allocation_zoned()
     - btrfs: zoned: optimize hint byte for zoned allocator
     - drm/panel-edp: drm/panel-edp: Fix AUO B116XAK01 name and timing
     - Revert "powerpc/64s: Increase default stack size to 32KB"
     - drm/bridge: parade-ps8640: Wait for HPD when doing an AUX transfer
     - drm: panel-simple: add missing bus flags for Tianma tm070jvhg[30/33]
     - drm/bridge: sii902x: Use devm_regulator_bulk_get_enable()
     - drm/bridge: sii902x: Fix probing race issue
     - drm/bridge: sii902x: Fix audio codec unregistration
     - drm/bridge: parade-ps8640: Ensure bridge is suspended in .post_disable()
     - drm/bridge: parade-ps8640: Make sure we drop the AUX mutex in the error
       case
     - [armhf] drm/exynos: fix accidental on-stack copy of exynos_drm_plane
     - [armhf] drm/exynos: gsc: minor fix for loop iteration in
       gsc_runtime_resume
     - gpio: eic-sprd: Clear interrupt after set the interrupt type
     - block: Move checking GENHD_FL_NO_PART to bdev_add_partition()
     - drm/bridge: anx7625: Ensure bridge is suspended in disable()
     - spi: bcm-qspi: fix SFDP BFPT read by usig mspi read
     - spi: fix finalize message on error return
     - [mips*] lantiq: register smp_ops on non-smp platforms
     - cxl/region：Fix overflow issue in alloc_hpa()
     - [mips*] Call lose_fpu(0) before initializing fcr31 in
       mips_set_personality_nan
     - tick/sched: Preserve number of idle sleeps across CPU hotplug events
     - [x86] x86/entry/ia32: Ensure s32 is sign extended to s64
     - serial: core: fix kernel-doc for uart_port_unlock_irqrestore()
     - net/mlx5e: Handle hardware IPsec limits events
 .
   [ Salvatore Bonaccorso ]
   * Refresh "net: mana: Add support for auxiliary device"
   * Bump ABI to 18
linux (6.1.69-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.68
     - hrtimers: Push pending hrtimers away from outgoing CPU earlier
     - i2c: designware: Fix corrupted memory seen in the ISR
     - netfilter: ipset: fix race condition between swap/destroy and kernel side
       add/del/test
     - tg3: Move the [rt]x_dropped counters to tg3_napi
     - tg3: Increment tx_dropped in tg3_tso_bug()
     - kconfig: fix memory leak from range properties
     - drm/amdgpu: correct chunk_ptr to a pointer to chunk.
     - [x86] Introduce ia32_enabled()
     - [amd64] x86/coco: Disable 32-bit emulation by default on TDX and SEV
     - [x86] entry: Convert INT 0x80 emulation to IDTENTRY
     - [x86] entry: Do not allow external 0x80 interrupts
     - [x86] tdx: Allow 32-bit emulation by default
     - [x86] platform/x86: asus-wmi: Move i8042 filter install to shared asus-wmi
       code
     - [powerpc*] of: dynamic: Fix of_reconfig_get_state_change() return value
       documentation
     - [x86] platform/x86: wmi: Skip blocks with zero instances
     - ipv6: fix potential NULL deref in fib6_add()
     - hv_netvsc: rndis_filter needs to select NLS
     - r8152: Rename RTL8152_UNPLUG to RTL8152_INACCESSIBLE
     - r8152: Add RTL8152_INACCESSIBLE checks to more loops
     - r8152: Add RTL8152_INACCESSIBLE to r8156b_wait_loading_flash()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_pre_firmware_1()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_aldps_en()
     - arcnet: restoring support for multiple Sohard Arcnet cards
     - net: stmmac: fix FPE events losing
     - xsk: Skip polling event check for unbound socket
     - i40e: Fix unexpected MFS warning message
     - iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero
     - net: bnxt: fix a potential use-after-free in bnxt_init_tc
     - tcp: fix mid stream window clamp.
     - ionic: fix snprintf format length warning
     - ionic: Fix dim work handling in split interrupt mode
     - ipv4: ip_gre: Avoid skb_pull() failure in ipgre_xmit()
     - net: atlantic: Fix NULL dereference of skb pointer in
     - [arm64] net: hns: fix wrong head when modify the tx feature when sending
       packets
     - [arm64] net: hns: fix fake link up on xge port
     - netfilter: nft_exthdr: add boolean DCCP option matching
     - netfilter: nf_tables: fix 'exist' matching on bigendian arches
     - netfilter: nf_tables: bail out on mismatching dynset and set expressions
       (CVE-2023-6622)
     - netfilter: nf_tables: validate family when identifying table via handle
     - netfilter: xt_owner: Fix for unsafe access of sk->sk_socket
     - tcp: do not accept ACK of bytes we never sent
     - bpf: sockmap, updating the sg structure should also update curr
     - psample: Require 'CAP_NET_ADMIN' when joining "packets" group
     - drop_monitor: Require 'CAP_SYS_ADMIN' when joining "events" group
     - [arm64] tee: optee: Fix supplicant based device enumeration
     - [arm64] RDMA/hns: Fix unnecessary err return when using invalid congest
       control algorithm
     - RDMA/irdma: Do not modify to SQD on error
     - RDMA/irdma: Add wait for suspend on SQD
     - [arm64] ASoC: fsl_sai: Fix no frame sync clock issue on i.MX8MP
     - RDMA/irdma: Refactor error handling in create CQP
     - RDMA/irdma: Fix UAF in irdma_sc_ccq_get_cqe_info()
     - [x86] hwmon: (acpi_power_meter) Fix 4.29 MW bug
     - [x86] ASoC: wm_adsp: fix memleak in wm_adsp_buffer_populate
     - RDMA/core: Fix umem iterator when PAGE_SIZE is greater then HCA pgsz
     - RDMA/irdma: Avoid free the non-cqp_request scratch
     - [arm64] dts: imx8mq: drop usb3-resume-missing-cas from usb
     - [arm64] dts: imx8mp: imx8mq: Add parkmode-disable-ss-quirk on DWC3
     - tracing: Fix a warning when allocating buffered events fails
     - scsi: be2iscsi: Fix a memleak in beiscsi_init_wrb_handle()
     - [armhf] imx: Check return value of devm_kasprintf in imx_mmdc_perf_init
     - md: introduce md_ro_state
     - md: don't leave 'MD_RECOVERY_FROZEN' in error path of md_set_readonly()
     - iommu: Avoid more races around device probe
     - [x86] rethook: Use __rcu pointer for rethook::handler
     - kprobes: consistent rcu api usage for kretprobe holder
     - [x86] ASoC: amd: yc: Fix non-functional mic on ASUS E1504FA
     - io_uring/af_unix: disable sending io_uring over sockets (CVE-2023-6531)
     - nvme-pci: Add sleep quirk for Kingston drives
     - io_uring: fix mutex_unlock with unreferenced ctx
     - ALSA: usb-audio: Add Pioneer DJM-450 mixer controls
     - ALSA: pcm: fix out-of-bounds in snd_pcm_state_names
     - ALSA: hda/realtek: Enable headset on Lenovo M90 Gen5
     - ALSA: hda/realtek: add new Framework laptop to quirks
     - ALSA: hda/realtek: Add Framework laptop 16 to quirks
     - ring-buffer: Test last update in 32bit version of __rb_time_read()
     - nilfs2: fix missing error check for sb_set_blocksize call
     - nilfs2: prevent WARNING in nilfs_sufile_set_segment_usage()
     - cgroup_freezer: cgroup_freezing: Check if not frozen
     - checkstack: fix printed address
     - tracing: Always update snapshot buffer size
     - tracing: Disable snapshot buffer when stopping instance tracers
     - tracing: Fix incomplete locking when disabling buffered events
     - tracing: Fix a possible race when disabling buffered events
     - packet: Move reference count in packet_sock to atomic_long_t
     - r8169: fix rtl8125b PAUSE frames blasting when suspended
     - regmap: fix bogus error on regcache_sync success
     - [x86] platform/surface: aggregator: fix recv_buf() return value
     - hugetlb: fix null-ptr-deref in hugetlb_vma_lock_write
     - mm: fix oops when filemap_map_pmd() without prealloc_pte
     - md/raid6: use valid sector values to determine if an I/O should wait on
       the reshape
     - [arm*] binder: fix memory leaks of spam and pending work
     - [arm64] coresight: etm4x: Make etm4_remove_dev() return void
     - [arm64] coresight: etm4x: Remove bogous __exit annotation for some
       functions
     - hwtracing: hisi_ptt: Add dummy callback pmu::read()
     - [x86] misc: mei: client.c: return negative error code in mei_cl_write
     - [x86] misc: mei: client.c: fix problem of return '-EOVERFLOW' in
       mei_cl_write
     - ring-buffer: Force absolute timestamp on discard of event
     - tracing: Set actual size after ring buffer resize
     - tracing: Stop current tracer when resizing buffer
     - perf: Fix perf_event_validate_size() (CVE-2023-6931)
     - [x86] sev: Fix kernel crash due to late update to read-only ghcb_version
     - gpiolib: sysfs: Fix error handling on failed export
     - drm/amdgpu: fix memory overflow in the IB test
     - drm/amd/amdgpu: Fix warnings in amdgpu/amdgpu_display.c
     - drm/amdgpu: correct the amdgpu runtime dereference usage count
     - drm/amdgpu: Update ras eeprom support for smu v13_0_0 and v13_0_10
     - drm/amdgpu: Add EEPROM I2C address support for ip discovery
     - drm/amdgpu: Remove redundant I2C EEPROM address
     - drm/amdgpu: Decouple RAS EEPROM addresses from chips
     - drm/amdgpu: Add support for RAS table at 0x40000
     - drm/amdgpu: Remove second moot switch to set EEPROM I2C address
     - drm/amdgpu: Return from switch early for EEPROM I2C address
     - drm/amdgpu: simplify amdgpu_ras_eeprom.c
     - drm/amdgpu: Add I2C EEPROM support on smu v13_0_6
     - drm/amdgpu: Update EEPROM I2C address for smu v13_0_0
     - usb: gadget: f_hid: fix report descriptor allocation
     - serial: 8250_dw: Add ACPI ID for Granite Rapids-D UART
     - parport: Add support for Brainboxes IX/UC/PX parallel cards
     - cifs: Fix non-availability of dedup breaking generic/304
     - Revert "xhci: Loosen RPM as default policy to cover for AMD xHC 1.1"
     - smb: client: fix potential NULL deref in parse_dfs_referrals()
     - usb: typec: class: fix typec_altmode_put_partner to put plugs
     - [arm64,armhf] PL011: Fix DMA support
     - [arm64] serial: 8250: 8250_omap: Clear UART_HAS_RHR_IT_DIS bit
     - [arm64] serial: 8250: 8250_omap: Do not start RX DMA on THRI interrupt
     - [arm64] serial: 8250_omap: Add earlycon support for the AM654 UART
       controller
     - devcoredump: Send uevent once devcd is ready
     - [x86] CPU/AMD: Check vendor in the AMD microcode callback
     - USB: gadget: core: adjust uevent timing on gadget unbind
     - cifs: Fix flushing, invalidation and file size with copy_file_range()
     - cifs: Fix flushing, invalidation and file size with FICLONE
     - [mips*] kernel: Clear FPU states when setting up kernel threads
       (Closes: #1055021)
     - [s390x] KVM: s390/mm: Properly reset no-dat
     - [x86] KVM: SVM: Update EFER software model on CR0 trap for SEV-ES
     - netfilter: nft_set_pipapo: skip inactive elements during set walk
       (CVE-2023-6817)
     - [x86] drm/i915/display: Drop check for doublescan mode in modevalid
     - [x86] drm/i915/lvds: Use REG_BIT() & co.
     - [x86] drm/i915/sdvo: stop caching has_hdmi_monitor in struct intel_sdvo
     - [x86] drm/i915: Skip some timing checks on BXT/GLK DSI transcoders
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.69
     - [x86] perf/x86/uncore: Don't WARN_ON_ONCE() for a broken discovery table
     - r8152: add USB device driver for config selection
     - r8152: add vendor/device ID pair for D-Link DUB-E250
     - r8152: add vendor/device ID pair for ASUS USB-C2500
     - [powerpc*] ftrace: Fix stack teardown in ftrace_no_trace
     - ext4: fix warning in ext4_dio_write_end_io()
     - ksmbd: fix memory leak in smb2_lock()
     - afs: Fix refcount underflow from error handling race (Closes: #1052304)
     - HID: lenovo: Restrict detection of patched firmware only to USB cptkbd
       (Closes: #1058758)
     - net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work
     - net: ipv6: support reporting otherwise unknown prefix flags in
       RTM_NEWPREFIX
     - bnxt_en: Clear resource reservation during resume
     - bnxt_en: Save ring error counters across reset
     - bnxt_en: Fix wrong return value check in bnxt_close_nic()
     - bnxt_en: Fix HWTSTAMP_FILTER_ALL packet timestamp logic
     - atm: solos-pci: Fix potential deadlock on &cli_queue_lock
     - atm: solos-pci: Fix potential deadlock on &tx_queue_lock
     - net: vlan: introduce skb_vlan_eth_hdr()
     - net: fec: correct queue selection
     - atm: Fix Use-After-Free in do_vcc_ioctl (CVE-2023-51780)
     - net/rose: Fix Use-After-Free in rose_ioctl (CVE-2023-51782)
     - iavf: Introduce new state machines for flow director
     - iavf: Handle ntuple on/off based on new state machines for flow director
     - qed: Fix a potential use-after-free in qed_cxt_tables_alloc
     - net: Remove acked SYN flag from packet in the transmit queue correctly
     - net: ena: Destroy correct number of xdp queues upon failure
     - net: ena: Fix xdp drops handling due to multibuf packets
     - net: ena: Fix XDP redirection error
     - sign-file: Fix incorrect return values check
     - vsock/virtio: Fix unsigned integer wrap around in
       virtio_transport_has_space()
     - net: stmmac: Handle disabled MDIO busses from devicetree
     - appletalk: Fix Use-After-Free in atalk_ioctl (CVE-2023-51781)
     - net: atlantic: fix double free in ring reinit logic
     - cred: switch to using atomic_long_t
     - fuse: dax: set fc->dax to NULL in fuse_dax_conn_free()
     - ALSA: hda/hdmi: add force-connect quirk for NUC5CPYB
     - ALSA: hda/hdmi: add force-connect quirks for ASUSTeK Z170 variants
     - ALSA: hda/realtek: Apply mute LED quirk for HP15-db
     - Revert "PCI: acpiphp: Reassign resources on bridge if necessary"
     - [mips*] PCI: loongson: Limit MRRS to 256 (Closes: #1035587)
     - ksmbd: fix wrong name of SMB2_CREATE_ALLOCATION_SIZE
     - [x86] hyperv: Fix the detection of E820_TYPE_PRAM in a Gen2 VM
     - usb: aqc111: check packet for fixup for true limit
     - blk-throttle: fix lockdep warning of "cgroup_mutex or RCU read lock
       required!"
     - blk-cgroup: bypass blkcg_deactivate_policy after destroying
     - bcache: avoid oversize memory allocation by small stripe_size
     - bcache: remove redundant assignment to variable cur_idx
     - bcache: add code comments for bch_btree_node_get() and
       __bch_btree_node_alloc()
     - bcache: avoid NULL checking to c->root in run_cache_set()
     - nbd: fold nbd config initialization into nbd_alloc_config()
     - nvme-auth: set explanation code for failure2 msgs
     - nvme: catch errors from nvme_configure_metadata()
     - [x86] platform/x86: intel_telemetry: Fix kernel doc descriptions
     - HID: glorious: fix Glorious Model I HID report
     - HID: add ALWAYS_POLL quirk for Apple kb
     - nbd: pass nbd_sock to nbd_read_reply() instead of index
     - HID: hid-asus: reset the backlight brightness level on resume
     - HID: multitouch: Add quirk for HONOR GLO-GXXX touchpad
     - asm-generic: qspinlock: fix queued_spin_value_unlocked() implementation
     - net: usb: qmi_wwan: claim interface 4 for ZTE MF290
     - [arm64] add dependency between vmlinuz.efi and Image
     - HID: hid-asus: add const to read-only outgoing usb buffer
     - perf: Fix perf_event_validate_size() lockdep splat
     - btrfs: do not allow non subvolume root targets for snapshot
     - soundwire: stream: fix NULL pointer dereference for multi_link
     - ext4: prevent the normalized size from exceeding EXT_MAX_BLOCKS
     - [arm64] mm: Always make sw-dirty PTEs hw-dirty in pte_modify
     - team: Fix use-after-free when an option instance allocation fails
     - drm/amdgpu/sdma5.2: add begin/end_use ring callbacks
     - dmaengine: stm32-dma: avoid bitfield overflow assertion
     - mm/mglru: fix underprotected page cache
     - mm/shmem: fix race in shmem_undo_range w/THP
     - btrfs: free qgroup reserve when ORDERED_IOERR is set
     - btrfs: don't clear qgroup reserved bit in release_folio
     - drm/amdgpu: fix tear down order in amdgpu_vm_pt_free
     - drm/amd/display: Disable PSR-SU on Parade 0803 TCON again
     - [x86] drm/i915: Fix remapped stride with CCS on ADL+
     - smb: client: fix OOB in receive_encrypted_standard()
     - smb: client: fix NULL deref in asn1_ber_decoder()
     - smb: client: fix OOB in smb2_query_reparse_point()
     - ring-buffer: Fix memory leak of free page
     - tracing: Update snapshot buffer on resize if it is allocated
     - ring-buffer: Do not update before stamp when switching sub-buffers
     - ring-buffer: Have saved event hold the entire event
     - ring-buffer: Fix writing to the buffer with max_data_size
     - ring-buffer: Fix a race in rb_time_cmpxchg() for 32 bit archs
     - ring-buffer: Do not try to put back write_stamp
     - ring-buffer: Have rb_time_cmpxchg() set the msb counter too
     - net: tls, update curr on splice as well
     - r8152: avoid to change cfg for all devices
     - r8152: remove rtl_vendor_mode function
     - r8152: fix the autosuspend doesn't work
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 17
   * [rt] Update to 6.1.69-rt21
   * [arm64] drivers/vfio: Don't enable VFIO_NOIOMMU.
     This is a breach of the integrity lockdown requirement of secure boot
     and thus cannot be enabled.
     Thanks to Bastian Blank and Ben Hutchings
   * Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg
     (CVE-2023-51779)
   * netfilter: nf_tables: skip set commit for deleted/destroyed sets
   * Revert "scsi: aacraid: Reply queue mapping to CPUs based on IRQ affinity"
     (Closes: #1059624)
linux (6.1.69-1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.17
 .
 linux (6.1.69-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.68
     - hrtimers: Push pending hrtimers away from outgoing CPU earlier
     - i2c: designware: Fix corrupted memory seen in the ISR
     - netfilter: ipset: fix race condition between swap/destroy and kernel side
       add/del/test
     - tg3: Move the [rt]x_dropped counters to tg3_napi
     - tg3: Increment tx_dropped in tg3_tso_bug()
     - kconfig: fix memory leak from range properties
     - drm/amdgpu: correct chunk_ptr to a pointer to chunk.
     - [x86] Introduce ia32_enabled()
     - [amd64] x86/coco: Disable 32-bit emulation by default on TDX and SEV
     - [x86] entry: Convert INT 0x80 emulation to IDTENTRY
     - [x86] entry: Do not allow external 0x80 interrupts
     - [x86] tdx: Allow 32-bit emulation by default
     - [x86] platform/x86: asus-wmi: Move i8042 filter install to shared asus-wmi
       code
     - [powerpc*] of: dynamic: Fix of_reconfig_get_state_change() return value
       documentation
     - [x86] platform/x86: wmi: Skip blocks with zero instances
     - ipv6: fix potential NULL deref in fib6_add()
     - hv_netvsc: rndis_filter needs to select NLS
     - r8152: Rename RTL8152_UNPLUG to RTL8152_INACCESSIBLE
     - r8152: Add RTL8152_INACCESSIBLE checks to more loops
     - r8152: Add RTL8152_INACCESSIBLE to r8156b_wait_loading_flash()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_pre_firmware_1()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_aldps_en()
     - arcnet: restoring support for multiple Sohard Arcnet cards
     - net: stmmac: fix FPE events losing
     - xsk: Skip polling event check for unbound socket
     - i40e: Fix unexpected MFS warning message
     - iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero
     - net: bnxt: fix a potential use-after-free in bnxt_init_tc
     - tcp: fix mid stream window clamp.
     - ionic: fix snprintf format length warning
     - ionic: Fix dim work handling in split interrupt mode
     - ipv4: ip_gre: Avoid skb_pull() failure in ipgre_xmit()
     - net: atlantic: Fix NULL dereference of skb pointer in
     - [arm64] net: hns: fix wrong head when modify the tx feature when sending
       packets
     - [arm64] net: hns: fix fake link up on xge port
     - netfilter: nft_exthdr: add boolean DCCP option matching
     - netfilter: nf_tables: fix 'exist' matching on bigendian arches
     - netfilter: nf_tables: bail out on mismatching dynset and set expressions
       (CVE-2023-6622)
     - netfilter: nf_tables: validate family when identifying table via handle
     - netfilter: xt_owner: Fix for unsafe access of sk->sk_socket
     - tcp: do not accept ACK of bytes we never sent
     - bpf: sockmap, updating the sg structure should also update curr
     - psample: Require 'CAP_NET_ADMIN' when joining "packets" group
     - drop_monitor: Require 'CAP_SYS_ADMIN' when joining "events" group
     - [arm64] tee: optee: Fix supplicant based device enumeration
     - [arm64] RDMA/hns: Fix unnecessary err return when using invalid congest
       control algorithm
     - RDMA/irdma: Do not modify to SQD on error
     - RDMA/irdma: Add wait for suspend on SQD
     - [arm64] ASoC: fsl_sai: Fix no frame sync clock issue on i.MX8MP
     - RDMA/irdma: Refactor error handling in create CQP
     - RDMA/irdma: Fix UAF in irdma_sc_ccq_get_cqe_info()
     - [x86] hwmon: (acpi_power_meter) Fix 4.29 MW bug
     - [x86] ASoC: wm_adsp: fix memleak in wm_adsp_buffer_populate
     - RDMA/core: Fix umem iterator when PAGE_SIZE is greater then HCA pgsz
     - RDMA/irdma: Avoid free the non-cqp_request scratch
     - [arm64] dts: imx8mq: drop usb3-resume-missing-cas from usb
     - [arm64] dts: imx8mp: imx8mq: Add parkmode-disable-ss-quirk on DWC3
     - tracing: Fix a warning when allocating buffered events fails
     - scsi: be2iscsi: Fix a memleak in beiscsi_init_wrb_handle()
     - [armhf] imx: Check return value of devm_kasprintf in imx_mmdc_perf_init
     - md: introduce md_ro_state
     - md: don't leave 'MD_RECOVERY_FROZEN' in error path of md_set_readonly()
     - iommu: Avoid more races around device probe
     - [x86] rethook: Use __rcu pointer for rethook::handler
     - kprobes: consistent rcu api usage for kretprobe holder
     - [x86] ASoC: amd: yc: Fix non-functional mic on ASUS E1504FA
     - io_uring/af_unix: disable sending io_uring over sockets (CVE-2023-6531)
     - nvme-pci: Add sleep quirk for Kingston drives
     - io_uring: fix mutex_unlock with unreferenced ctx
     - ALSA: usb-audio: Add Pioneer DJM-450 mixer controls
     - ALSA: pcm: fix out-of-bounds in snd_pcm_state_names
     - ALSA: hda/realtek: Enable headset on Lenovo M90 Gen5
     - ALSA: hda/realtek: add new Framework laptop to quirks
     - ALSA: hda/realtek: Add Framework laptop 16 to quirks
     - ring-buffer: Test last update in 32bit version of __rb_time_read()
     - nilfs2: fix missing error check for sb_set_blocksize call
     - nilfs2: prevent WARNING in nilfs_sufile_set_segment_usage()
     - cgroup_freezer: cgroup_freezing: Check if not frozen
     - checkstack: fix printed address
     - tracing: Always update snapshot buffer size
     - tracing: Disable snapshot buffer when stopping instance tracers
     - tracing: Fix incomplete locking when disabling buffered events
     - tracing: Fix a possible race when disabling buffered events
     - packet: Move reference count in packet_sock to atomic_long_t
     - r8169: fix rtl8125b PAUSE frames blasting when suspended
     - regmap: fix bogus error on regcache_sync success
     - [x86] platform/surface: aggregator: fix recv_buf() return value
     - hugetlb: fix null-ptr-deref in hugetlb_vma_lock_write
     - mm: fix oops when filemap_map_pmd() without prealloc_pte
     - md/raid6: use valid sector values to determine if an I/O should wait on
       the reshape
     - [arm*] binder: fix memory leaks of spam and pending work
     - [arm64] coresight: etm4x: Make etm4_remove_dev() return void
     - [arm64] coresight: etm4x: Remove bogous __exit annotation for some
       functions
     - hwtracing: hisi_ptt: Add dummy callback pmu::read()
     - [x86] misc: mei: client.c: return negative error code in mei_cl_write
     - [x86] misc: mei: client.c: fix problem of return '-EOVERFLOW' in
       mei_cl_write
     - ring-buffer: Force absolute timestamp on discard of event
     - tracing: Set actual size after ring buffer resize
     - tracing: Stop current tracer when resizing buffer
     - perf: Fix perf_event_validate_size() (CVE-2023-6931)
     - [x86] sev: Fix kernel crash due to late update to read-only ghcb_version
     - gpiolib: sysfs: Fix error handling on failed export
     - drm/amdgpu: fix memory overflow in the IB test
     - drm/amd/amdgpu: Fix warnings in amdgpu/amdgpu_display.c
     - drm/amdgpu: correct the amdgpu runtime dereference usage count
     - drm/amdgpu: Update ras eeprom support for smu v13_0_0 and v13_0_10
     - drm/amdgpu: Add EEPROM I2C address support for ip discovery
     - drm/amdgpu: Remove redundant I2C EEPROM address
     - drm/amdgpu: Decouple RAS EEPROM addresses from chips
     - drm/amdgpu: Add support for RAS table at 0x40000
     - drm/amdgpu: Remove second moot switch to set EEPROM I2C address
     - drm/amdgpu: Return from switch early for EEPROM I2C address
     - drm/amdgpu: simplify amdgpu_ras_eeprom.c
     - drm/amdgpu: Add I2C EEPROM support on smu v13_0_6
     - drm/amdgpu: Update EEPROM I2C address for smu v13_0_0
     - usb: gadget: f_hid: fix report descriptor allocation
     - serial: 8250_dw: Add ACPI ID for Granite Rapids-D UART
     - parport: Add support for Brainboxes IX/UC/PX parallel cards
     - cifs: Fix non-availability of dedup breaking generic/304
     - Revert "xhci: Loosen RPM as default policy to cover for AMD xHC 1.1"
     - smb: client: fix potential NULL deref in parse_dfs_referrals()
     - usb: typec: class: fix typec_altmode_put_partner to put plugs
     - [arm64,armhf] PL011: Fix DMA support
     - [arm64] serial: 8250: 8250_omap: Clear UART_HAS_RHR_IT_DIS bit
     - [arm64] serial: 8250: 8250_omap: Do not start RX DMA on THRI interrupt
     - [arm64] serial: 8250_omap: Add earlycon support for the AM654 UART
       controller
     - devcoredump: Send uevent once devcd is ready
     - [x86] CPU/AMD: Check vendor in the AMD microcode callback
     - USB: gadget: core: adjust uevent timing on gadget unbind
     - cifs: Fix flushing, invalidation and file size with copy_file_range()
     - cifs: Fix flushing, invalidation and file size with FICLONE
     - [mips*] kernel: Clear FPU states when setting up kernel threads
       (Closes: #1055021)
     - [s390x] KVM: s390/mm: Properly reset no-dat
     - [x86] KVM: SVM: Update EFER software model on CR0 trap for SEV-ES
     - netfilter: nft_set_pipapo: skip inactive elements during set walk
       (CVE-2023-6817)
     - [x86] drm/i915/display: Drop check for doublescan mode in modevalid
     - [x86] drm/i915/lvds: Use REG_BIT() & co.
     - [x86] drm/i915/sdvo: stop caching has_hdmi_monitor in struct intel_sdvo
     - [x86] drm/i915: Skip some timing checks on BXT/GLK DSI transcoders
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.69
     - [x86] perf/x86/uncore: Don't WARN_ON_ONCE() for a broken discovery table
     - r8152: add USB device driver for config selection
     - r8152: add vendor/device ID pair for D-Link DUB-E250
     - r8152: add vendor/device ID pair for ASUS USB-C2500
     - [powerpc*] ftrace: Fix stack teardown in ftrace_no_trace
     - ext4: fix warning in ext4_dio_write_end_io()
     - ksmbd: fix memory leak in smb2_lock()
     - afs: Fix refcount underflow from error handling race (Closes: #1052304)
     - HID: lenovo: Restrict detection of patched firmware only to USB cptkbd
       (Closes: #1058758)
     - net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work
     - net: ipv6: support reporting otherwise unknown prefix flags in
       RTM_NEWPREFIX
     - bnxt_en: Clear resource reservation during resume
     - bnxt_en: Save ring error counters across reset
     - bnxt_en: Fix wrong return value check in bnxt_close_nic()
     - bnxt_en: Fix HWTSTAMP_FILTER_ALL packet timestamp logic
     - atm: solos-pci: Fix potential deadlock on &cli_queue_lock
     - atm: solos-pci: Fix potential deadlock on &tx_queue_lock
     - net: vlan: introduce skb_vlan_eth_hdr()
     - net: fec: correct queue selection
     - atm: Fix Use-After-Free in do_vcc_ioctl (CVE-2023-51780)
     - net/rose: Fix Use-After-Free in rose_ioctl (CVE-2023-51782)
     - iavf: Introduce new state machines for flow director
     - iavf: Handle ntuple on/off based on new state machines for flow director
     - qed: Fix a potential use-after-free in qed_cxt_tables_alloc
     - net: Remove acked SYN flag from packet in the transmit queue correctly
     - net: ena: Destroy correct number of xdp queues upon failure
     - net: ena: Fix xdp drops handling due to multibuf packets
     - net: ena: Fix XDP redirection error
     - sign-file: Fix incorrect return values check
     - vsock/virtio: Fix unsigned integer wrap around in
       virtio_transport_has_space()
     - net: stmmac: Handle disabled MDIO busses from devicetree
     - appletalk: Fix Use-After-Free in atalk_ioctl (CVE-2023-51781)
     - net: atlantic: fix double free in ring reinit logic
     - cred: switch to using atomic_long_t
     - fuse: dax: set fc->dax to NULL in fuse_dax_conn_free()
     - ALSA: hda/hdmi: add force-connect quirk for NUC5CPYB
     - ALSA: hda/hdmi: add force-connect quirks for ASUSTeK Z170 variants
     - ALSA: hda/realtek: Apply mute LED quirk for HP15-db
     - Revert "PCI: acpiphp: Reassign resources on bridge if necessary"
     - [mips*] PCI: loongson: Limit MRRS to 256 (Closes: #1035587)
     - ksmbd: fix wrong name of SMB2_CREATE_ALLOCATION_SIZE
     - [x86] hyperv: Fix the detection of E820_TYPE_PRAM in a Gen2 VM
     - usb: aqc111: check packet for fixup for true limit
     - blk-throttle: fix lockdep warning of "cgroup_mutex or RCU read lock
       required!"
     - blk-cgroup: bypass blkcg_deactivate_policy after destroying
     - bcache: avoid oversize memory allocation by small stripe_size
     - bcache: remove redundant assignment to variable cur_idx
     - bcache: add code comments for bch_btree_node_get() and
       __bch_btree_node_alloc()
     - bcache: avoid NULL checking to c->root in run_cache_set()
     - nbd: fold nbd config initialization into nbd_alloc_config()
     - nvme-auth: set explanation code for failure2 msgs
     - nvme: catch errors from nvme_configure_metadata()
     - [x86] platform/x86: intel_telemetry: Fix kernel doc descriptions
     - HID: glorious: fix Glorious Model I HID report
     - HID: add ALWAYS_POLL quirk for Apple kb
     - nbd: pass nbd_sock to nbd_read_reply() instead of index
     - HID: hid-asus: reset the backlight brightness level on resume
     - HID: multitouch: Add quirk for HONOR GLO-GXXX touchpad
     - asm-generic: qspinlock: fix queued_spin_value_unlocked() implementation
     - net: usb: qmi_wwan: claim interface 4 for ZTE MF290
     - [arm64] add dependency between vmlinuz.efi and Image
     - HID: hid-asus: add const to read-only outgoing usb buffer
     - perf: Fix perf_event_validate_size() lockdep splat
     - btrfs: do not allow non subvolume root targets for snapshot
     - soundwire: stream: fix NULL pointer dereference for multi_link
     - ext4: prevent the normalized size from exceeding EXT_MAX_BLOCKS
     - [arm64] mm: Always make sw-dirty PTEs hw-dirty in pte_modify
     - team: Fix use-after-free when an option instance allocation fails
     - drm/amdgpu/sdma5.2: add begin/end_use ring callbacks
     - dmaengine: stm32-dma: avoid bitfield overflow assertion
     - mm/mglru: fix underprotected page cache
     - mm/shmem: fix race in shmem_undo_range w/THP
     - btrfs: free qgroup reserve when ORDERED_IOERR is set
     - btrfs: don't clear qgroup reserved bit in release_folio
     - drm/amdgpu: fix tear down order in amdgpu_vm_pt_free
     - drm/amd/display: Disable PSR-SU on Parade 0803 TCON again
     - [x86] drm/i915: Fix remapped stride with CCS on ADL+
     - smb: client: fix OOB in receive_encrypted_standard()
     - smb: client: fix NULL deref in asn1_ber_decoder()
     - smb: client: fix OOB in smb2_query_reparse_point()
     - ring-buffer: Fix memory leak of free page
     - tracing: Update snapshot buffer on resize if it is allocated
     - ring-buffer: Do not update before stamp when switching sub-buffers
     - ring-buffer: Have saved event hold the entire event
     - ring-buffer: Fix writing to the buffer with max_data_size
     - ring-buffer: Fix a race in rb_time_cmpxchg() for 32 bit archs
     - ring-buffer: Do not try to put back write_stamp
     - ring-buffer: Have rb_time_cmpxchg() set the msb counter too
     - net: tls, update curr on splice as well
     - r8152: avoid to change cfg for all devices
     - r8152: remove rtl_vendor_mode function
     - r8152: fix the autosuspend doesn't work
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 17
   * [rt] Update to 6.1.69-rt21
   * [arm64] drivers/vfio: Don't enable VFIO_NOIOMMU.
     This is a breach of the integrity lockdown requirement of secure boot
     and thus cannot be enabled.
     Thanks to Bastian Blank and Ben Hutchings
   * Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg
     (CVE-2023-51779)
   * netfilter: nf_tables: skip set commit for deleted/destroyed sets
   * Revert "scsi: aacraid: Reply queue mapping to CPUs based on IRQ affinity"
     (Closes: #1059624)
 .
 linux (6.1.67-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.67
     - Revert "wifi: cfg80211: fix CQM for non-range use" (Closes: #1057967,
       #1057969)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 16
 .
 linux (6.1.66-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.65
     - afs: Fix afs_server_list to be cleaned up with RCU
     - afs: Make error on cell lookup failure consistent with OpenAFS
     - [arm64,armhf] drm/panel: simple: Fix Innolux G101ICE-L01 bus flags
     - [arm64,armhf] drm/panel: simple: Fix Innolux G101ICE-L01 timings
     - wireguard: use DEV_STATS_INC()
     - ata: pata_isapnp: Add missing error check for devm_ioport_map()
     - [x86] drm/i915: do not clean GT table on error path
     - [arm64,armhf] drm/rockchip: vop: Fix color for RGB888/BGR888 format on VOP
       full
     - HID: fix HID device resource race between HID core and debugging support
     - ipv4: Correct/silence an endian warning in __ip_do_redirect
     - net: usb: ax88179_178a: fix failed operations during ax88179_reset
     - net/smc: avoid data corruption caused by decline
     - [armhf] arm/xen: fix xen_vcpu_info allocation alignment
     - [amd64,arm64] amd-xgbe: handle corner-case during sfp hotplug
     - [amd64,arm64] amd-xgbe: handle the corner-case during tx completion
     - [amd64,arm64] amd-xgbe: propagate the correct speed and duplex status
     - afs: Return ENOENT if no cell DNS record can be found
     - afs: Fix file locking on R/O volumes to operate in local mode
     - mm,kfence: decouple kfence from page granularity mapping judgement
     - i40e: use ERR_PTR error print in i40e messages
     - i40e: Fix adding unsupported cloud filters
     - [arm64] USB: dwc3: qcom: fix resource leaks on probe deferral
     - [arm64] USB: dwc3: qcom: fix ACPI platform device leak
     - lockdep: Fix block chain corruption
     - cifs: minor cleanup of some headers
     - smb3: allow dumping session and tcon id to improve stats analysis and
       debugging
     - cifs: print last update time for interface list
     - cifs: distribute channels across interfaces based on speed
     - cifs: account for primary channel in the interface list
     - cifs: fix leak of iface for primary channel
     - ext4: add a new helper to check if es must be kept
     - ext4: factor out __es_alloc_extent() and __es_free_extent()
     - ext4: use pre-allocated es in __es_insert_extent()
     - ext4: use pre-allocated es in __es_remove_extent()
     - ext4: using nofail preallocation in ext4_es_remove_extent()
     - ext4: using nofail preallocation in ext4_es_insert_delayed_block()
     - ext4: using nofail preallocation in ext4_es_insert_extent()
     - ext4: fix slab-use-after-free in ext4_es_insert_extent()
     - ext4: make sure allocate pending entry not fail
     - NFSD: Fix "start of NFS reply" pointer passed to nfsd_cache_update()
     - NFSD: Fix checksum mismatches in the duplicate reply cache
     - ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CVA
     - swiotlb-xen: provide the "max_mapping_size" method
     - bcache: replace a mistaken IS_ERR() by IS_ERR_OR_NULL() in
       btree_gc_coalesce()
     - md: fix bi_status reporting in md_end_clone_io
     - bcache: fixup multi-threaded bch_sectors_dirty_init() wake-up race
     - io_uring/fs: consider link->flags when getting path for LINKAT
     - [s390x] dasd: protect device queue against concurrent access
     - USB: serial: option: add Luat Air72*U series products
     - hv_netvsc: fix race of netvsc and VF register_netdevice
     - hv_netvsc: Fix race of register_netdevice_notifier and VF register
     - hv_netvsc: Mark VF as slave before exposing it to user-mode
     - dm-delay: fix a race between delay_presuspend and delay_bio
     - bcache: check return value from btree_node_alloc_replacement()
     - bcache: prevent potential division by zero error
     - bcache: fixup init dirty data errors
     - bcache: fixup lock c->root error
     - USB: serial: option: add Fibocom L7xx modules
     - USB: serial: option: fix FM101R-GL defines
     - USB: serial: option: don't claim interface 4 for ZTE MF290
     - usb: typec: tcpm: Skip hard reset when in error recovery
     - [arm64,armhf] USB: dwc2: write HCINT with INTMASK applied
     - [arm64,armhf] usb: dwc3: Fix default mode initialization
     - [arm64,armhf] usb: dwc3: set the dma max_seg_size
     - [arm64] USB: dwc3: qcom: fix software node leak on probe errors
     - [arm64] USB: dwc3: qcom: fix wakeup after probe deferral
     - io_uring: fix off-by one bvec index
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.66
     - cifs: Fix FALLOC_FL_ZERO_RANGE by setting i_size if EOF moved
     - cifs: Fix FALLOC_FL_INSERT_RANGE by setting i_size after EOF moved
     - smb: client: report correct st_size for SMB and NFS symlinks
     - pinctrl: avoid reload of p state in list iteration
     - firewire: core: fix possible memory leak in create_units()
     - mmc: sdhci-pci-gli: Disable LPM during initialization
     - mmc: cqhci: Increase recovery halt timeout
     - mmc: cqhci: Warn of halt or task clear failure
     - mmc: cqhci: Fix task clearing in CQE error recovery
     - mmc: block: Retry commands in CQE error recovery
     - mmc: block: Do not lose cache flush during CQE error recovery
     - mmc: block: Be sure to wait while busy in CQE error recovery
     - ALSA: hda: Disable power-save on KONTRON SinglePC
     - ALSA: hda/realtek: Headset Mic VREF to 100%
     - ALSA: hda/realtek: Add supported ALC257 for ChromeOS
     - dm-verity: align struct dm_verity_fec_io properly
     - scsi: Change SCSI device boolean fields to single bit flags
     - scsi: sd: Fix system start for ATA devices
     - drm/amd: Enable PCIe PME from D3
     - drm/amdgpu: Force order between a read and write to the same address
     - drm/amd/display: Include udelay when waiting for INBOX0 ACK
     - drm/amd/display: Remove min_dst_y_next_start check for Z8
     - drm/amd/display: Use DRAM speed from validation for dummy p-state
     - drm/amd/display: Update min Z8 residency time to 2100 for DCN314
     - drm/amd/display: fix ABM disablement
     - dm verity: initialize fec io before freeing it
     - dm verity: don't perform FEC for failed readahead IO
     - nvme: check for valid nvme_identify_ns() before using it
     - [x86] cpufreq/amd-pstate: Fix the return value of amd_pstate_fast_switch()
     - dma-buf: fix check in dma_resv_add_fence
     - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR
     - [amd64] iommu/vt-d: Add MTL to quirk list to skip TE disabling
     - [powerpc*] KVM: PPC: Book3S HV: Fix KVM_RUN clobbering FP/VEC user
       registers
     - [powerpc*] Don't clobber f0/vs0 during fp|altivec register save
       (Closes: #1032104)
     - btrfs: add dmesg output for first mount and last unmount of a filesystem
     - btrfs: ref-verify: fix memory leaks in btrfs_ref_tree_mod()
     - btrfs: fix off-by-one when checking chunk map includes logical address
     - btrfs: send: ensure send_fd is writable
     - btrfs: make error messages more clear when getting a chunk map
     - btrfs: fix 64bit compat send ioctl arguments not initializing version
       member
     - Input: xpad - add HyperX Clutch Gladiate Support
     - wifi: cfg80211: fix CQM for non-range use
     - [arm64,armhf] USB: xhci-plat: fix legacy PHY double init
     - USB: core: Change configuration warnings to notices
     - usb: config: fix iteration issue in 'usb_get_bos_descriptor()'
     - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet
     - [arm64] dpaa2-eth: increase the needed headroom to account for alignment
     - net: stmmac: xgmac: Disable FPE MMC interrupts
     - r8169: prevent potential deadlock in rtl8169_close
     - [x86] KVM: x86: Fix lapic timer interrupt lost after loading a snapshot.
     - PCI: Lengthen reset delay for VideoPropulsion Torrent QN16e card
     - spi: Fix null dereference on suspend
     - drm/amd/display: Restore rptr/wptr for DMCUB as workaround
     - drm/amd/display: Guard against invalid RPTR/WPTR being set
     - [armhf] cpufreq: imx6q: don't warn for disabling a non-existing frequency
     - [armhf] cpufreq: imx6q: Don't disable 792 Mhz OPP unnecessarily
     - [amd64] iommu/vt-d: Omit devTLB invalidation requests when TES=0
     - [amd64] iommu/vt-d: Allocate pasid table in device probe path
     - [amd64] iommu/vt-d: Add device_block_translation() helper
     - [amd64] iommu/vt-d: Disable PCI ATS in legacy passthrough mode
     - [amd64] iommu/vt-d: Make context clearing consistent with context mapping
     - drm/amd/pm: fix a memleak in aldebaran_tables_init
     - mmc: core: add helpers mmc_regulator_enable/disable_vqmmc
     - mmc: sdhci-sprd: Fix vqmmc not shutting down after the card was pulled
     - drm/amd/display: Expand kernel doc for DC
     - drm/amd/display: clean code-style issues in dcn30_set_mpc_shaper_3dlut
     - drm/amd/display: Fix the delta clamping for shaper LUT
     - drm/amd/display: Fix MPCC 1DLUT programming
     - r8169: disable ASPM in case of tx timeout
     - r8169: fix deadlock on RTL8125 in jumbo mtu mode (Closes: #1057790)
     - xen: Allow platform PCI interrupt to be shared
     - xen: simplify evtchn_do_upcall() call maze
     - [x86] xen: fix percpu vcpu_info allocation
     - [x86] apic/msi: Fix misconfigured non-maskable MSI quirk
     - iomap: update ki_pos a little later in iomap_dio_complete
       (Closes: #1057843)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 15
   * [rt] Update to 6.1.66-rt19
 .
 linux (6.1.64-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.56
     - NFS: Fix error handling for O_DIRECT write scheduling
     - NFS: Fix O_DIRECT locking issues
     - NFS: More O_DIRECT accounting fixes for error paths
     - NFS: Use the correct commit info in nfs_join_page_group()
     - NFS: More fixes for nfs_direct_write_reschedule_io()
     - NFS/pNFS: Report EINVAL errors from connect() to the server
     - SUNRPC: Mark the cred for revalidation if the server rejects it
     - NFSv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - NFSv4.1: fix pnfs MDS=DS session trunking
     - media: via: Use correct dependency for camera sensor drivers
     - netfs: Only call folio_start_fscache() one time for each folio
     - dm: fix a race condition in retrieve_deps
     - btrfs: improve error message after failure to add delayed dir index item
     - btrfs: remove BUG() after failure to insert delayed dir index item
     - ext4: replace the traditional ternary conditional operator with with
       max()/min()
     - ext4: move setting of trimmed bit into ext4_try_to_trim_range()
     - ext4: do not let fstrim block system suspend
     - [arm64] ASoC: meson: spdifin: start hw on dai probe
     - bpf: Avoid deadlock when using queue and stack maps from NMI
     - ASoC: rt5640: Revert "Fix sleep in atomic context"
     - ASoC: rt5640: Fix IRQ not being free-ed for HDA jack detect mode
     - ALSA: hda/realtek: Splitting the UX3402 into two separate models
     - net/core: Fix ETH_P_1588 flow dissector
     - ASoC: hdaudio.c: Add missing check for devm_kstrdup
     - [arm64] ASoC: imx-audmix: Fix return error with devm_clk_get()
     - iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set
     - [x86] ASoC: SOF: core: Only call sof_ops_free() on remove if the probe was
       successful
     - iavf: add iavf_schedule_aq_request() helper
     - iavf: schedule a request immediately after add/delete vlan
     - i40e: Fix VF VLAN offloading when port VLAN is configured
     - ionic: fix 16bit math issue when PAGE_SIZE >= 64KB
     - igc: Fix infinite initialization loop with early XDP redirect
     - scsi: iscsi_tcp: restrict to TCP sockets
     - [powerpc*] perf/hv-24x7: Update domain value check
     - dccp: fix dccp_v4_err()/dccp_v6_err() again
     - [x86] mm, kexec, ima: Use memblock_free_late() from
       ima_free_kexec_buffer()
     - net: hsr: Properly parse HSRv1 supervisor frames.
     - [x86] platform/x86: intel_scu_ipc: Check status after timeout in
       busy_loop()
     - [x86] platform/x86: intel_scu_ipc: Check status upon timeout in
       ipc_wait_for_interrupt()
     - [x86] platform/x86: intel_scu_ipc: Don't override scu in
       intel_scu_ipc_dev_simple_command()
     - [x86] platform/x86: intel_scu_ipc: Fail IPC send if still busy
     - [x86] srso: Fix srso_show_state() side effect
     - [x86] srso: Fix SBPB enablement for spec_rstack_overflow=off
     - [arm64] net: hns3: add cmdq check for vf periodic service task
     - [arm64] net: hns3: fix GRE checksum offload issue
     - [arm64] net: hns3: only enable unicast promisc when mac table full
     - [arm64] net: hns3: fix fail to delete tc flower rules during reset issue
     - [arm64] net: hns3: add 5ms delay before clear firmware reset irq source
     - net: bridge: use DEV_STATS_INC()
     - team: fix null-ptr-deref when team device type is changed
     - net: rds: Fix possible NULL-pointer dereference
     - [x86] i915/pmu: Move execlist stats initialization to execlist specific
       setup
     - locking/seqlock: Do the lockdep annotation before locking in
       do_write_seqcount_begin_nested()
     - net: ena: Flush XDP packets on error.
     - bnxt_en: Flush XDP for bnxt_poll_nitroa0()'s NAPI
     - igc: Expose tx-usecs coalesce setting to user
     - proc: nommu: /proc/<pid>/maps: release mmap read lock
     - proc: nommu: fix empty /proc/<pid>/maps
     - cifs: Fix UAF in cifs_demultiplex_thread()
     - gpio: tb10x: Fix an error handling path in tb10x_gpio_probe()
     - i2c: xiic: Correct return value check for xiic_reinit()
     - [armhf] dts: samsung: exynos4210-i9100: Fix LCD screen's physical size
     - f2fs: optimize iteration over sparse directories
     - f2fs: get out of a repeat loop when getting a locked data page
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling in PKEY_CLR2SECK2 IOCTL
     - [arm64] dts: qcom: sdm845-db845c: Mark cont splash memory region as
       reserved
     - wifi: ath11k: fix tx status reporting in encap offload mode
     - wifi: ath11k: Cleanup mac80211 references on failure during tx_complete
     - scsi: qla2xxx: Select qpair depending on which CPU post_cmd() gets called
     - scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id()
     - btrfs: reset destination buffer when read_extent_buffer() gets invalid
       range
     - vfio/mdev: Fix a null-ptr-deref bug for mdev_unregister_parent()
     - drm/bridge: ti-sn65dsi83: Do not generate HFP/HBP/HSA and EOT packet
     - [armhf] bus: ti-sysc: Use fsleep() instead of usleep_range() in
       sysc_reset()
     - [armhf] bus: ti-sysc: Fix missing AM35xx SoC matching
     - [arm64] firmware: arm_scmi: Harden perf domain info access
     - [arm64] firmware: arm_scmi: Fixup perf power-cost/microwatt support
     - power: supply: mt6370: Fix missing error code in mt6370_chg_toggle_cfo()
     - clk: sprd: Fix thm_parents incorrect configuration
     - clk: tegra: fix error return case for recalc_rate
     - [armhf] dts: omap: correct indentation
     - [armhf] dts: Unify pwm-omap-dmtimer node names
     - [armhf] dts: Unify pinctrl-single pin group nodes for omap4
     - [armhf] bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart
       wake-up
     - power: supply: ucs1002: fix error code in ucs1002_get_property()
     - power: supply: rk817: Fix node refcount leak
     - [arm64] soc: imx8m: Enable OCOTP clock for imx8mm before reading registers
     - [arm64] dts: imx: Add imx8mm-prt8mm.dtb to build
     - gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip
     - i2c: npcm7xx: Fix callback completion ordering
     - [x86] reboot: VMCLEAR active VMCSes before emergency reboot
     - ceph: drop messages from MDS when unmounting
     - dma-debug: don't call __dma_entry_alloc_check_leak() under
       free_entries_lock
     - bpf: Annotate bpf_long_memcpy with data_race
     - [arm64,armhf] spi: sun6i: reduce DMA RX transfer width to single byte
     - [arm64,armhf] spi: sun6i: fix race between DMA RX transfer completion and
       RX FIFO drain
     - nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid()
     - scsi: qedf: Add synchronization between I/O completions and abort
     - scsi: ufs: core: Move __ufshcd_send_uic_cmd() outside host_lock
     - scsi: ufs: core: Poll HCS.UCRDY before issuing a UIC command
     - ring-buffer: Avoid softlockup in ring_buffer_resize()
     - btrfs: assert delayed node locked when removing delayed item
     - ring-buffer: Do not attempt to read past "commit"
     - ata: sata_mv: Fix incorrect string length computation in mv_dump_mem()
     - [x86] platform/x86: asus-wmi: Support 2023 ROG X16 tablet mode
     - thermal/of: add missing of_node_put()
     - drm/amd/display: Don't check registers, if using AUX BL control
     - drm/amdgpu/soc21: don't remap HDP registers for SR-IOV
     - drm/amdgpu/nbio4.3: set proper rmmio_remap.reg_offset for SR-IOV
     - drm/amdgpu: Handle null atom context in VBIOS info ioctl
     - scsi: pm80xx: Use phy-specific SAS address when sending PHY_START command
     - scsi: pm80xx: Avoid leaking tags when processing
       OPC_INB_SET_CONTROLLER_CONFIG command
     - smb3: correct places where ENOTSUPP is used instead of preferred
       EOPNOTSUPP
     - ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset()
     - spi: nxp-fspi: reset the FLSHxCR1 registers
     - spi: stm32: add a delay before SPI disable
     - bpf: Clarify error expectations from bpf_clone_redirect
     - ALSA: hda: intel-sdw-acpi: Use u8 type for link index
     - firmware: cirrus: cs_dsp: Only log list of algorithms in debug build
     - media: vb2: frame_vector.c: replace WARN_ONCE with a comment
     - NFSv4.1: fix zero value filehandle in post open getattr
     - [x86] ASoC: SOF: Intel: MTL: Reduce the DSP init timeout
     - [powerpc*] watchpoints: Disable preemption in thread_change_pc()
     - [powerpc*] watchpoint: Disable pagefaults when getting user instruction
     - [powerpc*] watchpoints: Annotate atomic context in more places
     - [armhf] ncsi: Propagate carrier gain/loss events to the NCSI controller
     - net: hsr: Add __packed to struct hsr_sup_tlv.
     - perf build: Define YYNOMEM as YYNOABORT for bison < 3.81
     - nvme-pci: factor the iod mempool creation into a helper
     - nvme-pci: factor out a nvme_pci_alloc_dev helper
     - nvme-pci: do not set the NUMA node of device if it has none
     - wifi: ath11k: Don't drop tx_status when peer cannot be found
     - scsi: qla2xxx: Fix NULL pointer dereference in target mode
     - nvme-pci: always return an ERR_PTR from nvme_pci_alloc_dev
     - [x86] sgx: Resolves SECS reclaim vs. page fault for EAUG race
     - [x86] srso: Add SRSO mitigation for Hygon processors
     - [x86] KVM: SVM: INTERCEPT_RDTSCP is never intercepted anyway
     - [x86] KVM: SVM: Fix TSC_AUX virtualization setup
     - [x86] KVM: x86/mmu: Open code leaf invalidation from mmu_notifier
     - [x86] KVM: x86/mmu: Do not filter address spaces in
       for_each_tdp_mmu_root_yield_safe()
     - mptcp: fix bogus receive window shrinkage with multiple subflows
     - Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux"
     - serial: 8250_port: Check IRQ data before use
     - nilfs2: fix potential use after free in nilfs_gccache_submit_read_data()
     - netfilter: nf_tables: disallow rule removal from chain binding
       (CVE-2023-5197)
     - ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre
       M70q
     - ata: libata-scsi: link ata port and scsi device
     - ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION
       CODES
     - io_uring/fs: remove sqe->rw_flags checking from LINKAT
     - i2c: i801: unregister tco_pdev in i801_probe() error path
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82QF and 82UG
     - kernel/sched: Modify initial boot task idle setup
     - sched/rt: Fix live lock between select_fallback_rq() and RT push
     - netfilter: nf_tables: fix kdoc warnings after gc rework
     - Revert "SUNRPC dont update timeout value on connection reset"
     - timers: Tag (hr)timer softirq as hotplug safe
     - mm/slab_common: fix slab_caches list corruption after kmem_cache_destroy()
     - mm: memcontrol: fix GFP_NOFS recursion in memory.high enforcement
     - ring-buffer: Update "shortest_full" in polling
     - btrfs: properly report 0 avail for very full file systems
     - media: uvcvideo: Fix OOB read
     - bpf: Add override check to kprobe multi link attach
     - bpf: Fix BTF_ID symbol generation collision
     - bpf: Fix BTF_ID symbol generation collision in tools/
     - net: thunderbolt: Fix TCPv6 GSO checksum calculation
     - fs/smb/client: Reset password pointer to NULL (CVE-2023-5345)
     - ata: libata-core: Fix ata_port_request_pm() locking
     - ata: libata-core: Fix port and device removal
     - ata: libata-core: Do not register PM operations for SAS ports
     - ata: libata-sata: increase PMP SRST timeout to 10s
     - [x86] drm/i915/gt: Fix reservation address in ggtt_reserve_guc_top
     - power: supply: rk817: Add missing module alias
     - power: supply: ab8500: Set typing and props
     - fs: binfmt_elf_efpic: fix personality for ELF-FDPIC
     - [arm64] drm/meson: fix memory leak on ->hpd_notify callback
     - memcg: drop kmem.limit_in_bytes
     - mm, memcg: reconsider kmem.limit_in_bytes deprecation
     - [x86] ASoC: amd: yc: Fix a non-functional mic on Lenovo 82TL
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.57
     - ASoC: soc-utils: Export snd_soc_dai_is_dummy() symbol
     - mptcp: rename timer related helper to less confusing names
     - mptcp: fix dangling connection hang-up
     - mptcp: annotate lockless accesses to sk->sk_err
     - mptcp: move __mptcp_error_report in protocol.c
     - mptcp: process pending subflow error on close
     - ata,scsi: do not issue START STOP UNIT on resume
     - scsi: sd: Differentiate system and runtime start/stop management
     - scsi: sd: Do not issue commands to suspended disks on shutdown
     - scsi: core: Improve type safety of scsi_rescan_device()
     - scsi: Do not attempt to rescan suspended devices
     - ata: libata-scsi: Fix delayed scsi_rescan_device() execution
     - NFS: Cleanup unused rpc_clnt variable
     - NFS: rename nfs_client_kset to nfs_kset
     - NFSv4: Fix a state manager thread deadlock regression
     - mm/memory: add vm_normal_folio()
     - mm/mempolicy: convert queue_pages_pmd() to queue_folios_pmd()
     - mm/mempolicy: convert queue_pages_pte_range() to queue_folios_pte_range()
     - mm/mempolicy: convert migrate_page_add() to migrate_folio_add()
     - mm: mempolicy: keep VMA walk if both MPOL_MF_STRICT and MPOL_MF_MOVE are
       specified
     - mm/page_alloc: always remove pages from temporary list
     - mm/page_alloc: leave IRQs enabled for per-cpu page allocations
     - mm: page_alloc: fix CMA and HIGHATOMIC landing on the wrong buddy list
     - ring-buffer: remove obsolete comment for free_buffer_page()
     - ring-buffer: Fix bytes info in per_cpu buffer stats
     - btrfs: use struct qstr instead of name and namelen pairs
     - btrfs: setup qstr from dentrys using fscrypt helper
     - btrfs: use struct fscrypt_str instead of struct qstr
     - Revert "NFSv4: Retry LOCK on OLD_STATEID during delegation return"
     - [arm64] Avoid repeated AA64MMFR1_EL1 register read on pagefault path
     - net: add sysctl accept_ra_min_rtr_lft
     - net: change accept_ra_min_rtr_lft to affect all RA lifetimes
     - net: release reference to inet6_dev pointer
     - [arm64] cpufeature: Fix CLRBHB and BC detection
     - drm/amd/display: Adjust the MST resume flow
     - [arm64] iommu/arm-smmu-v3: Set TTL invalidation hint better
     - [arm64] iommu/arm-smmu-v3: Avoid constructing invalid range commands
     - rbd: move rbd_dev_refresh() definition
     - rbd: decouple header read-in from updating rbd_dev->header
     - rbd: decouple parent info read-in from updating rbd_dev
     - rbd: take header_rwsem in rbd_dev_refresh() only when updating
     - block: fix use-after-free of q->q_usage_counter
     - i40e: fix the wrong PTP frequency calculation
     - scsi: zfcp: Fix a double put in zfcp_port_enqueue()
     - [amd64] iommu/vt-d: Avoid memory allocation in iommu_suspend()
     - vringh: don't use vringh_kiov_advance() in vringh_iov_xfer()
       (CVE-2023-5158)
     - mptcp: userspace pm allow creating id 0 subflow
     - Bluetooth: hci_codec: Fix leaking content of local_codecs
     - Bluetooth: hci_sync: Fix handling of HCI_QUIRK_STRICT_DUPLICATE_FILTER
     - wifi: mwifiex: Fix tlv_buf_left calculation
     - md/raid5: release batch_last before waiting for another stripe_head
     - PCI: qcom: Fix IPQ8074 enumeration
     - net: replace calls to sock->ops->connect() with kernel_connect()
     - net: prevent rewrite of msg_name in sock_sendmsg()
     - drm/amd: Fix detection of _PR3 on the PCIe root port
     - drm/amd: Fix logic error in sienna_cichlid_update_pcie_parameters()
     - [arm64] Add Cortex-A520 CPU part definition
     - [arm64] errata: Add Cortex-A520 speculative unprivileged load workaround
     - HID: sony: Fix a potential memory leak in sony_probe()
     - ubi: Refuse attaching if mtd's erasesize is 0
     - erofs: fix memory leak of LZMA global compressed deduplication
     - wifi: iwlwifi: dbg_ini: fix structure packing
     - wifi: iwlwifi: mvm: Fix a memory corruption issue
     - wifi: cfg80211: hold wiphy lock in auto-disconnect
     - wifi: cfg80211: move wowlan disable under locks
     - wifi: cfg80211: add a work abstraction with special semantics
     - wifi: cfg80211: fix cqm_config access race
     - wifi: cfg80211: add missing kernel-doc for cqm_rssi_work
     - wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet
     - leds: Drop BUG_ON check for LED_COLOR_ID_MULTI
     - bpf: Fix tr dereferencing
     - regulator: mt6358: Drop *_SSHUB regulators
     - regulator: mt6358: Use linear voltage helpers for single range regulators
     - regulator: mt6358: split ops for buck and linear range LDO regulators
     - Bluetooth: Delete unused hci_req_prepare_suspend() declaration
     - Bluetooth: ISO: Fix handling of listen for unicast
     - drivers/net: process the result of hdlc_open() and add call of
       hdlc_close() in uhdlc_close()
     - wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling
     - [x86] perf/x86/amd/core: Fix overflow reset on hotplug
     - regmap: rbtree: Fix wrong register marked as in-cache when creating new
       node
     - wifi: mac80211: fix potential key use-after-free
     - [x86] perf/x86/amd: Do not WARN() on every IRQ
     - regulator/core: regulator_register: set device->class earlier
     - ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig
     - scsi: target: core: Fix deadlock due to recursive locking
     - ima: rework CONFIG_IMA dependency block
     - NFSv4: Fix a nfs4_state_manager() race
     - bpf: tcp_read_skb needs to pop skb regardless of seq
     - bpf, sockmap: Do not inc copied_seq when PEEK flag set
     - bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets
     - modpost: add missing else to the "of" check
     - net: fix possible store tearing in neigh_periodic_work()
     - bpf: Add BPF_FIB_LOOKUP_SKIP_NEIGH for bpf_fib_lookup
     - neighbour: annotate lockless accesses to n->nud_state
     - neighbour: switch to standard rcu, instead of rcu_bh
     - neighbour: fix data-races around n->output
     - ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data()
     - ptp: ocp: Fix error handling in ptp_ocp_device_init
     - net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent
     - ipv6: tcp: add a missing nf_reset_ct() in 3WHS handling
     - net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg
     - net: nfc: llcp: Add lock when modifying device list
     - net: ethernet: ti: am65-cpsw: Fix error code in
       am65_cpsw_nuss_init_tx_chns()
     - ibmveth: Remove condition to recompute TCP header checksum.
     - netfilter: handle the connecting collision properly in
       nf_conntrack_proto_sctp
     - netfilter: nf_tables: Deduplicate nft_register_obj audit logs
     - netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure
     - ipv4: Set offload_failed flag in fibmatch results
     - [armhf] net: stmmac: dwmac-stm32: fix resume on STM32 MCU
     - tipc: fix a potential deadlock on &tx->lock
     - tcp: fix quick-ack counting to count actual ACKs of new data
     - tcp: fix delayed ACKs for MSS boundary condition
     - sctp: update transport state when processing a dupcook packet
     - sctp: update hb timer immediately after users change hb_interval
     - netlink: split up copies in the ack construction
     - netlink: Fix potential skb memleak in netlink_ack
     - netlink: annotate data-races around sk->sk_err
     - HID: sony: remove duplicate NULL check before calling usb_free_urb()
     - HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit
     - intel_idle: add Emerald Rapids Xeon support
     - smb: use kernel_connect() and kernel_bind()
     - dm zoned: free dmz->ddev array in dmz_put_zoned_devices
     - RDMA/core: Require admin capabilities to set system parameters
     - of: dynamic: Fix potential memory leak in of_changeset_action()
     - IB/mlx4: Fix the size of a buffer in add_port_entries()
     - gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config()
     - gpio: pxa: disable pinctrl calls for MMP_GPIO
     - RDMA/cma: Initialize ib_sa_multicast structure to 0 when join
     - RDMA/cma: Fix truncation compilation warning in make_cma_ports
     - RDMA/uverbs: Fix typo of sizeof argument
     - RDMA/srp: Do not call scsi_done() from srp_abort()
     - RDMA/siw: Fix connection failure handling
     - RDMA/mlx5: Fix mutex unlocking on error flow for steering anchor creation
     - RDMA/mlx5: Fix NULL string error
     - [x86] sev: Use the GHCB protocol when available for SNP CPUID requests
     - ksmbd: fix race condition between session lookup and expire
     - ksmbd: fix uaf in smb20_oplock_break_ack
     - ipv6: remove nexthop_fib6_nh_bh()
     - vrf: Fix lockdep splat in output path
     - btrfs: fix an error handling path in btrfs_rename()
     - btrfs: fix fscrypt name leak after failure to join log transaction
     - netlink: remove the flex array from struct nlmsghdr
     - btrfs: file_remove_privs needs an exclusive lock in direct io write
     - ipv6: remove one read_lock()/read_unlock() pair in rt6_check_neigh()
     - xen/events: replace evtchn_rwlock with RCU (CVE-2023-34324)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.58
     - Revert "NFS: More fixes for nfs_direct_write_reschedule_io()"
     - Revert "NFS: Use the correct commit info in nfs_join_page_group()"
     - Revert "NFS: More O_DIRECT accounting fixes for error paths"
     - Revert "NFS: Fix O_DIRECT locking issues"
     - Revert "NFS: Fix error handling for O_DIRECT write scheduling"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.59
     - net: mana: Fix TX CQE error handling
     - mptcp: fix delegated action races
     - [x86] drm/i915: Don't set PIPE_CONTROL_FLUSH_L3 for aux inval
     - RDMA/cxgb4: Check skb value for failure to allocate
     - [arm64] perf/arm-cmn: Fix the unhandled overflow status of counter 4 to 7
     - [x86] platform/x86: think-lmi: Fix reference leak
     - [x86] platform/x86: hp-wmi:: Mark driver struct with __refdata to prevent
       section mismatch warning
     - scsi: Do not rescan devices with a suspended queue
     - HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect
     - quota: Fix slow quotaoff
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82YM
     - ata: libata-scsi: Disable scsi device manage_system_start_stop
     - net: prevent address rewrite in kernel_bind()
     - irqchip: renesas-rzg2l: Fix logic to clear TINT interrupt source
     - KEYS: trusted: Remove redundant static calls usage
     - ALSA: usb-audio: Fix microphone sound on Opencomm2 Headset
     - ALSA: usb-audio: Fix microphone sound on Nexigo webcam.
     - ALSA: hda/realtek: Change model for Intel RVP board
     - ASoC: simple-card-utils: fixup simple_util_startup() error handling
     - [x86] ASoC: Intel: soc-acpi: Add entry for HDMI_In capture support in MTL
       match table
     - [x86] ASoC: Intel: sof_sdw: add support for SKU 0B14
     - [x86] ASoC: Intel: soc-acpi: Add entry for sof_es8336 in MTL match table.
     - ASoC: Use of_property_read_bool() for boolean properties
     - ASoC: fsl_sai: MCLK bind with TX/RX enable bit
     - [arm64] ASoC: fsl_sai: Don't disable bitclock for i.MX8MP
     - ALSA: hda/realtek: Add quirk for HP Victus 16-d1xxx to enable mute LED
     - ALSA: hda/realtek: Add quirk for mute LEDs on HP ENVY x360 15-eu0xxx
     - ALSA: hda/realtek - ALC287 I2S speaker platform support
     - ALSA: hda/realtek - ALC287 merge RTK codec with CS CS35L41 AMP
     - pinctrl: nuvoton: wpcm450: fix out of bounds write
     - [arm64] drm/msm/dp: do not reinitialize phy unless retry during link
       training
     - [arm64] drm/msm/dsi: skip the wait for video mode done if not applicable
     - [arm64] drm/msm/dsi: fix irq_of_parse_and_map() error checking
     - [arm64] drm/msm/dpu: change _dpu_plane_calc_bw() to use u64 to avoid
       overflow
     - [arm64] drm/msm/dp: Add newlines to debug printks
     - can: isotp: isotp_sendmsg(): fix TX state detection and wait behavior
     - ravb: Fix up dma_free_coherent() call in ravb_remove()
     - ravb: Fix use-after-free issue in ravb_tx_timeout_work() (CVE-2023-35827)
     - ieee802154: ca8210: Fix a potential UAF in ca8210_probe
     - xen-netback: use default TX queue size for vifs
     - drm/vmwgfx: fix typo of sizeof argument
     - bpf: Fix verifier log for async callback return values
     - net: refine debug info in skb_checksum_help()
     - net: macsec: indicate next pn update when offloading
     - net: phy: mscc: macsec: reject PN update requests
     - net/mlx5e: macsec: use update_pn flag instead of PN comparation
     - ixgbe: fix crash with empty VF macvlan list
     - net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp
     - net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn()
     - net/smc: Fix pos miscalculation in statistics
     - pinctrl: renesas: rzn1: Enable missing PINMUX
     - workqueue: Override implicit ordered attribute in
       workqueue_apply_unbound_cpumask()
     - tcp: enforce receive buffer memory limits by allowing the tcp window to
       shrink
     - [armhf] dmaengine: stm32-mdma: abort resume if no ongoing transfer
     - [armhf] dmaengine: stm32-dma: fix stm32_dma_prep_slave_sg in case of MDMA
       chaining
     - [armhf] dmaengine: stm32-dma: fix residue in case of MDMA chaining
     - [armhf] dmaengine: stm32-mdma: use Link Address Register to compute
       residue
     - [armhf] dmaengine: stm32-mdma: set in_flight_bytes in case CRQA flag is
       set
     - usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer
     - net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read
     - [arm64,armhf] usb: dwc3: Soft reset phy on probe for host
     - usb: cdns3: Modify the return value of cdns_set_active () to void when
       CONFIG_PM_SLEEP is disabled
     - usb: hub: Guard against accesses to uninitialized BOS descriptors
     - usb: musb: Get the musb_qh poniter after musb_giveback
     - usb: musb: Modify the "HWVers" register address
     - iio: pressure: bmp280: Fix NULL pointer exception
     - iio: imu: bno055: Fix missing Kconfig dependencies
     - iio: adc: imx8qxp: Fix address for command buffer registers
     - iio: dac: ad3552r: Correct device IDs
     - iio: admv1013: add mixer_vgate corner cases
     - iio: pressure: dps310: Adjust Timeout Settings
     - iio: pressure: ms5611: ms5611_prom_is_valid false negative bug
     - iio: addac: Kconfig: update ad74413r selections
     - drm/atomic-helper: relax unregistered connector check
     - drm/amdgpu: add missing NULL check
     - drm/amd/display: Don't set dpms_off for seamless boot
     - ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA
     - ACPI: EC: Add quirk for the HP Pavilion Gaming 15-dk1xxx
     - ksmbd: not allow to open file if delelete on close bit is set
     - [x86] perf/x86/lbr: Filter vsyscall addresses
     - [x86] cpu: Fix AMD erratum #1485 on Zen4-based CPUs
     - mcb: remove is_added flag from mcb_device struct
     - [x86] thunderbolt: Workaround an IOMMU fault on certain systems with Intel
       Maple Ridge
     - [x86] thunderbolt: Check that lane 1 is in CL0 before enabling lane
       bonding
     - [x86] thunderbolt: Restart XDomain discovery handshake after failure
     - [powerpc*] 47x: Fix 47x syscall return crash
     - libceph: use kernel_connect()
     - ceph: fix incorrect revoked caps assert in ceph_fill_file_size()
     - ceph: fix type promotion bug on 32bit systems
     - Input: powermate - fix use-after-free in powermate_config_complete
     - Input: psmouse - fix fast_reconnect function for PS/2 mode
     - Input: xpad - add PXN V900 support
     - Input: i8042 - add Fujitsu Lifebook E5411 to i8042 quirk table
     - Input: goodix - ensure int GPIO is in input for gpio_count == 1 &&
       gpio_int_idx == 0 case
     - mctp: perform route lookups under a RCU read-side lock
     - nfp: flower: avoid rmmod nfp crash issues
     - usb: typec: ucsi: Use GET_CAPABILITY attributes data to set power supply
       scope
     - cgroup: Remove duplicates in cgroup v1 tasks file
     - dma-buf: add dma_fence_timestamp helper
     - pinctrl: avoid unsafe code pattern in find_pinctrl()
     - scsi: ufs: core: Correct clear TM error log
     - counter: chrdev: fix getting array extensions
     - counter: microchip-tcb-capture: Fix the use of internal GCLK logic
     - usb: typec: altmodes/displayport: Signal hpd low when exiting mode
     - usb: typec: ucsi: Clear EVENT_PENDING bit if ucsi_send_command fails
     - usb: gadget: udc-xilinx: replace memcpy with memcpy_toio
     - usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call
     - usb: cdnsp: Fixes issue with dequeuing not queued requests
     - [x86] alternatives: Disable KASAN in apply_alternatives()
     - [amd64] dmaengine: idxd: use spin_lock_irqsave before wait_event_lock_irq
     - [powerpc*] 8xx: Fix pte_access_permitted() for PAGE_NONE
     - [powerpc*] 64e: Fix wrong test in __ptep_test_and_clear_young()
     - ALSA: hda/realtek - Fixed two speaker platform
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.60
     - lib/Kconfig.debug: do not enable DEBUG_PREEMPT by default
     - igc: remove I226 Qbv BaseTime restriction
     - igc: enable Qbv configuration for 2nd GCL
     - igc: Remove reset adapter task for i226 during disable tsn config
     - igc: Add qbv_config_change_errors counter
     - igc: Add condition for qbv_config_change_errors counter
     - igc: Fix race condition in PTP tx code
     - Bluetooth: hci_event: Ignore NULL link key
     - Bluetooth: Reject connection with the device which has same BD_ADDR
     - Bluetooth: Fix a refcnt underflow problem for hci_conn
     - Bluetooth: vhci: Fix race when opening vhci device
     - Bluetooth: hci_event: Fix coding style
     - Bluetooth: avoid memcmp() out of bounds warning
     - ice: fix over-shifted variable
     - ice: reset first in crash dump kernels
     - net/smc: return the right falback reason when prefix checks fail
     - btrfs: fix stripe length calculation for non-zoned data chunk allocation
     - nfc: nci: fix possible NULL pointer dereference in send_acknowledge()
     - regmap: fix NULL deref on lookup
     - [x86] KVM: x86: Mask LVTPC when handling a PMI
     - [x86] sev: Disable MMIO emulation from user mode (CVE-2023-46813)
     - [x86] sev: Check IOBM for IOIO exceptions from user-space (CVE-2023-46813)
     - [x86] sev: Check for user-space IOIO pointing to kernel space
       (CVE-2023-46813)
     - [x86] fpu: Allow caller to constrain xfeatures when copying to uabi buffer
     - [x86] KVM: x86: Constrain guest-supported xfeatures only at
       KVM_GET_XSAVE{2}
     - [x86] KVM: SVM: add support for Invalid IPI Vector interception
     - [x86] KVM: SVM: refresh AVIC inhibition in svm_leave_nested()
     - audit,io_uring: io_uring openat triggers audit reference count underflow
     - tcp: check mptcp-level constraints for backlog coalescing
     - mptcp: more conservative check for zero probes
     - netfilter: nft_payload: fix wrong mac header matching
     - nvmet-tcp: Fix a possible UAF in queue intialization setup (CVE-2023-5178)
     - [x86] drm/i915: Retry gtt fault when out of fence registers
     - ALSA: hda/realtek - Fixed ASUS platform headset Mic issue
     - ALSA: hda/realtek: Add quirk for ASUS ROG GU603ZV
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15s-fq5xxx
     - qed: fix LL2 RX buffer allocation
     - xfrm: fix a data-race in xfrm_lookup_with_ifid()
     - xfrm: fix a data-race in xfrm_gen_index()
     - xfrm: interface: use DEV_STATS_INC()
     - wifi: cfg80211: use system_unbound_wq for wiphy work
     - net: ipv4: fix return value check in esp_remove_trailer
     - net: ipv6: fix return value check in esp_remove_trailer
     - net: rfkill: gpio: prevent value glitch during probe
     - tcp: fix excessive TLP and RACK timeouts from HZ rounding
     - tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single
       skb
     - tcp: Fix listen() warning with v4-mapped-v6 address.
     - tun: prevent negative ifindex
     - ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr
     - net: usb: smsc95xx: Fix an error code in smsc95xx_reset()
     - i40e: prevent crash on probe if hw registers have invalid values
     - net: dsa: bcm_sf2: Fix possible memory leak in bcm_sf2_mdio_register()
     - bonding: Return pointer to data after pull on skb
     - net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve
     - neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section
     - netfilter: nft_set_rbtree: .deactivate fails if element has expired
     - netlink: Correct offload_xstats size
     - netfilter: nf_tables: do not remove elements if set backend implements
       .abort
     - netfilter: nf_tables: revert do not remove elements if set backend
       implements .abort
     - net: phy: bcm7xxx: Add missing 16nm EPHY statistics
     - net: pktgen: Fix interface flags printing
     - net: avoid UAF on deleted altname
     - net: fix ifname in netlink ntf during netns move
     - net: check for altname conflicts when changing netdev's netns
     - usb: misc: onboard_usb_hub: add Genesys Logic GL850G hub support
     - usb: misc: onboard_usb_hub: add Genesys Logic GL852G hub support
     - usb: misc: onboard_usb_hub: add Genesys Logic GL3523 hub support
     - usb: misc: onboard_hub: add support for Microchip USB2412 USB 2.0 hub
     - serial: Move uart_change_speed() earlier
     - serial: Rename uart_change_speed() to uart_change_line_settings()
     - serial: Reduce spinlocked portion of uart_rs485_config()
     - serial: 8250: omap: Fix imprecise external abort for omap_8250_pm()
     - serial: 8250_omap: Fix errors with no_console_suspend
     - iio: core: introduce iio_device_{claim|release}_buffer_mode() APIs
     - iio: cros_ec: fix an use-after-free in cros_ec_sensors_push_data()
     - iio: adc: ad7192: Simplify using devm_regulator_get_enable()
     - iio: adc: ad7192: Correct reference voltage
     - pwr-mlxbf: extend Kconfig to include gpio-mlxbf3 dependency
     - fs-writeback: do not requeue a clean inode having skipped pages
     - btrfs: prevent transaction block reserve underflow when starting
       transaction
     - btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to
       1
     - btrfs: initialize start_slot in btrfs_log_prealloc_extents
     - i2c: mux: Avoid potential false error message in i2c_mux_add_adapter
     - overlayfs: set ctime when setting mtime and atime
     - gpio: timberdale: Fix potential deadlock on &tgpio->lock
     - ata: libata-core: Fix compilation warning in ata_dev_config_ncq()
     - ata: libata-eh: Fix compilation warning in ata_eh_link_report()
     - tracing: relax trace_event_eval_update() execution with cond_resched()
     - wifi: mwifiex: Sanity check tlv_len and tlv_bitmap_len
     - wifi: iwlwifi: Ensure ack flag is properly cleared.
     - HID: logitech-hidpp: Add Bluetooth ID for the Logitech M720 Triathlon
       mouse
     - HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event
     - Bluetooth: btusb: add shutdown function for QCA6174
     - Bluetooth: Avoid redundant authentication
     - Bluetooth: hci_core: Fix build warnings
     - wifi: cfg80211: Fix 6GHz scan configuration
     - wifi: mac80211: work around Cisco AP 9115 VHT MPDU length
     - wifi: mac80211: allow transmitting EAPOL frames with tainted key
     - wifi: cfg80211: avoid leaking stack data into trace
     - regulator/core: Revert "fix kobject release warning and memory leak in
       regulator_register()"
     - sky2: Make sure there is at least one frag_addr available
     - ipv4/fib: send notify when delete source address routes
     - drm: panel-orientation-quirks: Add quirk for One Mix 2S
     - btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c
     - btrfs: error out when COWing block using a stale transaction
     - btrfs: error when COWing block from a root that is being deleted
     - btrfs: error out when reallocating block for defrag using a stale
       transaction
     - drm/amd/pm: add unique_id for gc 11.0.3
     - HID: multitouch: Add required quirk for Synaptics 0xcd7e device
     - HID: nintendo: reinitialize USB Pro Controller after resuming from suspend
     - [x86] platform/x86: touchscreen_dmi: Add info for the Positivo C4128B
     - cpufreq: schedutil: Update next_freq when cpufreq_limits change
     - fprobe: Pass entry_data to handlers
     - fprobe: Add nr_maxactive to specify rethook_node pool size
     - fprobe: Fix to ensure the number of active retprobes is not zero
     - net: xfrm: skip policies marked as dead while reinserting policies
     - xfrm6: fix inet6_dev refcount underflow problem
     - net/mlx5: E-switch, register event handler before arming the event
     - net/mlx5: Handle fw tracer change ownership event based on MTRC
     - net/mlx5e: Don't offload internal port if filter device is out device
     - net/tls: split tls_rx_reader_lock
     - tcp: allow again tcp_disconnect() when threads are waiting
     - ice: Remove redundant pci_enable_pcie_error_reporting()
     - Bluetooth: hci_event: Fix using memcmp when comparing keys
     - tcp_bpf: properly release resources on error paths
     - net/smc: fix smc clc failed issue when netdevice not in init_net
     - mtd: physmap-core: Restore map_rom fallback
     - dt-bindings: mmc: sdhci-msm: correct minimum number of clocks
     - mmc: sdhci-pci-gli: fix LPM negotiation so x86/S0ix SoCs can suspend
     - mmc: core: sdio: hold retuning if sdio in 1-bit mode
     - mmc: core: Capture correct oemid-bits for eMMC cards
     - Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()"
     - pNFS: Fix a hang in nfs4_evict_inode()
     - pNFS/flexfiles: Check the layout validity in
       ff_layout_mirror_prepare_stats
     - NFSv4.1: fixup use EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - ACPI: irq: Fix incorrect return value in acpi_register_gsi()
     - nfs42: client needs to strip file mode's suid/sgid bit after ALLOCATE op
     - nvme: sanitize metadata bounce buffer for reads
     - nvme-pci: add BOGUS_NID for Intel 0a54 device
     - nvme-rdma: do not try to stop unallocated queues
     - [x86] KVM: x86/mmu: Stop zapping invalidated TDP MMU roots asynchronously
     - HID: input: map battery system charging
     - USB: serial: option: add Telit LE910C4-WWX 0x1035 composition
     - USB: serial: option: add entry for Sierra EM9191 with new firmware
     - USB: serial: option: add Fibocom to DELL custom modem FM101R-GL
     - perf: Disallow mis-matched inherited group reads (CVE-2023-5717)
     - [s390x] pci: fix iommu bitmap allocation
     - [s390x] cio: fix a memleak in css_alloc_subchannel
     - [x86] platform/surface: platform_profile: Propagate error if profile
       registration fails
     - [x86] platform/x86: intel-uncore-freq: Conditionally create attribute for
       read frequency
     - [x86] platform/x86: asus-wmi: Change ASUS_WMI_BRN_DOWN code from 0x20 to
       0x2e
     - [x86] platform/x86: asus-wmi: Only map brightness codes when using
       asus-wmi backlight control
     - [x86] platform/x86: asus-wmi: Map 0x2a code, Ignore 0x2b and 0x2c events
     - gpio: vf610: set value before the direction to avoid a glitch
     - drm/bridge: ti-sn65dsi86: Associate DSI device lifetime with auxiliary
       device
     - serial: 8250: omap: Move uart_write() inside PM section
     - serial: 8250: omap: convert to modern PM ops
     - kallsyms: Reduce the memory occupied by kallsyms_seqs_of_names[]
     - kallsyms: Add helper kallsyms_on_each_match_symbol()
     - tracing/kprobes: Return EADDRNOTAVAIL when func matches several symbols
     - gpio: vf610: make irq_chip immutable
     - gpio: vf610: mask the gpio irq in system suspend and support wakeup
     - phy: mapphone-mdm6600: Fix runtime disable on probe
     - phy: mapphone-mdm6600: Fix runtime PM for remove
     - phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins
     - net: move altnames together with the netdevice
     - Bluetooth: hci_sock: fix slab oob read in create_monitor_event
     - Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name
     - mptcp: avoid sending RST when closing the initial subflow
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.61
     - [x86] KVM: x86/pmu: Truncate counter value to allowed width on write
     - mmc: core: Align to common busy polling behaviour for mmc ioctls
     - mmc: block: ioctl: do write error check for spi
     - mmc: core: Fix error propagation for some ioctl commands
     - virtio_balloon: Fix endless deflation and inflation on arm64
     - virtio-mmio: fix memory leak of vm_dev
     - virtio-crypto: handle config changed by work queue
     - virtio_pci: fix the common cfg map size
     - vsock/virtio: initialize the_virtio_vsock before using VQs
     - vhost: Allow null msg.size on VHOST_IOTLB_INVALIDATE
     - mm: fix vm_brk_flags() to not bail out while holding lock
     - hugetlbfs: clear resv_map pointer if mmap fails
     - mm/page_alloc: correct start page when guard page debug is enabled
     - mm/migrate: fix do_pages_move for compat pointers
     - hugetlbfs: extend hugetlb_vma_lock to private VMAs
     - maple_tree: add GFP_KERNEL to allocations in mas_expected_entries()
     - nfsd: lock_rename() needs both directories to live on the same fs
     - [x86] drm/i915/pmu: Check if pmu is closed before stopping event
     - drm/amd: Disable ASPM for VI w/ all Intel systems
     - drm/dp_mst: Fix NULL deref in get_mst_branch_device_by_guid_helper()
     - [armhf] clk: ti: Fix missing omap4 mcbsp functional clock and aliases
     - [armhf] clk: ti: Fix missing omap5 mcbsp functional clock and aliases
     - r8169: fix the KCSAN reported data-race in rtl_tx() while reading
       tp->cur_tx
     - r8169: fix the KCSAN reported data-race in rtl_tx while reading
       TxDescArray[entry].opts1
     - r8169: fix the KCSAN reported data race in rtl_rx while reading
       desc->opts1
     - iavf: initialize waitqueues before starting watchdog_task
     - i40e: Fix I40E_FLAG_VF_VLAN_PRUNING value
     - igb: Fix potential memory leak in igb_add_ethtool_nfc_entry
     - neighbour: fix various data-races
     - igc: Fix ambiguity in the ethtool advertising
     - net: ieee802154: adf7242: Fix some potential buffer overflow in
       adf7242_stats_show()
     - net: usb: smsc95xx: Fix uninit-value access in smsc95xx_read_reg
     - r8152: Increase USB control msg timeout to 5000ms as per spec
     - r8152: Run the unload routine if we have errors during probe
     - r8152: Cancel hw_phy_work if we have an error in probe
     - r8152: Release firmware if we have an error in probe
     - tcp: fix wrong RTO timeout when received SACK reneging
     - gtp: uapi: fix GTPA_MAX
     - gtp: fix fragmentation needed check with gso
     - i40e: Fix wrong check for I40E_TXR_FLAGS_WB_ON_ITR
     - iavf: in iavf_down, disable queues when removing the driver
     - scsi: sd: Introduce manage_shutdown device flag
     - blk-throttle: check for overflow in calculate_bytes_allowed
     - io_uring/fdinfo: lock SQ thread while retrieving thread cpu/pid
       (CVE-2023-46862)
     - iio: afe: rescale: Accept only offset channels
     - iio: exynos-adc: request second interupt only when touchscreen mode is
       used
     - iio: adc: xilinx-xadc: Don't clobber preset voltage/temperature thresholds
     - iio: adc: xilinx-xadc: Correct temperature offset/scale for UltraScale
     - i2c: muxes: i2c-mux-pinctrl: Use of_get_i2c_adapter_by_node()
     - i2c: muxes: i2c-mux-gpmux: Use of_get_i2c_adapter_by_node()
     - i2c: muxes: i2c-demux-pinctrl: Use of_get_i2c_adapter_by_node()
     - i2c: stm32f7: Fix PEC handling in case of SMBUS transfers
     - i2c: aspeed: Fix i2c bus hang in slave read
     - tracing/kprobes: Fix the description of variable length arguments
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6ULL
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6SLL
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6UL
     - [x86] i8259: Skip probing when ACPI/MADT advertises PCAT compatibility
     - [x86] cpu: Add model number for Intel Arrow Lake mobile processor
     - perf/core: Fix potential NULL deref
     - clk: Sanitize possible_parent_show to Handle Return Value of
       of_clk_get_parent_name
     - [x86] platform/x86: Add s2idle quirk for more Lenovo laptops
     - ext4: add two helper functions extent_logical_end() and pa_logical_end()
     - ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow
     - ext4: avoid overlapping preallocations due to overflow
     - [x86] objtool/x86: add missing embedded_insn check
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.62
     - [arm*] ASoC: simple-card: fixup asoc_simple_probe() error handling
     - net: sched: cls_u32: Fix allocation size in u32_init()
     - [armhf] irqchip/stm32-exti: add missing DT IRQ flag translation
     - Input: synaptics-rmi4 - handle reset delay when using SMBus trsnsport
     - fbdev: atyfb: only use ioremap_uc() on i386 and ia64
     - netfilter: nfnetlink_log: silence bogus compiler warning
     - efi: fix memory leak in krealloc failure handling
     - ASoC: rt5650: fix the wrong result of key button
     - drm/ttm: Reorder sys manager cleanup step
     - [x86] fbdev: uvesafb: Call cn_del_callback() at the end of uvesafb_exit()
     - scsi: mpt3sas: Fix in error path
     - drm/amdgpu: Unset context priority is now invalid
     - gpu/drm: Eliminate DRM_SCHED_PRIORITY_UNSET
     - netfilter: nf_tables: audit log object reset once per table
     - drm/amdgpu: Reserve fences for VM update
     - net: chelsio: cxgb4: add an error code check in t4_load_phy_fw
     - r8152: Check for unplug in rtl_phy_patch_request()
     - r8152: Check for unplug in r8153b_ups_en() / r8153c_ups_en()
     - [powerpc*] mm: Fix boot crash with FLATMEM
     - io_uring: kiocb_done() should *not* trust ->ki_pos if
       ->{read,write}_iter() failed
     - ceph_wait_on_conflict_unlink(): grab reference before dropping ->d_lock
     - power: supply: core: Use blocking_notifier_call_chain to avoid RCU
       complaint
     - perf evlist: Avoid frequency mode for the dummy event
     - [x86] KVM: SVM: always update the x2avic msr interception (CVE-2023-5090)
     - mm/mempolicy: fix set_mempolicy_home_node() previous VMA pointer
     - mmap: fix error paths with dup_anon_vma()
     - ALSA: usb-audio: add quirk flag to enable native DSD for McIntosh devices
     - PCI: Prevent xHCI driver from claiming AMD VanGogh USB3 DRD device
     - usb: storage: set 1.50 as the lower bcdDevice for older "Super Top"
       compatibility
     - usb: typec: tcpm: Fix NULL pointer dereference in tcpm_pd_svdm()
     - usb: raw-gadget: properly handle interrupted requests
     - tty: n_gsm: fix race condition in status line change on dead connections
     - tty: 8250: Remove UC-257 and UC-431
     - tty: 8250: Add support for additional Brainboxes UC cards
     - tty: 8250: Add support for Brainboxes UP cards
     - tty: 8250: Add support for Intashield IS-100
     - tty: 8250: Fix port count of PX-257
     - tty: 8250: Fix up PX-803/PX-857
     - tty: 8250: Add support for additional Brainboxes PX cards
     - tty: 8250: Add support for Intashield IX cards
     - tty: 8250: Add Brainboxes Oxford Semiconductor-based quirks
     - misc: pci_endpoint_test: Add deviceID for J721S2 PCIe EP device support
     - ALSA: hda: intel-dsp-config: Fix JSL Chromebook quirk detection
     - [x86] ASoC: SOF: sof-pci-dev: Fix community key quirk detection
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.63
     - hwmon: (nct6775) Fix incorrect variable reuse in fan_div calculation
     - sched/fair: Fix cfs_rq_is_decayed() on !SMP
     - [x86] iov_iter, x86: Be consistent about the __user tag on
       copy_mc_to_user()
     - sched/uclamp: Set max_spare_cap_cpu even if max_spare_cap is 0
     - sched/uclamp: Ignore (util == 0) optimization in feec() when p_util_max =
       0
     - objtool: Propagate early errors
     - sched: Fix stop_one_cpu_nowait() vs hotplug
     - vfs: fix readahead(2) on block devices
     - writeback, cgroup: switch inodes with dirty timestamps to release dying
       cgwbs
     - [x86] srso: Fix SBPB enablement for (possible) future fixed HW
     - futex: Don't include process MM in futex key on no-MMU
     - [x86] numa: Introduce numa_fill_memblks()
     - ACPI/NUMA: Apply SRAT proximity domain to entire CFMWS window
     - [x86] sev-es: Allow copy_from_kernel_nofault() in earlier boot
     - [x86] boot: Fix incorrect startup_gdt_descr.size
     - [arm64,armhf] drivers/clocksource/timer-ti-dm: Don't call clk_get_rate()
       in stop function
     - pstore/platform: Add check for kstrdup
     - string: Adjust strtomem() logic to allow for smaller sources
     - genirq/matrix: Exclude managed interrupts in irq_matrix_allocated()
     - wifi: cfg80211: add flush functions for wiphy work
     - wifi: mac80211: move radar detect work to wiphy work
     - wifi: mac80211: move scan work to wiphy work
     - wifi: mac80211: move offchannel works to wiphy work
     - wifi: mac80211: move sched-scan stop work to wiphy work
     - wifi: mac80211: fix # of MSDU in A-MSDU calculation
     - wifi: iwlwifi: honor the enable_ini value
     - i40e: fix potential memory leaks in i40e_remove()
     - iavf: Fix promiscuous mode configuration flow messages
     - udp: add missing WRITE_ONCE() around up->encap_rcv
     - tcp: call tcp_try_undo_recovery when an RTOd TFO SYNACK is ACKed
     - gve: Use size_add() in call to struct_size()
     - tls: Only use data field in crypto completion function
     - tls: Use size_add() in call to struct_size()
     - tipc: Use size_add() in calls to struct_size()
     - net: spider_net: Use size_add() in call to struct_size()
     - net: ethernet: mtk_wed: fix EXT_INT_STATUS_RX_FBUF definitions for MT7986
       SoC
     - wifi: rtw88: debug: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
     - wifi: ath11k: fix boot failure with one MSI vector
     - wifi: mt76: mt7603: rework/fix rx pse hang check
     - wifi: mt76: mt7603: improve watchdog reset reliablity
     - wifi: mt76: mt7603: improve stuck beacon handling
     - wifi: mt76: mt7915: fix beamforming availability check
     - wifi: ath: dfs_pattern_detector: Fix a memory initialization issue
     - tcp_metrics: add missing barriers on delete
     - tcp_metrics: properly set tp->snd_ssthresh in tcp_init_metrics()
     - tcp_metrics: do not create an entry from tcp_init_metrics()
     - wifi: rtlwifi: fix EDCA limit set by BT coexistence
     - ACPI: property: Allow _DSD buffer data only for byte accessors
     - ACPI: video: Add acpi_backlight=vendor quirk for Toshiba Portégé R100
     - wifi: ath11k: fix Tx power value during active CAC
     - can: dev: can_restart(): don't crash kernel if carrier is OK
     - can: dev: can_restart(): fix race condition between controller restart and
       netif_carrier_on()
     - can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is
       accessed out of bounds
     - PM / devfreq: rockchip-dfi: Make pmu regmap mandatory
     - wifi: wfx: fix case where rates are out of order
     - netfilter: nf_tables: Drop pointless memset when dumping rules
     - thermal: core: prevent potential string overflow
     - r8169: use tp_to_dev instead of open code
     - r8169: fix rare issue with broken rx after link-down on RTL8125
     - net: skb_find_text: Ignore patterns extending past 'to'
     - tcp: fix cookie_init_timestamp() overflows
     - wifi: iwlwifi: call napi_synchronize() before freeing rx/tx queues
     - wifi: iwlwifi: pcie: synchronize IRQs before NAPI
     - wifi: iwlwifi: empty overflow queue during flush
     - Bluetooth: hci_sync: Fix Opcode prints in bt_dev_dbg/err
     - bpf: Fix unnecessary -EBUSY from htab_lock_bucket
     - ACPI: sysfs: Fix create_pnp_modalias() and create_of_modalias()
     - ipv6: avoid atomic fragment on GSO packets
     - net: add DEV_STATS_READ() helper
     - ipvlan: properly track tx_errors
     - regmap: debugfs: Fix a erroneous check after snprintf()
     - [arm64] spi: tegra: Fix missing IRQ check in tegra_slink_probe()
     - [arm64] clk: qcom: gcc-msm8996: Remove RPM bus clocks
     - [arm64] clk: qcom: clk-rcg2: Fix clock rate overflow for high parent
       frequencies
     - [arm64] clk: qcom: mmcc-msm8998: Don't check halt bit on some branch clks
     - [arm64] clk: qcom: mmcc-msm8998: Fix the SMMU GDSC
     - [arm64] clk: qcom: gcc-sm8150: Fix gcc_sdcc2_apps_clk_src
     - clk: imx: Select MXC_CLK for CLK_IMX8QXP
     - [arm64] clk: imx: imx8mq: correct error handling path
     - [arm64] clk: imx: imx8qxp: Fix elcdif_pll clock
     - [arm64] clk: renesas: rcar-gen3: Extend SDnH divider table
     - clk: linux/clk-provider.h: fix kernel-doc warnings and typos
     - [arm64] spi: nxp-fspi: use the correct ioremap function
     - [armhf] clk: ti: change ti_clk_register[_omap_hw]() API
     - [armhf] clk: ti: fix double free in of_ti_divider_clk_setup()
     - [arm64] clk: qcom: config IPQ_APSS_6018 should depend on QCOM_SMEM
     - [x86] platform/x86: wmi: Fix probe failure when failing to register WMI
       devices
     - [x86] platform/x86: wmi: Fix opening of char device
     - hwmon: (coretemp) Fix potentially truncated sysfs attribute name
     - Revert "hwmon: (sch56xx-common) Add DMI override table"
     - Revert "hwmon: (sch56xx-common) Add automatic module loading on supported
       devices"
     - hwmon: (sch5627) Use bit macros when accessing the control register
     - hwmon: (sch5627) Disallow write access if virtual registers are locked
     - [arm64,armhf] drm/rockchip: vop: Fix reset of state in duplicate state
       crtc funcs
     - [arm64,armhf] drm/rockchip: vop: Fix call to crtc reset helper
     - [arm64] drm/rockchip: vop2: Don't crash for invalid duplicate_state
     - [arm64] drm/rockchip: vop2: Add missing call to crtc reset helper
     - drm/radeon: possible buffer overflow
     - drm/amd/display: Check all enabled planes in dm_check_crtc_cursor
     - drm/amd/display: Refactor dm_get_plane_scale helper
     - drm/amd/display: Bail from dm_check_crtc_cursor if no relevant change
     - io_uring/kbuf: Fix check of BID wrapping in provided buffers
     - io_uring/kbuf: Allow the full buffer id space for provided buffers
     - [arm64] drm/rockchip: cdn-dp: Fix some error handling paths in
       cdn_dp_probe()
     - [arm64,armhf] gpu: host1x: Correct allocated size for contexts
     - [arm64,armhf] drm/rockchip: Fix type promotion bug in
       rockchip_gem_iommu_map()
     - xenbus: fix error exit in xenbus_init()
     - xen-pciback: Consider INTx disabled when MSI/MSI-X is enabled
     - [arm64] drm/msm/dsi: use msm_gem_kernel_put to free TX buffer
     - [arm64] drm/msm/dsi: free TX buffer in unbind
     - [arm64,armhf] clocksource/drivers/arm_arch_timer: limit XGene-1 workaround
     - drivers/perf: hisi: use cpuhp_state_remove_instance_nocalls() for
       hisi_hns3_pmu uninit process
     - [arm64] perf/arm-cmn: Revamp model detection
     - [arm64] perf/arm-cmn: Fix DTC domain detection
     - drivers/perf: hisi_pcie: Check the type first in pmu::event_init()
     - [arm64] perf: hisi: Fix use-after-free when register pmu fails
     - [arm64] dts: qcom: sdm845: cheza doesn't support LMh node
     - [arm64] dts: qcom: sc7280: link usb3_phy_wrapper_gcc_usb30_pipe_clk
     - [arm64] dts: qcom: msm8916: Fix iommu local address range
     - [arm64] dts: qcom: msm8992-libra: drop duplicated reserved memory
     - [arm64] dts: qcom: sc7280: Add missing LMH interrupts
     - [arm64] dts: qcom: sm8150: add ref clock to PCIe PHYs
     - [arm64] dts: qcom: sm8350: fix pinctrl for UART18
     - [arm64] dts: qcom: sdm845-mtp: fix WiFi configuration
     - [arm64] dts: marvell: cn9310: Use appropriate label for spi1 pins
     - [arm64] dts: qcom: apq8016-sbc: Add missing ADV7533 regulators
     - firmware: ti_sci: Mark driver as non removable
     - [arm64] dts: ti: k3-am62a7-sk: Drop i2c-1 to 100Khz
     - [arm64] clk: scmi: Free scmi_clk allocated when the clocks with invalid
       info are skipped
     - [arm64] dts: imx8qm-ss-img: Fix jpegenc compatible entry
     - [arm64] dts: imx8mm: Add sound-dai-cells to micfil node
     - [arm64] dts: imx8mn: Add sound-dai-cells to micfil node
     - [arm64] tegra: Use correct interrupts for Tegra234 TKE
     - module/decompress: use vmalloc() for gzip decompression workspace
     - [x86] ASoC: cs35l41: Verify PM runtime resume errors in IRQ handler
     - [x86] ASoC: cs35l41: Undo runtime PM changes at driver exit time
     - ALSA: hda: cs35l41: Fix unbalanced pm_runtime_get()
     - ALSA: hda: cs35l41: Undo runtime PM changes at driver exit time
     - KEYS: Include linux/errno.h in linux/verification.h
     - crypto: hisilicon/hpre - Fix a erroneous check after snprintf()
     - hwrng: bcm2835 - Fix hwrng throughput regression
     - [i386] hwrng: geode - fix accessing registers
     - RDMA/core: Use size_{add,sub,mul}() in calls to struct_size()
     - [x86] crypto: qat - ignore subsequent state up commands
     - [x86] crypto: qat - relocate bufferlist logic
     - [x86] crypto: qat - rename bufferlist functions
     - [x86] crypto: qat - change bufferlist logic interface
     - [x86] crypto: qat - generalize crypto request buffers
     - [x86] crypto: qat - extend buffer list interface
     - [x86] crypto: qat - fix unregistration of crypto algorithms
     - scsi: ibmvfc: Fix erroneous use of rtas_busy_delay with hcall return code
     - libnvdimm/of_pmem: Use devm_kstrdup instead of kstrdup and check its
       return value
     - nd_btt: Make BTT lanes preemptible
     - [arm64] crypto: caam/qi2 - fix Chacha20 + Poly1305 self test failure
     - [arm64,armhf] crypto: caam/jr - fix Chacha20 + Poly1305 self test failure
     - [x86] crypto: qat - increase size of buffers
     - [amd64] PCI: vmd: Correct PCI Header Type Register's multi-function check
     - hid: cp2112: Fix duplicate workqueue initialization
     - [armel,armhf] 9321/1: memset: cast the constant byte to unsigned char
     - ext4: move 'ix' sanity check to corrent position
     - IB/mlx5: Fix rdma counter binding for RAW QP
     - [arm64] RDMA/hns: Fix printing level of asynchronous events
     - [arm64] RDMA/hns: Fix uninitialized ucmd in hns_roce_create_qp_common()
     - [arm64] RDMA/hns: Fix signed-unsigned mixed comparisons
     - [arm64] RDMA/hns: Add check for SL
     - [arm64] RDMA/hns: The UD mode can only be configured with DCQCN
     - [x86] ASoC: SOF: core: Ensure sof_ops_free() is still called when probe
       never ran.
     - scsi: ufs: core: Leave space for '\0' in utf8 desc string
     - [amd64] RDMA/hfi1: Workaround truncation compilation error
     - HID: cp2112: Make irq_chip immutable
     - hid: cp2112: Fix IRQ shutdown stopping polling for all IRQs on chip
     - Revert "HID: logitech-hidpp: add a module parameter to keep firmware
       gestures"
     - HID: logitech-hidpp: Remove HIDPP_QUIRK_NO_HIDINPUT quirk
     - HID: logitech-hidpp: Don't restart IO, instead defer hid_connect() only
     - HID: logitech-hidpp: Revert "Don't restart communication if not necessary"
     - HID: logitech-hidpp: Move get_wireless_feature_index() check to
       hidpp_connect_event()
     - [x86] ASoC: Intel: Skylake: Fix mem leak when parsing UUIDs fails
     - padata: Fix refcnt handling in padata_free_shell()
     - [x86] crypto: qat - fix deadlock in backlog processing
     - IB/mlx5: Fix init stage error handling to avoid double free of same QP and
       UAF
     - mfd: core: Un-constify mfd_cell.of_reg
     - mfd: core: Ensure disabled devices are skipped without aborting
     - mfd: dln2: Fix double put in dln2_probe
     - dt-bindings: mfd: mt6397: Add binding for MT6357
     - dt-bindings: mfd: mt6397: Split out compatible for MediaTek MT6366 PMIC
     - mfd: arizona-spi: Set pdata.hpdet_channel for ACPI enumerated devs
     - leds: turris-omnia: Drop unnecessary mutex locking
     - leds: turris-omnia: Do not use SMBUS calls
     - leds: pwm: Don't disable the PWM when the LED should be off
     - leds: trigger: ledtrig-cpu:: Fix 'output may be truncated' issue for 'cpu'
     - apparmor: fix invalid reference on profile->disconnected
     - perf stat: Fix aggr mode initialization
     - iio: frequency: adf4350: Use device managed functions and fix power down
       issue.
     - perf kwork: Fix incorrect and missing free atom in work_push_atom()
     - perf kwork: Add the supported subcommands to the document
     - perf kwork: Set ordered_events to true in 'struct perf_tool'
     - filemap: add filemap_get_folios_tag()
     - f2fs: convert f2fs_write_cache_pages() to use filemap_get_folios_tag()
     - f2fs: compress: fix deadloop in f2fs_write_cache_pages()
     - f2fs: compress: fix to avoid use-after-free on dic
     - f2fs: compress: fix to avoid redundant compress extension
     - tty: tty_jobctrl: fix pid memleak in disassociate_ctty()
     - pinctrl: renesas: rzg2l: Make reverse order of enable() for disable()
     - perf record: Fix BTF type checks in the off-cpu profiling
     - dmaengine: idxd: Register dsa_bus_type before registering idxd sub-drivers
     - usb: dwc2: fix possible NULL pointer dereference caused by driver
       concurrency
     - usb: chipidea: Fix DMA overwrite for Tegra
     - usb: chipidea: Simplify Tegra DMA alignment code
     - dmaengine: ti: edma: handle irq_of_parse_and_map() errors
     - misc: st_core: Do not call kfree_skb() under spin_lock_irqsave()
     - USB: usbip: fix stub_dev hub disconnect
     - dmaengine: pxa_dma: Remove an erroneous BUG_ON() in pxad_free_desc()
     - f2fs: fix to initialize map.m_pblk in f2fs_precache_extents()
     - [powerpc*] Only define __parse_fpscr() when required
     - modpost: fix tee MODULE_DEVICE_TABLE built on big-endian host
     - modpost: fix ishtp MODULE_DEVICE_TABLE built on big-endian host
     - [powerpc*] 40x: Remove stale PTE_ATOMIC_UPDATES macro
     - [powerpc*] xive: Fix endian conversion size
     - [powerpc*] vas: Limit open window failure messages in log bufffer
     - [powerpc*] imc-pmu: Use the correct spinlock initializer.
     - [powerpc*] pseries: fix potential memory leak in init_cpu_associativity()
     - xhci: Loosen RPM as default policy to cover for AMD xHC 1.1
     - usb: host: xhci-plat: fix possible kernel oops while resuming
     - perf machine: Avoid out of bounds LBR memory read
     - perf hist: Add missing puts to hist__account_cycles
     - 9p/net: fix possible memory leak in p9_check_errors()
     - i3c: Fix potential refcount leak in i3c_master_register_new_i3c_devs
     - cxl/mem: Fix shutdown order
     - crypto: ccp - Name -1 return value as SEV_RET_NO_FW_CALL
     - [x86] sev: Change snp_guest_issue_request()'s fw_err argument
     - [amd64] virt: sevguest: Fix passing a stack buffer as a scatterlist target
     - rtc: pcf85363: fix wrong mask/val parameters in regmap_update_bits call
     - pcmcia: cs: fix possible hung task and memory leak pccardd()
     - pcmcia: ds: fix refcount leak in pcmcia_device_add()
     - pcmcia: ds: fix possible name leak in error path in pcmcia_device_add()
     - media: hantro: Check whether reset op is defined before use
     - media: verisilicon: Do not enable G2 postproc downscale if source is
       narrower than destination
     - media: ov5640: Drop dead code using frame_interval
     - media: ov5640: fix vblank unchange issue when work at dvp mode
     - media: i2c: max9286: Fix some redundant of_node_put() calls
     - media: ov5640: Fix a memory leak when ov5640_probe fails
     - media: bttv: fix use after free error due to btv->timeout timer
     - media: amphion: handle firmware debug message
     - media: mtk-jpegenc: Fix bug in JPEG encode quality selection
     - media: s3c-camif: Avoid inappropriate kfree()
     - media: vidtv: psi: Add check for kstrdup
     - media: vidtv: mux: Add check and kfree for kstrdup
     - media: cedrus: Fix clock/reset sequence
     - media: cadence: csi2rx: Unregister v4l2 async notifier
     - media: dvb-usb-v2: af9035: fix missing unlock
     - media: cec: meson: always include meson sub-directory in Makefile
     - regmap: prevent noinc writes from clobbering cache
     - pwm: sti: Reduce number of allocations and drop usage of chip_data
     - pwm: brcmstb: Utilize appropriate clock APIs in suspend/resume
     - Input: synaptics-rmi4 - fix use after free in rmi_unregister_function()
     - watchdog: ixp4xx: Make sure restart always works
     - llc: verify mac len before reading mac header
     - hsr: Prevent use after free in prp_create_tagged_frame()
     - tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING
     - bpf: Check map->usercnt after timer->timer is assigned
     - inet: shrink struct flowi_common
     - net: page_pool: add missing free_percpu when page_pool_init fail
     - dccp: Call security_inet_conn_request() after setting IPv4 addresses.
     - dccp/tcp: Call security_inet_conn_request() after setting IPv6 addresses.
     - net: r8169: Disable multicast filter for RTL8168H and RTL8107E
     - Fix termination state for idr_for_each_entry_ul()
     - net: stmmac: xgmac: Enable support for multiple Flexible PPS outputs
     - net/smc: fix dangling sock under state SMC_APPFINCLOSEWAIT
     - net/smc: allow cdc msg send rather than drop it with NULL sndbuf_desc
     - net/smc: put sk reference if close work was canceled
     - nvme: fix error-handling for io_uring nvme-passthrough
     - tg3: power down device only on SYSTEM_POWER_OFF
     - nbd: fix uaf in nbd_open
     - blk-core: use pr_warn_ratelimited() in bio_check_ro()
     - virtio/vsock: replace virtio_vsock_pkt with sk_buff
     - vsock/virtio: remove socket from connected/bound list on shutdown
     - r8169: respect userspace disabling IFF_MULTICAST
     - i2c: iproc: handle invalid slave state
     - netfilter: xt_recent: fix (increase) ipv6 literal buffer length
     - netfilter: nft_redir: use `struct nf_nat_range2` throughout and
       deduplicate eval call-backs
     - netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses
     - drm/syncobj: fix DRM_SYNCOBJ_WAIT_FLAGS_WAIT_AVAILABLE
     - [arm64,armhf] ASoC: hdmi-codec: register hpd callback on component probe
     - ASoC: dapm: fix clock get name
     - fbdev: imsttfb: Fix error path of imsttfb_probe()
     - fbdev: imsttfb: fix a resource leak in probe
     - fbdev: fsl-diu-fb: mark wr_reg_wa() static
     - tracing/kprobes: Fix the order of argument descriptions
     - io_uring/net: ensure socket is marked connected on connect retry
     - [x86] amd_nb: Use Family 19h Models 60h-7Fh Function 4 IDs
     - Revert "mmc: core: Capture correct oemid-bits for eMMC cards"
     - btrfs: use u64 for buffer sizes in the tree search ioctls
     - wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush()
     - virtio/vsock: don't use skbuff state to account credit
     - virtio/vsock: remove redundant 'skb_pull()' call
     - virtio/vsock: don't drop skbuff on copy failure
     - vsock/loopback: use only sk_buff_head.lock to protect the packet queue
     - virtio/vsock: fix leaks due to missing skb owner
     - virtio/vsock: Fix uninit-value in virtio_transport_recv_pkt()
     - virtio/vsock: fix header length on skb merging
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.64
     - lib/generic-radix-tree.c: Don't overflow in peek()
     - perf/core: Bail out early if the request AUX area is out of bound
     - srcu: Fix srcu_struct node grpmask overflow on 64-bit systems
     - [armhf] clocksource/drivers/timer-imx-gpt: Fix potential memory leak
     - smp,csd: Throw an error if a CSD lock is stuck for too long
     - cpu/hotplug: Don't offline the last non-isolated CPU
     - workqueue: Provide one lock class key per work_on_cpu() callsite
     - [x86] mm: Drop the 4 MB restriction on minimal NUMA node memory size
     - wifi: plfxlc: fix clang-specific fortify warning
     - wifi: mac80211_hwsim: fix clang-specific fortify warning
     - wifi: mac80211: don't return unset power in ieee80211_get_tx_power()
     - atl1c: Work around the DMA RX overflow issue
     - bpf: Detect IP == ksym.end as part of BPF program
     - wifi: ath9k: fix clang-specific fortify warnings
     - wifi: ath10k: fix clang-specific fortify warning
     - net: annotate data-races around sk->sk_tx_queue_mapping
     - net: annotate data-races around sk->sk_dst_pending_confirm
     - wifi: ath10k: Don't touch the CE interrupt registers after power up
     - vsock: read from socket's error queue
     - bpf: Ensure proper register state printing for cond jumps
     - Bluetooth: btusb: Add date->evt_skb is NULL check
     - Bluetooth: Fix double free in hci_conn_cleanup
     - ACPI: EC: Add quirk for HP 250 G7 Notebook PC
     - tsnep: Fix tsnep_request_irq() format-overflow warning
     - [x86] platform/x86: thinkpad_acpi: Add battery quirk for Thinkpad X120e
     - [x86] drm/gma500: Fix call trace when psb_gem_mm_init() fails
     - drm/amdgpu: not to save bo in the case of RAS err_event_athub
     - drm/amd: Update `update_pcie_parameters` functions to use uint8_t
       arguments
     - drm/amd/display: use full update for clip size increase of large plane
       source
     - string.h: add array-wrappers for (v)memdup_user()
     - kernel: kexec: copy user-array safely
     - kernel: watch_queue: copy user-array safely
     - drm_lease.c: copy user-array safely
     - drm: vmwgfx_surface.c: copy user-array safely
     - [arm64] drm/msm/dp: skip validity check for DP CTS EDID checksum
     - drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7
     - drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga
     - drm/amdgpu: Fix potential null pointer derefernce
     - drm/radeon: fix a possible null pointer dereference
     - drm/amdgpu/vkms: fix a possible null pointer dereference
     - [arm64] drm/panel: st7703: Pick different reset sequence
     - drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL
     - [arm64] dts: ls208xa: use a pseudo-bus to constrain usb dma size
     - ASoC: soc-card: Add storage for PCI SSID
     - [x86] ASoC: SOF: Pass PCI SSID to machine driver
     - crypto: pcrypt - Fix hungtask for PADATA_RESET
     - [x86] ASoC: SOF: ipc4: handle EXCEPTION_CAUGHT notification from firmware
     - [amd64] RDMA/hfi1: Use FIELD_GET() to extract Link Width
     - [arm64] scsi: hisi_sas: Set debugfs_dir pointer to NULL after removing
       debugfs
     - [powerpc*] scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool
     - fs/jfs: Add check for negative db_l2nbperpage
     - fs/jfs: Add validity check for db_maxag and db_agpref
     - jfs: fix array-index-out-of-bounds in dbFindLeaf
     - jfs: fix array-index-out-of-bounds in diAlloc
     - HID: lenovo: Detect quirk-free fw on cptkbd and stop applying workaround
     - [armel,armhf] 9320/1: fix stack depot IRQ stack filter
     - ALSA: hda: Fix possible null-ptr-deref when assigning a stream
     - [armel,armhf] PCI: mvebu: Use FIELD_PREP() with Link Width
     - atm: iphase: Do PCI error checks on own line
     - PCI: Do error check on own line to split long "if" conditions
     - scsi: libfc: Fix potential NULL pointer dereference in
       fc_lport_ptp_setup()
     - PCI: Use FIELD_GET() to extract Link Width
     - PCI: Extract ATS disabling to a helper function
     - PCI: Disable ATS for specific Intel IPU E2000 devices
     - PCI: Use FIELD_GET() in Sapphire RX 5600 XT Pulse quirk
     - [x86] ASoC: Intel: soc-acpi-cht: Add Lenovo Yoga Tab 3 Pro YT3-X90 quirk
     - crypto: hisilicon/qm - prevent soft lockup in receive loop
     - HID: Add quirk for Dell Pro Wireless Keyboard and Mouse KM5221W
     - exfat: support handle zero-size directory
     - mfd: intel-lpss: Add Intel Lunar Lake-M PCI IDs
     - iio: adc: stm32-adc: harden against NULL pointer deref in
       stm32_adc_probe()
     - [x86] thunderbolt: Apply USB 3.x bandwidth quirk only in software
       connection manager
     - [arm64,armhf] usb: dwc3: core: configure TX/RX threshold for DWC3_IP
     - soundwire: dmi-quirks: update HP Omen match
     - f2fs: fix error handling of __get_node_page
     - usb: gadget: f_ncm: Always set current gadget in ncm_bind()
     - 9p/trans_fd: Annotate data-racy writes to file::f_flags
     - 9p: v9fs_listxattr: fix %s null argument warning
     - i2c: fix memleak in i2c_new_client_device()
     - [armhf] i2c: sun6i-p2wi: Prevent potential division by zero
     - virtio-blk: fix implicit overflow on virtio_max_dma_size
     - media: gspca: cpia1: shift-out-of-bounds in set_flicker
     - media: vivid: avoid integer overflow
     - gfs2: ignore negated quota changes
     - gfs2: fix an oops in gfs2_permission
     - media: cobalt: Use FIELD_GET() to extract Link Width
     - media: ccs: Fix driver quirk struct documentation
     - media: imon: fix access to invalid resource for the second interface
     - drm/amd/display: Avoid NULL dereference of timing generator
     - i2c: dev: copy userspace array safely
     - [armhf] ASoC: ti: omap-mcbsp: Fix runtime PM underflow warnings
     - drm/qxl: prevent memory leak
     - ALSA: hda/realtek: Add quirk for ASUS UX7602ZM
     - drm/amdgpu: fix software pci_unplug on some chips
     - pwm: Fix double shift bug
     - wifi: iwlwifi: Use FW rate for non-data frames
     - sched/core: Optimize in_task() and in_interrupt() a bit
     - SUNRPC: ECONNRESET might require a rebind
     - NFSv4.1: fix handling NFS4ERR_DELAY when testing for session trunking
     - SUNRPC: Add an IS_ERR() check back to where it was
     - NFSv4.1: fix SP4_MACH_CRED protection for pnfs IO
     - SUNRPC: Fix RPC client cleaned up the freed pipefs dentries
     - gfs2: Silence "suspicious RCU usage in gfs2_permission" warning
     - net: set SOCK_RCU_FREE before inserting socket into hashtable
     - ipvlan: add ipvlan_route_v6_outbound() helper
     - tty: Fix uninit-value access in ppp_sync_receive()
     - [arm64] net: hns3: fix add VLAN fail issue
     - [arm64] net: hns3: add barrier in vf mailbox reply process
     - [arm64] net: hns3: fix incorrect capability bit display for copper port
     - [arm64] net: hns3: fix out-of-bounds access may occur when coalesce info
       is read via debugfs
     - [arm64] net: hns3: fix variable may not initialized problem in
       hns3_init_mac_addr()
     - [arm64] net: hns3: fix VF reset fail issue
     - [arm64] net: hns3: fix VF wrong speed and duplex issue
     - tipc: Fix kernel-infoleak due to uninitialized TLV value
     - net: mvneta: fix calls to page_pool_get_stats
     - ppp: limit MRU to 64K
     - xen/events: fix delayed eoi list handling
     - ptp: annotate data-race around q->head and q->tail
     - bonding: stop the device in bond_setup_by_slave()
     - af_unix: fix use-after-free in unix_stream_read_actor()
     - netfilter: nf_conntrack_bridge: initialize err to 0
     - netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()
     - net: stmmac: fix rx budget limit check
     - net: stmmac: avoid rx queue overrun
     - net/mlx5e: fix double free of encap_header
     - net/mlx5e: fix double free of encap_header in update funcs
     - net/mlx5e: Fix pedit endianness
     - net/mlx5e: Reduce the size of icosq_str
     - net/mlx5e: Check return value of snprintf writing to fw_version buffer
     - net/mlx5e: Check return value of snprintf writing to fw_version buffer for
       representors
     - macvlan: Don't propagate promisc change to lower dev in passthru
     - cifs: spnego: add ';' in HOST_KEY_LEN
     - cifs: fix check of rc in function generate_smb3signingkey
     - [x86] i915/perf: Fix NULL deref bugs with drm_dbg() calls
     - [x86] perf intel-pt: Fix async branch flags
     - [powerpc*] perf: Fix disabling BHRB and instruction sampling
     - bpf: Fix check_stack_write_fixed_off() to correctly spill imm
     - bpf: Fix precision tracking for BPF_ALU | BPF_TO_BE | BPF_END
     - scsi: mpt3sas: Fix loop logic
     - scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for
       selected registers
     - scsi: qla2xxx: Fix system crash due to bad pointer access
     - [x86] crypto: x86/sha - load modules based on CPU features
     - [x86] cpu/hygon: Fix the CPU topology evaluation for real
     - [x86] KVM: x86: hyper-v: Don't auto-enable stimer on write from user-space
     - [x86] KVM: x86: Ignore MSR_AMD64_TW_CFG access
     - [x86] KVM: x86: Clear bit12 of ICR after APIC-write VM-exit
     - audit: don't take task_lock() in audit_exe_compare() code path
     - audit: don't WARN_ON_ONCE(!current->mm) in audit_exe_compare()
     - proc: sysctl: prevent aliased sysctls from getting passed to init
     - tty/sysrq: replace smp_processor_id() with get_cpu()
     - tty: serial: meson: fix hard LOCKUP on crtscts mode
     - hvc/xen: fix console unplug
     - hvc/xen: fix error path in xen_hvc_init() to always register frontend
       driver
     - hvc/xen: fix event channel handling for secondary consoles
     - PCI/sysfs: Protect driver's D3cold preference from user space
     - watchdog: move softlockup_panic back to early_param
     - ACPI: resource: Do IRQ override on TongFang GMxXGxx
     - regmap: Ensure range selector registers are updated after cache sync
     - wifi: ath11k: fix temperature event locking
     - wifi: ath11k: fix dfs radar event locking
     - wifi: ath11k: fix htt pktlog locking
     - wifi: ath11k: fix gtk offload status event locking
     - [arm64] mmc: meson-gx: Remove setting of CMD_CFG_ERROR
     - genirq/generic_chip: Make irq_remove_generic_chip() irqdomain aware
     - KEYS: trusted: tee: Refactor register SHM usage
     - KEYS: trusted: Rollback init_trusted() consistently
     - [arm64] Restrict CPU_BIG_ENDIAN to GNU as or LLVM IAS 15.x or newer
     - ksmbd: handle malformed smb1 message
     - ksmbd: fix slab out of bounds write in smb_inherit_dacl()
     - mmc: vub300: fix an error code
     - mmc: sdhci_am654: fix start loop index for TAP value parsing
     - mmc: Add quirk MMC_QUIRK_BROKEN_CACHE_FLUSH for Micron eMMC Q2J54A
     - PCI/ASPM: Fix L1 substate handling in aspm_attr_store_common()
     - PCI: kirin: Don't discard .remove() callback
     - PCI: exynos: Don't discard .remove() callback
     - wifi: wilc1000: use vmm_table as array in wilc struct
     - svcrdma: Drop connection after an RDMA Read error
     - rcu/tree: Defer setting of jiffies during stall reset
     - [arm64] dts: qcom: ipq6018: Fix hwlock index for SMEM
     - PM: hibernate: Use __get_safe_page() rather than touching the list
     - PM: hibernate: Clean up sync_read handling in snapshot_write_next()
     - rcu: kmemleak: Ignore kmemleak false positives when RCU-freeing objects
     - btrfs: don't arbitrarily slow down delalloc if we're committing
     - [arm64] dts: qcom: ipq8074: Fix hwlock index for SMEM
     - [arm64] firmware: qcom_scm: use 64-bit calling convention only when client
       is 64-bit
     - ACPI: FPDT: properly handle invalid FPDT subtables
     - [arm64] dts: qcom: ipq6018: Fix tcsr_mutex register size
     - [arm64] mfd: qcom-spmi-pmic: Fix reference leaks in revid helper
     - [arm64] mfd: qcom-spmi-pmic: Fix revid implementation
     - ima: annotate iint mutex to avoid lockdep false positive warnings
     - ima: detect changes to the backing overlay file
     - netfilter: nf_tables: remove catchall element in GC sync path
       (CVE-2023-6111)
     - netfilter: nf_tables: split async and sync catchall in two functions
     - hid: lenovo: Resend all settings on reset_resume for compact keyboards
     - jbd2: fix potential data lost in recovering journal raced with
       synchronizing fs bdev
     - quota: explicitly forbid quota files from being encrypted
     - kernel/reboot: emergency_restart: Set correct system_state
     - i2c: core: Run atomic i2c xfer when !preemptible
     - tracing: Have the user copy of synthetic event address use correct context
     - driver core: Release all resources during unbind before updating device
       links
     - mcb: fix error handling for different scenarios when parsing
     - dmaengine: stm32-mdma: correct desc prep when channel running
     - [s390x] cmma: fix detection of DAT pages
     - mm/cma: use nth_page() in place of direct struct page manipulation
     - mm/memory_hotplug: use pfn math in place of direct struct page
       manipulation
     - mtd: cfi_cmdset_0001: Byte swap OTP info
     - xhci: Enable RPM on controllers that support low-power states
     - fs: add ctime accessors infrastructure
     - smb3: fix creating FIFOs when mounting with "sfu" mount option
     - smb3: fix touch -h of symlink
     - smb3: fix caching of ctime on setxattr
     - smb: client: fix use-after-free bug in cifs_debug_data_proc_show()
     - smb: client: fix potential deadlock when releasing mids
     - cifs: reconnect helper should set reconnect for the right channel
     - cifs: force interface update before a fresh session setup
     - cifs: do not reset chan_max if multichannel is not supported at mount
     - xfs: recovery should not clear di_flushiter unconditionally
     - btrfs: zoned: wait for data BG to be finished on direct IO allocation
     - ALSA: info: Fix potential deadlock at disconnection
     - ALSA: hda/realtek: Enable Mute LED on HP 255 G8
     - ALSA: hda/realtek - Add Dell ALC295 to pin fall back table
     - ALSA: hda/realtek - Enable internal speaker of ASUS K6500ZC
     - ALSA: hda/realtek: Enable Mute LED on HP 255 G10
     - ALSA: hda/realtek: Add quirks for HP Laptops
     - [arm64,armhf] pmdomain: bcm: bcm2835-power: check if the ASB register is
       equal to enable
     - [armhf] pmdomain: imx: Make imx pgc power domain also set the fwnode
     - cpufreq: stats: Fix buffer overflow detection in trans_stats()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0cb8:0xc559
     - bluetooth: Add device 0bda:887b to device tables
     - bluetooth: Add device 13d3:3571 to device tables
     - Bluetooth: btusb: Add RTW8852BE device 13d3:3570 to device tables
     - Bluetooth: btusb: Add 0bda:b85b for Fn-Link RTL8852BE
     - drm/amd/display: enable dsc_clk even if dsc_pg disabled
     - cxl/region: Validate region mode vs decoder mode
     - cxl/region: Cleanup target list on attach error
     - cxl/region: Move region-position validation to a helper
     - cxl/region: Do not try to cleanup after cxl_region_setup_targets() fails
     - cxl: Unify debug messages when calling devm_cxl_add_port()
     - cxl/mem: Move devm_cxl_add_endpoint() from cxl_core to cxl_mem
     - cxl/region: Fix x1 root-decoder granularity calculations
     - Revert ncsi: Propagate carrier gain/loss events to the NCSI controller
     - Revert "i2c: pxa: move to generic GPIO recovery"
     - lsm: fix default return value for vm_enough_memory
     - lsm: fix default return value for inode_getsecctx
     - [arm64] sbsa_gwdt: Calculate timeout with 64-bit math
     - i2c: designware: Disable TX_EMPTY irq while waiting for block length byte
     - [s390x] ap: fix AP bus crash on early config change callback invocation
     - net: ethtool: Fix documentation of ethtool_sprintf()
     - net: phylink: initialize carrier state at creation
     - i2c: i801: fix potential race in i801_block_transaction_byte_by_byte
     - f2fs: do not return EFSCORRUPTED, but try to run online repair
     - f2fs: avoid format-overflow warning
     - media: lirc: drop trailing space from scancode transmit
     - media: sharp: fix sharp encoding
     - dm-verity: don't use blocking calls from tasklets
     - nfsd: fix file memleak on client_opens_release
     - mmc: sdhci-pci-gli: A workaround to allow GL9750 to enter ASPM L1.2
     - mm: fix for negative counter: nr_file_hugepages
     - mm: kmem: drop __GFP_NOFAIL when allocating objcg vectors
     - mptcp: deal with large GSO size
     - mptcp: add validity check for sending RM_ADDR
     - mptcp: fix setsockopt(IP_TOS) subflow locking
     - r8169: fix network lost after resume on DASH systems
     - r8169: add handling DASH when DASH is disabled
     - mmc: sdhci-pci-gli: GL9750: Mask the replay timer timeout of AER
     - Revert "net: r8169: Disable multicast filter for RTL8168H and RTL8107E"
     - ext4: apply umask if ACL support is disabled
     - ext4: correct offset of gdb backup in non meta_bg group to update_backups
     - ext4: mark buffer new if it is unwritten to avoid stale data exposure
     - ext4: correct return value of ext4_convert_meta_bg
     - ext4: correct the start block of counting reserved clusters
     - ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks
     - ext4: add missed brelse in update_backups
     - ext4: properly sync file size update after O_SYNC direct IO
     - drm/amd/pm: Handle non-terminated overdrive commands.
     - [x86] drm/i915: Bump GLK CDCLK frequency when driving multiple pipes
     - [x86] drm/i915: Fix potential spectre vulnerability
     - drm/amd/pm: Fix error of MACO flag setting code
     - drm/amdgpu/smu13: drop compute workload workaround
     - drm/amdgpu: don't use pci_is_thunderbolt_attached()
     - drm/amdgpu: don't use ATRM for external devices
     - drm/amdgpu: fix error handling in amdgpu_bo_list_get()
     - drm/amdgpu: lower CS errors to debug severity
     - drm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer()
     - drm/amd/display: Enable fast plane updates on DCN3.2 and above
     - drm/amd/display: Change the DMCUB mailbox memory location from FB to inbox
     - [powerpc*] powernv: Fix fortify source warnings in opal-prd.c
     - tracing: Have trace_event_file have ref counters
     - Input: xpad - add VID for Turtle Beach controllers
     - mmc: sdhci-pci-gli: GL9755: Mask the replay timer timeout of AER
     - cxl/port: Fix NULL pointer access in devm_cxl_add_port()
 .
   [ Salvatore Bonaccorso ]
   * [rt] Drop "seqlock: Do the lockdep annotation before locking in
     do_write_seqcount_begin_nested()" (applied upstream)
   * Bump ABI to 14
   * Refresh "net: mana: Add new MANA VF performance counters for easier
     troubleshooting"
   * [rt] Update to 6.1.59-rt16
   * Do not enable DEBUG_PREEMPT (not enabled by default since 6.1.60)
   * [x86] drivers/platform/x86/hp: Enable X86_PLATFORM_DRIVERS_HP
     (Closes: #1038799)
   * nvmet: nul-terminate the NQNs passed in the connect command (CVE-2023-6121)
linux (6.1.67-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.67
     - Revert "wifi: cfg80211: fix CQM for non-range use" (Closes: #1057967,
       #1057969)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 16

linux-signed-amd64 (6.1.76+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.76-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.70
     - bpf: Fix prog_array_map_poke_run map poke update
     - HID: i2c-hid: acpi: Unify ACPI ID tables format
     - HID: i2c-hid: Add IDEA5002 to i2c_hid_acpi_blacklist[]
     - drm/amd/display: fix hw rotated modes when PSR-SU is enabled
     - [armhf] OMAP2+: Fix null pointer dereference and memory leak in
       omap_soc_device_init
     - reset: Fix crash when freeing non-existent optional resets
     - [s390x] vx: fix save/restore of fpu kernel context
     - wifi: iwlwifi: pcie: add another missing bh-disable for rxq->lock
     - wifi: mac80211: check if the existing link config remains unchanged
     - wifi: mac80211: mesh: check element parsing succeeded
     - wifi: mac80211: mesh_plink: fix matches_local logic
     - Revert "net/mlx5e: fix double free of encap_header in update funcs"
     - Revert "net/mlx5e: fix double free of encap_header"
     - net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list()
     - net/mlx5: Introduce and use opcode getter in command interface
     - net/mlx5: Prevent high-rate FW commands from populating all slots
     - net/mlx5: Re-organize mlx5_cmd struct
     - net/mlx5e: Fix a race in command alloc flow
     - net/mlx5e: fix a potential double-free in fs_udp_create_groups
     - net/mlx5: Fix fw tracer first block check
     - net/mlx5e: Correct snprintf truncation handling for fw_version buffer
     - net/mlx5e: Correct snprintf truncation handling for fw_version buffer used
       by representors
     - [arm64] net: mscc: ocelot: fix eMAC TX RMON stats for bucket 256-511 and
       above
     - net: Return error from sk_stream_wait_connect() if sk_wait_event() fails
     - net: sched: ife: fix potential use-after-free
     - ethernet: atheros: fix a memleak in atl1e_setup_ring_resources
     - net/rose: fix races in rose_kill_by_device()
     - Bluetooth: Fix deadlock in vhci_send_frame
     - Bluetooth: hci_event: shut up a false-positive warning
     - net: mana: select PAGE_POOL
     - net: check vlan filter feature in vlan_vids_add_by_dev() and
       vlan_vids_del_by_dev()
     - afs: Fix the dynamic root's d_delete to always delete unused dentries
     - afs: Fix dynamic root lookup DNS check
     - net: check dev->gso_max_size in gso_features_check()
     - keys, dns: Allow key types (eg. DNS) to be reclaimed immediately on expiry
     - afs: Fix overwriting of result of DNS query
     - afs: Fix use-after-free due to get/remove race in volume tree
     - [arm64,armhf] ASoC: hdmi-codec: fix missing report for jack initial status
     - [arm64] ASoC: fsl_sai: Fix channel swap issue on i.MX8MP
     - [armhf] i2c: aspeed: Handle the coalesced stop conditions with the start
       conditions.
     - gpiolib: cdev: add gpio_device locking wrapper around gpio_ioctl()
     - nvme-pci: fix sleeping function called from interrupt context
     - [x86] drm/i915/mtl: limit second scaler vertical scaling in ver >= 14
     - [x86] drm/i915: Relocate intel_atomic_setup_scalers()
     - [x86] drm/i915: Fix intel_atomic_setup_scalers() plane_state handling
     - [x86] drm/i915/dpt: Only do the POT stride remap when using DPT
     - [x86] drm/i915/mtl: Add MTL for remapping CCS FBs
     - [x86] drm/i915: Fix ADL+ tiled plane stride when the POT stride is smaller
       than the original
     - iio: imu: inv_mpu6050: fix an error code problem in inv_mpu6050_read_raw
     - interconnect: qcom: sm8250: Enable sync_state
     - scsi: bnx2fc: Fix skb double free in bnx2fc_rcv()
     - iio: common: ms_sensors: ms_sensors_i2c: fix humidity conversion time
       table
     - [armhf] iio: adc: ti_am335x_adc: Fix return value check of
       tiadc_request_dma()
     - iio: triggered-buffer: prevent possible freeing of wrong buffer
     - ALSA: usb-audio: Increase delay in MOTU M quirk
     - usb-storage: Add quirk for incorrect WP on Kingston DT Ultimate 3.0 G3
     - wifi: cfg80211: Add my certificate
     - wifi: cfg80211: fix certs build to not depend on file order
     - USB: serial: ftdi_sio: update Actisense PIDs constant names
     - USB: serial: option: add Quectel EG912Y module support
     - USB: serial: option: add Foxconn T99W265 with new baseline
     - USB: serial: option: add Quectel RM500Q R13 firmware support
     - ALSA: hda/realtek: Add quirk for ASUS ROG GV302XA
     - Bluetooth: hci_event: Fix not checking if HCI_OP_INQUIRY has been sent
     - Bluetooth: L2CAP: Send reject on command corrupted request
     - Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE
     - Bluetooth: Add more enc key size check
     - net: usb: ax88179_178a: avoid failed operations when device is
       disconnected
     - [x86] Input: soc_button_array - add mapping for airplane mode button
     - net: 9p: avoid freeing uninit memory in p9pdu_vreadf
     - net: rfkill: gpio: set GPIO direction
     - dt-bindings: nvmem: mxs-ocotp: Document fsl,ocotp
     - smb: client: fix OOB in cifsd when receiving compounded resps
     - smb: client: fix potential OOB in cifs_dump_detail()
     - smb: client: fix OOB in SMB2_query_info_init()
     - smb: client: fix OOB in smbCalcSize() (CVE-2023-6606)
     - [x86] drm/i915: Reject async flips with bigjoiner
     - 9p: prevent read overrun in protocol dump tracepoint
     - [riscv64] Fix do_notify_resume / do_work_pending prototype
     - loop: do not enforce max_loop hard limit by (new) default
     - dm thin metadata: Fix ABBA deadlock by resetting dm_bufio_client
     - Revert "drm/amd/display: Do not set DRR on pipe commit"
     - btrfs: zoned: no longer count fresh BG region as zone unusable
     - ubifs: fix possible dereference after free
     - ublk: move ublk_cancel_dev() out of ub->mutex
     - scsi: core: Always send batch on reset or error handling command
     - tracing / synthetic: Disable events after testing in
       synth_event_gen_test_init()
     - dm-integrity: don't modify bio's immutable bio_vec in integrity_metadata()
     - pinctrl: starfive: jh7100: ignore disabled device tree nodes
     - [armhf] bus: ti-sysc: Flush posted write only after srst_udelay
     - lib/vsprintf: Fix %pfwf when current node refcount == 0
     - [x86] thunderbolt: Fix memory leak in margining_port_remove()
     - [arm64] KVM: arm64: vgic: Simplify kvm_vgic_destroy()
     - [arm64] KVM: arm64: vgic: Add a non-locking primitive for
       kvm_vgic_vcpu_destroy()
     - [arm64] KVM: arm64: vgic: Force vcpu vgic teardown on vcpu destroy
     - [x86] alternatives: Sync core before enabling interrupts
     - fuse: share lookup state between submount and its parent
     - wifi: cfg80211: fix CQM for non-range use
     - wifi: nl80211: fix deadlock in nl80211_set_cqm_rssi (6.6.x)
     - loop: deprecate autoloading callback loop_probe()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.71
     - ksmbd: replace one-element arrays with flexible-array members
     - ksmbd: set SMB2_SESSION_FLAG_ENCRYPT_DATA when enforcing data encryption
       for this share
     - ksmbd: use F_SETLK when unlocking a file
     - ksmbd: Fix resource leak in smb2_lock()
     - ksmbd: Convert to use sysfs_emit()/sysfs_emit_at() APIs
     - ksmbd: Implements sess->rpc_handle_list as xarray
     - ksmbd: fix typo, syncronous->synchronous
     - ksmbd: Remove duplicated codes
     - ksmbd: update Kconfig to note Kerberos support and fix indentation
     - ksmbd: Fix spelling mistake "excceed" -> "exceeded"
     - ksmbd: Fix parameter name and comment mismatch
     - ksmbd: remove unused is_char_allowed function
     - ksmbd: delete asynchronous work from list (CVE-2023-1193)
     - ksmbd: set NegotiateContextCount once instead of every inc
     - ksmbd: avoid duplicate negotiate ctx offset increments
     - ksmbd: remove unused compression negotiate ctx packing
     - fs: introduce lock_rename_child() helper
     - ksmbd: fix racy issue from using ->d_parent and ->d_name
     - ksmbd: fix uninitialized pointer read in ksmbd_vfs_rename()
     - ksmbd: fix uninitialized pointer read in smb2_create_link()
     - ksmbd: call putname after using the last component
     - ksmbd: fix posix_acls and acls dereferencing possible ERR_PTR()
     - ksmbd: add mnt_want_write to ksmbd vfs functions
     - ksmbd: remove unused ksmbd_tree_conn_share function
     - ksmbd: use kzalloc() instead of __GFP_ZERO
     - ksmbd: return a literal instead of 'err' in ksmbd_vfs_kern_path_locked()
     - ksmbd: Change the return value of ksmbd_vfs_query_maximal_access to void
     - ksmbd: use kvzalloc instead of kvmalloc
     - ksmbd: Replace the ternary conditional operator with min()
     - ksmbd: Use struct_size() helper in ksmbd_negotiate_smb_dialect()
     - ksmbd: Replace one-element array with flexible-array member
     - ksmbd: Fix unsigned expression compared with zero
     - ksmbd: check if a mount point is crossed during path lookup
     - ksmbd: switch to use kmemdup_nul() helper
     - ksmbd: add support for read compound
     - ksmbd: fix wrong interim response on compound
     - ksmbd: fix `force create mode' and `force directory mode'
     - ksmbd: Fix one kernel-doc comment
     - ksmbd: add missing calling smb2_set_err_rsp() on error
     - ksmbd: remove experimental warning
     - ksmbd: remove unneeded mark_inode_dirty in set_info_sec()
     - ksmbd: fix passing freed memory 'aux_payload_buf'
     - ksmbd: return invalid parameter error response if smb2 request is invalid
     - ksmbd: check iov vector index in ksmbd_conn_write()
     - ksmbd: fix race condition with fp
     - ksmbd: fix race condition from parallel smb2 logoff requests
     - ksmbd: fix race condition from parallel smb2 lock requests
     - ksmbd: fix race condition between tree conn lookup and disconnect
     - ksmbd: fix wrong error response status by using set_smb2_rsp_status()
     - ksmbd: fix Null pointer dereferences in ksmbd_update_fstate()
     - ksmbd: fix potential double free on smb2_read_pipe() error path
     - ksmbd: Remove unused field in ksmbd_user struct
     - ksmbd: reorganize ksmbd_iov_pin_rsp()
     - ksmbd: fix kernel-doc comment of ksmbd_vfs_setxattr()
     - ksmbd: fix recursive locking in vfs helpers
     - ksmbd: fix missing RDMA-capable flag for IPoIB device in
       ksmbd_rdma_capable_netdev()
     - ksmbd: add support for surrogate pair conversion
     - ksmbd: no need to wait for binded connection termination at logoff
     - ksmbd: fix kernel-doc comment of ksmbd_vfs_kern_path_locked()
     - ksmbd: prevent memory leak on error return
     - ksmbd: fix possible deadlock in smb2_open
     - ksmbd: separately allocate ci per dentry
     - ksmbd: move oplock handling after unlock parent dir
     - ksmbd: release interim response after sending status pending response
     - ksmbd: move setting SMB2_FLAGS_ASYNC_COMMAND and AsyncId
     - ksmbd: don't update ->op_state as OPLOCK_STATE_NONE on error
     - ksmbd: set epoch in create context v2 lease
     - ksmbd: set v2 lease capability
     - ksmbd: downgrade RWH lease caching state to RH for directory
     - ksmbd: send v2 lease break notification for directory
     - ksmbd: lazy v2 lease break on smb2_write()
     - ksmbd: avoid duplicate opinfo_put() call on error of
       smb21_lease_break_ack()
     - ksmbd: fix wrong allocation size update in smb2_open()
     - spi: Introduce spi_get_device_match_data() helper
     - iio: imu: adis16475: add spi_device_id table
     - nfsd: separate nfsd_last_thread() from nfsd_put()
     - nfsd: call nfsd_last_thread() before final nfsd_put()
     - linux/export: Ensure natural alignment of kcrctab array
     - spi: Reintroduce spi_set_cs_timing()
     - spi: Add APIs in spi core to set/get spi->chip_select and spi->cs_gpiod
     - block: renumber QUEUE_FLAG_HW_WC
     - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-22705)
     - mm/filemap: avoid buffered read/write race to read inconsistent data
     - mm: migrate high-order folios in swap cache correctly
     - mm/memory-failure: cast index to loff_t before shifting it
     - mm/memory-failure: check the mapcount of the precise page
     - ring-buffer: Fix wake ups when buffer_percent is set to 100
     - tracing: Fix blocked reader of snapshot buffer
     - ring-buffer: Remove useless update to write_stamp in rb_try_to_discard()
     - ring-buffer: Fix slowpath of interrupted event
     - NFSD: fix possible oops when nfsd/pool_stats is closed.
     - spi: Constify spi parameters of chip select APIs
     - device property: Allow const parameter to dev_fwnode()
     - kallsyms: Make module_kallsyms_on_each_symbol generally available
     - tracing/kprobes: Fix symbol counting logic by looking at modules as well
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.72
     - keys, dns: Fix missing size check of V1 server-list header
     - block: Don't invalidate pagecache for invalid falloc modes
     - ALSA: hda/realtek: enable SND_PCI_QUIRK for hp pavilion 14-ec1xxx series
     - ALSA: hda/realtek: fix mute/micmute LEDs for a HP ZBook
     - ALSA: hda/realtek: Fix mute and mic-mute LEDs for HP ProBook 440 G6
     - mptcp: prevent tcp diag from closing listener subflows
     - Revert "PCI/ASPM: Remove pcie_aspm_pm_state_change()"
     - [x86] drm/mgag200: Fix gamma lut not initialized for G200ER, G200EV,
       G200SE
     - cifs: cifs_chan_is_iface_active should be called with chan_lock held
     - cifs: do not depend on release_iface for maintaining iface_list
     - [x86] KVM: x86/pmu: fix masking logic for MSR_CORE_PERF_GLOBAL_CTRL
     - wifi: iwlwifi: pcie: don't synchronize IRQs from IRQ (Closes: #1058887)
     - [arm64] drm/bridge: ti-sn65dsi86: Never store more than msg->size bytes in
       AUX xfer
     - netfilter: use skb_ip_totlen and iph_totlen
     - netfilter: nf_tables: set transport offset from mac header for
       netdev/egress
     - nfc: llcp_core: Hold a ref to llcp_local->dev when holding a ref to
       llcp_local
     - [x86] drm/i915/dp: Fix passing the correct DPCD_REV for
       drm_dp_set_phy_test_pattern
     - ice: Fix link_down_on_close message
     - ice: Shut down VSI with "link-down-on-close" enabled
     - i40e: Fix filter input checks to prevent config with invalid values
     - igc: Report VLAN EtherType matching back to user
     - igc: Check VLAN TCI mask
     - igc: Check VLAN EtherType mask
     - net: sched: em_text: fix possible memory leak in em_text_destroy()
     - r8169: Fix PCI error on system resume
     - can: raw: add support for SO_MARK
     - net-timestamp: extend SOF_TIMESTAMPING_OPT_ID to HW timestamps
     - net: annotate data-races around sk->sk_tsflags
     - net: annotate data-races around sk->sk_bind_phc
     - net: Implement missing getsockopt(SO_TIMESTAMPING_NEW)
     - [armhf] sun9i: smp: Fix array-index-out-of-bounds read in
       sunxi_mc_smp_init
     - sfc: fix a double-free bug in efx_probe_filters
     - [arm64] net: bcmgenet: Fix FCS generation for fragmented skbuffs
     - netfilter: nft_immediate: drop chain reference counter on error
     - net: Save and restore msg_namelen in sock_sendmsg
     - i40e: fix use-after-free in i40e_aqc_add_filters()
     - [arm64] ASoC: meson: g12a-toacodec: Validate written enum values
     - [arm64] ASoC: meson: g12a-tohdmitx: Validate written enum values
     - [arm64] ASoC: meson: g12a-toacodec: Fix event generation
     - [arm64] ASoC: meson: g12a-tohdmitx: Fix event generation for S/PDIF mux
     - i40e: Restore VF MSI-X state during PCI reset
     - igc: Fix hicredit calculation
     - net/qla3xxx: fix potential memleak in ql_alloc_buffer_queues
     - net/smc: fix invalid link access in dumping SMC-R connections
     - asix: Add check for usbnet_get_endpoints
     - bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters()
     - net: Implement missing SO_TIMESTAMPING_NEW cmsg support
     - cpu/SMT: Create topology_smt_thread_allowed()
     - cpu/SMT: Make SMT control more robust against enumeration failures
     - srcu: Fix callbacks acceleration mishandling
     - [x86] bpf, x64: Fix tailcall infinite loop
     - [x86] bpf, x86: Simplify the parsing logic of structure parameters
     - [x86] bpf, x86: save/restore regs with BPF_DW size
     - net: Declare MSG_SPLICE_PAGES internal sendmsg() flag
     - udp: Convert udp_sendpage() to use MSG_SPLICE_PAGES
     - splice, net: Add a splice_eof op to file-ops and socket-ops
     - ipv4, ipv6: Use splice_eof() to flush
     - udp: introduce udp->udp_flags
     - udp: move udp->no_check6_tx to udp->udp_flags
     - udp: move udp->no_check6_rx to udp->udp_flags
     - udp: move udp->gro_enabled to udp->udp_flags
     - udp: move udp->accept_udp_{l4|fraglist} to udp->udp_flags
     - udp: lockless UDP_ENCAP_L2TPINUDP / UDP_GRO
     - udp: annotate data-races around udp->encap_type
     - wifi: iwlwifi: yoyo: swap cdb and jacket bits values
     - [arm64] dts: qcom: sdm845: align RPMh regulator nodes with bindings
     - [arm64] dts: qcom: sdm845: Fix PSCI power domain names
     - bpf: decouple prune and jump points
     - bpf: remove unnecessary prune and jump points
     - bpf: Remove unused insn_cnt argument from visit_[func_call_]insn()
     - bpf: clean up visit_insn()'s instruction processing
     - bpf: Support new 32bit offset jmp instruction
     - bpf: handle ldimm64 properly in check_cfg()
     - bpf: fix precision backtracking instruction iteration
     - blk-mq: make sure active queue usage is held for bio_integrity_prep()
     - net/mlx5: Increase size of irq name buffer
     - [s390x] mm: add missing arch_set_page_dat() call to vmem_crst_alloc()
     - [s390x] cpumf: support user space events for counting
     - f2fs: clean up i_compress_flag and i_compress_level usage
     - f2fs: convert to use bitmap API
     - f2fs: assign default compression level
     - f2fs: set the default compress_level on ioctl
     - ext4: convert move_extent_per_page() to use folios
     - khugepage: replace try_to_release_page() with filemap_release_folio()
     - memory-failure: convert truncate_error_page() to use folio
     - mm: merge folio_has_private()/filemap_release_folio() call pairs
     - mm, netfs, fscache: stop read optimisation when folio removed from
       pagecache
     - filemap: add a per-mapping stable writes flag
     - block: update the stable_writes flag in bdev_add
     - smb: client: fix missing mode bits for SMB symlinks
     - net: dpaa2-eth: rearrange variable in dpaa2_eth_get_ethtool_stats
     - dpaa2-eth: recycle the RX buffer only after all processing done
     - ethtool: don't propagate EOPNOTSUPP from dumps
     - bpf, sockmap: af_unix stream sockets need to hold ref for pair sock
     - [arm64] firmware: arm_scmi: Fix frequency truncation by promoting
       multiplier type
     - ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7
     - genirq/affinity: Remove the 'firstvec' parameter from
       irq_build_affinity_masks
     - genirq/affinity: Pass affinity managed mask array to
       irq_build_affinity_masks
     - genirq/affinity: Don't pass irq_affinity_desc array to
       irq_build_affinity_masks
     - genirq/affinity: Rename irq_build_affinity_masks as group_cpus_evenly
     - genirq/affinity: Move group_cpus_evenly() into lib/
     - lib/group_cpus.c: avoid acquiring cpu hotplug lock in group_cpus_evenly
     - mm/memory_hotplug: add missing mem_hotplug_lock
     - mm/memory_hotplug: fix error handling in add_memory_resource()
     - net: sched: call tcf_ct_params_free to free params in tcf_ct_init
     - netfilter: flowtable: allow unidirectional rules
     - netfilter: flowtable: cache info of last offload
     - net/sched: act_ct: offload UDP NEW connections
     - net/sched: act_ct: Fix promotion of offloaded unreplied tuple
     - netfilter: flowtable: GC pushes back packets to classic path
     - net/sched: act_ct: Take per-cb reference to tcf_ct_flow_table
     - btrfs: fix qgroup_free_reserved_data int overflow
     - btrfs: mark the len field in struct btrfs_ordered_sum as unsigned
     - ring-buffer: Fix 32-bit rb_time_read() race with rb_time_cmpxchg()
     - firewire: ohci: suppress unexpected system reboot in AMD Ryzen machines
       and ASM108x/VT630x PCIe cards
     - [x86] kprobes: fix incorrect return address calculation in
       kprobe_emulate_call_indirect
     - mm: fix unmap_mapping_range high bits shift bug
     - drm/amdgpu: skip gpu_info fw loading on navi12
     - drm/amd/display: add nv12 bounding box
     - mmc: rpmb: fixes pause retune on all RPMB partitions.
     - mmc: core: Cancel delayed work before releasing host
     - genirq/affinity: Only build SMP-only helper functions on SMP kernels
     - f2fs: compress: fix to assign compress_level for lz4 correctly
     - net/sched: act_ct: additional checks for outdated flows
     - net/sched: act_ct: Always fill offloading tuple iifidx
     - bpf: Fix a verifier bug due to incorrect branch offset comparison with
       cpu=v4
     - bpf: syzkaller found null ptr deref in unix_bpf proto add
     - smb3: Replace smb2pdu 1-element arrays with flex-arrays
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.73
     - Revert "nfsd: call nfsd_last_thread() before final nfsd_put()"
     - Revert "nfsd: separate nfsd_last_thread() from nfsd_put()"
     - ipv6: remove max_size check inline with ipv4 (CVE-2023-52340)
     - cifs: fix flushing folio regression for 6.1 backport (Closes: #1060005)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.74
     - f2fs: explicitly null-terminate the xattr list
     - ALSA: hda - Fix speaker and headset mic pin config for CHUWI CoreBook XPro
     - mptcp: fix uninit-value in mptcp_incoming_options
     - wifi: cfg80211: lock wiphy mutex for rfkill poll
     - wifi: avoid offset calculation on NULL pointer
     - wifi: mac80211: handle 320 MHz in ieee80211_ht_cap_ie_to_sta_ht_cap
     - debugfs: fix automount d_fsdata usage
     - ALSA: hda: intel-nhlt: Ignore vbps when looking for DMIC 32 bps format
     - nvme-core: fix a memory leak in nvme_ns_info_from_identify()
     - drm/amd/display: update dcn315 lpddr pstate latency
     - drm/amdgpu: Fix cat debugfs amdgpu_regs_didt causes kernel null pointer
     - blk-mq: don't count completed flush data request as inflight in case of
       quiesce
     - nvme-core: check for too small lba shift
     - [x86] ASoC: Intel: Skylake: Fix mem leak in few functions
     - [x86] ASoC: Intel: Skylake: mem leak in skl register function
     - ASoC: rt5650: add mutex to avoid the jack detection failure
     - [x86] ASoC: Intel: skl_hda_dsp_generic: Drop HDMI routes when HDMI is not
       available
     - nouveau/tu102: flush all pdbs on vmm flush
     - [x86] ASoC: amd: yc: Add DMI entry to support System76 Pangolin 13
     - [x86] ASoC: hdac_hda: Conditionally register dais for HDMI and Analog
     - net/tg3: fix race condition in tg3_reset_task()
     - ASoC: da7219: Support low DC impedance headset
     - ASoC: ops: add correct range check for limiting volume
     - nvme: introduce helper function to get ctrl state
     - nvme: prevent potential spectre v1 gadget
     - [arm64] dts: rockchip: Fix PCI node addresses on rk3399-gru
     - drm/amdgpu: Add NULL checks for function pointers
     - [armhf] drm/exynos: fix a potential error pointer dereference
     - [armhf] drm/exynos: fix a wrong error checking
     - [x86] hwmon: (corsair-psu) Fix probe when built-in
     - [arm64] clk: rockchip: rk3568: Add PLL rate for 292.5MHz
     - [armhf] clk: rockchip: rk3128: Fix HCLK_OTG gate register
     - jbd2: correct the printing of write_flags in jbd2_write_superblock()
     - jbd2: increase the journal IO's priority
     - drm/crtc: Fix uninit-value bug in drm_mode_setcrtc
     - neighbour: Don't let neigh_forced_gc() disable preemption for long
     - [x86] platform/x86: intel-vbtn: Fix missing tablet-mode-switch events
     - jbd2: fix soft lockup in journal_finish_inode_data_buffers()
     - tracing: Have large events show up as '[LINE TOO BIG]' instead of nothing
     - tracing: Add size check when printing trace_marker output
     - tracing: Fix uaf issue when open the hist or hist_debug file
     - ring-buffer: Do not record in NMI if the arch does not support cmpxchg in
       NMI
     - Input: psmouse - enable Synaptics InterTouch for ThinkPad L14 G1
     - [arm64] reset: hisilicon: hi6220: fix Wvoid-pointer-to-enum-cast warning
     - Input: atkbd - skip ATKBD_CMD_GETID in translated mode
     - Input: i8042 - add nomux quirk for Acer P459-G2-M
     - [s390x] scm: fix virtual vs physical address confusion
     - wifi: iwlwifi: pcie: avoid a NULL pointer dereference
     - Input: xpad - add Razer Wolverine V2 support
     - HID: nintendo: fix initializer element is not constant error
     - [x86] platform/x86: thinkpad_acpi: fix for incorrect fan reporting on some
       ThinkPad systems
     - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for the Medion Lifetab S10346
     - [x86] ASoC: Intel: bytcr_rt5640: Add new swapped-speakers quirk
     - ALSA: hda/realtek: Add quirks for ASUS Zenbook 2022 Models
     - dm audit: fix Kconfig so DM_AUDIT depends on BLK_DEV_DM
     - HID: nintendo: Prevent divide-by-zero on code
     - smb: client: fix potential OOB in smb2_dump_detail() (CVE-2023-6610)
     - [arm64,armhf] i2c: rk3x: fix potential spinlock recursion on poll
     - drm/amd/display: get dprefclk ss info from integration info table
     - ida: Fix crash in ida_free when the bitmap is empty (CVE-2023-6915)
     - virtio_blk: fix snprintf truncation compiler warning
     - net: qrtr: ns: Return 0 if server port is not present
     - [armhf] sun9i: smp: fix return code check of of_property_match_string
     - drm/crtc: fix uninitialized variable use
     - ALSA: hda/realtek: Fix mute and mic-mute LEDs for HP Envy X360 13-ay0xxx
     - ACPI: resource: Add another DMI match for the TongFang GMxXGxx
     - [x86] ASoC: SOF: Intel: hda-codec: Delay the codec device registration
     - btf, scripts: Exclude Rust CUs with pahole
     - bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to
       pahole flags for v1.25
     - ksmbd: don't allow O_TRUNC open on read-only share
     - ksmbd: free ppace array on error in parse_dacl
     - Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d"
     - [arm*] binder: use EPOLLERR from eventpoll.h
     - [arm*] binder: fix use-after-free in shinker's callback
     - [arm*] binder: fix trivial typo of binder_free_buf_locked()
     - [arm*] binder: fix comment on binder_alloc_new_buf() return value
     - uio: Fix use-after-free in uio_open
     - parport: parport_serial: Add Brainboxes BAR details
     - parport: parport_serial: Add Brainboxes device IDs and geometry
     - PCI: Add ACS quirk for more Zhaoxin Root Ports
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.75
     - [x86] lib: Fix overflow when counting digits
     - [x86] mce/inject: Clear test status value
     - [arm64] EDAC/thunderx: Fix possible out-of-bounds string access
     - [powerpc*] remove checks for binutils older than 2.25
     - [powerpc*] add crtsavres.o to always-y instead of extra-y
     - [powerpc*] 44x: select I2C for CURRITUCK
     - [powerpc*] pseries/memhp: Fix access beyond end of drmem array
     - [powerpc*] powernv: Add a null pointer check to scom_debug_init_one()
     - [powerpc*] powernv: Add a null pointer check in opal_event_init()
     - [powerpc*] powernv: Add a null pointer check in opal_powercap_init()
     - [powerpc*] imc-pmu: Add a null pointer check in update_events_in_group()
     - ACPI: video: check for error while searching for backlight device parent
     - ACPI: LPIT: Avoid u32 multiplication overflow
     - KEYS: encrypted: Add check for strsep
     - [x86] platform/x86/intel/vsec: Enhance and Export intel_vsec_add_aux()
     - [x86] platform/x86/intel/vsec: Support private data
     - [x86] platform/x86/intel/vsec: Use mutex for ida_alloc() and ida_free()
     - [x86] platform/x86/intel/vsec: Fix xa_alloc memory leak
     - of: Add of_property_present() helper
     - cpufreq: Use of_property_present() for testing DT property presence
     - cpufreq: scmi: process the result of devm_of_clk_add_hw_provider()
     - calipso: fix memory leak in netlbl_calipso_add_pass()
     - efivarfs: force RO when remounting if SetVariable is not supported
     - efivarfs: Free s_fs_info on unmount
     - ACPI: LPSS: Fix the fractional clock divider flags
     - ACPI: extlog: Clear Extended Error Log status when RAS_CEC handled the
       error
     - mtd: Fix gluebi NULL pointer dereference caused by ftl notifier
     - selinux: Fix error priority for bind with AF_UNSPEC on PF_INET6 socket
     - crypto: virtio - Handle dataq logic with tasklet
     - [x86] crypto: ccp - fix memleak in ccp_init_dm_workarea
     - crypto: af_alg - Disallow multiple in-flight AIO requests
     - [arm64] crypto: safexcel - Add error handling for dma_map_sg() calls
     - crypto: hisilicon/qm - save capability registers in qm init process
     - crypto: hisilicon/zip - add zip comp high perf mode configuration
     - crypto: hisilicon/qm - add a function to set qm algs
     - crypto: hisilicon/hpre - save capability registers in probe process
     - crypto: hisilicon/sec2 - save capability registers in probe process
     - crypto: hisilicon/zip - save capability registers in probe process
     - pstore: ram_core: fix possible overflow in persistent_ram_init_ecc()
     - erofs: fix memory leak on short-lived bounced pages
     - fs: indicate request originates from old mount API
     - gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump
     - crypto: virtio - Wait for tasklet to complete on device remove
     - crypto: scomp - fix req->dst buffer overflow
     - csky: fix arch_jump_label_transform_static override
     - blocklayoutdriver: Fix reference leak of pnfs_device_node
     - NFSv4.1/pnfs: Ensure we handle the error NFS4ERR_RETURNCONFLICT
     - SUNRPC: fix _xprt_switch_find_current_entry logic
     - pNFS: Fix the pnfs block driver's calculation of layoutget size
     - wifi: plfxlc: check for allocation failure in plfxlc_usb_wreq_async()
     - wifi: rtw88: fix RX filter in FIF_ALLMULTI flag
     - bpf, lpm: Fix check prefixlen before walking trie
     - bpf: Add crosstask check to __bpf_get_stack
     - wifi: ath11k: Defer on rproc_get failure
     - wifi: libertas: stop selecting wext
     - [armhf] net/ncsi: Fix netlink major/minor version numbers
     - [arm64] firmware: ti_sci: Fix an off-by-one in ti_sci_debugfs_create()
     - [arm64] firmware: meson_sm: populate platform devices from sm device tree
       data
     - wifi: rtlwifi: rtl8821ae: phy: fix an undefined bitwise shift behavior
     - md: synchronize flush io with array reconfiguration
     - bpf: enforce precision of R0 on callback return
     - rcu-tasks: Provide rcu_trace_implies_rcu_gp()
     - bpf: add percpu stats for bpf_map elements insertions/deletions
     - bpf: Add map and need_defer parameters to .map_fd_put_ptr()
     - bpf: Defer the free of inner map when necessary
     - bpf: fix check for attempt to corrupt spilled pointer
     - scsi: fnic: Return error if vmalloc() failed
     - [arm64] dts: qcom: qrb5165-rb5: correct LED panic indicator
     - [arm64] dts: qcom: sdm845-db845c: correct LED panic indicator
     - bpf: Fix verification of indirect var-off stack access
     - dt-bindings: media: mediatek: mdp3: correct RDMA and WROT node with
       generic names
     - wifi: mt76: mt7921: fix country count limitation for CLC
     - block: Set memalloc_noio to false on device_add_disk() error path
     - [arm64] scsi: hisi_sas: Replace with standard error code return value
     - [arm64] scsi: hisi_sas: Rollback some operations if FLR failed
     - [arm64] scsi: hisi_sas: Correct the number of global debugfs registers
     - [armhf] dts: stm32: don't mix SCMI and non-SCMI board compatibles
     - ipmr: support IP_PKTINFO on cache report IGMP msg
     - virtio/vsock: fix logic which reduces credit update messages
     - dma-mapping: clear dev->dma_mem to NULL after freeing it
     - [arm64] dts: qcom: sm8150-hdk: fix SS USB regulators
     - block: add check of 'minors' and 'first_minor' in device_add_disk()
     - wifi: rtlwifi: add calculate_bit_shift()
     - wifi: rtlwifi: rtl8188ee: phy: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192c: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192cu: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192ce: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192de: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192ee: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192se: using calculate_bit_shift()
     - wifi: iwlwifi: mvm: set siso/mimo chains to 1 in FW SMPS request
     - wifi: iwlwifi: mvm: send TX path flush in rfkill
     - netfilter: nf_tables: mark newset as dead on transaction abort
     - Bluetooth: Fix bogus check for re-auth no supported with non-ssp
     - Bluetooth: btmtkuart: fix recv_buf() return value
     - block: make BLK_DEF_MAX_SECTORS unsigned
     - null_blk: don't cap max_hw_sectors to BLK_DEF_MAX_SECTORS
     - bpf: sockmap, fix proto update hook to avoid dup calls
     - sctp: support MSG_ERRQUEUE flag in recvmsg()
     - sctp: fix busy polling
     - net/sched: act_ct: fix skb leak and crash on ooo frags
     - mlxbf_gige: Fix intermittent no ip issue
     - mlxbf_gige: Enable the GigE port in mlxbf_gige_open
     - ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()
     - [armhf] Revert "drm/omapdrm: Annotate dma-fence critical section in commit
       path"
     - [arm64,armhf] drm/panfrost: Really power off GPU cores in
       panfrost_gpu_power_off()
     - RDMA/usnic: Silence uninitialized symbol smatch warnings
     - [arm64] RDMA/hns: Fix inappropriate err code for unsupported operations
     - drm/nouveau/fence:: fix warning directly dereferencing a rcu pointer
     - drm/bridge: tpd12s015: Drop buggy __exit annotation for remove function
     - drm/tilcdc: Fix irq free on unload
     - media: pvrusb2: fix use after free on context disconnection
     - media: mtk-jpegdec: export jpeg decoder functions
     - media: mtk-jpeg: Remove cancel worker in mtk_jpeg_remove to avoid the
       crash of multi-core JPEG devices
     - media: verisilicon: Hook the (TRY_)DECODER_CMD stateless ioctls
     - media: rkvdec: Hook the (TRY_)DECODER_CMD stateless ioctls
     - drm/bridge: Fix typo in post_disable() description
     - f2fs: fix to avoid dirent corruption
     - drm/radeon/r600_cs: Fix possible int overflows in r600_cs_check_reg()
     - drm/radeon/r100: Fix integer overflow issues in r100_cs_track_check()
     - drm/radeon: check return value of radeon_ring_lock()
     - [arm64] drm/msm/mdp4: flush vblank event on disable
     - [arm64] drm/msm/dsi: Use pm_runtime_resume_and_get to prevent refcnt leaks
     - drm/drv: propagate errors from drm_modeset_register_all()
     - [x86] ASoC: Intel: glk_rt5682_max98357a: fix board id mismatch
     - [arm64,armhf] drm/panfrost: Ignore core_mask for poweroff and disable
       PWRTRANS irq
     - drm/radeon: check the alloc_workqueue return value in radeon_crtc_init()
     - drm/radeon/dpm: fix a memleak in sumo_parse_power_table
     - drm/radeon/trinity_dpm: fix a memleak in trinity_parse_power_table
     - drm/bridge: cdns-mhdp8546: Fix use of uninitialized variable
     - drm/bridge: tc358767: Fix return value on error case
     - media: cx231xx: fix a memleak in cx231xx_init_isoc
     - [arm64] RDMA/hns: Fix memory leak in free_mr_init()
     - drm/panel: st7701: Fix AVCL calculation
     - f2fs: fix to wait on block writeback for post_read case
     - f2fs: fix to check compress file in f2fs_move_file_range()
     - f2fs: fix to update iostat correctly in f2fs_filemap_fault()
     - media: dvbdev: drop refcount on error path in dvb_device_open()
     - media: dvb-frontends: m88ds3103: Fix a memory leak in an error handling
       path of m88ds3103_probe()
     - [arm64] drm/msm/dpu: Set input_sel bit for INTF
     - [arm64] drm/msm/dpu: Drop enable and frame_count parameters from
       dpu_hw_setup_misr()
     - drm/amdgpu/debugfs: fix error code when smc register accessors are NULL
     - drm/amd/pm: fix a double-free in si_dpm_init
     - drivers/amd/pm: fix a use-after-free in kv_parse_power_table
     - gpu/drm/radeon: fix two memleaks in radeon_vm_init
     - drm/amd/pm: fix a double-free in amdgpu_parse_extended_power_table
     - f2fs: fix to check return value of f2fs_recover_xattr_data
     - dt-bindings: clock: Update the videocc resets for sm8150
     - [arm64] drivers: clk: zynqmp: calculate closest mux rate
     - [arm64] drivers: clk: zynqmp: update divider round rate logic
     - watchdog: set cdev owner before adding
     - watchdog/hpwdt: Only claim UNKNOWN NMI if from iLO
     - watchdog: bcm2835_wdt: Fix WDIOC_SETTIMEOUT handling
     - watchdog: rti_wdt: Drop runtime pm reference count when watchdog is unused
     - [arm64] clk: si5341: fix an error code problem in
       si5341_output_clk_set_rate
     - accel/habanalabs: fix information leak in sec_attest_info()
       (CVE-2023-50431)
     - clk: fixed-rate: fix clk_hw_register_fixed_rate_with_accuracy_parent_hw
     - ASoC: rt5645: Drop double EF20 entry from dmi_platform_data[]
     - ALSA: scarlett2: Add missing error check to scarlett2_config_save()
     - ALSA: scarlett2: Add missing error check to scarlett2_usb_set_config()
     - ALSA: scarlett2: Allow passing any output to line_out_remap()
     - ALSA: scarlett2: Add missing error checks to *_ctl_get()
     - ALSA: scarlett2: Add clamp() in scarlett2_mixer_ctl_put()
     - IB/iser: Prevent invalidating wrong MR
     - drm/amd/pm/smu7: fix a memleak in smu7_hwmgr_backend_init
     - ksmbd: validate the zero field of packet header
     - of: Fix double free in of_parse_phandle_with_args_map
     - keys, dns: Fix size check of V1 server-list header
     - [arm*] binder: fix async space check for 0-sized buffers
     - [arm*] binder: fix unused alloc->free_async_space
     - [mipel*] smp: Call rcutree_report_cpu_starting() earlier
     - Input: atkbd - use ab83 as id when skipping the getid command
     - xen-netback: don't produce zero-size SKB frags (CVE-2023-46838)
     - [arm*] binder: fix race between mmput() and do_exit()
     - [arm64,armhf] clocksource/drivers/timer-ti-dm: Fix make W=n kerneldoc
       warnings
     - [powerpc*] 64s: Increase default stack size to 32KB
     - tick-sched: Fix idle and iowait sleeptime accounting vs CPU hotplug
     - [armhf] usb: phy: mxs: remove CONFIG_USB_OTG condition for
       mxs_phy_is_otg_host()
     - [arm64,armhf] usb: dwc: ep0: Update request status in
       dwc3_ep0_stall_restart
     - [arm64,armhf] Revert "usb: dwc3: Soft reset phy on probe for host"
     - [arm64,armhf] Revert "usb: dwc3: don't reset device side if dwc3 was
       configured as host-only"
     - [arm64,armhf] usb: chipidea: wait controller resume finished for wakeup
       irq
     - Revert "usb: typec: class: fix typec_altmode_put_partner to put plugs"
     - usb: typec: class: fix typec_altmode_put_partner to put plugs
     - usb: mon: Fix atomicity violation in mon_bin_vma_fault
     - serial: core: fix sanitizing check for RTS settings
     - serial: core: make sure RS485 cannot be enabled when it is not supported
     - [arm64,armhf] serial: 8250_bcm2835aux: Restore clock error handling
     - serial: core, imx: do not set RS485 enabled if it is not supported
     - [arm64,armhf] serial: imx: Ensure that imx_uart_rs485_config() is called
       with enabled clock
     - serial: 8250_exar: Set missing rs485_supported flag
     - [armhf] serial: omap: do not override settings for RS485 support
     - drm/vmwgfx: Fix possible invalid drm gem put calls
     - drm/vmwgfx: Keep a gem reference to user bos in surfaces (CVE-2023-5633)
     - ALSA: oxygen: Fix right channel of capture volume mixer
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15s-fq2xxx
     - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on HP
       ZBook
     - ALSA: hda/realtek: Enable headset mic on Lenovo M70 Gen5
     - ksmbd: validate mech token in session setup
     - ksmbd: fix UAF issue in ksmbd_tcp_new_connection()
     - ksmbd: only v2 leases handle the directory
     - io_uring/rw: ensure io->bytes_done is always initialized
     - fbdev: flush deferred work in fb_deferred_io_fsync()
     - fbdev: flush deferred IO before closing
     - scsi: ufs: core: Simplify power management during async scan
     - scsi: target: core: add missing file_{start,end}_write()
     - scsi: mpi3mr: Refresh sdev queue depth after controller reset
     - scsi: mpi3mr: Block PEL Enable Command on Controller Reset and
       Unrecoverable State
     - drm/amd: Enable PCIe PME from D3
     - block: add check that partition length needs to be aligned with block size
     - block: Fix iterating over an empty bio with bio_for_each_folio_all
     - netfilter: nf_tables: check if catch-all set element is active in next
       generation (CVE-2024-1085)
     - pwm: Fix out-of-bounds access in of_pwm_single_xlate()
     - md/raid1: Use blk_opf_t for read and write operations
     - rootfs: Fix support for rootfstype= when root= is given
     - Bluetooth: Fix atomicity violation in {min,max}_key_size_set
     - bpf: Fix re-attachment branch in bpf_tracing_prog_attach
     - [arm64] iommu/arm-smmu-qcom: Add missing GMU entry to match table
     - iommu/dma: Trace bounce buffer usage when mapping buffers
     - wifi: mt76: fix broken precal loading from MTD for mt7915
     - wifi: rtlwifi: Remove bogus and dangerous ASPM disable/enable code
     - wifi: rtlwifi: Convert LNKCTL change to PCIe cap RMW accessors
     - wifi: mwifiex: configure BSSID consistently when starting AP
     - Revert "net: rtnetlink: Enslave device before bringing it up"
     - cxl/port: Fix decoder initialization when nr_targets > interleave_ways
     - PCI/P2PDMA: Remove reference to pci_p2pdma_map_sg()
     - [x86] kvm: Do not try to disable kvmclock if it was not enabled
     - [arm64] KVM: arm64: vgic-v4: Restore pending state on host userspace write
     - [arm64] KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache
     - iio: adc: ad7091r: Pass iio_dev to event handler
     - HID: wacom: Correct behavior when processing some confidence == false
       touches
     - mfd: syscon: Fix null pointer dereference in of_syscon_register()
     - [x86] mfd: intel-lpss: Fix the fractional clock divider flags
     - [mipsel] Fix incorrect max_low_pfn adjustment
     - [arm64] power: supply: cw2015: correct time_to_empty units in sysfs
     - [arm64] serial: 8250: omap: Don't skip resource freeing if
       pm_runtime_resume_and_get() failed
     - libapi: Add missing linux/types.h header to get the __u64 type on io.h
     - base/node.c: initialize the accessor list before registering
     - acpi: property: Let args be NULL in __acpi_node_get_property_reference
     - software node: Let args be NULL in software_node_get_reference_args
     - serial: imx: fix tx statemachine deadlock
     - iio: adc: ad9467: fix reset gpio handling
     - iio: adc: ad9467: don't ignore error codes
     - iio: adc: ad9467: fix scale setting
     - perf header: Fix one memory leakage in perf_event__fprintf_event_update()
     - perf hisi-ptt: Fix one memory leakage in hisi_ptt_process_auxtrace_event()
     - perf genelf: Set ELF program header addresses properly
     - tty: change tty_write_lock()'s ndelay parameter to bool
     - tty: early return from send_break() on TTY_DRIVER_HARDWARE_BREAK
     - tty: don't check for signal_pending() in send_break()
     - tty: use 'if' in send_break() instead of 'goto'
     - usb: cdc-acm: return correct error code on unsupported break
     - nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length
     - nvmet-tcp: fix a crash in nvmet_req_complete()
     - perf env: Avoid recursively taking env->bpf_progs.lock
     - cxl/region: fix x9 interleave typo
     - apparmor: avoid crash when parsed profile name is empty
     - [arm64,armhf] serial: imx: Correct clock error message in function probe()
     - nvmet: re-fix tracing strncpy() warning
     - nvme: trace: avoid memcpy overflow warning
     - nvmet-tcp: Fix the H2C expected PDU len calculation
     - [s390x] pci: fix max size calculation in zpci_memcpy_toio()
     - [arm64] net: ethernet: ti: am65-cpsw: Fix max mtu to fit ethernet frames
     - net: phy: micrel: populate .soft_reset for KSZ9131
     - mptcp: mptcp_parse_option() fix for MPTCPOPT_MP_JOIN
     - mptcp: strict validation before using mp_opt->hmac
     - mptcp: use OPTION_MPTCP_MPJ_SYNACK in subflow_finish_connect()
     - mptcp: use OPTION_MPTCP_MPJ_SYN in subflow_check_req()
     - mptcp: refine opt_mp_capable determination
     - block: ensure we hold a queue reference when using queue limits
     - udp: annotate data-races around up->pending
     - net: stmmac: ethtool: Fixed calltrace caused by unbalanced
       disable_irq_wake calls
     - bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS
     - mptcp: relax check on MPC passive fallback
     - netfilter: nf_tables: reject invalid set policy
     - netfilter: nft_limit: do not ignore unsupported flags
     - netfilter: nfnetlink_log: use proper helper for fetching physinif
     - netfilter: nf_queue: remove excess nf_bridge variable
     - netfilter: propagate net to nf_bridge_get_physindev
     - netfilter: bridge: replace physindev with physinif in nf_bridge_info
     - netfilter: nf_tables: do not allow mismatch field size and set key length
     - netfilter: nf_tables: skip dead set elements in netlink dump
     - netfilter: nf_tables: reject NFT_SET_CONCAT with not field length
       description
     - ipvs: avoid stat macros calls from preemptible context
     - kdb: Fix a potential buffer overflow in kdb_local()
     - ethtool: netlink: Add missing ethnl_ops_begin/complete
     - loop: fix the the direct I/O support check when used on top of block
       devices
     - ipv6: mcast: fix data-race in ipv6_mc_down / mld_ifc_work
     - [armhf] i2c: s3c24xx: fix read transfers in polling mode
     - [armhf] i2c: s3c24xx: fix transferring more than one message in polling
       mode
     - block: Remove special-casing of compound pages
     - Revert "KEYS: encrypted: Add check for strsep"
     - [arm64] dts: armada-3720-turris-mox: set irq type for RTC
     - Revert "Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d""
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.76
     - [arm64,armhf] usb: dwc3: gadget: Refactor EP0 forced stall/restart into a
       separate API
     - [arm64,armhf] usb: dwc3: gadget: Queue PM runtime idle on disconnect event
     - [arm64,armhf] usb: dwc3: gadget: Handle EP0 request dequeuing properly
     - [x86] Revert "nSVM: Check for reserved encodings of TLB_CONTROL in nested
       VMCB"
     - iio: adc: ad7091r: Set alert bit in config register
     - iio: adc: ad7091r: Allow users to configure device events
     - ext4: allow for the last group to be marked as trimmed
     - OPP: Pass rounded rate to _set_opp()
     - btrfs: sysfs: validate scrub_speed_max value
     - crypto: api - Disallow identical driver names
     - PM: hibernate: Enforce ordering during image compression/decompression
     - hwrng: core - Fix page fault dead lock on mmap-ed hwrng
     - [s390x] crypto: s390/aes - Fix buffer overread in CTR mode
     - [s390x] vfio-ap: unpin pages on gisc registration failure
     - PM / devfreq: Fix buffer overflow in trans_stat_show
     - media: imx355: Enable runtime PM before registering async sub-device
     - rpmsg: virtio: Free driver_override when rpmsg_remove()
     - media: ov9734: Enable runtime PM before registering async sub-device
     - [s390x] vfio-ap: always filter entire AP matrix
     - [s390x] vfio-ap: loop over the shadow APCB when filtering guest's AP
       configuration
     - [s390x] vfio-ap: let on_scan_complete() callback filter matrix and update
       guest's APCB
     - [mips*] Fix max_mapnr being uninitialized on early stages
     - bus: mhi: host: Add alignment check for event ring read pointer
     - bus: mhi: host: Drop chan lock before queuing buffers
     - bus: mhi: host: Add spinlock to protect WP access when queueing TREs
     - async: Split async_schedule_node_domain()
     - async: Introduce async_schedule_dev_nocall()
     - iio: adc: ad7091r: Enable internal vref if external vref is not supplied
     - dmaengine: fix NULL pointer in channel unregistration function
     - scsi: ufs: core: Remove the ufshcd_hba_exit() call from
       ufshcd_async_scan()
     - [arm64] dts: qcom: sc7180: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sdm845: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sm8150: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sc7280: fix usb_1 wakeup interrupt types
     - [arm64] dts: qcom: sdm845: fix USB DP/DM HS PHY interrupts
     - [arm64] dts: qcom: sm8150: fix USB DP/DM HS PHY interrupts
     - lsm: new security_file_ioctl_compat() hook
     - docs: kernel_abi.py: fix command injection
     - scripts/get_abi: fix source path leak
     - media: videobuf2-dma-sg: fix vmap callback
     - mmc: core: Use mrq.sbc in close-ended ffu
     - mmc: mmc_spi: remove custom DMA mapped buffers
     - media: mtk-jpeg: Fix use after free bug due to error path handling in
       mtk_jpeg_dec_device_run
     - [arm64] Rename ARM64_WORKAROUND_2966298
     - rtc: cmos: Use ACPI alarm for non-Intel x86 systems too
     - rtc: Adjust failure return code for cmos_set_alarm()
     - rtc: mc146818-lib: Adjust failure return code for mc146818_get_time()
     - rtc: Add support for configuring the UIP timeout for RTC reads
     - rtc: Extend timeout for waiting for UIP to clear to 1s
     - nouveau/vmm: don't set addr on the fail path to avoid warning
     - ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path
     - mm/rmap: fix misplaced parenthesis of a likely()
     - mm/sparsemem: fix race in accessing memory_section->usage
     - rename(): fix the locking of subdirectories
     - serial: sc16is7xx: improve regmap debugfs by using one regmap per port
     - serial: sc16is7xx: remove wasteful static buffer in
       sc16is7xx_regmap_name()
     - serial: sc16is7xx: remove global regmap from struct sc16is7xx_port
     - serial: sc16is7xx: remove unused line structure member
     - serial: sc16is7xx: change EFR lock to operate on each channels
     - serial: sc16is7xx: convert from _raw_ to _noinc_ regmap functions for FIFO
     - serial: sc16is7xx: fix invalid sc16is7xx_lines bitfield in case of probe
       error
     - serial: sc16is7xx: remove obsolete loop in sc16is7xx_port_irq()
     - serial: sc16is7xx: improve do/while loop in sc16is7xx_irq()
     - mm: page_alloc: unreserve highatomic page blocks before oom
     - ksmbd: set v2 lease version on lease upgrade
     - ksmbd: fix potential circular locking issue in smb2_set_ea()
     - ksmbd: don't increment epoch if current state and request state are same
     - ksmbd: send lease break notification on FILE_RENAME_INFORMATION
     - ksmbd: Add missing set_freezable() for freezable kthread
     - Revert "drm/amd: Enable PCIe PME from D3"
     - drm/amd/display: pbn_div need be updated for hotplug event
     - wifi: mac80211: fix potential sta-link leak
     - net/smc: fix illegal rmb_desc access in SMC-D connection dump
     - tcp: make sure init the accept_queue's spinlocks once
     - bnxt_en: Wait for FLR to complete during probe
     - vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING
     - llc: make llc_ui_sendmsg() more robust against bonding changes
     - llc: Drop support for ETH_P_TR_802_2.
     - udp: fix busy polling
     - net: fix removing a namespace with conflicting altnames
     - tun: fix missing dropped counter in tun_xdp_act
     - tun: add missing rx stats accounting in tun_xdp_act
     - net: micrel: Fix PTP frame parsing for lan8814
     - net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv
     - netfs, fscache: Prevent Oops in fscache_put_cache()
     - tracing: Ensure visibility when inserting an element into tracing_map
     - afs: Hide silly-rename files from userspace
     - tcp: Add memory barrier to tcp_push()
     - netlink: fix potential sleeping issue in mqueue_flush_file
     - ipv6: init the accept_queue's spinlocks in inet6_create
     - net/mlx5: DR, Use the right GVMI number for drop action
     - net/mlx5: DR, Can't go to uplink vport on RX rule
     - net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO
     - net/mlx5e: Allow software parsing when IPsec crypto is enabled
     - net/mlx5e: fix a double-free in arfs_create_groups
     - net/mlx5e: fix a potential double-free in fs_any_create_groups
     - rcu: Defer RCU kthreads wakeup when CPU is dying
     - netfilter: nft_limit: reject configurations that cause integer overflow
     - btrfs: fix infinite directory reads
     - btrfs: set last dir index to the current last index when opening dir
     - btrfs: refresh dir last index during a rewinddir(3) call
     - btrfs: fix race between reading a directory and adding entries to it
     - netfilter: nf_tables: restrict anonymous set and map names to 16 bytes
     - netfilter: nf_tables: validate NFPROTO_* family
     - net: stmmac: Wait a bit for the reset to take effect
     - net: mvpp2: clear BM pool before initialization
     - fjes: fix memleaks in fjes_hw_setup
     - net: fec: fix the unhandled context fault from smmu
     - nbd: always initialize struct msghdr completely
     - btrfs: avoid copying BTRFS_ROOT_SUBVOL_DEAD flag to snapshot of subvolume
       being deleted
     - btrfs: ref-verify: free ref cache before clearing mount opt
     - btrfs: tree-checker: fix inline ref size in error messages
     - btrfs: don't warn if discard range is not aligned to sector
     - btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args
     - btrfs: don't abort filesystem when attempting to snapshot deleted
       subvolume
     - rbd: don't move requests to the running list on errors
     - exec: Fix error handling in begin_new_exec()
     - wifi: iwlwifi: fix a memory corruption
     - hv_netvsc: Calculate correct ring size when PAGE_SIZE is not 4 Kbytes
     - netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress
       basechain
     - netfilter: nf_tables: reject QUEUE/DROP verdict parameters (CVE-2024-1086)
     - [x86] platform/x86: p2sb: Allow p2sb_bar() calls during PCI device probe
     - ksmbd: fix global oob in ksmbd_nl_policy
     - [arm64] firmware: arm_scmi: Check mailbox/SMT channel for consistency
     - xfs: read only mounts with fsopen mount API are busted
     - gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04
     - cpufreq: intel_pstate: Refine computation of P-state for given frequency
     - drm: Don't unref the same fb many times by mistake due to deadlock
       handling
     - drm/bridge: nxp-ptn3460: fix i2c_master_send() error checking
     - drm/tidss: Fix atomic_flush check
     - drm/amd/display: Disable PSR-SU on Parade 0803 TCON again
     - [x86] platform/x86: intel-uncore-freq: Fix types in sysfs callbacks
     - drm/bridge: nxp-ptn3460: simplify some error checking
     - drm/amd/display: Port DENTIST hang and TDR fixes to OTG disable W/A
     - drm/amdgpu/pm: Fix the power source flag error
     - erofs: get rid of the remaining kmap_atomic()
     - erofs: fix lz4 inplace decompression
     - media: ov13b10: Support device probe in non-zero ACPI D state
     - media: ov13b10: Enable runtime PM before registering async sub-device
     - bus: mhi: ep: Do not allocate event ring element on stack
     - PM: core: Remove unnecessary (void *) conversions
     - PM: sleep: Fix possible deadlocks in core system-wide PM code
     - [x86] thermal: intel: hfi: Refactor enabling code into helper functions
     - [x86] thermal: intel: hfi: Disable an HFI instance when all its CPUs go
       offline
     - [x86] thermal: intel: hfi: Add syscore callbacks for system-wide PM
     - fs/pipe: move check to pipe_has_watch_queue()
     - pipe: wakeup wr_wait after setting max_usage
     - dlm: use kernel_connect() and kernel_bind()
     - serial: core: Provide port lock wrappers
     - serial: sc16is7xx: Use port lock wrappers
     - serial: sc16is7xx: fix unconditional activation of THRI interrupt
     - btrfs: zoned: factor out prepare_allocation_zoned()
     - btrfs: zoned: optimize hint byte for zoned allocator
     - drm/panel-edp: drm/panel-edp: Fix AUO B116XAK01 name and timing
     - Revert "powerpc/64s: Increase default stack size to 32KB"
     - drm/bridge: parade-ps8640: Wait for HPD when doing an AUX transfer
     - drm: panel-simple: add missing bus flags for Tianma tm070jvhg[30/33]
     - drm/bridge: sii902x: Use devm_regulator_bulk_get_enable()
     - drm/bridge: sii902x: Fix probing race issue
     - drm/bridge: sii902x: Fix audio codec unregistration
     - drm/bridge: parade-ps8640: Ensure bridge is suspended in .post_disable()
     - drm/bridge: parade-ps8640: Make sure we drop the AUX mutex in the error
       case
     - [armhf] drm/exynos: fix accidental on-stack copy of exynos_drm_plane
     - [armhf] drm/exynos: gsc: minor fix for loop iteration in
       gsc_runtime_resume
     - gpio: eic-sprd: Clear interrupt after set the interrupt type
     - block: Move checking GENHD_FL_NO_PART to bdev_add_partition()
     - drm/bridge: anx7625: Ensure bridge is suspended in disable()
     - spi: bcm-qspi: fix SFDP BFPT read by usig mspi read
     - spi: fix finalize message on error return
     - [mips*] lantiq: register smp_ops on non-smp platforms
     - cxl/region：Fix overflow issue in alloc_hpa()
     - [mips*] Call lose_fpu(0) before initializing fcr31 in
       mips_set_personality_nan
     - tick/sched: Preserve number of idle sleeps across CPU hotplug events
     - [x86] x86/entry/ia32: Ensure s32 is sign extended to s64
     - serial: core: fix kernel-doc for uart_port_unlock_irqrestore()
     - net/mlx5e: Handle hardware IPsec limits events
 .
   [ Salvatore Bonaccorso ]
   * Refresh "net: mana: Add support for auxiliary device"
   * Bump ABI to 18
linux-signed-amd64 (6.1.69+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.69-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.68
     - hrtimers: Push pending hrtimers away from outgoing CPU earlier
     - i2c: designware: Fix corrupted memory seen in the ISR
     - netfilter: ipset: fix race condition between swap/destroy and kernel side
       add/del/test
     - tg3: Move the [rt]x_dropped counters to tg3_napi
     - tg3: Increment tx_dropped in tg3_tso_bug()
     - kconfig: fix memory leak from range properties
     - drm/amdgpu: correct chunk_ptr to a pointer to chunk.
     - [x86] Introduce ia32_enabled()
     - [amd64] x86/coco: Disable 32-bit emulation by default on TDX and SEV
     - [x86] entry: Convert INT 0x80 emulation to IDTENTRY
     - [x86] entry: Do not allow external 0x80 interrupts
     - [x86] tdx: Allow 32-bit emulation by default
     - [x86] platform/x86: asus-wmi: Move i8042 filter install to shared asus-wmi
       code
     - [powerpc*] of: dynamic: Fix of_reconfig_get_state_change() return value
       documentation
     - [x86] platform/x86: wmi: Skip blocks with zero instances
     - ipv6: fix potential NULL deref in fib6_add()
     - hv_netvsc: rndis_filter needs to select NLS
     - r8152: Rename RTL8152_UNPLUG to RTL8152_INACCESSIBLE
     - r8152: Add RTL8152_INACCESSIBLE checks to more loops
     - r8152: Add RTL8152_INACCESSIBLE to r8156b_wait_loading_flash()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_pre_firmware_1()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_aldps_en()
     - arcnet: restoring support for multiple Sohard Arcnet cards
     - net: stmmac: fix FPE events losing
     - xsk: Skip polling event check for unbound socket
     - i40e: Fix unexpected MFS warning message
     - iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero
     - net: bnxt: fix a potential use-after-free in bnxt_init_tc
     - tcp: fix mid stream window clamp.
     - ionic: fix snprintf format length warning
     - ionic: Fix dim work handling in split interrupt mode
     - ipv4: ip_gre: Avoid skb_pull() failure in ipgre_xmit()
     - net: atlantic: Fix NULL dereference of skb pointer in
     - [arm64] net: hns: fix wrong head when modify the tx feature when sending
       packets
     - [arm64] net: hns: fix fake link up on xge port
     - netfilter: nft_exthdr: add boolean DCCP option matching
     - netfilter: nf_tables: fix 'exist' matching on bigendian arches
     - netfilter: nf_tables: bail out on mismatching dynset and set expressions
       (CVE-2023-6622)
     - netfilter: nf_tables: validate family when identifying table via handle
     - netfilter: xt_owner: Fix for unsafe access of sk->sk_socket
     - tcp: do not accept ACK of bytes we never sent
     - bpf: sockmap, updating the sg structure should also update curr
     - psample: Require 'CAP_NET_ADMIN' when joining "packets" group
     - drop_monitor: Require 'CAP_SYS_ADMIN' when joining "events" group
     - [arm64] tee: optee: Fix supplicant based device enumeration
     - [arm64] RDMA/hns: Fix unnecessary err return when using invalid congest
       control algorithm
     - RDMA/irdma: Do not modify to SQD on error
     - RDMA/irdma: Add wait for suspend on SQD
     - [arm64] ASoC: fsl_sai: Fix no frame sync clock issue on i.MX8MP
     - RDMA/irdma: Refactor error handling in create CQP
     - RDMA/irdma: Fix UAF in irdma_sc_ccq_get_cqe_info()
     - [x86] hwmon: (acpi_power_meter) Fix 4.29 MW bug
     - [x86] ASoC: wm_adsp: fix memleak in wm_adsp_buffer_populate
     - RDMA/core: Fix umem iterator when PAGE_SIZE is greater then HCA pgsz
     - RDMA/irdma: Avoid free the non-cqp_request scratch
     - [arm64] dts: imx8mq: drop usb3-resume-missing-cas from usb
     - [arm64] dts: imx8mp: imx8mq: Add parkmode-disable-ss-quirk on DWC3
     - tracing: Fix a warning when allocating buffered events fails
     - scsi: be2iscsi: Fix a memleak in beiscsi_init_wrb_handle()
     - [armhf] imx: Check return value of devm_kasprintf in imx_mmdc_perf_init
     - md: introduce md_ro_state
     - md: don't leave 'MD_RECOVERY_FROZEN' in error path of md_set_readonly()
     - iommu: Avoid more races around device probe
     - [x86] rethook: Use __rcu pointer for rethook::handler
     - kprobes: consistent rcu api usage for kretprobe holder
     - [x86] ASoC: amd: yc: Fix non-functional mic on ASUS E1504FA
     - io_uring/af_unix: disable sending io_uring over sockets (CVE-2023-6531)
     - nvme-pci: Add sleep quirk for Kingston drives
     - io_uring: fix mutex_unlock with unreferenced ctx
     - ALSA: usb-audio: Add Pioneer DJM-450 mixer controls
     - ALSA: pcm: fix out-of-bounds in snd_pcm_state_names
     - ALSA: hda/realtek: Enable headset on Lenovo M90 Gen5
     - ALSA: hda/realtek: add new Framework laptop to quirks
     - ALSA: hda/realtek: Add Framework laptop 16 to quirks
     - ring-buffer: Test last update in 32bit version of __rb_time_read()
     - nilfs2: fix missing error check for sb_set_blocksize call
     - nilfs2: prevent WARNING in nilfs_sufile_set_segment_usage()
     - cgroup_freezer: cgroup_freezing: Check if not frozen
     - checkstack: fix printed address
     - tracing: Always update snapshot buffer size
     - tracing: Disable snapshot buffer when stopping instance tracers
     - tracing: Fix incomplete locking when disabling buffered events
     - tracing: Fix a possible race when disabling buffered events
     - packet: Move reference count in packet_sock to atomic_long_t
     - r8169: fix rtl8125b PAUSE frames blasting when suspended
     - regmap: fix bogus error on regcache_sync success
     - [x86] platform/surface: aggregator: fix recv_buf() return value
     - hugetlb: fix null-ptr-deref in hugetlb_vma_lock_write
     - mm: fix oops when filemap_map_pmd() without prealloc_pte
     - md/raid6: use valid sector values to determine if an I/O should wait on
       the reshape
     - [arm*] binder: fix memory leaks of spam and pending work
     - [arm64] coresight: etm4x: Make etm4_remove_dev() return void
     - [arm64] coresight: etm4x: Remove bogous __exit annotation for some
       functions
     - hwtracing: hisi_ptt: Add dummy callback pmu::read()
     - [x86] misc: mei: client.c: return negative error code in mei_cl_write
     - [x86] misc: mei: client.c: fix problem of return '-EOVERFLOW' in
       mei_cl_write
     - ring-buffer: Force absolute timestamp on discard of event
     - tracing: Set actual size after ring buffer resize
     - tracing: Stop current tracer when resizing buffer
     - perf: Fix perf_event_validate_size() (CVE-2023-6931)
     - [x86] sev: Fix kernel crash due to late update to read-only ghcb_version
     - gpiolib: sysfs: Fix error handling on failed export
     - drm/amdgpu: fix memory overflow in the IB test
     - drm/amd/amdgpu: Fix warnings in amdgpu/amdgpu_display.c
     - drm/amdgpu: correct the amdgpu runtime dereference usage count
     - drm/amdgpu: Update ras eeprom support for smu v13_0_0 and v13_0_10
     - drm/amdgpu: Add EEPROM I2C address support for ip discovery
     - drm/amdgpu: Remove redundant I2C EEPROM address
     - drm/amdgpu: Decouple RAS EEPROM addresses from chips
     - drm/amdgpu: Add support for RAS table at 0x40000
     - drm/amdgpu: Remove second moot switch to set EEPROM I2C address
     - drm/amdgpu: Return from switch early for EEPROM I2C address
     - drm/amdgpu: simplify amdgpu_ras_eeprom.c
     - drm/amdgpu: Add I2C EEPROM support on smu v13_0_6
     - drm/amdgpu: Update EEPROM I2C address for smu v13_0_0
     - usb: gadget: f_hid: fix report descriptor allocation
     - serial: 8250_dw: Add ACPI ID for Granite Rapids-D UART
     - parport: Add support for Brainboxes IX/UC/PX parallel cards
     - cifs: Fix non-availability of dedup breaking generic/304
     - Revert "xhci: Loosen RPM as default policy to cover for AMD xHC 1.1"
     - smb: client: fix potential NULL deref in parse_dfs_referrals()
     - usb: typec: class: fix typec_altmode_put_partner to put plugs
     - [arm64,armhf] PL011: Fix DMA support
     - [arm64] serial: 8250: 8250_omap: Clear UART_HAS_RHR_IT_DIS bit
     - [arm64] serial: 8250: 8250_omap: Do not start RX DMA on THRI interrupt
     - [arm64] serial: 8250_omap: Add earlycon support for the AM654 UART
       controller
     - devcoredump: Send uevent once devcd is ready
     - [x86] CPU/AMD: Check vendor in the AMD microcode callback
     - USB: gadget: core: adjust uevent timing on gadget unbind
     - cifs: Fix flushing, invalidation and file size with copy_file_range()
     - cifs: Fix flushing, invalidation and file size with FICLONE
     - [mips*] kernel: Clear FPU states when setting up kernel threads
       (Closes: #1055021)
     - [s390x] KVM: s390/mm: Properly reset no-dat
     - [x86] KVM: SVM: Update EFER software model on CR0 trap for SEV-ES
     - netfilter: nft_set_pipapo: skip inactive elements during set walk
       (CVE-2023-6817)
     - [x86] drm/i915/display: Drop check for doublescan mode in modevalid
     - [x86] drm/i915/lvds: Use REG_BIT() & co.
     - [x86] drm/i915/sdvo: stop caching has_hdmi_monitor in struct intel_sdvo
     - [x86] drm/i915: Skip some timing checks on BXT/GLK DSI transcoders
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.69
     - [x86] perf/x86/uncore: Don't WARN_ON_ONCE() for a broken discovery table
     - r8152: add USB device driver for config selection
     - r8152: add vendor/device ID pair for D-Link DUB-E250
     - r8152: add vendor/device ID pair for ASUS USB-C2500
     - [powerpc*] ftrace: Fix stack teardown in ftrace_no_trace
     - ext4: fix warning in ext4_dio_write_end_io()
     - ksmbd: fix memory leak in smb2_lock()
     - afs: Fix refcount underflow from error handling race (Closes: #1052304)
     - HID: lenovo: Restrict detection of patched firmware only to USB cptkbd
       (Closes: #1058758)
     - net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work
     - net: ipv6: support reporting otherwise unknown prefix flags in
       RTM_NEWPREFIX
     - bnxt_en: Clear resource reservation during resume
     - bnxt_en: Save ring error counters across reset
     - bnxt_en: Fix wrong return value check in bnxt_close_nic()
     - bnxt_en: Fix HWTSTAMP_FILTER_ALL packet timestamp logic
     - atm: solos-pci: Fix potential deadlock on &cli_queue_lock
     - atm: solos-pci: Fix potential deadlock on &tx_queue_lock
     - net: vlan: introduce skb_vlan_eth_hdr()
     - net: fec: correct queue selection
     - atm: Fix Use-After-Free in do_vcc_ioctl (CVE-2023-51780)
     - net/rose: Fix Use-After-Free in rose_ioctl (CVE-2023-51782)
     - iavf: Introduce new state machines for flow director
     - iavf: Handle ntuple on/off based on new state machines for flow director
     - qed: Fix a potential use-after-free in qed_cxt_tables_alloc
     - net: Remove acked SYN flag from packet in the transmit queue correctly
     - net: ena: Destroy correct number of xdp queues upon failure
     - net: ena: Fix xdp drops handling due to multibuf packets
     - net: ena: Fix XDP redirection error
     - sign-file: Fix incorrect return values check
     - vsock/virtio: Fix unsigned integer wrap around in
       virtio_transport_has_space()
     - net: stmmac: Handle disabled MDIO busses from devicetree
     - appletalk: Fix Use-After-Free in atalk_ioctl (CVE-2023-51781)
     - net: atlantic: fix double free in ring reinit logic
     - cred: switch to using atomic_long_t
     - fuse: dax: set fc->dax to NULL in fuse_dax_conn_free()
     - ALSA: hda/hdmi: add force-connect quirk for NUC5CPYB
     - ALSA: hda/hdmi: add force-connect quirks for ASUSTeK Z170 variants
     - ALSA: hda/realtek: Apply mute LED quirk for HP15-db
     - Revert "PCI: acpiphp: Reassign resources on bridge if necessary"
     - [mips*] PCI: loongson: Limit MRRS to 256 (Closes: #1035587)
     - ksmbd: fix wrong name of SMB2_CREATE_ALLOCATION_SIZE
     - [x86] hyperv: Fix the detection of E820_TYPE_PRAM in a Gen2 VM
     - usb: aqc111: check packet for fixup for true limit
     - blk-throttle: fix lockdep warning of "cgroup_mutex or RCU read lock
       required!"
     - blk-cgroup: bypass blkcg_deactivate_policy after destroying
     - bcache: avoid oversize memory allocation by small stripe_size
     - bcache: remove redundant assignment to variable cur_idx
     - bcache: add code comments for bch_btree_node_get() and
       __bch_btree_node_alloc()
     - bcache: avoid NULL checking to c->root in run_cache_set()
     - nbd: fold nbd config initialization into nbd_alloc_config()
     - nvme-auth: set explanation code for failure2 msgs
     - nvme: catch errors from nvme_configure_metadata()
     - [x86] platform/x86: intel_telemetry: Fix kernel doc descriptions
     - HID: glorious: fix Glorious Model I HID report
     - HID: add ALWAYS_POLL quirk for Apple kb
     - nbd: pass nbd_sock to nbd_read_reply() instead of index
     - HID: hid-asus: reset the backlight brightness level on resume
     - HID: multitouch: Add quirk for HONOR GLO-GXXX touchpad
     - asm-generic: qspinlock: fix queued_spin_value_unlocked() implementation
     - net: usb: qmi_wwan: claim interface 4 for ZTE MF290
     - [arm64] add dependency between vmlinuz.efi and Image
     - HID: hid-asus: add const to read-only outgoing usb buffer
     - perf: Fix perf_event_validate_size() lockdep splat
     - btrfs: do not allow non subvolume root targets for snapshot
     - soundwire: stream: fix NULL pointer dereference for multi_link
     - ext4: prevent the normalized size from exceeding EXT_MAX_BLOCKS
     - [arm64] mm: Always make sw-dirty PTEs hw-dirty in pte_modify
     - team: Fix use-after-free when an option instance allocation fails
     - drm/amdgpu/sdma5.2: add begin/end_use ring callbacks
     - dmaengine: stm32-dma: avoid bitfield overflow assertion
     - mm/mglru: fix underprotected page cache
     - mm/shmem: fix race in shmem_undo_range w/THP
     - btrfs: free qgroup reserve when ORDERED_IOERR is set
     - btrfs: don't clear qgroup reserved bit in release_folio
     - drm/amdgpu: fix tear down order in amdgpu_vm_pt_free
     - drm/amd/display: Disable PSR-SU on Parade 0803 TCON again
     - [x86] drm/i915: Fix remapped stride with CCS on ADL+
     - smb: client: fix OOB in receive_encrypted_standard()
     - smb: client: fix NULL deref in asn1_ber_decoder()
     - smb: client: fix OOB in smb2_query_reparse_point()
     - ring-buffer: Fix memory leak of free page
     - tracing: Update snapshot buffer on resize if it is allocated
     - ring-buffer: Do not update before stamp when switching sub-buffers
     - ring-buffer: Have saved event hold the entire event
     - ring-buffer: Fix writing to the buffer with max_data_size
     - ring-buffer: Fix a race in rb_time_cmpxchg() for 32 bit archs
     - ring-buffer: Do not try to put back write_stamp
     - ring-buffer: Have rb_time_cmpxchg() set the msb counter too
     - net: tls, update curr on splice as well
     - r8152: avoid to change cfg for all devices
     - r8152: remove rtl_vendor_mode function
     - r8152: fix the autosuspend doesn't work
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 17
   * [rt] Update to 6.1.69-rt21
   * [arm64] drivers/vfio: Don't enable VFIO_NOIOMMU.
     This is a breach of the integrity lockdown requirement of secure boot
     and thus cannot be enabled.
     Thanks to Bastian Blank and Ben Hutchings
   * Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg
     (CVE-2023-51779)
   * netfilter: nf_tables: skip set commit for deleted/destroyed sets
   * Revert "scsi: aacraid: Reply queue mapping to CPUs based on IRQ affinity"
     (Closes: #1059624)
linux-signed-amd64 (6.1.69+1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Sign kernel from linux 6.1.69-1~bpo11+1
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.17
linux-signed-amd64 (6.1.67+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.67-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.67
     - Revert "wifi: cfg80211: fix CQM for non-range use" (Closes: #1057967,
       #1057969)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 16

linux-signed-arm64 (6.1.76+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.76-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.70
     - bpf: Fix prog_array_map_poke_run map poke update
     - HID: i2c-hid: acpi: Unify ACPI ID tables format
     - HID: i2c-hid: Add IDEA5002 to i2c_hid_acpi_blacklist[]
     - drm/amd/display: fix hw rotated modes when PSR-SU is enabled
     - [armhf] OMAP2+: Fix null pointer dereference and memory leak in
       omap_soc_device_init
     - reset: Fix crash when freeing non-existent optional resets
     - [s390x] vx: fix save/restore of fpu kernel context
     - wifi: iwlwifi: pcie: add another missing bh-disable for rxq->lock
     - wifi: mac80211: check if the existing link config remains unchanged
     - wifi: mac80211: mesh: check element parsing succeeded
     - wifi: mac80211: mesh_plink: fix matches_local logic
     - Revert "net/mlx5e: fix double free of encap_header in update funcs"
     - Revert "net/mlx5e: fix double free of encap_header"
     - net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list()
     - net/mlx5: Introduce and use opcode getter in command interface
     - net/mlx5: Prevent high-rate FW commands from populating all slots
     - net/mlx5: Re-organize mlx5_cmd struct
     - net/mlx5e: Fix a race in command alloc flow
     - net/mlx5e: fix a potential double-free in fs_udp_create_groups
     - net/mlx5: Fix fw tracer first block check
     - net/mlx5e: Correct snprintf truncation handling for fw_version buffer
     - net/mlx5e: Correct snprintf truncation handling for fw_version buffer used
       by representors
     - [arm64] net: mscc: ocelot: fix eMAC TX RMON stats for bucket 256-511 and
       above
     - net: Return error from sk_stream_wait_connect() if sk_wait_event() fails
     - net: sched: ife: fix potential use-after-free
     - ethernet: atheros: fix a memleak in atl1e_setup_ring_resources
     - net/rose: fix races in rose_kill_by_device()
     - Bluetooth: Fix deadlock in vhci_send_frame
     - Bluetooth: hci_event: shut up a false-positive warning
     - net: mana: select PAGE_POOL
     - net: check vlan filter feature in vlan_vids_add_by_dev() and
       vlan_vids_del_by_dev()
     - afs: Fix the dynamic root's d_delete to always delete unused dentries
     - afs: Fix dynamic root lookup DNS check
     - net: check dev->gso_max_size in gso_features_check()
     - keys, dns: Allow key types (eg. DNS) to be reclaimed immediately on expiry
     - afs: Fix overwriting of result of DNS query
     - afs: Fix use-after-free due to get/remove race in volume tree
     - [arm64,armhf] ASoC: hdmi-codec: fix missing report for jack initial status
     - [arm64] ASoC: fsl_sai: Fix channel swap issue on i.MX8MP
     - [armhf] i2c: aspeed: Handle the coalesced stop conditions with the start
       conditions.
     - gpiolib: cdev: add gpio_device locking wrapper around gpio_ioctl()
     - nvme-pci: fix sleeping function called from interrupt context
     - [x86] drm/i915/mtl: limit second scaler vertical scaling in ver >= 14
     - [x86] drm/i915: Relocate intel_atomic_setup_scalers()
     - [x86] drm/i915: Fix intel_atomic_setup_scalers() plane_state handling
     - [x86] drm/i915/dpt: Only do the POT stride remap when using DPT
     - [x86] drm/i915/mtl: Add MTL for remapping CCS FBs
     - [x86] drm/i915: Fix ADL+ tiled plane stride when the POT stride is smaller
       than the original
     - iio: imu: inv_mpu6050: fix an error code problem in inv_mpu6050_read_raw
     - interconnect: qcom: sm8250: Enable sync_state
     - scsi: bnx2fc: Fix skb double free in bnx2fc_rcv()
     - iio: common: ms_sensors: ms_sensors_i2c: fix humidity conversion time
       table
     - [armhf] iio: adc: ti_am335x_adc: Fix return value check of
       tiadc_request_dma()
     - iio: triggered-buffer: prevent possible freeing of wrong buffer
     - ALSA: usb-audio: Increase delay in MOTU M quirk
     - usb-storage: Add quirk for incorrect WP on Kingston DT Ultimate 3.0 G3
     - wifi: cfg80211: Add my certificate
     - wifi: cfg80211: fix certs build to not depend on file order
     - USB: serial: ftdi_sio: update Actisense PIDs constant names
     - USB: serial: option: add Quectel EG912Y module support
     - USB: serial: option: add Foxconn T99W265 with new baseline
     - USB: serial: option: add Quectel RM500Q R13 firmware support
     - ALSA: hda/realtek: Add quirk for ASUS ROG GV302XA
     - Bluetooth: hci_event: Fix not checking if HCI_OP_INQUIRY has been sent
     - Bluetooth: L2CAP: Send reject on command corrupted request
     - Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE
     - Bluetooth: Add more enc key size check
     - net: usb: ax88179_178a: avoid failed operations when device is
       disconnected
     - [x86] Input: soc_button_array - add mapping for airplane mode button
     - net: 9p: avoid freeing uninit memory in p9pdu_vreadf
     - net: rfkill: gpio: set GPIO direction
     - dt-bindings: nvmem: mxs-ocotp: Document fsl,ocotp
     - smb: client: fix OOB in cifsd when receiving compounded resps
     - smb: client: fix potential OOB in cifs_dump_detail()
     - smb: client: fix OOB in SMB2_query_info_init()
     - smb: client: fix OOB in smbCalcSize() (CVE-2023-6606)
     - [x86] drm/i915: Reject async flips with bigjoiner
     - 9p: prevent read overrun in protocol dump tracepoint
     - [riscv64] Fix do_notify_resume / do_work_pending prototype
     - loop: do not enforce max_loop hard limit by (new) default
     - dm thin metadata: Fix ABBA deadlock by resetting dm_bufio_client
     - Revert "drm/amd/display: Do not set DRR on pipe commit"
     - btrfs: zoned: no longer count fresh BG region as zone unusable
     - ubifs: fix possible dereference after free
     - ublk: move ublk_cancel_dev() out of ub->mutex
     - scsi: core: Always send batch on reset or error handling command
     - tracing / synthetic: Disable events after testing in
       synth_event_gen_test_init()
     - dm-integrity: don't modify bio's immutable bio_vec in integrity_metadata()
     - pinctrl: starfive: jh7100: ignore disabled device tree nodes
     - [armhf] bus: ti-sysc: Flush posted write only after srst_udelay
     - lib/vsprintf: Fix %pfwf when current node refcount == 0
     - [x86] thunderbolt: Fix memory leak in margining_port_remove()
     - [arm64] KVM: arm64: vgic: Simplify kvm_vgic_destroy()
     - [arm64] KVM: arm64: vgic: Add a non-locking primitive for
       kvm_vgic_vcpu_destroy()
     - [arm64] KVM: arm64: vgic: Force vcpu vgic teardown on vcpu destroy
     - [x86] alternatives: Sync core before enabling interrupts
     - fuse: share lookup state between submount and its parent
     - wifi: cfg80211: fix CQM for non-range use
     - wifi: nl80211: fix deadlock in nl80211_set_cqm_rssi (6.6.x)
     - loop: deprecate autoloading callback loop_probe()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.71
     - ksmbd: replace one-element arrays with flexible-array members
     - ksmbd: set SMB2_SESSION_FLAG_ENCRYPT_DATA when enforcing data encryption
       for this share
     - ksmbd: use F_SETLK when unlocking a file
     - ksmbd: Fix resource leak in smb2_lock()
     - ksmbd: Convert to use sysfs_emit()/sysfs_emit_at() APIs
     - ksmbd: Implements sess->rpc_handle_list as xarray
     - ksmbd: fix typo, syncronous->synchronous
     - ksmbd: Remove duplicated codes
     - ksmbd: update Kconfig to note Kerberos support and fix indentation
     - ksmbd: Fix spelling mistake "excceed" -> "exceeded"
     - ksmbd: Fix parameter name and comment mismatch
     - ksmbd: remove unused is_char_allowed function
     - ksmbd: delete asynchronous work from list (CVE-2023-1193)
     - ksmbd: set NegotiateContextCount once instead of every inc
     - ksmbd: avoid duplicate negotiate ctx offset increments
     - ksmbd: remove unused compression negotiate ctx packing
     - fs: introduce lock_rename_child() helper
     - ksmbd: fix racy issue from using ->d_parent and ->d_name
     - ksmbd: fix uninitialized pointer read in ksmbd_vfs_rename()
     - ksmbd: fix uninitialized pointer read in smb2_create_link()
     - ksmbd: call putname after using the last component
     - ksmbd: fix posix_acls and acls dereferencing possible ERR_PTR()
     - ksmbd: add mnt_want_write to ksmbd vfs functions
     - ksmbd: remove unused ksmbd_tree_conn_share function
     - ksmbd: use kzalloc() instead of __GFP_ZERO
     - ksmbd: return a literal instead of 'err' in ksmbd_vfs_kern_path_locked()
     - ksmbd: Change the return value of ksmbd_vfs_query_maximal_access to void
     - ksmbd: use kvzalloc instead of kvmalloc
     - ksmbd: Replace the ternary conditional operator with min()
     - ksmbd: Use struct_size() helper in ksmbd_negotiate_smb_dialect()
     - ksmbd: Replace one-element array with flexible-array member
     - ksmbd: Fix unsigned expression compared with zero
     - ksmbd: check if a mount point is crossed during path lookup
     - ksmbd: switch to use kmemdup_nul() helper
     - ksmbd: add support for read compound
     - ksmbd: fix wrong interim response on compound
     - ksmbd: fix `force create mode' and `force directory mode'
     - ksmbd: Fix one kernel-doc comment
     - ksmbd: add missing calling smb2_set_err_rsp() on error
     - ksmbd: remove experimental warning
     - ksmbd: remove unneeded mark_inode_dirty in set_info_sec()
     - ksmbd: fix passing freed memory 'aux_payload_buf'
     - ksmbd: return invalid parameter error response if smb2 request is invalid
     - ksmbd: check iov vector index in ksmbd_conn_write()
     - ksmbd: fix race condition with fp
     - ksmbd: fix race condition from parallel smb2 logoff requests
     - ksmbd: fix race condition from parallel smb2 lock requests
     - ksmbd: fix race condition between tree conn lookup and disconnect
     - ksmbd: fix wrong error response status by using set_smb2_rsp_status()
     - ksmbd: fix Null pointer dereferences in ksmbd_update_fstate()
     - ksmbd: fix potential double free on smb2_read_pipe() error path
     - ksmbd: Remove unused field in ksmbd_user struct
     - ksmbd: reorganize ksmbd_iov_pin_rsp()
     - ksmbd: fix kernel-doc comment of ksmbd_vfs_setxattr()
     - ksmbd: fix recursive locking in vfs helpers
     - ksmbd: fix missing RDMA-capable flag for IPoIB device in
       ksmbd_rdma_capable_netdev()
     - ksmbd: add support for surrogate pair conversion
     - ksmbd: no need to wait for binded connection termination at logoff
     - ksmbd: fix kernel-doc comment of ksmbd_vfs_kern_path_locked()
     - ksmbd: prevent memory leak on error return
     - ksmbd: fix possible deadlock in smb2_open
     - ksmbd: separately allocate ci per dentry
     - ksmbd: move oplock handling after unlock parent dir
     - ksmbd: release interim response after sending status pending response
     - ksmbd: move setting SMB2_FLAGS_ASYNC_COMMAND and AsyncId
     - ksmbd: don't update ->op_state as OPLOCK_STATE_NONE on error
     - ksmbd: set epoch in create context v2 lease
     - ksmbd: set v2 lease capability
     - ksmbd: downgrade RWH lease caching state to RH for directory
     - ksmbd: send v2 lease break notification for directory
     - ksmbd: lazy v2 lease break on smb2_write()
     - ksmbd: avoid duplicate opinfo_put() call on error of
       smb21_lease_break_ack()
     - ksmbd: fix wrong allocation size update in smb2_open()
     - spi: Introduce spi_get_device_match_data() helper
     - iio: imu: adis16475: add spi_device_id table
     - nfsd: separate nfsd_last_thread() from nfsd_put()
     - nfsd: call nfsd_last_thread() before final nfsd_put()
     - linux/export: Ensure natural alignment of kcrctab array
     - spi: Reintroduce spi_set_cs_timing()
     - spi: Add APIs in spi core to set/get spi->chip_select and spi->cs_gpiod
     - block: renumber QUEUE_FLAG_HW_WC
     - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-22705)
     - mm/filemap: avoid buffered read/write race to read inconsistent data
     - mm: migrate high-order folios in swap cache correctly
     - mm/memory-failure: cast index to loff_t before shifting it
     - mm/memory-failure: check the mapcount of the precise page
     - ring-buffer: Fix wake ups when buffer_percent is set to 100
     - tracing: Fix blocked reader of snapshot buffer
     - ring-buffer: Remove useless update to write_stamp in rb_try_to_discard()
     - ring-buffer: Fix slowpath of interrupted event
     - NFSD: fix possible oops when nfsd/pool_stats is closed.
     - spi: Constify spi parameters of chip select APIs
     - device property: Allow const parameter to dev_fwnode()
     - kallsyms: Make module_kallsyms_on_each_symbol generally available
     - tracing/kprobes: Fix symbol counting logic by looking at modules as well
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.72
     - keys, dns: Fix missing size check of V1 server-list header
     - block: Don't invalidate pagecache for invalid falloc modes
     - ALSA: hda/realtek: enable SND_PCI_QUIRK for hp pavilion 14-ec1xxx series
     - ALSA: hda/realtek: fix mute/micmute LEDs for a HP ZBook
     - ALSA: hda/realtek: Fix mute and mic-mute LEDs for HP ProBook 440 G6
     - mptcp: prevent tcp diag from closing listener subflows
     - Revert "PCI/ASPM: Remove pcie_aspm_pm_state_change()"
     - [x86] drm/mgag200: Fix gamma lut not initialized for G200ER, G200EV,
       G200SE
     - cifs: cifs_chan_is_iface_active should be called with chan_lock held
     - cifs: do not depend on release_iface for maintaining iface_list
     - [x86] KVM: x86/pmu: fix masking logic for MSR_CORE_PERF_GLOBAL_CTRL
     - wifi: iwlwifi: pcie: don't synchronize IRQs from IRQ (Closes: #1058887)
     - [arm64] drm/bridge: ti-sn65dsi86: Never store more than msg->size bytes in
       AUX xfer
     - netfilter: use skb_ip_totlen and iph_totlen
     - netfilter: nf_tables: set transport offset from mac header for
       netdev/egress
     - nfc: llcp_core: Hold a ref to llcp_local->dev when holding a ref to
       llcp_local
     - [x86] drm/i915/dp: Fix passing the correct DPCD_REV for
       drm_dp_set_phy_test_pattern
     - ice: Fix link_down_on_close message
     - ice: Shut down VSI with "link-down-on-close" enabled
     - i40e: Fix filter input checks to prevent config with invalid values
     - igc: Report VLAN EtherType matching back to user
     - igc: Check VLAN TCI mask
     - igc: Check VLAN EtherType mask
     - net: sched: em_text: fix possible memory leak in em_text_destroy()
     - r8169: Fix PCI error on system resume
     - can: raw: add support for SO_MARK
     - net-timestamp: extend SOF_TIMESTAMPING_OPT_ID to HW timestamps
     - net: annotate data-races around sk->sk_tsflags
     - net: annotate data-races around sk->sk_bind_phc
     - net: Implement missing getsockopt(SO_TIMESTAMPING_NEW)
     - [armhf] sun9i: smp: Fix array-index-out-of-bounds read in
       sunxi_mc_smp_init
     - sfc: fix a double-free bug in efx_probe_filters
     - [arm64] net: bcmgenet: Fix FCS generation for fragmented skbuffs
     - netfilter: nft_immediate: drop chain reference counter on error
     - net: Save and restore msg_namelen in sock_sendmsg
     - i40e: fix use-after-free in i40e_aqc_add_filters()
     - [arm64] ASoC: meson: g12a-toacodec: Validate written enum values
     - [arm64] ASoC: meson: g12a-tohdmitx: Validate written enum values
     - [arm64] ASoC: meson: g12a-toacodec: Fix event generation
     - [arm64] ASoC: meson: g12a-tohdmitx: Fix event generation for S/PDIF mux
     - i40e: Restore VF MSI-X state during PCI reset
     - igc: Fix hicredit calculation
     - net/qla3xxx: fix potential memleak in ql_alloc_buffer_queues
     - net/smc: fix invalid link access in dumping SMC-R connections
     - asix: Add check for usbnet_get_endpoints
     - bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters()
     - net: Implement missing SO_TIMESTAMPING_NEW cmsg support
     - cpu/SMT: Create topology_smt_thread_allowed()
     - cpu/SMT: Make SMT control more robust against enumeration failures
     - srcu: Fix callbacks acceleration mishandling
     - [x86] bpf, x64: Fix tailcall infinite loop
     - [x86] bpf, x86: Simplify the parsing logic of structure parameters
     - [x86] bpf, x86: save/restore regs with BPF_DW size
     - net: Declare MSG_SPLICE_PAGES internal sendmsg() flag
     - udp: Convert udp_sendpage() to use MSG_SPLICE_PAGES
     - splice, net: Add a splice_eof op to file-ops and socket-ops
     - ipv4, ipv6: Use splice_eof() to flush
     - udp: introduce udp->udp_flags
     - udp: move udp->no_check6_tx to udp->udp_flags
     - udp: move udp->no_check6_rx to udp->udp_flags
     - udp: move udp->gro_enabled to udp->udp_flags
     - udp: move udp->accept_udp_{l4|fraglist} to udp->udp_flags
     - udp: lockless UDP_ENCAP_L2TPINUDP / UDP_GRO
     - udp: annotate data-races around udp->encap_type
     - wifi: iwlwifi: yoyo: swap cdb and jacket bits values
     - [arm64] dts: qcom: sdm845: align RPMh regulator nodes with bindings
     - [arm64] dts: qcom: sdm845: Fix PSCI power domain names
     - bpf: decouple prune and jump points
     - bpf: remove unnecessary prune and jump points
     - bpf: Remove unused insn_cnt argument from visit_[func_call_]insn()
     - bpf: clean up visit_insn()'s instruction processing
     - bpf: Support new 32bit offset jmp instruction
     - bpf: handle ldimm64 properly in check_cfg()
     - bpf: fix precision backtracking instruction iteration
     - blk-mq: make sure active queue usage is held for bio_integrity_prep()
     - net/mlx5: Increase size of irq name buffer
     - [s390x] mm: add missing arch_set_page_dat() call to vmem_crst_alloc()
     - [s390x] cpumf: support user space events for counting
     - f2fs: clean up i_compress_flag and i_compress_level usage
     - f2fs: convert to use bitmap API
     - f2fs: assign default compression level
     - f2fs: set the default compress_level on ioctl
     - ext4: convert move_extent_per_page() to use folios
     - khugepage: replace try_to_release_page() with filemap_release_folio()
     - memory-failure: convert truncate_error_page() to use folio
     - mm: merge folio_has_private()/filemap_release_folio() call pairs
     - mm, netfs, fscache: stop read optimisation when folio removed from
       pagecache
     - filemap: add a per-mapping stable writes flag
     - block: update the stable_writes flag in bdev_add
     - smb: client: fix missing mode bits for SMB symlinks
     - net: dpaa2-eth: rearrange variable in dpaa2_eth_get_ethtool_stats
     - dpaa2-eth: recycle the RX buffer only after all processing done
     - ethtool: don't propagate EOPNOTSUPP from dumps
     - bpf, sockmap: af_unix stream sockets need to hold ref for pair sock
     - [arm64] firmware: arm_scmi: Fix frequency truncation by promoting
       multiplier type
     - ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7
     - genirq/affinity: Remove the 'firstvec' parameter from
       irq_build_affinity_masks
     - genirq/affinity: Pass affinity managed mask array to
       irq_build_affinity_masks
     - genirq/affinity: Don't pass irq_affinity_desc array to
       irq_build_affinity_masks
     - genirq/affinity: Rename irq_build_affinity_masks as group_cpus_evenly
     - genirq/affinity: Move group_cpus_evenly() into lib/
     - lib/group_cpus.c: avoid acquiring cpu hotplug lock in group_cpus_evenly
     - mm/memory_hotplug: add missing mem_hotplug_lock
     - mm/memory_hotplug: fix error handling in add_memory_resource()
     - net: sched: call tcf_ct_params_free to free params in tcf_ct_init
     - netfilter: flowtable: allow unidirectional rules
     - netfilter: flowtable: cache info of last offload
     - net/sched: act_ct: offload UDP NEW connections
     - net/sched: act_ct: Fix promotion of offloaded unreplied tuple
     - netfilter: flowtable: GC pushes back packets to classic path
     - net/sched: act_ct: Take per-cb reference to tcf_ct_flow_table
     - btrfs: fix qgroup_free_reserved_data int overflow
     - btrfs: mark the len field in struct btrfs_ordered_sum as unsigned
     - ring-buffer: Fix 32-bit rb_time_read() race with rb_time_cmpxchg()
     - firewire: ohci: suppress unexpected system reboot in AMD Ryzen machines
       and ASM108x/VT630x PCIe cards
     - [x86] kprobes: fix incorrect return address calculation in
       kprobe_emulate_call_indirect
     - mm: fix unmap_mapping_range high bits shift bug
     - drm/amdgpu: skip gpu_info fw loading on navi12
     - drm/amd/display: add nv12 bounding box
     - mmc: rpmb: fixes pause retune on all RPMB partitions.
     - mmc: core: Cancel delayed work before releasing host
     - genirq/affinity: Only build SMP-only helper functions on SMP kernels
     - f2fs: compress: fix to assign compress_level for lz4 correctly
     - net/sched: act_ct: additional checks for outdated flows
     - net/sched: act_ct: Always fill offloading tuple iifidx
     - bpf: Fix a verifier bug due to incorrect branch offset comparison with
       cpu=v4
     - bpf: syzkaller found null ptr deref in unix_bpf proto add
     - smb3: Replace smb2pdu 1-element arrays with flex-arrays
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.73
     - Revert "nfsd: call nfsd_last_thread() before final nfsd_put()"
     - Revert "nfsd: separate nfsd_last_thread() from nfsd_put()"
     - ipv6: remove max_size check inline with ipv4 (CVE-2023-52340)
     - cifs: fix flushing folio regression for 6.1 backport (Closes: #1060005)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.74
     - f2fs: explicitly null-terminate the xattr list
     - ALSA: hda - Fix speaker and headset mic pin config for CHUWI CoreBook XPro
     - mptcp: fix uninit-value in mptcp_incoming_options
     - wifi: cfg80211: lock wiphy mutex for rfkill poll
     - wifi: avoid offset calculation on NULL pointer
     - wifi: mac80211: handle 320 MHz in ieee80211_ht_cap_ie_to_sta_ht_cap
     - debugfs: fix automount d_fsdata usage
     - ALSA: hda: intel-nhlt: Ignore vbps when looking for DMIC 32 bps format
     - nvme-core: fix a memory leak in nvme_ns_info_from_identify()
     - drm/amd/display: update dcn315 lpddr pstate latency
     - drm/amdgpu: Fix cat debugfs amdgpu_regs_didt causes kernel null pointer
     - blk-mq: don't count completed flush data request as inflight in case of
       quiesce
     - nvme-core: check for too small lba shift
     - [x86] ASoC: Intel: Skylake: Fix mem leak in few functions
     - [x86] ASoC: Intel: Skylake: mem leak in skl register function
     - ASoC: rt5650: add mutex to avoid the jack detection failure
     - [x86] ASoC: Intel: skl_hda_dsp_generic: Drop HDMI routes when HDMI is not
       available
     - nouveau/tu102: flush all pdbs on vmm flush
     - [x86] ASoC: amd: yc: Add DMI entry to support System76 Pangolin 13
     - [x86] ASoC: hdac_hda: Conditionally register dais for HDMI and Analog
     - net/tg3: fix race condition in tg3_reset_task()
     - ASoC: da7219: Support low DC impedance headset
     - ASoC: ops: add correct range check for limiting volume
     - nvme: introduce helper function to get ctrl state
     - nvme: prevent potential spectre v1 gadget
     - [arm64] dts: rockchip: Fix PCI node addresses on rk3399-gru
     - drm/amdgpu: Add NULL checks for function pointers
     - [armhf] drm/exynos: fix a potential error pointer dereference
     - [armhf] drm/exynos: fix a wrong error checking
     - [x86] hwmon: (corsair-psu) Fix probe when built-in
     - [arm64] clk: rockchip: rk3568: Add PLL rate for 292.5MHz
     - [armhf] clk: rockchip: rk3128: Fix HCLK_OTG gate register
     - jbd2: correct the printing of write_flags in jbd2_write_superblock()
     - jbd2: increase the journal IO's priority
     - drm/crtc: Fix uninit-value bug in drm_mode_setcrtc
     - neighbour: Don't let neigh_forced_gc() disable preemption for long
     - [x86] platform/x86: intel-vbtn: Fix missing tablet-mode-switch events
     - jbd2: fix soft lockup in journal_finish_inode_data_buffers()
     - tracing: Have large events show up as '[LINE TOO BIG]' instead of nothing
     - tracing: Add size check when printing trace_marker output
     - tracing: Fix uaf issue when open the hist or hist_debug file
     - ring-buffer: Do not record in NMI if the arch does not support cmpxchg in
       NMI
     - Input: psmouse - enable Synaptics InterTouch for ThinkPad L14 G1
     - [arm64] reset: hisilicon: hi6220: fix Wvoid-pointer-to-enum-cast warning
     - Input: atkbd - skip ATKBD_CMD_GETID in translated mode
     - Input: i8042 - add nomux quirk for Acer P459-G2-M
     - [s390x] scm: fix virtual vs physical address confusion
     - wifi: iwlwifi: pcie: avoid a NULL pointer dereference
     - Input: xpad - add Razer Wolverine V2 support
     - HID: nintendo: fix initializer element is not constant error
     - [x86] platform/x86: thinkpad_acpi: fix for incorrect fan reporting on some
       ThinkPad systems
     - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for the Medion Lifetab S10346
     - [x86] ASoC: Intel: bytcr_rt5640: Add new swapped-speakers quirk
     - ALSA: hda/realtek: Add quirks for ASUS Zenbook 2022 Models
     - dm audit: fix Kconfig so DM_AUDIT depends on BLK_DEV_DM
     - HID: nintendo: Prevent divide-by-zero on code
     - smb: client: fix potential OOB in smb2_dump_detail() (CVE-2023-6610)
     - [arm64,armhf] i2c: rk3x: fix potential spinlock recursion on poll
     - drm/amd/display: get dprefclk ss info from integration info table
     - ida: Fix crash in ida_free when the bitmap is empty (CVE-2023-6915)
     - virtio_blk: fix snprintf truncation compiler warning
     - net: qrtr: ns: Return 0 if server port is not present
     - [armhf] sun9i: smp: fix return code check of of_property_match_string
     - drm/crtc: fix uninitialized variable use
     - ALSA: hda/realtek: Fix mute and mic-mute LEDs for HP Envy X360 13-ay0xxx
     - ACPI: resource: Add another DMI match for the TongFang GMxXGxx
     - [x86] ASoC: SOF: Intel: hda-codec: Delay the codec device registration
     - btf, scripts: Exclude Rust CUs with pahole
     - bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to
       pahole flags for v1.25
     - ksmbd: don't allow O_TRUNC open on read-only share
     - ksmbd: free ppace array on error in parse_dacl
     - Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d"
     - [arm*] binder: use EPOLLERR from eventpoll.h
     - [arm*] binder: fix use-after-free in shinker's callback
     - [arm*] binder: fix trivial typo of binder_free_buf_locked()
     - [arm*] binder: fix comment on binder_alloc_new_buf() return value
     - uio: Fix use-after-free in uio_open
     - parport: parport_serial: Add Brainboxes BAR details
     - parport: parport_serial: Add Brainboxes device IDs and geometry
     - PCI: Add ACS quirk for more Zhaoxin Root Ports
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.75
     - [x86] lib: Fix overflow when counting digits
     - [x86] mce/inject: Clear test status value
     - [arm64] EDAC/thunderx: Fix possible out-of-bounds string access
     - [powerpc*] remove checks for binutils older than 2.25
     - [powerpc*] add crtsavres.o to always-y instead of extra-y
     - [powerpc*] 44x: select I2C for CURRITUCK
     - [powerpc*] pseries/memhp: Fix access beyond end of drmem array
     - [powerpc*] powernv: Add a null pointer check to scom_debug_init_one()
     - [powerpc*] powernv: Add a null pointer check in opal_event_init()
     - [powerpc*] powernv: Add a null pointer check in opal_powercap_init()
     - [powerpc*] imc-pmu: Add a null pointer check in update_events_in_group()
     - ACPI: video: check for error while searching for backlight device parent
     - ACPI: LPIT: Avoid u32 multiplication overflow
     - KEYS: encrypted: Add check for strsep
     - [x86] platform/x86/intel/vsec: Enhance and Export intel_vsec_add_aux()
     - [x86] platform/x86/intel/vsec: Support private data
     - [x86] platform/x86/intel/vsec: Use mutex for ida_alloc() and ida_free()
     - [x86] platform/x86/intel/vsec: Fix xa_alloc memory leak
     - of: Add of_property_present() helper
     - cpufreq: Use of_property_present() for testing DT property presence
     - cpufreq: scmi: process the result of devm_of_clk_add_hw_provider()
     - calipso: fix memory leak in netlbl_calipso_add_pass()
     - efivarfs: force RO when remounting if SetVariable is not supported
     - efivarfs: Free s_fs_info on unmount
     - ACPI: LPSS: Fix the fractional clock divider flags
     - ACPI: extlog: Clear Extended Error Log status when RAS_CEC handled the
       error
     - mtd: Fix gluebi NULL pointer dereference caused by ftl notifier
     - selinux: Fix error priority for bind with AF_UNSPEC on PF_INET6 socket
     - crypto: virtio - Handle dataq logic with tasklet
     - [x86] crypto: ccp - fix memleak in ccp_init_dm_workarea
     - crypto: af_alg - Disallow multiple in-flight AIO requests
     - [arm64] crypto: safexcel - Add error handling for dma_map_sg() calls
     - crypto: hisilicon/qm - save capability registers in qm init process
     - crypto: hisilicon/zip - add zip comp high perf mode configuration
     - crypto: hisilicon/qm - add a function to set qm algs
     - crypto: hisilicon/hpre - save capability registers in probe process
     - crypto: hisilicon/sec2 - save capability registers in probe process
     - crypto: hisilicon/zip - save capability registers in probe process
     - pstore: ram_core: fix possible overflow in persistent_ram_init_ecc()
     - erofs: fix memory leak on short-lived bounced pages
     - fs: indicate request originates from old mount API
     - gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump
     - crypto: virtio - Wait for tasklet to complete on device remove
     - crypto: scomp - fix req->dst buffer overflow
     - csky: fix arch_jump_label_transform_static override
     - blocklayoutdriver: Fix reference leak of pnfs_device_node
     - NFSv4.1/pnfs: Ensure we handle the error NFS4ERR_RETURNCONFLICT
     - SUNRPC: fix _xprt_switch_find_current_entry logic
     - pNFS: Fix the pnfs block driver's calculation of layoutget size
     - wifi: plfxlc: check for allocation failure in plfxlc_usb_wreq_async()
     - wifi: rtw88: fix RX filter in FIF_ALLMULTI flag
     - bpf, lpm: Fix check prefixlen before walking trie
     - bpf: Add crosstask check to __bpf_get_stack
     - wifi: ath11k: Defer on rproc_get failure
     - wifi: libertas: stop selecting wext
     - [armhf] net/ncsi: Fix netlink major/minor version numbers
     - [arm64] firmware: ti_sci: Fix an off-by-one in ti_sci_debugfs_create()
     - [arm64] firmware: meson_sm: populate platform devices from sm device tree
       data
     - wifi: rtlwifi: rtl8821ae: phy: fix an undefined bitwise shift behavior
     - md: synchronize flush io with array reconfiguration
     - bpf: enforce precision of R0 on callback return
     - rcu-tasks: Provide rcu_trace_implies_rcu_gp()
     - bpf: add percpu stats for bpf_map elements insertions/deletions
     - bpf: Add map and need_defer parameters to .map_fd_put_ptr()
     - bpf: Defer the free of inner map when necessary
     - bpf: fix check for attempt to corrupt spilled pointer
     - scsi: fnic: Return error if vmalloc() failed
     - [arm64] dts: qcom: qrb5165-rb5: correct LED panic indicator
     - [arm64] dts: qcom: sdm845-db845c: correct LED panic indicator
     - bpf: Fix verification of indirect var-off stack access
     - dt-bindings: media: mediatek: mdp3: correct RDMA and WROT node with
       generic names
     - wifi: mt76: mt7921: fix country count limitation for CLC
     - block: Set memalloc_noio to false on device_add_disk() error path
     - [arm64] scsi: hisi_sas: Replace with standard error code return value
     - [arm64] scsi: hisi_sas: Rollback some operations if FLR failed
     - [arm64] scsi: hisi_sas: Correct the number of global debugfs registers
     - [armhf] dts: stm32: don't mix SCMI and non-SCMI board compatibles
     - ipmr: support IP_PKTINFO on cache report IGMP msg
     - virtio/vsock: fix logic which reduces credit update messages
     - dma-mapping: clear dev->dma_mem to NULL after freeing it
     - [arm64] dts: qcom: sm8150-hdk: fix SS USB regulators
     - block: add check of 'minors' and 'first_minor' in device_add_disk()
     - wifi: rtlwifi: add calculate_bit_shift()
     - wifi: rtlwifi: rtl8188ee: phy: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192c: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192cu: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192ce: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192de: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192ee: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192se: using calculate_bit_shift()
     - wifi: iwlwifi: mvm: set siso/mimo chains to 1 in FW SMPS request
     - wifi: iwlwifi: mvm: send TX path flush in rfkill
     - netfilter: nf_tables: mark newset as dead on transaction abort
     - Bluetooth: Fix bogus check for re-auth no supported with non-ssp
     - Bluetooth: btmtkuart: fix recv_buf() return value
     - block: make BLK_DEF_MAX_SECTORS unsigned
     - null_blk: don't cap max_hw_sectors to BLK_DEF_MAX_SECTORS
     - bpf: sockmap, fix proto update hook to avoid dup calls
     - sctp: support MSG_ERRQUEUE flag in recvmsg()
     - sctp: fix busy polling
     - net/sched: act_ct: fix skb leak and crash on ooo frags
     - mlxbf_gige: Fix intermittent no ip issue
     - mlxbf_gige: Enable the GigE port in mlxbf_gige_open
     - ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()
     - [armhf] Revert "drm/omapdrm: Annotate dma-fence critical section in commit
       path"
     - [arm64,armhf] drm/panfrost: Really power off GPU cores in
       panfrost_gpu_power_off()
     - RDMA/usnic: Silence uninitialized symbol smatch warnings
     - [arm64] RDMA/hns: Fix inappropriate err code for unsupported operations
     - drm/nouveau/fence:: fix warning directly dereferencing a rcu pointer
     - drm/bridge: tpd12s015: Drop buggy __exit annotation for remove function
     - drm/tilcdc: Fix irq free on unload
     - media: pvrusb2: fix use after free on context disconnection
     - media: mtk-jpegdec: export jpeg decoder functions
     - media: mtk-jpeg: Remove cancel worker in mtk_jpeg_remove to avoid the
       crash of multi-core JPEG devices
     - media: verisilicon: Hook the (TRY_)DECODER_CMD stateless ioctls
     - media: rkvdec: Hook the (TRY_)DECODER_CMD stateless ioctls
     - drm/bridge: Fix typo in post_disable() description
     - f2fs: fix to avoid dirent corruption
     - drm/radeon/r600_cs: Fix possible int overflows in r600_cs_check_reg()
     - drm/radeon/r100: Fix integer overflow issues in r100_cs_track_check()
     - drm/radeon: check return value of radeon_ring_lock()
     - [arm64] drm/msm/mdp4: flush vblank event on disable
     - [arm64] drm/msm/dsi: Use pm_runtime_resume_and_get to prevent refcnt leaks
     - drm/drv: propagate errors from drm_modeset_register_all()
     - [x86] ASoC: Intel: glk_rt5682_max98357a: fix board id mismatch
     - [arm64,armhf] drm/panfrost: Ignore core_mask for poweroff and disable
       PWRTRANS irq
     - drm/radeon: check the alloc_workqueue return value in radeon_crtc_init()
     - drm/radeon/dpm: fix a memleak in sumo_parse_power_table
     - drm/radeon/trinity_dpm: fix a memleak in trinity_parse_power_table
     - drm/bridge: cdns-mhdp8546: Fix use of uninitialized variable
     - drm/bridge: tc358767: Fix return value on error case
     - media: cx231xx: fix a memleak in cx231xx_init_isoc
     - [arm64] RDMA/hns: Fix memory leak in free_mr_init()
     - drm/panel: st7701: Fix AVCL calculation
     - f2fs: fix to wait on block writeback for post_read case
     - f2fs: fix to check compress file in f2fs_move_file_range()
     - f2fs: fix to update iostat correctly in f2fs_filemap_fault()
     - media: dvbdev: drop refcount on error path in dvb_device_open()
     - media: dvb-frontends: m88ds3103: Fix a memory leak in an error handling
       path of m88ds3103_probe()
     - [arm64] drm/msm/dpu: Set input_sel bit for INTF
     - [arm64] drm/msm/dpu: Drop enable and frame_count parameters from
       dpu_hw_setup_misr()
     - drm/amdgpu/debugfs: fix error code when smc register accessors are NULL
     - drm/amd/pm: fix a double-free in si_dpm_init
     - drivers/amd/pm: fix a use-after-free in kv_parse_power_table
     - gpu/drm/radeon: fix two memleaks in radeon_vm_init
     - drm/amd/pm: fix a double-free in amdgpu_parse_extended_power_table
     - f2fs: fix to check return value of f2fs_recover_xattr_data
     - dt-bindings: clock: Update the videocc resets for sm8150
     - [arm64] drivers: clk: zynqmp: calculate closest mux rate
     - [arm64] drivers: clk: zynqmp: update divider round rate logic
     - watchdog: set cdev owner before adding
     - watchdog/hpwdt: Only claim UNKNOWN NMI if from iLO
     - watchdog: bcm2835_wdt: Fix WDIOC_SETTIMEOUT handling
     - watchdog: rti_wdt: Drop runtime pm reference count when watchdog is unused
     - [arm64] clk: si5341: fix an error code problem in
       si5341_output_clk_set_rate
     - accel/habanalabs: fix information leak in sec_attest_info()
       (CVE-2023-50431)
     - clk: fixed-rate: fix clk_hw_register_fixed_rate_with_accuracy_parent_hw
     - ASoC: rt5645: Drop double EF20 entry from dmi_platform_data[]
     - ALSA: scarlett2: Add missing error check to scarlett2_config_save()
     - ALSA: scarlett2: Add missing error check to scarlett2_usb_set_config()
     - ALSA: scarlett2: Allow passing any output to line_out_remap()
     - ALSA: scarlett2: Add missing error checks to *_ctl_get()
     - ALSA: scarlett2: Add clamp() in scarlett2_mixer_ctl_put()
     - IB/iser: Prevent invalidating wrong MR
     - drm/amd/pm/smu7: fix a memleak in smu7_hwmgr_backend_init
     - ksmbd: validate the zero field of packet header
     - of: Fix double free in of_parse_phandle_with_args_map
     - keys, dns: Fix size check of V1 server-list header
     - [arm*] binder: fix async space check for 0-sized buffers
     - [arm*] binder: fix unused alloc->free_async_space
     - [mipel*] smp: Call rcutree_report_cpu_starting() earlier
     - Input: atkbd - use ab83 as id when skipping the getid command
     - xen-netback: don't produce zero-size SKB frags (CVE-2023-46838)
     - [arm*] binder: fix race between mmput() and do_exit()
     - [arm64,armhf] clocksource/drivers/timer-ti-dm: Fix make W=n kerneldoc
       warnings
     - [powerpc*] 64s: Increase default stack size to 32KB
     - tick-sched: Fix idle and iowait sleeptime accounting vs CPU hotplug
     - [armhf] usb: phy: mxs: remove CONFIG_USB_OTG condition for
       mxs_phy_is_otg_host()
     - [arm64,armhf] usb: dwc: ep0: Update request status in
       dwc3_ep0_stall_restart
     - [arm64,armhf] Revert "usb: dwc3: Soft reset phy on probe for host"
     - [arm64,armhf] Revert "usb: dwc3: don't reset device side if dwc3 was
       configured as host-only"
     - [arm64,armhf] usb: chipidea: wait controller resume finished for wakeup
       irq
     - Revert "usb: typec: class: fix typec_altmode_put_partner to put plugs"
     - usb: typec: class: fix typec_altmode_put_partner to put plugs
     - usb: mon: Fix atomicity violation in mon_bin_vma_fault
     - serial: core: fix sanitizing check for RTS settings
     - serial: core: make sure RS485 cannot be enabled when it is not supported
     - [arm64,armhf] serial: 8250_bcm2835aux: Restore clock error handling
     - serial: core, imx: do not set RS485 enabled if it is not supported
     - [arm64,armhf] serial: imx: Ensure that imx_uart_rs485_config() is called
       with enabled clock
     - serial: 8250_exar: Set missing rs485_supported flag
     - [armhf] serial: omap: do not override settings for RS485 support
     - drm/vmwgfx: Fix possible invalid drm gem put calls
     - drm/vmwgfx: Keep a gem reference to user bos in surfaces (CVE-2023-5633)
     - ALSA: oxygen: Fix right channel of capture volume mixer
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15s-fq2xxx
     - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on HP
       ZBook
     - ALSA: hda/realtek: Enable headset mic on Lenovo M70 Gen5
     - ksmbd: validate mech token in session setup
     - ksmbd: fix UAF issue in ksmbd_tcp_new_connection()
     - ksmbd: only v2 leases handle the directory
     - io_uring/rw: ensure io->bytes_done is always initialized
     - fbdev: flush deferred work in fb_deferred_io_fsync()
     - fbdev: flush deferred IO before closing
     - scsi: ufs: core: Simplify power management during async scan
     - scsi: target: core: add missing file_{start,end}_write()
     - scsi: mpi3mr: Refresh sdev queue depth after controller reset
     - scsi: mpi3mr: Block PEL Enable Command on Controller Reset and
       Unrecoverable State
     - drm/amd: Enable PCIe PME from D3
     - block: add check that partition length needs to be aligned with block size
     - block: Fix iterating over an empty bio with bio_for_each_folio_all
     - netfilter: nf_tables: check if catch-all set element is active in next
       generation (CVE-2024-1085)
     - pwm: Fix out-of-bounds access in of_pwm_single_xlate()
     - md/raid1: Use blk_opf_t for read and write operations
     - rootfs: Fix support for rootfstype= when root= is given
     - Bluetooth: Fix atomicity violation in {min,max}_key_size_set
     - bpf: Fix re-attachment branch in bpf_tracing_prog_attach
     - [arm64] iommu/arm-smmu-qcom: Add missing GMU entry to match table
     - iommu/dma: Trace bounce buffer usage when mapping buffers
     - wifi: mt76: fix broken precal loading from MTD for mt7915
     - wifi: rtlwifi: Remove bogus and dangerous ASPM disable/enable code
     - wifi: rtlwifi: Convert LNKCTL change to PCIe cap RMW accessors
     - wifi: mwifiex: configure BSSID consistently when starting AP
     - Revert "net: rtnetlink: Enslave device before bringing it up"
     - cxl/port: Fix decoder initialization when nr_targets > interleave_ways
     - PCI/P2PDMA: Remove reference to pci_p2pdma_map_sg()
     - [x86] kvm: Do not try to disable kvmclock if it was not enabled
     - [arm64] KVM: arm64: vgic-v4: Restore pending state on host userspace write
     - [arm64] KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache
     - iio: adc: ad7091r: Pass iio_dev to event handler
     - HID: wacom: Correct behavior when processing some confidence == false
       touches
     - mfd: syscon: Fix null pointer dereference in of_syscon_register()
     - [x86] mfd: intel-lpss: Fix the fractional clock divider flags
     - [mipsel] Fix incorrect max_low_pfn adjustment
     - [arm64] power: supply: cw2015: correct time_to_empty units in sysfs
     - [arm64] serial: 8250: omap: Don't skip resource freeing if
       pm_runtime_resume_and_get() failed
     - libapi: Add missing linux/types.h header to get the __u64 type on io.h
     - base/node.c: initialize the accessor list before registering
     - acpi: property: Let args be NULL in __acpi_node_get_property_reference
     - software node: Let args be NULL in software_node_get_reference_args
     - serial: imx: fix tx statemachine deadlock
     - iio: adc: ad9467: fix reset gpio handling
     - iio: adc: ad9467: don't ignore error codes
     - iio: adc: ad9467: fix scale setting
     - perf header: Fix one memory leakage in perf_event__fprintf_event_update()
     - perf hisi-ptt: Fix one memory leakage in hisi_ptt_process_auxtrace_event()
     - perf genelf: Set ELF program header addresses properly
     - tty: change tty_write_lock()'s ndelay parameter to bool
     - tty: early return from send_break() on TTY_DRIVER_HARDWARE_BREAK
     - tty: don't check for signal_pending() in send_break()
     - tty: use 'if' in send_break() instead of 'goto'
     - usb: cdc-acm: return correct error code on unsupported break
     - nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length
     - nvmet-tcp: fix a crash in nvmet_req_complete()
     - perf env: Avoid recursively taking env->bpf_progs.lock
     - cxl/region: fix x9 interleave typo
     - apparmor: avoid crash when parsed profile name is empty
     - [arm64,armhf] serial: imx: Correct clock error message in function probe()
     - nvmet: re-fix tracing strncpy() warning
     - nvme: trace: avoid memcpy overflow warning
     - nvmet-tcp: Fix the H2C expected PDU len calculation
     - [s390x] pci: fix max size calculation in zpci_memcpy_toio()
     - [arm64] net: ethernet: ti: am65-cpsw: Fix max mtu to fit ethernet frames
     - net: phy: micrel: populate .soft_reset for KSZ9131
     - mptcp: mptcp_parse_option() fix for MPTCPOPT_MP_JOIN
     - mptcp: strict validation before using mp_opt->hmac
     - mptcp: use OPTION_MPTCP_MPJ_SYNACK in subflow_finish_connect()
     - mptcp: use OPTION_MPTCP_MPJ_SYN in subflow_check_req()
     - mptcp: refine opt_mp_capable determination
     - block: ensure we hold a queue reference when using queue limits
     - udp: annotate data-races around up->pending
     - net: stmmac: ethtool: Fixed calltrace caused by unbalanced
       disable_irq_wake calls
     - bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS
     - mptcp: relax check on MPC passive fallback
     - netfilter: nf_tables: reject invalid set policy
     - netfilter: nft_limit: do not ignore unsupported flags
     - netfilter: nfnetlink_log: use proper helper for fetching physinif
     - netfilter: nf_queue: remove excess nf_bridge variable
     - netfilter: propagate net to nf_bridge_get_physindev
     - netfilter: bridge: replace physindev with physinif in nf_bridge_info
     - netfilter: nf_tables: do not allow mismatch field size and set key length
     - netfilter: nf_tables: skip dead set elements in netlink dump
     - netfilter: nf_tables: reject NFT_SET_CONCAT with not field length
       description
     - ipvs: avoid stat macros calls from preemptible context
     - kdb: Fix a potential buffer overflow in kdb_local()
     - ethtool: netlink: Add missing ethnl_ops_begin/complete
     - loop: fix the the direct I/O support check when used on top of block
       devices
     - ipv6: mcast: fix data-race in ipv6_mc_down / mld_ifc_work
     - [armhf] i2c: s3c24xx: fix read transfers in polling mode
     - [armhf] i2c: s3c24xx: fix transferring more than one message in polling
       mode
     - block: Remove special-casing of compound pages
     - Revert "KEYS: encrypted: Add check for strsep"
     - [arm64] dts: armada-3720-turris-mox: set irq type for RTC
     - Revert "Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d""
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.76
     - [arm64,armhf] usb: dwc3: gadget: Refactor EP0 forced stall/restart into a
       separate API
     - [arm64,armhf] usb: dwc3: gadget: Queue PM runtime idle on disconnect event
     - [arm64,armhf] usb: dwc3: gadget: Handle EP0 request dequeuing properly
     - [x86] Revert "nSVM: Check for reserved encodings of TLB_CONTROL in nested
       VMCB"
     - iio: adc: ad7091r: Set alert bit in config register
     - iio: adc: ad7091r: Allow users to configure device events
     - ext4: allow for the last group to be marked as trimmed
     - OPP: Pass rounded rate to _set_opp()
     - btrfs: sysfs: validate scrub_speed_max value
     - crypto: api - Disallow identical driver names
     - PM: hibernate: Enforce ordering during image compression/decompression
     - hwrng: core - Fix page fault dead lock on mmap-ed hwrng
     - [s390x] crypto: s390/aes - Fix buffer overread in CTR mode
     - [s390x] vfio-ap: unpin pages on gisc registration failure
     - PM / devfreq: Fix buffer overflow in trans_stat_show
     - media: imx355: Enable runtime PM before registering async sub-device
     - rpmsg: virtio: Free driver_override when rpmsg_remove()
     - media: ov9734: Enable runtime PM before registering async sub-device
     - [s390x] vfio-ap: always filter entire AP matrix
     - [s390x] vfio-ap: loop over the shadow APCB when filtering guest's AP
       configuration
     - [s390x] vfio-ap: let on_scan_complete() callback filter matrix and update
       guest's APCB
     - [mips*] Fix max_mapnr being uninitialized on early stages
     - bus: mhi: host: Add alignment check for event ring read pointer
     - bus: mhi: host: Drop chan lock before queuing buffers
     - bus: mhi: host: Add spinlock to protect WP access when queueing TREs
     - async: Split async_schedule_node_domain()
     - async: Introduce async_schedule_dev_nocall()
     - iio: adc: ad7091r: Enable internal vref if external vref is not supplied
     - dmaengine: fix NULL pointer in channel unregistration function
     - scsi: ufs: core: Remove the ufshcd_hba_exit() call from
       ufshcd_async_scan()
     - [arm64] dts: qcom: sc7180: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sdm845: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sm8150: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sc7280: fix usb_1 wakeup interrupt types
     - [arm64] dts: qcom: sdm845: fix USB DP/DM HS PHY interrupts
     - [arm64] dts: qcom: sm8150: fix USB DP/DM HS PHY interrupts
     - lsm: new security_file_ioctl_compat() hook
     - docs: kernel_abi.py: fix command injection
     - scripts/get_abi: fix source path leak
     - media: videobuf2-dma-sg: fix vmap callback
     - mmc: core: Use mrq.sbc in close-ended ffu
     - mmc: mmc_spi: remove custom DMA mapped buffers
     - media: mtk-jpeg: Fix use after free bug due to error path handling in
       mtk_jpeg_dec_device_run
     - [arm64] Rename ARM64_WORKAROUND_2966298
     - rtc: cmos: Use ACPI alarm for non-Intel x86 systems too
     - rtc: Adjust failure return code for cmos_set_alarm()
     - rtc: mc146818-lib: Adjust failure return code for mc146818_get_time()
     - rtc: Add support for configuring the UIP timeout for RTC reads
     - rtc: Extend timeout for waiting for UIP to clear to 1s
     - nouveau/vmm: don't set addr on the fail path to avoid warning
     - ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path
     - mm/rmap: fix misplaced parenthesis of a likely()
     - mm/sparsemem: fix race in accessing memory_section->usage
     - rename(): fix the locking of subdirectories
     - serial: sc16is7xx: improve regmap debugfs by using one regmap per port
     - serial: sc16is7xx: remove wasteful static buffer in
       sc16is7xx_regmap_name()
     - serial: sc16is7xx: remove global regmap from struct sc16is7xx_port
     - serial: sc16is7xx: remove unused line structure member
     - serial: sc16is7xx: change EFR lock to operate on each channels
     - serial: sc16is7xx: convert from _raw_ to _noinc_ regmap functions for FIFO
     - serial: sc16is7xx: fix invalid sc16is7xx_lines bitfield in case of probe
       error
     - serial: sc16is7xx: remove obsolete loop in sc16is7xx_port_irq()
     - serial: sc16is7xx: improve do/while loop in sc16is7xx_irq()
     - mm: page_alloc: unreserve highatomic page blocks before oom
     - ksmbd: set v2 lease version on lease upgrade
     - ksmbd: fix potential circular locking issue in smb2_set_ea()
     - ksmbd: don't increment epoch if current state and request state are same
     - ksmbd: send lease break notification on FILE_RENAME_INFORMATION
     - ksmbd: Add missing set_freezable() for freezable kthread
     - Revert "drm/amd: Enable PCIe PME from D3"
     - drm/amd/display: pbn_div need be updated for hotplug event
     - wifi: mac80211: fix potential sta-link leak
     - net/smc: fix illegal rmb_desc access in SMC-D connection dump
     - tcp: make sure init the accept_queue's spinlocks once
     - bnxt_en: Wait for FLR to complete during probe
     - vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING
     - llc: make llc_ui_sendmsg() more robust against bonding changes
     - llc: Drop support for ETH_P_TR_802_2.
     - udp: fix busy polling
     - net: fix removing a namespace with conflicting altnames
     - tun: fix missing dropped counter in tun_xdp_act
     - tun: add missing rx stats accounting in tun_xdp_act
     - net: micrel: Fix PTP frame parsing for lan8814
     - net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv
     - netfs, fscache: Prevent Oops in fscache_put_cache()
     - tracing: Ensure visibility when inserting an element into tracing_map
     - afs: Hide silly-rename files from userspace
     - tcp: Add memory barrier to tcp_push()
     - netlink: fix potential sleeping issue in mqueue_flush_file
     - ipv6: init the accept_queue's spinlocks in inet6_create
     - net/mlx5: DR, Use the right GVMI number for drop action
     - net/mlx5: DR, Can't go to uplink vport on RX rule
     - net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO
     - net/mlx5e: Allow software parsing when IPsec crypto is enabled
     - net/mlx5e: fix a double-free in arfs_create_groups
     - net/mlx5e: fix a potential double-free in fs_any_create_groups
     - rcu: Defer RCU kthreads wakeup when CPU is dying
     - netfilter: nft_limit: reject configurations that cause integer overflow
     - btrfs: fix infinite directory reads
     - btrfs: set last dir index to the current last index when opening dir
     - btrfs: refresh dir last index during a rewinddir(3) call
     - btrfs: fix race between reading a directory and adding entries to it
     - netfilter: nf_tables: restrict anonymous set and map names to 16 bytes
     - netfilter: nf_tables: validate NFPROTO_* family
     - net: stmmac: Wait a bit for the reset to take effect
     - net: mvpp2: clear BM pool before initialization
     - fjes: fix memleaks in fjes_hw_setup
     - net: fec: fix the unhandled context fault from smmu
     - nbd: always initialize struct msghdr completely
     - btrfs: avoid copying BTRFS_ROOT_SUBVOL_DEAD flag to snapshot of subvolume
       being deleted
     - btrfs: ref-verify: free ref cache before clearing mount opt
     - btrfs: tree-checker: fix inline ref size in error messages
     - btrfs: don't warn if discard range is not aligned to sector
     - btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args
     - btrfs: don't abort filesystem when attempting to snapshot deleted
       subvolume
     - rbd: don't move requests to the running list on errors
     - exec: Fix error handling in begin_new_exec()
     - wifi: iwlwifi: fix a memory corruption
     - hv_netvsc: Calculate correct ring size when PAGE_SIZE is not 4 Kbytes
     - netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress
       basechain
     - netfilter: nf_tables: reject QUEUE/DROP verdict parameters (CVE-2024-1086)
     - [x86] platform/x86: p2sb: Allow p2sb_bar() calls during PCI device probe
     - ksmbd: fix global oob in ksmbd_nl_policy
     - [arm64] firmware: arm_scmi: Check mailbox/SMT channel for consistency
     - xfs: read only mounts with fsopen mount API are busted
     - gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04
     - cpufreq: intel_pstate: Refine computation of P-state for given frequency
     - drm: Don't unref the same fb many times by mistake due to deadlock
       handling
     - drm/bridge: nxp-ptn3460: fix i2c_master_send() error checking
     - drm/tidss: Fix atomic_flush check
     - drm/amd/display: Disable PSR-SU on Parade 0803 TCON again
     - [x86] platform/x86: intel-uncore-freq: Fix types in sysfs callbacks
     - drm/bridge: nxp-ptn3460: simplify some error checking
     - drm/amd/display: Port DENTIST hang and TDR fixes to OTG disable W/A
     - drm/amdgpu/pm: Fix the power source flag error
     - erofs: get rid of the remaining kmap_atomic()
     - erofs: fix lz4 inplace decompression
     - media: ov13b10: Support device probe in non-zero ACPI D state
     - media: ov13b10: Enable runtime PM before registering async sub-device
     - bus: mhi: ep: Do not allocate event ring element on stack
     - PM: core: Remove unnecessary (void *) conversions
     - PM: sleep: Fix possible deadlocks in core system-wide PM code
     - [x86] thermal: intel: hfi: Refactor enabling code into helper functions
     - [x86] thermal: intel: hfi: Disable an HFI instance when all its CPUs go
       offline
     - [x86] thermal: intel: hfi: Add syscore callbacks for system-wide PM
     - fs/pipe: move check to pipe_has_watch_queue()
     - pipe: wakeup wr_wait after setting max_usage
     - dlm: use kernel_connect() and kernel_bind()
     - serial: core: Provide port lock wrappers
     - serial: sc16is7xx: Use port lock wrappers
     - serial: sc16is7xx: fix unconditional activation of THRI interrupt
     - btrfs: zoned: factor out prepare_allocation_zoned()
     - btrfs: zoned: optimize hint byte for zoned allocator
     - drm/panel-edp: drm/panel-edp: Fix AUO B116XAK01 name and timing
     - Revert "powerpc/64s: Increase default stack size to 32KB"
     - drm/bridge: parade-ps8640: Wait for HPD when doing an AUX transfer
     - drm: panel-simple: add missing bus flags for Tianma tm070jvhg[30/33]
     - drm/bridge: sii902x: Use devm_regulator_bulk_get_enable()
     - drm/bridge: sii902x: Fix probing race issue
     - drm/bridge: sii902x: Fix audio codec unregistration
     - drm/bridge: parade-ps8640: Ensure bridge is suspended in .post_disable()
     - drm/bridge: parade-ps8640: Make sure we drop the AUX mutex in the error
       case
     - [armhf] drm/exynos: fix accidental on-stack copy of exynos_drm_plane
     - [armhf] drm/exynos: gsc: minor fix for loop iteration in
       gsc_runtime_resume
     - gpio: eic-sprd: Clear interrupt after set the interrupt type
     - block: Move checking GENHD_FL_NO_PART to bdev_add_partition()
     - drm/bridge: anx7625: Ensure bridge is suspended in disable()
     - spi: bcm-qspi: fix SFDP BFPT read by usig mspi read
     - spi: fix finalize message on error return
     - [mips*] lantiq: register smp_ops on non-smp platforms
     - cxl/region：Fix overflow issue in alloc_hpa()
     - [mips*] Call lose_fpu(0) before initializing fcr31 in
       mips_set_personality_nan
     - tick/sched: Preserve number of idle sleeps across CPU hotplug events
     - [x86] x86/entry/ia32: Ensure s32 is sign extended to s64
     - serial: core: fix kernel-doc for uart_port_unlock_irqrestore()
     - net/mlx5e: Handle hardware IPsec limits events
 .
   [ Salvatore Bonaccorso ]
   * Refresh "net: mana: Add support for auxiliary device"
   * Bump ABI to 18
linux-signed-arm64 (6.1.69+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.69-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.68
     - hrtimers: Push pending hrtimers away from outgoing CPU earlier
     - i2c: designware: Fix corrupted memory seen in the ISR
     - netfilter: ipset: fix race condition between swap/destroy and kernel side
       add/del/test
     - tg3: Move the [rt]x_dropped counters to tg3_napi
     - tg3: Increment tx_dropped in tg3_tso_bug()
     - kconfig: fix memory leak from range properties
     - drm/amdgpu: correct chunk_ptr to a pointer to chunk.
     - [x86] Introduce ia32_enabled()
     - [amd64] x86/coco: Disable 32-bit emulation by default on TDX and SEV
     - [x86] entry: Convert INT 0x80 emulation to IDTENTRY
     - [x86] entry: Do not allow external 0x80 interrupts
     - [x86] tdx: Allow 32-bit emulation by default
     - [x86] platform/x86: asus-wmi: Move i8042 filter install to shared asus-wmi
       code
     - [powerpc*] of: dynamic: Fix of_reconfig_get_state_change() return value
       documentation
     - [x86] platform/x86: wmi: Skip blocks with zero instances
     - ipv6: fix potential NULL deref in fib6_add()
     - hv_netvsc: rndis_filter needs to select NLS
     - r8152: Rename RTL8152_UNPLUG to RTL8152_INACCESSIBLE
     - r8152: Add RTL8152_INACCESSIBLE checks to more loops
     - r8152: Add RTL8152_INACCESSIBLE to r8156b_wait_loading_flash()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_pre_firmware_1()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_aldps_en()
     - arcnet: restoring support for multiple Sohard Arcnet cards
     - net: stmmac: fix FPE events losing
     - xsk: Skip polling event check for unbound socket
     - i40e: Fix unexpected MFS warning message
     - iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero
     - net: bnxt: fix a potential use-after-free in bnxt_init_tc
     - tcp: fix mid stream window clamp.
     - ionic: fix snprintf format length warning
     - ionic: Fix dim work handling in split interrupt mode
     - ipv4: ip_gre: Avoid skb_pull() failure in ipgre_xmit()
     - net: atlantic: Fix NULL dereference of skb pointer in
     - [arm64] net: hns: fix wrong head when modify the tx feature when sending
       packets
     - [arm64] net: hns: fix fake link up on xge port
     - netfilter: nft_exthdr: add boolean DCCP option matching
     - netfilter: nf_tables: fix 'exist' matching on bigendian arches
     - netfilter: nf_tables: bail out on mismatching dynset and set expressions
       (CVE-2023-6622)
     - netfilter: nf_tables: validate family when identifying table via handle
     - netfilter: xt_owner: Fix for unsafe access of sk->sk_socket
     - tcp: do not accept ACK of bytes we never sent
     - bpf: sockmap, updating the sg structure should also update curr
     - psample: Require 'CAP_NET_ADMIN' when joining "packets" group
     - drop_monitor: Require 'CAP_SYS_ADMIN' when joining "events" group
     - [arm64] tee: optee: Fix supplicant based device enumeration
     - [arm64] RDMA/hns: Fix unnecessary err return when using invalid congest
       control algorithm
     - RDMA/irdma: Do not modify to SQD on error
     - RDMA/irdma: Add wait for suspend on SQD
     - [arm64] ASoC: fsl_sai: Fix no frame sync clock issue on i.MX8MP
     - RDMA/irdma: Refactor error handling in create CQP
     - RDMA/irdma: Fix UAF in irdma_sc_ccq_get_cqe_info()
     - [x86] hwmon: (acpi_power_meter) Fix 4.29 MW bug
     - [x86] ASoC: wm_adsp: fix memleak in wm_adsp_buffer_populate
     - RDMA/core: Fix umem iterator when PAGE_SIZE is greater then HCA pgsz
     - RDMA/irdma: Avoid free the non-cqp_request scratch
     - [arm64] dts: imx8mq: drop usb3-resume-missing-cas from usb
     - [arm64] dts: imx8mp: imx8mq: Add parkmode-disable-ss-quirk on DWC3
     - tracing: Fix a warning when allocating buffered events fails
     - scsi: be2iscsi: Fix a memleak in beiscsi_init_wrb_handle()
     - [armhf] imx: Check return value of devm_kasprintf in imx_mmdc_perf_init
     - md: introduce md_ro_state
     - md: don't leave 'MD_RECOVERY_FROZEN' in error path of md_set_readonly()
     - iommu: Avoid more races around device probe
     - [x86] rethook: Use __rcu pointer for rethook::handler
     - kprobes: consistent rcu api usage for kretprobe holder
     - [x86] ASoC: amd: yc: Fix non-functional mic on ASUS E1504FA
     - io_uring/af_unix: disable sending io_uring over sockets (CVE-2023-6531)
     - nvme-pci: Add sleep quirk for Kingston drives
     - io_uring: fix mutex_unlock with unreferenced ctx
     - ALSA: usb-audio: Add Pioneer DJM-450 mixer controls
     - ALSA: pcm: fix out-of-bounds in snd_pcm_state_names
     - ALSA: hda/realtek: Enable headset on Lenovo M90 Gen5
     - ALSA: hda/realtek: add new Framework laptop to quirks
     - ALSA: hda/realtek: Add Framework laptop 16 to quirks
     - ring-buffer: Test last update in 32bit version of __rb_time_read()
     - nilfs2: fix missing error check for sb_set_blocksize call
     - nilfs2: prevent WARNING in nilfs_sufile_set_segment_usage()
     - cgroup_freezer: cgroup_freezing: Check if not frozen
     - checkstack: fix printed address
     - tracing: Always update snapshot buffer size
     - tracing: Disable snapshot buffer when stopping instance tracers
     - tracing: Fix incomplete locking when disabling buffered events
     - tracing: Fix a possible race when disabling buffered events
     - packet: Move reference count in packet_sock to atomic_long_t
     - r8169: fix rtl8125b PAUSE frames blasting when suspended
     - regmap: fix bogus error on regcache_sync success
     - [x86] platform/surface: aggregator: fix recv_buf() return value
     - hugetlb: fix null-ptr-deref in hugetlb_vma_lock_write
     - mm: fix oops when filemap_map_pmd() without prealloc_pte
     - md/raid6: use valid sector values to determine if an I/O should wait on
       the reshape
     - [arm*] binder: fix memory leaks of spam and pending work
     - [arm64] coresight: etm4x: Make etm4_remove_dev() return void
     - [arm64] coresight: etm4x: Remove bogous __exit annotation for some
       functions
     - hwtracing: hisi_ptt: Add dummy callback pmu::read()
     - [x86] misc: mei: client.c: return negative error code in mei_cl_write
     - [x86] misc: mei: client.c: fix problem of return '-EOVERFLOW' in
       mei_cl_write
     - ring-buffer: Force absolute timestamp on discard of event
     - tracing: Set actual size after ring buffer resize
     - tracing: Stop current tracer when resizing buffer
     - perf: Fix perf_event_validate_size() (CVE-2023-6931)
     - [x86] sev: Fix kernel crash due to late update to read-only ghcb_version
     - gpiolib: sysfs: Fix error handling on failed export
     - drm/amdgpu: fix memory overflow in the IB test
     - drm/amd/amdgpu: Fix warnings in amdgpu/amdgpu_display.c
     - drm/amdgpu: correct the amdgpu runtime dereference usage count
     - drm/amdgpu: Update ras eeprom support for smu v13_0_0 and v13_0_10
     - drm/amdgpu: Add EEPROM I2C address support for ip discovery
     - drm/amdgpu: Remove redundant I2C EEPROM address
     - drm/amdgpu: Decouple RAS EEPROM addresses from chips
     - drm/amdgpu: Add support for RAS table at 0x40000
     - drm/amdgpu: Remove second moot switch to set EEPROM I2C address
     - drm/amdgpu: Return from switch early for EEPROM I2C address
     - drm/amdgpu: simplify amdgpu_ras_eeprom.c
     - drm/amdgpu: Add I2C EEPROM support on smu v13_0_6
     - drm/amdgpu: Update EEPROM I2C address for smu v13_0_0
     - usb: gadget: f_hid: fix report descriptor allocation
     - serial: 8250_dw: Add ACPI ID for Granite Rapids-D UART
     - parport: Add support for Brainboxes IX/UC/PX parallel cards
     - cifs: Fix non-availability of dedup breaking generic/304
     - Revert "xhci: Loosen RPM as default policy to cover for AMD xHC 1.1"
     - smb: client: fix potential NULL deref in parse_dfs_referrals()
     - usb: typec: class: fix typec_altmode_put_partner to put plugs
     - [arm64,armhf] PL011: Fix DMA support
     - [arm64] serial: 8250: 8250_omap: Clear UART_HAS_RHR_IT_DIS bit
     - [arm64] serial: 8250: 8250_omap: Do not start RX DMA on THRI interrupt
     - [arm64] serial: 8250_omap: Add earlycon support for the AM654 UART
       controller
     - devcoredump: Send uevent once devcd is ready
     - [x86] CPU/AMD: Check vendor in the AMD microcode callback
     - USB: gadget: core: adjust uevent timing on gadget unbind
     - cifs: Fix flushing, invalidation and file size with copy_file_range()
     - cifs: Fix flushing, invalidation and file size with FICLONE
     - [mips*] kernel: Clear FPU states when setting up kernel threads
       (Closes: #1055021)
     - [s390x] KVM: s390/mm: Properly reset no-dat
     - [x86] KVM: SVM: Update EFER software model on CR0 trap for SEV-ES
     - netfilter: nft_set_pipapo: skip inactive elements during set walk
       (CVE-2023-6817)
     - [x86] drm/i915/display: Drop check for doublescan mode in modevalid
     - [x86] drm/i915/lvds: Use REG_BIT() & co.
     - [x86] drm/i915/sdvo: stop caching has_hdmi_monitor in struct intel_sdvo
     - [x86] drm/i915: Skip some timing checks on BXT/GLK DSI transcoders
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.69
     - [x86] perf/x86/uncore: Don't WARN_ON_ONCE() for a broken discovery table
     - r8152: add USB device driver for config selection
     - r8152: add vendor/device ID pair for D-Link DUB-E250
     - r8152: add vendor/device ID pair for ASUS USB-C2500
     - [powerpc*] ftrace: Fix stack teardown in ftrace_no_trace
     - ext4: fix warning in ext4_dio_write_end_io()
     - ksmbd: fix memory leak in smb2_lock()
     - afs: Fix refcount underflow from error handling race (Closes: #1052304)
     - HID: lenovo: Restrict detection of patched firmware only to USB cptkbd
       (Closes: #1058758)
     - net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work
     - net: ipv6: support reporting otherwise unknown prefix flags in
       RTM_NEWPREFIX
     - bnxt_en: Clear resource reservation during resume
     - bnxt_en: Save ring error counters across reset
     - bnxt_en: Fix wrong return value check in bnxt_close_nic()
     - bnxt_en: Fix HWTSTAMP_FILTER_ALL packet timestamp logic
     - atm: solos-pci: Fix potential deadlock on &cli_queue_lock
     - atm: solos-pci: Fix potential deadlock on &tx_queue_lock
     - net: vlan: introduce skb_vlan_eth_hdr()
     - net: fec: correct queue selection
     - atm: Fix Use-After-Free in do_vcc_ioctl (CVE-2023-51780)
     - net/rose: Fix Use-After-Free in rose_ioctl (CVE-2023-51782)
     - iavf: Introduce new state machines for flow director
     - iavf: Handle ntuple on/off based on new state machines for flow director
     - qed: Fix a potential use-after-free in qed_cxt_tables_alloc
     - net: Remove acked SYN flag from packet in the transmit queue correctly
     - net: ena: Destroy correct number of xdp queues upon failure
     - net: ena: Fix xdp drops handling due to multibuf packets
     - net: ena: Fix XDP redirection error
     - sign-file: Fix incorrect return values check
     - vsock/virtio: Fix unsigned integer wrap around in
       virtio_transport_has_space()
     - net: stmmac: Handle disabled MDIO busses from devicetree
     - appletalk: Fix Use-After-Free in atalk_ioctl (CVE-2023-51781)
     - net: atlantic: fix double free in ring reinit logic
     - cred: switch to using atomic_long_t
     - fuse: dax: set fc->dax to NULL in fuse_dax_conn_free()
     - ALSA: hda/hdmi: add force-connect quirk for NUC5CPYB
     - ALSA: hda/hdmi: add force-connect quirks for ASUSTeK Z170 variants
     - ALSA: hda/realtek: Apply mute LED quirk for HP15-db
     - Revert "PCI: acpiphp: Reassign resources on bridge if necessary"
     - [mips*] PCI: loongson: Limit MRRS to 256 (Closes: #1035587)
     - ksmbd: fix wrong name of SMB2_CREATE_ALLOCATION_SIZE
     - [x86] hyperv: Fix the detection of E820_TYPE_PRAM in a Gen2 VM
     - usb: aqc111: check packet for fixup for true limit
     - blk-throttle: fix lockdep warning of "cgroup_mutex or RCU read lock
       required!"
     - blk-cgroup: bypass blkcg_deactivate_policy after destroying
     - bcache: avoid oversize memory allocation by small stripe_size
     - bcache: remove redundant assignment to variable cur_idx
     - bcache: add code comments for bch_btree_node_get() and
       __bch_btree_node_alloc()
     - bcache: avoid NULL checking to c->root in run_cache_set()
     - nbd: fold nbd config initialization into nbd_alloc_config()
     - nvme-auth: set explanation code for failure2 msgs
     - nvme: catch errors from nvme_configure_metadata()
     - [x86] platform/x86: intel_telemetry: Fix kernel doc descriptions
     - HID: glorious: fix Glorious Model I HID report
     - HID: add ALWAYS_POLL quirk for Apple kb
     - nbd: pass nbd_sock to nbd_read_reply() instead of index
     - HID: hid-asus: reset the backlight brightness level on resume
     - HID: multitouch: Add quirk for HONOR GLO-GXXX touchpad
     - asm-generic: qspinlock: fix queued_spin_value_unlocked() implementation
     - net: usb: qmi_wwan: claim interface 4 for ZTE MF290
     - [arm64] add dependency between vmlinuz.efi and Image
     - HID: hid-asus: add const to read-only outgoing usb buffer
     - perf: Fix perf_event_validate_size() lockdep splat
     - btrfs: do not allow non subvolume root targets for snapshot
     - soundwire: stream: fix NULL pointer dereference for multi_link
     - ext4: prevent the normalized size from exceeding EXT_MAX_BLOCKS
     - [arm64] mm: Always make sw-dirty PTEs hw-dirty in pte_modify
     - team: Fix use-after-free when an option instance allocation fails
     - drm/amdgpu/sdma5.2: add begin/end_use ring callbacks
     - dmaengine: stm32-dma: avoid bitfield overflow assertion
     - mm/mglru: fix underprotected page cache
     - mm/shmem: fix race in shmem_undo_range w/THP
     - btrfs: free qgroup reserve when ORDERED_IOERR is set
     - btrfs: don't clear qgroup reserved bit in release_folio
     - drm/amdgpu: fix tear down order in amdgpu_vm_pt_free
     - drm/amd/display: Disable PSR-SU on Parade 0803 TCON again
     - [x86] drm/i915: Fix remapped stride with CCS on ADL+
     - smb: client: fix OOB in receive_encrypted_standard()
     - smb: client: fix NULL deref in asn1_ber_decoder()
     - smb: client: fix OOB in smb2_query_reparse_point()
     - ring-buffer: Fix memory leak of free page
     - tracing: Update snapshot buffer on resize if it is allocated
     - ring-buffer: Do not update before stamp when switching sub-buffers
     - ring-buffer: Have saved event hold the entire event
     - ring-buffer: Fix writing to the buffer with max_data_size
     - ring-buffer: Fix a race in rb_time_cmpxchg() for 32 bit archs
     - ring-buffer: Do not try to put back write_stamp
     - ring-buffer: Have rb_time_cmpxchg() set the msb counter too
     - net: tls, update curr on splice as well
     - r8152: avoid to change cfg for all devices
     - r8152: remove rtl_vendor_mode function
     - r8152: fix the autosuspend doesn't work
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 17
   * [rt] Update to 6.1.69-rt21
   * [arm64] drivers/vfio: Don't enable VFIO_NOIOMMU.
     This is a breach of the integrity lockdown requirement of secure boot
     and thus cannot be enabled.
     Thanks to Bastian Blank and Ben Hutchings
   * Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg
     (CVE-2023-51779)
   * netfilter: nf_tables: skip set commit for deleted/destroyed sets
   * Revert "scsi: aacraid: Reply queue mapping to CPUs based on IRQ affinity"
     (Closes: #1059624)
linux-signed-arm64 (6.1.69+1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Sign kernel from linux 6.1.69-1~bpo11+1
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.17
linux-signed-arm64 (6.1.67+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.67-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.67
     - Revert "wifi: cfg80211: fix CQM for non-range use" (Closes: #1057967,
       #1057969)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 16

linux-signed-i386 (6.1.76+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.76-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.70
     - bpf: Fix prog_array_map_poke_run map poke update
     - HID: i2c-hid: acpi: Unify ACPI ID tables format
     - HID: i2c-hid: Add IDEA5002 to i2c_hid_acpi_blacklist[]
     - drm/amd/display: fix hw rotated modes when PSR-SU is enabled
     - [armhf] OMAP2+: Fix null pointer dereference and memory leak in
       omap_soc_device_init
     - reset: Fix crash when freeing non-existent optional resets
     - [s390x] vx: fix save/restore of fpu kernel context
     - wifi: iwlwifi: pcie: add another missing bh-disable for rxq->lock
     - wifi: mac80211: check if the existing link config remains unchanged
     - wifi: mac80211: mesh: check element parsing succeeded
     - wifi: mac80211: mesh_plink: fix matches_local logic
     - Revert "net/mlx5e: fix double free of encap_header in update funcs"
     - Revert "net/mlx5e: fix double free of encap_header"
     - net/mlx5e: Fix slab-out-of-bounds in mlx5_query_nic_vport_mac_list()
     - net/mlx5: Introduce and use opcode getter in command interface
     - net/mlx5: Prevent high-rate FW commands from populating all slots
     - net/mlx5: Re-organize mlx5_cmd struct
     - net/mlx5e: Fix a race in command alloc flow
     - net/mlx5e: fix a potential double-free in fs_udp_create_groups
     - net/mlx5: Fix fw tracer first block check
     - net/mlx5e: Correct snprintf truncation handling for fw_version buffer
     - net/mlx5e: Correct snprintf truncation handling for fw_version buffer used
       by representors
     - [arm64] net: mscc: ocelot: fix eMAC TX RMON stats for bucket 256-511 and
       above
     - net: Return error from sk_stream_wait_connect() if sk_wait_event() fails
     - net: sched: ife: fix potential use-after-free
     - ethernet: atheros: fix a memleak in atl1e_setup_ring_resources
     - net/rose: fix races in rose_kill_by_device()
     - Bluetooth: Fix deadlock in vhci_send_frame
     - Bluetooth: hci_event: shut up a false-positive warning
     - net: mana: select PAGE_POOL
     - net: check vlan filter feature in vlan_vids_add_by_dev() and
       vlan_vids_del_by_dev()
     - afs: Fix the dynamic root's d_delete to always delete unused dentries
     - afs: Fix dynamic root lookup DNS check
     - net: check dev->gso_max_size in gso_features_check()
     - keys, dns: Allow key types (eg. DNS) to be reclaimed immediately on expiry
     - afs: Fix overwriting of result of DNS query
     - afs: Fix use-after-free due to get/remove race in volume tree
     - [arm64,armhf] ASoC: hdmi-codec: fix missing report for jack initial status
     - [arm64] ASoC: fsl_sai: Fix channel swap issue on i.MX8MP
     - [armhf] i2c: aspeed: Handle the coalesced stop conditions with the start
       conditions.
     - gpiolib: cdev: add gpio_device locking wrapper around gpio_ioctl()
     - nvme-pci: fix sleeping function called from interrupt context
     - [x86] drm/i915/mtl: limit second scaler vertical scaling in ver >= 14
     - [x86] drm/i915: Relocate intel_atomic_setup_scalers()
     - [x86] drm/i915: Fix intel_atomic_setup_scalers() plane_state handling
     - [x86] drm/i915/dpt: Only do the POT stride remap when using DPT
     - [x86] drm/i915/mtl: Add MTL for remapping CCS FBs
     - [x86] drm/i915: Fix ADL+ tiled plane stride when the POT stride is smaller
       than the original
     - iio: imu: inv_mpu6050: fix an error code problem in inv_mpu6050_read_raw
     - interconnect: qcom: sm8250: Enable sync_state
     - scsi: bnx2fc: Fix skb double free in bnx2fc_rcv()
     - iio: common: ms_sensors: ms_sensors_i2c: fix humidity conversion time
       table
     - [armhf] iio: adc: ti_am335x_adc: Fix return value check of
       tiadc_request_dma()
     - iio: triggered-buffer: prevent possible freeing of wrong buffer
     - ALSA: usb-audio: Increase delay in MOTU M quirk
     - usb-storage: Add quirk for incorrect WP on Kingston DT Ultimate 3.0 G3
     - wifi: cfg80211: Add my certificate
     - wifi: cfg80211: fix certs build to not depend on file order
     - USB: serial: ftdi_sio: update Actisense PIDs constant names
     - USB: serial: option: add Quectel EG912Y module support
     - USB: serial: option: add Foxconn T99W265 with new baseline
     - USB: serial: option: add Quectel RM500Q R13 firmware support
     - ALSA: hda/realtek: Add quirk for ASUS ROG GV302XA
     - Bluetooth: hci_event: Fix not checking if HCI_OP_INQUIRY has been sent
     - Bluetooth: L2CAP: Send reject on command corrupted request
     - Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE
     - Bluetooth: Add more enc key size check
     - net: usb: ax88179_178a: avoid failed operations when device is
       disconnected
     - [x86] Input: soc_button_array - add mapping for airplane mode button
     - net: 9p: avoid freeing uninit memory in p9pdu_vreadf
     - net: rfkill: gpio: set GPIO direction
     - dt-bindings: nvmem: mxs-ocotp: Document fsl,ocotp
     - smb: client: fix OOB in cifsd when receiving compounded resps
     - smb: client: fix potential OOB in cifs_dump_detail()
     - smb: client: fix OOB in SMB2_query_info_init()
     - smb: client: fix OOB in smbCalcSize() (CVE-2023-6606)
     - [x86] drm/i915: Reject async flips with bigjoiner
     - 9p: prevent read overrun in protocol dump tracepoint
     - [riscv64] Fix do_notify_resume / do_work_pending prototype
     - loop: do not enforce max_loop hard limit by (new) default
     - dm thin metadata: Fix ABBA deadlock by resetting dm_bufio_client
     - Revert "drm/amd/display: Do not set DRR on pipe commit"
     - btrfs: zoned: no longer count fresh BG region as zone unusable
     - ubifs: fix possible dereference after free
     - ublk: move ublk_cancel_dev() out of ub->mutex
     - scsi: core: Always send batch on reset or error handling command
     - tracing / synthetic: Disable events after testing in
       synth_event_gen_test_init()
     - dm-integrity: don't modify bio's immutable bio_vec in integrity_metadata()
     - pinctrl: starfive: jh7100: ignore disabled device tree nodes
     - [armhf] bus: ti-sysc: Flush posted write only after srst_udelay
     - lib/vsprintf: Fix %pfwf when current node refcount == 0
     - [x86] thunderbolt: Fix memory leak in margining_port_remove()
     - [arm64] KVM: arm64: vgic: Simplify kvm_vgic_destroy()
     - [arm64] KVM: arm64: vgic: Add a non-locking primitive for
       kvm_vgic_vcpu_destroy()
     - [arm64] KVM: arm64: vgic: Force vcpu vgic teardown on vcpu destroy
     - [x86] alternatives: Sync core before enabling interrupts
     - fuse: share lookup state between submount and its parent
     - wifi: cfg80211: fix CQM for non-range use
     - wifi: nl80211: fix deadlock in nl80211_set_cqm_rssi (6.6.x)
     - loop: deprecate autoloading callback loop_probe()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.71
     - ksmbd: replace one-element arrays with flexible-array members
     - ksmbd: set SMB2_SESSION_FLAG_ENCRYPT_DATA when enforcing data encryption
       for this share
     - ksmbd: use F_SETLK when unlocking a file
     - ksmbd: Fix resource leak in smb2_lock()
     - ksmbd: Convert to use sysfs_emit()/sysfs_emit_at() APIs
     - ksmbd: Implements sess->rpc_handle_list as xarray
     - ksmbd: fix typo, syncronous->synchronous
     - ksmbd: Remove duplicated codes
     - ksmbd: update Kconfig to note Kerberos support and fix indentation
     - ksmbd: Fix spelling mistake "excceed" -> "exceeded"
     - ksmbd: Fix parameter name and comment mismatch
     - ksmbd: remove unused is_char_allowed function
     - ksmbd: delete asynchronous work from list (CVE-2023-1193)
     - ksmbd: set NegotiateContextCount once instead of every inc
     - ksmbd: avoid duplicate negotiate ctx offset increments
     - ksmbd: remove unused compression negotiate ctx packing
     - fs: introduce lock_rename_child() helper
     - ksmbd: fix racy issue from using ->d_parent and ->d_name
     - ksmbd: fix uninitialized pointer read in ksmbd_vfs_rename()
     - ksmbd: fix uninitialized pointer read in smb2_create_link()
     - ksmbd: call putname after using the last component
     - ksmbd: fix posix_acls and acls dereferencing possible ERR_PTR()
     - ksmbd: add mnt_want_write to ksmbd vfs functions
     - ksmbd: remove unused ksmbd_tree_conn_share function
     - ksmbd: use kzalloc() instead of __GFP_ZERO
     - ksmbd: return a literal instead of 'err' in ksmbd_vfs_kern_path_locked()
     - ksmbd: Change the return value of ksmbd_vfs_query_maximal_access to void
     - ksmbd: use kvzalloc instead of kvmalloc
     - ksmbd: Replace the ternary conditional operator with min()
     - ksmbd: Use struct_size() helper in ksmbd_negotiate_smb_dialect()
     - ksmbd: Replace one-element array with flexible-array member
     - ksmbd: Fix unsigned expression compared with zero
     - ksmbd: check if a mount point is crossed during path lookup
     - ksmbd: switch to use kmemdup_nul() helper
     - ksmbd: add support for read compound
     - ksmbd: fix wrong interim response on compound
     - ksmbd: fix `force create mode' and `force directory mode'
     - ksmbd: Fix one kernel-doc comment
     - ksmbd: add missing calling smb2_set_err_rsp() on error
     - ksmbd: remove experimental warning
     - ksmbd: remove unneeded mark_inode_dirty in set_info_sec()
     - ksmbd: fix passing freed memory 'aux_payload_buf'
     - ksmbd: return invalid parameter error response if smb2 request is invalid
     - ksmbd: check iov vector index in ksmbd_conn_write()
     - ksmbd: fix race condition with fp
     - ksmbd: fix race condition from parallel smb2 logoff requests
     - ksmbd: fix race condition from parallel smb2 lock requests
     - ksmbd: fix race condition between tree conn lookup and disconnect
     - ksmbd: fix wrong error response status by using set_smb2_rsp_status()
     - ksmbd: fix Null pointer dereferences in ksmbd_update_fstate()
     - ksmbd: fix potential double free on smb2_read_pipe() error path
     - ksmbd: Remove unused field in ksmbd_user struct
     - ksmbd: reorganize ksmbd_iov_pin_rsp()
     - ksmbd: fix kernel-doc comment of ksmbd_vfs_setxattr()
     - ksmbd: fix recursive locking in vfs helpers
     - ksmbd: fix missing RDMA-capable flag for IPoIB device in
       ksmbd_rdma_capable_netdev()
     - ksmbd: add support for surrogate pair conversion
     - ksmbd: no need to wait for binded connection termination at logoff
     - ksmbd: fix kernel-doc comment of ksmbd_vfs_kern_path_locked()
     - ksmbd: prevent memory leak on error return
     - ksmbd: fix possible deadlock in smb2_open
     - ksmbd: separately allocate ci per dentry
     - ksmbd: move oplock handling after unlock parent dir
     - ksmbd: release interim response after sending status pending response
     - ksmbd: move setting SMB2_FLAGS_ASYNC_COMMAND and AsyncId
     - ksmbd: don't update ->op_state as OPLOCK_STATE_NONE on error
     - ksmbd: set epoch in create context v2 lease
     - ksmbd: set v2 lease capability
     - ksmbd: downgrade RWH lease caching state to RH for directory
     - ksmbd: send v2 lease break notification for directory
     - ksmbd: lazy v2 lease break on smb2_write()
     - ksmbd: avoid duplicate opinfo_put() call on error of
       smb21_lease_break_ack()
     - ksmbd: fix wrong allocation size update in smb2_open()
     - spi: Introduce spi_get_device_match_data() helper
     - iio: imu: adis16475: add spi_device_id table
     - nfsd: separate nfsd_last_thread() from nfsd_put()
     - nfsd: call nfsd_last_thread() before final nfsd_put()
     - linux/export: Ensure natural alignment of kcrctab array
     - spi: Reintroduce spi_set_cs_timing()
     - spi: Add APIs in spi core to set/get spi->chip_select and spi->cs_gpiod
     - block: renumber QUEUE_FLAG_HW_WC
     - ksmbd: fix slab-out-of-bounds in smb_strndup_from_utf16() (CVE-2024-22705)
     - mm/filemap: avoid buffered read/write race to read inconsistent data
     - mm: migrate high-order folios in swap cache correctly
     - mm/memory-failure: cast index to loff_t before shifting it
     - mm/memory-failure: check the mapcount of the precise page
     - ring-buffer: Fix wake ups when buffer_percent is set to 100
     - tracing: Fix blocked reader of snapshot buffer
     - ring-buffer: Remove useless update to write_stamp in rb_try_to_discard()
     - ring-buffer: Fix slowpath of interrupted event
     - NFSD: fix possible oops when nfsd/pool_stats is closed.
     - spi: Constify spi parameters of chip select APIs
     - device property: Allow const parameter to dev_fwnode()
     - kallsyms: Make module_kallsyms_on_each_symbol generally available
     - tracing/kprobes: Fix symbol counting logic by looking at modules as well
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.72
     - keys, dns: Fix missing size check of V1 server-list header
     - block: Don't invalidate pagecache for invalid falloc modes
     - ALSA: hda/realtek: enable SND_PCI_QUIRK for hp pavilion 14-ec1xxx series
     - ALSA: hda/realtek: fix mute/micmute LEDs for a HP ZBook
     - ALSA: hda/realtek: Fix mute and mic-mute LEDs for HP ProBook 440 G6
     - mptcp: prevent tcp diag from closing listener subflows
     - Revert "PCI/ASPM: Remove pcie_aspm_pm_state_change()"
     - [x86] drm/mgag200: Fix gamma lut not initialized for G200ER, G200EV,
       G200SE
     - cifs: cifs_chan_is_iface_active should be called with chan_lock held
     - cifs: do not depend on release_iface for maintaining iface_list
     - [x86] KVM: x86/pmu: fix masking logic for MSR_CORE_PERF_GLOBAL_CTRL
     - wifi: iwlwifi: pcie: don't synchronize IRQs from IRQ (Closes: #1058887)
     - [arm64] drm/bridge: ti-sn65dsi86: Never store more than msg->size bytes in
       AUX xfer
     - netfilter: use skb_ip_totlen and iph_totlen
     - netfilter: nf_tables: set transport offset from mac header for
       netdev/egress
     - nfc: llcp_core: Hold a ref to llcp_local->dev when holding a ref to
       llcp_local
     - [x86] drm/i915/dp: Fix passing the correct DPCD_REV for
       drm_dp_set_phy_test_pattern
     - ice: Fix link_down_on_close message
     - ice: Shut down VSI with "link-down-on-close" enabled
     - i40e: Fix filter input checks to prevent config with invalid values
     - igc: Report VLAN EtherType matching back to user
     - igc: Check VLAN TCI mask
     - igc: Check VLAN EtherType mask
     - net: sched: em_text: fix possible memory leak in em_text_destroy()
     - r8169: Fix PCI error on system resume
     - can: raw: add support for SO_MARK
     - net-timestamp: extend SOF_TIMESTAMPING_OPT_ID to HW timestamps
     - net: annotate data-races around sk->sk_tsflags
     - net: annotate data-races around sk->sk_bind_phc
     - net: Implement missing getsockopt(SO_TIMESTAMPING_NEW)
     - [armhf] sun9i: smp: Fix array-index-out-of-bounds read in
       sunxi_mc_smp_init
     - sfc: fix a double-free bug in efx_probe_filters
     - [arm64] net: bcmgenet: Fix FCS generation for fragmented skbuffs
     - netfilter: nft_immediate: drop chain reference counter on error
     - net: Save and restore msg_namelen in sock_sendmsg
     - i40e: fix use-after-free in i40e_aqc_add_filters()
     - [arm64] ASoC: meson: g12a-toacodec: Validate written enum values
     - [arm64] ASoC: meson: g12a-tohdmitx: Validate written enum values
     - [arm64] ASoC: meson: g12a-toacodec: Fix event generation
     - [arm64] ASoC: meson: g12a-tohdmitx: Fix event generation for S/PDIF mux
     - i40e: Restore VF MSI-X state during PCI reset
     - igc: Fix hicredit calculation
     - net/qla3xxx: fix potential memleak in ql_alloc_buffer_queues
     - net/smc: fix invalid link access in dumping SMC-R connections
     - asix: Add check for usbnet_get_endpoints
     - bnxt_en: Remove mis-applied code from bnxt_cfg_ntp_filters()
     - net: Implement missing SO_TIMESTAMPING_NEW cmsg support
     - cpu/SMT: Create topology_smt_thread_allowed()
     - cpu/SMT: Make SMT control more robust against enumeration failures
     - srcu: Fix callbacks acceleration mishandling
     - [x86] bpf, x64: Fix tailcall infinite loop
     - [x86] bpf, x86: Simplify the parsing logic of structure parameters
     - [x86] bpf, x86: save/restore regs with BPF_DW size
     - net: Declare MSG_SPLICE_PAGES internal sendmsg() flag
     - udp: Convert udp_sendpage() to use MSG_SPLICE_PAGES
     - splice, net: Add a splice_eof op to file-ops and socket-ops
     - ipv4, ipv6: Use splice_eof() to flush
     - udp: introduce udp->udp_flags
     - udp: move udp->no_check6_tx to udp->udp_flags
     - udp: move udp->no_check6_rx to udp->udp_flags
     - udp: move udp->gro_enabled to udp->udp_flags
     - udp: move udp->accept_udp_{l4|fraglist} to udp->udp_flags
     - udp: lockless UDP_ENCAP_L2TPINUDP / UDP_GRO
     - udp: annotate data-races around udp->encap_type
     - wifi: iwlwifi: yoyo: swap cdb and jacket bits values
     - [arm64] dts: qcom: sdm845: align RPMh regulator nodes with bindings
     - [arm64] dts: qcom: sdm845: Fix PSCI power domain names
     - bpf: decouple prune and jump points
     - bpf: remove unnecessary prune and jump points
     - bpf: Remove unused insn_cnt argument from visit_[func_call_]insn()
     - bpf: clean up visit_insn()'s instruction processing
     - bpf: Support new 32bit offset jmp instruction
     - bpf: handle ldimm64 properly in check_cfg()
     - bpf: fix precision backtracking instruction iteration
     - blk-mq: make sure active queue usage is held for bio_integrity_prep()
     - net/mlx5: Increase size of irq name buffer
     - [s390x] mm: add missing arch_set_page_dat() call to vmem_crst_alloc()
     - [s390x] cpumf: support user space events for counting
     - f2fs: clean up i_compress_flag and i_compress_level usage
     - f2fs: convert to use bitmap API
     - f2fs: assign default compression level
     - f2fs: set the default compress_level on ioctl
     - ext4: convert move_extent_per_page() to use folios
     - khugepage: replace try_to_release_page() with filemap_release_folio()
     - memory-failure: convert truncate_error_page() to use folio
     - mm: merge folio_has_private()/filemap_release_folio() call pairs
     - mm, netfs, fscache: stop read optimisation when folio removed from
       pagecache
     - filemap: add a per-mapping stable writes flag
     - block: update the stable_writes flag in bdev_add
     - smb: client: fix missing mode bits for SMB symlinks
     - net: dpaa2-eth: rearrange variable in dpaa2_eth_get_ethtool_stats
     - dpaa2-eth: recycle the RX buffer only after all processing done
     - ethtool: don't propagate EOPNOTSUPP from dumps
     - bpf, sockmap: af_unix stream sockets need to hold ref for pair sock
     - [arm64] firmware: arm_scmi: Fix frequency truncation by promoting
       multiplier type
     - ALSA: hda/realtek: Add quirk for Lenovo Yoga Pro 7
     - genirq/affinity: Remove the 'firstvec' parameter from
       irq_build_affinity_masks
     - genirq/affinity: Pass affinity managed mask array to
       irq_build_affinity_masks
     - genirq/affinity: Don't pass irq_affinity_desc array to
       irq_build_affinity_masks
     - genirq/affinity: Rename irq_build_affinity_masks as group_cpus_evenly
     - genirq/affinity: Move group_cpus_evenly() into lib/
     - lib/group_cpus.c: avoid acquiring cpu hotplug lock in group_cpus_evenly
     - mm/memory_hotplug: add missing mem_hotplug_lock
     - mm/memory_hotplug: fix error handling in add_memory_resource()
     - net: sched: call tcf_ct_params_free to free params in tcf_ct_init
     - netfilter: flowtable: allow unidirectional rules
     - netfilter: flowtable: cache info of last offload
     - net/sched: act_ct: offload UDP NEW connections
     - net/sched: act_ct: Fix promotion of offloaded unreplied tuple
     - netfilter: flowtable: GC pushes back packets to classic path
     - net/sched: act_ct: Take per-cb reference to tcf_ct_flow_table
     - btrfs: fix qgroup_free_reserved_data int overflow
     - btrfs: mark the len field in struct btrfs_ordered_sum as unsigned
     - ring-buffer: Fix 32-bit rb_time_read() race with rb_time_cmpxchg()
     - firewire: ohci: suppress unexpected system reboot in AMD Ryzen machines
       and ASM108x/VT630x PCIe cards
     - [x86] kprobes: fix incorrect return address calculation in
       kprobe_emulate_call_indirect
     - mm: fix unmap_mapping_range high bits shift bug
     - drm/amdgpu: skip gpu_info fw loading on navi12
     - drm/amd/display: add nv12 bounding box
     - mmc: rpmb: fixes pause retune on all RPMB partitions.
     - mmc: core: Cancel delayed work before releasing host
     - genirq/affinity: Only build SMP-only helper functions on SMP kernels
     - f2fs: compress: fix to assign compress_level for lz4 correctly
     - net/sched: act_ct: additional checks for outdated flows
     - net/sched: act_ct: Always fill offloading tuple iifidx
     - bpf: Fix a verifier bug due to incorrect branch offset comparison with
       cpu=v4
     - bpf: syzkaller found null ptr deref in unix_bpf proto add
     - smb3: Replace smb2pdu 1-element arrays with flex-arrays
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.73
     - Revert "nfsd: call nfsd_last_thread() before final nfsd_put()"
     - Revert "nfsd: separate nfsd_last_thread() from nfsd_put()"
     - ipv6: remove max_size check inline with ipv4 (CVE-2023-52340)
     - cifs: fix flushing folio regression for 6.1 backport (Closes: #1060005)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.74
     - f2fs: explicitly null-terminate the xattr list
     - ALSA: hda - Fix speaker and headset mic pin config for CHUWI CoreBook XPro
     - mptcp: fix uninit-value in mptcp_incoming_options
     - wifi: cfg80211: lock wiphy mutex for rfkill poll
     - wifi: avoid offset calculation on NULL pointer
     - wifi: mac80211: handle 320 MHz in ieee80211_ht_cap_ie_to_sta_ht_cap
     - debugfs: fix automount d_fsdata usage
     - ALSA: hda: intel-nhlt: Ignore vbps when looking for DMIC 32 bps format
     - nvme-core: fix a memory leak in nvme_ns_info_from_identify()
     - drm/amd/display: update dcn315 lpddr pstate latency
     - drm/amdgpu: Fix cat debugfs amdgpu_regs_didt causes kernel null pointer
     - blk-mq: don't count completed flush data request as inflight in case of
       quiesce
     - nvme-core: check for too small lba shift
     - [x86] ASoC: Intel: Skylake: Fix mem leak in few functions
     - [x86] ASoC: Intel: Skylake: mem leak in skl register function
     - ASoC: rt5650: add mutex to avoid the jack detection failure
     - [x86] ASoC: Intel: skl_hda_dsp_generic: Drop HDMI routes when HDMI is not
       available
     - nouveau/tu102: flush all pdbs on vmm flush
     - [x86] ASoC: amd: yc: Add DMI entry to support System76 Pangolin 13
     - [x86] ASoC: hdac_hda: Conditionally register dais for HDMI and Analog
     - net/tg3: fix race condition in tg3_reset_task()
     - ASoC: da7219: Support low DC impedance headset
     - ASoC: ops: add correct range check for limiting volume
     - nvme: introduce helper function to get ctrl state
     - nvme: prevent potential spectre v1 gadget
     - [arm64] dts: rockchip: Fix PCI node addresses on rk3399-gru
     - drm/amdgpu: Add NULL checks for function pointers
     - [armhf] drm/exynos: fix a potential error pointer dereference
     - [armhf] drm/exynos: fix a wrong error checking
     - [x86] hwmon: (corsair-psu) Fix probe when built-in
     - [arm64] clk: rockchip: rk3568: Add PLL rate for 292.5MHz
     - [armhf] clk: rockchip: rk3128: Fix HCLK_OTG gate register
     - jbd2: correct the printing of write_flags in jbd2_write_superblock()
     - jbd2: increase the journal IO's priority
     - drm/crtc: Fix uninit-value bug in drm_mode_setcrtc
     - neighbour: Don't let neigh_forced_gc() disable preemption for long
     - [x86] platform/x86: intel-vbtn: Fix missing tablet-mode-switch events
     - jbd2: fix soft lockup in journal_finish_inode_data_buffers()
     - tracing: Have large events show up as '[LINE TOO BIG]' instead of nothing
     - tracing: Add size check when printing trace_marker output
     - tracing: Fix uaf issue when open the hist or hist_debug file
     - ring-buffer: Do not record in NMI if the arch does not support cmpxchg in
       NMI
     - Input: psmouse - enable Synaptics InterTouch for ThinkPad L14 G1
     - [arm64] reset: hisilicon: hi6220: fix Wvoid-pointer-to-enum-cast warning
     - Input: atkbd - skip ATKBD_CMD_GETID in translated mode
     - Input: i8042 - add nomux quirk for Acer P459-G2-M
     - [s390x] scm: fix virtual vs physical address confusion
     - wifi: iwlwifi: pcie: avoid a NULL pointer dereference
     - Input: xpad - add Razer Wolverine V2 support
     - HID: nintendo: fix initializer element is not constant error
     - [x86] platform/x86: thinkpad_acpi: fix for incorrect fan reporting on some
       ThinkPad systems
     - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for the Medion Lifetab S10346
     - [x86] ASoC: Intel: bytcr_rt5640: Add new swapped-speakers quirk
     - ALSA: hda/realtek: Add quirks for ASUS Zenbook 2022 Models
     - dm audit: fix Kconfig so DM_AUDIT depends on BLK_DEV_DM
     - HID: nintendo: Prevent divide-by-zero on code
     - smb: client: fix potential OOB in smb2_dump_detail() (CVE-2023-6610)
     - [arm64,armhf] i2c: rk3x: fix potential spinlock recursion on poll
     - drm/amd/display: get dprefclk ss info from integration info table
     - ida: Fix crash in ida_free when the bitmap is empty (CVE-2023-6915)
     - virtio_blk: fix snprintf truncation compiler warning
     - net: qrtr: ns: Return 0 if server port is not present
     - [armhf] sun9i: smp: fix return code check of of_property_match_string
     - drm/crtc: fix uninitialized variable use
     - ALSA: hda/realtek: Fix mute and mic-mute LEDs for HP Envy X360 13-ay0xxx
     - ACPI: resource: Add another DMI match for the TongFang GMxXGxx
     - [x86] ASoC: SOF: Intel: hda-codec: Delay the codec device registration
     - btf, scripts: Exclude Rust CUs with pahole
     - bpf: Add --skip_encoding_btf_inconsistent_proto, --btf_gen_optimized to
       pahole flags for v1.25
     - ksmbd: don't allow O_TRUNC open on read-only share
     - ksmbd: free ppace array on error in parse_dacl
     - Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d"
     - [arm*] binder: use EPOLLERR from eventpoll.h
     - [arm*] binder: fix use-after-free in shinker's callback
     - [arm*] binder: fix trivial typo of binder_free_buf_locked()
     - [arm*] binder: fix comment on binder_alloc_new_buf() return value
     - uio: Fix use-after-free in uio_open
     - parport: parport_serial: Add Brainboxes BAR details
     - parport: parport_serial: Add Brainboxes device IDs and geometry
     - PCI: Add ACS quirk for more Zhaoxin Root Ports
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.75
     - [x86] lib: Fix overflow when counting digits
     - [x86] mce/inject: Clear test status value
     - [arm64] EDAC/thunderx: Fix possible out-of-bounds string access
     - [powerpc*] remove checks for binutils older than 2.25
     - [powerpc*] add crtsavres.o to always-y instead of extra-y
     - [powerpc*] 44x: select I2C for CURRITUCK
     - [powerpc*] pseries/memhp: Fix access beyond end of drmem array
     - [powerpc*] powernv: Add a null pointer check to scom_debug_init_one()
     - [powerpc*] powernv: Add a null pointer check in opal_event_init()
     - [powerpc*] powernv: Add a null pointer check in opal_powercap_init()
     - [powerpc*] imc-pmu: Add a null pointer check in update_events_in_group()
     - ACPI: video: check for error while searching for backlight device parent
     - ACPI: LPIT: Avoid u32 multiplication overflow
     - KEYS: encrypted: Add check for strsep
     - [x86] platform/x86/intel/vsec: Enhance and Export intel_vsec_add_aux()
     - [x86] platform/x86/intel/vsec: Support private data
     - [x86] platform/x86/intel/vsec: Use mutex for ida_alloc() and ida_free()
     - [x86] platform/x86/intel/vsec: Fix xa_alloc memory leak
     - of: Add of_property_present() helper
     - cpufreq: Use of_property_present() for testing DT property presence
     - cpufreq: scmi: process the result of devm_of_clk_add_hw_provider()
     - calipso: fix memory leak in netlbl_calipso_add_pass()
     - efivarfs: force RO when remounting if SetVariable is not supported
     - efivarfs: Free s_fs_info on unmount
     - ACPI: LPSS: Fix the fractional clock divider flags
     - ACPI: extlog: Clear Extended Error Log status when RAS_CEC handled the
       error
     - mtd: Fix gluebi NULL pointer dereference caused by ftl notifier
     - selinux: Fix error priority for bind with AF_UNSPEC on PF_INET6 socket
     - crypto: virtio - Handle dataq logic with tasklet
     - [x86] crypto: ccp - fix memleak in ccp_init_dm_workarea
     - crypto: af_alg - Disallow multiple in-flight AIO requests
     - [arm64] crypto: safexcel - Add error handling for dma_map_sg() calls
     - crypto: hisilicon/qm - save capability registers in qm init process
     - crypto: hisilicon/zip - add zip comp high perf mode configuration
     - crypto: hisilicon/qm - add a function to set qm algs
     - crypto: hisilicon/hpre - save capability registers in probe process
     - crypto: hisilicon/sec2 - save capability registers in probe process
     - crypto: hisilicon/zip - save capability registers in probe process
     - pstore: ram_core: fix possible overflow in persistent_ram_init_ecc()
     - erofs: fix memory leak on short-lived bounced pages
     - fs: indicate request originates from old mount API
     - gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump
     - crypto: virtio - Wait for tasklet to complete on device remove
     - crypto: scomp - fix req->dst buffer overflow
     - csky: fix arch_jump_label_transform_static override
     - blocklayoutdriver: Fix reference leak of pnfs_device_node
     - NFSv4.1/pnfs: Ensure we handle the error NFS4ERR_RETURNCONFLICT
     - SUNRPC: fix _xprt_switch_find_current_entry logic
     - pNFS: Fix the pnfs block driver's calculation of layoutget size
     - wifi: plfxlc: check for allocation failure in plfxlc_usb_wreq_async()
     - wifi: rtw88: fix RX filter in FIF_ALLMULTI flag
     - bpf, lpm: Fix check prefixlen before walking trie
     - bpf: Add crosstask check to __bpf_get_stack
     - wifi: ath11k: Defer on rproc_get failure
     - wifi: libertas: stop selecting wext
     - [armhf] net/ncsi: Fix netlink major/minor version numbers
     - [arm64] firmware: ti_sci: Fix an off-by-one in ti_sci_debugfs_create()
     - [arm64] firmware: meson_sm: populate platform devices from sm device tree
       data
     - wifi: rtlwifi: rtl8821ae: phy: fix an undefined bitwise shift behavior
     - md: synchronize flush io with array reconfiguration
     - bpf: enforce precision of R0 on callback return
     - rcu-tasks: Provide rcu_trace_implies_rcu_gp()
     - bpf: add percpu stats for bpf_map elements insertions/deletions
     - bpf: Add map and need_defer parameters to .map_fd_put_ptr()
     - bpf: Defer the free of inner map when necessary
     - bpf: fix check for attempt to corrupt spilled pointer
     - scsi: fnic: Return error if vmalloc() failed
     - [arm64] dts: qcom: qrb5165-rb5: correct LED panic indicator
     - [arm64] dts: qcom: sdm845-db845c: correct LED panic indicator
     - bpf: Fix verification of indirect var-off stack access
     - dt-bindings: media: mediatek: mdp3: correct RDMA and WROT node with
       generic names
     - wifi: mt76: mt7921: fix country count limitation for CLC
     - block: Set memalloc_noio to false on device_add_disk() error path
     - [arm64] scsi: hisi_sas: Replace with standard error code return value
     - [arm64] scsi: hisi_sas: Rollback some operations if FLR failed
     - [arm64] scsi: hisi_sas: Correct the number of global debugfs registers
     - [armhf] dts: stm32: don't mix SCMI and non-SCMI board compatibles
     - ipmr: support IP_PKTINFO on cache report IGMP msg
     - virtio/vsock: fix logic which reduces credit update messages
     - dma-mapping: clear dev->dma_mem to NULL after freeing it
     - [arm64] dts: qcom: sm8150-hdk: fix SS USB regulators
     - block: add check of 'minors' and 'first_minor' in device_add_disk()
     - wifi: rtlwifi: add calculate_bit_shift()
     - wifi: rtlwifi: rtl8188ee: phy: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192c: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192cu: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192ce: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192de: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192ee: using calculate_bit_shift()
     - wifi: rtlwifi: rtl8192se: using calculate_bit_shift()
     - wifi: iwlwifi: mvm: set siso/mimo chains to 1 in FW SMPS request
     - wifi: iwlwifi: mvm: send TX path flush in rfkill
     - netfilter: nf_tables: mark newset as dead on transaction abort
     - Bluetooth: Fix bogus check for re-auth no supported with non-ssp
     - Bluetooth: btmtkuart: fix recv_buf() return value
     - block: make BLK_DEF_MAX_SECTORS unsigned
     - null_blk: don't cap max_hw_sectors to BLK_DEF_MAX_SECTORS
     - bpf: sockmap, fix proto update hook to avoid dup calls
     - sctp: support MSG_ERRQUEUE flag in recvmsg()
     - sctp: fix busy polling
     - net/sched: act_ct: fix skb leak and crash on ooo frags
     - mlxbf_gige: Fix intermittent no ip issue
     - mlxbf_gige: Enable the GigE port in mlxbf_gige_open
     - ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()
     - [armhf] Revert "drm/omapdrm: Annotate dma-fence critical section in commit
       path"
     - [arm64,armhf] drm/panfrost: Really power off GPU cores in
       panfrost_gpu_power_off()
     - RDMA/usnic: Silence uninitialized symbol smatch warnings
     - [arm64] RDMA/hns: Fix inappropriate err code for unsupported operations
     - drm/nouveau/fence:: fix warning directly dereferencing a rcu pointer
     - drm/bridge: tpd12s015: Drop buggy __exit annotation for remove function
     - drm/tilcdc: Fix irq free on unload
     - media: pvrusb2: fix use after free on context disconnection
     - media: mtk-jpegdec: export jpeg decoder functions
     - media: mtk-jpeg: Remove cancel worker in mtk_jpeg_remove to avoid the
       crash of multi-core JPEG devices
     - media: verisilicon: Hook the (TRY_)DECODER_CMD stateless ioctls
     - media: rkvdec: Hook the (TRY_)DECODER_CMD stateless ioctls
     - drm/bridge: Fix typo in post_disable() description
     - f2fs: fix to avoid dirent corruption
     - drm/radeon/r600_cs: Fix possible int overflows in r600_cs_check_reg()
     - drm/radeon/r100: Fix integer overflow issues in r100_cs_track_check()
     - drm/radeon: check return value of radeon_ring_lock()
     - [arm64] drm/msm/mdp4: flush vblank event on disable
     - [arm64] drm/msm/dsi: Use pm_runtime_resume_and_get to prevent refcnt leaks
     - drm/drv: propagate errors from drm_modeset_register_all()
     - [x86] ASoC: Intel: glk_rt5682_max98357a: fix board id mismatch
     - [arm64,armhf] drm/panfrost: Ignore core_mask for poweroff and disable
       PWRTRANS irq
     - drm/radeon: check the alloc_workqueue return value in radeon_crtc_init()
     - drm/radeon/dpm: fix a memleak in sumo_parse_power_table
     - drm/radeon/trinity_dpm: fix a memleak in trinity_parse_power_table
     - drm/bridge: cdns-mhdp8546: Fix use of uninitialized variable
     - drm/bridge: tc358767: Fix return value on error case
     - media: cx231xx: fix a memleak in cx231xx_init_isoc
     - [arm64] RDMA/hns: Fix memory leak in free_mr_init()
     - drm/panel: st7701: Fix AVCL calculation
     - f2fs: fix to wait on block writeback for post_read case
     - f2fs: fix to check compress file in f2fs_move_file_range()
     - f2fs: fix to update iostat correctly in f2fs_filemap_fault()
     - media: dvbdev: drop refcount on error path in dvb_device_open()
     - media: dvb-frontends: m88ds3103: Fix a memory leak in an error handling
       path of m88ds3103_probe()
     - [arm64] drm/msm/dpu: Set input_sel bit for INTF
     - [arm64] drm/msm/dpu: Drop enable and frame_count parameters from
       dpu_hw_setup_misr()
     - drm/amdgpu/debugfs: fix error code when smc register accessors are NULL
     - drm/amd/pm: fix a double-free in si_dpm_init
     - drivers/amd/pm: fix a use-after-free in kv_parse_power_table
     - gpu/drm/radeon: fix two memleaks in radeon_vm_init
     - drm/amd/pm: fix a double-free in amdgpu_parse_extended_power_table
     - f2fs: fix to check return value of f2fs_recover_xattr_data
     - dt-bindings: clock: Update the videocc resets for sm8150
     - [arm64] drivers: clk: zynqmp: calculate closest mux rate
     - [arm64] drivers: clk: zynqmp: update divider round rate logic
     - watchdog: set cdev owner before adding
     - watchdog/hpwdt: Only claim UNKNOWN NMI if from iLO
     - watchdog: bcm2835_wdt: Fix WDIOC_SETTIMEOUT handling
     - watchdog: rti_wdt: Drop runtime pm reference count when watchdog is unused
     - [arm64] clk: si5341: fix an error code problem in
       si5341_output_clk_set_rate
     - accel/habanalabs: fix information leak in sec_attest_info()
       (CVE-2023-50431)
     - clk: fixed-rate: fix clk_hw_register_fixed_rate_with_accuracy_parent_hw
     - ASoC: rt5645: Drop double EF20 entry from dmi_platform_data[]
     - ALSA: scarlett2: Add missing error check to scarlett2_config_save()
     - ALSA: scarlett2: Add missing error check to scarlett2_usb_set_config()
     - ALSA: scarlett2: Allow passing any output to line_out_remap()
     - ALSA: scarlett2: Add missing error checks to *_ctl_get()
     - ALSA: scarlett2: Add clamp() in scarlett2_mixer_ctl_put()
     - IB/iser: Prevent invalidating wrong MR
     - drm/amd/pm/smu7: fix a memleak in smu7_hwmgr_backend_init
     - ksmbd: validate the zero field of packet header
     - of: Fix double free in of_parse_phandle_with_args_map
     - keys, dns: Fix size check of V1 server-list header
     - [arm*] binder: fix async space check for 0-sized buffers
     - [arm*] binder: fix unused alloc->free_async_space
     - [mipel*] smp: Call rcutree_report_cpu_starting() earlier
     - Input: atkbd - use ab83 as id when skipping the getid command
     - xen-netback: don't produce zero-size SKB frags (CVE-2023-46838)
     - [arm*] binder: fix race between mmput() and do_exit()
     - [arm64,armhf] clocksource/drivers/timer-ti-dm: Fix make W=n kerneldoc
       warnings
     - [powerpc*] 64s: Increase default stack size to 32KB
     - tick-sched: Fix idle and iowait sleeptime accounting vs CPU hotplug
     - [armhf] usb: phy: mxs: remove CONFIG_USB_OTG condition for
       mxs_phy_is_otg_host()
     - [arm64,armhf] usb: dwc: ep0: Update request status in
       dwc3_ep0_stall_restart
     - [arm64,armhf] Revert "usb: dwc3: Soft reset phy on probe for host"
     - [arm64,armhf] Revert "usb: dwc3: don't reset device side if dwc3 was
       configured as host-only"
     - [arm64,armhf] usb: chipidea: wait controller resume finished for wakeup
       irq
     - Revert "usb: typec: class: fix typec_altmode_put_partner to put plugs"
     - usb: typec: class: fix typec_altmode_put_partner to put plugs
     - usb: mon: Fix atomicity violation in mon_bin_vma_fault
     - serial: core: fix sanitizing check for RTS settings
     - serial: core: make sure RS485 cannot be enabled when it is not supported
     - [arm64,armhf] serial: 8250_bcm2835aux: Restore clock error handling
     - serial: core, imx: do not set RS485 enabled if it is not supported
     - [arm64,armhf] serial: imx: Ensure that imx_uart_rs485_config() is called
       with enabled clock
     - serial: 8250_exar: Set missing rs485_supported flag
     - [armhf] serial: omap: do not override settings for RS485 support
     - drm/vmwgfx: Fix possible invalid drm gem put calls
     - drm/vmwgfx: Keep a gem reference to user bos in surfaces (CVE-2023-5633)
     - ALSA: oxygen: Fix right channel of capture volume mixer
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15s-fq2xxx
     - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on HP
       ZBook
     - ALSA: hda/realtek: Enable headset mic on Lenovo M70 Gen5
     - ksmbd: validate mech token in session setup
     - ksmbd: fix UAF issue in ksmbd_tcp_new_connection()
     - ksmbd: only v2 leases handle the directory
     - io_uring/rw: ensure io->bytes_done is always initialized
     - fbdev: flush deferred work in fb_deferred_io_fsync()
     - fbdev: flush deferred IO before closing
     - scsi: ufs: core: Simplify power management during async scan
     - scsi: target: core: add missing file_{start,end}_write()
     - scsi: mpi3mr: Refresh sdev queue depth after controller reset
     - scsi: mpi3mr: Block PEL Enable Command on Controller Reset and
       Unrecoverable State
     - drm/amd: Enable PCIe PME from D3
     - block: add check that partition length needs to be aligned with block size
     - block: Fix iterating over an empty bio with bio_for_each_folio_all
     - netfilter: nf_tables: check if catch-all set element is active in next
       generation (CVE-2024-1085)
     - pwm: Fix out-of-bounds access in of_pwm_single_xlate()
     - md/raid1: Use blk_opf_t for read and write operations
     - rootfs: Fix support for rootfstype= when root= is given
     - Bluetooth: Fix atomicity violation in {min,max}_key_size_set
     - bpf: Fix re-attachment branch in bpf_tracing_prog_attach
     - [arm64] iommu/arm-smmu-qcom: Add missing GMU entry to match table
     - iommu/dma: Trace bounce buffer usage when mapping buffers
     - wifi: mt76: fix broken precal loading from MTD for mt7915
     - wifi: rtlwifi: Remove bogus and dangerous ASPM disable/enable code
     - wifi: rtlwifi: Convert LNKCTL change to PCIe cap RMW accessors
     - wifi: mwifiex: configure BSSID consistently when starting AP
     - Revert "net: rtnetlink: Enslave device before bringing it up"
     - cxl/port: Fix decoder initialization when nr_targets > interleave_ways
     - PCI/P2PDMA: Remove reference to pci_p2pdma_map_sg()
     - [x86] kvm: Do not try to disable kvmclock if it was not enabled
     - [arm64] KVM: arm64: vgic-v4: Restore pending state on host userspace write
     - [arm64] KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache
     - iio: adc: ad7091r: Pass iio_dev to event handler
     - HID: wacom: Correct behavior when processing some confidence == false
       touches
     - mfd: syscon: Fix null pointer dereference in of_syscon_register()
     - [x86] mfd: intel-lpss: Fix the fractional clock divider flags
     - [mipsel] Fix incorrect max_low_pfn adjustment
     - [arm64] power: supply: cw2015: correct time_to_empty units in sysfs
     - [arm64] serial: 8250: omap: Don't skip resource freeing if
       pm_runtime_resume_and_get() failed
     - libapi: Add missing linux/types.h header to get the __u64 type on io.h
     - base/node.c: initialize the accessor list before registering
     - acpi: property: Let args be NULL in __acpi_node_get_property_reference
     - software node: Let args be NULL in software_node_get_reference_args
     - serial: imx: fix tx statemachine deadlock
     - iio: adc: ad9467: fix reset gpio handling
     - iio: adc: ad9467: don't ignore error codes
     - iio: adc: ad9467: fix scale setting
     - perf header: Fix one memory leakage in perf_event__fprintf_event_update()
     - perf hisi-ptt: Fix one memory leakage in hisi_ptt_process_auxtrace_event()
     - perf genelf: Set ELF program header addresses properly
     - tty: change tty_write_lock()'s ndelay parameter to bool
     - tty: early return from send_break() on TTY_DRIVER_HARDWARE_BREAK
     - tty: don't check for signal_pending() in send_break()
     - tty: use 'if' in send_break() instead of 'goto'
     - usb: cdc-acm: return correct error code on unsupported break
     - nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length
     - nvmet-tcp: fix a crash in nvmet_req_complete()
     - perf env: Avoid recursively taking env->bpf_progs.lock
     - cxl/region: fix x9 interleave typo
     - apparmor: avoid crash when parsed profile name is empty
     - [arm64,armhf] serial: imx: Correct clock error message in function probe()
     - nvmet: re-fix tracing strncpy() warning
     - nvme: trace: avoid memcpy overflow warning
     - nvmet-tcp: Fix the H2C expected PDU len calculation
     - [s390x] pci: fix max size calculation in zpci_memcpy_toio()
     - [arm64] net: ethernet: ti: am65-cpsw: Fix max mtu to fit ethernet frames
     - net: phy: micrel: populate .soft_reset for KSZ9131
     - mptcp: mptcp_parse_option() fix for MPTCPOPT_MP_JOIN
     - mptcp: strict validation before using mp_opt->hmac
     - mptcp: use OPTION_MPTCP_MPJ_SYNACK in subflow_finish_connect()
     - mptcp: use OPTION_MPTCP_MPJ_SYN in subflow_check_req()
     - mptcp: refine opt_mp_capable determination
     - block: ensure we hold a queue reference when using queue limits
     - udp: annotate data-races around up->pending
     - net: stmmac: ethtool: Fixed calltrace caused by unbalanced
       disable_irq_wake calls
     - bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS
     - mptcp: relax check on MPC passive fallback
     - netfilter: nf_tables: reject invalid set policy
     - netfilter: nft_limit: do not ignore unsupported flags
     - netfilter: nfnetlink_log: use proper helper for fetching physinif
     - netfilter: nf_queue: remove excess nf_bridge variable
     - netfilter: propagate net to nf_bridge_get_physindev
     - netfilter: bridge: replace physindev with physinif in nf_bridge_info
     - netfilter: nf_tables: do not allow mismatch field size and set key length
     - netfilter: nf_tables: skip dead set elements in netlink dump
     - netfilter: nf_tables: reject NFT_SET_CONCAT with not field length
       description
     - ipvs: avoid stat macros calls from preemptible context
     - kdb: Fix a potential buffer overflow in kdb_local()
     - ethtool: netlink: Add missing ethnl_ops_begin/complete
     - loop: fix the the direct I/O support check when used on top of block
       devices
     - ipv6: mcast: fix data-race in ipv6_mc_down / mld_ifc_work
     - [armhf] i2c: s3c24xx: fix read transfers in polling mode
     - [armhf] i2c: s3c24xx: fix transferring more than one message in polling
       mode
     - block: Remove special-casing of compound pages
     - Revert "KEYS: encrypted: Add check for strsep"
     - [arm64] dts: armada-3720-turris-mox: set irq type for RTC
     - Revert "Revert "md/raid5: Wait for MD_SB_CHANGE_PENDING in raid5d""
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.76
     - [arm64,armhf] usb: dwc3: gadget: Refactor EP0 forced stall/restart into a
       separate API
     - [arm64,armhf] usb: dwc3: gadget: Queue PM runtime idle on disconnect event
     - [arm64,armhf] usb: dwc3: gadget: Handle EP0 request dequeuing properly
     - [x86] Revert "nSVM: Check for reserved encodings of TLB_CONTROL in nested
       VMCB"
     - iio: adc: ad7091r: Set alert bit in config register
     - iio: adc: ad7091r: Allow users to configure device events
     - ext4: allow for the last group to be marked as trimmed
     - OPP: Pass rounded rate to _set_opp()
     - btrfs: sysfs: validate scrub_speed_max value
     - crypto: api - Disallow identical driver names
     - PM: hibernate: Enforce ordering during image compression/decompression
     - hwrng: core - Fix page fault dead lock on mmap-ed hwrng
     - [s390x] crypto: s390/aes - Fix buffer overread in CTR mode
     - [s390x] vfio-ap: unpin pages on gisc registration failure
     - PM / devfreq: Fix buffer overflow in trans_stat_show
     - media: imx355: Enable runtime PM before registering async sub-device
     - rpmsg: virtio: Free driver_override when rpmsg_remove()
     - media: ov9734: Enable runtime PM before registering async sub-device
     - [s390x] vfio-ap: always filter entire AP matrix
     - [s390x] vfio-ap: loop over the shadow APCB when filtering guest's AP
       configuration
     - [s390x] vfio-ap: let on_scan_complete() callback filter matrix and update
       guest's APCB
     - [mips*] Fix max_mapnr being uninitialized on early stages
     - bus: mhi: host: Add alignment check for event ring read pointer
     - bus: mhi: host: Drop chan lock before queuing buffers
     - bus: mhi: host: Add spinlock to protect WP access when queueing TREs
     - async: Split async_schedule_node_domain()
     - async: Introduce async_schedule_dev_nocall()
     - iio: adc: ad7091r: Enable internal vref if external vref is not supplied
     - dmaengine: fix NULL pointer in channel unregistration function
     - scsi: ufs: core: Remove the ufshcd_hba_exit() call from
       ufshcd_async_scan()
     - [arm64] dts: qcom: sc7180: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sdm845: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sm8150: fix USB wakeup interrupt types
     - [arm64] dts: qcom: sc7280: fix usb_1 wakeup interrupt types
     - [arm64] dts: qcom: sdm845: fix USB DP/DM HS PHY interrupts
     - [arm64] dts: qcom: sm8150: fix USB DP/DM HS PHY interrupts
     - lsm: new security_file_ioctl_compat() hook
     - docs: kernel_abi.py: fix command injection
     - scripts/get_abi: fix source path leak
     - media: videobuf2-dma-sg: fix vmap callback
     - mmc: core: Use mrq.sbc in close-ended ffu
     - mmc: mmc_spi: remove custom DMA mapped buffers
     - media: mtk-jpeg: Fix use after free bug due to error path handling in
       mtk_jpeg_dec_device_run
     - [arm64] Rename ARM64_WORKAROUND_2966298
     - rtc: cmos: Use ACPI alarm for non-Intel x86 systems too
     - rtc: Adjust failure return code for cmos_set_alarm()
     - rtc: mc146818-lib: Adjust failure return code for mc146818_get_time()
     - rtc: Add support for configuring the UIP timeout for RTC reads
     - rtc: Extend timeout for waiting for UIP to clear to 1s
     - nouveau/vmm: don't set addr on the fail path to avoid warning
     - ubifs: ubifs_symlink: Fix memleak of inode->i_link in error path
     - mm/rmap: fix misplaced parenthesis of a likely()
     - mm/sparsemem: fix race in accessing memory_section->usage
     - rename(): fix the locking of subdirectories
     - serial: sc16is7xx: improve regmap debugfs by using one regmap per port
     - serial: sc16is7xx: remove wasteful static buffer in
       sc16is7xx_regmap_name()
     - serial: sc16is7xx: remove global regmap from struct sc16is7xx_port
     - serial: sc16is7xx: remove unused line structure member
     - serial: sc16is7xx: change EFR lock to operate on each channels
     - serial: sc16is7xx: convert from _raw_ to _noinc_ regmap functions for FIFO
     - serial: sc16is7xx: fix invalid sc16is7xx_lines bitfield in case of probe
       error
     - serial: sc16is7xx: remove obsolete loop in sc16is7xx_port_irq()
     - serial: sc16is7xx: improve do/while loop in sc16is7xx_irq()
     - mm: page_alloc: unreserve highatomic page blocks before oom
     - ksmbd: set v2 lease version on lease upgrade
     - ksmbd: fix potential circular locking issue in smb2_set_ea()
     - ksmbd: don't increment epoch if current state and request state are same
     - ksmbd: send lease break notification on FILE_RENAME_INFORMATION
     - ksmbd: Add missing set_freezable() for freezable kthread
     - Revert "drm/amd: Enable PCIe PME from D3"
     - drm/amd/display: pbn_div need be updated for hotplug event
     - wifi: mac80211: fix potential sta-link leak
     - net/smc: fix illegal rmb_desc access in SMC-D connection dump
     - tcp: make sure init the accept_queue's spinlocks once
     - bnxt_en: Wait for FLR to complete during probe
     - vlan: skip nested type that is not IFLA_VLAN_QOS_MAPPING
     - llc: make llc_ui_sendmsg() more robust against bonding changes
     - llc: Drop support for ETH_P_TR_802_2.
     - udp: fix busy polling
     - net: fix removing a namespace with conflicting altnames
     - tun: fix missing dropped counter in tun_xdp_act
     - tun: add missing rx stats accounting in tun_xdp_act
     - net: micrel: Fix PTP frame parsing for lan8814
     - net/rds: Fix UBSAN: array-index-out-of-bounds in rds_cmsg_recv
     - netfs, fscache: Prevent Oops in fscache_put_cache()
     - tracing: Ensure visibility when inserting an element into tracing_map
     - afs: Hide silly-rename files from userspace
     - tcp: Add memory barrier to tcp_push()
     - netlink: fix potential sleeping issue in mqueue_flush_file
     - ipv6: init the accept_queue's spinlocks in inet6_create
     - net/mlx5: DR, Use the right GVMI number for drop action
     - net/mlx5: DR, Can't go to uplink vport on RX rule
     - net/mlx5: Use mlx5 device constant for selecting CQ period mode for ASO
     - net/mlx5e: Allow software parsing when IPsec crypto is enabled
     - net/mlx5e: fix a double-free in arfs_create_groups
     - net/mlx5e: fix a potential double-free in fs_any_create_groups
     - rcu: Defer RCU kthreads wakeup when CPU is dying
     - netfilter: nft_limit: reject configurations that cause integer overflow
     - btrfs: fix infinite directory reads
     - btrfs: set last dir index to the current last index when opening dir
     - btrfs: refresh dir last index during a rewinddir(3) call
     - btrfs: fix race between reading a directory and adding entries to it
     - netfilter: nf_tables: restrict anonymous set and map names to 16 bytes
     - netfilter: nf_tables: validate NFPROTO_* family
     - net: stmmac: Wait a bit for the reset to take effect
     - net: mvpp2: clear BM pool before initialization
     - fjes: fix memleaks in fjes_hw_setup
     - net: fec: fix the unhandled context fault from smmu
     - nbd: always initialize struct msghdr completely
     - btrfs: avoid copying BTRFS_ROOT_SUBVOL_DEAD flag to snapshot of subvolume
       being deleted
     - btrfs: ref-verify: free ref cache before clearing mount opt
     - btrfs: tree-checker: fix inline ref size in error messages
     - btrfs: don't warn if discard range is not aligned to sector
     - btrfs: defrag: reject unknown flags of btrfs_ioctl_defrag_range_args
     - btrfs: don't abort filesystem when attempting to snapshot deleted
       subvolume
     - rbd: don't move requests to the running list on errors
     - exec: Fix error handling in begin_new_exec()
     - wifi: iwlwifi: fix a memory corruption
     - hv_netvsc: Calculate correct ring size when PAGE_SIZE is not 4 Kbytes
     - netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress
       basechain
     - netfilter: nf_tables: reject QUEUE/DROP verdict parameters (CVE-2024-1086)
     - [x86] platform/x86: p2sb: Allow p2sb_bar() calls during PCI device probe
     - ksmbd: fix global oob in ksmbd_nl_policy
     - [arm64] firmware: arm_scmi: Check mailbox/SMT channel for consistency
     - xfs: read only mounts with fsopen mount API are busted
     - gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04
     - cpufreq: intel_pstate: Refine computation of P-state for given frequency
     - drm: Don't unref the same fb many times by mistake due to deadlock
       handling
     - drm/bridge: nxp-ptn3460: fix i2c_master_send() error checking
     - drm/tidss: Fix atomic_flush check
     - drm/amd/display: Disable PSR-SU on Parade 0803 TCON again
     - [x86] platform/x86: intel-uncore-freq: Fix types in sysfs callbacks
     - drm/bridge: nxp-ptn3460: simplify some error checking
     - drm/amd/display: Port DENTIST hang and TDR fixes to OTG disable W/A
     - drm/amdgpu/pm: Fix the power source flag error
     - erofs: get rid of the remaining kmap_atomic()
     - erofs: fix lz4 inplace decompression
     - media: ov13b10: Support device probe in non-zero ACPI D state
     - media: ov13b10: Enable runtime PM before registering async sub-device
     - bus: mhi: ep: Do not allocate event ring element on stack
     - PM: core: Remove unnecessary (void *) conversions
     - PM: sleep: Fix possible deadlocks in core system-wide PM code
     - [x86] thermal: intel: hfi: Refactor enabling code into helper functions
     - [x86] thermal: intel: hfi: Disable an HFI instance when all its CPUs go
       offline
     - [x86] thermal: intel: hfi: Add syscore callbacks for system-wide PM
     - fs/pipe: move check to pipe_has_watch_queue()
     - pipe: wakeup wr_wait after setting max_usage
     - dlm: use kernel_connect() and kernel_bind()
     - serial: core: Provide port lock wrappers
     - serial: sc16is7xx: Use port lock wrappers
     - serial: sc16is7xx: fix unconditional activation of THRI interrupt
     - btrfs: zoned: factor out prepare_allocation_zoned()
     - btrfs: zoned: optimize hint byte for zoned allocator
     - drm/panel-edp: drm/panel-edp: Fix AUO B116XAK01 name and timing
     - Revert "powerpc/64s: Increase default stack size to 32KB"
     - drm/bridge: parade-ps8640: Wait for HPD when doing an AUX transfer
     - drm: panel-simple: add missing bus flags for Tianma tm070jvhg[30/33]
     - drm/bridge: sii902x: Use devm_regulator_bulk_get_enable()
     - drm/bridge: sii902x: Fix probing race issue
     - drm/bridge: sii902x: Fix audio codec unregistration
     - drm/bridge: parade-ps8640: Ensure bridge is suspended in .post_disable()
     - drm/bridge: parade-ps8640: Make sure we drop the AUX mutex in the error
       case
     - [armhf] drm/exynos: fix accidental on-stack copy of exynos_drm_plane
     - [armhf] drm/exynos: gsc: minor fix for loop iteration in
       gsc_runtime_resume
     - gpio: eic-sprd: Clear interrupt after set the interrupt type
     - block: Move checking GENHD_FL_NO_PART to bdev_add_partition()
     - drm/bridge: anx7625: Ensure bridge is suspended in disable()
     - spi: bcm-qspi: fix SFDP BFPT read by usig mspi read
     - spi: fix finalize message on error return
     - [mips*] lantiq: register smp_ops on non-smp platforms
     - cxl/region：Fix overflow issue in alloc_hpa()
     - [mips*] Call lose_fpu(0) before initializing fcr31 in
       mips_set_personality_nan
     - tick/sched: Preserve number of idle sleeps across CPU hotplug events
     - [x86] x86/entry/ia32: Ensure s32 is sign extended to s64
     - serial: core: fix kernel-doc for uart_port_unlock_irqrestore()
     - net/mlx5e: Handle hardware IPsec limits events
 .
   [ Salvatore Bonaccorso ]
   * Refresh "net: mana: Add support for auxiliary device"
   * Bump ABI to 18
linux-signed-i386 (6.1.69+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.69-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.68
     - hrtimers: Push pending hrtimers away from outgoing CPU earlier
     - i2c: designware: Fix corrupted memory seen in the ISR
     - netfilter: ipset: fix race condition between swap/destroy and kernel side
       add/del/test
     - tg3: Move the [rt]x_dropped counters to tg3_napi
     - tg3: Increment tx_dropped in tg3_tso_bug()
     - kconfig: fix memory leak from range properties
     - drm/amdgpu: correct chunk_ptr to a pointer to chunk.
     - [x86] Introduce ia32_enabled()
     - [amd64] x86/coco: Disable 32-bit emulation by default on TDX and SEV
     - [x86] entry: Convert INT 0x80 emulation to IDTENTRY
     - [x86] entry: Do not allow external 0x80 interrupts
     - [x86] tdx: Allow 32-bit emulation by default
     - [x86] platform/x86: asus-wmi: Move i8042 filter install to shared asus-wmi
       code
     - [powerpc*] of: dynamic: Fix of_reconfig_get_state_change() return value
       documentation
     - [x86] platform/x86: wmi: Skip blocks with zero instances
     - ipv6: fix potential NULL deref in fib6_add()
     - hv_netvsc: rndis_filter needs to select NLS
     - r8152: Rename RTL8152_UNPLUG to RTL8152_INACCESSIBLE
     - r8152: Add RTL8152_INACCESSIBLE checks to more loops
     - r8152: Add RTL8152_INACCESSIBLE to r8156b_wait_loading_flash()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_pre_firmware_1()
     - r8152: Add RTL8152_INACCESSIBLE to r8153_aldps_en()
     - arcnet: restoring support for multiple Sohard Arcnet cards
     - net: stmmac: fix FPE events losing
     - xsk: Skip polling event check for unbound socket
     - i40e: Fix unexpected MFS warning message
     - iavf: validate tx_coalesce_usecs even if rx_coalesce_usecs is zero
     - net: bnxt: fix a potential use-after-free in bnxt_init_tc
     - tcp: fix mid stream window clamp.
     - ionic: fix snprintf format length warning
     - ionic: Fix dim work handling in split interrupt mode
     - ipv4: ip_gre: Avoid skb_pull() failure in ipgre_xmit()
     - net: atlantic: Fix NULL dereference of skb pointer in
     - [arm64] net: hns: fix wrong head when modify the tx feature when sending
       packets
     - [arm64] net: hns: fix fake link up on xge port
     - netfilter: nft_exthdr: add boolean DCCP option matching
     - netfilter: nf_tables: fix 'exist' matching on bigendian arches
     - netfilter: nf_tables: bail out on mismatching dynset and set expressions
       (CVE-2023-6622)
     - netfilter: nf_tables: validate family when identifying table via handle
     - netfilter: xt_owner: Fix for unsafe access of sk->sk_socket
     - tcp: do not accept ACK of bytes we never sent
     - bpf: sockmap, updating the sg structure should also update curr
     - psample: Require 'CAP_NET_ADMIN' when joining "packets" group
     - drop_monitor: Require 'CAP_SYS_ADMIN' when joining "events" group
     - [arm64] tee: optee: Fix supplicant based device enumeration
     - [arm64] RDMA/hns: Fix unnecessary err return when using invalid congest
       control algorithm
     - RDMA/irdma: Do not modify to SQD on error
     - RDMA/irdma: Add wait for suspend on SQD
     - [arm64] ASoC: fsl_sai: Fix no frame sync clock issue on i.MX8MP
     - RDMA/irdma: Refactor error handling in create CQP
     - RDMA/irdma: Fix UAF in irdma_sc_ccq_get_cqe_info()
     - [x86] hwmon: (acpi_power_meter) Fix 4.29 MW bug
     - [x86] ASoC: wm_adsp: fix memleak in wm_adsp_buffer_populate
     - RDMA/core: Fix umem iterator when PAGE_SIZE is greater then HCA pgsz
     - RDMA/irdma: Avoid free the non-cqp_request scratch
     - [arm64] dts: imx8mq: drop usb3-resume-missing-cas from usb
     - [arm64] dts: imx8mp: imx8mq: Add parkmode-disable-ss-quirk on DWC3
     - tracing: Fix a warning when allocating buffered events fails
     - scsi: be2iscsi: Fix a memleak in beiscsi_init_wrb_handle()
     - [armhf] imx: Check return value of devm_kasprintf in imx_mmdc_perf_init
     - md: introduce md_ro_state
     - md: don't leave 'MD_RECOVERY_FROZEN' in error path of md_set_readonly()
     - iommu: Avoid more races around device probe
     - [x86] rethook: Use __rcu pointer for rethook::handler
     - kprobes: consistent rcu api usage for kretprobe holder
     - [x86] ASoC: amd: yc: Fix non-functional mic on ASUS E1504FA
     - io_uring/af_unix: disable sending io_uring over sockets (CVE-2023-6531)
     - nvme-pci: Add sleep quirk for Kingston drives
     - io_uring: fix mutex_unlock with unreferenced ctx
     - ALSA: usb-audio: Add Pioneer DJM-450 mixer controls
     - ALSA: pcm: fix out-of-bounds in snd_pcm_state_names
     - ALSA: hda/realtek: Enable headset on Lenovo M90 Gen5
     - ALSA: hda/realtek: add new Framework laptop to quirks
     - ALSA: hda/realtek: Add Framework laptop 16 to quirks
     - ring-buffer: Test last update in 32bit version of __rb_time_read()
     - nilfs2: fix missing error check for sb_set_blocksize call
     - nilfs2: prevent WARNING in nilfs_sufile_set_segment_usage()
     - cgroup_freezer: cgroup_freezing: Check if not frozen
     - checkstack: fix printed address
     - tracing: Always update snapshot buffer size
     - tracing: Disable snapshot buffer when stopping instance tracers
     - tracing: Fix incomplete locking when disabling buffered events
     - tracing: Fix a possible race when disabling buffered events
     - packet: Move reference count in packet_sock to atomic_long_t
     - r8169: fix rtl8125b PAUSE frames blasting when suspended
     - regmap: fix bogus error on regcache_sync success
     - [x86] platform/surface: aggregator: fix recv_buf() return value
     - hugetlb: fix null-ptr-deref in hugetlb_vma_lock_write
     - mm: fix oops when filemap_map_pmd() without prealloc_pte
     - md/raid6: use valid sector values to determine if an I/O should wait on
       the reshape
     - [arm*] binder: fix memory leaks of spam and pending work
     - [arm64] coresight: etm4x: Make etm4_remove_dev() return void
     - [arm64] coresight: etm4x: Remove bogous __exit annotation for some
       functions
     - hwtracing: hisi_ptt: Add dummy callback pmu::read()
     - [x86] misc: mei: client.c: return negative error code in mei_cl_write
     - [x86] misc: mei: client.c: fix problem of return '-EOVERFLOW' in
       mei_cl_write
     - ring-buffer: Force absolute timestamp on discard of event
     - tracing: Set actual size after ring buffer resize
     - tracing: Stop current tracer when resizing buffer
     - perf: Fix perf_event_validate_size() (CVE-2023-6931)
     - [x86] sev: Fix kernel crash due to late update to read-only ghcb_version
     - gpiolib: sysfs: Fix error handling on failed export
     - drm/amdgpu: fix memory overflow in the IB test
     - drm/amd/amdgpu: Fix warnings in amdgpu/amdgpu_display.c
     - drm/amdgpu: correct the amdgpu runtime dereference usage count
     - drm/amdgpu: Update ras eeprom support for smu v13_0_0 and v13_0_10
     - drm/amdgpu: Add EEPROM I2C address support for ip discovery
     - drm/amdgpu: Remove redundant I2C EEPROM address
     - drm/amdgpu: Decouple RAS EEPROM addresses from chips
     - drm/amdgpu: Add support for RAS table at 0x40000
     - drm/amdgpu: Remove second moot switch to set EEPROM I2C address
     - drm/amdgpu: Return from switch early for EEPROM I2C address
     - drm/amdgpu: simplify amdgpu_ras_eeprom.c
     - drm/amdgpu: Add I2C EEPROM support on smu v13_0_6
     - drm/amdgpu: Update EEPROM I2C address for smu v13_0_0
     - usb: gadget: f_hid: fix report descriptor allocation
     - serial: 8250_dw: Add ACPI ID for Granite Rapids-D UART
     - parport: Add support for Brainboxes IX/UC/PX parallel cards
     - cifs: Fix non-availability of dedup breaking generic/304
     - Revert "xhci: Loosen RPM as default policy to cover for AMD xHC 1.1"
     - smb: client: fix potential NULL deref in parse_dfs_referrals()
     - usb: typec: class: fix typec_altmode_put_partner to put plugs
     - [arm64,armhf] PL011: Fix DMA support
     - [arm64] serial: 8250: 8250_omap: Clear UART_HAS_RHR_IT_DIS bit
     - [arm64] serial: 8250: 8250_omap: Do not start RX DMA on THRI interrupt
     - [arm64] serial: 8250_omap: Add earlycon support for the AM654 UART
       controller
     - devcoredump: Send uevent once devcd is ready
     - [x86] CPU/AMD: Check vendor in the AMD microcode callback
     - USB: gadget: core: adjust uevent timing on gadget unbind
     - cifs: Fix flushing, invalidation and file size with copy_file_range()
     - cifs: Fix flushing, invalidation and file size with FICLONE
     - [mips*] kernel: Clear FPU states when setting up kernel threads
       (Closes: #1055021)
     - [s390x] KVM: s390/mm: Properly reset no-dat
     - [x86] KVM: SVM: Update EFER software model on CR0 trap for SEV-ES
     - netfilter: nft_set_pipapo: skip inactive elements during set walk
       (CVE-2023-6817)
     - [x86] drm/i915/display: Drop check for doublescan mode in modevalid
     - [x86] drm/i915/lvds: Use REG_BIT() & co.
     - [x86] drm/i915/sdvo: stop caching has_hdmi_monitor in struct intel_sdvo
     - [x86] drm/i915: Skip some timing checks on BXT/GLK DSI transcoders
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.69
     - [x86] perf/x86/uncore: Don't WARN_ON_ONCE() for a broken discovery table
     - r8152: add USB device driver for config selection
     - r8152: add vendor/device ID pair for D-Link DUB-E250
     - r8152: add vendor/device ID pair for ASUS USB-C2500
     - [powerpc*] ftrace: Fix stack teardown in ftrace_no_trace
     - ext4: fix warning in ext4_dio_write_end_io()
     - ksmbd: fix memory leak in smb2_lock()
     - afs: Fix refcount underflow from error handling race (Closes: #1052304)
     - HID: lenovo: Restrict detection of patched firmware only to USB cptkbd
       (Closes: #1058758)
     - net/mlx5e: Fix possible deadlock on mlx5e_tx_timeout_work
     - net: ipv6: support reporting otherwise unknown prefix flags in
       RTM_NEWPREFIX
     - bnxt_en: Clear resource reservation during resume
     - bnxt_en: Save ring error counters across reset
     - bnxt_en: Fix wrong return value check in bnxt_close_nic()
     - bnxt_en: Fix HWTSTAMP_FILTER_ALL packet timestamp logic
     - atm: solos-pci: Fix potential deadlock on &cli_queue_lock
     - atm: solos-pci: Fix potential deadlock on &tx_queue_lock
     - net: vlan: introduce skb_vlan_eth_hdr()
     - net: fec: correct queue selection
     - atm: Fix Use-After-Free in do_vcc_ioctl (CVE-2023-51780)
     - net/rose: Fix Use-After-Free in rose_ioctl (CVE-2023-51782)
     - iavf: Introduce new state machines for flow director
     - iavf: Handle ntuple on/off based on new state machines for flow director
     - qed: Fix a potential use-after-free in qed_cxt_tables_alloc
     - net: Remove acked SYN flag from packet in the transmit queue correctly
     - net: ena: Destroy correct number of xdp queues upon failure
     - net: ena: Fix xdp drops handling due to multibuf packets
     - net: ena: Fix XDP redirection error
     - sign-file: Fix incorrect return values check
     - vsock/virtio: Fix unsigned integer wrap around in
       virtio_transport_has_space()
     - net: stmmac: Handle disabled MDIO busses from devicetree
     - appletalk: Fix Use-After-Free in atalk_ioctl (CVE-2023-51781)
     - net: atlantic: fix double free in ring reinit logic
     - cred: switch to using atomic_long_t
     - fuse: dax: set fc->dax to NULL in fuse_dax_conn_free()
     - ALSA: hda/hdmi: add force-connect quirk for NUC5CPYB
     - ALSA: hda/hdmi: add force-connect quirks for ASUSTeK Z170 variants
     - ALSA: hda/realtek: Apply mute LED quirk for HP15-db
     - Revert "PCI: acpiphp: Reassign resources on bridge if necessary"
     - [mips*] PCI: loongson: Limit MRRS to 256 (Closes: #1035587)
     - ksmbd: fix wrong name of SMB2_CREATE_ALLOCATION_SIZE
     - [x86] hyperv: Fix the detection of E820_TYPE_PRAM in a Gen2 VM
     - usb: aqc111: check packet for fixup for true limit
     - blk-throttle: fix lockdep warning of "cgroup_mutex or RCU read lock
       required!"
     - blk-cgroup: bypass blkcg_deactivate_policy after destroying
     - bcache: avoid oversize memory allocation by small stripe_size
     - bcache: remove redundant assignment to variable cur_idx
     - bcache: add code comments for bch_btree_node_get() and
       __bch_btree_node_alloc()
     - bcache: avoid NULL checking to c->root in run_cache_set()
     - nbd: fold nbd config initialization into nbd_alloc_config()
     - nvme-auth: set explanation code for failure2 msgs
     - nvme: catch errors from nvme_configure_metadata()
     - [x86] platform/x86: intel_telemetry: Fix kernel doc descriptions
     - HID: glorious: fix Glorious Model I HID report
     - HID: add ALWAYS_POLL quirk for Apple kb
     - nbd: pass nbd_sock to nbd_read_reply() instead of index
     - HID: hid-asus: reset the backlight brightness level on resume
     - HID: multitouch: Add quirk for HONOR GLO-GXXX touchpad
     - asm-generic: qspinlock: fix queued_spin_value_unlocked() implementation
     - net: usb: qmi_wwan: claim interface 4 for ZTE MF290
     - [arm64] add dependency between vmlinuz.efi and Image
     - HID: hid-asus: add const to read-only outgoing usb buffer
     - perf: Fix perf_event_validate_size() lockdep splat
     - btrfs: do not allow non subvolume root targets for snapshot
     - soundwire: stream: fix NULL pointer dereference for multi_link
     - ext4: prevent the normalized size from exceeding EXT_MAX_BLOCKS
     - [arm64] mm: Always make sw-dirty PTEs hw-dirty in pte_modify
     - team: Fix use-after-free when an option instance allocation fails
     - drm/amdgpu/sdma5.2: add begin/end_use ring callbacks
     - dmaengine: stm32-dma: avoid bitfield overflow assertion
     - mm/mglru: fix underprotected page cache
     - mm/shmem: fix race in shmem_undo_range w/THP
     - btrfs: free qgroup reserve when ORDERED_IOERR is set
     - btrfs: don't clear qgroup reserved bit in release_folio
     - drm/amdgpu: fix tear down order in amdgpu_vm_pt_free
     - drm/amd/display: Disable PSR-SU on Parade 0803 TCON again
     - [x86] drm/i915: Fix remapped stride with CCS on ADL+
     - smb: client: fix OOB in receive_encrypted_standard()
     - smb: client: fix NULL deref in asn1_ber_decoder()
     - smb: client: fix OOB in smb2_query_reparse_point()
     - ring-buffer: Fix memory leak of free page
     - tracing: Update snapshot buffer on resize if it is allocated
     - ring-buffer: Do not update before stamp when switching sub-buffers
     - ring-buffer: Have saved event hold the entire event
     - ring-buffer: Fix writing to the buffer with max_data_size
     - ring-buffer: Fix a race in rb_time_cmpxchg() for 32 bit archs
     - ring-buffer: Do not try to put back write_stamp
     - ring-buffer: Have rb_time_cmpxchg() set the msb counter too
     - net: tls, update curr on splice as well
     - r8152: avoid to change cfg for all devices
     - r8152: remove rtl_vendor_mode function
     - r8152: fix the autosuspend doesn't work
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 17
   * [rt] Update to 6.1.69-rt21
   * [arm64] drivers/vfio: Don't enable VFIO_NOIOMMU.
     This is a breach of the integrity lockdown requirement of secure boot
     and thus cannot be enabled.
     Thanks to Bastian Blank and Ben Hutchings
   * Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg
     (CVE-2023-51779)
   * netfilter: nf_tables: skip set commit for deleted/destroyed sets
   * Revert "scsi: aacraid: Reply queue mapping to CPUs based on IRQ affinity"
     (Closes: #1059624)
linux-signed-i386 (6.1.69+1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Sign kernel from linux 6.1.69-1~bpo11+1
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.17
linux-signed-i386 (6.1.67+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.67-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.67
     - Revert "wifi: cfg80211: fix CQM for non-range use" (Closes: #1057967,
       #1057969)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 16

localslackirc (1.17-1.1+deb12u1) bookworm; urgency=medium
 .
   * Backport patch to send authorization and cookie headers to the websocket

mate-screensaver (1.26.1-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0001_mate-screensaver-preferences-fix-memory-leak.patch and
       0002_mate-screensaver-preferences-fix-memory-leak.patch, fixing two
       memleaks in the preferences tool of mate-screensaver.

mate-settings-daemon (1.26.0-1+deb12u1) bookworm; urgency=medium
 .
   [ Martin Wimpress ]
   * debian/patches:
     + Add 1002-debounce_multiple_rfkill_events.patch (LP: #1936956)
 .
   [ Mike Gabriel ]
   * debian/patches:
     + Add 0003-datetime-fix-memory-leak.patch and 0004-mate-settings-manager-
       fix-memory-leak.patch. Fix two memory leaks. (Cherry-picked from v1.26.1).
     + Add 0005-Relax-High-DPI-limits.patch. Set DPI_LIMIT to 90% of 2x
       DPI_FALLBACK, to catch QHD laptop screens. (Cherry-picked from v1.26.1).

mate-utils (1.26.0-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0000_Fix-News.patch. Fix wrong package name in upstream NEWS file
       (i.e. our upstream ChangeLog).
     + Add patches 0001 - 0006 fixing various memleaks in mate-utils (closes:
       #1052579), cherry-picked from v1.26.1: 0001_mate-screenshot-fix-memory-
       leak.patch, 0002_mate-disk-image-mounter-fix-memory-leak.patch, 0003_mate-
       dictionary-fix-memory-leak.patch, 0004_gsearchtool-fix-memory-leak.patch,
       0005_mate-dictionary-fix-memory-leak.patch, 0006_mate-dictionary-fix-
       memory-leak.patch.

monitoring-plugins (2.3.3-5+deb12u2) bookworm; urgency=medium
 .
   * [c45bc15] Adding d/p/23_check_http_fix_unchunking_body from upstream
     (Closes: #1061956)

needrestart (3.6-4+deb12u1) bookworm; urgency=medium
 .
   * fix microcode check regression on AMD CPUs (Closes: #1013285)

netplan.io (0.106-2+deb12u1) bookworm; urgency=medium
 .
   * debian/tests: Fix testbed timeout with systemd v252.15 (Closes: #1053496)

nextcloud-desktop (3.7.3-1+deb12u1) bookworm; urgency=medium
 .
   * Backport patch to fix "fails to sync files with special chars like ':'"
     (Closes: #1051071)
   * Backport patch 'Two-factor authentication notifications unusable'
     (Closes: #1056327)
   * Update debian-branch in gbp.conf to point to the stable branch.

node-undici (5.15.0+dfsg1+~cs20.10.9.3-1+deb12u3) bookworm-security; urgency=medium
 .
   * Team upload.
   * patch: import missing script from more recent upstream version
 .
   [ Yadd ]
   * Build and publish undici-types, needed by new @types/node

node-yarnpkg (1.22.19+~cs24.27.18-2+deb12u1) bookworm; urgency=medium
 .
   * Backport patch from unstable for commander 8 support (Closes: #1058596)

onionprobe (1.0.0+ds-2.1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     - Pull in upstream fix to silence Tor if generating hashed passwords.
       (Closes: #1053204)

openjdk-17 (17.0.10+7-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm
openjdk-17 (17.0.10+7-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye
openjdk-17 (17.0.10~6ea-1) unstable; urgency=medium
 .
   * OpenJDK 17.0.10 early access, build 6.
 .
   [ Pushkar Kulkarni ]
   * debian/copyright: Fix whitespace issues.
 .
   [ Vladimir Petko ]
   * d/copyright: Fix lintian warning.
 .
   [ Matthias Klose ]
   * d/copyright: Fix source location.
   * Build-depend on jtreg7 instead of jtreg6.
   * d/p/googletest-version.diff: Ignore the version check, keep 1.14.
   * Refresh patches.
openjdk-17 (17.0.9+9-2) unstable; urgency=medium
 .
   [ Vladimir Petko ]
   * d/t/write-problems: Add missing file to generate the problem list.
 .
   [ Pushkar Kulkarni ]
   * debian/copyright: Update copyrights and notices, using a generator script.
openjdk-17 (17.0.9+9-1) unstable; urgency=high
 .
   * OpenJDK 17.0.9 release, build 9.
     - CVE-2023-30589, CVE-2023-22081, CVE-2023-22091, CVE-2023-22025.
       The patch for CVE-2023-30589 also addresses CVE-2023-30585,
       CVE-2023-30588, and CVE-2023-30590.
     - Release notes:
       https://www.oracle.com/java/technologies/javase/17-0-9-relnotes.html#R17_0_9
 .
   [ Vladimir Petko ]
   * Backport upstream fix for jexec: can't locate java:
     No such file or directory.  Closes: #1029342.
   * d/rules, d/watch: Bundle googletest 1.14.
   * d/copyright: Add googletest copyright.
   * d/test: Update problemlist.
   * d/p: exclude-broken-tests.patch.
   * d/p/reproducible-properties-timestamp.diff: Use the privileged action
     to read the system property (JDK-8272157, 914278).

openssh (1:9.2p1-2+deb12u2) bookworm-security; urgency=medium
 .
   * Cherry-pick from upstream:
     - [CVE-2023-28531] ssh-add(1): when adding smartcard keys to
       ssh-agent(1) with the per-hop destination constraints (ssh-add -h ...)
       added in OpenSSH 8.9, a logic error prevented the constraints from
       being communicated to the agent. This resulted in the keys being added
       without constraints. The common cases of non-smartcard keys and keys
       without destination constraints are unaffected. This problem was
       reported by Luci Stanescu (closes: #1033166).
     - [CVE-2023-48795] ssh(1), sshd(8): implement protocol extensions to
       thwart the so-called "Terrapin attack" discovered by Fabian Bäumer,
       Marcus Brinkmann and Jörg Schwenk. This attack allows a MITM to effect
       a limited break of the integrity of the early encrypted SSH transport
       protocol by sending extra messages prior to the commencement of
       encryption, and deleting an equal number of consecutive messages
       immediately after encryption starts. A peer SSH client/server would
       not be able to detect that messages were deleted.
     - [CVE-2023-51384] ssh-agent(1): when adding PKCS#11-hosted private keys
       while specifying destination constraints, if the PKCS#11 token
       returned multiple keys then only the first key had the constraints
       applied. Use of regular private keys, FIDO tokens and unconstrained
       keys are unaffected.
     - [CVE-2023-51385] ssh(1): if an invalid user or hostname that contained
       shell metacharacters was passed to ssh(1), and a ProxyCommand,
       LocalCommand directive or "match exec" predicate referenced the user
       or hostname via %u, %h or similar expansion token, then an attacker
       who could supply arbitrary user/hostnames to ssh(1) could potentially
       perform command injection depending on what quoting was present in the
       user-supplied ssh_config(5) directive. ssh(1) now bans most shell
       metacharacters from user and hostnames supplied via the command-line.

php-phpseclib (2.0.42-1+deb12u1) bookworm-security; urgency=medium
 .
   * Track bookworm
   * Backport upstream SSH2 changes
     - add support for RFC8308
     - implement terrapin attack countermeasures [CVE-2023-48795]

php-phpseclib3 (3.0.19-1+deb12u2) bookworm-security; urgency=medium
 .
   * Backport upstream SSH2 changes
     - add support for RFC8308
     - implement terrapin attack countermeasures [CVE-2023-48795]

phpseclib (1.0.20-1+deb12u1) bookworm-security; urgency=medium
 .
   * Track Bookworm
   * Backport upstream SSH2 changes
     - if logging in with rsa-sha2-256/512 fails, try ssh-rsa
     - add support for RFC8308
     - implement terrapin attack countermeasures [CVE-2023-48795]

pipewire (0.3.65-3+deb12u1) bookworm; urgency=medium
 .
   * Use malloc_trim() when available to release memory (Closes: #1015915)
     Cherry-pick upstream patches:
       - 7e2f6757: impl-node: do malloc_trim() after destroying a node.
       - 8680c74d: check if malloc_trim() is available.

pluma (1.26.0-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0001_pluma-plugins-engine-fix-memory-leak.patch,
       0002_Fix-double-activation-of-extensions.patch and
       0003_Fix-out-of-bounds-write.patch (cherry-picked from
       v1.26.1). Fixing a mem leak issue, double extensions activation
       and an out-of-bounds write issue.

postfix (3.7.10-0+deb12u1) bookworm; urgency=medium
 .
   [Wietse Venema]
 .
   * 3.7.10
     - Security (outbound SMTP smuggling): with the default setting
       "cleanup_replace_stray_cr_lf = yes" Postfix will replace
       stray <CR> or <LF> characters in message content with a
       space character. This prevents Postfix from enabling
       outbound (remote) SMTP smuggling, and it also makes evaluation
       of Postfix-added DKIM etc. signatures independent from how
       a remote mail server handles stray <CR> or <LF> characters.
       Files: global/mail_params.h, cleanup/cleanup.c,
       cleanup/cleanup_message.c, mantools/postlink, proto/postconf.proto.
     - Security (inbound SMTP smuggling): with "smtpd_forbid_bare_newline
       = normalize" (default "no" for Postfix < 3.9), the Postfix
       SMTP server requires the standard End-of-DATA sequence
       <CR><LF>.<CR><LF>, and otherwise allows command or message
       content lines ending in the non-standard <LF>, processing
       them as if the client sent the standard <CR><LF>.
       The alternative setting, "smtpd_forbid_bare_newline = reject"
       will reject any command or message that contains a bare
       <LF>, and is more likely to cause problems with legitimate
       clients.
       For backwards compatibility, local clients are excluded by
       default with "smtpd_forbid_bare_newline_exclusions =
       $mynetworks".
       Files: mantools/postlink, proto/postconf.proto,
       global/mail_params.h, global/smtp_stream.c, global/smtp_stream.h,
       smtpd/smtpd.c, smtpd/smtpd_check.[hc].
postfix (3.7.9-0+deb12u1) bookworm; urgency=medium
 .
   [Wietse Venema]
 .
   * 3.7.7
     - Bugfix (bug introduced: 20140218): when opportunistic TLS fails
       during or after the handshake, don't require that a probe
       message spent a minimum time-in-queue before falling back to
       plaintext. Problem reported by Serg. File: smtp/smtp.h.
     - Bugfix (defect introduced: 19980207): the valid_hostname()
       check in the Postfix DNS client library was blocking unusual
       but legitimate wildcard names (*.name) in some DNS lookup
       results and lookup requests. Examples:
           name          class/type value
         *.one.example   IN CNAME *.other.example
         *.other.example IN A     10.0.0.1
         *.other.example IN TLSA  ..certificate info...
       Such syntax is blesed in RFC 1034 section 4.3.3.
       This problem was reported first in the context of TLSA
       record lookups. Files: util/valid_hostname.[hc],
   * 3.7.8
     - Bugfix (defect introduced Postfix 2.5, 20080104): the Postfix
       SMTP server was waiting for a client command instead of
       replying immediately, after a client certificate verification
       error in TLS wrappermode. Reported by Andreas Kinzler. File:
       smtpd/smtpd.c.
     - Usability: the Postfix SMTP server now attempts to log the
       SASL username after authentication failure. In Postfix
       logging, this appends ", sasl_username=xxx" after the reason
       for SASL authentication failure. The logging replaces an
       unavailable reason with "(reason unavailable)", and replaces
       an unavailable sasl_username with "(unavailable)". Based
       on code by Jozsef Kadlecsik. Files: xsasl/xsasl_server.c,
       xsasl/xsasl_cyrus_server.c, smtpd/smtpd_sasl_glue.c.
     - Bugfix (defect introduced: Postfix 2.11): in forward_path,
       the expression ${recipient_delimiter} would expand to an
       empty string when a recipient address had no recipient
       delimiter. Fixed by restoring Postfix 2.10 behavior to use
       a configured recipient delimiter value. Reported by Tod
       A. Sandman. Files: proto/postconf.proto, local/local_expand.c.
   * 3.7.9 (Closes: #1059230)
     - Addresses CVE-2023-51764, requires configuration change
     - Security: with "smtpd_forbid_bare_newline = yes" (default
       "no" for Postfix < 3.9), reply with "Error: bare <LF>
       received" and disconnect when an SMTP client sends a line
       ending in <LF>, violating the RFC 5321 requirement that
       lines must end in <CR><LF>. This prevents SMTP smuggling
       attacks that target a recipient at a Postfix server. For
       backwards compatibility, local clients are excluded by
       default with "smtpd_forbid_bare_newline_exclusions =
       $mynetworks". Files: mantools/postlink, proto/postconf.proto,
       global/mail_params.h, global/smtp_stream.c, global/smtp_stream.h,

proftpd-dfsg (1.3.8+dfsg-4+deb12u3) bookworm; urgency=medium
 .
   * Add patch for Terrapin attack (CVE-2023-48795).
   * make_ftp_cmd in main.c in ProFTPD before 1.3.8a has a one-byte
     out-of-bounds read, and daemon crash, because of mishandling of
     quote/backslash semantics (CVE-2023-51713).

proftpd-mod-proxy (0.9.2-1+deb12u1) bookworm; urgency=medium
 .
   * Implement fix for the Terrapin attack (CVE-2023-48795).

putty (0.78-2+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2023-48795: Cherry-pick from upstream:
     - Fix check for "ext-info-s".
     - Factor out the check for ext-info-* keyword.
     - Refactor confirm_weak to use SeatDialogText.
     - Support OpenSSH's new strict kex feature.
     - Add missing flags to AES selector vtables.
     - Warn about Terrapin vulnerability for unpatched servers.
     - Remove fatal-error reporting from scan_kexinits.
     - Terrapin warning: say if reconfiguration can help.

pypdf (3.4.1-1+deb12u1) bookworm; urgency=medium
 .
   * Update debian/gbp.conf to point at bookworm branch
   * Prevent infinite loop when no character follows after a comment (Closes:
     #1040338)
     - Addresses CVE-2023-36464
     - Add d/p/0003-Prevent-infinite-loop-when-no-character-follows-afte.patch

pypdf2 (2.12.1-3+deb12u1) bookworm; urgency=medium
 .
   * Prevent infinite loop when no character follows after a comment (Closes:
     #1040339)
     - Addresses CVE-2023-36464
     - Add d/p/0003-Prevent-infinite-loop-when-no-character-follows-afte.patch

pypy3 (7.3.11+dfsg-2+deb12u1) bookworm; urgency=medium
 .
   * Avoid an rpython assertion error in the JIT if integer ranges don't
     overlap in a loop. (Closes: #1062460)

qemu (1:7.2+dfsg-7+deb12u5) bookworm; urgency=medium
 .
   * +revert-monitor-only-run-coroutine-commands-in-qemu_aio_context.patch
     Revert a single upstream change in 7.2.9 which, while fixed a few qemu
     lockup bugs, introduced a regression in suspend-resume-hibernate cycle
     (triggered by cryptsetup autopkgtest)
qemu (1:7.2+dfsg-7+deb12u4) bookworm; urgency=medium
 .
   [ Michael Tokarev ]
   * update to upstream 7.2.9 stable/bugfix release, v7.2.9.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.9 :
    - Update version for 7.2.9 release
    - target/xtensa: fix OOB TLB entry access
    - qtest: bump aspeed_smc-test timeout to 6 minutes
    - monitor: only run coroutine commands in qemu_aio_context
    - iotests: port 141 to Python for reliable QMP testing
    - iotests: add filter_qmp_generated_node_ids()
    - block/blklogwrites: Fix a bug when logging "write zeroes" operations.
    - virtio-net: correctly copy vnet header when flushing TX
      Closes: CVE-2023-6693
    - block/io: clear BDRV_BLOCK_RECURSE flag after recursing in
      bdrv_co_block_status
    - accel/tcg: Revert mapping of PCREL translation block to multiple
      virtual addresses
    - readthodocs: fully specify a build environment
    - hw/scsi/esp-pci: set DMA_STAT_BCMBLT when BLAST command issued
    - hw/scsi/esp-pci: synchronise setting of DMA_STAT_DONE with ESP
      completion interrupt
    - hw/scsi/esp-pci: generate PCI interrupt from separate ESP and PCI sources
    - hw/scsi/esp-pci: use correct address register for PCI DMA transfers
    - hw/pflash: implement update buffer for block writes
    - hw/pflash: use ldn_{be,le}_p and stn_{be,le}_p
    - hw/pflash: refactor pflash_data_write()
    - target/i386: pcrel: store low bits of physical address in data[0]
    - target/i386: fix incorrect EIP in PC-relative translation blocks
    - target/i386: Do not re-compute new pc with CF_PCREL
    - target/i386: Fix 32-bit wrapping of pc/eip computation
    - load_elf: fix iterator's type for elf file processing
    - .gitlab-ci.d/buildtest.yml: Work around htags bug when environment
      is large
    - target/s390x: Fix LAE setting a wrong access register
    - hw/intc/arm_gicv3_cpuif: handle LPIs in the list registers
    - chardev/char.c: fix "abstract device type" error message
    - target/riscv: Fix mcycle/minstret increment behavior
    - iotests: Basic tests for internal snapshots
    - vl: Improve error message for conflicting -incoming and -loadvm
    - block: Fix crash when loading snapshot on inactive node
   * update to upstream 7.2.8 stable/bugfix release, v7.2.8.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.8 :
    - Update version for 7.2.8 release
    - target/arm/helper: Propagate MDCR_EL2.HPMN into PMCR_EL0.N
    - system/memory: use ldn_he_p/stn_he_p
    - target/arm: Disable SME if SVE is disabled
    - ui/vnc-clipboard: fix inflate_buffer
    - ui/gtk-egl: move function calls back to regular code path
    - ui/gtk-egl: Check EGLSurface before doing scanout
    - msix: unset PCIDevice::msix_vector_poll_notifier in rollback
    - hw/acpi/erst: Do not ignore Error* in realize handler
    - pcie_sriov: Remove g_new assertion
    - hw/audio/hda-codec: fix multiplication overflow
    - hw/mips/malta: Fix the malta machine on big endian hosts
    - vmdk: Don't corrupt desc file in vmdk_write_cid
    - hw/virtio: Add VirtioPCIDeviceTypeInfo::instance_finalize field
    - hw/nvram/xlnx-efuse-ctrl: Free XlnxVersalEFuseCtrl[] "pg0-lock" array
    - hw/nvram/xlnx-efuse: Free XlnxEFuse::ro_bits[] array on finalize()
    - hw/misc/mps2-scc: Free MPS2SCC::oscclk[] array on finalize()
    - hw/virtio: Free VirtIOIOMMUPCI::vdev.reserved_regions[] on finalize()
    - target/arm: Set IL bit for pauth, SVE access, BTI trap syndromes
    - tests/avocado: Replace assertRegexpMatches() for Python 3.12 compatibility
    - tests/avocado: Replace assertEquals() for Python 3.12 compatibility
    - linux-user: Fix loaddr computation for some elf files
    - net: Update MemReentrancyGuard for NIC
    - net: Provide MemReentrancyGuard * to qemu_new_nic()
    - hw/ide/ahci: fix legacy software reset
    - target/arm: Fix SME FMOPA (16-bit), BFMOPA
   * remove patches included in 7.2.8:
    - hw_mips_malta-Fix-malta-machine-on-big-endian-hosts.patch
    - hw-ide-ahci-fix-legacy-software-reset.patch
   * ui-clipboard-mark-type-as-not-available-when-no-data-CVE-2023-6683.patch
     Closes: #1060749, CVE-2023-6683 (NULL deref in VNC clipboard code)
 .
   [ Sergio Durigan Junior ]
   * d/rules: omit --no-start for qemu-guest-agent, this should
     re-start it on upgrades.  Closes: #1061588, #1061683
     LP: #2028124

redis (5:7.0.15-1~deb12u1) bookworm-security; urgency=high
 .
   * Rebuild of 5:7.0.15-1 from sid for bookworm-security.
   * Revert replacing a dependency on lsb-base with sysvinit-utils
     (from 5:7.0.12-2).
redis (5:7.0.14-2) unstable; urgency=medium
 .
   * Drop ProcSubset=pid hardening flag from the systemd unit files it appears
     to cause crashes with memory allocation errors. A huge thanks to Arnaud
     Rebillout <arnaudr@kali.org> for the extensive investigation.
     (Closes: #1055039)
redis (5:7.0.14-1) unstable; urgency=high
 .
   * New upstream security release:
 .
     - CVE-2023-45145: On startup, Redis began listening on a Unix socket before
       adjusting its permissions to the user-provided configuration. If a
       permissive umask(2) was used, this created a race condition that enabled,
       during a short period of time, another process to establish an otherwise
       unauthorized connection. (Closes: #1054225)
 .
   * Refresh patches.
redis (5:7.0.13-2) unstable; urgency=medium
 .
   * Only install systemd units once. Thanks, Helmut Grohne. (Closes: #1054091)
redis (5:7.0.13-1) unstable; urgency=high
 .
   * New upstream security release:
 .
     - CVE-2023-41053: Redis did not correctly identify keys accessed by
       `SORT_RO`, and as a result Redis may grant users executing this command
       access to keys that are not explicitly authorized by the ACL
       configuration. (Closes: #1051512)
 .
     <https://raw.githubusercontent.com/redis/redis/7.2/00-RELEASENOTES>
 .
   * Refresh patches.
redis (5:7.0.12-2) unstable; urgency=medium
 .
   * Try and clean up better. (Closes: #1047506)
   * Allow arm64 crossbuild to run but not to fail the build if, for
     instance, build-dependencies cannot be satisfied.
   * Replace dependency on lsb-base with sysvinit-utils.
   * Drop very debian/NEWS entry.
redis (5:7.0.12-1) unstable; urgency=high
 .
   * New upstream security release:
 .
     - CVE-2022-24834: A specially-crafted Lua script executing in Redis could
       have triggered a heap overflow in the cjson and cmsgpack libraries and
       result in heap corruption and potentially remote code execution. The
       problem exists in all versions of Redis with Lua scripting support and
       affects only authenticated/authorised users.
 .
     - CVE-2023-36824: Extracting key names from a command and a list of
       arguments may, in some cases, have triggered a heap overflow and result
       in reading random heap memory, heap corruption and potentially remote
       code execution. (Specifically using COMMAND GETKEYS* and validation of
       key names in ACL rules). (Closes: #1040879)
 .
     For more information, please see:
 .
       <https://raw.githubusercontent.com/redis/redis/7.0/00-RELEASENOTES>

roundcube (1.6.5+dfsg-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security and bugfix release:
     + Fix CVE-2023-47272: Cross-site scripting (XSS) vulnerability in setting
       Content-Type/Content-Disposition for attachment preview/download.
       (Closes: #1055421)
     + Fix PHP8 fatal error when parsing a malformed BODYSTRUCTURE.
     + Fix UI issue when dealing with an invalid managesieve_default_headers
       value.
     + Fix bug where images attached to application/smil messages weren't
       displayed.
     + Fix PHP8 warnings.
     + Fix regression where ‘smtp_user’ did not allow pre/post strings
       before/after ‘%u’ placeholder.
   * Refresh d/patches.
roundcube (1.6.4+dfsg-1) unstable; urgency=high
 .
   * New upstream security and bugfix release:
     + Fix cross-site scripting (XSS) vulnerability in handling of SVG in HTML
       messages. (Closes: #1054079)
     + Managesieve plugin: Fix javascript error when relational or spamtest
       extension is not enabled.
     + Fix PHP8 warnings.
   * Add DEP-8 test to check RCMAIL_VERSION against d/changelog.
   * roundcube-core.postinst: Don't choke on non-existing symlink targets.
     (Closes: #1053709)

rpm (4.18.0+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Enable the read-only BerkeleyDB backend. Closes: #1061258

rss-glx (0.9.1-6.4~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for Bookworm

runc (1.1.5+ds1-1+deb12u1) bookworm-security; urgency=high
 .
   * Team upload.
   * CVE-2024-21626: several container breakouts due to internally leaked fds

slurm-wlm (22.05.8-4+deb12u2) bookworm-security; urgency=medium
 .
   * Fix CVE-2023-49933, CVE-2023-49935, CVE-2023-49936, CVE-2023-49937,
         CVE-2023-49938 (Closes: #1058720)

spip (4.1.9+dfsg-1+deb12u4) bookworm; urgency=medium
 .
   * Backport security fix from 4.1.15
     - fix XSS in uploaded files using bigup

swupdate (2022.12+dfsg-4+deb12u1) bookworm; urgency=medium
 .
   * Add swupdate system user
   * Create the sockets for group use with SocketMode 0660

systemd (252.22-1~deb12u1) bookworm; urgency=medium
 .
   * d/t/control: add dependency on stress for upstream suite. Needed by
     TEST-55-OOMD
   * New upstream version 252.22
   * Refresh patches
systemd (252.21-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.21
     CVE-2023-7008 (Closes: #1059278)
   * Refresh patches
systemd (252.20-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.20
   * Refresh patches

tar (1.34+dfsg-1.2+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Fix boundary checking in base-256 decoder (CVE-2022-48303)
   * Fix handling of extended header prefixes (CVE-2023-39804)
     (Closes: #1058079)

thunderbird (1:115.7.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:115.7.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.6.0-1) unstable; urgency=medium
 .
   * [aea3623] New upstream version 115.6.0
     Fixed CVE issues in upstream version 115. (MFSA 2023-55):
     CVE-2023-50762: Truncated signed text was shown with a valid OpenPGP
                     signature
     CVE-2023-50761: S/MIME signature accepted despite mismatching message
                     date
     CVE-2023-6856: Heap-buffer-overflow affecting WebGL DrawElementsInstanced
                    method with Mesa VM driver
     CVE-2023-6857: Symlinks may resolve to smaller than expected buffers
     CVE-2023-6858: Heap buffer overflow in nsTextFragment
     CVE-2023-6859: Use-after-free in PR_GetIdentitiesLayer
     CVE-2023-6860: Potential sandbox escape due to VideoBridge lack
                    of texture validation
     CVE-2023-6861: Heap buffer overflow affected nsWindow::PickerOpen(void)
                    in headless mode
     CVE-2023-6862: Use-after-free in nsDNSService
     CVE-2023-6863: Undefined behavior in ShutdownObserver()
     CVE-2023-6864: Memory safety bugs fixed in Firefox 121, Firefox ESR 115.6,
                    and Thunderbird 115.6
   * [6ecaa01] d/control: Remove B-D on libiw-dev
     (Closes: #1058737)
thunderbird (1:115.6.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild patch queue from patch-queue branch
     Added patch:
     debian-hacks/Allow-to-build-oxilangtag-ffi-with-rustc-1.65.patch
   * Rebuild for bookworm-security
thunderbird (1:115.6.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.5.2-1) unstable; urgency=medium
 .
   * [34f6404] New upstream version 115.5.2
thunderbird (1:115.5.1-1) unstable; urgency=medium
 .
   * [eec913b] New upstream version 115.5.1
thunderbird (1:115.5.0-1) unstable; urgency=medium
 .
   [ intrigeri ]
   * [a6be3ab] AppArmor: update profile from upstream at commit
               9d3fa88cdab512e45f6fd80f067337f200d356bc
 .
   [ Carsten Schoenert ]
   * [ed61fd6] New upstream version 115.5.0
     Fixed CVE issues in upstream version 115.5 (MFSA 2023-52):
     CVE-2023-6204: Out-of-bound memory access in WebGL2 blitFramebuffer
     CVE-2023-6205: Use-after-free in MessagePort::Entangled
     CVE-2023-6206: Clickjacking permission prompts using the fullscreen
                    transition
     CVE-2023-6207: Use-after-free in ReadableByteStreamQueueEntry::Buffer
     CVE-2023-6208: Using Selection API would copy contents into X11 primary
                    selection.
     CVE-2023-6209: Incorrect parsing of relative URLs starting with "///"
     CVE-2023-6212: Memory safety bugs fixed in Firefox 120, Firefox ESR 115.5,
                    and Thunderbird 115.5

tinyxml (2.6.2-6+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Fix CVE-2023-34194: Reachable assertion (and application exit) via a
     crafted XML document with a '\0' located after whitespace.
     (Closes: #1059315)

tzdata (2024a-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream version 2024a
     - Kazakhstan unifies on UTC+5 beginning 2024-03-01.
     - Palestine springs forward a week later after Ramadan.
tzdata (2024a-0+deb11u1) bullseye; urgency=medium
 .
   * New upstream version 2024a
     - Kazakhstan unifies on UTC+5 beginning 2024-03-01.
     - Palestine springs forward a week later after Ramadan.
tzdata (2023d-1) unstable; urgency=medium
 .
   * New upstream version (LP: #2047314):
     - Ittoqqortoormiit, Greenland changes time zones on 2024-03-31.
     - Vostok, Antarctica changed time zones on 2023-12-18.
     - Casey, Antarctica changed time zones five times since 2020.
     - Code and data fixes for Palestine timestamps starting in 2072.
     - A new data file zonenow.tab for timestamps starting now.
   * Install zonenow.tab in tzdata
   * Add autopkgtest test case for 2023d release
   * Document tzdata-legacy split in NEWS.Debian (Closes: #1051973, #1056908)
tzdata (2023d-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream version:
     - Ittoqqortoormiit, Greenland changes time zones on 2024-03-31.
     - Vostok, Antarctica changed time zones on 2023-12-18.
     - Casey, Antarctica changed time zones five times since 2020.
     - Code and data fixes for Palestine timestamps starting in 2072.
   * Drop leap-seconds.list patch (taken from upstream)
tzdata (2023d-0+deb11u1) bullseye; urgency=medium
 .
   * New upstream version 2023d
   * Drop all patches
   * Build tzdata with PACKRATLIST=zone.tab
   * Rename Pacific/Enderbury to Pacific/Kanton
   * Rename Europe/Kiev into Europe/Kyiv
   * Import translations for "Kyiv" and "Kanton" from sid.
tzdata (2023c-11) unstable; urgency=medium
 .
   * Update Swedish debconf translation.
     Thanks to Martin Bagge / brother <brother@persilja.net> (Closes: #1054616)
   * Update leap-seconds.list from upstream
   * Remove leapseconds during clean target
tzdata (2023c-10) unstable; urgency=medium
 .
   * Partially revert 2023c-8: Move top-level timezones like UTC and CET back to
     tzdata. Only the old or merged timezones mentioned in the upstream backward
     file stay in tzdata-legacy (Closes: #1043250, LP: #2030684)
tzdata (2023c-9) unstable; urgency=medium
 .
   * Move top-level UTC timezone back to tzdata (Closes: #1043250, LP: #2030684)
tzdata (2023c-8) unstable; urgency=medium
 .
   * Update Dutch debconf translation.
     Thanks to Frans Spiesschaert <Frans.Spiesschaert@yucom.be>
     (Closes: #1041278)
   * Ship only timezones in tzdata that follow the current rules of geographical
     region (continent or ocean) and city name. Move all legacy timezone symlinks
     (that are upgraded during package update) to tzdata-legacy. This includes
     dropping the special handling for US/* timezones. (Closes: #1040997)
tzdata (2023c-7) unstable; urgency=medium
 .
   * Update Romanian debconf translation. Thanks to Remus-Gabriel Chelu
     (Closes: #1038905)
tzdata (2023c-6) unstable; urgency=medium
 .
   [ Aurelien Jarno ]
   * Change Provides: from tzdata-bookworm to tzdata-trixie
 .
   [ Benjamin Drung ]
   * Drop /usr/share/zoneinfo/posix (identical to /usr/share/zoneinfo)
     (LP: #2008076)
   * Split right/* timezones into separate tzdata-legacy package (LP: #2008076)
   * Update Turkish debconf translation. Thanks to Atila KOÇ (Closes: #1037266)

usb.ids (2024.01.20-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream version.
usb.ids (2024.01.20-0+deb11u1) bullseye; urgency=medium
 .
   * New upstream version.
usb.ids (2023.11.08-1) unstable; urgency=medium
 .
   * New upstream version.
usb.ids (2023.08.24-1) unstable; urgency=medium
 .
   * New upstream version.
   * Install back usb.ids in /usr/share/misc/usb.ids as requested by the Debian
     systemd Maintainers to support boot with an empty /etc and /var.
   * Fix typos in Audio Class Terminal Types, HID Usages and Languages. Patch
     from Peter Samuelson.  Closes: #1034697.
usb.ids (2023.05.17-1) unstable; urgency=medium
 .
   * New upstream version.

usbutils (1:014-1+deb12u1) bookworm; urgency=medium
 .
   * Add 01-usb-devices-use-local-variable-type-to-handle-recurs.patch to fix
     usb-devices not printing all devices.  Closes: #1052307.

usrmerge (37~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 usrmerge (37) unstable; urgency=medium
 .
   [ Johannes Schauer Marin Rodrigues ]
   * Use $DPKG_ROOT in usr-is-merged.postinst. (Closes: #1050755)
 .
 usrmerge (36) unstable; urgency=medium
 .
   * Added code by Andreas Beckmann to clean up the biarch libraries
     directories when they are not needed. (Closes: #1038853)
   * Changed postinst to not run convert-etc-shells again on already
     converted systems and to run update-shells to make sure that the
     new shells.state file introduced in bookworm is up to date.
     (Closes: #1033167)
   * Improved the instructions to deal with a mounted /lib/modules/,
     which can also happen on some Xen-based systems. (Closes: 1034346)
   * Greatly improved the error messages when commands execution fails
     (see #1037362).
   * Added a versioned conflict with libc-bin, only relevant for the
     conversion script. (Closes: #1037362)
   * Added a versioned conflict with dhcpcd. (Closes: #1038832)
   * Added a versioned conflict with libparted1.8-10. (Closes: #1038832)
   * Added a versioned conflict with lustre-utils. (Closes: #1038832)
usrmerge (36) unstable; urgency=medium
 .
   * Added code by Andreas Beckmann to clean up the biarch libraries
     directories when they are not needed. (Closes: #1038853)
   * Changed postinst to not run convert-etc-shells again on already
     converted systems and to run update-shells to make sure that the
     new shells.state file introduced in bookworm is up to date.
     (Closes: #1033167)
   * Improved the instructions to deal with a mounted /lib/modules/,
     which can also happen on some Xen-based systems. (Closes: 1034346)
   * Greatly improved the error messages when commands execution fails
     (see #1037362).
   * Added a versioned conflict with libc-bin, only relevant for the
     conversion script. (Closes: #1037362)
   * Added a versioned conflict with dhcpcd. (Closes: #1038832)
   * Added a versioned conflict with libparted1.8-10. (Closes: #1038832)
   * Added a versioned conflict with lustre-utils. (Closes: #1038832)

wolfssl (5.5.4-2+deb12u1) bookworm; urgency=medium
 .
   * Stable update to address the following vulnerabilities:
     - Fix CVE-2023-3724. (see #1041699)

xen (4.17.3+10-g091466ba55-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild 4.17.3+10-g091466ba55-1 for Bookworm to address the security
     issues since last Debian stable update.
 .
 xen (4.17.3+10-g091466ba55-1) unstable; urgency=medium
 .
   * Update to new upstream version 4.17.3+10-g091466ba55, which also contains
     security fixes for the following issues:
     - arm32: The cache may not be properly cleaned/invalidated (take two)
       XSA-447 CVE-2023-46837
     - pci: phantom functions assigned to incorrect contexts
       XSA-449 CVE-2023-46839
     - VT-d: Failure to quarantine devices in !HVM builds
       XSA-450 CVE-2023-46840
   * Note that the following XSA are not listed, because...
     - XSA-448 has patches for the Linux kernel.
   * Compilation with Python 3.12 has been fixed in upstream commit 4000522008
     ("Only compile the hypervisor with -Wdeclaration-after-statement")
     (Closes: #1062048)
xen (4.17.2+76-ge1f9cb16e2-1) unstable; urgency=medium
 .
   * Update to new upstream version 4.17.2-76-ge1f9cb16e2, which also contains
     security fixes for the following issues: (Closes: #1056928)
     - x86/AMD: mismatch in IOMMU quarantine page table levels
       XSA-445 CVE-2023-46835
     - x86: BTC/SRSO fixes not fully effective
       XSA-446 CVE-2023-46836

xorg-server (2:21.1.7-3+deb12u5) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Xi: require a pointer and keyboard device for XIAttachToMaster
   * dix: allocate enough space for logical button maps (CVE-2023-6816)
   * dix: Allocate sufficient xEvents for our DeviceStateNotify (CVE-2024-0229)
   * dix: fix DeviceStateNotify event calculation (CVE-2024-0229)
   * Xi: when creating a new ButtonClass, set the number of buttons
     (CVE-2024-0229)
   * Xi: flush hierarchy events after adding/removing master devices
     (CVE-2024-21885)
   * Xi: do not keep linked list pointer during recursion (CVE-2024-21886)
   * dix: when disabling a master, float disabled slaved devices too
     (CVE-2024-21886)
   * ephyr,xwayland: Use the proper private key for cursor
   * glx: Call XACE hooks on the GLX buffer
   * dix: Fix use after free in input device shutdown
xorg-server (2:21.1.7-3+deb12u4) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Sync "Xi: allocate enough XkbActions for our buttons" (CVE-2023-6377)
     The original upstream patch applied for CVE-2023-6377 was incomplete and
     still allows OOM access.
     This update syncs the patch with the upstream applied patch.
xorg-server (2:21.1.7-3+deb12u3) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Xi: allocate enough XkbActions for our buttons (CVE-2023-6377)
   * randr: avoid integer truncation in length check of ProcRRChange*Property
     (CVE-2023-6478)

zbar (0.23.92-7+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * CVE-2023-40889 qrdec.c: Fix array out-of-bounds access (Closes: #1051724)
   * Add bounds check for CVE-2023-40890 (Closes: #1051724)
=======================================
Sun, 10 Dec 2023 - Debian 12.4 released
=======================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:36:01 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
cdrom-core-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
crc-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
crypto-dm-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
crypto-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
dasd-extra-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
dasd-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
ext4-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
f2fs-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
fat-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
fuse-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
isofs-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
kernel-image-6.1.0-10-s390x-di |   6.1.38-2 | s390x
linux-headers-6.1.0-10-s390x |   6.1.38-2 | s390x
linux-image-6.1.0-10-s390x |   6.1.38-2 | s390x
linux-image-6.1.0-10-s390x-dbg |   6.1.38-2 | s390x
loop-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
md-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
mtd-core-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
multipath-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
nbd-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
nic-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
scsi-core-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
scsi-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
udf-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
xfs-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:36:20 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
affs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
ata-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
ata-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
btrfs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
btrfs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
cdrom-core-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
cdrom-core-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
crc-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
crc-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
crypto-dm-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
crypto-dm-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
crypto-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
crypto-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
event-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
event-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
ext4-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
ext4-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
f2fs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
f2fs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
fat-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
fat-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
fb-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
fb-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
firewire-core-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
firewire-core-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
fuse-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
fuse-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
input-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
input-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
isofs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
isofs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
jfs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
jfs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
kernel-image-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
kernel-image-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
linux-headers-6.1.0-10-loongson-3 |   6.1.38-2 | mips64el, mipsel
linux-headers-6.1.0-10-octeon |   6.1.38-2 | mips64el, mipsel
linux-image-6.1.0-10-loongson-3 |   6.1.38-2 | mips64el, mipsel
linux-image-6.1.0-10-loongson-3-dbg |   6.1.38-2 | mips64el, mipsel
linux-image-6.1.0-10-octeon |   6.1.38-2 | mips64el, mipsel
linux-image-6.1.0-10-octeon-dbg |   6.1.38-2 | mips64el, mipsel
loop-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
loop-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
md-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
md-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
minix-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
minix-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
mmc-core-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
mmc-core-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
mmc-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
mmc-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
mouse-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
mouse-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
multipath-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
multipath-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nbd-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nbd-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nfs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nfs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nic-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nic-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nic-shared-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nic-shared-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nic-usb-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nic-usb-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nic-wireless-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nic-wireless-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
pata-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
pata-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
ppp-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
ppp-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
sata-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
sata-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
scsi-core-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
scsi-core-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
scsi-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
scsi-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
scsi-nic-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
scsi-nic-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
sound-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
sound-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
speakup-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
speakup-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
squashfs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
squashfs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
udf-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
udf-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
usb-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
usb-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
usb-serial-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
usb-serial-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
usb-storage-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
usb-storage-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
xfs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
xfs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:36:31 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
affs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
ata-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
ata-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
btrfs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
btrfs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
cdrom-core-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
cdrom-core-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
crc-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
crc-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
crypto-dm-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
crypto-dm-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
crypto-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
crypto-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
event-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
event-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
ext4-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
ext4-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
f2fs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
f2fs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
fat-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
fat-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
fb-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
fb-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
firewire-core-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
firewire-core-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
fuse-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
fuse-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
input-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
input-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
isofs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
isofs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
jfs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
jfs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
kernel-image-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
kernel-image-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
linux-headers-6.1.0-10-4kc-malta |   6.1.38-2 | mipsel
linux-headers-6.1.0-10-mips32r2el |   6.1.38-2 | mipsel
linux-image-6.1.0-10-4kc-malta |   6.1.38-2 | mipsel
linux-image-6.1.0-10-4kc-malta-dbg |   6.1.38-2 | mipsel
linux-image-6.1.0-10-mips32r2el |   6.1.38-2 | mipsel
linux-image-6.1.0-10-mips32r2el-dbg |   6.1.38-2 | mipsel
loop-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
loop-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
md-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
md-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
minix-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
minix-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
mmc-core-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
mmc-core-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
mmc-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
mmc-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
mouse-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
mouse-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
multipath-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
multipath-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nbd-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nbd-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nfs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nfs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nic-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nic-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nic-shared-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nic-shared-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nic-usb-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nic-usb-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nic-wireless-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nic-wireless-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
pata-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
pata-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
ppp-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
ppp-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
sata-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
sata-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
scsi-core-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
scsi-core-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
scsi-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
scsi-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
scsi-nic-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
scsi-nic-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
sound-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
sound-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
speakup-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
speakup-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
squashfs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
squashfs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
udf-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
udf-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
usb-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
usb-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
usb-serial-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
usb-serial-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
usb-storage-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
usb-storage-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
xfs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
xfs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:36:44 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
btrfs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
cdrom-core-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
crc-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
crypto-dm-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
crypto-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
event-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
ext4-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
f2fs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
fancontrol-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
fat-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
fb-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
firewire-core-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
fuse-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
hypervisor-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
i2c-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
input-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
isofs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
jfs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
kernel-image-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
linux-headers-6.1.0-10-powerpc64le |   6.1.38-2 | ppc64el
linux-image-6.1.0-10-powerpc64le |   6.1.38-2 | ppc64el
linux-image-6.1.0-10-powerpc64le-dbg |   6.1.38-2 | ppc64el
loop-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
md-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
mouse-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
mtd-core-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
multipath-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
nbd-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
nic-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
nic-shared-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
nic-usb-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
nic-wireless-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
ppp-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
sata-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
scsi-core-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
scsi-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
scsi-nic-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
serial-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
squashfs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
udf-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
uinput-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
usb-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
usb-serial-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
usb-storage-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
xfs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:36:54 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-10-amd64 |   6.1.38-2 | amd64
linux-headers-6.1.0-10-cloud-amd64 |   6.1.38-2 | amd64
linux-headers-6.1.0-10-rt-amd64 |   6.1.38-2 | amd64
linux-image-6.1.0-10-amd64-dbg |   6.1.38-2 | amd64
linux-image-6.1.0-10-amd64-unsigned |   6.1.38-2 | amd64
linux-image-6.1.0-10-cloud-amd64-dbg |   6.1.38-2 | amd64
linux-image-6.1.0-10-cloud-amd64-unsigned |   6.1.38-2 | amd64
linux-image-6.1.0-10-rt-amd64-dbg |   6.1.38-2 | amd64
linux-image-6.1.0-10-rt-amd64-unsigned |   6.1.38-2 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:37:24 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-10-arm64 |   6.1.38-2 | arm64
linux-headers-6.1.0-10-cloud-arm64 |   6.1.38-2 | arm64
linux-headers-6.1.0-10-rt-arm64 |   6.1.38-2 | arm64
linux-image-6.1.0-10-arm64-dbg |   6.1.38-2 | arm64
linux-image-6.1.0-10-arm64-unsigned |   6.1.38-2 | arm64
linux-image-6.1.0-10-cloud-arm64-dbg |   6.1.38-2 | arm64
linux-image-6.1.0-10-cloud-arm64-unsigned |   6.1.38-2 | arm64
linux-image-6.1.0-10-rt-arm64-dbg |   6.1.38-2 | arm64
linux-image-6.1.0-10-rt-arm64-unsigned |   6.1.38-2 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:37:35 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
cdrom-core-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
crc-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
crypto-dm-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
crypto-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
event-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
ext4-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
f2fs-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
fat-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
fb-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
fuse-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
input-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
ipv6-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
isofs-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
jffs2-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
jfs-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
kernel-image-6.1.0-10-marvell-di |   6.1.38-2 | armel
leds-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
linux-headers-6.1.0-10-marvell |   6.1.38-2 | armel
linux-headers-6.1.0-10-rpi |   6.1.38-2 | armel
linux-image-6.1.0-10-marvell |   6.1.38-2 | armel
linux-image-6.1.0-10-marvell-dbg |   6.1.38-2 | armel
linux-image-6.1.0-10-rpi |   6.1.38-2 | armel
linux-image-6.1.0-10-rpi-dbg |   6.1.38-2 | armel
loop-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
md-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
minix-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
mmc-core-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
mmc-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
mouse-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
mtd-core-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
mtd-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
multipath-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
nbd-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
nic-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
nic-shared-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
nic-usb-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
ppp-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
sata-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
scsi-core-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
squashfs-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
udf-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
uinput-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
usb-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
usb-serial-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
usb-storage-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:37:55 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
btrfs-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
cdrom-core-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
crc-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
crypto-dm-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
crypto-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
efi-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
event-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
ext4-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
f2fs-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
fat-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
fb-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
fuse-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
i2c-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
input-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
isofs-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
jfs-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
kernel-image-6.1.0-10-armmp-di |   6.1.38-2 | armhf
leds-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
linux-headers-6.1.0-10-armmp |   6.1.38-2 | armhf
linux-headers-6.1.0-10-armmp-lpae |   6.1.38-2 | armhf
linux-headers-6.1.0-10-rt-armmp |   6.1.38-2 | armhf
linux-image-6.1.0-10-armmp |   6.1.38-2 | armhf
linux-image-6.1.0-10-armmp-dbg |   6.1.38-2 | armhf
linux-image-6.1.0-10-armmp-lpae |   6.1.38-2 | armhf
linux-image-6.1.0-10-armmp-lpae-dbg |   6.1.38-2 | armhf
linux-image-6.1.0-10-rt-armmp |   6.1.38-2 | armhf
linux-image-6.1.0-10-rt-armmp-dbg |   6.1.38-2 | armhf
loop-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
md-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
mmc-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
mtd-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
multipath-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
nbd-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
nic-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
nic-shared-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
nic-usb-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
nic-wireless-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
pata-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
ppp-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
sata-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
scsi-core-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
scsi-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
scsi-nic-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
sound-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
speakup-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
squashfs-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
udf-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
uinput-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
usb-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
usb-serial-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
usb-storage-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:38:05 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-10-686 |   6.1.38-2 | i386
linux-headers-6.1.0-10-686-pae |   6.1.38-2 | i386
linux-headers-6.1.0-10-rt-686-pae |   6.1.38-2 | i386
linux-image-6.1.0-10-686-dbg |   6.1.38-2 | i386
linux-image-6.1.0-10-686-pae-dbg |   6.1.38-2 | i386
linux-image-6.1.0-10-686-pae-unsigned |   6.1.38-2 | i386
linux-image-6.1.0-10-686-unsigned |   6.1.38-2 | i386
linux-image-6.1.0-10-rt-686-pae-dbg |   6.1.38-2 | i386
linux-image-6.1.0-10-rt-686-pae-unsigned |   6.1.38-2 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:38:22 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
affs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
ata-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
ata-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
btrfs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
btrfs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
cdrom-core-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
cdrom-core-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
crc-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
crc-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
crypto-dm-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
crypto-dm-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
crypto-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
crypto-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
event-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
event-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
ext4-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
ext4-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
f2fs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
f2fs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
fat-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
fat-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
fb-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
fb-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
firewire-core-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
firewire-core-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
fuse-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
fuse-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
input-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
input-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
isofs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
isofs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
jfs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
jfs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
kernel-image-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
kernel-image-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
linux-headers-6.1.0-10-5kc-malta |   6.1.38-2 | mips64el
linux-headers-6.1.0-10-mips64r2el |   6.1.38-2 | mips64el
linux-image-6.1.0-10-5kc-malta |   6.1.38-2 | mips64el
linux-image-6.1.0-10-5kc-malta-dbg |   6.1.38-2 | mips64el
linux-image-6.1.0-10-mips64r2el |   6.1.38-2 | mips64el
linux-image-6.1.0-10-mips64r2el-dbg |   6.1.38-2 | mips64el
loop-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
loop-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
md-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
md-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
minix-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
minix-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
mmc-core-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
mmc-core-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
mmc-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
mmc-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
mouse-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
mouse-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
multipath-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
multipath-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nbd-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nbd-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nfs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nfs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nic-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nic-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nic-shared-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nic-shared-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nic-usb-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nic-usb-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nic-wireless-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nic-wireless-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
pata-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
pata-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
ppp-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
ppp-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
sata-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
sata-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
scsi-core-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
scsi-core-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
scsi-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
scsi-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
scsi-nic-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
scsi-nic-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
sound-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
sound-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
speakup-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
speakup-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
squashfs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
squashfs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
udf-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
udf-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
usb-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
usb-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
usb-serial-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
usb-serial-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
usb-storage-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
usb-storage-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
xfs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
xfs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:38:52 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
ata-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
btrfs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
cdrom-core-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
crc-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
crypto-dm-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
crypto-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
efi-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
event-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
ext4-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
f2fs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
fat-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
fb-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
firewire-core-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
fuse-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
i2c-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
input-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
isofs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
jfs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
kernel-image-6.1.0-10-amd64-di |   6.1.38-2 | amd64
linux-image-6.1.0-10-amd64 |   6.1.38-2 | amd64
linux-image-6.1.0-10-cloud-amd64 |   6.1.38-2 | amd64
linux-image-6.1.0-10-rt-amd64 |   6.1.38-2 | amd64
loop-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
md-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
mmc-core-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
mmc-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
mouse-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
mtd-core-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
multipath-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nbd-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nic-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nic-pcmcia-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nic-shared-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nic-usb-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nic-wireless-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
pata-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
pcmcia-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
pcmcia-storage-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
ppp-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
rfkill-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
sata-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
scsi-core-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
scsi-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
scsi-nic-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
serial-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
sound-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
speakup-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
squashfs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
udf-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
uinput-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
usb-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
usb-serial-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
usb-storage-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
xfs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-amd64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:39:02 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
btrfs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
cdrom-core-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
crc-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
crypto-dm-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
crypto-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
efi-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
event-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
ext4-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
f2fs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
fat-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
fb-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
fuse-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
i2c-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
input-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
isofs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
jfs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
kernel-image-6.1.0-10-arm64-di |   6.1.38-2 | arm64
leds-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
linux-image-6.1.0-10-arm64 |   6.1.38-2 | arm64
linux-image-6.1.0-10-cloud-arm64 |   6.1.38-2 | arm64
linux-image-6.1.0-10-rt-arm64 |   6.1.38-2 | arm64
loop-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
md-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
mmc-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
mtd-core-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
multipath-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
nbd-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
nic-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
nic-shared-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
nic-usb-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
nic-wireless-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
ppp-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
sata-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
scsi-core-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
scsi-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
scsi-nic-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
sound-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
speakup-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
squashfs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
udf-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
uinput-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
usb-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
usb-serial-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
usb-storage-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
xfs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-arm64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:39:12 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-10-686-di |   6.1.38-2 | i386
acpi-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
ata-modules-6.1.0-10-686-di |   6.1.38-2 | i386
ata-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
btrfs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
btrfs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
cdrom-core-modules-6.1.0-10-686-di |   6.1.38-2 | i386
cdrom-core-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
crc-modules-6.1.0-10-686-di |   6.1.38-2 | i386
crc-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
crypto-dm-modules-6.1.0-10-686-di |   6.1.38-2 | i386
crypto-dm-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
crypto-modules-6.1.0-10-686-di |   6.1.38-2 | i386
crypto-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
efi-modules-6.1.0-10-686-di |   6.1.38-2 | i386
efi-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
event-modules-6.1.0-10-686-di |   6.1.38-2 | i386
event-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
ext4-modules-6.1.0-10-686-di |   6.1.38-2 | i386
ext4-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
f2fs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
f2fs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
fat-modules-6.1.0-10-686-di |   6.1.38-2 | i386
fat-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
fb-modules-6.1.0-10-686-di |   6.1.38-2 | i386
fb-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
firewire-core-modules-6.1.0-10-686-di |   6.1.38-2 | i386
firewire-core-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
fuse-modules-6.1.0-10-686-di |   6.1.38-2 | i386
fuse-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
i2c-modules-6.1.0-10-686-di |   6.1.38-2 | i386
i2c-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
input-modules-6.1.0-10-686-di |   6.1.38-2 | i386
input-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
isofs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
isofs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
jfs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
jfs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
kernel-image-6.1.0-10-686-di |   6.1.38-2 | i386
kernel-image-6.1.0-10-686-pae-di |   6.1.38-2 | i386
linux-image-6.1.0-10-686 |   6.1.38-2 | i386
linux-image-6.1.0-10-686-pae |   6.1.38-2 | i386
linux-image-6.1.0-10-rt-686-pae |   6.1.38-2 | i386
loop-modules-6.1.0-10-686-di |   6.1.38-2 | i386
loop-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
md-modules-6.1.0-10-686-di |   6.1.38-2 | i386
md-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
mmc-core-modules-6.1.0-10-686-di |   6.1.38-2 | i386
mmc-core-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
mmc-modules-6.1.0-10-686-di |   6.1.38-2 | i386
mmc-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
mouse-modules-6.1.0-10-686-di |   6.1.38-2 | i386
mouse-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
mtd-core-modules-6.1.0-10-686-di |   6.1.38-2 | i386
mtd-core-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
multipath-modules-6.1.0-10-686-di |   6.1.38-2 | i386
multipath-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nbd-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nbd-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nic-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nic-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nic-pcmcia-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nic-pcmcia-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nic-shared-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nic-shared-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nic-usb-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nic-usb-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nic-wireless-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nic-wireless-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
pata-modules-6.1.0-10-686-di |   6.1.38-2 | i386
pata-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
pcmcia-modules-6.1.0-10-686-di |   6.1.38-2 | i386
pcmcia-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
pcmcia-storage-modules-6.1.0-10-686-di |   6.1.38-2 | i386
pcmcia-storage-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
ppp-modules-6.1.0-10-686-di |   6.1.38-2 | i386
ppp-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
rfkill-modules-6.1.0-10-686-di |   6.1.38-2 | i386
rfkill-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
sata-modules-6.1.0-10-686-di |   6.1.38-2 | i386
sata-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
scsi-core-modules-6.1.0-10-686-di |   6.1.38-2 | i386
scsi-core-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
scsi-modules-6.1.0-10-686-di |   6.1.38-2 | i386
scsi-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
scsi-nic-modules-6.1.0-10-686-di |   6.1.38-2 | i386
scsi-nic-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
serial-modules-6.1.0-10-686-di |   6.1.38-2 | i386
serial-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
sound-modules-6.1.0-10-686-di |   6.1.38-2 | i386
sound-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
speakup-modules-6.1.0-10-686-di |   6.1.38-2 | i386
speakup-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
squashfs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
squashfs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
udf-modules-6.1.0-10-686-di |   6.1.38-2 | i386
udf-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
uinput-modules-6.1.0-10-686-di |   6.1.38-2 | i386
uinput-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
usb-modules-6.1.0-10-686-di |   6.1.38-2 | i386
usb-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
usb-serial-modules-6.1.0-10-686-di |   6.1.38-2 | i386
usb-serial-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
usb-storage-modules-6.1.0-10-686-di |   6.1.38-2 | i386
usb-storage-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
xfs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
xfs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-i386)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:39:37 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-10-common |   6.1.38-2 | all
linux-headers-6.1.0-10-common-rt |   6.1.38-2 | all
linux-support-6.1.0-10 |   6.1.38-2 | all

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:40:58 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

wireshark-gtk | 4.0.6-1~deb12u1 | amd64, arm64, armel, armhf, i386, mips64el, mipsel, ppc64el, s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by wireshark - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 10:13:00 -0000] [ftpmaster: DAK's auto-decrufter]
Removed the following packages from unstable:

libcodec2-1.1 |    1.1.1-7 | amd64, arm64, armel, armhf, i386, mips64el, ppc64el, s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by codec2, no reverse dependencies)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 13:55:55 -0000] [ftpmaster: DAK's auto-decrufter]
Removed the following packages from unstable:

libopendht-c2 |  2.6.0.4-1 | mips64el, riscv64
libopendht2 |  2.6.0.4-1 | mips64el, riscv64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by opendht, no reverse dependencies)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 13:56:13 -0000] [ftpmaster: DAK's auto-decrufter]
Removed the following packages from experimental:

librust-microformats-dev |    0.6.0-2 | all
rust-microformats |    0.6.0-2 | source

------------------- Reason -------------------
[auto-cruft] NVIU
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 19:55:57 -0000] [ftpmaster: DAK's auto-decrufter]
Removed the following packages from unstable:

libavcodec-extra59 | 7:5.1.4-0+deb12u1 | mips64el
libavcodec59 | 7:5.1.4-0+deb12u1 | mips64el
libavdevice59 | 7:5.1.4-0+deb12u1 | mips64el
libavfilter-extra8 | 7:5.1.4-0+deb12u1 | mips64el
libavfilter8 | 7:5.1.4-0+deb12u1 | mips64el
libavformat-extra59 | 7:5.1.4-0+deb12u1 | mips64el
libavformat59 | 7:5.1.4-0+deb12u1 | mips64el
libavutil57 | 7:5.1.4-0+deb12u1 | mips64el
libpostproc56 | 7:5.1.4-0+deb12u1 | mips64el
libswscale6 | 7:5.1.4-0+deb12u1 | mips64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by ffmpeg, no reverse dependencies)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 19:55:57 -0000] [ftpmaster: DAK's auto-decrufter]
Removed the following packages from unstable:

libplacebo208 |  4.208.0-3 | amd64, arm64, armel, armhf, i386, mips64el, ppc64el, s390x
libplacebo292 |  6.292.1-1 | amd64, arm64, armel, armhf, i386, mips64el, ppc64el, riscv64, s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by libplacebo, no reverse dependencies)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 19:55:57 -0000] [ftpmaster: DAK's auto-decrufter]
Removed the following packages from unstable:

librtlsdr0 |    0.6.0-5 | amd64, arm64, armel, armhf, i386, mips64el, ppc64el, riscv64, s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by rtl-sdr, no reverse dependencies)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 19:55:57 -0000] [ftpmaster: DAK's auto-decrufter]
Removed the following packages from unstable:

libsvtav1enc1 | 1.6.0+dfsg-1 | amd64, arm64, armel, armhf, i386, mips64el, ppc64el, riscv64, s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by svt-av1, no reverse dependencies)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 08:09:53 -0000] [ftpmaster: DAK's auto-decrufter]
Removed the following packages from experimental:

libreoffice-report-builder-bin-nogui | 4:7.5.5~rc1-2 | ppc64el, s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by libreoffice, no reverse dependencies)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 11:03:41 -0000] [ftpmaster: DAK's auto-decrufter]
Removed the following packages from experimental:

libtbb-dev | 2021.11.0-1~exp1 | amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x
libtbb-doc | 2021.11.0-1~exp1 | all
  libtbb12 | 2021.11.0-1~exp1 | amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x
libtbbbind-2-5 | 2021.11.0-1~exp1 | amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x
libtbbmalloc2 | 2021.11.0-1~exp1 | amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x
    onetbb | 2021.11.0-1~exp1 | source

------------------- Reason -------------------
[auto-cruft] NVIU
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 15:05:47 -0000] [ftpmaster: DAK's auto-decrufter]
Removed the following packages from experimental:

hpijs-ppds | 3.22.10+dfsg0-3.1~exp1 | all
     hplip | 3.22.10+dfsg0-3.1~exp1 | source, amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x
hplip-data | 3.22.10+dfsg0-3.1~exp1 | all
 hplip-doc | 3.22.10+dfsg0-3.1~exp1 | all
 hplip-gui | 3.22.10+dfsg0-3.1~exp1 | all
libhpmud-dev | 3.22.10+dfsg0-3.1~exp1 | amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x
 libhpmud0 | 3.22.10+dfsg0-3.1~exp1 | amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x
libsane-hpaio | 3.22.10+dfsg0-3.1~exp1 | amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x
printer-driver-hpcups | 3.22.10+dfsg0-3.1~exp1 | amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x
printer-driver-hpijs | 3.22.10+dfsg0-3.1~exp1 | amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x
printer-driver-postscript-hp | 3.22.10+dfsg0-3.1~exp1 | amd64, arm64, armel, armhf, i386, ppc64el, riscv64, s390x

------------------- Reason -------------------
[auto-cruft] NVIU
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:14:21 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
cdrom-core-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
crc-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
crypto-dm-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
crypto-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
dasd-extra-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
dasd-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
ext4-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
f2fs-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
fat-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
fuse-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
isofs-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
kernel-image-6.1.0-14-s390x-di |   6.1.64-1 | s390x
linux-headers-6.1.0-14-s390x |   6.1.64-1 | s390x
linux-image-6.1.0-14-s390x |   6.1.64-1 | s390x
linux-image-6.1.0-14-s390x-dbg |   6.1.64-1 | s390x
loop-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
md-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
mtd-core-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
multipath-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
nbd-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
nic-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
scsi-core-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
scsi-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
udf-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x
xfs-modules-6.1.0-14-s390x-di |   6.1.64-1 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:14:33 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
affs-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
ata-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
ata-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
btrfs-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
btrfs-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
cdrom-core-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
cdrom-core-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
crc-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
crc-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
crypto-dm-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
crypto-dm-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
crypto-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
crypto-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
event-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
event-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
ext4-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
ext4-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
f2fs-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
f2fs-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
fat-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
fat-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
fb-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
fb-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
firewire-core-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
firewire-core-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
fuse-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
fuse-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
input-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
input-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
isofs-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
isofs-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
jfs-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
jfs-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
kernel-image-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
kernel-image-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
linux-headers-6.1.0-14-4kc-malta |   6.1.64-1 | mipsel
linux-headers-6.1.0-14-mips32r2el |   6.1.64-1 | mipsel
linux-image-6.1.0-14-4kc-malta |   6.1.64-1 | mipsel
linux-image-6.1.0-14-4kc-malta-dbg |   6.1.64-1 | mipsel
linux-image-6.1.0-14-mips32r2el |   6.1.64-1 | mipsel
linux-image-6.1.0-14-mips32r2el-dbg |   6.1.64-1 | mipsel
loop-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
loop-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
md-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
md-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
minix-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
minix-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
mmc-core-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
mmc-core-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
mmc-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
mmc-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
mouse-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
mouse-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
multipath-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
multipath-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
nbd-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
nbd-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
nfs-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
nfs-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
nic-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
nic-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
nic-shared-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
nic-shared-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
nic-usb-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
nic-usb-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
nic-wireless-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
nic-wireless-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
pata-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
pata-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
ppp-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
ppp-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
sata-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
sata-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
scsi-core-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
scsi-core-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
scsi-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
scsi-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
scsi-nic-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
scsi-nic-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
sound-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
sound-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
speakup-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
speakup-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
squashfs-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
squashfs-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
udf-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
udf-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
usb-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
usb-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
usb-serial-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
usb-serial-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
usb-storage-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
usb-storage-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel
xfs-modules-6.1.0-14-4kc-malta-di |   6.1.64-1 | mipsel
xfs-modules-6.1.0-14-mips32r2el-di |   6.1.64-1 | mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:14:46 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
btrfs-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
cdrom-core-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
crc-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
crypto-dm-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
crypto-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
event-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
ext4-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
f2fs-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
fancontrol-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
fat-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
fb-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
firewire-core-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
fuse-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
hypervisor-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
i2c-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
input-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
isofs-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
jfs-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
kernel-image-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
linux-headers-6.1.0-14-powerpc64le |   6.1.64-1 | ppc64el
linux-image-6.1.0-14-powerpc64le |   6.1.64-1 | ppc64el
linux-image-6.1.0-14-powerpc64le-dbg |   6.1.64-1 | ppc64el
loop-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
md-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
mouse-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
mtd-core-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
multipath-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
nbd-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
nic-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
nic-shared-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
nic-usb-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
nic-wireless-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
ppp-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
sata-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
scsi-core-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
scsi-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
scsi-nic-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
serial-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
squashfs-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
udf-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
uinput-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
usb-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
usb-serial-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
usb-storage-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el
xfs-modules-6.1.0-14-powerpc64le-di |   6.1.64-1 | ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:14:57 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-14-amd64 |   6.1.64-1 | amd64
linux-headers-6.1.0-14-cloud-amd64 |   6.1.64-1 | amd64
linux-headers-6.1.0-14-rt-amd64 |   6.1.64-1 | amd64
linux-image-6.1.0-14-amd64-dbg |   6.1.64-1 | amd64
linux-image-6.1.0-14-amd64-unsigned |   6.1.64-1 | amd64
linux-image-6.1.0-14-cloud-amd64-dbg |   6.1.64-1 | amd64
linux-image-6.1.0-14-cloud-amd64-unsigned |   6.1.64-1 | amd64
linux-image-6.1.0-14-rt-amd64-dbg |   6.1.64-1 | amd64
linux-image-6.1.0-14-rt-amd64-unsigned |   6.1.64-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:15:11 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-14-arm64 |   6.1.64-1 | arm64
linux-headers-6.1.0-14-cloud-arm64 |   6.1.64-1 | arm64
linux-headers-6.1.0-14-rt-arm64 |   6.1.64-1 | arm64
linux-image-6.1.0-14-arm64-dbg |   6.1.64-1 | arm64
linux-image-6.1.0-14-arm64-unsigned |   6.1.64-1 | arm64
linux-image-6.1.0-14-cloud-arm64-dbg |   6.1.64-1 | arm64
linux-image-6.1.0-14-cloud-arm64-unsigned |   6.1.64-1 | arm64
linux-image-6.1.0-14-rt-arm64-dbg |   6.1.64-1 | arm64
linux-image-6.1.0-14-rt-arm64-unsigned |   6.1.64-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:15:26 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
cdrom-core-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
crc-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
crypto-dm-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
crypto-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
event-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
ext4-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
f2fs-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
fat-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
fb-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
fuse-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
input-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
ipv6-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
isofs-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
jffs2-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
jfs-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
kernel-image-6.1.0-14-marvell-di |   6.1.64-1 | armel
leds-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
linux-headers-6.1.0-14-marvell |   6.1.64-1 | armel
linux-headers-6.1.0-14-rpi |   6.1.64-1 | armel
linux-image-6.1.0-14-marvell |   6.1.64-1 | armel
linux-image-6.1.0-14-marvell-dbg |   6.1.64-1 | armel
linux-image-6.1.0-14-rpi |   6.1.64-1 | armel
linux-image-6.1.0-14-rpi-dbg |   6.1.64-1 | armel
loop-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
md-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
minix-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
mmc-core-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
mmc-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
mouse-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
mtd-core-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
mtd-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
multipath-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
nbd-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
nic-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
nic-shared-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
nic-usb-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
ppp-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
sata-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
scsi-core-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
squashfs-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
udf-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
uinput-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
usb-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
usb-serial-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel
usb-storage-modules-6.1.0-14-marvell-di |   6.1.64-1 | armel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:15:36 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
btrfs-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
cdrom-core-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
crc-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
crypto-dm-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
crypto-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
efi-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
event-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
ext4-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
f2fs-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
fat-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
fb-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
fuse-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
i2c-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
input-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
isofs-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
jfs-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
kernel-image-6.1.0-14-armmp-di |   6.1.64-1 | armhf
leds-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
linux-headers-6.1.0-14-armmp |   6.1.64-1 | armhf
linux-headers-6.1.0-14-armmp-lpae |   6.1.64-1 | armhf
linux-headers-6.1.0-14-rt-armmp |   6.1.64-1 | armhf
linux-image-6.1.0-14-armmp |   6.1.64-1 | armhf
linux-image-6.1.0-14-armmp-dbg |   6.1.64-1 | armhf
linux-image-6.1.0-14-armmp-lpae |   6.1.64-1 | armhf
linux-image-6.1.0-14-armmp-lpae-dbg |   6.1.64-1 | armhf
linux-image-6.1.0-14-rt-armmp |   6.1.64-1 | armhf
linux-image-6.1.0-14-rt-armmp-dbg |   6.1.64-1 | armhf
loop-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
md-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
mmc-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
mtd-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
multipath-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
nbd-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
nic-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
nic-shared-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
nic-usb-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
nic-wireless-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
pata-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
ppp-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
sata-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
scsi-core-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
scsi-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
scsi-nic-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
sound-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
speakup-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
squashfs-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
udf-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
uinput-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
usb-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
usb-serial-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf
usb-storage-modules-6.1.0-14-armmp-di |   6.1.64-1 | armhf

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:15:51 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-14-686 |   6.1.64-1 | i386
linux-headers-6.1.0-14-686-pae |   6.1.64-1 | i386
linux-headers-6.1.0-14-rt-686-pae |   6.1.64-1 | i386
linux-image-6.1.0-14-686-dbg |   6.1.64-1 | i386
linux-image-6.1.0-14-686-pae-dbg |   6.1.64-1 | i386
linux-image-6.1.0-14-686-pae-unsigned |   6.1.64-1 | i386
linux-image-6.1.0-14-686-unsigned |   6.1.64-1 | i386
linux-image-6.1.0-14-rt-686-pae-dbg |   6.1.64-1 | i386
linux-image-6.1.0-14-rt-686-pae-unsigned |   6.1.64-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:16:01 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
affs-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
ata-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
ata-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
btrfs-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
btrfs-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
cdrom-core-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
cdrom-core-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
crc-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
crc-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
crypto-dm-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
crypto-dm-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
crypto-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
crypto-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
event-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
event-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
ext4-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
ext4-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
f2fs-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
f2fs-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
fat-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
fat-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
fb-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
fb-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
firewire-core-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
firewire-core-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
fuse-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
fuse-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
input-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
input-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
isofs-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
isofs-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
jfs-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
jfs-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
kernel-image-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
kernel-image-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
linux-headers-6.1.0-14-5kc-malta |   6.1.64-1 | mips64el
linux-headers-6.1.0-14-mips64r2el |   6.1.64-1 | mips64el
linux-image-6.1.0-14-5kc-malta |   6.1.64-1 | mips64el
linux-image-6.1.0-14-5kc-malta-dbg |   6.1.64-1 | mips64el
linux-image-6.1.0-14-mips64r2el |   6.1.64-1 | mips64el
linux-image-6.1.0-14-mips64r2el-dbg |   6.1.64-1 | mips64el
loop-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
loop-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
md-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
md-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
minix-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
minix-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
mmc-core-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
mmc-core-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
mmc-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
mmc-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
mouse-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
mouse-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
multipath-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
multipath-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
nbd-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
nbd-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
nfs-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
nfs-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
nic-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
nic-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
nic-shared-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
nic-shared-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
nic-usb-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
nic-usb-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
nic-wireless-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
nic-wireless-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
pata-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
pata-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
ppp-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
ppp-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
sata-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
sata-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
scsi-core-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
scsi-core-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
scsi-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
scsi-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
scsi-nic-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
scsi-nic-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
sound-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
sound-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
speakup-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
speakup-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
squashfs-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
squashfs-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
udf-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
udf-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
usb-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
usb-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
usb-serial-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
usb-serial-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
usb-storage-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
usb-storage-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el
xfs-modules-6.1.0-14-5kc-malta-di |   6.1.64-1 | mips64el
xfs-modules-6.1.0-14-mips64r2el-di |   6.1.64-1 | mips64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:16:15 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
affs-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
ata-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
ata-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
btrfs-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
btrfs-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
crc-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
crc-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
crypto-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
crypto-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
event-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
event-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
ext4-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
ext4-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
f2fs-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
f2fs-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
fat-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
fat-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
fb-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
fb-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
firewire-core-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
firewire-core-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
fuse-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
fuse-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
input-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
input-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
isofs-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
isofs-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
jfs-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
jfs-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
kernel-image-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
kernel-image-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
linux-headers-6.1.0-14-loongson-3 |   6.1.64-1 | mips64el, mipsel
linux-headers-6.1.0-14-octeon |   6.1.64-1 | mips64el, mipsel
linux-image-6.1.0-14-loongson-3 |   6.1.64-1 | mips64el, mipsel
linux-image-6.1.0-14-loongson-3-dbg |   6.1.64-1 | mips64el, mipsel
linux-image-6.1.0-14-octeon |   6.1.64-1 | mips64el, mipsel
linux-image-6.1.0-14-octeon-dbg |   6.1.64-1 | mips64el, mipsel
loop-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
loop-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
md-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
md-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
minix-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
minix-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
mmc-core-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
mmc-core-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
mmc-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
mmc-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
mouse-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
mouse-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
multipath-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
multipath-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
nbd-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
nbd-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
nfs-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
nfs-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
nic-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
nic-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
nic-shared-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
nic-shared-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
nic-usb-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
nic-usb-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
pata-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
pata-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
ppp-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
ppp-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
sata-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
sata-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
scsi-core-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
scsi-core-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
scsi-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
scsi-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
sound-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
sound-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
speakup-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
speakup-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
squashfs-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
squashfs-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
udf-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
udf-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
usb-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
usb-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
usb-serial-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
usb-serial-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
usb-storage-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
usb-storage-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel
xfs-modules-6.1.0-14-loongson-3-di |   6.1.64-1 | mips64el, mipsel
xfs-modules-6.1.0-14-octeon-di |   6.1.64-1 | mips64el, mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:16:24 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
ata-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
btrfs-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
cdrom-core-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
crc-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
crypto-dm-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
crypto-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
efi-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
event-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
ext4-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
f2fs-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
fat-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
fb-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
firewire-core-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
fuse-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
i2c-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
input-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
isofs-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
jfs-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
kernel-image-6.1.0-14-amd64-di |   6.1.64-1 | amd64
linux-image-6.1.0-14-amd64 |   6.1.64-1 | amd64
linux-image-6.1.0-14-cloud-amd64 |   6.1.64-1 | amd64
linux-image-6.1.0-14-rt-amd64 |   6.1.64-1 | amd64
loop-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
md-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
mmc-core-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
mmc-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
mouse-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
mtd-core-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
multipath-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
nbd-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
nic-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
nic-pcmcia-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
nic-shared-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
nic-usb-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
nic-wireless-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
pata-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
pcmcia-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
pcmcia-storage-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
ppp-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
rfkill-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
sata-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
scsi-core-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
scsi-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
scsi-nic-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
serial-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
sound-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
speakup-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
squashfs-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
udf-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
uinput-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
usb-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
usb-serial-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
usb-storage-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64
xfs-modules-6.1.0-14-amd64-di |   6.1.64-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-amd64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:16:40 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
btrfs-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
cdrom-core-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
crc-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
crypto-dm-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
crypto-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
efi-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
event-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
ext4-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
f2fs-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
fat-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
fb-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
fuse-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
i2c-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
input-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
isofs-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
jfs-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
kernel-image-6.1.0-14-arm64-di |   6.1.64-1 | arm64
leds-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
linux-image-6.1.0-14-arm64 |   6.1.64-1 | arm64
linux-image-6.1.0-14-cloud-arm64 |   6.1.64-1 | arm64
linux-image-6.1.0-14-rt-arm64 |   6.1.64-1 | arm64
loop-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
md-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
mmc-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
mtd-core-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
multipath-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
nbd-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
nic-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
nic-shared-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
nic-usb-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
nic-wireless-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
ppp-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
sata-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
scsi-core-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
scsi-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
scsi-nic-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
sound-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
speakup-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
squashfs-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
udf-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
uinput-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
usb-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
usb-serial-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
usb-storage-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64
xfs-modules-6.1.0-14-arm64-di |   6.1.64-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-arm64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:16:51 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-14-686-di |   6.1.64-1 | i386
acpi-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
ata-modules-6.1.0-14-686-di |   6.1.64-1 | i386
ata-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
btrfs-modules-6.1.0-14-686-di |   6.1.64-1 | i386
btrfs-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
cdrom-core-modules-6.1.0-14-686-di |   6.1.64-1 | i386
cdrom-core-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
crc-modules-6.1.0-14-686-di |   6.1.64-1 | i386
crc-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
crypto-dm-modules-6.1.0-14-686-di |   6.1.64-1 | i386
crypto-dm-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
crypto-modules-6.1.0-14-686-di |   6.1.64-1 | i386
crypto-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
efi-modules-6.1.0-14-686-di |   6.1.64-1 | i386
efi-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
event-modules-6.1.0-14-686-di |   6.1.64-1 | i386
event-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
ext4-modules-6.1.0-14-686-di |   6.1.64-1 | i386
ext4-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
f2fs-modules-6.1.0-14-686-di |   6.1.64-1 | i386
f2fs-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
fat-modules-6.1.0-14-686-di |   6.1.64-1 | i386
fat-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
fb-modules-6.1.0-14-686-di |   6.1.64-1 | i386
fb-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
firewire-core-modules-6.1.0-14-686-di |   6.1.64-1 | i386
firewire-core-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
fuse-modules-6.1.0-14-686-di |   6.1.64-1 | i386
fuse-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
i2c-modules-6.1.0-14-686-di |   6.1.64-1 | i386
i2c-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
input-modules-6.1.0-14-686-di |   6.1.64-1 | i386
input-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
isofs-modules-6.1.0-14-686-di |   6.1.64-1 | i386
isofs-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
jfs-modules-6.1.0-14-686-di |   6.1.64-1 | i386
jfs-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
kernel-image-6.1.0-14-686-di |   6.1.64-1 | i386
kernel-image-6.1.0-14-686-pae-di |   6.1.64-1 | i386
linux-image-6.1.0-14-686 |   6.1.64-1 | i386
linux-image-6.1.0-14-686-pae |   6.1.64-1 | i386
linux-image-6.1.0-14-rt-686-pae |   6.1.64-1 | i386
loop-modules-6.1.0-14-686-di |   6.1.64-1 | i386
loop-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
md-modules-6.1.0-14-686-di |   6.1.64-1 | i386
md-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
mmc-core-modules-6.1.0-14-686-di |   6.1.64-1 | i386
mmc-core-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
mmc-modules-6.1.0-14-686-di |   6.1.64-1 | i386
mmc-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
mouse-modules-6.1.0-14-686-di |   6.1.64-1 | i386
mouse-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
mtd-core-modules-6.1.0-14-686-di |   6.1.64-1 | i386
mtd-core-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
multipath-modules-6.1.0-14-686-di |   6.1.64-1 | i386
multipath-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
nbd-modules-6.1.0-14-686-di |   6.1.64-1 | i386
nbd-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
nic-modules-6.1.0-14-686-di |   6.1.64-1 | i386
nic-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
nic-pcmcia-modules-6.1.0-14-686-di |   6.1.64-1 | i386
nic-pcmcia-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
nic-shared-modules-6.1.0-14-686-di |   6.1.64-1 | i386
nic-shared-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
nic-usb-modules-6.1.0-14-686-di |   6.1.64-1 | i386
nic-usb-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
nic-wireless-modules-6.1.0-14-686-di |   6.1.64-1 | i386
nic-wireless-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
pata-modules-6.1.0-14-686-di |   6.1.64-1 | i386
pata-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
pcmcia-modules-6.1.0-14-686-di |   6.1.64-1 | i386
pcmcia-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
pcmcia-storage-modules-6.1.0-14-686-di |   6.1.64-1 | i386
pcmcia-storage-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
ppp-modules-6.1.0-14-686-di |   6.1.64-1 | i386
ppp-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
rfkill-modules-6.1.0-14-686-di |   6.1.64-1 | i386
rfkill-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
sata-modules-6.1.0-14-686-di |   6.1.64-1 | i386
sata-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
scsi-core-modules-6.1.0-14-686-di |   6.1.64-1 | i386
scsi-core-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
scsi-modules-6.1.0-14-686-di |   6.1.64-1 | i386
scsi-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
scsi-nic-modules-6.1.0-14-686-di |   6.1.64-1 | i386
scsi-nic-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
serial-modules-6.1.0-14-686-di |   6.1.64-1 | i386
serial-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
sound-modules-6.1.0-14-686-di |   6.1.64-1 | i386
sound-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
speakup-modules-6.1.0-14-686-di |   6.1.64-1 | i386
speakup-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
squashfs-modules-6.1.0-14-686-di |   6.1.64-1 | i386
squashfs-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
udf-modules-6.1.0-14-686-di |   6.1.64-1 | i386
udf-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
uinput-modules-6.1.0-14-686-di |   6.1.64-1 | i386
uinput-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
usb-modules-6.1.0-14-686-di |   6.1.64-1 | i386
usb-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
usb-serial-modules-6.1.0-14-686-di |   6.1.64-1 | i386
usb-serial-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
usb-storage-modules-6.1.0-14-686-di |   6.1.64-1 | i386
usb-storage-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386
xfs-modules-6.1.0-14-686-di |   6.1.64-1 | i386
xfs-modules-6.1.0-14-686-pae-di |   6.1.64-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-i386)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sun, 10 Dec 2023 17:17:13 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-14-common |   6.1.64-1 | all
linux-headers-6.1.0-14-common-rt |   6.1.64-1 | all
linux-support-6.1.0-14 |   6.1.64-1 | all

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux - based on source metadata)
----------------------------------------------
=========================================================================

base-files (12.4+deb12u4) bookworm; urgency=medium
 .
   * Change /etc/debian_version to 12.4, for Debian 12.4 point release.

debian-installer (20230607+deb12u4) bookworm; urgency=medium
 .
   * Bump Linux kernel ABI to 6.1.0-15.
   * Adjust linux-image build-deps as well.

debian-installer-netboot-images (20230607+deb12u4) bookworm; urgency=medium
 .
   * Update to 20230607+deb12u4, from bookworm-proposed-updates.

linux (6.1.66-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.65
     - afs: Fix afs_server_list to be cleaned up with RCU
     - afs: Make error on cell lookup failure consistent with OpenAFS
     - [arm64,armhf] drm/panel: simple: Fix Innolux G101ICE-L01 bus flags
     - [arm64,armhf] drm/panel: simple: Fix Innolux G101ICE-L01 timings
     - wireguard: use DEV_STATS_INC()
     - ata: pata_isapnp: Add missing error check for devm_ioport_map()
     - [x86] drm/i915: do not clean GT table on error path
     - [arm64,armhf] drm/rockchip: vop: Fix color for RGB888/BGR888 format on VOP
       full
     - HID: fix HID device resource race between HID core and debugging support
     - ipv4: Correct/silence an endian warning in __ip_do_redirect
     - net: usb: ax88179_178a: fix failed operations during ax88179_reset
     - net/smc: avoid data corruption caused by decline
     - [armhf] arm/xen: fix xen_vcpu_info allocation alignment
     - [amd64,arm64] amd-xgbe: handle corner-case during sfp hotplug
     - [amd64,arm64] amd-xgbe: handle the corner-case during tx completion
     - [amd64,arm64] amd-xgbe: propagate the correct speed and duplex status
     - afs: Return ENOENT if no cell DNS record can be found
     - afs: Fix file locking on R/O volumes to operate in local mode
     - mm,kfence: decouple kfence from page granularity mapping judgement
     - i40e: use ERR_PTR error print in i40e messages
     - i40e: Fix adding unsupported cloud filters
     - [arm64] USB: dwc3: qcom: fix resource leaks on probe deferral
     - [arm64] USB: dwc3: qcom: fix ACPI platform device leak
     - lockdep: Fix block chain corruption
     - cifs: minor cleanup of some headers
     - smb3: allow dumping session and tcon id to improve stats analysis and
       debugging
     - cifs: print last update time for interface list
     - cifs: distribute channels across interfaces based on speed
     - cifs: account for primary channel in the interface list
     - cifs: fix leak of iface for primary channel
     - ext4: add a new helper to check if es must be kept
     - ext4: factor out __es_alloc_extent() and __es_free_extent()
     - ext4: use pre-allocated es in __es_insert_extent()
     - ext4: use pre-allocated es in __es_remove_extent()
     - ext4: using nofail preallocation in ext4_es_remove_extent()
     - ext4: using nofail preallocation in ext4_es_insert_delayed_block()
     - ext4: using nofail preallocation in ext4_es_insert_extent()
     - ext4: fix slab-use-after-free in ext4_es_insert_extent()
     - ext4: make sure allocate pending entry not fail
     - NFSD: Fix "start of NFS reply" pointer passed to nfsd_cache_update()
     - NFSD: Fix checksum mismatches in the duplicate reply cache
     - ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CVA
     - swiotlb-xen: provide the "max_mapping_size" method
     - bcache: replace a mistaken IS_ERR() by IS_ERR_OR_NULL() in
       btree_gc_coalesce()
     - md: fix bi_status reporting in md_end_clone_io
     - bcache: fixup multi-threaded bch_sectors_dirty_init() wake-up race
     - io_uring/fs: consider link->flags when getting path for LINKAT
     - [s390x] dasd: protect device queue against concurrent access
     - USB: serial: option: add Luat Air72*U series products
     - hv_netvsc: fix race of netvsc and VF register_netdevice
     - hv_netvsc: Fix race of register_netdevice_notifier and VF register
     - hv_netvsc: Mark VF as slave before exposing it to user-mode
     - dm-delay: fix a race between delay_presuspend and delay_bio
     - bcache: check return value from btree_node_alloc_replacement()
     - bcache: prevent potential division by zero error
     - bcache: fixup init dirty data errors
     - bcache: fixup lock c->root error
     - USB: serial: option: add Fibocom L7xx modules
     - USB: serial: option: fix FM101R-GL defines
     - USB: serial: option: don't claim interface 4 for ZTE MF290
     - usb: typec: tcpm: Skip hard reset when in error recovery
     - [arm64,armhf] USB: dwc2: write HCINT with INTMASK applied
     - [arm64,armhf] usb: dwc3: Fix default mode initialization
     - [arm64,armhf] usb: dwc3: set the dma max_seg_size
     - [arm64] USB: dwc3: qcom: fix software node leak on probe errors
     - [arm64] USB: dwc3: qcom: fix wakeup after probe deferral
     - io_uring: fix off-by one bvec index
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.66
     - cifs: Fix FALLOC_FL_ZERO_RANGE by setting i_size if EOF moved
     - cifs: Fix FALLOC_FL_INSERT_RANGE by setting i_size after EOF moved
     - smb: client: report correct st_size for SMB and NFS symlinks
     - pinctrl: avoid reload of p state in list iteration
     - firewire: core: fix possible memory leak in create_units()
     - mmc: sdhci-pci-gli: Disable LPM during initialization
     - mmc: cqhci: Increase recovery halt timeout
     - mmc: cqhci: Warn of halt or task clear failure
     - mmc: cqhci: Fix task clearing in CQE error recovery
     - mmc: block: Retry commands in CQE error recovery
     - mmc: block: Do not lose cache flush during CQE error recovery
     - mmc: block: Be sure to wait while busy in CQE error recovery
     - ALSA: hda: Disable power-save on KONTRON SinglePC
     - ALSA: hda/realtek: Headset Mic VREF to 100%
     - ALSA: hda/realtek: Add supported ALC257 for ChromeOS
     - dm-verity: align struct dm_verity_fec_io properly
     - scsi: Change SCSI device boolean fields to single bit flags
     - scsi: sd: Fix system start for ATA devices
     - drm/amd: Enable PCIe PME from D3
     - drm/amdgpu: Force order between a read and write to the same address
     - drm/amd/display: Include udelay when waiting for INBOX0 ACK
     - drm/amd/display: Remove min_dst_y_next_start check for Z8
     - drm/amd/display: Use DRAM speed from validation for dummy p-state
     - drm/amd/display: Update min Z8 residency time to 2100 for DCN314
     - drm/amd/display: fix ABM disablement
     - dm verity: initialize fec io before freeing it
     - dm verity: don't perform FEC for failed readahead IO
     - nvme: check for valid nvme_identify_ns() before using it
     - [x86] cpufreq/amd-pstate: Fix the return value of amd_pstate_fast_switch()
     - dma-buf: fix check in dma_resv_add_fence
     - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR
     - [amd64] iommu/vt-d: Add MTL to quirk list to skip TE disabling
     - [powerpc*] KVM: PPC: Book3S HV: Fix KVM_RUN clobbering FP/VEC user
       registers
     - [powerpc*] Don't clobber f0/vs0 during fp|altivec register save
       (Closes: #1032104)
     - btrfs: add dmesg output for first mount and last unmount of a filesystem
     - btrfs: ref-verify: fix memory leaks in btrfs_ref_tree_mod()
     - btrfs: fix off-by-one when checking chunk map includes logical address
     - btrfs: send: ensure send_fd is writable
     - btrfs: make error messages more clear when getting a chunk map
     - btrfs: fix 64bit compat send ioctl arguments not initializing version
       member
     - Input: xpad - add HyperX Clutch Gladiate Support
     - wifi: cfg80211: fix CQM for non-range use
     - [arm64,armhf] USB: xhci-plat: fix legacy PHY double init
     - USB: core: Change configuration warnings to notices
     - usb: config: fix iteration issue in 'usb_get_bos_descriptor()'
     - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet
     - [arm64] dpaa2-eth: increase the needed headroom to account for alignment
     - net: stmmac: xgmac: Disable FPE MMC interrupts
     - r8169: prevent potential deadlock in rtl8169_close
     - [x86] KVM: x86: Fix lapic timer interrupt lost after loading a snapshot.
     - PCI: Lengthen reset delay for VideoPropulsion Torrent QN16e card
     - spi: Fix null dereference on suspend
     - drm/amd/display: Restore rptr/wptr for DMCUB as workaround
     - drm/amd/display: Guard against invalid RPTR/WPTR being set
     - [armhf] cpufreq: imx6q: don't warn for disabling a non-existing frequency
     - [armhf] cpufreq: imx6q: Don't disable 792 Mhz OPP unnecessarily
     - [amd64] iommu/vt-d: Omit devTLB invalidation requests when TES=0
     - [amd64] iommu/vt-d: Allocate pasid table in device probe path
     - [amd64] iommu/vt-d: Add device_block_translation() helper
     - [amd64] iommu/vt-d: Disable PCI ATS in legacy passthrough mode
     - [amd64] iommu/vt-d: Make context clearing consistent with context mapping
     - drm/amd/pm: fix a memleak in aldebaran_tables_init
     - mmc: core: add helpers mmc_regulator_enable/disable_vqmmc
     - mmc: sdhci-sprd: Fix vqmmc not shutting down after the card was pulled
     - drm/amd/display: Expand kernel doc for DC
     - drm/amd/display: clean code-style issues in dcn30_set_mpc_shaper_3dlut
     - drm/amd/display: Fix the delta clamping for shaper LUT
     - drm/amd/display: Fix MPCC 1DLUT programming
     - r8169: disable ASPM in case of tx timeout
     - r8169: fix deadlock on RTL8125 in jumbo mtu mode (Closes: #1057790)
     - xen: Allow platform PCI interrupt to be shared
     - xen: simplify evtchn_do_upcall() call maze
     - [x86] xen: fix percpu vcpu_info allocation
     - [x86] apic/msi: Fix misconfigured non-maskable MSI quirk
     - iomap: update ki_pos a little later in iomap_dio_complete
       (Closes: #1057843)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 15
   * [rt] Update to 6.1.66-rt19

linux-signed-amd64 (6.1.66+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.66-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.65
     - afs: Fix afs_server_list to be cleaned up with RCU
     - afs: Make error on cell lookup failure consistent with OpenAFS
     - [arm64,armhf] drm/panel: simple: Fix Innolux G101ICE-L01 bus flags
     - [arm64,armhf] drm/panel: simple: Fix Innolux G101ICE-L01 timings
     - wireguard: use DEV_STATS_INC()
     - ata: pata_isapnp: Add missing error check for devm_ioport_map()
     - [x86] drm/i915: do not clean GT table on error path
     - [arm64,armhf] drm/rockchip: vop: Fix color for RGB888/BGR888 format on VOP
       full
     - HID: fix HID device resource race between HID core and debugging support
     - ipv4: Correct/silence an endian warning in __ip_do_redirect
     - net: usb: ax88179_178a: fix failed operations during ax88179_reset
     - net/smc: avoid data corruption caused by decline
     - [armhf] arm/xen: fix xen_vcpu_info allocation alignment
     - [amd64,arm64] amd-xgbe: handle corner-case during sfp hotplug
     - [amd64,arm64] amd-xgbe: handle the corner-case during tx completion
     - [amd64,arm64] amd-xgbe: propagate the correct speed and duplex status
     - afs: Return ENOENT if no cell DNS record can be found
     - afs: Fix file locking on R/O volumes to operate in local mode
     - mm,kfence: decouple kfence from page granularity mapping judgement
     - i40e: use ERR_PTR error print in i40e messages
     - i40e: Fix adding unsupported cloud filters
     - [arm64] USB: dwc3: qcom: fix resource leaks on probe deferral
     - [arm64] USB: dwc3: qcom: fix ACPI platform device leak
     - lockdep: Fix block chain corruption
     - cifs: minor cleanup of some headers
     - smb3: allow dumping session and tcon id to improve stats analysis and
       debugging
     - cifs: print last update time for interface list
     - cifs: distribute channels across interfaces based on speed
     - cifs: account for primary channel in the interface list
     - cifs: fix leak of iface for primary channel
     - ext4: add a new helper to check if es must be kept
     - ext4: factor out __es_alloc_extent() and __es_free_extent()
     - ext4: use pre-allocated es in __es_insert_extent()
     - ext4: use pre-allocated es in __es_remove_extent()
     - ext4: using nofail preallocation in ext4_es_remove_extent()
     - ext4: using nofail preallocation in ext4_es_insert_delayed_block()
     - ext4: using nofail preallocation in ext4_es_insert_extent()
     - ext4: fix slab-use-after-free in ext4_es_insert_extent()
     - ext4: make sure allocate pending entry not fail
     - NFSD: Fix "start of NFS reply" pointer passed to nfsd_cache_update()
     - NFSD: Fix checksum mismatches in the duplicate reply cache
     - ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CVA
     - swiotlb-xen: provide the "max_mapping_size" method
     - bcache: replace a mistaken IS_ERR() by IS_ERR_OR_NULL() in
       btree_gc_coalesce()
     - md: fix bi_status reporting in md_end_clone_io
     - bcache: fixup multi-threaded bch_sectors_dirty_init() wake-up race
     - io_uring/fs: consider link->flags when getting path for LINKAT
     - [s390x] dasd: protect device queue against concurrent access
     - USB: serial: option: add Luat Air72*U series products
     - hv_netvsc: fix race of netvsc and VF register_netdevice
     - hv_netvsc: Fix race of register_netdevice_notifier and VF register
     - hv_netvsc: Mark VF as slave before exposing it to user-mode
     - dm-delay: fix a race between delay_presuspend and delay_bio
     - bcache: check return value from btree_node_alloc_replacement()
     - bcache: prevent potential division by zero error
     - bcache: fixup init dirty data errors
     - bcache: fixup lock c->root error
     - USB: serial: option: add Fibocom L7xx modules
     - USB: serial: option: fix FM101R-GL defines
     - USB: serial: option: don't claim interface 4 for ZTE MF290
     - usb: typec: tcpm: Skip hard reset when in error recovery
     - [arm64,armhf] USB: dwc2: write HCINT with INTMASK applied
     - [arm64,armhf] usb: dwc3: Fix default mode initialization
     - [arm64,armhf] usb: dwc3: set the dma max_seg_size
     - [arm64] USB: dwc3: qcom: fix software node leak on probe errors
     - [arm64] USB: dwc3: qcom: fix wakeup after probe deferral
     - io_uring: fix off-by one bvec index
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.66
     - cifs: Fix FALLOC_FL_ZERO_RANGE by setting i_size if EOF moved
     - cifs: Fix FALLOC_FL_INSERT_RANGE by setting i_size after EOF moved
     - smb: client: report correct st_size for SMB and NFS symlinks
     - pinctrl: avoid reload of p state in list iteration
     - firewire: core: fix possible memory leak in create_units()
     - mmc: sdhci-pci-gli: Disable LPM during initialization
     - mmc: cqhci: Increase recovery halt timeout
     - mmc: cqhci: Warn of halt or task clear failure
     - mmc: cqhci: Fix task clearing in CQE error recovery
     - mmc: block: Retry commands in CQE error recovery
     - mmc: block: Do not lose cache flush during CQE error recovery
     - mmc: block: Be sure to wait while busy in CQE error recovery
     - ALSA: hda: Disable power-save on KONTRON SinglePC
     - ALSA: hda/realtek: Headset Mic VREF to 100%
     - ALSA: hda/realtek: Add supported ALC257 for ChromeOS
     - dm-verity: align struct dm_verity_fec_io properly
     - scsi: Change SCSI device boolean fields to single bit flags
     - scsi: sd: Fix system start for ATA devices
     - drm/amd: Enable PCIe PME from D3
     - drm/amdgpu: Force order between a read and write to the same address
     - drm/amd/display: Include udelay when waiting for INBOX0 ACK
     - drm/amd/display: Remove min_dst_y_next_start check for Z8
     - drm/amd/display: Use DRAM speed from validation for dummy p-state
     - drm/amd/display: Update min Z8 residency time to 2100 for DCN314
     - drm/amd/display: fix ABM disablement
     - dm verity: initialize fec io before freeing it
     - dm verity: don't perform FEC for failed readahead IO
     - nvme: check for valid nvme_identify_ns() before using it
     - [x86] cpufreq/amd-pstate: Fix the return value of amd_pstate_fast_switch()
     - dma-buf: fix check in dma_resv_add_fence
     - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR
     - [amd64] iommu/vt-d: Add MTL to quirk list to skip TE disabling
     - [powerpc*] KVM: PPC: Book3S HV: Fix KVM_RUN clobbering FP/VEC user
       registers
     - [powerpc*] Don't clobber f0/vs0 during fp|altivec register save
       (Closes: #1032104)
     - btrfs: add dmesg output for first mount and last unmount of a filesystem
     - btrfs: ref-verify: fix memory leaks in btrfs_ref_tree_mod()
     - btrfs: fix off-by-one when checking chunk map includes logical address
     - btrfs: send: ensure send_fd is writable
     - btrfs: make error messages more clear when getting a chunk map
     - btrfs: fix 64bit compat send ioctl arguments not initializing version
       member
     - Input: xpad - add HyperX Clutch Gladiate Support
     - wifi: cfg80211: fix CQM for non-range use
     - [arm64,armhf] USB: xhci-plat: fix legacy PHY double init
     - USB: core: Change configuration warnings to notices
     - usb: config: fix iteration issue in 'usb_get_bos_descriptor()'
     - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet
     - [arm64] dpaa2-eth: increase the needed headroom to account for alignment
     - net: stmmac: xgmac: Disable FPE MMC interrupts
     - r8169: prevent potential deadlock in rtl8169_close
     - [x86] KVM: x86: Fix lapic timer interrupt lost after loading a snapshot.
     - PCI: Lengthen reset delay for VideoPropulsion Torrent QN16e card
     - spi: Fix null dereference on suspend
     - drm/amd/display: Restore rptr/wptr for DMCUB as workaround
     - drm/amd/display: Guard against invalid RPTR/WPTR being set
     - [armhf] cpufreq: imx6q: don't warn for disabling a non-existing frequency
     - [armhf] cpufreq: imx6q: Don't disable 792 Mhz OPP unnecessarily
     - [amd64] iommu/vt-d: Omit devTLB invalidation requests when TES=0
     - [amd64] iommu/vt-d: Allocate pasid table in device probe path
     - [amd64] iommu/vt-d: Add device_block_translation() helper
     - [amd64] iommu/vt-d: Disable PCI ATS in legacy passthrough mode
     - [amd64] iommu/vt-d: Make context clearing consistent with context mapping
     - drm/amd/pm: fix a memleak in aldebaran_tables_init
     - mmc: core: add helpers mmc_regulator_enable/disable_vqmmc
     - mmc: sdhci-sprd: Fix vqmmc not shutting down after the card was pulled
     - drm/amd/display: Expand kernel doc for DC
     - drm/amd/display: clean code-style issues in dcn30_set_mpc_shaper_3dlut
     - drm/amd/display: Fix the delta clamping for shaper LUT
     - drm/amd/display: Fix MPCC 1DLUT programming
     - r8169: disable ASPM in case of tx timeout
     - r8169: fix deadlock on RTL8125 in jumbo mtu mode (Closes: #1057790)
     - xen: Allow platform PCI interrupt to be shared
     - xen: simplify evtchn_do_upcall() call maze
     - [x86] xen: fix percpu vcpu_info allocation
     - [x86] apic/msi: Fix misconfigured non-maskable MSI quirk
     - iomap: update ki_pos a little later in iomap_dio_complete
       (Closes: #1057843)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 15
   * [rt] Update to 6.1.66-rt19

linux-signed-arm64 (6.1.66+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.66-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.65
     - afs: Fix afs_server_list to be cleaned up with RCU
     - afs: Make error on cell lookup failure consistent with OpenAFS
     - [arm64,armhf] drm/panel: simple: Fix Innolux G101ICE-L01 bus flags
     - [arm64,armhf] drm/panel: simple: Fix Innolux G101ICE-L01 timings
     - wireguard: use DEV_STATS_INC()
     - ata: pata_isapnp: Add missing error check for devm_ioport_map()
     - [x86] drm/i915: do not clean GT table on error path
     - [arm64,armhf] drm/rockchip: vop: Fix color for RGB888/BGR888 format on VOP
       full
     - HID: fix HID device resource race between HID core and debugging support
     - ipv4: Correct/silence an endian warning in __ip_do_redirect
     - net: usb: ax88179_178a: fix failed operations during ax88179_reset
     - net/smc: avoid data corruption caused by decline
     - [armhf] arm/xen: fix xen_vcpu_info allocation alignment
     - [amd64,arm64] amd-xgbe: handle corner-case during sfp hotplug
     - [amd64,arm64] amd-xgbe: handle the corner-case during tx completion
     - [amd64,arm64] amd-xgbe: propagate the correct speed and duplex status
     - afs: Return ENOENT if no cell DNS record can be found
     - afs: Fix file locking on R/O volumes to operate in local mode
     - mm,kfence: decouple kfence from page granularity mapping judgement
     - i40e: use ERR_PTR error print in i40e messages
     - i40e: Fix adding unsupported cloud filters
     - [arm64] USB: dwc3: qcom: fix resource leaks on probe deferral
     - [arm64] USB: dwc3: qcom: fix ACPI platform device leak
     - lockdep: Fix block chain corruption
     - cifs: minor cleanup of some headers
     - smb3: allow dumping session and tcon id to improve stats analysis and
       debugging
     - cifs: print last update time for interface list
     - cifs: distribute channels across interfaces based on speed
     - cifs: account for primary channel in the interface list
     - cifs: fix leak of iface for primary channel
     - ext4: add a new helper to check if es must be kept
     - ext4: factor out __es_alloc_extent() and __es_free_extent()
     - ext4: use pre-allocated es in __es_insert_extent()
     - ext4: use pre-allocated es in __es_remove_extent()
     - ext4: using nofail preallocation in ext4_es_remove_extent()
     - ext4: using nofail preallocation in ext4_es_insert_delayed_block()
     - ext4: using nofail preallocation in ext4_es_insert_extent()
     - ext4: fix slab-use-after-free in ext4_es_insert_extent()
     - ext4: make sure allocate pending entry not fail
     - NFSD: Fix "start of NFS reply" pointer passed to nfsd_cache_update()
     - NFSD: Fix checksum mismatches in the duplicate reply cache
     - ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CVA
     - swiotlb-xen: provide the "max_mapping_size" method
     - bcache: replace a mistaken IS_ERR() by IS_ERR_OR_NULL() in
       btree_gc_coalesce()
     - md: fix bi_status reporting in md_end_clone_io
     - bcache: fixup multi-threaded bch_sectors_dirty_init() wake-up race
     - io_uring/fs: consider link->flags when getting path for LINKAT
     - [s390x] dasd: protect device queue against concurrent access
     - USB: serial: option: add Luat Air72*U series products
     - hv_netvsc: fix race of netvsc and VF register_netdevice
     - hv_netvsc: Fix race of register_netdevice_notifier and VF register
     - hv_netvsc: Mark VF as slave before exposing it to user-mode
     - dm-delay: fix a race between delay_presuspend and delay_bio
     - bcache: check return value from btree_node_alloc_replacement()
     - bcache: prevent potential division by zero error
     - bcache: fixup init dirty data errors
     - bcache: fixup lock c->root error
     - USB: serial: option: add Fibocom L7xx modules
     - USB: serial: option: fix FM101R-GL defines
     - USB: serial: option: don't claim interface 4 for ZTE MF290
     - usb: typec: tcpm: Skip hard reset when in error recovery
     - [arm64,armhf] USB: dwc2: write HCINT with INTMASK applied
     - [arm64,armhf] usb: dwc3: Fix default mode initialization
     - [arm64,armhf] usb: dwc3: set the dma max_seg_size
     - [arm64] USB: dwc3: qcom: fix software node leak on probe errors
     - [arm64] USB: dwc3: qcom: fix wakeup after probe deferral
     - io_uring: fix off-by one bvec index
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.66
     - cifs: Fix FALLOC_FL_ZERO_RANGE by setting i_size if EOF moved
     - cifs: Fix FALLOC_FL_INSERT_RANGE by setting i_size after EOF moved
     - smb: client: report correct st_size for SMB and NFS symlinks
     - pinctrl: avoid reload of p state in list iteration
     - firewire: core: fix possible memory leak in create_units()
     - mmc: sdhci-pci-gli: Disable LPM during initialization
     - mmc: cqhci: Increase recovery halt timeout
     - mmc: cqhci: Warn of halt or task clear failure
     - mmc: cqhci: Fix task clearing in CQE error recovery
     - mmc: block: Retry commands in CQE error recovery
     - mmc: block: Do not lose cache flush during CQE error recovery
     - mmc: block: Be sure to wait while busy in CQE error recovery
     - ALSA: hda: Disable power-save on KONTRON SinglePC
     - ALSA: hda/realtek: Headset Mic VREF to 100%
     - ALSA: hda/realtek: Add supported ALC257 for ChromeOS
     - dm-verity: align struct dm_verity_fec_io properly
     - scsi: Change SCSI device boolean fields to single bit flags
     - scsi: sd: Fix system start for ATA devices
     - drm/amd: Enable PCIe PME from D3
     - drm/amdgpu: Force order between a read and write to the same address
     - drm/amd/display: Include udelay when waiting for INBOX0 ACK
     - drm/amd/display: Remove min_dst_y_next_start check for Z8
     - drm/amd/display: Use DRAM speed from validation for dummy p-state
     - drm/amd/display: Update min Z8 residency time to 2100 for DCN314
     - drm/amd/display: fix ABM disablement
     - dm verity: initialize fec io before freeing it
     - dm verity: don't perform FEC for failed readahead IO
     - nvme: check for valid nvme_identify_ns() before using it
     - [x86] cpufreq/amd-pstate: Fix the return value of amd_pstate_fast_switch()
     - dma-buf: fix check in dma_resv_add_fence
     - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR
     - [amd64] iommu/vt-d: Add MTL to quirk list to skip TE disabling
     - [powerpc*] KVM: PPC: Book3S HV: Fix KVM_RUN clobbering FP/VEC user
       registers
     - [powerpc*] Don't clobber f0/vs0 during fp|altivec register save
       (Closes: #1032104)
     - btrfs: add dmesg output for first mount and last unmount of a filesystem
     - btrfs: ref-verify: fix memory leaks in btrfs_ref_tree_mod()
     - btrfs: fix off-by-one when checking chunk map includes logical address
     - btrfs: send: ensure send_fd is writable
     - btrfs: make error messages more clear when getting a chunk map
     - btrfs: fix 64bit compat send ioctl arguments not initializing version
       member
     - Input: xpad - add HyperX Clutch Gladiate Support
     - wifi: cfg80211: fix CQM for non-range use
     - [arm64,armhf] USB: xhci-plat: fix legacy PHY double init
     - USB: core: Change configuration warnings to notices
     - usb: config: fix iteration issue in 'usb_get_bos_descriptor()'
     - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet
     - [arm64] dpaa2-eth: increase the needed headroom to account for alignment
     - net: stmmac: xgmac: Disable FPE MMC interrupts
     - r8169: prevent potential deadlock in rtl8169_close
     - [x86] KVM: x86: Fix lapic timer interrupt lost after loading a snapshot.
     - PCI: Lengthen reset delay for VideoPropulsion Torrent QN16e card
     - spi: Fix null dereference on suspend
     - drm/amd/display: Restore rptr/wptr for DMCUB as workaround
     - drm/amd/display: Guard against invalid RPTR/WPTR being set
     - [armhf] cpufreq: imx6q: don't warn for disabling a non-existing frequency
     - [armhf] cpufreq: imx6q: Don't disable 792 Mhz OPP unnecessarily
     - [amd64] iommu/vt-d: Omit devTLB invalidation requests when TES=0
     - [amd64] iommu/vt-d: Allocate pasid table in device probe path
     - [amd64] iommu/vt-d: Add device_block_translation() helper
     - [amd64] iommu/vt-d: Disable PCI ATS in legacy passthrough mode
     - [amd64] iommu/vt-d: Make context clearing consistent with context mapping
     - drm/amd/pm: fix a memleak in aldebaran_tables_init
     - mmc: core: add helpers mmc_regulator_enable/disable_vqmmc
     - mmc: sdhci-sprd: Fix vqmmc not shutting down after the card was pulled
     - drm/amd/display: Expand kernel doc for DC
     - drm/amd/display: clean code-style issues in dcn30_set_mpc_shaper_3dlut
     - drm/amd/display: Fix the delta clamping for shaper LUT
     - drm/amd/display: Fix MPCC 1DLUT programming
     - r8169: disable ASPM in case of tx timeout
     - r8169: fix deadlock on RTL8125 in jumbo mtu mode (Closes: #1057790)
     - xen: Allow platform PCI interrupt to be shared
     - xen: simplify evtchn_do_upcall() call maze
     - [x86] xen: fix percpu vcpu_info allocation
     - [x86] apic/msi: Fix misconfigured non-maskable MSI quirk
     - iomap: update ki_pos a little later in iomap_dio_complete
       (Closes: #1057843)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 15
   * [rt] Update to 6.1.66-rt19

linux-signed-i386 (6.1.66+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.66-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.65
     - afs: Fix afs_server_list to be cleaned up with RCU
     - afs: Make error on cell lookup failure consistent with OpenAFS
     - [arm64,armhf] drm/panel: simple: Fix Innolux G101ICE-L01 bus flags
     - [arm64,armhf] drm/panel: simple: Fix Innolux G101ICE-L01 timings
     - wireguard: use DEV_STATS_INC()
     - ata: pata_isapnp: Add missing error check for devm_ioport_map()
     - [x86] drm/i915: do not clean GT table on error path
     - [arm64,armhf] drm/rockchip: vop: Fix color for RGB888/BGR888 format on VOP
       full
     - HID: fix HID device resource race between HID core and debugging support
     - ipv4: Correct/silence an endian warning in __ip_do_redirect
     - net: usb: ax88179_178a: fix failed operations during ax88179_reset
     - net/smc: avoid data corruption caused by decline
     - [armhf] arm/xen: fix xen_vcpu_info allocation alignment
     - [amd64,arm64] amd-xgbe: handle corner-case during sfp hotplug
     - [amd64,arm64] amd-xgbe: handle the corner-case during tx completion
     - [amd64,arm64] amd-xgbe: propagate the correct speed and duplex status
     - afs: Return ENOENT if no cell DNS record can be found
     - afs: Fix file locking on R/O volumes to operate in local mode
     - mm,kfence: decouple kfence from page granularity mapping judgement
     - i40e: use ERR_PTR error print in i40e messages
     - i40e: Fix adding unsupported cloud filters
     - [arm64] USB: dwc3: qcom: fix resource leaks on probe deferral
     - [arm64] USB: dwc3: qcom: fix ACPI platform device leak
     - lockdep: Fix block chain corruption
     - cifs: minor cleanup of some headers
     - smb3: allow dumping session and tcon id to improve stats analysis and
       debugging
     - cifs: print last update time for interface list
     - cifs: distribute channels across interfaces based on speed
     - cifs: account for primary channel in the interface list
     - cifs: fix leak of iface for primary channel
     - ext4: add a new helper to check if es must be kept
     - ext4: factor out __es_alloc_extent() and __es_free_extent()
     - ext4: use pre-allocated es in __es_insert_extent()
     - ext4: use pre-allocated es in __es_remove_extent()
     - ext4: using nofail preallocation in ext4_es_remove_extent()
     - ext4: using nofail preallocation in ext4_es_insert_delayed_block()
     - ext4: using nofail preallocation in ext4_es_insert_extent()
     - ext4: fix slab-use-after-free in ext4_es_insert_extent()
     - ext4: make sure allocate pending entry not fail
     - NFSD: Fix "start of NFS reply" pointer passed to nfsd_cache_update()
     - NFSD: Fix checksum mismatches in the duplicate reply cache
     - ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CVA
     - swiotlb-xen: provide the "max_mapping_size" method
     - bcache: replace a mistaken IS_ERR() by IS_ERR_OR_NULL() in
       btree_gc_coalesce()
     - md: fix bi_status reporting in md_end_clone_io
     - bcache: fixup multi-threaded bch_sectors_dirty_init() wake-up race
     - io_uring/fs: consider link->flags when getting path for LINKAT
     - [s390x] dasd: protect device queue against concurrent access
     - USB: serial: option: add Luat Air72*U series products
     - hv_netvsc: fix race of netvsc and VF register_netdevice
     - hv_netvsc: Fix race of register_netdevice_notifier and VF register
     - hv_netvsc: Mark VF as slave before exposing it to user-mode
     - dm-delay: fix a race between delay_presuspend and delay_bio
     - bcache: check return value from btree_node_alloc_replacement()
     - bcache: prevent potential division by zero error
     - bcache: fixup init dirty data errors
     - bcache: fixup lock c->root error
     - USB: serial: option: add Fibocom L7xx modules
     - USB: serial: option: fix FM101R-GL defines
     - USB: serial: option: don't claim interface 4 for ZTE MF290
     - usb: typec: tcpm: Skip hard reset when in error recovery
     - [arm64,armhf] USB: dwc2: write HCINT with INTMASK applied
     - [arm64,armhf] usb: dwc3: Fix default mode initialization
     - [arm64,armhf] usb: dwc3: set the dma max_seg_size
     - [arm64] USB: dwc3: qcom: fix software node leak on probe errors
     - [arm64] USB: dwc3: qcom: fix wakeup after probe deferral
     - io_uring: fix off-by one bvec index
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.66
     - cifs: Fix FALLOC_FL_ZERO_RANGE by setting i_size if EOF moved
     - cifs: Fix FALLOC_FL_INSERT_RANGE by setting i_size after EOF moved
     - smb: client: report correct st_size for SMB and NFS symlinks
     - pinctrl: avoid reload of p state in list iteration
     - firewire: core: fix possible memory leak in create_units()
     - mmc: sdhci-pci-gli: Disable LPM during initialization
     - mmc: cqhci: Increase recovery halt timeout
     - mmc: cqhci: Warn of halt or task clear failure
     - mmc: cqhci: Fix task clearing in CQE error recovery
     - mmc: block: Retry commands in CQE error recovery
     - mmc: block: Do not lose cache flush during CQE error recovery
     - mmc: block: Be sure to wait while busy in CQE error recovery
     - ALSA: hda: Disable power-save on KONTRON SinglePC
     - ALSA: hda/realtek: Headset Mic VREF to 100%
     - ALSA: hda/realtek: Add supported ALC257 for ChromeOS
     - dm-verity: align struct dm_verity_fec_io properly
     - scsi: Change SCSI device boolean fields to single bit flags
     - scsi: sd: Fix system start for ATA devices
     - drm/amd: Enable PCIe PME from D3
     - drm/amdgpu: Force order between a read and write to the same address
     - drm/amd/display: Include udelay when waiting for INBOX0 ACK
     - drm/amd/display: Remove min_dst_y_next_start check for Z8
     - drm/amd/display: Use DRAM speed from validation for dummy p-state
     - drm/amd/display: Update min Z8 residency time to 2100 for DCN314
     - drm/amd/display: fix ABM disablement
     - dm verity: initialize fec io before freeing it
     - dm verity: don't perform FEC for failed readahead IO
     - nvme: check for valid nvme_identify_ns() before using it
     - [x86] cpufreq/amd-pstate: Fix the return value of amd_pstate_fast_switch()
     - dma-buf: fix check in dma_resv_add_fence
     - bcache: revert replacing IS_ERR_OR_NULL with IS_ERR
     - [amd64] iommu/vt-d: Add MTL to quirk list to skip TE disabling
     - [powerpc*] KVM: PPC: Book3S HV: Fix KVM_RUN clobbering FP/VEC user
       registers
     - [powerpc*] Don't clobber f0/vs0 during fp|altivec register save
       (Closes: #1032104)
     - btrfs: add dmesg output for first mount and last unmount of a filesystem
     - btrfs: ref-verify: fix memory leaks in btrfs_ref_tree_mod()
     - btrfs: fix off-by-one when checking chunk map includes logical address
     - btrfs: send: ensure send_fd is writable
     - btrfs: make error messages more clear when getting a chunk map
     - btrfs: fix 64bit compat send ioctl arguments not initializing version
       member
     - Input: xpad - add HyperX Clutch Gladiate Support
     - wifi: cfg80211: fix CQM for non-range use
     - [arm64,armhf] USB: xhci-plat: fix legacy PHY double init
     - USB: core: Change configuration warnings to notices
     - usb: config: fix iteration issue in 'usb_get_bos_descriptor()'
     - ipv4: igmp: fix refcnt uaf issue when receiving igmp query packet
     - [arm64] dpaa2-eth: increase the needed headroom to account for alignment
     - net: stmmac: xgmac: Disable FPE MMC interrupts
     - r8169: prevent potential deadlock in rtl8169_close
     - [x86] KVM: x86: Fix lapic timer interrupt lost after loading a snapshot.
     - PCI: Lengthen reset delay for VideoPropulsion Torrent QN16e card
     - spi: Fix null dereference on suspend
     - drm/amd/display: Restore rptr/wptr for DMCUB as workaround
     - drm/amd/display: Guard against invalid RPTR/WPTR being set
     - [armhf] cpufreq: imx6q: don't warn for disabling a non-existing frequency
     - [armhf] cpufreq: imx6q: Don't disable 792 Mhz OPP unnecessarily
     - [amd64] iommu/vt-d: Omit devTLB invalidation requests when TES=0
     - [amd64] iommu/vt-d: Allocate pasid table in device probe path
     - [amd64] iommu/vt-d: Add device_block_translation() helper
     - [amd64] iommu/vt-d: Disable PCI ATS in legacy passthrough mode
     - [amd64] iommu/vt-d: Make context clearing consistent with context mapping
     - drm/amd/pm: fix a memleak in aldebaran_tables_init
     - mmc: core: add helpers mmc_regulator_enable/disable_vqmmc
     - mmc: sdhci-sprd: Fix vqmmc not shutting down after the card was pulled
     - drm/amd/display: Expand kernel doc for DC
     - drm/amd/display: clean code-style issues in dcn30_set_mpc_shaper_3dlut
     - drm/amd/display: Fix the delta clamping for shaper LUT
     - drm/amd/display: Fix MPCC 1DLUT programming
     - r8169: disable ASPM in case of tx timeout
     - r8169: fix deadlock on RTL8125 in jumbo mtu mode (Closes: #1057790)
     - xen: Allow platform PCI interrupt to be shared
     - xen: simplify evtchn_do_upcall() call maze
     - [x86] xen: fix percpu vcpu_info allocation
     - [x86] apic/msi: Fix misconfigured non-maskable MSI quirk
     - iomap: update ki_pos a little later in iomap_dio_complete
       (Closes: #1057843)
 .
   [ Salvatore Bonaccorso ]
   * Bump ABI to 15
   * [rt] Update to 6.1.66-rt19
=======================================
Sat, 09 Dec 2023 - Debian 12.3 released
=======================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:36:01 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
cdrom-core-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
crc-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
crypto-dm-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
crypto-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
dasd-extra-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
dasd-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
ext4-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
f2fs-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
fat-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
fuse-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
isofs-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
kernel-image-6.1.0-10-s390x-di |   6.1.38-2 | s390x
linux-headers-6.1.0-10-s390x |   6.1.38-2 | s390x
linux-image-6.1.0-10-s390x |   6.1.38-2 | s390x
linux-image-6.1.0-10-s390x-dbg |   6.1.38-2 | s390x
loop-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
md-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
mtd-core-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
multipath-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
nbd-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
nic-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
scsi-core-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
scsi-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
udf-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x
xfs-modules-6.1.0-10-s390x-di |   6.1.38-2 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:36:20 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
affs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
ata-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
ata-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
btrfs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
btrfs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
cdrom-core-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
cdrom-core-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
crc-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
crc-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
crypto-dm-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
crypto-dm-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
crypto-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
crypto-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
event-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
event-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
ext4-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
ext4-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
f2fs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
f2fs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
fat-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
fat-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
fb-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
fb-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
firewire-core-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
firewire-core-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
fuse-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
fuse-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
input-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
input-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
isofs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
isofs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
jfs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
jfs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
kernel-image-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
kernel-image-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
linux-headers-6.1.0-10-loongson-3 |   6.1.38-2 | mips64el, mipsel
linux-headers-6.1.0-10-octeon |   6.1.38-2 | mips64el, mipsel
linux-image-6.1.0-10-loongson-3 |   6.1.38-2 | mips64el, mipsel
linux-image-6.1.0-10-loongson-3-dbg |   6.1.38-2 | mips64el, mipsel
linux-image-6.1.0-10-octeon |   6.1.38-2 | mips64el, mipsel
linux-image-6.1.0-10-octeon-dbg |   6.1.38-2 | mips64el, mipsel
loop-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
loop-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
md-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
md-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
minix-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
minix-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
mmc-core-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
mmc-core-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
mmc-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
mmc-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
mouse-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
mouse-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
multipath-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
multipath-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nbd-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nbd-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nfs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nfs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nic-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nic-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nic-shared-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nic-shared-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nic-usb-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nic-usb-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
nic-wireless-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
nic-wireless-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
pata-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
pata-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
ppp-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
ppp-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
sata-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
sata-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
scsi-core-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
scsi-core-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
scsi-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
scsi-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
scsi-nic-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
scsi-nic-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
sound-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
sound-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
speakup-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
speakup-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
squashfs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
squashfs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
udf-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
udf-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
usb-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
usb-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
usb-serial-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
usb-serial-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
usb-storage-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
usb-storage-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel
xfs-modules-6.1.0-10-loongson-3-di |   6.1.38-2 | mips64el, mipsel
xfs-modules-6.1.0-10-octeon-di |   6.1.38-2 | mips64el, mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:36:31 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
affs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
ata-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
ata-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
btrfs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
btrfs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
cdrom-core-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
cdrom-core-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
crc-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
crc-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
crypto-dm-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
crypto-dm-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
crypto-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
crypto-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
event-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
event-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
ext4-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
ext4-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
f2fs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
f2fs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
fat-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
fat-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
fb-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
fb-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
firewire-core-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
firewire-core-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
fuse-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
fuse-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
input-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
input-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
isofs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
isofs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
jfs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
jfs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
kernel-image-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
kernel-image-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
linux-headers-6.1.0-10-4kc-malta |   6.1.38-2 | mipsel
linux-headers-6.1.0-10-mips32r2el |   6.1.38-2 | mipsel
linux-image-6.1.0-10-4kc-malta |   6.1.38-2 | mipsel
linux-image-6.1.0-10-4kc-malta-dbg |   6.1.38-2 | mipsel
linux-image-6.1.0-10-mips32r2el |   6.1.38-2 | mipsel
linux-image-6.1.0-10-mips32r2el-dbg |   6.1.38-2 | mipsel
loop-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
loop-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
md-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
md-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
minix-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
minix-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
mmc-core-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
mmc-core-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
mmc-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
mmc-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
mouse-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
mouse-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
multipath-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
multipath-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nbd-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nbd-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nfs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nfs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nic-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nic-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nic-shared-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nic-shared-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nic-usb-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nic-usb-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
nic-wireless-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
nic-wireless-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
pata-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
pata-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
ppp-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
ppp-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
sata-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
sata-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
scsi-core-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
scsi-core-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
scsi-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
scsi-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
scsi-nic-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
scsi-nic-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
sound-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
sound-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
speakup-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
speakup-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
squashfs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
squashfs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
udf-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
udf-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
usb-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
usb-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
usb-serial-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
usb-serial-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
usb-storage-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
usb-storage-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel
xfs-modules-6.1.0-10-4kc-malta-di |   6.1.38-2 | mipsel
xfs-modules-6.1.0-10-mips32r2el-di |   6.1.38-2 | mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:36:44 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
btrfs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
cdrom-core-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
crc-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
crypto-dm-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
crypto-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
event-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
ext4-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
f2fs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
fancontrol-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
fat-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
fb-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
firewire-core-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
fuse-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
hypervisor-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
i2c-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
input-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
isofs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
jfs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
kernel-image-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
linux-headers-6.1.0-10-powerpc64le |   6.1.38-2 | ppc64el
linux-image-6.1.0-10-powerpc64le |   6.1.38-2 | ppc64el
linux-image-6.1.0-10-powerpc64le-dbg |   6.1.38-2 | ppc64el
loop-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
md-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
mouse-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
mtd-core-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
multipath-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
nbd-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
nic-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
nic-shared-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
nic-usb-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
nic-wireless-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
ppp-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
sata-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
scsi-core-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
scsi-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
scsi-nic-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
serial-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
squashfs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
udf-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
uinput-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
usb-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
usb-serial-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
usb-storage-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el
xfs-modules-6.1.0-10-powerpc64le-di |   6.1.38-2 | ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:36:54 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-10-amd64 |   6.1.38-2 | amd64
linux-headers-6.1.0-10-cloud-amd64 |   6.1.38-2 | amd64
linux-headers-6.1.0-10-rt-amd64 |   6.1.38-2 | amd64
linux-image-6.1.0-10-amd64-dbg |   6.1.38-2 | amd64
linux-image-6.1.0-10-amd64-unsigned |   6.1.38-2 | amd64
linux-image-6.1.0-10-cloud-amd64-dbg |   6.1.38-2 | amd64
linux-image-6.1.0-10-cloud-amd64-unsigned |   6.1.38-2 | amd64
linux-image-6.1.0-10-rt-amd64-dbg |   6.1.38-2 | amd64
linux-image-6.1.0-10-rt-amd64-unsigned |   6.1.38-2 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:37:24 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-10-arm64 |   6.1.38-2 | arm64
linux-headers-6.1.0-10-cloud-arm64 |   6.1.38-2 | arm64
linux-headers-6.1.0-10-rt-arm64 |   6.1.38-2 | arm64
linux-image-6.1.0-10-arm64-dbg |   6.1.38-2 | arm64
linux-image-6.1.0-10-arm64-unsigned |   6.1.38-2 | arm64
linux-image-6.1.0-10-cloud-arm64-dbg |   6.1.38-2 | arm64
linux-image-6.1.0-10-cloud-arm64-unsigned |   6.1.38-2 | arm64
linux-image-6.1.0-10-rt-arm64-dbg |   6.1.38-2 | arm64
linux-image-6.1.0-10-rt-arm64-unsigned |   6.1.38-2 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:37:35 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

btrfs-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
cdrom-core-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
crc-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
crypto-dm-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
crypto-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
event-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
ext4-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
f2fs-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
fat-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
fb-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
fuse-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
input-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
ipv6-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
isofs-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
jffs2-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
jfs-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
kernel-image-6.1.0-10-marvell-di |   6.1.38-2 | armel
leds-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
linux-headers-6.1.0-10-marvell |   6.1.38-2 | armel
linux-headers-6.1.0-10-rpi |   6.1.38-2 | armel
linux-image-6.1.0-10-marvell |   6.1.38-2 | armel
linux-image-6.1.0-10-marvell-dbg |   6.1.38-2 | armel
linux-image-6.1.0-10-rpi |   6.1.38-2 | armel
linux-image-6.1.0-10-rpi-dbg |   6.1.38-2 | armel
loop-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
md-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
minix-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
mmc-core-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
mmc-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
mouse-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
mtd-core-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
mtd-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
multipath-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
nbd-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
nic-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
nic-shared-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
nic-usb-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
ppp-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
sata-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
scsi-core-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
squashfs-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
udf-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
uinput-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
usb-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
usb-serial-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel
usb-storage-modules-6.1.0-10-marvell-di |   6.1.38-2 | armel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:37:55 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
btrfs-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
cdrom-core-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
crc-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
crypto-dm-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
crypto-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
efi-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
event-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
ext4-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
f2fs-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
fat-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
fb-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
fuse-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
i2c-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
input-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
isofs-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
jfs-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
kernel-image-6.1.0-10-armmp-di |   6.1.38-2 | armhf
leds-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
linux-headers-6.1.0-10-armmp |   6.1.38-2 | armhf
linux-headers-6.1.0-10-armmp-lpae |   6.1.38-2 | armhf
linux-headers-6.1.0-10-rt-armmp |   6.1.38-2 | armhf
linux-image-6.1.0-10-armmp |   6.1.38-2 | armhf
linux-image-6.1.0-10-armmp-dbg |   6.1.38-2 | armhf
linux-image-6.1.0-10-armmp-lpae |   6.1.38-2 | armhf
linux-image-6.1.0-10-armmp-lpae-dbg |   6.1.38-2 | armhf
linux-image-6.1.0-10-rt-armmp |   6.1.38-2 | armhf
linux-image-6.1.0-10-rt-armmp-dbg |   6.1.38-2 | armhf
loop-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
md-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
mmc-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
mtd-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
multipath-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
nbd-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
nic-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
nic-shared-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
nic-usb-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
nic-wireless-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
pata-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
ppp-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
sata-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
scsi-core-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
scsi-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
scsi-nic-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
sound-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
speakup-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
squashfs-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
udf-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
uinput-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
usb-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
usb-serial-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf
usb-storage-modules-6.1.0-10-armmp-di |   6.1.38-2 | armhf

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:38:05 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-10-686 |   6.1.38-2 | i386
linux-headers-6.1.0-10-686-pae |   6.1.38-2 | i386
linux-headers-6.1.0-10-rt-686-pae |   6.1.38-2 | i386
linux-image-6.1.0-10-686-dbg |   6.1.38-2 | i386
linux-image-6.1.0-10-686-pae-dbg |   6.1.38-2 | i386
linux-image-6.1.0-10-686-pae-unsigned |   6.1.38-2 | i386
linux-image-6.1.0-10-686-unsigned |   6.1.38-2 | i386
linux-image-6.1.0-10-rt-686-pae-dbg |   6.1.38-2 | i386
linux-image-6.1.0-10-rt-686-pae-unsigned |   6.1.38-2 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:38:22 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

affs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
affs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
ata-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
ata-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
btrfs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
btrfs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
cdrom-core-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
cdrom-core-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
crc-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
crc-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
crypto-dm-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
crypto-dm-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
crypto-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
crypto-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
event-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
event-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
ext4-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
ext4-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
f2fs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
f2fs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
fat-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
fat-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
fb-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
fb-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
firewire-core-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
firewire-core-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
fuse-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
fuse-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
input-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
input-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
isofs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
isofs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
jfs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
jfs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
kernel-image-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
kernel-image-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
linux-headers-6.1.0-10-5kc-malta |   6.1.38-2 | mips64el
linux-headers-6.1.0-10-mips64r2el |   6.1.38-2 | mips64el
linux-image-6.1.0-10-5kc-malta |   6.1.38-2 | mips64el
linux-image-6.1.0-10-5kc-malta-dbg |   6.1.38-2 | mips64el
linux-image-6.1.0-10-mips64r2el |   6.1.38-2 | mips64el
linux-image-6.1.0-10-mips64r2el-dbg |   6.1.38-2 | mips64el
loop-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
loop-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
md-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
md-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
minix-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
minix-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
mmc-core-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
mmc-core-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
mmc-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
mmc-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
mouse-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
mouse-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
multipath-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
multipath-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nbd-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nbd-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nfs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nfs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nic-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nic-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nic-shared-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nic-shared-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nic-usb-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nic-usb-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
nic-wireless-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
nic-wireless-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
pata-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
pata-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
ppp-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
ppp-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
sata-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
sata-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
scsi-core-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
scsi-core-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
scsi-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
scsi-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
scsi-nic-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
scsi-nic-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
sound-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
sound-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
speakup-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
speakup-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
squashfs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
squashfs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
udf-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
udf-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
usb-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
usb-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
usb-serial-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
usb-serial-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
usb-storage-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
usb-storage-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el
xfs-modules-6.1.0-10-5kc-malta-di |   6.1.38-2 | mips64el
xfs-modules-6.1.0-10-mips64r2el-di |   6.1.38-2 | mips64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:38:52 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
ata-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
btrfs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
cdrom-core-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
crc-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
crypto-dm-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
crypto-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
efi-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
event-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
ext4-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
f2fs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
fat-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
fb-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
firewire-core-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
fuse-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
i2c-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
input-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
isofs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
jfs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
kernel-image-6.1.0-10-amd64-di |   6.1.38-2 | amd64
linux-image-6.1.0-10-amd64 |   6.1.38-2 | amd64
linux-image-6.1.0-10-cloud-amd64 |   6.1.38-2 | amd64
linux-image-6.1.0-10-rt-amd64 |   6.1.38-2 | amd64
loop-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
md-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
mmc-core-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
mmc-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
mouse-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
mtd-core-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
multipath-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nbd-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nic-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nic-pcmcia-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nic-shared-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nic-usb-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
nic-wireless-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
pata-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
pcmcia-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
pcmcia-storage-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
ppp-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
rfkill-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
sata-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
scsi-core-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
scsi-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
scsi-nic-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
serial-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
sound-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
speakup-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
squashfs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
udf-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
uinput-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
usb-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
usb-serial-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
usb-storage-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64
xfs-modules-6.1.0-10-amd64-di |   6.1.38-2 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-amd64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:39:02 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

ata-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
btrfs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
cdrom-core-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
crc-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
crypto-dm-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
crypto-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
efi-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
event-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
ext4-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
f2fs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
fat-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
fb-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
fuse-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
i2c-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
input-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
isofs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
jfs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
kernel-image-6.1.0-10-arm64-di |   6.1.38-2 | arm64
leds-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
linux-image-6.1.0-10-arm64 |   6.1.38-2 | arm64
linux-image-6.1.0-10-cloud-arm64 |   6.1.38-2 | arm64
linux-image-6.1.0-10-rt-arm64 |   6.1.38-2 | arm64
loop-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
md-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
mmc-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
mtd-core-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
multipath-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
nbd-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
nic-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
nic-shared-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
nic-usb-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
nic-wireless-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
ppp-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
sata-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
scsi-core-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
scsi-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
scsi-nic-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
sound-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
speakup-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
squashfs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
udf-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
uinput-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
usb-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
usb-serial-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
usb-storage-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64
xfs-modules-6.1.0-10-arm64-di |   6.1.38-2 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-arm64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:39:12 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

acpi-modules-6.1.0-10-686-di |   6.1.38-2 | i386
acpi-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
ata-modules-6.1.0-10-686-di |   6.1.38-2 | i386
ata-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
btrfs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
btrfs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
cdrom-core-modules-6.1.0-10-686-di |   6.1.38-2 | i386
cdrom-core-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
crc-modules-6.1.0-10-686-di |   6.1.38-2 | i386
crc-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
crypto-dm-modules-6.1.0-10-686-di |   6.1.38-2 | i386
crypto-dm-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
crypto-modules-6.1.0-10-686-di |   6.1.38-2 | i386
crypto-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
efi-modules-6.1.0-10-686-di |   6.1.38-2 | i386
efi-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
event-modules-6.1.0-10-686-di |   6.1.38-2 | i386
event-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
ext4-modules-6.1.0-10-686-di |   6.1.38-2 | i386
ext4-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
f2fs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
f2fs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
fat-modules-6.1.0-10-686-di |   6.1.38-2 | i386
fat-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
fb-modules-6.1.0-10-686-di |   6.1.38-2 | i386
fb-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
firewire-core-modules-6.1.0-10-686-di |   6.1.38-2 | i386
firewire-core-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
fuse-modules-6.1.0-10-686-di |   6.1.38-2 | i386
fuse-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
i2c-modules-6.1.0-10-686-di |   6.1.38-2 | i386
i2c-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
input-modules-6.1.0-10-686-di |   6.1.38-2 | i386
input-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
isofs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
isofs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
jfs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
jfs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
kernel-image-6.1.0-10-686-di |   6.1.38-2 | i386
kernel-image-6.1.0-10-686-pae-di |   6.1.38-2 | i386
linux-image-6.1.0-10-686 |   6.1.38-2 | i386
linux-image-6.1.0-10-686-pae |   6.1.38-2 | i386
linux-image-6.1.0-10-rt-686-pae |   6.1.38-2 | i386
loop-modules-6.1.0-10-686-di |   6.1.38-2 | i386
loop-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
md-modules-6.1.0-10-686-di |   6.1.38-2 | i386
md-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
mmc-core-modules-6.1.0-10-686-di |   6.1.38-2 | i386
mmc-core-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
mmc-modules-6.1.0-10-686-di |   6.1.38-2 | i386
mmc-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
mouse-modules-6.1.0-10-686-di |   6.1.38-2 | i386
mouse-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
mtd-core-modules-6.1.0-10-686-di |   6.1.38-2 | i386
mtd-core-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
multipath-modules-6.1.0-10-686-di |   6.1.38-2 | i386
multipath-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nbd-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nbd-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nic-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nic-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nic-pcmcia-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nic-pcmcia-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nic-shared-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nic-shared-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nic-usb-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nic-usb-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
nic-wireless-modules-6.1.0-10-686-di |   6.1.38-2 | i386
nic-wireless-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
pata-modules-6.1.0-10-686-di |   6.1.38-2 | i386
pata-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
pcmcia-modules-6.1.0-10-686-di |   6.1.38-2 | i386
pcmcia-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
pcmcia-storage-modules-6.1.0-10-686-di |   6.1.38-2 | i386
pcmcia-storage-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
ppp-modules-6.1.0-10-686-di |   6.1.38-2 | i386
ppp-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
rfkill-modules-6.1.0-10-686-di |   6.1.38-2 | i386
rfkill-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
sata-modules-6.1.0-10-686-di |   6.1.38-2 | i386
sata-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
scsi-core-modules-6.1.0-10-686-di |   6.1.38-2 | i386
scsi-core-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
scsi-modules-6.1.0-10-686-di |   6.1.38-2 | i386
scsi-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
scsi-nic-modules-6.1.0-10-686-di |   6.1.38-2 | i386
scsi-nic-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
serial-modules-6.1.0-10-686-di |   6.1.38-2 | i386
serial-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
sound-modules-6.1.0-10-686-di |   6.1.38-2 | i386
sound-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
speakup-modules-6.1.0-10-686-di |   6.1.38-2 | i386
speakup-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
squashfs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
squashfs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
udf-modules-6.1.0-10-686-di |   6.1.38-2 | i386
udf-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
uinput-modules-6.1.0-10-686-di |   6.1.38-2 | i386
uinput-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
usb-modules-6.1.0-10-686-di |   6.1.38-2 | i386
usb-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
usb-serial-modules-6.1.0-10-686-di |   6.1.38-2 | i386
usb-serial-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
usb-storage-modules-6.1.0-10-686-di |   6.1.38-2 | i386
usb-storage-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386
xfs-modules-6.1.0-10-686-di |   6.1.38-2 | i386
xfs-modules-6.1.0-10-686-pae-di |   6.1.38-2 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-i386)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:39:37 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

linux-headers-6.1.0-10-common |   6.1.38-2 | all
linux-headers-6.1.0-10-common-rt |   6.1.38-2 | all
linux-support-6.1.0-10 |   6.1.38-2 | all

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:40:58 -0000] [ftpmaster: Mark Hymers]
Removed the following packages from stable:

wireshark-gtk | 4.0.6-1~deb12u1 | amd64, arm64, armel, armhf, i386, mips64el, mipsel, ppc64el, s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by wireshark - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 09 Dec 2023 08:26:55 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

  gimp-dds |    3.0.1-3 | source, amd64, arm64, armel, armhf, i386, mips64el,
mipsel, ppc64el, s390x
Closed bugs: 1056710

------------------- Reason -------------------
RoQA; no longer required; integrated into GIMP
----------------------------------------------
=========================================================================

adequate (0.15.9~deb12u1) bookworm; urgency=medium
 .
   * QA upload.
   * Rebuild for bookworm.
 .
 adequate (0.15.9) unstable; urgency=medium
 .
   * QA upload.
   * Skip symbol-size-mismatch test on architectures where array symbols don't
     include a specific length.  (Closes: #1050066)
 .
 adequate (0.15.8) unstable; urgency=medium
 .
   * QA upload.
   * Disable deprecation warnings about smartmatch, given, when in Perl
     5.38.
     This is only a band aid but it buys us time before the feature will be
     removed in perl 5.42 in roughly 2 years.
     Also fix version comparison for smartmatch being experimental warnings.
     (Closes: #1043228)
adequate (0.15.8) unstable; urgency=medium
 .
   * QA upload.
   * Disable deprecation warnings about smartmatch, given, when in Perl
     5.38.
     This is only a band aid but it buys us time before the feature will be
     removed in perl 5.42 in roughly 2 years.
     Also fix version comparison for smartmatch being experimental warnings.
     (Closes: #1043228)

amanda (1:3.5.1-11+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Apply upstream fix for CVE-2023-30577 (Closes: #1055253)

arctica-greeter (0.99.3.0-1+deb12u2) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0008_better-positioning-of-logo.patch. Move logo in bottom-left
       corner one grid-size count away from the border.

awstats (7.8-3+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * debian/awstats.postinst: part of the code was moved to the awstats.preinst
     file, to avoid creating the
     /etc/logrotate.d/httpd-prerotate/awstats.dpkg-new file, and thus requiring
     user interaction when updating. See #1037213.
   * debian/awstats.preinst: created.

axis (1.4-28+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Fix CVE-2023-40743:
     When integrating Apache Axis 1.x in an application, it may not have been
     obvious that looking up a service through "ServiceFactory.getService"
     allows potentially dangerous lookup mechanisms such as LDAP. When passing
     untrusted input to this API method, this could expose the application to
     DoS, SSRF and even attacks leading to RCE. (Closes: #1051288)
axis (1.4-28+deb11u1) bullseye; urgency=medium
 .
   * Team upload.
   * Fix CVE-2023-40743:
     When integrating Apache Axis 1.x in an application, it may not have been
     obvious that looking up a service through "ServiceFactory.getService"
     allows potentially dangerous lookup mechanisms such as LDAP. When passing
     untrusted input to this API method, this could expose the application to
     DoS, SSRF and even attacks leading to RCE. (Closes: #1051288)

base-files (12.4+deb12u3) bookworm; urgency=medium
 .
   * Change /etc/debian_version to 12.3, for Debian 12.3 point release.

ca-certificates-java (20230710~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.  (Closes: #1041419, #1037478, #929685)
 .
 ca-certificates-java (20230710) unstable; urgency=medium
 .
   * Add apt-utils to the test dependencies.
 .
 ca-certificates-java (20230707) unstable; urgency=medium
 .
   [ Vladimir Petko ]
   * Resolve circular JRE dependency:
     - debian/ca-certificates-java.postinst: remove setup_path from "configure"
       stage.
     - debian/ca-certificates-java.postinst: do "fresh" update if cacerts file is
       not found. Certificates are refreshed only in response to the trigger
       activated by OpenJDK packages.
     - debian/ca-certificates-java.postinst: fix cacert enumeration command for
       Java 8.
     - debian/control: remove JRE dependency.
     - debian/control: add Breaks condition.
     - debian/tests: add smoke tests.
     - debian/ca-certificates-java.triggers: remove file trigger /usr/jvm,
       explicitly declare triggers as -await.
 .
   [ Matthias Klose ]
   * Adjust the breaks for Debian versions.
ca-certificates-java (20230707) unstable; urgency=medium
 .
   [ Vladimir Petko ]
   * Resolve circular JRE dependency:
     - debian/ca-certificates-java.postinst: remove setup_path from "configure"
       stage.
     - debian/ca-certificates-java.postinst: do "fresh" update if cacerts file is
       not found. Certificates are refreshed only in response to the trigger
       activated by OpenJDK packages.
     - debian/ca-certificates-java.postinst: fix cacert enumeration command for
       Java 8.
     - debian/control: remove JRE dependency.
     - debian/control: add Breaks condition.
     - debian/tests: add smoke tests.
     - debian/ca-certificates-java.triggers: remove file trigger /usr/jvm,
       explicitly declare triggers as -await.
 .
   [ Matthias Klose ]
   * Adjust the breaks for Debian versions.
ca-certificates-java (20230620) unstable; urgency=medium
 .
   [ Matthias Klose ]
   * Bump standards version.
   * Build-depend on default-jdk-headless instead of default-jdk.
 .
   [ Vladimir Petko ]
   * d/ca-certificates-java.postinst: Work-around not yet configured jre.

cacti (1.2.24+ds1-1+deb12u1) bookworm-security; urgency=high
 .
   * Backport security patches from 1.2.25: CVE-2023-39357, CVE-2023-39358,
     CVE-2023-39359, CVE-2023-39360, CVE-2023-39361, CVE-2023-39362,
     CVE-2023-39364, CVE-2023-39365, CVE-2023-39366, CVE-2023-39510,
     CVE-2023-39511, CVE-2023-39512, CVE-2023-39513, CVE-2023-39514,
     CVE-2023-39515, CVE-2023-39516

calibre (6.13.0+repack-2+deb12u2) bookworm; urgency=medium
 .
   * fix crash in Get Books when regenerating UIC files (Closes: #1053899)

chromium (119.0.6045.199-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-6348: Type Confusion in Spellcheck.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-6347: Use after free in Mojo. Reported by
       Leecraso and Guang Gong of 360 Vulnerability Research Institute.
     - CVE-2023-6346: Use after free in WebAudio.
       Reported by Huang Xilin of Ant Group Light-Year Security Lab.
     - CVE-2023-6350: Out of bounds memory access in libavif.
       Reported by Fudan University.
     - CVE-2023-6351: Use after free in libavif. Reported by Fudan University.
     - CVE-2023-6345: Integer overflow in Skia. Reported by
       Benoît Sevens and Clément Lecigne of Google's Threat Analysis Group.
chromium (119.0.6045.199-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-6348: Type Confusion in Spellcheck.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-6347: Use after free in Mojo. Reported by
       Leecraso and Guang Gong of 360 Vulnerability Research Institute.
     - CVE-2023-6346: Use after free in WebAudio.
       Reported by Huang Xilin of Ant Group Light-Year Security Lab.
     - CVE-2023-6350: Out of bounds memory access in libavif.
       Reported by Fudan University.
     - CVE-2023-6351: Use after free in libavif. Reported by Fudan University.
     - CVE-2023-6345: Integer overflow in Skia. Reported by
       Benoît Sevens and Clément Lecigne of Google's Threat Analysis Group.
chromium (119.0.6045.159-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5997: Use after free in Garbage Collection.
       Reported by Anonymous.
     - CVE-2023-6112: Use after free in Navigation.
       Reported by Sergei Glazunov of Google Project Zero.
   * Don't show errors on startup if Crash Reports directory doesn't exist.
   * Check for $DISPLAY before trying to run xmessage in chromium's wrapper
     script. Fall back to just using echo (closes: #1055765).
chromium (119.0.6045.159-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5997: Use after free in Garbage Collection.
       Reported by Anonymous.
     - CVE-2023-6112: Use after free in Navigation.
       Reported by Sergei Glazunov of Google Project Zero.
   * Don't show errors on startup if Crash Reports directory doesn't exist.
   * Check for $DISPLAY before trying to run xmessage in chromium's wrapper
     script. Fall back to just using echo (closes: #1055765).
chromium (119.0.6045.159-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5997: Use after free in Garbage Collection.
       Reported by Anonymous.
     - CVE-2023-6112: Use after free in Navigation.
       Reported by Sergei Glazunov of Google Project Zero.
   * Don't show errors on startup if Crash Reports directory doesn't exist.
   * Check for $DISPLAY before trying to run xmessage in chromium's wrapper
     script. Fall back to just using echo (closes: #1055765).
chromium (119.0.6045.123-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5996: Use after free in WebAudio. Reported by
       Huang Xilin of Ant Group Light-Year Security Lab via Tianfu Cup 2023.
   * Replace libgl1-mesa-dev build dependency with libgl-dev.
   * Drop d/patches/system/convertutf.patch; license issue has been fixed.
   * d/copyright: stop deleting convert_UTF.* and document Unicode copyright
     (closes: #1033136).
   * d/patches/ppc64le/fixes/fix-breakpad-compile.patch: refresh due to convertutf
     change.
chromium (119.0.6045.123-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5996: Use after free in WebAudio. Reported by
       Huang Xilin of Ant Group Light-Year Security Lab via Tianfu Cup 2023.
   * Replace libgl1-mesa-dev build dependency with libgl-dev.
   * Drop d/patches/system/convertutf.patch; license issue has been fixed.
   * d/copyright: stop deleting convert_UTF.* and document Unicode copyright
     (closes: #1033136).
   * d/patches/ppc64le/fixes/fix-breakpad-compile.patch: refresh due to convertutf
     change.
chromium (119.0.6045.123-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5996: Use after free in WebAudio. Reported by
       Huang Xilin of Ant Group Light-Year Security Lab via Tianfu Cup 2023.
   * Replace libgl1-mesa-dev build dependency with libgl-dev.
   * Drop d/patches/system/convertutf.patch; license issue has been fixed.
   * d/copyright: stop deleting convert_UTF.* and document Unicode copyright
     (closes: #1033136).
   * d/patches/ppc64le/fixes/fix-breakpad-compile.patch: refresh due to convertutf
     change.
chromium (119.0.6045.105-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-5480: Inappropriate implementation in Payments.
       Reported by Vsevolod Kokorin (Slonser) of Solidlab.
     - CVE-2023-5482: Insufficient data validation in USB. Reported by DarkNavy.
     - CVE-2023-5849: Integer overflow in USB. Reported by DarkNavy.
     - CVE-2023-5850: Incorrect security UI in Downloads.
       Reported by Mohit Raj (shadow2639) .
     - CVE-2023-5851: Inappropriate implementation in Downloads.
       Reported by Shaheen Fazim.
     - CVE-2023-5852: Use after free in Printing. Reported by [pwn2car].
     - CVE-2023-5853: Incorrect security UI in Downloads. Reported by Hafiizh.
     - CVE-2023-5854: Use after free in Profiles.
       Reported by Dohyun Lee (@l33d0hyun) of SSD-Disclosure Labs & DNSLab, Korea Univ.
     - CVE-2023-5855: Use after free in Reading Mode. Reported by ChaobinZhang.
     - CVE-2023-5856: Use after free in Side Panel.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2023-5857: Inappropriate implementation in Downloads.
       Reported by Will Dormann.
     - CVE-2023-5858: Inappropriate implementation in WebApp Provider.
       Reported by Axel Chong.
     - CVE-2023-5859: Incorrect security UI in Picture In Picture.
       Reported by Junsung Lee
   * d/patches:
     - patches/bullseye/constexpr.patch: Add MiracleParameter workaround
   * d/patches/ppc64le:
     - Mass refresh all patches against 119 codebase.  No functional change.
 .
   [ Andres Salomon ]
   * d/patches:
     - fixes/gcc13-headers.patch: drop parts that have been merged upstream.
     - fixes/perfetto.patch: drop part that was merged upstream.
     - upstream/sensor-reading.patch: drop, merged upstream.
     - upstream/lweight.patch: drop, merged upstream.
     - upstream/freetype.patch: drop, merged upstream.
     - upstream/sizet.patch: drop, merged upstream.
     - disable/catapult.patch: drop an unused hunk.
     - disable/widevine-cdm-cu.patch: refresh.
     - disable/privacy-sandbox.patch: rename, sync up with ungoogled-chromium,
       and use the full ungoogled patch. The privacy sandbox config interface
       is now gone, with no way to enable it.
     - ungoogled/core/ungoogled-chromium/disable-web-environment-integrity.patch:
       sync up with with ungoogled-chromium, and rename.
     - fixes/blink-frags.patch: additional build fix for libstdc++13.
     - fixes/gcc13-with-clang14.patch: drop, now that we've switched to clang-16.
     - fixes/atspi.patch: fix build failure with atspi >= 2.50.
chromium (119.0.6045.105-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-5480: Inappropriate implementation in Payments.
       Reported by Vsevolod Kokorin (Slonser) of Solidlab.
     - CVE-2023-5482: Insufficient data validation in USB. Reported by DarkNavy.
     - CVE-2023-5849: Integer overflow in USB. Reported by DarkNavy.
     - CVE-2023-5850: Incorrect security UI in Downloads.
       Reported by Mohit Raj (shadow2639) .
     - CVE-2023-5851: Inappropriate implementation in Downloads.
       Reported by Shaheen Fazim.
     - CVE-2023-5852: Use after free in Printing. Reported by [pwn2car].
     - CVE-2023-5853: Incorrect security UI in Downloads. Reported by Hafiizh.
     - CVE-2023-5854: Use after free in Profiles. Reported by
       Dohyun Lee (@l33d0hyun) of SSD-Disclosure Labs & DNSLab, Korea Univ.
     - CVE-2023-5855: Use after free in Reading Mode. Reported by ChaobinZhang.
     - CVE-2023-5856: Use after free in Side Panel.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2023-5857: Inappropriate implementation in Downloads.
       Reported by Will Dormann.
     - CVE-2023-5858: Inappropriate implementation in WebApp Provider.
       Reported by Axel Chong.
     - CVE-2023-5859: Incorrect security UI in Picture In Picture.
       Reported by Junsung Lee
   * d/patches:
     - patches/bullseye/constexpr.patch: Add MiracleParameter workaround
   * d/patches/ppc64le:
     - Mass refresh all patches against 119 codebase.  No functional change.
 .
   [ Andres Salomon ]
   * d/patches:
     - fixes/gcc13-headers.patch: drop parts that have been merged upstream.
     - fixes/perfetto.patch: drop part that was merged upstream.
     - upstream/sensor-reading.patch: drop, merged upstream.
     - upstream/lweight.patch: drop, merged upstream.
     - upstream/freetype.patch: drop, merged upstream.
     - upstream/sizet.patch: drop, merged upstream.
     - disable/catapult.patch: drop an unused hunk.
     - disable/widevine-cdm-cu.patch: refresh.
     - disable/privacy-sandbox.patch: rename, sync up with ungoogled-chromium,
       and use the full ungoogled patch. The privacy sandbox config interface
       is now gone, with no way to enable it.
     - ungoogled/core/ungoogled-chromium/disable-web-environment-integrity.patch:
       sync up with with ungoogled-chromium, and rename.
     - fixes/blink-frags.patch: additional build fix for libstdc++13.
     - fixes/gcc13-with-clang14.patch: drop, now that we've switched to clang-16.
     - fixes/atspi.patch: fix build failure with atspi >= 2.50.
chromium (119.0.6045.105-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-5480: Inappropriate implementation in Payments.
       Reported by Vsevolod Kokorin (Slonser) of Solidlab.
     - CVE-2023-5482: Insufficient data validation in USB. Reported by DarkNavy.
     - CVE-2023-5849: Integer overflow in USB. Reported by DarkNavy.
     - CVE-2023-5850: Incorrect security UI in Downloads.
       Reported by Mohit Raj (shadow2639) .
     - CVE-2023-5851: Inappropriate implementation in Downloads.
       Reported by Shaheen Fazim.
     - CVE-2023-5852: Use after free in Printing. Reported by [pwn2car].
     - CVE-2023-5853: Incorrect security UI in Downloads. Reported by Hafiizh.
     - CVE-2023-5854: Use after free in Profiles. Reported by
       Dohyun Lee (@l33d0hyun) of SSD-Disclosure Labs & DNSLab, Korea Univ.
     - CVE-2023-5855: Use after free in Reading Mode. Reported by ChaobinZhang.
     - CVE-2023-5856: Use after free in Side Panel.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2023-5857: Inappropriate implementation in Downloads.
       Reported by Will Dormann.
     - CVE-2023-5858: Inappropriate implementation in WebApp Provider.
       Reported by Axel Chong.
     - CVE-2023-5859: Incorrect security UI in Picture In Picture.
       Reported by Junsung Lee
   * d/patches:
     - patches/bullseye/constexpr.patch: Add MiracleParameter workaround
   * d/patches/ppc64le:
     - Mass refresh all patches against 119 codebase.  No functional change.
 .
   [ Andres Salomon ]
   * d/patches:
     - fixes/gcc13-headers.patch: drop parts that have been merged upstream.
     - fixes/perfetto.patch: drop part that was merged upstream.
     - upstream/sensor-reading.patch: drop, merged upstream.
     - upstream/lweight.patch: drop, merged upstream.
     - upstream/freetype.patch: drop, merged upstream.
     - upstream/sizet.patch: drop, merged upstream.
     - disable/catapult.patch: drop an unused hunk.
     - disable/widevine-cdm-cu.patch: refresh.
     - disable/privacy-sandbox.patch: rename, sync up with ungoogled-chromium,
       and use the full ungoogled patch. The privacy sandbox config interface
       is now gone, with no way to enable it.
     - ungoogled/core/ungoogled-chromium/disable-web-environment-integrity.patch:
       sync up with with ungoogled-chromium, and rename.
     - fixes/blink-frags.patch: additional build fix for libstdc++13.
     - fixes/gcc13-with-clang14.patch: drop, now that we've switched to clang-16.
     - fixes/atspi.patch: fix build failure with atspi >= 2.50.
     - bullseye/av1-vaapi2.patch: revert another upstream vaapi patch due to
       bullseye's old libva.
   * d/rules: set enable_nocompile_tests_new=false to make older gn happy.
chromium (118.0.5993.117-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5472: Use after free in Profiles.
       Reported by @18楼梦想改造家.
   * d/patches:
     - bookworm/clang-attribs.patch: drop, now that we've switched to clang-16.
     - bookworm/typename.patch: drop, now that we've switched to clang-16.
     - bookworm/struct-ctor.patch: drop, now that we've switched to clang-16.
     - bookworm/structured-binding-scope-bug.patch: drop, now that we've
       switched to clang-16.
     - bookworm/stringpiece3.patch: drop, now that we've switched to clang-16.
     - bookworm/initialize-const-ctor.patch: drop, now that we've switched to
       clang-16.
     - fixes/brandversion-construct.patch: drop, now that we've switched to
       clang-16.
     - fixes/SkColor4f-init.patch: drop, now that we've switched to clang-16.
chromium (118.0.5993.117-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5472: Use after free in Profiles.
       Reported by @18楼梦想改造家.
   * Switch from clang-14 to clang-16.
   * d/patches:
     - bookworm/clang-attribs.patch: drop, now that we've switched to clang-16.
     - bookworm/typename.patch: drop, now that we've switched to clang-16.
     - bookworm/struct-ctor.patch: drop, now that we've switched to clang-16.
     - bookworm/structured-binding-scope-bug.patch: drop, now that we've
       switched to clang-16.
     - bookworm/stringpiece3.patch: drop, now that we've switched to clang-16.
     - bookworm/initialize-const-ctor.patch: drop, now that we've switched to
       clang-16.
     - bookworm/i386-lock-free.patch: drop, now that we've switched to clang-16.
     - bullseye/clang13.patch: drop, now that we've switched to clang-16.
     - fixes/brandversion-construct.patch: drop, now that we've switched to
       clang-16.
     - fixes/SkColor4f-init.patch: drop, now that we've switched to clang-16.
chromium (118.0.5993.117-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5472: Use after free in Profiles.
       Reported by @18楼梦想改造家.
   * d/patches:
     - bookworm/clang-attribs.patch: drop, now that we've switched to clang-16.
     - bookworm/typename.patch: drop, now that we've switched to clang-16.
     - bookworm/struct-ctor.patch: drop, now that we've switched to clang-16.
     - bookworm/structured-binding-scope-bug.patch: drop, now that we've
       switched to clang-16.
     - bookworm/stringpiece3.patch: drop, now that we've switched to clang-16.
     - bookworm/initialize-const-ctor.patch: drop, now that we've switched to
       clang-16.
     - bookworm/i386-lock-free.patch: drop, now that we've switched to clang-16.
     - bullseye/clang13.patch: drop, now that we've switched to clang-16.
     - bullseye/constexpr.patch: drop, now that we've switched to clang-16.
     - bullseye/mulodic.patch: drop, now that we've switched to clang-16.
     - bullseye/default-equality-op.patch: drop, now that we've switched to
       clang-16.
     - bullseye/ptr-traits-bug.patch: drop, now that we've switched to clang-16.
     - fixes/brandversion-construct.patch: drop, now that we've switched to
       clang-16.
     - fixes/SkColor4f-init.patch: drop, now that we've switched to clang-16.
chromium (118.0.5993.70-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-5218: Use after free in Site Isolation.
       Reported by @18楼梦想改造家.
     - CVE-2023-5487: Inappropriate implementation in Fullscreen.
       Reported by Anonymous.
     - CVE-2023-5484: Inappropriate implementation in Navigation.
       Reported by Thomas Orlita.
     - CVE-2023-5475: Inappropriate implementation in DevTools.
       Reported by Axel Chong.
     - CVE-2023-5483: Inappropriate implementation in Intents.
       Reported by Axel Chong.
     - CVE-2023-5481: Inappropriate implementation in Downloads.
       Reported by Om Apip.
     - CVE-2023-5476: Use after free in Blink History. Reported by Yunqin Sun.
     - CVE-2023-5474: Heap buffer overflow in PDF. Reported by [pwn2car].
     - CVE-2023-5479: Inappropriate implementation in Extensions API.
       Reported by Axel Chong.
     - CVE-2023-5485: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-5478: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-5477: Inappropriate implementation in Installer.
       Reported by Bahaa Naamneh of Crosspoint Labs.
     - CVE-2023-5486: Inappropriate implementation in Input. Reported by Hafiizh.
     - CVE-2023-5473: Use after free in Cast. Reported by DarkNavy.
   * d/patches/ppc64le:
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
        upstream changes
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch:
       regenerate configs from upstream source
     - database/0001-Properly-detect-little-endian-PPC64-systems.patch:
       refresh
     - ffmpeg/0001-Add-support-for-ppc64.patch: refresh
     - fixes/fix-breakpad-compile.patch: refresh
     - fixes/fix-unknown-warning-option-messages.diff: refresh
     - libaom/0001-Add-ppc64-target-to-libaom.patch: refresh
     - sandbox/0001-sandbox-linux-Update-IsSyscallAllowed-in-broker_proc.patch:
       refresh
     - sandbox/0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch:
       refresh
     - sandbox/0008-sandbox-fix-ppc64le-glibc234.patch: refresh
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh
     - third_party/0001-Force-baseline-POWER8-AltiVec-VSX-CPU-features-when-.patch:
       refresh
     - third_party/0001-third_party-libvpx-Properly-generate-gni-on-ppc64.patch:
       refresh
     - third_party/0002-third-party-boringssl-add-generated-files.patch: refresh
     - third_party/dawn-fix-ppc64le-detection.patch: refresh
     - third_party/dawn-fix-typos.patch: refresh
     - third_party/skia-vsx-instructions.patch: refresh
     - third_party/use-sysconf-page-size-on-ppc64.patch: refresh
     - workarounds/HACK-third_party-libvpx-use-generic-gnu.patch: refresh
 .
   [ Andres Salomon]
   * d/copyright:
     - blanket.js is gone, no need to remove it any more.
     - delete some khronos images marked executable.
   * d/patches:
     - upstream/memory.patch: drop, merged upstream.
     - upstream/sensor-reading.patch: add, gcc13 build fix from upstream.
     - upstream/lweight.patch: add, gcc13 build fix from upstream.
     - upstream/freetype.patch: add, fix freetype header inclusion FTBFS.
     - upstream/sizet.patch: add, libstdc++ build fix from upstream.
     - disable/unrar.patch: update for minor upstream changes.
     - bookworm/struct-ctor.patch: add various new workarounds for clang-14.
     - bookworm/structured-binding-scope-bug.patch: drop part of the patch.
     - bullseye/clang13.patch: drop bullseye patches from sid.
     - bullseye/constexpr.patch: drop bullseye patches from sid.
     - ungoogled/.../disable-web-environment-integrity.patch: sync with
       ungoogled-chromium for upstream changes.
chromium (118.0.5993.70-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-5218: Use after free in Site Isolation.
       Reported by @18楼梦想改造家.
     - CVE-2023-5487: Inappropriate implementation in Fullscreen.
       Reported by Anonymous.
     - CVE-2023-5484: Inappropriate implementation in Navigation.
       Reported by Thomas Orlita.
     - CVE-2023-5475: Inappropriate implementation in DevTools.
       Reported by Axel Chong.
     - CVE-2023-5483: Inappropriate implementation in Intents.
       Reported by Axel Chong.
     - CVE-2023-5481: Inappropriate implementation in Downloads.
       Reported by Om Apip.
     - CVE-2023-5476: Use after free in Blink History. Reported by Yunqin Sun.
     - CVE-2023-5474: Heap buffer overflow in PDF. Reported by [pwn2car].
     - CVE-2023-5479: Inappropriate implementation in Extensions API.
       Reported by Axel Chong.
     - CVE-2023-5485: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-5478: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-5477: Inappropriate implementation in Installer.
       Reported by Bahaa Naamneh of Crosspoint Labs.
     - CVE-2023-5486: Inappropriate implementation in Input. Reported by Hafiizh.
     - CVE-2023-5473: Use after free in Cast. Reported by DarkNavy.
   * d/patches/ppc64le:
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
        upstream changes
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch:
       regenerate configs from upstream source
     - database/0001-Properly-detect-little-endian-PPC64-systems.patch:
       refresh
     - ffmpeg/0001-Add-support-for-ppc64.patch: refresh
     - fixes/fix-breakpad-compile.patch: refresh
     - fixes/fix-unknown-warning-option-messages.diff: refresh
     - libaom/0001-Add-ppc64-target-to-libaom.patch: refresh
     - sandbox/0001-sandbox-linux-Update-IsSyscallAllowed-in-broker_proc.patch:
       refresh
     - sandbox/0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch:
       refresh
     - sandbox/0008-sandbox-fix-ppc64le-glibc234.patch: refresh
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh
     - third_party/0001-Force-baseline-POWER8-AltiVec-VSX-CPU-features-when-.patch:
       refresh
     - third_party/0001-third_party-libvpx-Properly-generate-gni-on-ppc64.patch:
       refresh
     - third_party/0002-third-party-boringssl-add-generated-files.patch: refresh
     - third_party/dawn-fix-ppc64le-detection.patch: refresh
     - third_party/dawn-fix-typos.patch: refresh
     - third_party/skia-vsx-instructions.patch: refresh
     - third_party/use-sysconf-page-size-on-ppc64.patch: refresh
     - workarounds/HACK-third_party-libvpx-use-generic-gnu.patch: refresh
 .
   [ Andres Salomon]
   * d/copyright:
     - blanket.js is gone, no need to remove it any more.
     - delete some khronos images marked executable.
   * d/patches:
     - upstream/memory.patch: drop, merged upstream.
     - upstream/sensor-reading.patch: add, gcc13 build fix from upstream.
     - upstream/lweight.patch: add, gcc13 build fix from upstream.
     - upstream/freetype.patch: add, fix freetype header inclusion FTBFS.
     - upstream/sizet.patch: add, libstdc++ build fix from upstream.
     - disable/unrar.patch: update for minor upstream changes.
     - bookworm/struct-ctor.patch: add various new workarounds for clang-14.
     - bookworm/structured-binding-scope-bug.patch: drop part of the patch.
     - bullseye/constexpr.patch: drop bullseye patch from bookworm.
     - ungoogled/.../disable-web-environment-integrity.patch: sync with
       ungoogled-chromium for upstream changes.
     - bookworm/i386-lock-free.patch: refresh.
chromium (118.0.5993.70-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-5218: Use after free in Site Isolation.
       Reported by @18楼梦想改造家.
     - CVE-2023-5487: Inappropriate implementation in Fullscreen.
       Reported by Anonymous.
     - CVE-2023-5484: Inappropriate implementation in Navigation.
       Reported by Thomas Orlita.
     - CVE-2023-5475: Inappropriate implementation in DevTools.
       Reported by Axel Chong.
     - CVE-2023-5483: Inappropriate implementation in Intents.
       Reported by Axel Chong.
     - CVE-2023-5481: Inappropriate implementation in Downloads.
       Reported by Om Apip.
     - CVE-2023-5476: Use after free in Blink History. Reported by Yunqin Sun.
     - CVE-2023-5474: Heap buffer overflow in PDF. Reported by [pwn2car].
     - CVE-2023-5479: Inappropriate implementation in Extensions API.
       Reported by Axel Chong.
     - CVE-2023-5485: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-5478: Inappropriate implementation in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-5477: Inappropriate implementation in Installer.
       Reported by Bahaa Naamneh of Crosspoint Labs.
     - CVE-2023-5486: Inappropriate implementation in Input. Reported by Hafiizh.
     - CVE-2023-5473: Use after free in Cast. Reported by DarkNavy.
   * d/patches/ppc64le:
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
        upstream changes
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
     - third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch:
       regenerate configs from upstream source
     - database/0001-Properly-detect-little-endian-PPC64-systems.patch:
       refresh
     - ffmpeg/0001-Add-support-for-ppc64.patch: refresh
     - fixes/fix-breakpad-compile.patch: refresh
     - fixes/fix-unknown-warning-option-messages.diff: refresh
     - libaom/0001-Add-ppc64-target-to-libaom.patch: refresh
     - sandbox/0001-sandbox-linux-Update-IsSyscallAllowed-in-broker_proc.patch:
       refresh
     - sandbox/0001-sandbox-linux-Update-syscall-helpers-lists-for-ppc64.patch:
       refresh
     - sandbox/0008-sandbox-fix-ppc64le-glibc234.patch: refresh
     - third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh
     - third_party/0001-Force-baseline-POWER8-AltiVec-VSX-CPU-features-when-.patch:
       refresh
     - third_party/0001-third_party-libvpx-Properly-generate-gni-on-ppc64.patch:
       refresh
     - third_party/0002-third-party-boringssl-add-generated-files.patch: refresh
     - third_party/dawn-fix-ppc64le-detection.patch: refresh
     - third_party/dawn-fix-typos.patch: refresh
     - third_party/skia-vsx-instructions.patch: refresh
     - third_party/use-sysconf-page-size-on-ppc64.patch: refresh
     - workarounds/HACK-third_party-libvpx-use-generic-gnu.patch: refresh
 .
   [ Andres Salomon]
   * d/copyright:
     - blanket.js is gone, no need to remove it any more.
     - delete some khronos images marked executable.
   * d/control: switch from clang-13 to clang-16 for building.
   * d/patches:
     - upstream/memory.patch: drop, merged upstream.
     - upstream/sensor-reading.patch: add, gcc13 build fix from upstream.
     - upstream/lweight.patch: add, gcc13 build fix from upstream.
     - upstream/freetype.patch: add, fix freetype header inclusion FTBFS.
     - upstream/sizet.patch: add, libstdc++ build fix from upstream.
     - disable/unrar.patch: update for minor upstream changes.
     - bookworm/struct-ctor.patch: add various new workarounds for clang-14.
     - bookworm/structured-binding-scope-bug.patch: drop part of the patch.
     - bullseye/clang13.patch: drop removal of -gsimple-template-names.
     - ungoogled/.../disable-web-environment-integrity.patch: sync with
       ungoogled-chromium for upstream changes.
     - bookworm/i386-lock-free.patch: refresh.
     - bullseye/openh264.patch: refresh.
     - bullseye/default-equality-op.patch: add more clang13 workarounds.
     - debianization/clang-version.patch: switch to using clang-16.
   * d/rules:
     - set simple_template_names=false (moved from clang13.patch into
       a config option).
     - pull acorn-class-fields node module into build tree to fix rollup.
     - switch to using clang-16, which is now backported to bullseye.
chromium (117.0.5938.149-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5346: Type Confusion in V8. Reported by Amit Kumar.
chromium (117.0.5938.149-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5346: Type Confusion in V8. Reported by Amit Kumar.
 .
 chromium (117.0.5938.132-2) unstable; urgency=high
 .
   * d/patches/fixes/v8-compressed-ptrs.patch: fix another armhf FTBFS.
chromium (117.0.5938.149-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5346: Type Confusion in V8. Reported by Amit Kumar.
 .
 chromium (117.0.5938.132-2) unstable; urgency=high
 .
   * d/patches/fixes/v8-compressed-ptrs.patch: fix another armhf FTBFS.
chromium (117.0.5938.132-2) unstable; urgency=high
 .
   * d/patches/fixes/v8-compressed-ptrs.patch: fix another armhf FTBFS.
chromium (117.0.5938.132-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx.
       Reported by Clément Lecigne of Google's Threat Analysis Group.
     - CVE-2023-5186: Use after free in Passwords. Reported by [pwn2car].
     - CVE-2023-5187: Use after free in Extensions. Reported by Thomas Orlita.
chromium (117.0.5938.132-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx.
       Reported by Clément Lecigne of Google's Threat Analysis Group.
     - CVE-2023-5186: Use after free in Passwords. Reported by [pwn2car].
     - CVE-2023-5187: Use after free in Extensions. Reported by Thomas Orlita.
   * d/patches:
     - bookworm/i386-lock-free.patch: add to fix i386 build failure.
     - bookworm/freetype-COLRV1.patch: disable using freetype's COLRV1
       (closes: #1053142).
 .
 chromium (117.0.5938.92-1) unstable; urgency=high
 .
   * New upstream stable release.
   * Enable NEON on armhf. See
     <https://lists.debian.org/debian-devel/2023/09/msg00175.html>.
   * Add check in d/rules & chromium wrapper to ensure we don't build or
     run on non-NEON armhf machines.
chromium (117.0.5938.132-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-5217: Heap buffer overflow in vp8 encoding in libvpx.
       Reported by Clément Lecigne of Google's Threat Analysis Group.
     - CVE-2023-5186: Use after free in Passwords. Reported by [pwn2car].
     - CVE-2023-5187: Use after free in Extensions. Reported by Thomas Orlita.
   * d/patches:
     - bookworm/i386-lock-free.patch: add to fix i386 build failure.
 .
 chromium (117.0.5938.92-1) unstable; urgency=high
 .
   * New upstream stable release.
   * Enable NEON on armhf. See
     <https://lists.debian.org/debian-devel/2023/09/msg00175.html>.
   * Add check in d/rules & chromium wrapper to ensure we don't build or
     run on non-NEON armhf machines.
chromium (117.0.5938.92-1) unstable; urgency=high
 .
   * New upstream stable release.
   * Enable NEON on armhf. See
     <https://lists.debian.org/debian-devel/2023/09/msg00175.html>.
   * Add check in d/rules & chromium wrapper to ensure we don't build or
     run on non-NEON armhf machines.
chromium (117.0.5938.62-1) unstable; urgency=high
 .
   [ Andres Salomon]
   * New upstream stable release.
     - CVE-2023-4900: Inappropriate implementation in Custom Tabs.
       Reported by Levit Nudi from Kenya.
     - CVE-2023-4901: Inappropriate implementation in Prompts.
       Reported by Kang Ali.
     - CVE-2023-4902: Inappropriate implementation in Input.
       Reported by Axel Chong.
     - CVE-2023-4903: Inappropriate implementation in Custom Mobile Tabs.
       Reported by Ahmed ElMasry.
     - CVE-2023-4904: Insufficient policy enforcement in Downloads.
       Reported by Tudor Enache @tudorhacks.
     - CVE-2023-4905: Inappropriate implementation in Prompts.
       Reported by Hafiizh.
     - CVE-2023-4906: Insufficient policy enforcement in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-4907: Inappropriate implementation in Intents.
       Reported by Mohit Raj (shadow2639) .
     - CVE-2023-4908: Inappropriate implementation in Picture in Picture.
       Reported by Axel Chong.
     - CVE-2023-4909: Inappropriate implementation in Interstitials.
       Reported by Axel Chong.
   * d/copyright: drop rust, llvm, siso, & cargo binaries.
   * d/patches:
     - fixes/size.patch: drop, merged upstream.
     - fixes/variant.patch: drop, merged upstream.
     - fixes/vector.patch: drop, merged upstream.
     - upstream/contains.patch: drop, merged upstream.
     - upstream/hvec.patch: drop, merged upstream.
     - upstream/limits.patch: drop, merged upstream.
     - upstream/statelessV4L2.patch: drop, merged upstream.
     - fixes/widevine-locations.patch: refresh for minor upstream changes.
     - disable/android.patch: drop half the patch.
     - disable/catapult.patch: refresh for minor upstream changes.
     - disable/tests.patch: refresh for minor upstream changes.
     - disable/unrar.patch: refresh for minor upstream changes.
     - fixes/material-utils.patch: build fix for clang w/ libstdc++.
     - rename fixes/null.patch to fixes/perfetto.patch.
     - upstream/memory.patch: build fix for missing header.
     - bookworm/struct-ctor.patch: add a bunch more build workarounds for
       clang-14.
     - bookworm/stringpiece3.patch: another clang-14 StringPiece to
       std::string explicit conversion.
     - bookworm/typename.patch: add more explicit typename declarations for
       clang-14.
     - bookworm/structured-binding-scope-bug.patch: add more clang-14 binding
       scope workarounds.
     - bookworm/initialize-const-ctor.patch: clang-14 workaround to init a
       const member inside a struct.
     - ppc64le/libaom/0001-Add-ppc64-target-to-libaom.patch: refresh.
     - disable/privacy-sandbox.patch: ensure Privacy Sandbox "features" are
       off by default.
   * Switch to using bundled brotli, as the version in debian is too old.
     And so we can drop d/patches/bookworm/brotli.patch, too.
   * Switch from clang-14 to clang-16 (closes: #1051355).
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - 0001-Implement-support-for-PPC64-on-Linux.patch: refresh for upstream
        changes
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - 0002-third-party-boringssl-add-generated-files.patch: refresh for
        upstream changes
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
        upstream changes
     - 0004-third_party-crashpad-port-curl-transport-ppc64.patch: refresh for
        upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
     - 0003-third_party-ffmpeg-Add-ppc64-generated-config.patch: regenerate
     - 0001-third_party-boringssl-Properly-detect-ppc64le-in-BUI.patch: drop
   * d/patches/ungoogled:
     - core/ungoogled-chromium/disable-web-environment-integrity.patch: disable
       "Web Environment Integrity" trial and remove from build (closes: #1042111)
chromium (117.0.5938.62-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon]
   * New upstream stable release.
     - CVE-2023-4900: Inappropriate implementation in Custom Tabs.
       Reported by Levit Nudi from Kenya.
     - CVE-2023-4901: Inappropriate implementation in Prompts.
       Reported by Kang Ali.
     - CVE-2023-4902: Inappropriate implementation in Input.
       Reported by Axel Chong.
     - CVE-2023-4903: Inappropriate implementation in Custom Mobile Tabs.
       Reported by Ahmed ElMasry.
     - CVE-2023-4904: Insufficient policy enforcement in Downloads.
       Reported by Tudor Enache @tudorhacks.
     - CVE-2023-4905: Inappropriate implementation in Prompts.
       Reported by Hafiizh.
     - CVE-2023-4906: Insufficient policy enforcement in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-4907: Inappropriate implementation in Intents.
       Reported by Mohit Raj (shadow2639) .
     - CVE-2023-4908: Inappropriate implementation in Picture in Picture.
       Reported by Axel Chong.
     - CVE-2023-4909: Inappropriate implementation in Interstitials.
       Reported by Axel Chong.
   * d/copyright: drop rust, llvm, siso, & cargo binaries.
   * d/patches:
     - fixes/size.patch: drop, merged upstream.
     - fixes/variant.patch: drop, merged upstream.
     - fixes/vector.patch: drop, merged upstream.
     - upstream/contains.patch: drop, merged upstream.
     - upstream/hvec.patch: drop, merged upstream.
     - upstream/limits.patch: drop, merged upstream.
     - upstream/statelessV4L2.patch: drop, merged upstream.
     - fixes/widevine-locations.patch: refresh for minor upstream changes.
     - disable/android.patch: drop half the patch.
     - disable/catapult.patch: refresh for minor upstream changes.
     - disable/tests.patch: refresh for minor upstream changes.
     - disable/unrar.patch: refresh for minor upstream changes.
     - fixes/material-utils.patch: build fix for clang w/ libstdc++.
     - rename fixes/null.patch to fixes/perfetto.patch.
     - upstream/memory.patch: build fix for missing header.
     - bookworm/struct-ctor.patch: add a bunch more build workarounds for
       clang-14.
     - bookworm/stringpiece3.patch: another clang-14 StringPiece to
       std::string explicit conversion.
     - bookworm/typename.patch: add more explicit typename declarations for
       clang-14.
     - bookworm/structured-binding-scope-bug.patch: add more clang-14 binding
       scope workarounds.
     - bookworm/initialize-const-ctor.patch: clang-14 workaround to init a
       const member inside a struct.
     - ppc64le/libaom/0001-Add-ppc64-target-to-libaom.patch: refresh.
     - disable/privacy-sandbox.patch: ensure Privacy Sandbox "features" are
       off by default.
     - bookworm/generate-ninja.patch: fix build failure w/ bookworm's older gn.
   * Switch to using bundled brotli, as the version in debian is too old.
     And so we can drop d/patches/bookworm/brotli.patch, too.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - 0001-Implement-support-for-PPC64-on-Linux.patch: refresh for upstream
        changes
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - 0002-third-party-boringssl-add-generated-files.patch: refresh for
        upstream changes
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
        upstream changes
     - 0004-third_party-crashpad-port-curl-transport-ppc64.patch: refresh for
        upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
     - 0003-third_party-ffmpeg-Add-ppc64-generated-config.patch: regenerate
     - 0001-third_party-boringssl-Properly-detect-ppc64le-in-BUI.patch: drop
   * d/patches/ungoogled:
     - core/ungoogled-chromium/disable-web-environment-integrity.patch: disable
       "Web Environment Integrity" trial and remove from build (closes: #1042111)
chromium (117.0.5938.62-1~deb11u1) bullseye-security; urgency=high
 .
   [ Andres Salomon]
   * New upstream stable release.
     - CVE-2023-4900: Inappropriate implementation in Custom Tabs.
       Reported by Levit Nudi from Kenya.
     - CVE-2023-4901: Inappropriate implementation in Prompts.
       Reported by Kang Ali.
     - CVE-2023-4902: Inappropriate implementation in Input.
       Reported by Axel Chong.
     - CVE-2023-4903: Inappropriate implementation in Custom Mobile Tabs.
       Reported by Ahmed ElMasry.
     - CVE-2023-4904: Insufficient policy enforcement in Downloads.
       Reported by Tudor Enache @tudorhacks.
     - CVE-2023-4905: Inappropriate implementation in Prompts.
       Reported by Hafiizh.
     - CVE-2023-4906: Insufficient policy enforcement in Autofill.
       Reported by Ahmed ElMasry.
     - CVE-2023-4907: Inappropriate implementation in Intents.
       Reported by Mohit Raj (shadow2639) .
     - CVE-2023-4908: Inappropriate implementation in Picture in Picture.
       Reported by Axel Chong.
     - CVE-2023-4909: Inappropriate implementation in Interstitials.
       Reported by Axel Chong.
   * d/copyright: drop rust, llvm, siso, & cargo binaries.
   * d/patches:
     - fixes/size.patch: drop, merged upstream.
     - fixes/variant.patch: drop, merged upstream.
     - fixes/vector.patch: drop, merged upstream.
     - upstream/contains.patch: drop, merged upstream.
     - upstream/hvec.patch: drop, merged upstream.
     - upstream/limits.patch: drop, merged upstream.
     - upstream/statelessV4L2.patch: drop, merged upstream.
     - fixes/widevine-locations.patch: refresh for minor upstream changes.
     - disable/android.patch: drop half the patch.
     - disable/catapult.patch: refresh for minor upstream changes.
     - disable/tests.patch: refresh for minor upstream changes.
     - disable/unrar.patch: refresh for minor upstream changes.
     - fixes/material-utils.patch: build fix for clang w/ libstdc++.
     - rename fixes/null.patch to fixes/perfetto.patch.
     - upstream/memory.patch: build fix for missing header.
     - bookworm/struct-ctor.patch: add a bunch more build workarounds for
       clang-14.
     - bookworm/stringpiece3.patch: another clang-14 StringPiece to
       std::string explicit conversion.
     - bookworm/typename.patch: add more explicit typename declarations for
       clang-14.
     - bookworm/structured-binding-scope-bug.patch: add more clang-14 binding
       scope workarounds.
     - bookworm/initialize-const-ctor.patch: clang-14 workaround to init a
       const member inside a struct.
     - ppc64le/libaom/0001-Add-ppc64-target-to-libaom.patch: refresh.
     - disable/privacy-sandbox.patch: ensure Privacy Sandbox "features" are
       off by default.
     - bookworm/generate-ninja.patch: fix build failure w/ bullseye's older gn.
     - bullseye/default-equality-op.patch: refresh.
     - bullseye/lerp.patch: add a new build fix for libstdc++ 10.
     - bullseye/downgrade-typescript.patch: drop parts of patch that don't
       apply and simply update typescript node dependencies.
   * Switch to using bundled brotli, as the version in debian is too old.
     And so we can drop d/patches/bookworm/brotli.patch, too.
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - 0001-Implement-support-for-PPC64-on-Linux.patch: refresh for upstream
        changes
     - 0001-Add-PPC64-support-for-boringssl.patch: refresh for upstream changes
     - 0002-third-party-boringssl-add-generated-files.patch: refresh for
        upstream changes
     - 0002-third_party-libvpx-Remove-bad-ppc64-config.patch: refresh for
        upstream changes
     - 0004-third_party-crashpad-port-curl-transport-ppc64.patch: refresh for
        upstream changes
     - skia-vsx-instructions.patch: refresh for upstream changes
     - 0003-third_party-ffmpeg-Add-ppc64-generated-config.patch: regenerate
     - 0001-third_party-boringssl-Properly-detect-ppc64le-in-BUI.patch: drop
   * d/patches/ungoogled:
     - core/ungoogled-chromium/disable-web-environment-integrity.patch: disable
       "Web Environment Integrity" trial and remove from build (closes: #1042111)
chromium (116.0.5845.180-1) unstable; urgency=high
 .
   [ Andres Salomon]
   * New upstream security release.
     - CVE-2023-4761: Out of bounds memory access in FedCM. Reported by DarkNavy.
     - CVE-2023-4762: Type Confusion in V8. Reported by Rong Jian of VRI.
     - CVE-2023-4763: Use after free in Networks. Reported by anonymous.
     - CVE-2023-4764: Incorrect security UI in BFCache.
       Reported by Irvan Kurniawan (sourc7).
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - 0001-Add-PPC64-support-for-boringssl.patch: Fix incorrect function call
       parameter types in gmult_func() and ghash_func() implementations

crun (1.8.1-1+deb12u1) bookworm; urgency=medium
 .
   * Backport two commits from upstream ("ignore ENOTSUP when chmod a
     symlink"), that restore containers with systemd as their init system, when
     running under Linux >= v6.6 and >= v6.1.55, i.e. bookworm's current stable
     kernel. (Closes: #1053821)
   * Move myself to Maintainer, and Dmitry to Uploaders.

cups (2.4.2-3+deb12u5) bookworm; urgency=medium
 .
   * 0017-check-colormodel-also-for-CMYK.patch
     Take into account that on some printers the ColorModel option's
     choice for color printing is CMYK and not RGB.
   * 0018-dont-override-color-settings-from-print-dialoag.patch
     Prioritize the ColorModel PPD file option over the print-color-mode
     IPP attribute. (Closes: #1056581)
     (Thanks a lot to Till Kamppeter for the patches)

curl (7.88.1-10+deb12u4) bookworm-security; urgency=high
 .
   * Add patches to fix CVE-2023-38545 and CVE-2023-38546

dav4tbsync (4.7-1~deb12u1) bookworm; urgency=medium
 .
   * [1bbfecd] Adjust version of dependencies
   *     Prepared for release in bookworm (proposed-updates)
dav4tbsync (4.3+git20230524+b777de8-1) experimental; urgency=medium
 .
   * [adccff6] Changed compression because of the zip file
   * [6f38e59] New upstream version 4.3+git20230524+b777de8
   * [adccff6] Changed compression because of the zip file
   * [6f38e59] New upstream version 4.3+git20230524+b777de8

debian-edu-config (2.12.41~deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm.
debian-edu-config (2.12.40) unstable; urgency=medium
 .
   * share/debian-edu-config/gosa.conf.template:
     + Deploy GOsæ² based on its classic theming, the Materialize CSS theme is
       too immature to be used in production.
debian-edu-config (2.12.40~deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm.
debian-edu-config (2.12.39) unstable; urgency=medium
 .
   * ldap-bootstrap/root.ldif: Fix gosaAclEntry of BaseDN object.
debian-edu-config (2.12.38) unstable; urgency=medium
 .
   [ Wolfgang Schweer ]
   * Fix main server network setup. Closes: #1055647.
debian-edu-config (2.12.37) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * Discard excessive nullmailer logging.
     Filter out log messages coming from a client running nullmailer since it is
     very verbose and can easily fill up the filesystem under /var/log.
     (Closes: #1003728).
   * ldap-createuser-krb5: fix password prompt.
   * Disable cfengine3 systemd service.
     Disabling only cf-execd in 75b4e3f7 (see #1041323) did not work as it gets
     pulled in as a dependency of cfengine3. Thus disable the cfengine3 service
     instead.
   * Rewrite testsuite/filesystems, add exception for /boot
     Rewrite for clarity and robustness. Add exception for /boot which may use
     ext2.
   * testsuite/ldap-{server,client}: Fix invocation of ldapsearch.
     The -h command line option has been removed, ldapsearch now only accepts a
     LDAP URI via the -H option.
     Also do not use the deprecated egrep and get rid of unnecessary wc.
     Use dig and awk instead of host and interpret the SRV record properly.
   * testsuite/ldap-client: Improve error message on PAM modules.
   * Fix remaining invocations of ldapsearch.
   * Disable using the LDAP PAM module (we use pam_krb5.so instead).
   * setup-freeradius-server: Set commonName and subjectAltNames on the server
     cert.
     (Closes: #1010159).
   * setup-freeradius-server: Improve robustness
     Use update-ini-file for OpenSSL config files.
     Use more precise sed substitutions which do not rely on example values.
     Increase password length from 8 to 16 characters.
   * Change minimum UID/GID for LDAP user to 2000 (Closes: #1003192)
     With this change local user accounts now use the UID/GID range 1000-1999
     instead of 500-999 whereas LDAP user accounts use 2000-59999 instead of
     1000-59999.  This is to reserve UID/GID 0-999 for system users which is the
     default in Debian and not conforming to it is increasingly problematic as
     packages are beginning to use systemd-sysusers for creating system user
     accounts which does not obey /etc/addusers.conf or /etc/login.defs by default.
     The first user account created during installation now has UID/GID 2000 instead
     of 1000.
     Configure gosa and adjust ldap-createuser-krb5 accordingly.
debian-edu-config (2.12.36) unstable; urgency=medium
 .
   [ Mike Gabriel ]
   * ldap-bootstrap/gosa.ldif:
     + Provide ou=incoming potentially used by GOsa²'s class 'newArpDevice'.
       This is esp. to silence GOsa² error messages but might be useful at a
       later point of time.
 .
   [ Guido Berhoerster ]
   * Update proxy settings in dconf.
     This adds support in update-proxy-from-wpad for setting the proxy default
     values in dconf (used by e.g. GNOME components). The values are added to
     a site database, it also packages an empty local database in order to
     obviate the need to modify the user profile. (Closes: #955702)
   * Remove use of obsolete grep aliases. These have been obsolete forever and
     have been removed from GNU grep upstream.
   * Use command -v builtin over external which command
   * Do not solely rely on the presence of init scripts in maintainer scripts.
     Check also for systemd service files.
   * Remove direct invocation of wlan init script. This no longer exists in
     Debian.
   * Replace invocation of fetch-ldap-cert init script in DHCP hooks and rename.
     dhclient hook in Makefile.
     This has been replaced by fetch-rootca-cert (see #971780).
   * Silence exim4 warnings in logfile.
     The lack of keep_environment in the exim4 configuration for clients leads to
     continuous warnings in the logfile:
     'Warning: purging the environment. Suggested action: use keep_environment.'
     Setting it to an empty value (which is the default) silences that.
   * Ship PAM group.conf for workstations. LDAP users should be members of
     several system groups on networked (roaming) workstations.
   * Add missing dependency on iptables
     This is required by debian-edu-update-netblock (Closes: #1051446).
debian-edu-config (2.12.35) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * Remove configure-edu-gateway. (Closes: #1043407).
     The script is obsoleted by the more sophisticated configuration
     abilities provided by the debian-edu-router-config package.
   * Do not hardcode X2Go desktop to Xfce. (Closes: #1049396).
     Add a commandline option --x2go_desktop for specifying the default desktop
     and make a best effort finding a usable desktop if none is specified.
   * Disable cf-execd on installation. (Closes: #1041323).
     Currently cf-execd is enabled by default if systemd is used (see #1043353)
     but the agent should only be run on installation.
   * Do not attempt to fetch the rootCA cert outside of a DebianEdu network
     An error should only be reported if the machine is inside a DebianEdu
     network, i.e. www.intern is resolvable, but the download fails. (Closes:
     #1008599).
 .
   [ Mike Gabriel ]
   * debian/tests/control: Remove configure-edu-gateway from list of tests.
     Script and testscript are now gone. (Related to closure of #1043407, see
     above).
   * Silence lintian warnings of type 'bash-term-in-posix-shell' by using
     variable names that lintian can't confuse with bash-only pre-set
     variables (e.g. $HOSTNAME or $UID).
debian-edu-config (2.12.34) unstable; urgency=medium
 .
   [ Mike Gabriel ]
   * Start 2.12.34 development.
   * debian/debian-edu-config.lintian-overrides:
     + Update existing overrides (line numbers and such).
     + Drop missing-systemd-service-for-init.d-script overrides. Systemd service
       files are now provided.
     + Drop init.d-script-does-not-implement-status-option override for
       fetch-ldap-cert. Init script is now gone.
   * testsuite: Install to pkglibexecdir rather than libexecdir. Thanks lintian.
   * Makefile: Adjust white-spacing in variable declarations.
   * Makefile: Use $(NULL) variable at end of file lists. Allow for better git-
     patch readability.
   * Convert CRON configuration to systemd timers.
   * sbin/*-for-netgroup-hosts: Some noop + white-spacing beautifications.
   * Move d-e-c-*-for-netgroup-hosts scripts to pkglibexecdir.
   * debian/debian-edu-config.postinst:
     + Assure runlevel de-registering of init script fetch-ldap-cert.
   * debian/debian-edu-config.maintscript:
     + Assure removal of /etc/init.d/fetch-ldap-cert conffile.
   * debian/debian-edu-config.cron.*:
     + Only run scripts if they exist. Thanks piuparts.
 .
   [ Daniel Teichmann ]
   * etc/dhcp/dhcp-debian-edu.conf:
     + ldap-server. 'ldap' -> 'ldap.intern'. (Closes: #1039966).
   * share/debian-edu-config/tools/gosa-remove:
     + Fix kadmin.local, Use '-force' to disable interaction via stdin.
 .
   [ Guido Berhoerster ]
   * ldap-tools/ldap-createuser-krb5:
     + Fix user creation. (Closes: #1042456).
       Remove Samba NT4 domain support, add samba user using smbpasswd.
       Add root CA for new users (copied from gosa-create).
     + Fix new UID/GID selection.
       Exclude special users (UID/GID >= 10000) when looking for the highest
       UID/GID.
     + Add CLI options for uid/gid/department.
       Also ensure script is run as root.
     + Add additional attributes based on template users.
     + Add support for additional groups.
     + Send welcome email in order to create maildir.
       Without this the maildir in /var/mail/<user> will not exist and Dovecot
       will refuse to let the user log in as it cannot create this directory.
     + Set LDAP password when creating users.
       This allows users to use GOsa² to change their password.
   * Add systemd services for configuring Chromium/Firefox from LDAP.
     Factor out logic from init script into separate script which are then called
     from both the init script and systemd services.
   * Add systemd service enabling NAT for thin clients.
   * Add systemd service for fetching the RootCA file from the main server.
   * Drop init script for fetching LDAP SSL public key from legacy main servers.
     This drops support for clients running behind a main server based on Debian
     Edu stretch. (Closes: #1030116).
   * Update debian/rules for init scripts and systemd services. (Closes:
     #1039166).
   * Generate a random password for the icinga/icingaweb databases.
     (Closes: #1040015).
   * update-dlw-krb5-keytabs: Handle missing/empty diskless-workstation-hosts.
   * Followup fixes for ntpsec transition.
   * Add systemd support to debian-edu-restart-services: This uses a list
     of service units which was compiled on a main server + ltsp
     installation. Uses stop and start to force restart
     reverse-dependencies. It also makes sure that drop in files are
     recognized. (Closes: #1042940).
   * Configure gosa not to use STARTTLS since TLS is already used. ldapTLS
     configures the use of STARTTLS, not TLS per se which is enabled by the
     use of ldaps: protocol in URLs. (Closes: #1041322).
   * Allow root access to cups via SystemGroups. 'root' access is allowed in
     the default configuration and e.g. necessary for services like
     debian-edu-cups-queue-autoflush.service to work. (Closes: #1043397).
   * cf3/promises.cf: fix typo and allow connections from localhost and network.
debian-edu-config (2.12.33) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * Adapt ntp configuration for ntpsec. Closes: #1038881.
     ntpsec has replaced ntp in bookworm, adapt configuration and add a
     drop-in file instead of editing the configuration file. Drop insserv
     overrides for ntp, the ntpsec systemd unit has an ordering dependency
     on nss-lookup.target equivalent to the "$named" facility.
   * Set up database for icingaweb2
     Starting with version 2.11 user preferences must be stored in the DB.
   * Fix permissions issue preventing icingaweb2 from reading the backend config
     The /etc/icingaweb2/modules directory ends up with "drwxrwSrwx" permissions,
     missing the "x" bit preventing icingaweb2 from reading the monitoring backend
     configuration in /etc/icingaweb2/modules/monitoring/. Instead of adjusting
     single files and directories, enforce sensible permissions on all directories
     and configuration files. Closes: #1039475.

debian-edu-doc (2.12.20~deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm.
 .
 debian-edu-doc (2.12.20) unstable; urgency=medium
 .
   [ Translation updates ]
   * Bookworm manual:
     - Brasilian Portuguese: Fred Maranhão.
     - Italian: Claudio Carboncini.
     - Spanish: Francisco Javier Carro Orgeira.
   * Bullseye manual:
     - Brasilian Portuguese: Fred Maranhão.
     - Spanish:Eulalio Barbero Espinosa and Francisco Javier Carro Orgeira.
 .
   [ Holger Levsen ]
   * stop sending monthly mails about the bullseye edu manual
 .
 debian-edu-doc (2.12.19) unstable; urgency=medium
 .
   [ Holger Levsen ]
   * Update Debian Edu Bookworm manual from the wiki.
 .
   [ Guido Berhoerster ]
   * Add build-dependency on inkscape in order to converts SVGs, bringing back
     the PDF versions of the bookworm manuals.
 .
   [ Translation updates ]
   * Bookworm manual:
     - Dutch: Frans Spiesschaert.
     - Spanish: Eulalio Barbero Espinosa and Francisco Javier Carro Orgeira.
   * Bullseye manual:
     - Spanish: Eulalio Barbero Espinosa and Francisco Javier Carro Orgeira.
debian-edu-doc (2.12.19) unstable; urgency=medium
 .
   [ Holger Levsen ]
   * Update Debian Edu Bookworm manual from the wiki.
 .
   [ Guido Berhoerster ]
   * Add build-dependency on inkscape in order to converts SVGs, bringing back
     the PDF versions of the bookworm manuals.
 .
   [ Translation updates ]
   * Bookworm manual:
     - Dutch: Frans Spiesschaert.
     - Spanish: Eulalio Barbero Espinosa and Francisco Javier Carro Orgeira.
   * Bullseye manual:
     - Spanish: Eulalio Barbero Espinosa and Francisco Javier Carro Orgeira.
debian-edu-doc (2.12.18) unstable; urgency=medium
 .
   [ Holger Levsen ]
   * Update Debian Edu Bookworm manual from the wiki, thanks to Guido Berhörster.
   * Update Debian Edu Bookworm manual from the wiki.
   * debian/copyright: Update after running 'make update-copyright'.
 .
   [ Frans Spiesschaert ]
   * Synchronize translations from weblate.org
 .
   [ Translation updates ]
   * Bookworm manual:
     - Brasilian Portuguese: Fred Maranhão and José Vieira.
     - Dutch: Frans Spiesschaert.
     - Portuguese: Fred Maranhão.
     - Romanian: Remus-Gabriel Chelu.
     - Spanish: Eulalio Barbero Espinosa and Francisco Javier Carro Orgeira.
     - Swedish: Luna Jernberg.
 .
   * Bullseye manual:
     - Brasilian Portuguese: Fred Maranhão and José Vieira.
     - Portuguese: Fred Maranhão.
     - Romanian: Remus-Gabriel Chelu.
     - Spanish: Eulalio Barbero Espinosa and Francisco Javier Carro Orgeira.
     - Swedish: Luna Jernberg.

debian-edu-fai (2023.11.19.1~deb12u1) bookworm; urgency=medium
 .
   * Release to Debian bookworm.
debian-edu-fai (2023.10.03.1) unstable; urgency=medium
 .
   * fai/config/_obsolete-files.d/debian-edu-fai.removed:
     - Add .asc files which got replaced by .gpg files.
   * fai/config/scripts/*/20-update-security-group-conf:
     - Don't fail script if not on DEBIAN_11.
   * fai/config/disk_config:
     - LVM_EDU_MINIMAL: Fix LV name (home -> srv).
     - Enlarge system partitions generously, so that system installation don't
       fail because of low-disk space.
debian-edu-fai (2023.09.26.3) unstable; urgency=medium
 .
   * debian/control:
     + Move memtest86+ (for archs amd64 + i386) to Recommends: field as we can't
       have arch-specific dependencies in arch-all bin:pkgs. (Closes: #1052957).
debian-edu-fai (2023.09.26.2) unstable; urgency=medium
 .
   * debian/control:
     + Fix installability on non-x86 architectures. People should at least be
       able to test those platforms.
debian-edu-fai (2023.09.26.1) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * Improve OS detection for loading profiles
 .
   [ Mike Gabriel ]
   * ChangeLog: update post-release
   * bin/debian-edu-fai_install: Promote http_proxy settings into FAI config
     space and set APTPROXY variable accordingly.
   * fai/config/hooks/updatebase.DEBIAN: Debian Edu sets up http proxy
     configuration via 03debian-edu-config. To override this (which we want),
     we need to move 02proxy to 04proxy in /etc/apt/apt.conf.d/.
debian-edu-fai (2023.09.19.2) unstable; urgency=medium
 .
   * bin/debian-edu-fai_updateconfigspace:
     + Fix syntax typo in shell script.
debian-edu-fai (2023.09.19.1) unstable; urgency=medium
 .
   [ Mike Gabriel ]
   * {bin/debian-edu-fai_install,fai/config/class/DEBIAN.var.in}:
     + Propagate mirrorurl from debian-edu-fai.conf into FAI config space.
     + Don't use @mirrorurl@, use internally derived @apt_cdn@ variable instead.
   * files/etc/apt/sources.list.d/fai-mirror.list/FAI_MIRROR:
     + Use more generic mirror (path) URL.
   * APT sources: Use {%apt_cdn%} variable instead of hard-coded servername.
   * bin/debian-edu-fai_install:
     + Fix config file's name in comment.
   * bin/debian-edu-fai_updateconfigspace:
     + More reliably detect if we are in a Git working copy.
   * fai/config/class:
     + Add OS detection code to 40-parse-profiles.sh to support OS + version specific
       installation profiles (detect from FAI nfsroot OS + version).
   * fai/config/class:
     + Rename / add profile files, now OS + version specific.
 .
   [ Guido Berhörster ]
   * fai/config/class/40-parse-profiles.sh:
     + Adjust OS_VERSION_MAJOR population.
debian-edu-fai (2023.09.09.1) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * Fix nullmailer configuration
     Configure the nullmailer relayhost (the default is mail.<domain>) in order to
     allow clients to actually send mail and explicitly set /etc/mailname
     (Closes: #1051461).
   * Do not append the hostname to /etc/mailname
     Do not append to /etc/mailname, the file should contain a single hostname.
     Rather create it with the default "postoffice.intern" if it does not exist yet.
     This is consistent with manual installations of Debian Edu.
debian-edu-fai (2023.09.07.1) unstable; urgency=medium
 .
   * Debian Edu FAI for Debian bookworm.
 .
   [ Guido Berhoerster ]
   * Rename bin/debian-edu-faiinstall to bin/debian-edu-fai_install for
     consistency with debian-edu-router.
   * Actually install /etc/security/group.conf on bullseye. From bookworm on this
     is handled via cfengine.
   * Use non-free-firmware component on bookworm and later.
     This is required for installing the firmware packages.
   * Add support for memtest86+ x64.
   * debian/control: Add explicit dependency on memtest86+.
   * Unset TMPDIR when invoking fai-make-nfsroot.
     On a DebianEdu installation pam_tmpdir is installed which sets TMPDIR to
     /tmp/user/<uid>.  This is then propagated from fai-make-nfsroot to
     debootstrap which causes maintainer scripts making use of TMPDIR (e.g. by
     calling mktemp) to fail because the directory does not exist inside the
     chroot.
   * Add some documentation about NFS exports to README.md
   * Switch to installing bookworm.
   * Ensure parent of target directory exists before copying FAI config space
     debian-edu-faiinstall does not check whether the parent of the target
     directory /srv/fai/config existed before invoking cp -a on the config space.
     Thus, if /srv/fai does no exist cp will copy /usr/share/debian-edu-fai/fai
     /config to /srv/fai instead of /srv/fai/config which is not detected until
     booting a client via PXE.  Fix this by ensuring the parent directory of
     $FAI_CONFIGDIR_REAL exists.
     Additionally do not hardcode /srv/fai which ignores that FAI_CONFIGDIR is
     configurable.
   * Disable apt proxy by default. Do not assume faiserver.intern exists. The
     proxy can be set via /etc/debian-edu/debian-edu-fai.conf.
   * Fix instructions in README.md and /etc/debian-edu/debian-edu-fai.conf
     The configuration file name is /etc/debian-edu/debian-edu-fai.conf not
     /etc/debian-edu/faiinstall.conf.
     Improve and shorten the instructions to set up SSH access for the fai user.
   * Add primary group fai for the fai user (instead of primary group
     nobody).
   * Recommend the use of yescrypt password hashes.
     This follows the default since Debian bullseye.
   * Add note about syntax to configuration.
   * Update motd for bookworm.
   * README.md: Change instructions to emphasize the need for first time
     configuration. Users should not be enticed to blindly run
     debian-edu-fai_install before actually configuring the server.
   * Ensure debian-edu-fai.conf is not world-readable
     It contains password hashes for the root account of installed clients so
     like /etc/shadow it should not be world readable.
   * Replace fetch-ldap-cert script usage with fetch-rootca-cert
     The fetch-ldap-cert init script has been obsolete and was removed
     (see #971780).
 .
   [ Mike Gabriel ]
   * bin/debian-edu-fai_install (port over from debian-edu-router's FAI
     installation script):
     + Manage config space with ucf.
     + Echo headlines to show where we are in the script.
     + Drop support for Debian versions older than bullseye
     + Mount /proc and /sys in nfsroot
   * README.md: Typo fix.
   * {README.md,conf/debian-edu/debian-edu-fai.conf}: Adjust files to renaming
     of debian-edu-fai_install script (only in docs or comments).
   * bin/debian-edu-fai_install: Mount /proc and /sys in nfsroot
     Mount prior to creating/updating it. Those mountpoints are needed by
     dracut's  45url-libs module.
   * debian/control:
     + Bump Standards-Version: to 4.6.2. No changes needed.
   * debian/copyright:
     + Update copyright attributions.
   * lintian: Override uses-dpkg-database-directly and openpgp-file-has-
     implementation-specific-extension for given reasons.

debian-edu-router (2.12.8~deb12u1) bookworm; urgency=medium
 .
   * Release to Debian bookworm.

debian-installer (20230607+deb12u3) bookworm; urgency=medium
 .
   * Bump Linux kernel ABI to 6.1.0-14.
   * Adjust linux-image build-deps as well.

debian-installer-netboot-images (20230607+deb12u3) bookworm; urgency=medium
 .
   * Update to 20230607+deb12u3, from bookworm-proposed-updates.

debootstrap (1.0.128+nmu2+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload targeting Debian 12.2, with maintainer approval
     from Luca Boccassi.
   * Backport merged-/usr support changes from trixie:
     - Implement merged-/usr by post-merging.
       This changes the bootstrap order so that it will be possible for a
       future version of base-files in trixie/sid to take responsibility for
       creating the /bin, /sbin, /lib* symlinks, and is a prerequisite for
       lifting the moratorium imposed by #1035831.
       (Closes: #1049898; implementation by Helmut Grohne)
     - functions: Reinstate setup_merged_usr() as it existed before
       fixing #1049898, for backwards-compatibility with older versions of
       mmdebstrap.
     - functions: Default to merged-/usr for suites newer than bookworm,
       even for the buildd profile. This allows packages targeting trixie
       to assume that merged-/usr is the only layout possible, and is a
       prerequisite for lifting the moratorium imposed by #1035831.
     - Mention --merged-usr in --help output. (Closes: #1031828)
   * Backport autopkgtest regression fixes from trixie:
     - Revert fake/schroot-1.6.10-3 to an accurate emulation of the
       behaviour of schroot 1.6.10-3 (Closes: #983311)
     - Document schroot 1.6.10-3 with the default profile as expected to
       fail to use /dev/pts in a lxc >= 3 or Docker container; this is a
       schroot bug (#983423) and not a debootstrap bug
     - With these changes, the autopkgtest is confirmed to pass in
       autopkgtest-virt-qemu (Closes: #983197)

devscripts (2.23.4+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
 .
   [ Bas Couwenberg ]
   * Update branch in gbp.conf & Vcs-Git URL.
 .
   [ Benjamin Drung ]
   * debchange: Update to current Debian distributions
     (closes: #1037336, #1038389, #1043021)

dhcpcd5 (9.4.1-24~deb12u3) bookworm; urgency=medium
 .
   * Move Breaks/Replaces dhcpcd5 (<< 9.4.1-2) to Conflicts (Closes: #1053657).
   * Update dhcpcd.preinst version check.

di-netboot-assistant (0.78~deb12u1) bookworm; urgency=medium
 .
   * Fixes for bookworm live iso image inclusion.
   * Update/add/fix preseed examples.  Thanks to Holger Wansing.
di-netboot-assistant (0.77) unstable; urgency=medium
 .
   * Update/add preseed examples.  Thanks to Holger Wansing.
   * Fixes for bookworm live image inclusion.

distro-info (1.5+deb12u1) bookworm; urgency=medium
 .
   * Update tests for distro-info-data 0.58+deb12u1, which adjusted Debian 7's
     EoL (Closes: #1054946)

distro-info-data (0.58+deb12u1) bookworm; urgency=medium
 .
   * Update data to 0.59:
     - Add Ubuntu 24.04 LTS Noble Numbat (LP: #2041662).
     - Correct Ubuntu 6.10 EOL date to 2008-04-25
     - Correct Ubuntu 16.04 ESM begin to 2021-04-30
     - Move Ubuntu 12.04 ESM end date back to Friday, 2019-04-26
     - Correct Debian 3.1 EOL date to 2008-03-31
     - Correct Debian 7 EOL date to 2016-04-25
     - Move Debian 9 EOL to the 9.13 release date 2020-07-18
     - Move Debian 10 EOL to the 10.13 release date 2022-09-10

eas4tbsync (4.7-1~deb12u1) bookworm; urgency=medium
 .
   * [4af7393] Adjust version of dependencies
   *     Prepared for release in bookworm (proposed-updates)
eas4tbsync (4.1.5+git20230524+c788967-1) experimental; urgency=medium
 .
   * [976c125] Changed compression for using zip file
   * [b9b95cd] New upstream version 4.1.5+git20230524+c788967
   * [976c125] Changed compression for using zip file
   * [b9b95cd] New upstream version 4.1.5+git20230524+c788967

exfatprogs (1.2.0-1+deb12u1) bookworm; urgency=medium
 .
   * CVE-2023-45897 Add debian/patches/CVE-2023-45897-out-of-bounds-memory-access
     to fix three out-of-bounds memory access issues.
   * Add bookworm branch information to Vcs-Git and gbp.conf.

exim4 (4.96-15+deb12u3) bookworm; urgency=medium
 .
   * Multiple bugfixes from upstream GIT master:
     + 75_74-Cancel-early-pipe-on-an-observed-advertising-change.patch
     + 75_76-Expansions-disallow-UTF-16-surrogates-from-utf8clean.patch
       (Upstream bug 2998)
     + 75_77-GnuTLS-fix-crash-with-tls_dhparam-none.patch
     + 75_79-Fix-recipients-expansion-when-used-within-run.-.-Bug.patch
       (Upstream bug 3013)
     + 75_82-GnuTLS-fix-autogen-cert-expiry-date.-Bug-3014.patch: Fix on-demand
       TLS cert expiry date. Closes: #1043233
       (Upstream bug 3014)
     + 75_83-Re-fix-live-variable-value-free.-The-inital-fix-resu.patch
     + 76-10-Fix-tr.-and-empty-strings.-Bug-3023.patch ((Upstream bug 3023)
     + 76-12-DNS-more-hardening-against-crafted-responses.patch
     + 76-14-Lookups-Fix-dnsdb-lookup-of-multi-chunk-TXT.-Bug-305.patch Fix
       regression in dnsdb in CVE-2023-42119 fix. (Upstream bug 3054)
   * tests/basic: Add isolation-container restriction (needs a running
     exim daemon).
   * Add ${run } expansion test to tests/basic.
   * Update code to 4.96.2, fixing issues with the proxy protocol
     (CVE-2023-42117) and the `dnsdb` lookup subsystem (CVE-2023-42119). It
     also includes additional hardening for spf lookups, however CVE-2023-42118
     was diagnosed as a vulnerability in the libspf2 library and needs to be
     addressed there. Closes: #1053310
exim4 (4.96-15+deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Address external and SPA authenticator vulnerabilities (CVE-2023-42114,
     CVE-2023-42115, CVE-2023-42116)
     - Auths: fix possible OOB write in external authenticator (CVE-2023-42115)
     - Auths: use uschar more in spa authenticator
     - Auths: fix possible OOB write in SPA authenticator (CVE-2023-42116)
     - Auths: fix possible OOB read in SPA authenticator (CVE-2023-42114)

fastdds (2.9.1+ds-1+deb12u2) bookworm-security; urgency=medium
 .
   * Backport security fix
     - CVE-2023-42459 Bad-free when receiving malformed DATA submessage
     (Closes: #1054163)

ffmpeg (7:5.1.4-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 5.1.4
ffmpeg (7:5.1.3-2) unstable; urgency=medium
 .
   * debian/patches:
     * Apply upstream patches for binutils 2.41
     * Apply upstream patches for svt-av1 1.6.0 (Closes: #1041541)

firefox-esr (115.5.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-50, also known as:
     CVE-2023-6204, CVE-2023-6205, CVE-2023-6206, CVE-2023-6207,
     CVE-2023-6208, CVE-2023-6209, CVE-2023-6212.
firefox-esr (115.5.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-50, also known as:
     CVE-2023-6204, CVE-2023-6205, CVE-2023-6206, CVE-2023-6207,
     CVE-2023-6208, CVE-2023-6209, CVE-2023-6212.
firefox-esr (115.4.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-46, also known as:
     CVE-2023-5721, CVE-2023-5732, CVE-2023-5724, CVE-2023-5725,
     CVE-2023-5728, CVE-2023-5730.
firefox-esr (115.4.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-46, also known as:
     CVE-2023-5721, CVE-2023-5732, CVE-2023-5724, CVE-2023-5725,
     CVE-2023-5728, CVE-2023-5730.
firefox-esr (115.4.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-46, also known as:
     CVE-2023-5721, CVE-2023-5732, CVE-2023-5724, CVE-2023-5725,
     CVE-2023-5728, CVE-2023-5730.
firefox-esr (115.3.1esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fix for mfsa2023-44, also known as CVE-2023-5217.
firefox-esr (115.3.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-42, also known as:
     CVE-2023-5169, CVE-2023-5171, CVE-2023-5176.
 .
   * debian/control*, debian/rules: Work around bug 1052002 by force-using
     clang-14.
firefox-esr (115.3.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-42, also known as:
     CVE-2023-5169, CVE-2023-5171, CVE-2023-5176.
 .
   * debian/control*, debian/rules: Work around bug 1052002 by force-using
     clang-14.
firefox-esr (115.3.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-42, also known as:
     CVE-2023-5169, CVE-2023-5171, CVE-2023-5176.
 .
   * debian/control*, debian/rules: Work around bug 1052002 by force-using
     clang-14.
firefox-esr (115.2.1esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fix for mfsa2023-40, also known as CVE-2023-4863.
 .
   * debian/upstream.mk, debian/repack.py: Get l10n sources from zip archives.
     Thanks David Turner for the initial implementation.
firefox-esr (115.2.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-36, also known as:
     CVE-2023-4573, CVE-2023-4574, CVE-2023-4575, CVE-2023-4577,
     CVE-2023-4051, CVE-2023-4578, CVE-2023-4053, CVE-2023-4580,
     CVE-2023-4581, CVE-2023-4583, CVE-2023-4584, CVE-2023-4585.
 .
   * debian/watch: Refresh.
firefox-esr (115.1.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-31, also known as:
     CVE-2023-4045, CVE-2023-4046, CVE-2023-4047, CVE-2023-4048,
     CVE-2023-4049, CVE-2023-4050, CVE-2023-4055, CVE-2023-4056,
     CVE-2023-4057.
firefox-esr (115.0.2esr-1) unstable; urgency=medium
 .
   * New upstream release.
 .
   * security/nss/lib/freebl/unix_rand.c,
     security/nss/cmd/shlibsign/shlibsign.c: Unapply changes for Hurd, as
     there is no rustc there.

fonts-noto-color-emoji (2.042-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream release (Closes: #1057150)
     - This major update introduces support for the Unicode 15.1 standard
     https://blog.emojipedia.org/googles-emoji-15-1-support-in-noto-color-emoji/
   * debian/gbp.conf: Branch for bookworm
   * debian/watch: Update for Github changes
fonts-noto-color-emoji (2.041-1) unstable; urgency=medium
 .
   * New upstream release (LP: #2045043)
     - This major update introduces support for the Unicode 15.1 standard
     https://blog.emojipedia.org/googles-emoji-15-1-support-in-noto-color-emoji/
   * Bump Standards-Version to 4.6.2

gimp (2.10.34-1+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Add Conflicts+Replaces: gimp-dds to remove old versions of this
     plugin shipped by gimp itself since 2.10.10. (Closes: #1057149)
gimp (2.10.34-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * plug-ins: Fix vulnerabilities in file-psp (CVE-2023-44443, CVE-2023-44444)
     (Closes: #1055984)
   * plug-ins: Fix vulnerability in file-psd (CVE-2023-44442)
     (Closes: #1055984)
   * plug-ins: Fix DDS vulnerability (ZDI-CAN-22093) (CVE-2023-44441)
     (Closes: #1055984)
   * plug-ins: Fix DDS import regression
   * plug-ins: Additional fixes for DDS Import

glibc (2.36-9+deb12u3) bookworm-security; urgency=medium
 .
   * debian/patches/any/local-CVE-2023-4911.patch: Fix a buffer overflow in the
     dynamic loader's processing of the GLIBC_TUNABLES environment variable
     (CVE-2023-4911).

gnome-characters (43.1-1+deb12u1) bookworm; urgency=medium
 .
   * Cherry-pick patch for Unicode 15.0.1 updates
   * Cherry-pick proposed patch for Unicode 15.1 updates (Closes: #1057158)
   * debian/gbp.conf: Branch for bookworm

gnome-session (43.0-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * d/gbp.conf: Configure branches for Debian 12 stable updates
   * Open text files in gnome-text-editor if gedit is not installed.
     The preinstalled text editor for Debian GNOME systems was changed
     from gedit in Debian 11 to gnome-text-editor in Debian 12, but this
     file was not updated to match, resulting in various plain-text formats
     being opened in Libreoffice Writer rather than gnome-text-editor in a
     default task-gnome-desktop installation with no further configuration.
     To preserve current behaviour for systems that have gedit installed
     (perhaps as a result of them having been upgraded from Debian 11 to
     12), for all file types that were previously handled with gedit,
     continue to use gedit by default if it happens to be installed,
     but fall back to gnome-text-editor if gedit is not present.
     The preference order is likely to change to gnome-text-editor as
     default, with gedit as a fallback, in Debian 13.
     (Closes: #1055838)

gnome-shell (43.9-0+deb12u1) bookworm; urgency=medium
 .
   * d/control.in, d/gbp.conf: Use debian/bookworm branch
   * New upstream stable release 43.8
     - Allow notifications to be dismissed with backspace key in addition to
       delete key, for easier use on laptops where the delete key might be
       missing or hard to reach (gnome-shell#5789)
     - Update subprojects/gvc subproject to the same version used in 44.4
       (gnome-shell#6842)
       + Fix duplicate devices shown when reconnecting to PulseAudio
       + Fix possible use-after-free crashes on PulseAudio/Pipewire restart
       + Improve choice of default icons
       + Performance improvements
     - Avoid sliders in quick settings (volume, etc.) being reported to
       accessibility tools as their own parent object (gnome-shell#6686)
     - Better compatibility with Debian 12's version of ibus
       (gnome-shell#6405)
     - Report focus events to ibus when using Wayland (gnome-shell#6415)
     - In the "looking glass" debug interface, cope with objects that
       cannot be converted to string
     - When showing weather, avoid getting meaningless location names like
       "WiFi" or "GeoIP" from GeoClue >= 2.7
     - Improve GNOME Shell app grid performance by avoiding repainting
       monitors other than the one it is displayed on (gnome-shell#6819)
     - Align scrolled viewports to the pixel grid to avoid jitter visible
       during scrolling (gnome-shell#6835)
     - Support translated strings in more files
     - Upstream CI adjustments not relevant to Debian
     - All other changes were already in 43.7-1 or 43.7-2
   * New upstream stable release 43.9
     - Avoid exposing window previews on lock screen via keyboard shortcuts
       (CVE-2023-43090, gnome-shell#6990; previously fixed for bookworm via
       patches in 43.6-1~deb12u2)
     - Improve handling of latched vs. locked modes in on-screen keyboard
       (gnome-shell#5763, also fixed in 44.5)
     - Reverse slider direction in RTL locales
       (gnome-shell#5107, also fixed in 44.5)
     - Add missing environment variables required to launch ibus-daemon
       (gnome-shell#6998, also fixed in 44.5)
     - Translation updates
   * d/patches: Drop patches that were included in the new upstream releases
   * d/patches: Update to upstream gnome-43 branch commit 43.9-1-g3b921ba0c
     - d/p/overview-Handle-unredirection-in-OverviewShown-state-mach.patch:
       Improve performance for most full-screen applications by ensuring
       that a fast-path for them stays enabled when it should be.
       (mutter#2994 upstream; also fixed in 44.5-2)
 .
 gnome-shell (43.7-2) unstable; urgency=medium
 .
   * Team upload
   * d/p/main-Leak-the-GJS-context-and-ShellGlobal.patch:
     Add patch from Fedora to skip final cleanup during exit.
     This has been implicated in various crashes during exit, which cause
     gnome-shell to disable extensions during the next startup. Leaking some
     memory at this point does not matter since the process is exiting anyway.
     The crashes during exit are believed to have been fixed in 44.beta, but
     those changes are too intrusive to be suitable for a backport.
     (Closes: #1038972)
 .
 gnome-shell (43.7-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream stable release
     - Apply hotspot translation to mouse cursor while using magnifier,
       fixing an offset between the visble pointer position and the actual
       pointer (gnome-shell#4584, also fixed in 44.3)
     - Don't log an error when AccountsService signals a change while
       parental controls are disabled globally
       (gnome-shell#6749, also fixed in 44.3)
     - Keep rounded corners on the overview's view of the desktop, even
       after the background image changes
       (gnome-shell#4125, also fixed in 44.3)
   * d/patches: Update to upstream gnome-43 branch commit 43.7-1-g0d51f199e
     - Translation update: fa
   * d/gbp.conf, d/control.in: Use debian/trixie branch
gnome-shell (43.7-2) unstable; urgency=medium
 .
   * Team upload
   * d/p/main-Leak-the-GJS-context-and-ShellGlobal.patch:
     Add patch from Fedora to skip final cleanup during exit.
     This has been implicated in various crashes during exit, which cause
     gnome-shell to disable extensions during the next startup. Leaking some
     memory at this point does not matter since the process is exiting anyway.
     The crashes during exit are believed to have been fixed in 44.beta, but
     those changes are too intrusive to be suitable for a backport.
     (Closes: #1038972)
gnome-shell (43.7-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream stable release
     - Apply hotspot translation to mouse cursor while using magnifier,
       fixing an offset between the visble pointer position and the actual
       pointer (gnome-shell#4584, also fixed in 44.3)
     - Don't log an error when AccountsService signals a change while
       parental controls are disabled globally
       (gnome-shell#6749, also fixed in 44.3)
     - Keep rounded corners on the overview's view of the desktop, even
       after the background image changes
       (gnome-shell#4125, also fixed in 44.3)
   * d/patches: Update to upstream gnome-43 branch commit 43.7-1-g0d51f199e
     - Translation update: fa
   * d/gbp.conf, d/control.in: Use debian/trixie branch
gnome-shell (43.6-1) unstable; urgency=medium
 .
   * New upstream stable release 43.5
     - Fix a regression in 43~beta involving detection of hotplugged media
       with autorunnable content (gnome-shell!2745)
     - Make search results fill unused space as intended (gnome-shell#5924)
     - Improve matching of app StartupWMClass to a .desktop file, giving
       priority to apps that were not hidden by OnlyShowIn under the current
       desktop environment, in particular preferring gnome-system-monitor's
       non-KDE-specific .desktop file while running GNOME (gnome-shell!2721)
     - Fix assertion failures after a window preview is destroyed
       (gnome-shell#5512, gnome-shell#6065)
     - Avoid destroying labels twice, most commonly when using
       gnome-shell-extension-dash-to-dock (gnome-shell!2739)
     - Avoid keyboard navigation focus getting stuck on top bar buttons with
       no associated menu (gnome-shell!2734, might help #1032319)
     - Fix queued notifications getting into a state where they can no
       longer be removed (gnome-shell!2736)
     - Receive notifications of removed objects from D-Bus ObjectManager
       instances correctly (gnome-shell!2730)
     - Fix a cursor appearing at 0,0 in screenshots that should not
       include it (gnome-shell!2702)
     - Update visibility of workspaces in workspace switcher when required
       (gnome-shell#6519)
     - After 60 second timeout in logout/reboot/poweroff confirmation
       dialog, do the requested action instead of leaving the Shell in a
       broken state (gnome-shell#6506)
     - Fix an assertion failure during shutdown (gnome-shell#6512)
     - Fix an assertion failure if Geoclue isn't D-Bus-activatable
       (gnome-shell!2689)
     - Fix a regression in which the cursor would not be included in
       screenshots since mutter 43.1 (gnome-shell!2710)
     - Upstream CI fixes not relevant to Debian
     - Translation update: zh_CN
   * New upstream stable release 43.6
     - Fix a crash when a window preview is destroyed (gnome-shell#6570)
     - When cancelling the polkit agent prompt while using
       gnome-remote-desktop, don't break subsequent polkit prompts
       (gnome-shell!2761)
     - Fix "TypeError: this._dragActor is null" warnings related to
       drag-and-drop (gnome-shell!2770)
     - Fix input method popup getting stuck on screen during engine changes
       (gnome-shell#6717)
     - Translation update: pt_BR
   * d/control.in: Build-depend on mutter 43.5, for a newly-public utility
     function needed by gnome-shell!2710
   * d/patches: Drop ab translation patch, applied upstream

gnutls28 (3.7.9-2+deb12u1) bookworm; urgency=medium
 .
   * Backport fix for CVE-2023-5981 / GNUTLS-SA-2023-10-23 (timing sidechannel
     in RSA-PSK key exchange) from 3.8.2. Closes: #1056188

gosa (2.8~git20230203.10abe45+dfsg-1+deb12u2) bookworm; urgency=medium
 .
   [ Daniel Teichmann ]
   * debian/patches:
     + Add 1007_fix_debugLevel_bitwise_and.patch. Use single ampersand
       operator for logical and operation (not double ampersand).
     + Add 1008_main-dont-die-on-empty-config-object.patch. Gracefully exit
       if config object is unavailable (and report to syslog). (Closes:
       #1039964).
     + Add 1009_plugin-callHook-always_output_shell_debugging_msgs.patch.
       Fix output of shell debugging messages via WebUI.
     + Add 1044_fix-class-ldap-serialization.patch which fixes a few bugs
       regarding serialization. This especially fixes setting LDAP userPassword
       attribute types via GOsa². (Closes: #1052159).
     + Add 1045_fix-posixaccount-shadowExpire.patch which fixes shadowExpire
       always being set to 0. (User can't login then). (Closes: #1053806).
 .
   [ Guido Berhoerster ]
   * debian/patches:
     + Add 1010_fix-fix-accept-to-gettext.patch. Fix PHP errors in accept-to-
       gettext.inc. This fixes numerous errors due to accessing undefined
       associative array elements. (Closes: #1043019).
     + Add 2009-Revert-Enable-env-to-work.patch. Work around broken handling of
       plugin hook commands in gosa > 2.7.4. (Closes: #1039698, #1039699).
     + Add 1041_fix-role-selector.patch in order to fix role selection
     + Add 1042_fix-user-info-default-theme.patch
 .
   [ Mike Gabriel ]
   * debian/patches:
     + Add patches 1011 to 1020. Revert nested group feature for GOsa² groups.
       This feature is completely broken in GOsa² upstream when posixGroups
       are in use. (Closes: #1049328). Also trivially rebase patches 1009 and
       2009.
     + Add 1021_fix-config-parser-being-null.patch. Since PHP 8.x an XML parser
       must not be null when accessed. It needs to be an instance of XMLParser().
       (Closes: #1049338).
     + Re-add 1035_acl_override_to_allow_delete_of_group_members.patch. Allow
       users with memberUid write access to remove users from posixGroup objects.
       Related to closing #1049328.
     + Add 1099_remove-debug-code.patch. Drop unwanted var_dump() call and
       other print statements.
     + Add 1022_fix-implicit-conversions-of-float-to-int.patch. Avoid PHP
       deprecation warning "Deprecated: Implicit conversion from float <floatval>
       to int loses precision in <php-file>". (Closes: #1043575).
     + Add 11?? patches. Derived from Debian's gosa 2.7.5 patchset (and ignored
       first when bringing in gosa 2.8.x, but now re-reviewed and re-applied).
     + Add 1023_fix-icon-labelling-with-default-theme.patch. Properly render
       labelled icons if default materialize CSS theme is used. (Closes:
       #1049400).
     + Improve 1003_php-deprecations.patch. Silence another 'Deprecated:
       preg_match(): Passing null to parameter #2 () of type string is
       deprecated' warning. (Closes: #1049394).
     + Add 1024_fix-mess-of-using-and-comparing-int-and-string-values.patch.
       This resolves a dirty class property design for the posixAccount class.
       This patch attempts at avoiding int-with-string value comparisons for
       the properties gidNumber (string) and primaryGroup (int). (Closes:
       #1049344).
     + Add 1155_fix-uid-generation-when-many-uids-have-been-already-taken.patch
       from Debian's GOsa² 2.7.5 (never uploaded to Debian, but valid for GOsa²
       2.8). (Closes: #991545).
     + Improve 1007_fix_debugLevel_bitwise_and.patch. Default value for
       debugLevel is an empty string. Assure this gets interpreted as 0
       debugLevel. (Closes: #1049937).
     + Add 2010_vacation-templates-writeable-path.patch. Use a folder in
       /var/lib/ for providing a GOsa²-writeable path for vacation templates.
       (Closes: #1049938).
     + Add 1025_fix-icons-in-debugBar.patch. Don't use image() method from
       GOsa²'s function.inc. The debug toolbar is not themed, so hard-code
       icon img tags. (Closes: #1049939). This resolves the problem of non-shown
       icons if the default (Materialize CSS) theme is used.
     + Add 1026_dont-access-static-property-non-static.patch. Resolves 'Accessing
       static property LDAP:: as non static'. (Closes: #1049956).
     + Add patches 1027 - 1033. Fix various PHP errors/warnings reported to
       syslog. (Closes: #1049942).
     + Add patches 106?_*.patch. Resolve various issues in GOsa²'s acl class.
       (Closes: #1049940).
     + Add 1034_include-class_listing.inc-Fix-processElementFilter-n.patch.
       include/class_listing.inc: Fix processElementFilter() not considering
       default values for method parameters. (Closes: #1050489).
     + Add 1063_include-class_-listing-acl-.inc-plugins-admin-acl-cl.patch.
       plugins/admin/acl/class_aclRole.inc: Fix accessing variables if they
       are NULL or keys of arrays which aren't even set. (Closes: #1049940)
     + Add 1036_include-class_filter.inc-Define-gridClass-for-defaul.patch.
       include/class_filter.inc: Define gridClass for default and classic theme.
     + Add 1037_include-php_setup.inc-Hide-ldap_-search-read-Search-.patch.
       Silence 'Search: No such object.' PHP error messages for ldap_search()
       and ldap_read(). Those errors are mostly not errors but simply search /
       query results.
     + Add 1038_include-class_pathNavigator.inc-Don-t-send-object-DN.patch.
       Silence 'invalid DN syntax' errors from LDAP server when creating new
       user objects. (Closes: #1051995).
     + Add 1040_fix-instance-property-typo-in-class_acl-inc.patch. Fix 'Array
       to string conversion (/usr/share/gosa/include/class_acl.inc, line 180)'.
       (Closes: #1051997).
     + Add 1043a_Add-setter-for-skipFooter-property-needed-for-mfa-ex.patch.
       Add modifier for skipFooter protected class property. Required for
       gosa-plugins-privacyidea.
     + Add 1043b_honour-plugin-property-skipFooter-used-by-mfa-account.patch.
       Honour plugin property 'skipFooter'.
   * debian/gosa.{dirs,links,postinst}:
     + Provide /var/lib/gosa/vacation and symlink to it from /etc/gosa.
   * debian/rules:
     + Symlink the smarty4 version of the smarty-gettext plugin to DATADIR/
       gosa/include/smartyAddons/.

gosa-plugins-sudo (2.8~git20211022.7ff3ed2-2+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 1001_plugins-admin-sudo-class_sudoGeneric.inc-Assign-vari.patch.
       Assign variable before using it.

grub-efi-amd64-signed (1+2.06+13+deb12u1) bookworm-security; urgency=medium
 .
   * Update to grub2 2.06-13+deb12u1

grub-efi-arm64-signed (1+2.06+13+deb12u1) bookworm-security; urgency=medium
 .
   * Update to grub2 2.06-13+deb12u1

grub-efi-ia32-signed (1+2.06+13+deb12u1) bookworm-security; urgency=medium
 .
   * Update to grub2 2.06-13+deb12u1

grub2 (2.06-13+deb12u1) bookworm-security; urgency=medium
 .
   [ Mate Kukri ]
   * SECURITY UPDATE: Crafted file system images can cause out-of-bounds write
     and may leak sensitive information into the GRUB pager.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-a-volume-
       label.patch:
       fs/ntfs: Fix an OOB read when parsing a volume label
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-bs-for-
       index-at.patch:
       fs/ntfs: Fix an OOB read when parsing bitmaps for index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-parsing-dory-
       entries-fr.patch:
       fs/ntfs: Fix an OOB read when parsing directory entries from resident and
       non-resident index attributes
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-read-when-reading-data-fhe-
       reside.patch:
       fs/ntfs: Fix an OOB read when reading data from the resident $DATA +
       attribute
     - CVE-2023-4693
   * SECURITY UPDATE: Crafted file system images can cause heap-based buffer
     overflow and may allow arbitrary code execution and secure boot bypass.
     - d/patches/ntfs-cve-fixes/fs-ntfs-Fix-an-OOB-write-when-parsing-the-
       ATTRIBUTE_LIST-.patch:
       fs/ntfs: Fix an OOB write when parsing the $ATTRIBUTE_LIST attribute for
       the $MFT file
     - d/patches/ntfs-cve-fixes/fs-ntfs-Make-code-more-readable.patch
       fs/ntfs: Make code more readable
     - CVE-2023-4692
 .
   [ Julian Andres Klode ]
   * Bump SBAT to grub,4

gst-plugins-bad1.0 (1.22.0-4+deb12u3) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * codecparsers: av1: Clip max tile rows and cols values (CVE-2023-44429)
     (Closes: #1056102)
   * mxfdemux: Store GstMXFDemuxEssenceTrack in their own fixed allocation
     (CVE-2023-44446) (Closes: #1056101)
gst-plugins-bad1.0 (1.22.0-4+deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * h265parser: Fix possible overflow using max_sub_layers_minus1
     (CVE-2023-40476) (Closes: #1053259)
   * mxfdemux: Fix integer overflow causing out of bounds writes when handling
     invalid uncompressed video (CVE-2023-40474) (Closes: #1053261)
   * mxfdemux: Check number of channels for AES3 audio (CVE-2023-40475)
     (Closes: #1053260)

hash-slinger (3.1-1.1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Bug fix: "tlsa can produce invalid records" (Closes: #1053483)

intel-graphics-compiler (1.0.12504.6-1+deb12u1) bookworm; urgency=medium
 .
   * Replace patches with cherry-picked upstream commits.
   * Cherry-pick fixes for compatibility with intel-vc-intrinsics 0.11.0.
     (Closes: #1055874)
   * Bump intel-vc-intrinsics build-dependency to 0.11.0.
   * Upload to bookworm.

intel-microcode (3.20231114.1~deb12u1) bookworm-security; urgency=high
 .
   * Build for bookworm (no changes)
 .
 intel-microcode (3.20231114.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20231114 (closes: #1055962)
     Mitigations for "reptar", INTEL-SA-00950 (CVE-2023-23583)
     Sequence of processor instructions leads to unexpected behavior for some
     Intel(R) Processors, may allow an authenticated user to potentially enable
     escalation of privilege and/or information disclosure and/or denial of
     service via local access.
     Note: "reptar" on 4th gen Xeon Scalable (sig 0x806f8 pfm 0x87), 12th gen
     Core mobile (sig 0x906a4 pfm 0x80), 13th gen Core desktop (sig 0xb0671 pfm
     0x01) were already mitigated by a previous microcode update.
   * Fixes for unspecified functional issues
   * Updated microcodes:
     sig 0x000606a6, pf_mask 0x87, 2023-09-01, rev 0xd0003b9, size 299008
     sig 0x000606c1, pf_mask 0x10, 2023-09-08, rev 0x1000268, size 290816
     sig 0x000706e5, pf_mask 0x80, 2023-09-03, rev 0x00c2, size 113664
     sig 0x000806c1, pf_mask 0x80, 2023-09-07, rev 0x00b4, size 111616
     sig 0x000806c2, pf_mask 0xc2, 2023-09-07, rev 0x0034, size 98304
     sig 0x000806d1, pf_mask 0xc2, 2023-09-07, rev 0x004e, size 104448
     sig 0x000806f8, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0, size 572416
     sig 0x000806f8, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f7, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f6, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f5, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f4, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f8, pf_mask 0x10, 2023-06-26, rev 0x2c000290, size 605184
     sig 0x000806f8, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f6, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f5, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f4, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x00090672, pf_mask 0x07, 2023-06-07, rev 0x0032, size 222208
     sig 0x00090672, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x00090675, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000b06f2, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000b06f5, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000906a3, pf_mask 0x80, 2023-06-07, rev 0x0430, size 220160
     sig 0x000906a3, pf_mask 0x80, 2023-06-07, rev 0x0430
     sig 0x000906a4, pf_mask 0x80, 2023-06-07, rev 0x0430
     sig 0x000906a4, pf_mask 0x40, 2023-05-05, rev 0x0005, size 117760
     sig 0x000a0671, pf_mask 0x02, 2023-09-03, rev 0x005d, size 104448
     sig 0x000b0671, pf_mask 0x32, 2023-08-29, rev 0x011d, size 210944
     sig 0x000b06a2, pf_mask 0xe0, 2023-08-30, rev 0x411c, size 216064
     sig 0x000b06a2, pf_mask 0xe0, 2023-08-30, rev 0x411c
     sig 0x000b06a3, pf_mask 0xe0, 2023-08-30, rev 0x411c
     sig 0x000b06e0, pf_mask 0x11, 2023-06-26, rev 0x0012, size 136192
   * Updated 2023-08-08 changelog entry with reptar information
   * source: update symlinks to reflect id of the latest release, 20231114
intel-microcode (3.20231114.1~deb11u1) bullseye-security; urgency=high
 .
   * Backport to Debian Bullseye
   * debian/control: revert non-free-firmware change
 .
 intel-microcode (3.20231114.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20231114 (closes: #1055962)
     Mitigations for "reptar", INTEL-SA-00950 (CVE-2023-23583)
     Sequence of processor instructions leads to unexpected behavior for some
     Intel(R) Processors, may allow an authenticated user to potentially enable
     escalation of privilege and/or information disclosure and/or denial of
     service via local access.
     Note: "reptar" on 4th gen Xeon Scalable (sig 0x806f8 pfm 0x87), 12th gen
     Core mobile (sig 0x906a4 pfm 0x80), 13th gen Core desktop (sig 0xb0671 pfm
     0x01) were already mitigated by a previous microcode update.
   * Fixes for unspecified functional issues
   * Updated microcodes:
     sig 0x000606a6, pf_mask 0x87, 2023-09-01, rev 0xd0003b9, size 299008
     sig 0x000606c1, pf_mask 0x10, 2023-09-08, rev 0x1000268, size 290816
     sig 0x000706e5, pf_mask 0x80, 2023-09-03, rev 0x00c2, size 113664
     sig 0x000806c1, pf_mask 0x80, 2023-09-07, rev 0x00b4, size 111616
     sig 0x000806c2, pf_mask 0xc2, 2023-09-07, rev 0x0034, size 98304
     sig 0x000806d1, pf_mask 0xc2, 2023-09-07, rev 0x004e, size 104448
     sig 0x000806f8, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0, size 572416
     sig 0x000806f8, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f7, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f6, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f5, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f4, pf_mask 0x87, 2023-06-16, rev 0x2b0004d0
     sig 0x000806f8, pf_mask 0x10, 2023-06-26, rev 0x2c000290, size 605184
     sig 0x000806f8, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f6, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f5, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x000806f4, pf_mask 0x10, 2023-06-26, rev 0x2c000290
     sig 0x00090672, pf_mask 0x07, 2023-06-07, rev 0x0032, size 222208
     sig 0x00090672, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x00090675, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000b06f2, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000b06f5, pf_mask 0x07, 2023-06-07, rev 0x0032
     sig 0x000906a3, pf_mask 0x80, 2023-06-07, rev 0x0430, size 220160
     sig 0x000906a3, pf_mask 0x80, 2023-06-07, rev 0x0430
     sig 0x000906a4, pf_mask 0x80, 2023-06-07, rev 0x0430
     sig 0x000906a4, pf_mask 0x40, 2023-05-05, rev 0x0005, size 117760
     sig 0x000a0671, pf_mask 0x02, 2023-09-03, rev 0x005d, size 104448
     sig 0x000b0671, pf_mask 0x32, 2023-08-29, rev 0x011d, size 210944
     sig 0x000b06a2, pf_mask 0xe0, 2023-08-30, rev 0x411c, size 216064
     sig 0x000b06a2, pf_mask 0xe0, 2023-08-30, rev 0x411c
     sig 0x000b06a3, pf_mask 0xe0, 2023-08-30, rev 0x411c
     sig 0x000b06e0, pf_mask 0x11, 2023-06-26, rev 0x0012, size 136192
   * Updated 2023-08-08 changelog entry with reptar information
   * source: update symlinks to reflect id of the latest release, 20231114
intel-microcode (3.20230808.1) unstable; urgency=high
 .
   * New upstream microcode datafile 20230808 (closes: #1043305)
     Mitigations for "Downfall" INTEL-SA-00828 (CVE-2022-40982),
     INTEL-SA-00836 (CVE-2023-23908) and INTEL-SA-00837 (CVE-2022-41804)
     * Updated microcodes:
       sig 0x00050653, pf_mask 0x97, 2023-03-23, rev 0x1000181, size 36864
       sig 0x00050654, pf_mask 0xb7, 2023-03-06, rev 0x2007006, size 44032
       sig 0x00050656, pf_mask 0xbf, 2023-03-17, rev 0x4003604, size 38912
       sig 0x00050657, pf_mask 0xbf, 2023-03-17, rev 0x5003604, size 38912
       sig 0x0005065b, pf_mask 0xbf, 2023-03-21, rev 0x7002703, size 30720
       sig 0x000606a6, pf_mask 0x87, 2023-03-30, rev 0xd0003a5, size 297984
       sig 0x000706e5, pf_mask 0x80, 2023-02-26, rev 0x00bc, size 113664
       sig 0x000806c1, pf_mask 0x80, 2023-02-27, rev 0x00ac, size 111616
       sig 0x000806c2, pf_mask 0xc2, 2023-02-27, rev 0x002c, size 98304
       sig 0x000806d1, pf_mask 0xc2, 2023-02-27, rev 0x0046, size 103424
       sig 0x000806e9, pf_mask 0xc0, 2023-02-22, rev 0x00f4, size 106496
       sig 0x000806e9, pf_mask 0x10, 2023-02-23, rev 0x00f4, size 105472
       sig 0x000806ea, pf_mask 0xc0, 2023-02-23, rev 0x00f4, size 105472
       sig 0x000806eb, pf_mask 0xd0, 2023-02-23, rev 0x00f4, size 106496
       sig 0x000806ec, pf_mask 0x94, 2023-02-26, rev 0x00f8, size 106496
       sig 0x000806f8, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1, size 572416
       sig 0x000806f7, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f6, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f5, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f4, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f8, pf_mask 0x10, 2023-05-15, rev 0x2c000271, size 605184
       sig 0x000806f6, pf_mask 0x10, 2023-05-15, rev 0x2c000271
       sig 0x000806f5, pf_mask 0x10, 2023-05-15, rev 0x2c000271
       sig 0x000806f4, pf_mask 0x10, 2023-05-15, rev 0x2c000271
       sig 0x00090672, pf_mask 0x07, 2023-04-18, rev 0x002e, size 220160
       sig 0x00090675, pf_mask 0x07, 2023-04-18, rev 0x002e
       sig 0x000b06f2, pf_mask 0x07, 2023-04-18, rev 0x002e
       sig 0x000b06f5, pf_mask 0x07, 2023-04-18, rev 0x002e
       sig 0x000906a3, pf_mask 0x80, 2023-04-18, rev 0x042c, size 219136
       sig 0x000906a4, pf_mask 0x80, 2023-04-18, rev 0x042c
       sig 0x000906e9, pf_mask 0x2a, 2023-02-23, rev 0x00f4, size 108544
       sig 0x000906ea, pf_mask 0x22, 2023-02-23, rev 0x00f4, size 104448
       sig 0x000906eb, pf_mask 0x02, 2023-02-23, rev 0x00f4, size 106496
       sig 0x000906ec, pf_mask 0x22, 2023-02-23, rev 0x00f4, size 105472
       sig 0x000906ed, pf_mask 0x22, 2023-02-27, rev 0x00fa, size 106496
       sig 0x000a0652, pf_mask 0x20, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0653, pf_mask 0x22, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0655, pf_mask 0x22, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0660, pf_mask 0x80, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0661, pf_mask 0x80, 2023-02-23, rev 0x00f8, size 96256
       sig 0x000a0671, pf_mask 0x02, 2023-02-26, rev 0x0059, size 104448
       sig 0x000b0671, pf_mask 0x32, 2023-06-06, rev 0x0119, size 210944
       sig 0x000b06a2, pf_mask 0xe0, 2023-06-06, rev 0x4119, size 216064
       sig 0x000b06a3, pf_mask 0xe0, 2023-06-06, rev 0x4119
       sig 0x000b06e0, pf_mask 0x11, 2023-04-12, rev 0x0011, size 136192
   * source: update symlinks to reflect id of the latest release, 20230808

iotop-c (1.23-1+deb12u1) bookworm; urgency=medium
 .
   * Backport fixes from 1.25
     - Fix ESC makes iotop busy loop
     - Fix the logic in 'only' option
   * Backport fixes from 1.24
     - Fix ASCII graph problem in R, W & RW modes

jdupes (1.21.3-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches/010_fix-data-loss.patch: created to avoid a potential data
     loss caused by a wrong message that induces the users to use a range of
     values with -d option. Currently, the -d option doesn't understand ranges.
     (Closes: #1054237)

jetty9 (9.4.50-4+deb12u2) bookworm-security; urgency=high
 .
   * Team upload.
   * Fix CVE-2023-36478 and CVE-2023-44487:
     Two remotely exploitable security vulnerabilities were discovered in Jetty
     9, a Java based web server and servlet engine. The HTTP/2 protocol
     implementation did not sufficiently verify if HPACK header values exceed
     their size limit. Furthermore the HTTP/2 protocol allowed a denial of
     service (server resource consumption) because request cancellation can
     reset many streams quickly. This problem is also known as Rapid Reset
     Attack.

jtreg6 (6.2+1-3~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild latest jtreg6 from testing, needed for running the tests
     for the latest OpenJDK 17.x releases
jtreg6 (6.2+1-2) unstable; urgency=medium
 .
   * Team upload.
   * Apply reproducible builds patch (Closes: #1050944)
     Thank you to Chris Lamb and Vagrant Cascadian
   * Use debhelper-compat 13
   * Use DEB_VERSION_UPSTREAM to parse VERSION and BUILD_NUMBER in d/rules
jtreg6 (6.2+1-1) unstable; urgency=medium
 .
   * Team upload.
 .
   [ Emmanuel Bourg ]
   * New upstream release
     - Refreshed the patches
   * Removed debian/orig-tar.sh and updated the watch file
   * Removed the gradle wrapper from the upstream tarball
   * Standards-Version updated to 4.6.2
 .
   [ tony mancill ]
   * Update jtreg6 dependences for openjdk-11 and 17 (Closes: #1041282)
     Thank you to Vladimir Petko for the patch, which also
     Closes: #1036065, #1036066

lastpass-cli (1.3.7-1~deb12u1) bookworm; urgency=medium
 .
   * Upload latest upstream version to fix compatability with Lastpass's
     SSL keys. (Closes: #1055876)
lastpass-cli (1.3.6-1) unstable; urgency=medium
 .
   * New upstream release.
   * Refresh patches.
lastpass-cli (1.3.5-2) unstable; urgency=medium
 .
   * Always use the Debian version number. (Closes: #1051218)
lastpass-cli (1.3.5-1) unstable; urgency=medium
 .
   * New upstream release. (Closes: #1050973)
lastpass-cli (1.3.4-2) unstable; urgency=medium
 .
   * Also clean test/.lpass directory. (Closes: #1048723)

libapache2-mod-python (3.5.0+git20211031.e6458ec-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * In 03_debian-version.patch, strip the debian part of the version. BinNMUs
     were resulting in invalid PEP-440 versions. (Closes: #1054587)
   * Patch: Fix segfaults when releasing threads. (Closes: #1019299)

libcue (2.2.1-4+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2023-43641

libde265 (1.0.11-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2023-27102 (Closes: #1033257)
     fix segmentation violation in the
     function decoder_context::process_slice_segment_header
   * CVE-2023-27103
     fix heap buffer overflow in the
     function derive_collocated_motion_vectors
   * CVE-2023-43887
     fix buffer over-read in pic_parameter_set::dump
   * CVE-2023-47471 (Closes: #1056187)
     fix buffer overflow in the slice_segment_header function

libervia-backend (0.9.0~hg3993-4+deb12u1) bookworm; urgency=medium
 .
   * Fix dependencies on python3-txdbus/python3-dbus (Closes: #1055446)
   * Add patch to make exec path absolute in dbus service file (Closes: #1055445)
   * Fix start failure without pre-existing configuration (Closes: #1056163)

libmateweather (1.26.0-1.1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches: Cherry-pick (and re-arrange) upstream fixes.
      + rename: timezones.patch => 0001_Kyiv-timezone.patch (100%)
      + add city: 0002_add-San-Miguel-de-Tucuman-Argentina.patch
      + update Chicago area codes: 0003_Chicago-area-updates.patch
      + update data server URL: 0004_data-server-url-changed.patch (Closes:
        #1054248, #1054268)
      + typo fixes in location names: 0005_fix-some-location-names.patch
      + new Tbilisi airport code: 0006_tbilisi-IATA-airport-code-changed.patch

libsolv (0.7.23-1+deb12u1) bookworm; urgency=medium
 .
   [ Sjoerd Simons ]
   * Enable libzstd compression support

libvpx (1.12.0-1+deb12u2) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix bug with smaller width bigger size (CVE-2023-44488)

libx11 (2:1.8.4-2+deb12u2) bookworm-security; urgency=high
 .
   * CVE-2023-43785: out-of-bounds memory access in _XkbReadKeySyms()
   * CVE-2023-43786: stack exhaustion from infinite recursion in PutSubImage()
   * CVE-2023-43787: integer overflow in XCreateImage() leading to a heap overflow
   * XPutImage: clip images to maximum height & width allowed by protocol
   * XCreatePixmap: trigger BadValue error for out-of-range dimensions

libxpm (1:3.5.12-1.1+deb12u1) bookworm-security; urgency=high
 .
   * CVE-2023-43788: out of bounds read in XpmCreateXpmImageFromBuffer()
   * CVE-2023-43789: out of bounds read on XPM with corrupted colormap
   * Avoid CVE-2023-43786: stack exhaustion in XPutImage()
   * Avoid CVE-2023-43787 (integer overflow in XCreateImage)
libxpm (1:3.5.12-1.1+deb11u1) bullseye-security; urgency=high
 .
   * CVE-2023-43788: out of bounds read in XpmCreateXpmImageFromBuffer()
   * CVE-2023-43789: out of bounds read on XPM with corrupted colormap
   * Avoid CVE-2023-43786: stack exhaustion in XPutImage()
   * Avoid CVE-2023-43787 (integer overflow in XCreateImage)

linux (6.1.64-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.56
     - NFS: Fix error handling for O_DIRECT write scheduling
     - NFS: Fix O_DIRECT locking issues
     - NFS: More O_DIRECT accounting fixes for error paths
     - NFS: Use the correct commit info in nfs_join_page_group()
     - NFS: More fixes for nfs_direct_write_reschedule_io()
     - NFS/pNFS: Report EINVAL errors from connect() to the server
     - SUNRPC: Mark the cred for revalidation if the server rejects it
     - NFSv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - NFSv4.1: fix pnfs MDS=DS session trunking
     - media: via: Use correct dependency for camera sensor drivers
     - netfs: Only call folio_start_fscache() one time for each folio
     - dm: fix a race condition in retrieve_deps
     - btrfs: improve error message after failure to add delayed dir index item
     - btrfs: remove BUG() after failure to insert delayed dir index item
     - ext4: replace the traditional ternary conditional operator with with
       max()/min()
     - ext4: move setting of trimmed bit into ext4_try_to_trim_range()
     - ext4: do not let fstrim block system suspend
     - [arm64] ASoC: meson: spdifin: start hw on dai probe
     - bpf: Avoid deadlock when using queue and stack maps from NMI
     - ASoC: rt5640: Revert "Fix sleep in atomic context"
     - ASoC: rt5640: Fix IRQ not being free-ed for HDA jack detect mode
     - ALSA: hda/realtek: Splitting the UX3402 into two separate models
     - net/core: Fix ETH_P_1588 flow dissector
     - ASoC: hdaudio.c: Add missing check for devm_kstrdup
     - [arm64] ASoC: imx-audmix: Fix return error with devm_clk_get()
     - iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set
     - [x86] ASoC: SOF: core: Only call sof_ops_free() on remove if the probe was
       successful
     - iavf: add iavf_schedule_aq_request() helper
     - iavf: schedule a request immediately after add/delete vlan
     - i40e: Fix VF VLAN offloading when port VLAN is configured
     - ionic: fix 16bit math issue when PAGE_SIZE >= 64KB
     - igc: Fix infinite initialization loop with early XDP redirect
     - scsi: iscsi_tcp: restrict to TCP sockets
     - [powerpc*] perf/hv-24x7: Update domain value check
     - dccp: fix dccp_v4_err()/dccp_v6_err() again
     - [x86] mm, kexec, ima: Use memblock_free_late() from
       ima_free_kexec_buffer()
     - net: hsr: Properly parse HSRv1 supervisor frames.
     - [x86] platform/x86: intel_scu_ipc: Check status after timeout in
       busy_loop()
     - [x86] platform/x86: intel_scu_ipc: Check status upon timeout in
       ipc_wait_for_interrupt()
     - [x86] platform/x86: intel_scu_ipc: Don't override scu in
       intel_scu_ipc_dev_simple_command()
     - [x86] platform/x86: intel_scu_ipc: Fail IPC send if still busy
     - [x86] srso: Fix srso_show_state() side effect
     - [x86] srso: Fix SBPB enablement for spec_rstack_overflow=off
     - [arm64] net: hns3: add cmdq check for vf periodic service task
     - [arm64] net: hns3: fix GRE checksum offload issue
     - [arm64] net: hns3: only enable unicast promisc when mac table full
     - [arm64] net: hns3: fix fail to delete tc flower rules during reset issue
     - [arm64] net: hns3: add 5ms delay before clear firmware reset irq source
     - net: bridge: use DEV_STATS_INC()
     - team: fix null-ptr-deref when team device type is changed
     - net: rds: Fix possible NULL-pointer dereference
     - [x86] i915/pmu: Move execlist stats initialization to execlist specific
       setup
     - locking/seqlock: Do the lockdep annotation before locking in
       do_write_seqcount_begin_nested()
     - net: ena: Flush XDP packets on error.
     - bnxt_en: Flush XDP for bnxt_poll_nitroa0()'s NAPI
     - igc: Expose tx-usecs coalesce setting to user
     - proc: nommu: /proc/<pid>/maps: release mmap read lock
     - proc: nommu: fix empty /proc/<pid>/maps
     - cifs: Fix UAF in cifs_demultiplex_thread()
     - gpio: tb10x: Fix an error handling path in tb10x_gpio_probe()
     - i2c: xiic: Correct return value check for xiic_reinit()
     - [armhf] dts: samsung: exynos4210-i9100: Fix LCD screen's physical size
     - f2fs: optimize iteration over sparse directories
     - f2fs: get out of a repeat loop when getting a locked data page
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling in PKEY_CLR2SECK2 IOCTL
     - [arm64] dts: qcom: sdm845-db845c: Mark cont splash memory region as
       reserved
     - wifi: ath11k: fix tx status reporting in encap offload mode
     - wifi: ath11k: Cleanup mac80211 references on failure during tx_complete
     - scsi: qla2xxx: Select qpair depending on which CPU post_cmd() gets called
     - scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id()
     - btrfs: reset destination buffer when read_extent_buffer() gets invalid
       range
     - vfio/mdev: Fix a null-ptr-deref bug for mdev_unregister_parent()
     - drm/bridge: ti-sn65dsi83: Do not generate HFP/HBP/HSA and EOT packet
     - [armhf] bus: ti-sysc: Use fsleep() instead of usleep_range() in
       sysc_reset()
     - [armhf] bus: ti-sysc: Fix missing AM35xx SoC matching
     - [arm64] firmware: arm_scmi: Harden perf domain info access
     - [arm64] firmware: arm_scmi: Fixup perf power-cost/microwatt support
     - power: supply: mt6370: Fix missing error code in mt6370_chg_toggle_cfo()
     - clk: sprd: Fix thm_parents incorrect configuration
     - clk: tegra: fix error return case for recalc_rate
     - [armhf] dts: omap: correct indentation
     - [armhf] dts: Unify pwm-omap-dmtimer node names
     - [armhf] dts: Unify pinctrl-single pin group nodes for omap4
     - [armhf] bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart
       wake-up
     - power: supply: ucs1002: fix error code in ucs1002_get_property()
     - power: supply: rk817: Fix node refcount leak
     - [arm64] soc: imx8m: Enable OCOTP clock for imx8mm before reading registers
     - [arm64] dts: imx: Add imx8mm-prt8mm.dtb to build
     - gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip
     - i2c: npcm7xx: Fix callback completion ordering
     - [x86] reboot: VMCLEAR active VMCSes before emergency reboot
     - ceph: drop messages from MDS when unmounting
     - dma-debug: don't call __dma_entry_alloc_check_leak() under
       free_entries_lock
     - bpf: Annotate bpf_long_memcpy with data_race
     - [arm64,armhf] spi: sun6i: reduce DMA RX transfer width to single byte
     - [arm64,armhf] spi: sun6i: fix race between DMA RX transfer completion and
       RX FIFO drain
     - nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid()
     - scsi: qedf: Add synchronization between I/O completions and abort
     - scsi: ufs: core: Move __ufshcd_send_uic_cmd() outside host_lock
     - scsi: ufs: core: Poll HCS.UCRDY before issuing a UIC command
     - ring-buffer: Avoid softlockup in ring_buffer_resize()
     - btrfs: assert delayed node locked when removing delayed item
     - ring-buffer: Do not attempt to read past "commit"
     - ata: sata_mv: Fix incorrect string length computation in mv_dump_mem()
     - [x86] platform/x86: asus-wmi: Support 2023 ROG X16 tablet mode
     - thermal/of: add missing of_node_put()
     - drm/amd/display: Don't check registers, if using AUX BL control
     - drm/amdgpu/soc21: don't remap HDP registers for SR-IOV
     - drm/amdgpu/nbio4.3: set proper rmmio_remap.reg_offset for SR-IOV
     - drm/amdgpu: Handle null atom context in VBIOS info ioctl
     - scsi: pm80xx: Use phy-specific SAS address when sending PHY_START command
     - scsi: pm80xx: Avoid leaking tags when processing
       OPC_INB_SET_CONTROLLER_CONFIG command
     - smb3: correct places where ENOTSUPP is used instead of preferred
       EOPNOTSUPP
     - ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset()
     - spi: nxp-fspi: reset the FLSHxCR1 registers
     - spi: stm32: add a delay before SPI disable
     - bpf: Clarify error expectations from bpf_clone_redirect
     - ALSA: hda: intel-sdw-acpi: Use u8 type for link index
     - firmware: cirrus: cs_dsp: Only log list of algorithms in debug build
     - media: vb2: frame_vector.c: replace WARN_ONCE with a comment
     - NFSv4.1: fix zero value filehandle in post open getattr
     - [x86] ASoC: SOF: Intel: MTL: Reduce the DSP init timeout
     - [powerpc*] watchpoints: Disable preemption in thread_change_pc()
     - [powerpc*] watchpoint: Disable pagefaults when getting user instruction
     - [powerpc*] watchpoints: Annotate atomic context in more places
     - [armhf] ncsi: Propagate carrier gain/loss events to the NCSI controller
     - net: hsr: Add __packed to struct hsr_sup_tlv.
     - perf build: Define YYNOMEM as YYNOABORT for bison < 3.81
     - nvme-pci: factor the iod mempool creation into a helper
     - nvme-pci: factor out a nvme_pci_alloc_dev helper
     - nvme-pci: do not set the NUMA node of device if it has none
     - wifi: ath11k: Don't drop tx_status when peer cannot be found
     - scsi: qla2xxx: Fix NULL pointer dereference in target mode
     - nvme-pci: always return an ERR_PTR from nvme_pci_alloc_dev
     - [x86] sgx: Resolves SECS reclaim vs. page fault for EAUG race
     - [x86] srso: Add SRSO mitigation for Hygon processors
     - [x86] KVM: SVM: INTERCEPT_RDTSCP is never intercepted anyway
     - [x86] KVM: SVM: Fix TSC_AUX virtualization setup
     - [x86] KVM: x86/mmu: Open code leaf invalidation from mmu_notifier
     - [x86] KVM: x86/mmu: Do not filter address spaces in
       for_each_tdp_mmu_root_yield_safe()
     - mptcp: fix bogus receive window shrinkage with multiple subflows
     - Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux"
     - serial: 8250_port: Check IRQ data before use
     - nilfs2: fix potential use after free in nilfs_gccache_submit_read_data()
     - netfilter: nf_tables: disallow rule removal from chain binding
       (CVE-2023-5197)
     - ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre
       M70q
     - ata: libata-scsi: link ata port and scsi device
     - ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION
       CODES
     - io_uring/fs: remove sqe->rw_flags checking from LINKAT
     - i2c: i801: unregister tco_pdev in i801_probe() error path
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82QF and 82UG
     - kernel/sched: Modify initial boot task idle setup
     - sched/rt: Fix live lock between select_fallback_rq() and RT push
     - netfilter: nf_tables: fix kdoc warnings after gc rework
     - Revert "SUNRPC dont update timeout value on connection reset"
     - timers: Tag (hr)timer softirq as hotplug safe
     - mm/slab_common: fix slab_caches list corruption after kmem_cache_destroy()
     - mm: memcontrol: fix GFP_NOFS recursion in memory.high enforcement
     - ring-buffer: Update "shortest_full" in polling
     - btrfs: properly report 0 avail for very full file systems
     - media: uvcvideo: Fix OOB read
     - bpf: Add override check to kprobe multi link attach
     - bpf: Fix BTF_ID symbol generation collision
     - bpf: Fix BTF_ID symbol generation collision in tools/
     - net: thunderbolt: Fix TCPv6 GSO checksum calculation
     - fs/smb/client: Reset password pointer to NULL (CVE-2023-5345)
     - ata: libata-core: Fix ata_port_request_pm() locking
     - ata: libata-core: Fix port and device removal
     - ata: libata-core: Do not register PM operations for SAS ports
     - ata: libata-sata: increase PMP SRST timeout to 10s
     - [x86] drm/i915/gt: Fix reservation address in ggtt_reserve_guc_top
     - power: supply: rk817: Add missing module alias
     - power: supply: ab8500: Set typing and props
     - fs: binfmt_elf_efpic: fix personality for ELF-FDPIC
     - [arm64] drm/meson: fix memory leak on ->hpd_notify callback
     - memcg: drop kmem.limit_in_bytes
     - mm, memcg: reconsider kmem.limit_in_bytes deprecation
     - [x86] ASoC: amd: yc: Fix a non-functional mic on Lenovo 82TL
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.57
     - ASoC: soc-utils: Export snd_soc_dai_is_dummy() symbol
     - mptcp: rename timer related helper to less confusing names
     - mptcp: fix dangling connection hang-up
     - mptcp: annotate lockless accesses to sk->sk_err
     - mptcp: move __mptcp_error_report in protocol.c
     - mptcp: process pending subflow error on close
     - ata,scsi: do not issue START STOP UNIT on resume
     - scsi: sd: Differentiate system and runtime start/stop management
     - scsi: sd: Do not issue commands to suspended disks on shutdown
     - scsi: core: Improve type safety of scsi_rescan_device()
     - scsi: Do not attempt to rescan suspended devices
     - ata: libata-scsi: Fix delayed scsi_rescan_device() execution
     - NFS: Cleanup unused rpc_clnt variable
     - NFS: rename nfs_client_kset to nfs_kset
     - NFSv4: Fix a state manager thread deadlock regression
     - mm/memory: add vm_normal_folio()
     - mm/mempolicy: convert queue_pages_pmd() to queue_folios_pmd()
     - mm/mempolicy: convert queue_pages_pte_range() to queue_folios_pte_range()
     - mm/mempolicy: convert migrate_page_add() to migrate_folio_add()
     - mm: mempolicy: keep VMA walk if both MPOL_MF_STRICT and MPOL_MF_MOVE are
       specified
     - mm/page_alloc: always remove pages from temporary list
     - mm/page_alloc: leave IRQs enabled for per-cpu page allocations
     - mm: page_alloc: fix CMA and HIGHATOMIC landing on the wrong buddy list
     - ring-buffer: remove obsolete comment for free_buffer_page()
     - ring-buffer: Fix bytes info in per_cpu buffer stats
     - btrfs: use struct qstr instead of name and namelen pairs
     - btrfs: setup qstr from dentrys using fscrypt helper
     - btrfs: use struct fscrypt_str instead of struct qstr
     - Revert "NFSv4: Retry LOCK on OLD_STATEID during delegation return"
     - [arm64] Avoid repeated AA64MMFR1_EL1 register read on pagefault path
     - net: add sysctl accept_ra_min_rtr_lft
     - net: change accept_ra_min_rtr_lft to affect all RA lifetimes
     - net: release reference to inet6_dev pointer
     - [arm64] cpufeature: Fix CLRBHB and BC detection
     - drm/amd/display: Adjust the MST resume flow
     - [arm64] iommu/arm-smmu-v3: Set TTL invalidation hint better
     - [arm64] iommu/arm-smmu-v3: Avoid constructing invalid range commands
     - rbd: move rbd_dev_refresh() definition
     - rbd: decouple header read-in from updating rbd_dev->header
     - rbd: decouple parent info read-in from updating rbd_dev
     - rbd: take header_rwsem in rbd_dev_refresh() only when updating
     - block: fix use-after-free of q->q_usage_counter
     - i40e: fix the wrong PTP frequency calculation
     - scsi: zfcp: Fix a double put in zfcp_port_enqueue()
     - [amd64] iommu/vt-d: Avoid memory allocation in iommu_suspend()
     - vringh: don't use vringh_kiov_advance() in vringh_iov_xfer()
       (CVE-2023-5158)
     - mptcp: userspace pm allow creating id 0 subflow
     - Bluetooth: hci_codec: Fix leaking content of local_codecs
     - Bluetooth: hci_sync: Fix handling of HCI_QUIRK_STRICT_DUPLICATE_FILTER
     - wifi: mwifiex: Fix tlv_buf_left calculation
     - md/raid5: release batch_last before waiting for another stripe_head
     - PCI: qcom: Fix IPQ8074 enumeration
     - net: replace calls to sock->ops->connect() with kernel_connect()
     - net: prevent rewrite of msg_name in sock_sendmsg()
     - drm/amd: Fix detection of _PR3 on the PCIe root port
     - drm/amd: Fix logic error in sienna_cichlid_update_pcie_parameters()
     - [arm64] Add Cortex-A520 CPU part definition
     - [arm64] errata: Add Cortex-A520 speculative unprivileged load workaround
     - HID: sony: Fix a potential memory leak in sony_probe()
     - ubi: Refuse attaching if mtd's erasesize is 0
     - erofs: fix memory leak of LZMA global compressed deduplication
     - wifi: iwlwifi: dbg_ini: fix structure packing
     - wifi: iwlwifi: mvm: Fix a memory corruption issue
     - wifi: cfg80211: hold wiphy lock in auto-disconnect
     - wifi: cfg80211: move wowlan disable under locks
     - wifi: cfg80211: add a work abstraction with special semantics
     - wifi: cfg80211: fix cqm_config access race
     - wifi: cfg80211: add missing kernel-doc for cqm_rssi_work
     - wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet
     - leds: Drop BUG_ON check for LED_COLOR_ID_MULTI
     - bpf: Fix tr dereferencing
     - regulator: mt6358: Drop *_SSHUB regulators
     - regulator: mt6358: Use linear voltage helpers for single range regulators
     - regulator: mt6358: split ops for buck and linear range LDO regulators
     - Bluetooth: Delete unused hci_req_prepare_suspend() declaration
     - Bluetooth: ISO: Fix handling of listen for unicast
     - drivers/net: process the result of hdlc_open() and add call of
       hdlc_close() in uhdlc_close()
     - wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling
     - [x86] perf/x86/amd/core: Fix overflow reset on hotplug
     - regmap: rbtree: Fix wrong register marked as in-cache when creating new
       node
     - wifi: mac80211: fix potential key use-after-free
     - [x86] perf/x86/amd: Do not WARN() on every IRQ
     - regulator/core: regulator_register: set device->class earlier
     - ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig
     - scsi: target: core: Fix deadlock due to recursive locking
     - ima: rework CONFIG_IMA dependency block
     - NFSv4: Fix a nfs4_state_manager() race
     - bpf: tcp_read_skb needs to pop skb regardless of seq
     - bpf, sockmap: Do not inc copied_seq when PEEK flag set
     - bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets
     - modpost: add missing else to the "of" check
     - net: fix possible store tearing in neigh_periodic_work()
     - bpf: Add BPF_FIB_LOOKUP_SKIP_NEIGH for bpf_fib_lookup
     - neighbour: annotate lockless accesses to n->nud_state
     - neighbour: switch to standard rcu, instead of rcu_bh
     - neighbour: fix data-races around n->output
     - ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data()
     - ptp: ocp: Fix error handling in ptp_ocp_device_init
     - net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent
     - ipv6: tcp: add a missing nf_reset_ct() in 3WHS handling
     - net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg
     - net: nfc: llcp: Add lock when modifying device list
     - net: ethernet: ti: am65-cpsw: Fix error code in
       am65_cpsw_nuss_init_tx_chns()
     - ibmveth: Remove condition to recompute TCP header checksum.
     - netfilter: handle the connecting collision properly in
       nf_conntrack_proto_sctp
     - netfilter: nf_tables: Deduplicate nft_register_obj audit logs
     - netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure
     - ipv4: Set offload_failed flag in fibmatch results
     - [armhf] net: stmmac: dwmac-stm32: fix resume on STM32 MCU
     - tipc: fix a potential deadlock on &tx->lock
     - tcp: fix quick-ack counting to count actual ACKs of new data
     - tcp: fix delayed ACKs for MSS boundary condition
     - sctp: update transport state when processing a dupcook packet
     - sctp: update hb timer immediately after users change hb_interval
     - netlink: split up copies in the ack construction
     - netlink: Fix potential skb memleak in netlink_ack
     - netlink: annotate data-races around sk->sk_err
     - HID: sony: remove duplicate NULL check before calling usb_free_urb()
     - HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit
     - intel_idle: add Emerald Rapids Xeon support
     - smb: use kernel_connect() and kernel_bind()
     - dm zoned: free dmz->ddev array in dmz_put_zoned_devices
     - RDMA/core: Require admin capabilities to set system parameters
     - of: dynamic: Fix potential memory leak in of_changeset_action()
     - IB/mlx4: Fix the size of a buffer in add_port_entries()
     - gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config()
     - gpio: pxa: disable pinctrl calls for MMP_GPIO
     - RDMA/cma: Initialize ib_sa_multicast structure to 0 when join
     - RDMA/cma: Fix truncation compilation warning in make_cma_ports
     - RDMA/uverbs: Fix typo of sizeof argument
     - RDMA/srp: Do not call scsi_done() from srp_abort()
     - RDMA/siw: Fix connection failure handling
     - RDMA/mlx5: Fix mutex unlocking on error flow for steering anchor creation
     - RDMA/mlx5: Fix NULL string error
     - [x86] sev: Use the GHCB protocol when available for SNP CPUID requests
     - ksmbd: fix race condition between session lookup and expire
     - ksmbd: fix uaf in smb20_oplock_break_ack
     - ipv6: remove nexthop_fib6_nh_bh()
     - vrf: Fix lockdep splat in output path
     - btrfs: fix an error handling path in btrfs_rename()
     - btrfs: fix fscrypt name leak after failure to join log transaction
     - netlink: remove the flex array from struct nlmsghdr
     - btrfs: file_remove_privs needs an exclusive lock in direct io write
     - ipv6: remove one read_lock()/read_unlock() pair in rt6_check_neigh()
     - xen/events: replace evtchn_rwlock with RCU (CVE-2023-34324)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.58
     - Revert "NFS: More fixes for nfs_direct_write_reschedule_io()"
     - Revert "NFS: Use the correct commit info in nfs_join_page_group()"
     - Revert "NFS: More O_DIRECT accounting fixes for error paths"
     - Revert "NFS: Fix O_DIRECT locking issues"
     - Revert "NFS: Fix error handling for O_DIRECT write scheduling"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.59
     - net: mana: Fix TX CQE error handling
     - mptcp: fix delegated action races
     - [x86] drm/i915: Don't set PIPE_CONTROL_FLUSH_L3 for aux inval
     - RDMA/cxgb4: Check skb value for failure to allocate
     - [arm64] perf/arm-cmn: Fix the unhandled overflow status of counter 4 to 7
     - [x86] platform/x86: think-lmi: Fix reference leak
     - [x86] platform/x86: hp-wmi:: Mark driver struct with __refdata to prevent
       section mismatch warning
     - scsi: Do not rescan devices with a suspended queue
     - HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect
     - quota: Fix slow quotaoff
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82YM
     - ata: libata-scsi: Disable scsi device manage_system_start_stop
     - net: prevent address rewrite in kernel_bind()
     - irqchip: renesas-rzg2l: Fix logic to clear TINT interrupt source
     - KEYS: trusted: Remove redundant static calls usage
     - ALSA: usb-audio: Fix microphone sound on Opencomm2 Headset
     - ALSA: usb-audio: Fix microphone sound on Nexigo webcam.
     - ALSA: hda/realtek: Change model for Intel RVP board
     - ASoC: simple-card-utils: fixup simple_util_startup() error handling
     - [x86] ASoC: Intel: soc-acpi: Add entry for HDMI_In capture support in MTL
       match table
     - [x86] ASoC: Intel: sof_sdw: add support for SKU 0B14
     - [x86] ASoC: Intel: soc-acpi: Add entry for sof_es8336 in MTL match table.
     - ASoC: Use of_property_read_bool() for boolean properties
     - ASoC: fsl_sai: MCLK bind with TX/RX enable bit
     - [arm64] ASoC: fsl_sai: Don't disable bitclock for i.MX8MP
     - ALSA: hda/realtek: Add quirk for HP Victus 16-d1xxx to enable mute LED
     - ALSA: hda/realtek: Add quirk for mute LEDs on HP ENVY x360 15-eu0xxx
     - ALSA: hda/realtek - ALC287 I2S speaker platform support
     - ALSA: hda/realtek - ALC287 merge RTK codec with CS CS35L41 AMP
     - pinctrl: nuvoton: wpcm450: fix out of bounds write
     - [arm64] drm/msm/dp: do not reinitialize phy unless retry during link
       training
     - [arm64] drm/msm/dsi: skip the wait for video mode done if not applicable
     - [arm64] drm/msm/dsi: fix irq_of_parse_and_map() error checking
     - [arm64] drm/msm/dpu: change _dpu_plane_calc_bw() to use u64 to avoid
       overflow
     - [arm64] drm/msm/dp: Add newlines to debug printks
     - can: isotp: isotp_sendmsg(): fix TX state detection and wait behavior
     - ravb: Fix up dma_free_coherent() call in ravb_remove()
     - ravb: Fix use-after-free issue in ravb_tx_timeout_work() (CVE-2023-35827)
     - ieee802154: ca8210: Fix a potential UAF in ca8210_probe
     - xen-netback: use default TX queue size for vifs
     - drm/vmwgfx: fix typo of sizeof argument
     - bpf: Fix verifier log for async callback return values
     - net: refine debug info in skb_checksum_help()
     - net: macsec: indicate next pn update when offloading
     - net: phy: mscc: macsec: reject PN update requests
     - net/mlx5e: macsec: use update_pn flag instead of PN comparation
     - ixgbe: fix crash with empty VF macvlan list
     - net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp
     - net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn()
     - net/smc: Fix pos miscalculation in statistics
     - pinctrl: renesas: rzn1: Enable missing PINMUX
     - workqueue: Override implicit ordered attribute in
       workqueue_apply_unbound_cpumask()
     - tcp: enforce receive buffer memory limits by allowing the tcp window to
       shrink
     - [armhf] dmaengine: stm32-mdma: abort resume if no ongoing transfer
     - [armhf] dmaengine: stm32-dma: fix stm32_dma_prep_slave_sg in case of MDMA
       chaining
     - [armhf] dmaengine: stm32-dma: fix residue in case of MDMA chaining
     - [armhf] dmaengine: stm32-mdma: use Link Address Register to compute
       residue
     - [armhf] dmaengine: stm32-mdma: set in_flight_bytes in case CRQA flag is
       set
     - usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer
     - net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read
     - [arm64,armhf] usb: dwc3: Soft reset phy on probe for host
     - usb: cdns3: Modify the return value of cdns_set_active () to void when
       CONFIG_PM_SLEEP is disabled
     - usb: hub: Guard against accesses to uninitialized BOS descriptors
     - usb: musb: Get the musb_qh poniter after musb_giveback
     - usb: musb: Modify the "HWVers" register address
     - iio: pressure: bmp280: Fix NULL pointer exception
     - iio: imu: bno055: Fix missing Kconfig dependencies
     - iio: adc: imx8qxp: Fix address for command buffer registers
     - iio: dac: ad3552r: Correct device IDs
     - iio: admv1013: add mixer_vgate corner cases
     - iio: pressure: dps310: Adjust Timeout Settings
     - iio: pressure: ms5611: ms5611_prom_is_valid false negative bug
     - iio: addac: Kconfig: update ad74413r selections
     - drm/atomic-helper: relax unregistered connector check
     - drm/amdgpu: add missing NULL check
     - drm/amd/display: Don't set dpms_off for seamless boot
     - ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA
     - ACPI: EC: Add quirk for the HP Pavilion Gaming 15-dk1xxx
     - ksmbd: not allow to open file if delelete on close bit is set
     - [x86] perf/x86/lbr: Filter vsyscall addresses
     - [x86] cpu: Fix AMD erratum #1485 on Zen4-based CPUs
     - mcb: remove is_added flag from mcb_device struct
     - [x86] thunderbolt: Workaround an IOMMU fault on certain systems with Intel
       Maple Ridge
     - [x86] thunderbolt: Check that lane 1 is in CL0 before enabling lane
       bonding
     - [x86] thunderbolt: Restart XDomain discovery handshake after failure
     - [powerpc*] 47x: Fix 47x syscall return crash
     - libceph: use kernel_connect()
     - ceph: fix incorrect revoked caps assert in ceph_fill_file_size()
     - ceph: fix type promotion bug on 32bit systems
     - Input: powermate - fix use-after-free in powermate_config_complete
     - Input: psmouse - fix fast_reconnect function for PS/2 mode
     - Input: xpad - add PXN V900 support
     - Input: i8042 - add Fujitsu Lifebook E5411 to i8042 quirk table
     - Input: goodix - ensure int GPIO is in input for gpio_count == 1 &&
       gpio_int_idx == 0 case
     - mctp: perform route lookups under a RCU read-side lock
     - nfp: flower: avoid rmmod nfp crash issues
     - usb: typec: ucsi: Use GET_CAPABILITY attributes data to set power supply
       scope
     - cgroup: Remove duplicates in cgroup v1 tasks file
     - dma-buf: add dma_fence_timestamp helper
     - pinctrl: avoid unsafe code pattern in find_pinctrl()
     - scsi: ufs: core: Correct clear TM error log
     - counter: chrdev: fix getting array extensions
     - counter: microchip-tcb-capture: Fix the use of internal GCLK logic
     - usb: typec: altmodes/displayport: Signal hpd low when exiting mode
     - usb: typec: ucsi: Clear EVENT_PENDING bit if ucsi_send_command fails
     - usb: gadget: udc-xilinx: replace memcpy with memcpy_toio
     - usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call
     - usb: cdnsp: Fixes issue with dequeuing not queued requests
     - [x86] alternatives: Disable KASAN in apply_alternatives()
     - [amd64] dmaengine: idxd: use spin_lock_irqsave before wait_event_lock_irq
     - [powerpc*] 8xx: Fix pte_access_permitted() for PAGE_NONE
     - [powerpc*] 64e: Fix wrong test in __ptep_test_and_clear_young()
     - ALSA: hda/realtek - Fixed two speaker platform
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.60
     - lib/Kconfig.debug: do not enable DEBUG_PREEMPT by default
     - igc: remove I226 Qbv BaseTime restriction
     - igc: enable Qbv configuration for 2nd GCL
     - igc: Remove reset adapter task for i226 during disable tsn config
     - igc: Add qbv_config_change_errors counter
     - igc: Add condition for qbv_config_change_errors counter
     - igc: Fix race condition in PTP tx code
     - Bluetooth: hci_event: Ignore NULL link key
     - Bluetooth: Reject connection with the device which has same BD_ADDR
     - Bluetooth: Fix a refcnt underflow problem for hci_conn
     - Bluetooth: vhci: Fix race when opening vhci device
     - Bluetooth: hci_event: Fix coding style
     - Bluetooth: avoid memcmp() out of bounds warning
     - ice: fix over-shifted variable
     - ice: reset first in crash dump kernels
     - net/smc: return the right falback reason when prefix checks fail
     - btrfs: fix stripe length calculation for non-zoned data chunk allocation
     - nfc: nci: fix possible NULL pointer dereference in send_acknowledge()
     - regmap: fix NULL deref on lookup
     - [x86] KVM: x86: Mask LVTPC when handling a PMI
     - [x86] sev: Disable MMIO emulation from user mode (CVE-2023-46813)
     - [x86] sev: Check IOBM for IOIO exceptions from user-space (CVE-2023-46813)
     - [x86] sev: Check for user-space IOIO pointing to kernel space
       (CVE-2023-46813)
     - [x86] fpu: Allow caller to constrain xfeatures when copying to uabi buffer
     - [x86] KVM: x86: Constrain guest-supported xfeatures only at
       KVM_GET_XSAVE{2}
     - [x86] KVM: SVM: add support for Invalid IPI Vector interception
     - [x86] KVM: SVM: refresh AVIC inhibition in svm_leave_nested()
     - audit,io_uring: io_uring openat triggers audit reference count underflow
     - tcp: check mptcp-level constraints for backlog coalescing
     - mptcp: more conservative check for zero probes
     - netfilter: nft_payload: fix wrong mac header matching
     - nvmet-tcp: Fix a possible UAF in queue intialization setup (CVE-2023-5178)
     - [x86] drm/i915: Retry gtt fault when out of fence registers
     - ALSA: hda/realtek - Fixed ASUS platform headset Mic issue
     - ALSA: hda/realtek: Add quirk for ASUS ROG GU603ZV
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15s-fq5xxx
     - qed: fix LL2 RX buffer allocation
     - xfrm: fix a data-race in xfrm_lookup_with_ifid()
     - xfrm: fix a data-race in xfrm_gen_index()
     - xfrm: interface: use DEV_STATS_INC()
     - wifi: cfg80211: use system_unbound_wq for wiphy work
     - net: ipv4: fix return value check in esp_remove_trailer
     - net: ipv6: fix return value check in esp_remove_trailer
     - net: rfkill: gpio: prevent value glitch during probe
     - tcp: fix excessive TLP and RACK timeouts from HZ rounding
     - tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single
       skb
     - tcp: Fix listen() warning with v4-mapped-v6 address.
     - tun: prevent negative ifindex
     - ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr
     - net: usb: smsc95xx: Fix an error code in smsc95xx_reset()
     - i40e: prevent crash on probe if hw registers have invalid values
     - net: dsa: bcm_sf2: Fix possible memory leak in bcm_sf2_mdio_register()
     - bonding: Return pointer to data after pull on skb
     - net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve
     - neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section
     - netfilter: nft_set_rbtree: .deactivate fails if element has expired
     - netlink: Correct offload_xstats size
     - netfilter: nf_tables: do not remove elements if set backend implements
       .abort
     - netfilter: nf_tables: revert do not remove elements if set backend
       implements .abort
     - net: phy: bcm7xxx: Add missing 16nm EPHY statistics
     - net: pktgen: Fix interface flags printing
     - net: avoid UAF on deleted altname
     - net: fix ifname in netlink ntf during netns move
     - net: check for altname conflicts when changing netdev's netns
     - usb: misc: onboard_usb_hub: add Genesys Logic GL850G hub support
     - usb: misc: onboard_usb_hub: add Genesys Logic GL852G hub support
     - usb: misc: onboard_usb_hub: add Genesys Logic GL3523 hub support
     - usb: misc: onboard_hub: add support for Microchip USB2412 USB 2.0 hub
     - serial: Move uart_change_speed() earlier
     - serial: Rename uart_change_speed() to uart_change_line_settings()
     - serial: Reduce spinlocked portion of uart_rs485_config()
     - serial: 8250: omap: Fix imprecise external abort for omap_8250_pm()
     - serial: 8250_omap: Fix errors with no_console_suspend
     - iio: core: introduce iio_device_{claim|release}_buffer_mode() APIs
     - iio: cros_ec: fix an use-after-free in cros_ec_sensors_push_data()
     - iio: adc: ad7192: Simplify using devm_regulator_get_enable()
     - iio: adc: ad7192: Correct reference voltage
     - pwr-mlxbf: extend Kconfig to include gpio-mlxbf3 dependency
     - fs-writeback: do not requeue a clean inode having skipped pages
     - btrfs: prevent transaction block reserve underflow when starting
       transaction
     - btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to
       1
     - btrfs: initialize start_slot in btrfs_log_prealloc_extents
     - i2c: mux: Avoid potential false error message in i2c_mux_add_adapter
     - overlayfs: set ctime when setting mtime and atime
     - gpio: timberdale: Fix potential deadlock on &tgpio->lock
     - ata: libata-core: Fix compilation warning in ata_dev_config_ncq()
     - ata: libata-eh: Fix compilation warning in ata_eh_link_report()
     - tracing: relax trace_event_eval_update() execution with cond_resched()
     - wifi: mwifiex: Sanity check tlv_len and tlv_bitmap_len
     - wifi: iwlwifi: Ensure ack flag is properly cleared.
     - HID: logitech-hidpp: Add Bluetooth ID for the Logitech M720 Triathlon
       mouse
     - HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event
     - Bluetooth: btusb: add shutdown function for QCA6174
     - Bluetooth: Avoid redundant authentication
     - Bluetooth: hci_core: Fix build warnings
     - wifi: cfg80211: Fix 6GHz scan configuration
     - wifi: mac80211: work around Cisco AP 9115 VHT MPDU length
     - wifi: mac80211: allow transmitting EAPOL frames with tainted key
     - wifi: cfg80211: avoid leaking stack data into trace
     - regulator/core: Revert "fix kobject release warning and memory leak in
       regulator_register()"
     - sky2: Make sure there is at least one frag_addr available
     - ipv4/fib: send notify when delete source address routes
     - drm: panel-orientation-quirks: Add quirk for One Mix 2S
     - btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c
     - btrfs: error out when COWing block using a stale transaction
     - btrfs: error when COWing block from a root that is being deleted
     - btrfs: error out when reallocating block for defrag using a stale
       transaction
     - drm/amd/pm: add unique_id for gc 11.0.3
     - HID: multitouch: Add required quirk for Synaptics 0xcd7e device
     - HID: nintendo: reinitialize USB Pro Controller after resuming from suspend
     - [x86] platform/x86: touchscreen_dmi: Add info for the Positivo C4128B
     - cpufreq: schedutil: Update next_freq when cpufreq_limits change
     - fprobe: Pass entry_data to handlers
     - fprobe: Add nr_maxactive to specify rethook_node pool size
     - fprobe: Fix to ensure the number of active retprobes is not zero
     - net: xfrm: skip policies marked as dead while reinserting policies
     - xfrm6: fix inet6_dev refcount underflow problem
     - net/mlx5: E-switch, register event handler before arming the event
     - net/mlx5: Handle fw tracer change ownership event based on MTRC
     - net/mlx5e: Don't offload internal port if filter device is out device
     - net/tls: split tls_rx_reader_lock
     - tcp: allow again tcp_disconnect() when threads are waiting
     - ice: Remove redundant pci_enable_pcie_error_reporting()
     - Bluetooth: hci_event: Fix using memcmp when comparing keys
     - tcp_bpf: properly release resources on error paths
     - net/smc: fix smc clc failed issue when netdevice not in init_net
     - mtd: physmap-core: Restore map_rom fallback
     - dt-bindings: mmc: sdhci-msm: correct minimum number of clocks
     - mmc: sdhci-pci-gli: fix LPM negotiation so x86/S0ix SoCs can suspend
     - mmc: core: sdio: hold retuning if sdio in 1-bit mode
     - mmc: core: Capture correct oemid-bits for eMMC cards
     - Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()"
     - pNFS: Fix a hang in nfs4_evict_inode()
     - pNFS/flexfiles: Check the layout validity in
       ff_layout_mirror_prepare_stats
     - NFSv4.1: fixup use EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - ACPI: irq: Fix incorrect return value in acpi_register_gsi()
     - nfs42: client needs to strip file mode's suid/sgid bit after ALLOCATE op
     - nvme: sanitize metadata bounce buffer for reads
     - nvme-pci: add BOGUS_NID for Intel 0a54 device
     - nvme-rdma: do not try to stop unallocated queues
     - [x86] KVM: x86/mmu: Stop zapping invalidated TDP MMU roots asynchronously
     - HID: input: map battery system charging
     - USB: serial: option: add Telit LE910C4-WWX 0x1035 composition
     - USB: serial: option: add entry for Sierra EM9191 with new firmware
     - USB: serial: option: add Fibocom to DELL custom modem FM101R-GL
     - perf: Disallow mis-matched inherited group reads (CVE-2023-5717)
     - [s390x] pci: fix iommu bitmap allocation
     - [s390x] cio: fix a memleak in css_alloc_subchannel
     - [x86] platform/surface: platform_profile: Propagate error if profile
       registration fails
     - [x86] platform/x86: intel-uncore-freq: Conditionally create attribute for
       read frequency
     - [x86] platform/x86: asus-wmi: Change ASUS_WMI_BRN_DOWN code from 0x20 to
       0x2e
     - [x86] platform/x86: asus-wmi: Only map brightness codes when using
       asus-wmi backlight control
     - [x86] platform/x86: asus-wmi: Map 0x2a code, Ignore 0x2b and 0x2c events
     - gpio: vf610: set value before the direction to avoid a glitch
     - drm/bridge: ti-sn65dsi86: Associate DSI device lifetime with auxiliary
       device
     - serial: 8250: omap: Move uart_write() inside PM section
     - serial: 8250: omap: convert to modern PM ops
     - kallsyms: Reduce the memory occupied by kallsyms_seqs_of_names[]
     - kallsyms: Add helper kallsyms_on_each_match_symbol()
     - tracing/kprobes: Return EADDRNOTAVAIL when func matches several symbols
     - gpio: vf610: make irq_chip immutable
     - gpio: vf610: mask the gpio irq in system suspend and support wakeup
     - phy: mapphone-mdm6600: Fix runtime disable on probe
     - phy: mapphone-mdm6600: Fix runtime PM for remove
     - phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins
     - net: move altnames together with the netdevice
     - Bluetooth: hci_sock: fix slab oob read in create_monitor_event
     - Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name
     - mptcp: avoid sending RST when closing the initial subflow
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.61
     - [x86] KVM: x86/pmu: Truncate counter value to allowed width on write
     - mmc: core: Align to common busy polling behaviour for mmc ioctls
     - mmc: block: ioctl: do write error check for spi
     - mmc: core: Fix error propagation for some ioctl commands
     - virtio_balloon: Fix endless deflation and inflation on arm64
     - virtio-mmio: fix memory leak of vm_dev
     - virtio-crypto: handle config changed by work queue
     - virtio_pci: fix the common cfg map size
     - vsock/virtio: initialize the_virtio_vsock before using VQs
     - vhost: Allow null msg.size on VHOST_IOTLB_INVALIDATE
     - mm: fix vm_brk_flags() to not bail out while holding lock
     - hugetlbfs: clear resv_map pointer if mmap fails
     - mm/page_alloc: correct start page when guard page debug is enabled
     - mm/migrate: fix do_pages_move for compat pointers
     - hugetlbfs: extend hugetlb_vma_lock to private VMAs
     - maple_tree: add GFP_KERNEL to allocations in mas_expected_entries()
     - nfsd: lock_rename() needs both directories to live on the same fs
     - [x86] drm/i915/pmu: Check if pmu is closed before stopping event
     - drm/amd: Disable ASPM for VI w/ all Intel systems
     - drm/dp_mst: Fix NULL deref in get_mst_branch_device_by_guid_helper()
     - [armhf] clk: ti: Fix missing omap4 mcbsp functional clock and aliases
     - [armhf] clk: ti: Fix missing omap5 mcbsp functional clock and aliases
     - r8169: fix the KCSAN reported data-race in rtl_tx() while reading
       tp->cur_tx
     - r8169: fix the KCSAN reported data-race in rtl_tx while reading
       TxDescArray[entry].opts1
     - r8169: fix the KCSAN reported data race in rtl_rx while reading
       desc->opts1
     - iavf: initialize waitqueues before starting watchdog_task
     - i40e: Fix I40E_FLAG_VF_VLAN_PRUNING value
     - igb: Fix potential memory leak in igb_add_ethtool_nfc_entry
     - neighbour: fix various data-races
     - igc: Fix ambiguity in the ethtool advertising
     - net: ieee802154: adf7242: Fix some potential buffer overflow in
       adf7242_stats_show()
     - net: usb: smsc95xx: Fix uninit-value access in smsc95xx_read_reg
     - r8152: Increase USB control msg timeout to 5000ms as per spec
     - r8152: Run the unload routine if we have errors during probe
     - r8152: Cancel hw_phy_work if we have an error in probe
     - r8152: Release firmware if we have an error in probe
     - tcp: fix wrong RTO timeout when received SACK reneging
     - gtp: uapi: fix GTPA_MAX
     - gtp: fix fragmentation needed check with gso
     - i40e: Fix wrong check for I40E_TXR_FLAGS_WB_ON_ITR
     - iavf: in iavf_down, disable queues when removing the driver
     - scsi: sd: Introduce manage_shutdown device flag
     - blk-throttle: check for overflow in calculate_bytes_allowed
     - io_uring/fdinfo: lock SQ thread while retrieving thread cpu/pid
       (CVE-2023-46862)
     - iio: afe: rescale: Accept only offset channels
     - iio: exynos-adc: request second interupt only when touchscreen mode is
       used
     - iio: adc: xilinx-xadc: Don't clobber preset voltage/temperature thresholds
     - iio: adc: xilinx-xadc: Correct temperature offset/scale for UltraScale
     - i2c: muxes: i2c-mux-pinctrl: Use of_get_i2c_adapter_by_node()
     - i2c: muxes: i2c-mux-gpmux: Use of_get_i2c_adapter_by_node()
     - i2c: muxes: i2c-demux-pinctrl: Use of_get_i2c_adapter_by_node()
     - i2c: stm32f7: Fix PEC handling in case of SMBUS transfers
     - i2c: aspeed: Fix i2c bus hang in slave read
     - tracing/kprobes: Fix the description of variable length arguments
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6ULL
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6SLL
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6UL
     - [x86] i8259: Skip probing when ACPI/MADT advertises PCAT compatibility
     - [x86] cpu: Add model number for Intel Arrow Lake mobile processor
     - perf/core: Fix potential NULL deref
     - clk: Sanitize possible_parent_show to Handle Return Value of
       of_clk_get_parent_name
     - [x86] platform/x86: Add s2idle quirk for more Lenovo laptops
     - ext4: add two helper functions extent_logical_end() and pa_logical_end()
     - ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow
     - ext4: avoid overlapping preallocations due to overflow
     - [x86] objtool/x86: add missing embedded_insn check
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.62
     - [arm*] ASoC: simple-card: fixup asoc_simple_probe() error handling
     - net: sched: cls_u32: Fix allocation size in u32_init()
     - [armhf] irqchip/stm32-exti: add missing DT IRQ flag translation
     - Input: synaptics-rmi4 - handle reset delay when using SMBus trsnsport
     - fbdev: atyfb: only use ioremap_uc() on i386 and ia64
     - netfilter: nfnetlink_log: silence bogus compiler warning
     - efi: fix memory leak in krealloc failure handling
     - ASoC: rt5650: fix the wrong result of key button
     - drm/ttm: Reorder sys manager cleanup step
     - [x86] fbdev: uvesafb: Call cn_del_callback() at the end of uvesafb_exit()
     - scsi: mpt3sas: Fix in error path
     - drm/amdgpu: Unset context priority is now invalid
     - gpu/drm: Eliminate DRM_SCHED_PRIORITY_UNSET
     - netfilter: nf_tables: audit log object reset once per table
     - drm/amdgpu: Reserve fences for VM update
     - net: chelsio: cxgb4: add an error code check in t4_load_phy_fw
     - r8152: Check for unplug in rtl_phy_patch_request()
     - r8152: Check for unplug in r8153b_ups_en() / r8153c_ups_en()
     - [powerpc*] mm: Fix boot crash with FLATMEM
     - io_uring: kiocb_done() should *not* trust ->ki_pos if
       ->{read,write}_iter() failed
     - ceph_wait_on_conflict_unlink(): grab reference before dropping ->d_lock
     - power: supply: core: Use blocking_notifier_call_chain to avoid RCU
       complaint
     - perf evlist: Avoid frequency mode for the dummy event
     - [x86] KVM: SVM: always update the x2avic msr interception (CVE-2023-5090)
     - mm/mempolicy: fix set_mempolicy_home_node() previous VMA pointer
     - mmap: fix error paths with dup_anon_vma()
     - ALSA: usb-audio: add quirk flag to enable native DSD for McIntosh devices
     - PCI: Prevent xHCI driver from claiming AMD VanGogh USB3 DRD device
     - usb: storage: set 1.50 as the lower bcdDevice for older "Super Top"
       compatibility
     - usb: typec: tcpm: Fix NULL pointer dereference in tcpm_pd_svdm()
     - usb: raw-gadget: properly handle interrupted requests
     - tty: n_gsm: fix race condition in status line change on dead connections
     - tty: 8250: Remove UC-257 and UC-431
     - tty: 8250: Add support for additional Brainboxes UC cards
     - tty: 8250: Add support for Brainboxes UP cards
     - tty: 8250: Add support for Intashield IS-100
     - tty: 8250: Fix port count of PX-257
     - tty: 8250: Fix up PX-803/PX-857
     - tty: 8250: Add support for additional Brainboxes PX cards
     - tty: 8250: Add support for Intashield IX cards
     - tty: 8250: Add Brainboxes Oxford Semiconductor-based quirks
     - misc: pci_endpoint_test: Add deviceID for J721S2 PCIe EP device support
     - ALSA: hda: intel-dsp-config: Fix JSL Chromebook quirk detection
     - [x86] ASoC: SOF: sof-pci-dev: Fix community key quirk detection
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.63
     - hwmon: (nct6775) Fix incorrect variable reuse in fan_div calculation
     - sched/fair: Fix cfs_rq_is_decayed() on !SMP
     - [x86] iov_iter, x86: Be consistent about the __user tag on
       copy_mc_to_user()
     - sched/uclamp: Set max_spare_cap_cpu even if max_spare_cap is 0
     - sched/uclamp: Ignore (util == 0) optimization in feec() when p_util_max =
       0
     - objtool: Propagate early errors
     - sched: Fix stop_one_cpu_nowait() vs hotplug
     - vfs: fix readahead(2) on block devices
     - writeback, cgroup: switch inodes with dirty timestamps to release dying
       cgwbs
     - [x86] srso: Fix SBPB enablement for (possible) future fixed HW
     - futex: Don't include process MM in futex key on no-MMU
     - [x86] numa: Introduce numa_fill_memblks()
     - ACPI/NUMA: Apply SRAT proximity domain to entire CFMWS window
     - [x86] sev-es: Allow copy_from_kernel_nofault() in earlier boot
     - [x86] boot: Fix incorrect startup_gdt_descr.size
     - [arm64,armhf] drivers/clocksource/timer-ti-dm: Don't call clk_get_rate()
       in stop function
     - pstore/platform: Add check for kstrdup
     - string: Adjust strtomem() logic to allow for smaller sources
     - genirq/matrix: Exclude managed interrupts in irq_matrix_allocated()
     - wifi: cfg80211: add flush functions for wiphy work
     - wifi: mac80211: move radar detect work to wiphy work
     - wifi: mac80211: move scan work to wiphy work
     - wifi: mac80211: move offchannel works to wiphy work
     - wifi: mac80211: move sched-scan stop work to wiphy work
     - wifi: mac80211: fix # of MSDU in A-MSDU calculation
     - wifi: iwlwifi: honor the enable_ini value
     - i40e: fix potential memory leaks in i40e_remove()
     - iavf: Fix promiscuous mode configuration flow messages
     - udp: add missing WRITE_ONCE() around up->encap_rcv
     - tcp: call tcp_try_undo_recovery when an RTOd TFO SYNACK is ACKed
     - gve: Use size_add() in call to struct_size()
     - tls: Only use data field in crypto completion function
     - tls: Use size_add() in call to struct_size()
     - tipc: Use size_add() in calls to struct_size()
     - net: spider_net: Use size_add() in call to struct_size()
     - net: ethernet: mtk_wed: fix EXT_INT_STATUS_RX_FBUF definitions for MT7986
       SoC
     - wifi: rtw88: debug: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
     - wifi: ath11k: fix boot failure with one MSI vector
     - wifi: mt76: mt7603: rework/fix rx pse hang check
     - wifi: mt76: mt7603: improve watchdog reset reliablity
     - wifi: mt76: mt7603: improve stuck beacon handling
     - wifi: mt76: mt7915: fix beamforming availability check
     - wifi: ath: dfs_pattern_detector: Fix a memory initialization issue
     - tcp_metrics: add missing barriers on delete
     - tcp_metrics: properly set tp->snd_ssthresh in tcp_init_metrics()
     - tcp_metrics: do not create an entry from tcp_init_metrics()
     - wifi: rtlwifi: fix EDCA limit set by BT coexistence
     - ACPI: property: Allow _DSD buffer data only for byte accessors
     - ACPI: video: Add acpi_backlight=vendor quirk for Toshiba Portégé R100
     - wifi: ath11k: fix Tx power value during active CAC
     - can: dev: can_restart(): don't crash kernel if carrier is OK
     - can: dev: can_restart(): fix race condition between controller restart and
       netif_carrier_on()
     - can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is
       accessed out of bounds
     - PM / devfreq: rockchip-dfi: Make pmu regmap mandatory
     - wifi: wfx: fix case where rates are out of order
     - netfilter: nf_tables: Drop pointless memset when dumping rules
     - thermal: core: prevent potential string overflow
     - r8169: use tp_to_dev instead of open code
     - r8169: fix rare issue with broken rx after link-down on RTL8125
     - net: skb_find_text: Ignore patterns extending past 'to'
     - tcp: fix cookie_init_timestamp() overflows
     - wifi: iwlwifi: call napi_synchronize() before freeing rx/tx queues
     - wifi: iwlwifi: pcie: synchronize IRQs before NAPI
     - wifi: iwlwifi: empty overflow queue during flush
     - Bluetooth: hci_sync: Fix Opcode prints in bt_dev_dbg/err
     - bpf: Fix unnecessary -EBUSY from htab_lock_bucket
     - ACPI: sysfs: Fix create_pnp_modalias() and create_of_modalias()
     - ipv6: avoid atomic fragment on GSO packets
     - net: add DEV_STATS_READ() helper
     - ipvlan: properly track tx_errors
     - regmap: debugfs: Fix a erroneous check after snprintf()
     - [arm64] spi: tegra: Fix missing IRQ check in tegra_slink_probe()
     - [arm64] clk: qcom: gcc-msm8996: Remove RPM bus clocks
     - [arm64] clk: qcom: clk-rcg2: Fix clock rate overflow for high parent
       frequencies
     - [arm64] clk: qcom: mmcc-msm8998: Don't check halt bit on some branch clks
     - [arm64] clk: qcom: mmcc-msm8998: Fix the SMMU GDSC
     - [arm64] clk: qcom: gcc-sm8150: Fix gcc_sdcc2_apps_clk_src
     - clk: imx: Select MXC_CLK for CLK_IMX8QXP
     - [arm64] clk: imx: imx8mq: correct error handling path
     - [arm64] clk: imx: imx8qxp: Fix elcdif_pll clock
     - [arm64] clk: renesas: rcar-gen3: Extend SDnH divider table
     - clk: linux/clk-provider.h: fix kernel-doc warnings and typos
     - [arm64] spi: nxp-fspi: use the correct ioremap function
     - [armhf] clk: ti: change ti_clk_register[_omap_hw]() API
     - [armhf] clk: ti: fix double free in of_ti_divider_clk_setup()
     - [arm64] clk: qcom: config IPQ_APSS_6018 should depend on QCOM_SMEM
     - [x86] platform/x86: wmi: Fix probe failure when failing to register WMI
       devices
     - [x86] platform/x86: wmi: Fix opening of char device
     - hwmon: (coretemp) Fix potentially truncated sysfs attribute name
     - Revert "hwmon: (sch56xx-common) Add DMI override table"
     - Revert "hwmon: (sch56xx-common) Add automatic module loading on supported
       devices"
     - hwmon: (sch5627) Use bit macros when accessing the control register
     - hwmon: (sch5627) Disallow write access if virtual registers are locked
     - [arm64,armhf] drm/rockchip: vop: Fix reset of state in duplicate state
       crtc funcs
     - [arm64,armhf] drm/rockchip: vop: Fix call to crtc reset helper
     - [arm64] drm/rockchip: vop2: Don't crash for invalid duplicate_state
     - [arm64] drm/rockchip: vop2: Add missing call to crtc reset helper
     - drm/radeon: possible buffer overflow
     - drm/amd/display: Check all enabled planes in dm_check_crtc_cursor
     - drm/amd/display: Refactor dm_get_plane_scale helper
     - drm/amd/display: Bail from dm_check_crtc_cursor if no relevant change
     - io_uring/kbuf: Fix check of BID wrapping in provided buffers
     - io_uring/kbuf: Allow the full buffer id space for provided buffers
     - [arm64] drm/rockchip: cdn-dp: Fix some error handling paths in
       cdn_dp_probe()
     - [arm64,armhf] gpu: host1x: Correct allocated size for contexts
     - [arm64,armhf] drm/rockchip: Fix type promotion bug in
       rockchip_gem_iommu_map()
     - xenbus: fix error exit in xenbus_init()
     - xen-pciback: Consider INTx disabled when MSI/MSI-X is enabled
     - [arm64] drm/msm/dsi: use msm_gem_kernel_put to free TX buffer
     - [arm64] drm/msm/dsi: free TX buffer in unbind
     - [arm64,armhf] clocksource/drivers/arm_arch_timer: limit XGene-1 workaround
     - drivers/perf: hisi: use cpuhp_state_remove_instance_nocalls() for
       hisi_hns3_pmu uninit process
     - [arm64] perf/arm-cmn: Revamp model detection
     - [arm64] perf/arm-cmn: Fix DTC domain detection
     - drivers/perf: hisi_pcie: Check the type first in pmu::event_init()
     - [arm64] perf: hisi: Fix use-after-free when register pmu fails
     - [arm64] dts: qcom: sdm845: cheza doesn't support LMh node
     - [arm64] dts: qcom: sc7280: link usb3_phy_wrapper_gcc_usb30_pipe_clk
     - [arm64] dts: qcom: msm8916: Fix iommu local address range
     - [arm64] dts: qcom: msm8992-libra: drop duplicated reserved memory
     - [arm64] dts: qcom: sc7280: Add missing LMH interrupts
     - [arm64] dts: qcom: sm8150: add ref clock to PCIe PHYs
     - [arm64] dts: qcom: sm8350: fix pinctrl for UART18
     - [arm64] dts: qcom: sdm845-mtp: fix WiFi configuration
     - [arm64] dts: marvell: cn9310: Use appropriate label for spi1 pins
     - [arm64] dts: qcom: apq8016-sbc: Add missing ADV7533 regulators
     - firmware: ti_sci: Mark driver as non removable
     - [arm64] dts: ti: k3-am62a7-sk: Drop i2c-1 to 100Khz
     - [arm64] clk: scmi: Free scmi_clk allocated when the clocks with invalid
       info are skipped
     - [arm64] dts: imx8qm-ss-img: Fix jpegenc compatible entry
     - [arm64] dts: imx8mm: Add sound-dai-cells to micfil node
     - [arm64] dts: imx8mn: Add sound-dai-cells to micfil node
     - [arm64] tegra: Use correct interrupts for Tegra234 TKE
     - module/decompress: use vmalloc() for gzip decompression workspace
     - [x86] ASoC: cs35l41: Verify PM runtime resume errors in IRQ handler
     - [x86] ASoC: cs35l41: Undo runtime PM changes at driver exit time
     - ALSA: hda: cs35l41: Fix unbalanced pm_runtime_get()
     - ALSA: hda: cs35l41: Undo runtime PM changes at driver exit time
     - KEYS: Include linux/errno.h in linux/verification.h
     - crypto: hisilicon/hpre - Fix a erroneous check after snprintf()
     - hwrng: bcm2835 - Fix hwrng throughput regression
     - [i386] hwrng: geode - fix accessing registers
     - RDMA/core: Use size_{add,sub,mul}() in calls to struct_size()
     - [x86] crypto: qat - ignore subsequent state up commands
     - [x86] crypto: qat - relocate bufferlist logic
     - [x86] crypto: qat - rename bufferlist functions
     - [x86] crypto: qat - change bufferlist logic interface
     - [x86] crypto: qat - generalize crypto request buffers
     - [x86] crypto: qat - extend buffer list interface
     - [x86] crypto: qat - fix unregistration of crypto algorithms
     - scsi: ibmvfc: Fix erroneous use of rtas_busy_delay with hcall return code
     - libnvdimm/of_pmem: Use devm_kstrdup instead of kstrdup and check its
       return value
     - nd_btt: Make BTT lanes preemptible
     - [arm64] crypto: caam/qi2 - fix Chacha20 + Poly1305 self test failure
     - [arm64,armhf] crypto: caam/jr - fix Chacha20 + Poly1305 self test failure
     - [x86] crypto: qat - increase size of buffers
     - [amd64] PCI: vmd: Correct PCI Header Type Register's multi-function check
     - hid: cp2112: Fix duplicate workqueue initialization
     - [armel,armhf] 9321/1: memset: cast the constant byte to unsigned char
     - ext4: move 'ix' sanity check to corrent position
     - IB/mlx5: Fix rdma counter binding for RAW QP
     - [arm64] RDMA/hns: Fix printing level of asynchronous events
     - [arm64] RDMA/hns: Fix uninitialized ucmd in hns_roce_create_qp_common()
     - [arm64] RDMA/hns: Fix signed-unsigned mixed comparisons
     - [arm64] RDMA/hns: Add check for SL
     - [arm64] RDMA/hns: The UD mode can only be configured with DCQCN
     - [x86] ASoC: SOF: core: Ensure sof_ops_free() is still called when probe
       never ran.
     - scsi: ufs: core: Leave space for '\0' in utf8 desc string
     - [amd64] RDMA/hfi1: Workaround truncation compilation error
     - HID: cp2112: Make irq_chip immutable
     - hid: cp2112: Fix IRQ shutdown stopping polling for all IRQs on chip
     - Revert "HID: logitech-hidpp: add a module parameter to keep firmware
       gestures"
     - HID: logitech-hidpp: Remove HIDPP_QUIRK_NO_HIDINPUT quirk
     - HID: logitech-hidpp: Don't restart IO, instead defer hid_connect() only
     - HID: logitech-hidpp: Revert "Don't restart communication if not necessary"
     - HID: logitech-hidpp: Move get_wireless_feature_index() check to
       hidpp_connect_event()
     - [x86] ASoC: Intel: Skylake: Fix mem leak when parsing UUIDs fails
     - padata: Fix refcnt handling in padata_free_shell()
     - [x86] crypto: qat - fix deadlock in backlog processing
     - IB/mlx5: Fix init stage error handling to avoid double free of same QP and
       UAF
     - mfd: core: Un-constify mfd_cell.of_reg
     - mfd: core: Ensure disabled devices are skipped without aborting
     - mfd: dln2: Fix double put in dln2_probe
     - dt-bindings: mfd: mt6397: Add binding for MT6357
     - dt-bindings: mfd: mt6397: Split out compatible for MediaTek MT6366 PMIC
     - mfd: arizona-spi: Set pdata.hpdet_channel for ACPI enumerated devs
     - leds: turris-omnia: Drop unnecessary mutex locking
     - leds: turris-omnia: Do not use SMBUS calls
     - leds: pwm: Don't disable the PWM when the LED should be off
     - leds: trigger: ledtrig-cpu:: Fix 'output may be truncated' issue for 'cpu'
     - apparmor: fix invalid reference on profile->disconnected
     - perf stat: Fix aggr mode initialization
     - iio: frequency: adf4350: Use device managed functions and fix power down
       issue.
     - perf kwork: Fix incorrect and missing free atom in work_push_atom()
     - perf kwork: Add the supported subcommands to the document
     - perf kwork: Set ordered_events to true in 'struct perf_tool'
     - filemap: add filemap_get_folios_tag()
     - f2fs: convert f2fs_write_cache_pages() to use filemap_get_folios_tag()
     - f2fs: compress: fix deadloop in f2fs_write_cache_pages()
     - f2fs: compress: fix to avoid use-after-free on dic
     - f2fs: compress: fix to avoid redundant compress extension
     - tty: tty_jobctrl: fix pid memleak in disassociate_ctty()
     - pinctrl: renesas: rzg2l: Make reverse order of enable() for disable()
     - perf record: Fix BTF type checks in the off-cpu profiling
     - dmaengine: idxd: Register dsa_bus_type before registering idxd sub-drivers
     - usb: dwc2: fix possible NULL pointer dereference caused by driver
       concurrency
     - usb: chipidea: Fix DMA overwrite for Tegra
     - usb: chipidea: Simplify Tegra DMA alignment code
     - dmaengine: ti: edma: handle irq_of_parse_and_map() errors
     - misc: st_core: Do not call kfree_skb() under spin_lock_irqsave()
     - USB: usbip: fix stub_dev hub disconnect
     - dmaengine: pxa_dma: Remove an erroneous BUG_ON() in pxad_free_desc()
     - f2fs: fix to initialize map.m_pblk in f2fs_precache_extents()
     - [powerpc*] Only define __parse_fpscr() when required
     - modpost: fix tee MODULE_DEVICE_TABLE built on big-endian host
     - modpost: fix ishtp MODULE_DEVICE_TABLE built on big-endian host
     - [powerpc*] 40x: Remove stale PTE_ATOMIC_UPDATES macro
     - [powerpc*] xive: Fix endian conversion size
     - [powerpc*] vas: Limit open window failure messages in log bufffer
     - [powerpc*] imc-pmu: Use the correct spinlock initializer.
     - [powerpc*] pseries: fix potential memory leak in init_cpu_associativity()
     - xhci: Loosen RPM as default policy to cover for AMD xHC 1.1
     - usb: host: xhci-plat: fix possible kernel oops while resuming
     - perf machine: Avoid out of bounds LBR memory read
     - perf hist: Add missing puts to hist__account_cycles
     - 9p/net: fix possible memory leak in p9_check_errors()
     - i3c: Fix potential refcount leak in i3c_master_register_new_i3c_devs
     - cxl/mem: Fix shutdown order
     - crypto: ccp - Name -1 return value as SEV_RET_NO_FW_CALL
     - [x86] sev: Change snp_guest_issue_request()'s fw_err argument
     - [amd64] virt: sevguest: Fix passing a stack buffer as a scatterlist target
     - rtc: pcf85363: fix wrong mask/val parameters in regmap_update_bits call
     - pcmcia: cs: fix possible hung task and memory leak pccardd()
     - pcmcia: ds: fix refcount leak in pcmcia_device_add()
     - pcmcia: ds: fix possible name leak in error path in pcmcia_device_add()
     - media: hantro: Check whether reset op is defined before use
     - media: verisilicon: Do not enable G2 postproc downscale if source is
       narrower than destination
     - media: ov5640: Drop dead code using frame_interval
     - media: ov5640: fix vblank unchange issue when work at dvp mode
     - media: i2c: max9286: Fix some redundant of_node_put() calls
     - media: ov5640: Fix a memory leak when ov5640_probe fails
     - media: bttv: fix use after free error due to btv->timeout timer
     - media: amphion: handle firmware debug message
     - media: mtk-jpegenc: Fix bug in JPEG encode quality selection
     - media: s3c-camif: Avoid inappropriate kfree()
     - media: vidtv: psi: Add check for kstrdup
     - media: vidtv: mux: Add check and kfree for kstrdup
     - media: cedrus: Fix clock/reset sequence
     - media: cadence: csi2rx: Unregister v4l2 async notifier
     - media: dvb-usb-v2: af9035: fix missing unlock
     - media: cec: meson: always include meson sub-directory in Makefile
     - regmap: prevent noinc writes from clobbering cache
     - pwm: sti: Reduce number of allocations and drop usage of chip_data
     - pwm: brcmstb: Utilize appropriate clock APIs in suspend/resume
     - Input: synaptics-rmi4 - fix use after free in rmi_unregister_function()
     - watchdog: ixp4xx: Make sure restart always works
     - llc: verify mac len before reading mac header
     - hsr: Prevent use after free in prp_create_tagged_frame()
     - tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING
     - bpf: Check map->usercnt after timer->timer is assigned
     - inet: shrink struct flowi_common
     - net: page_pool: add missing free_percpu when page_pool_init fail
     - dccp: Call security_inet_conn_request() after setting IPv4 addresses.
     - dccp/tcp: Call security_inet_conn_request() after setting IPv6 addresses.
     - net: r8169: Disable multicast filter for RTL8168H and RTL8107E
     - Fix termination state for idr_for_each_entry_ul()
     - net: stmmac: xgmac: Enable support for multiple Flexible PPS outputs
     - net/smc: fix dangling sock under state SMC_APPFINCLOSEWAIT
     - net/smc: allow cdc msg send rather than drop it with NULL sndbuf_desc
     - net/smc: put sk reference if close work was canceled
     - nvme: fix error-handling for io_uring nvme-passthrough
     - tg3: power down device only on SYSTEM_POWER_OFF
     - nbd: fix uaf in nbd_open
     - blk-core: use pr_warn_ratelimited() in bio_check_ro()
     - virtio/vsock: replace virtio_vsock_pkt with sk_buff
     - vsock/virtio: remove socket from connected/bound list on shutdown
     - r8169: respect userspace disabling IFF_MULTICAST
     - i2c: iproc: handle invalid slave state
     - netfilter: xt_recent: fix (increase) ipv6 literal buffer length
     - netfilter: nft_redir: use `struct nf_nat_range2` throughout and
       deduplicate eval call-backs
     - netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses
     - drm/syncobj: fix DRM_SYNCOBJ_WAIT_FLAGS_WAIT_AVAILABLE
     - [arm64,armhf] ASoC: hdmi-codec: register hpd callback on component probe
     - ASoC: dapm: fix clock get name
     - fbdev: imsttfb: Fix error path of imsttfb_probe()
     - fbdev: imsttfb: fix a resource leak in probe
     - fbdev: fsl-diu-fb: mark wr_reg_wa() static
     - tracing/kprobes: Fix the order of argument descriptions
     - io_uring/net: ensure socket is marked connected on connect retry
     - [x86] amd_nb: Use Family 19h Models 60h-7Fh Function 4 IDs
     - Revert "mmc: core: Capture correct oemid-bits for eMMC cards"
     - btrfs: use u64 for buffer sizes in the tree search ioctls
     - wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush()
     - virtio/vsock: don't use skbuff state to account credit
     - virtio/vsock: remove redundant 'skb_pull()' call
     - virtio/vsock: don't drop skbuff on copy failure
     - vsock/loopback: use only sk_buff_head.lock to protect the packet queue
     - virtio/vsock: fix leaks due to missing skb owner
     - virtio/vsock: Fix uninit-value in virtio_transport_recv_pkt()
     - virtio/vsock: fix header length on skb merging
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.64
     - lib/generic-radix-tree.c: Don't overflow in peek()
     - perf/core: Bail out early if the request AUX area is out of bound
     - srcu: Fix srcu_struct node grpmask overflow on 64-bit systems
     - [armhf] clocksource/drivers/timer-imx-gpt: Fix potential memory leak
     - smp,csd: Throw an error if a CSD lock is stuck for too long
     - cpu/hotplug: Don't offline the last non-isolated CPU
     - workqueue: Provide one lock class key per work_on_cpu() callsite
     - [x86] mm: Drop the 4 MB restriction on minimal NUMA node memory size
     - wifi: plfxlc: fix clang-specific fortify warning
     - wifi: mac80211_hwsim: fix clang-specific fortify warning
     - wifi: mac80211: don't return unset power in ieee80211_get_tx_power()
     - atl1c: Work around the DMA RX overflow issue
     - bpf: Detect IP == ksym.end as part of BPF program
     - wifi: ath9k: fix clang-specific fortify warnings
     - wifi: ath10k: fix clang-specific fortify warning
     - net: annotate data-races around sk->sk_tx_queue_mapping
     - net: annotate data-races around sk->sk_dst_pending_confirm
     - wifi: ath10k: Don't touch the CE interrupt registers after power up
     - vsock: read from socket's error queue
     - bpf: Ensure proper register state printing for cond jumps
     - Bluetooth: btusb: Add date->evt_skb is NULL check
     - Bluetooth: Fix double free in hci_conn_cleanup
     - ACPI: EC: Add quirk for HP 250 G7 Notebook PC
     - tsnep: Fix tsnep_request_irq() format-overflow warning
     - [x86] platform/x86: thinkpad_acpi: Add battery quirk for Thinkpad X120e
     - [x86] drm/gma500: Fix call trace when psb_gem_mm_init() fails
     - drm/amdgpu: not to save bo in the case of RAS err_event_athub
     - drm/amd: Update `update_pcie_parameters` functions to use uint8_t
       arguments
     - drm/amd/display: use full update for clip size increase of large plane
       source
     - string.h: add array-wrappers for (v)memdup_user()
     - kernel: kexec: copy user-array safely
     - kernel: watch_queue: copy user-array safely
     - drm_lease.c: copy user-array safely
     - drm: vmwgfx_surface.c: copy user-array safely
     - [arm64] drm/msm/dp: skip validity check for DP CTS EDID checksum
     - drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7
     - drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga
     - drm/amdgpu: Fix potential null pointer derefernce
     - drm/radeon: fix a possible null pointer dereference
     - drm/amdgpu/vkms: fix a possible null pointer dereference
     - [arm64] drm/panel: st7703: Pick different reset sequence
     - drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL
     - [arm64] dts: ls208xa: use a pseudo-bus to constrain usb dma size
     - ASoC: soc-card: Add storage for PCI SSID
     - [x86] ASoC: SOF: Pass PCI SSID to machine driver
     - crypto: pcrypt - Fix hungtask for PADATA_RESET
     - [x86] ASoC: SOF: ipc4: handle EXCEPTION_CAUGHT notification from firmware
     - [amd64] RDMA/hfi1: Use FIELD_GET() to extract Link Width
     - [arm64] scsi: hisi_sas: Set debugfs_dir pointer to NULL after removing
       debugfs
     - [powerpc*] scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool
     - fs/jfs: Add check for negative db_l2nbperpage
     - fs/jfs: Add validity check for db_maxag and db_agpref
     - jfs: fix array-index-out-of-bounds in dbFindLeaf
     - jfs: fix array-index-out-of-bounds in diAlloc
     - HID: lenovo: Detect quirk-free fw on cptkbd and stop applying workaround
     - [armel,armhf] 9320/1: fix stack depot IRQ stack filter
     - ALSA: hda: Fix possible null-ptr-deref when assigning a stream
     - [armel,armhf] PCI: mvebu: Use FIELD_PREP() with Link Width
     - atm: iphase: Do PCI error checks on own line
     - PCI: Do error check on own line to split long "if" conditions
     - scsi: libfc: Fix potential NULL pointer dereference in
       fc_lport_ptp_setup()
     - PCI: Use FIELD_GET() to extract Link Width
     - PCI: Extract ATS disabling to a helper function
     - PCI: Disable ATS for specific Intel IPU E2000 devices
     - PCI: Use FIELD_GET() in Sapphire RX 5600 XT Pulse quirk
     - [x86] ASoC: Intel: soc-acpi-cht: Add Lenovo Yoga Tab 3 Pro YT3-X90 quirk
     - crypto: hisilicon/qm - prevent soft lockup in receive loop
     - HID: Add quirk for Dell Pro Wireless Keyboard and Mouse KM5221W
     - exfat: support handle zero-size directory
     - mfd: intel-lpss: Add Intel Lunar Lake-M PCI IDs
     - iio: adc: stm32-adc: harden against NULL pointer deref in
       stm32_adc_probe()
     - [x86] thunderbolt: Apply USB 3.x bandwidth quirk only in software
       connection manager
     - [arm64,armhf] usb: dwc3: core: configure TX/RX threshold for DWC3_IP
     - soundwire: dmi-quirks: update HP Omen match
     - f2fs: fix error handling of __get_node_page
     - usb: gadget: f_ncm: Always set current gadget in ncm_bind()
     - 9p/trans_fd: Annotate data-racy writes to file::f_flags
     - 9p: v9fs_listxattr: fix %s null argument warning
     - i2c: fix memleak in i2c_new_client_device()
     - [armhf] i2c: sun6i-p2wi: Prevent potential division by zero
     - virtio-blk: fix implicit overflow on virtio_max_dma_size
     - media: gspca: cpia1: shift-out-of-bounds in set_flicker
     - media: vivid: avoid integer overflow
     - gfs2: ignore negated quota changes
     - gfs2: fix an oops in gfs2_permission
     - media: cobalt: Use FIELD_GET() to extract Link Width
     - media: ccs: Fix driver quirk struct documentation
     - media: imon: fix access to invalid resource for the second interface
     - drm/amd/display: Avoid NULL dereference of timing generator
     - i2c: dev: copy userspace array safely
     - [armhf] ASoC: ti: omap-mcbsp: Fix runtime PM underflow warnings
     - drm/qxl: prevent memory leak
     - ALSA: hda/realtek: Add quirk for ASUS UX7602ZM
     - drm/amdgpu: fix software pci_unplug on some chips
     - pwm: Fix double shift bug
     - wifi: iwlwifi: Use FW rate for non-data frames
     - sched/core: Optimize in_task() and in_interrupt() a bit
     - SUNRPC: ECONNRESET might require a rebind
     - NFSv4.1: fix handling NFS4ERR_DELAY when testing for session trunking
     - SUNRPC: Add an IS_ERR() check back to where it was
     - NFSv4.1: fix SP4_MACH_CRED protection for pnfs IO
     - SUNRPC: Fix RPC client cleaned up the freed pipefs dentries
     - gfs2: Silence "suspicious RCU usage in gfs2_permission" warning
     - net: set SOCK_RCU_FREE before inserting socket into hashtable
     - ipvlan: add ipvlan_route_v6_outbound() helper
     - tty: Fix uninit-value access in ppp_sync_receive()
     - [arm64] net: hns3: fix add VLAN fail issue
     - [arm64] net: hns3: add barrier in vf mailbox reply process
     - [arm64] net: hns3: fix incorrect capability bit display for copper port
     - [arm64] net: hns3: fix out-of-bounds access may occur when coalesce info
       is read via debugfs
     - [arm64] net: hns3: fix variable may not initialized problem in
       hns3_init_mac_addr()
     - [arm64] net: hns3: fix VF reset fail issue
     - [arm64] net: hns3: fix VF wrong speed and duplex issue
     - tipc: Fix kernel-infoleak due to uninitialized TLV value
     - net: mvneta: fix calls to page_pool_get_stats
     - ppp: limit MRU to 64K
     - xen/events: fix delayed eoi list handling
     - ptp: annotate data-race around q->head and q->tail
     - bonding: stop the device in bond_setup_by_slave()
     - af_unix: fix use-after-free in unix_stream_read_actor()
     - netfilter: nf_conntrack_bridge: initialize err to 0
     - netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()
     - net: stmmac: fix rx budget limit check
     - net: stmmac: avoid rx queue overrun
     - net/mlx5e: fix double free of encap_header
     - net/mlx5e: fix double free of encap_header in update funcs
     - net/mlx5e: Fix pedit endianness
     - net/mlx5e: Reduce the size of icosq_str
     - net/mlx5e: Check return value of snprintf writing to fw_version buffer
     - net/mlx5e: Check return value of snprintf writing to fw_version buffer for
       representors
     - macvlan: Don't propagate promisc change to lower dev in passthru
     - cifs: spnego: add ';' in HOST_KEY_LEN
     - cifs: fix check of rc in function generate_smb3signingkey
     - [x86] i915/perf: Fix NULL deref bugs with drm_dbg() calls
     - [x86] perf intel-pt: Fix async branch flags
     - [powerpc*] perf: Fix disabling BHRB and instruction sampling
     - bpf: Fix check_stack_write_fixed_off() to correctly spill imm
     - bpf: Fix precision tracking for BPF_ALU | BPF_TO_BE | BPF_END
     - scsi: mpt3sas: Fix loop logic
     - scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for
       selected registers
     - scsi: qla2xxx: Fix system crash due to bad pointer access
     - [x86] crypto: x86/sha - load modules based on CPU features
     - [x86] cpu/hygon: Fix the CPU topology evaluation for real
     - [x86] KVM: x86: hyper-v: Don't auto-enable stimer on write from user-space
     - [x86] KVM: x86: Ignore MSR_AMD64_TW_CFG access
     - [x86] KVM: x86: Clear bit12 of ICR after APIC-write VM-exit
     - audit: don't take task_lock() in audit_exe_compare() code path
     - audit: don't WARN_ON_ONCE(!current->mm) in audit_exe_compare()
     - proc: sysctl: prevent aliased sysctls from getting passed to init
     - tty/sysrq: replace smp_processor_id() with get_cpu()
     - tty: serial: meson: fix hard LOCKUP on crtscts mode
     - hvc/xen: fix console unplug
     - hvc/xen: fix error path in xen_hvc_init() to always register frontend
       driver
     - hvc/xen: fix event channel handling for secondary consoles
     - PCI/sysfs: Protect driver's D3cold preference from user space
     - watchdog: move softlockup_panic back to early_param
     - ACPI: resource: Do IRQ override on TongFang GMxXGxx
     - regmap: Ensure range selector registers are updated after cache sync
     - wifi: ath11k: fix temperature event locking
     - wifi: ath11k: fix dfs radar event locking
     - wifi: ath11k: fix htt pktlog locking
     - wifi: ath11k: fix gtk offload status event locking
     - [arm64] mmc: meson-gx: Remove setting of CMD_CFG_ERROR
     - genirq/generic_chip: Make irq_remove_generic_chip() irqdomain aware
     - KEYS: trusted: tee: Refactor register SHM usage
     - KEYS: trusted: Rollback init_trusted() consistently
     - [arm64] Restrict CPU_BIG_ENDIAN to GNU as or LLVM IAS 15.x or newer
     - ksmbd: handle malformed smb1 message
     - ksmbd: fix slab out of bounds write in smb_inherit_dacl()
     - mmc: vub300: fix an error code
     - mmc: sdhci_am654: fix start loop index for TAP value parsing
     - mmc: Add quirk MMC_QUIRK_BROKEN_CACHE_FLUSH for Micron eMMC Q2J54A
     - PCI/ASPM: Fix L1 substate handling in aspm_attr_store_common()
     - PCI: kirin: Don't discard .remove() callback
     - PCI: exynos: Don't discard .remove() callback
     - wifi: wilc1000: use vmm_table as array in wilc struct
     - svcrdma: Drop connection after an RDMA Read error
     - rcu/tree: Defer setting of jiffies during stall reset
     - [arm64] dts: qcom: ipq6018: Fix hwlock index for SMEM
     - PM: hibernate: Use __get_safe_page() rather than touching the list
     - PM: hibernate: Clean up sync_read handling in snapshot_write_next()
     - rcu: kmemleak: Ignore kmemleak false positives when RCU-freeing objects
     - btrfs: don't arbitrarily slow down delalloc if we're committing
     - [arm64] dts: qcom: ipq8074: Fix hwlock index for SMEM
     - [arm64] firmware: qcom_scm: use 64-bit calling convention only when client
       is 64-bit
     - ACPI: FPDT: properly handle invalid FPDT subtables
     - [arm64] dts: qcom: ipq6018: Fix tcsr_mutex register size
     - [arm64] mfd: qcom-spmi-pmic: Fix reference leaks in revid helper
     - [arm64] mfd: qcom-spmi-pmic: Fix revid implementation
     - ima: annotate iint mutex to avoid lockdep false positive warnings
     - ima: detect changes to the backing overlay file
     - netfilter: nf_tables: remove catchall element in GC sync path
       (CVE-2023-6111)
     - netfilter: nf_tables: split async and sync catchall in two functions
     - hid: lenovo: Resend all settings on reset_resume for compact keyboards
     - jbd2: fix potential data lost in recovering journal raced with
       synchronizing fs bdev
     - quota: explicitly forbid quota files from being encrypted
     - kernel/reboot: emergency_restart: Set correct system_state
     - i2c: core: Run atomic i2c xfer when !preemptible
     - tracing: Have the user copy of synthetic event address use correct context
     - driver core: Release all resources during unbind before updating device
       links
     - mcb: fix error handling for different scenarios when parsing
     - dmaengine: stm32-mdma: correct desc prep when channel running
     - [s390x] cmma: fix detection of DAT pages
     - mm/cma: use nth_page() in place of direct struct page manipulation
     - mm/memory_hotplug: use pfn math in place of direct struct page
       manipulation
     - mtd: cfi_cmdset_0001: Byte swap OTP info
     - xhci: Enable RPM on controllers that support low-power states
     - fs: add ctime accessors infrastructure
     - smb3: fix creating FIFOs when mounting with "sfu" mount option
     - smb3: fix touch -h of symlink
     - smb3: fix caching of ctime on setxattr
     - smb: client: fix use-after-free bug in cifs_debug_data_proc_show()
     - smb: client: fix potential deadlock when releasing mids
     - cifs: reconnect helper should set reconnect for the right channel
     - cifs: force interface update before a fresh session setup
     - cifs: do not reset chan_max if multichannel is not supported at mount
     - xfs: recovery should not clear di_flushiter unconditionally
     - btrfs: zoned: wait for data BG to be finished on direct IO allocation
     - ALSA: info: Fix potential deadlock at disconnection
     - ALSA: hda/realtek: Enable Mute LED on HP 255 G8
     - ALSA: hda/realtek - Add Dell ALC295 to pin fall back table
     - ALSA: hda/realtek - Enable internal speaker of ASUS K6500ZC
     - ALSA: hda/realtek: Enable Mute LED on HP 255 G10
     - ALSA: hda/realtek: Add quirks for HP Laptops
     - [arm64,armhf] pmdomain: bcm: bcm2835-power: check if the ASB register is
       equal to enable
     - [armhf] pmdomain: imx: Make imx pgc power domain also set the fwnode
     - cpufreq: stats: Fix buffer overflow detection in trans_stats()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0cb8:0xc559
     - bluetooth: Add device 0bda:887b to device tables
     - bluetooth: Add device 13d3:3571 to device tables
     - Bluetooth: btusb: Add RTW8852BE device 13d3:3570 to device tables
     - Bluetooth: btusb: Add 0bda:b85b for Fn-Link RTL8852BE
     - drm/amd/display: enable dsc_clk even if dsc_pg disabled
     - cxl/region: Validate region mode vs decoder mode
     - cxl/region: Cleanup target list on attach error
     - cxl/region: Move region-position validation to a helper
     - cxl/region: Do not try to cleanup after cxl_region_setup_targets() fails
     - cxl: Unify debug messages when calling devm_cxl_add_port()
     - cxl/mem: Move devm_cxl_add_endpoint() from cxl_core to cxl_mem
     - cxl/region: Fix x1 root-decoder granularity calculations
     - Revert ncsi: Propagate carrier gain/loss events to the NCSI controller
     - Revert "i2c: pxa: move to generic GPIO recovery"
     - lsm: fix default return value for vm_enough_memory
     - lsm: fix default return value for inode_getsecctx
     - [arm64] sbsa_gwdt: Calculate timeout with 64-bit math
     - i2c: designware: Disable TX_EMPTY irq while waiting for block length byte
     - [s390x] ap: fix AP bus crash on early config change callback invocation
     - net: ethtool: Fix documentation of ethtool_sprintf()
     - net: phylink: initialize carrier state at creation
     - i2c: i801: fix potential race in i801_block_transaction_byte_by_byte
     - f2fs: do not return EFSCORRUPTED, but try to run online repair
     - f2fs: avoid format-overflow warning
     - media: lirc: drop trailing space from scancode transmit
     - media: sharp: fix sharp encoding
     - dm-verity: don't use blocking calls from tasklets
     - nfsd: fix file memleak on client_opens_release
     - mmc: sdhci-pci-gli: A workaround to allow GL9750 to enter ASPM L1.2
     - mm: fix for negative counter: nr_file_hugepages
     - mm: kmem: drop __GFP_NOFAIL when allocating objcg vectors
     - mptcp: deal with large GSO size
     - mptcp: add validity check for sending RM_ADDR
     - mptcp: fix setsockopt(IP_TOS) subflow locking
     - r8169: fix network lost after resume on DASH systems
     - r8169: add handling DASH when DASH is disabled
     - mmc: sdhci-pci-gli: GL9750: Mask the replay timer timeout of AER
     - Revert "net: r8169: Disable multicast filter for RTL8168H and RTL8107E"
     - ext4: apply umask if ACL support is disabled
     - ext4: correct offset of gdb backup in non meta_bg group to update_backups
     - ext4: mark buffer new if it is unwritten to avoid stale data exposure
     - ext4: correct return value of ext4_convert_meta_bg
     - ext4: correct the start block of counting reserved clusters
     - ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks
     - ext4: add missed brelse in update_backups
     - ext4: properly sync file size update after O_SYNC direct IO
     - drm/amd/pm: Handle non-terminated overdrive commands.
     - [x86] drm/i915: Bump GLK CDCLK frequency when driving multiple pipes
     - [x86] drm/i915: Fix potential spectre vulnerability
     - drm/amd/pm: Fix error of MACO flag setting code
     - drm/amdgpu/smu13: drop compute workload workaround
     - drm/amdgpu: don't use pci_is_thunderbolt_attached()
     - drm/amdgpu: don't use ATRM for external devices
     - drm/amdgpu: fix error handling in amdgpu_bo_list_get()
     - drm/amdgpu: lower CS errors to debug severity
     - drm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer()
     - drm/amd/display: Enable fast plane updates on DCN3.2 and above
     - drm/amd/display: Change the DMCUB mailbox memory location from FB to inbox
     - [powerpc*] powernv: Fix fortify source warnings in opal-prd.c
     - tracing: Have trace_event_file have ref counters
     - Input: xpad - add VID for Turtle Beach controllers
     - mmc: sdhci-pci-gli: GL9755: Mask the replay timer timeout of AER
     - cxl/port: Fix NULL pointer access in devm_cxl_add_port()
 .
   [ Salvatore Bonaccorso ]
   * [rt] Drop "seqlock: Do the lockdep annotation before locking in
     do_write_seqcount_begin_nested()" (applied upstream)
   * Bump ABI to 14
   * Refresh "net: mana: Add new MANA VF performance counters for easier
     troubleshooting"
   * [rt] Update to 6.1.59-rt16
   * Do not enable DEBUG_PREEMPT (not enabled by default since 6.1.60)
   * [x86] drivers/platform/x86/hp: Enable X86_PLATFORM_DRIVERS_HP
     (Closes: #1038799)
   * nvmet: nul-terminate the NQNs passed in the connect command (CVE-2023-6121)

linux-signed-amd64 (6.1.64+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.64-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.56
     - NFS: Fix error handling for O_DIRECT write scheduling
     - NFS: Fix O_DIRECT locking issues
     - NFS: More O_DIRECT accounting fixes for error paths
     - NFS: Use the correct commit info in nfs_join_page_group()
     - NFS: More fixes for nfs_direct_write_reschedule_io()
     - NFS/pNFS: Report EINVAL errors from connect() to the server
     - SUNRPC: Mark the cred for revalidation if the server rejects it
     - NFSv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - NFSv4.1: fix pnfs MDS=DS session trunking
     - media: via: Use correct dependency for camera sensor drivers
     - netfs: Only call folio_start_fscache() one time for each folio
     - dm: fix a race condition in retrieve_deps
     - btrfs: improve error message after failure to add delayed dir index item
     - btrfs: remove BUG() after failure to insert delayed dir index item
     - ext4: replace the traditional ternary conditional operator with with
       max()/min()
     - ext4: move setting of trimmed bit into ext4_try_to_trim_range()
     - ext4: do not let fstrim block system suspend
     - [arm64] ASoC: meson: spdifin: start hw on dai probe
     - bpf: Avoid deadlock when using queue and stack maps from NMI
     - ASoC: rt5640: Revert "Fix sleep in atomic context"
     - ASoC: rt5640: Fix IRQ not being free-ed for HDA jack detect mode
     - ALSA: hda/realtek: Splitting the UX3402 into two separate models
     - net/core: Fix ETH_P_1588 flow dissector
     - ASoC: hdaudio.c: Add missing check for devm_kstrdup
     - [arm64] ASoC: imx-audmix: Fix return error with devm_clk_get()
     - iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set
     - [x86] ASoC: SOF: core: Only call sof_ops_free() on remove if the probe was
       successful
     - iavf: add iavf_schedule_aq_request() helper
     - iavf: schedule a request immediately after add/delete vlan
     - i40e: Fix VF VLAN offloading when port VLAN is configured
     - ionic: fix 16bit math issue when PAGE_SIZE >= 64KB
     - igc: Fix infinite initialization loop with early XDP redirect
     - scsi: iscsi_tcp: restrict to TCP sockets
     - [powerpc*] perf/hv-24x7: Update domain value check
     - dccp: fix dccp_v4_err()/dccp_v6_err() again
     - [x86] mm, kexec, ima: Use memblock_free_late() from
       ima_free_kexec_buffer()
     - net: hsr: Properly parse HSRv1 supervisor frames.
     - [x86] platform/x86: intel_scu_ipc: Check status after timeout in
       busy_loop()
     - [x86] platform/x86: intel_scu_ipc: Check status upon timeout in
       ipc_wait_for_interrupt()
     - [x86] platform/x86: intel_scu_ipc: Don't override scu in
       intel_scu_ipc_dev_simple_command()
     - [x86] platform/x86: intel_scu_ipc: Fail IPC send if still busy
     - [x86] srso: Fix srso_show_state() side effect
     - [x86] srso: Fix SBPB enablement for spec_rstack_overflow=off
     - [arm64] net: hns3: add cmdq check for vf periodic service task
     - [arm64] net: hns3: fix GRE checksum offload issue
     - [arm64] net: hns3: only enable unicast promisc when mac table full
     - [arm64] net: hns3: fix fail to delete tc flower rules during reset issue
     - [arm64] net: hns3: add 5ms delay before clear firmware reset irq source
     - net: bridge: use DEV_STATS_INC()
     - team: fix null-ptr-deref when team device type is changed
     - net: rds: Fix possible NULL-pointer dereference
     - [x86] i915/pmu: Move execlist stats initialization to execlist specific
       setup
     - locking/seqlock: Do the lockdep annotation before locking in
       do_write_seqcount_begin_nested()
     - net: ena: Flush XDP packets on error.
     - bnxt_en: Flush XDP for bnxt_poll_nitroa0()'s NAPI
     - igc: Expose tx-usecs coalesce setting to user
     - proc: nommu: /proc/<pid>/maps: release mmap read lock
     - proc: nommu: fix empty /proc/<pid>/maps
     - cifs: Fix UAF in cifs_demultiplex_thread()
     - gpio: tb10x: Fix an error handling path in tb10x_gpio_probe()
     - i2c: xiic: Correct return value check for xiic_reinit()
     - [armhf] dts: samsung: exynos4210-i9100: Fix LCD screen's physical size
     - f2fs: optimize iteration over sparse directories
     - f2fs: get out of a repeat loop when getting a locked data page
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling in PKEY_CLR2SECK2 IOCTL
     - [arm64] dts: qcom: sdm845-db845c: Mark cont splash memory region as
       reserved
     - wifi: ath11k: fix tx status reporting in encap offload mode
     - wifi: ath11k: Cleanup mac80211 references on failure during tx_complete
     - scsi: qla2xxx: Select qpair depending on which CPU post_cmd() gets called
     - scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id()
     - btrfs: reset destination buffer when read_extent_buffer() gets invalid
       range
     - vfio/mdev: Fix a null-ptr-deref bug for mdev_unregister_parent()
     - drm/bridge: ti-sn65dsi83: Do not generate HFP/HBP/HSA and EOT packet
     - [armhf] bus: ti-sysc: Use fsleep() instead of usleep_range() in
       sysc_reset()
     - [armhf] bus: ti-sysc: Fix missing AM35xx SoC matching
     - [arm64] firmware: arm_scmi: Harden perf domain info access
     - [arm64] firmware: arm_scmi: Fixup perf power-cost/microwatt support
     - power: supply: mt6370: Fix missing error code in mt6370_chg_toggle_cfo()
     - clk: sprd: Fix thm_parents incorrect configuration
     - clk: tegra: fix error return case for recalc_rate
     - [armhf] dts: omap: correct indentation
     - [armhf] dts: Unify pwm-omap-dmtimer node names
     - [armhf] dts: Unify pinctrl-single pin group nodes for omap4
     - [armhf] bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart
       wake-up
     - power: supply: ucs1002: fix error code in ucs1002_get_property()
     - power: supply: rk817: Fix node refcount leak
     - [arm64] soc: imx8m: Enable OCOTP clock for imx8mm before reading registers
     - [arm64] dts: imx: Add imx8mm-prt8mm.dtb to build
     - gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip
     - i2c: npcm7xx: Fix callback completion ordering
     - [x86] reboot: VMCLEAR active VMCSes before emergency reboot
     - ceph: drop messages from MDS when unmounting
     - dma-debug: don't call __dma_entry_alloc_check_leak() under
       free_entries_lock
     - bpf: Annotate bpf_long_memcpy with data_race
     - [arm64,armhf] spi: sun6i: reduce DMA RX transfer width to single byte
     - [arm64,armhf] spi: sun6i: fix race between DMA RX transfer completion and
       RX FIFO drain
     - nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid()
     - scsi: qedf: Add synchronization between I/O completions and abort
     - scsi: ufs: core: Move __ufshcd_send_uic_cmd() outside host_lock
     - scsi: ufs: core: Poll HCS.UCRDY before issuing a UIC command
     - ring-buffer: Avoid softlockup in ring_buffer_resize()
     - btrfs: assert delayed node locked when removing delayed item
     - ring-buffer: Do not attempt to read past "commit"
     - ata: sata_mv: Fix incorrect string length computation in mv_dump_mem()
     - [x86] platform/x86: asus-wmi: Support 2023 ROG X16 tablet mode
     - thermal/of: add missing of_node_put()
     - drm/amd/display: Don't check registers, if using AUX BL control
     - drm/amdgpu/soc21: don't remap HDP registers for SR-IOV
     - drm/amdgpu/nbio4.3: set proper rmmio_remap.reg_offset for SR-IOV
     - drm/amdgpu: Handle null atom context in VBIOS info ioctl
     - scsi: pm80xx: Use phy-specific SAS address when sending PHY_START command
     - scsi: pm80xx: Avoid leaking tags when processing
       OPC_INB_SET_CONTROLLER_CONFIG command
     - smb3: correct places where ENOTSUPP is used instead of preferred
       EOPNOTSUPP
     - ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset()
     - spi: nxp-fspi: reset the FLSHxCR1 registers
     - spi: stm32: add a delay before SPI disable
     - bpf: Clarify error expectations from bpf_clone_redirect
     - ALSA: hda: intel-sdw-acpi: Use u8 type for link index
     - firmware: cirrus: cs_dsp: Only log list of algorithms in debug build
     - media: vb2: frame_vector.c: replace WARN_ONCE with a comment
     - NFSv4.1: fix zero value filehandle in post open getattr
     - [x86] ASoC: SOF: Intel: MTL: Reduce the DSP init timeout
     - [powerpc*] watchpoints: Disable preemption in thread_change_pc()
     - [powerpc*] watchpoint: Disable pagefaults when getting user instruction
     - [powerpc*] watchpoints: Annotate atomic context in more places
     - [armhf] ncsi: Propagate carrier gain/loss events to the NCSI controller
     - net: hsr: Add __packed to struct hsr_sup_tlv.
     - perf build: Define YYNOMEM as YYNOABORT for bison < 3.81
     - nvme-pci: factor the iod mempool creation into a helper
     - nvme-pci: factor out a nvme_pci_alloc_dev helper
     - nvme-pci: do not set the NUMA node of device if it has none
     - wifi: ath11k: Don't drop tx_status when peer cannot be found
     - scsi: qla2xxx: Fix NULL pointer dereference in target mode
     - nvme-pci: always return an ERR_PTR from nvme_pci_alloc_dev
     - [x86] sgx: Resolves SECS reclaim vs. page fault for EAUG race
     - [x86] srso: Add SRSO mitigation for Hygon processors
     - [x86] KVM: SVM: INTERCEPT_RDTSCP is never intercepted anyway
     - [x86] KVM: SVM: Fix TSC_AUX virtualization setup
     - [x86] KVM: x86/mmu: Open code leaf invalidation from mmu_notifier
     - [x86] KVM: x86/mmu: Do not filter address spaces in
       for_each_tdp_mmu_root_yield_safe()
     - mptcp: fix bogus receive window shrinkage with multiple subflows
     - Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux"
     - serial: 8250_port: Check IRQ data before use
     - nilfs2: fix potential use after free in nilfs_gccache_submit_read_data()
     - netfilter: nf_tables: disallow rule removal from chain binding
       (CVE-2023-5197)
     - ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre
       M70q
     - ata: libata-scsi: link ata port and scsi device
     - ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION
       CODES
     - io_uring/fs: remove sqe->rw_flags checking from LINKAT
     - i2c: i801: unregister tco_pdev in i801_probe() error path
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82QF and 82UG
     - kernel/sched: Modify initial boot task idle setup
     - sched/rt: Fix live lock between select_fallback_rq() and RT push
     - netfilter: nf_tables: fix kdoc warnings after gc rework
     - Revert "SUNRPC dont update timeout value on connection reset"
     - timers: Tag (hr)timer softirq as hotplug safe
     - mm/slab_common: fix slab_caches list corruption after kmem_cache_destroy()
     - mm: memcontrol: fix GFP_NOFS recursion in memory.high enforcement
     - ring-buffer: Update "shortest_full" in polling
     - btrfs: properly report 0 avail for very full file systems
     - media: uvcvideo: Fix OOB read
     - bpf: Add override check to kprobe multi link attach
     - bpf: Fix BTF_ID symbol generation collision
     - bpf: Fix BTF_ID symbol generation collision in tools/
     - net: thunderbolt: Fix TCPv6 GSO checksum calculation
     - fs/smb/client: Reset password pointer to NULL (CVE-2023-5345)
     - ata: libata-core: Fix ata_port_request_pm() locking
     - ata: libata-core: Fix port and device removal
     - ata: libata-core: Do not register PM operations for SAS ports
     - ata: libata-sata: increase PMP SRST timeout to 10s
     - [x86] drm/i915/gt: Fix reservation address in ggtt_reserve_guc_top
     - power: supply: rk817: Add missing module alias
     - power: supply: ab8500: Set typing and props
     - fs: binfmt_elf_efpic: fix personality for ELF-FDPIC
     - [arm64] drm/meson: fix memory leak on ->hpd_notify callback
     - memcg: drop kmem.limit_in_bytes
     - mm, memcg: reconsider kmem.limit_in_bytes deprecation
     - [x86] ASoC: amd: yc: Fix a non-functional mic on Lenovo 82TL
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.57
     - ASoC: soc-utils: Export snd_soc_dai_is_dummy() symbol
     - mptcp: rename timer related helper to less confusing names
     - mptcp: fix dangling connection hang-up
     - mptcp: annotate lockless accesses to sk->sk_err
     - mptcp: move __mptcp_error_report in protocol.c
     - mptcp: process pending subflow error on close
     - ata,scsi: do not issue START STOP UNIT on resume
     - scsi: sd: Differentiate system and runtime start/stop management
     - scsi: sd: Do not issue commands to suspended disks on shutdown
     - scsi: core: Improve type safety of scsi_rescan_device()
     - scsi: Do not attempt to rescan suspended devices
     - ata: libata-scsi: Fix delayed scsi_rescan_device() execution
     - NFS: Cleanup unused rpc_clnt variable
     - NFS: rename nfs_client_kset to nfs_kset
     - NFSv4: Fix a state manager thread deadlock regression
     - mm/memory: add vm_normal_folio()
     - mm/mempolicy: convert queue_pages_pmd() to queue_folios_pmd()
     - mm/mempolicy: convert queue_pages_pte_range() to queue_folios_pte_range()
     - mm/mempolicy: convert migrate_page_add() to migrate_folio_add()
     - mm: mempolicy: keep VMA walk if both MPOL_MF_STRICT and MPOL_MF_MOVE are
       specified
     - mm/page_alloc: always remove pages from temporary list
     - mm/page_alloc: leave IRQs enabled for per-cpu page allocations
     - mm: page_alloc: fix CMA and HIGHATOMIC landing on the wrong buddy list
     - ring-buffer: remove obsolete comment for free_buffer_page()
     - ring-buffer: Fix bytes info in per_cpu buffer stats
     - btrfs: use struct qstr instead of name and namelen pairs
     - btrfs: setup qstr from dentrys using fscrypt helper
     - btrfs: use struct fscrypt_str instead of struct qstr
     - Revert "NFSv4: Retry LOCK on OLD_STATEID during delegation return"
     - [arm64] Avoid repeated AA64MMFR1_EL1 register read on pagefault path
     - net: add sysctl accept_ra_min_rtr_lft
     - net: change accept_ra_min_rtr_lft to affect all RA lifetimes
     - net: release reference to inet6_dev pointer
     - [arm64] cpufeature: Fix CLRBHB and BC detection
     - drm/amd/display: Adjust the MST resume flow
     - [arm64] iommu/arm-smmu-v3: Set TTL invalidation hint better
     - [arm64] iommu/arm-smmu-v3: Avoid constructing invalid range commands
     - rbd: move rbd_dev_refresh() definition
     - rbd: decouple header read-in from updating rbd_dev->header
     - rbd: decouple parent info read-in from updating rbd_dev
     - rbd: take header_rwsem in rbd_dev_refresh() only when updating
     - block: fix use-after-free of q->q_usage_counter
     - i40e: fix the wrong PTP frequency calculation
     - scsi: zfcp: Fix a double put in zfcp_port_enqueue()
     - [amd64] iommu/vt-d: Avoid memory allocation in iommu_suspend()
     - vringh: don't use vringh_kiov_advance() in vringh_iov_xfer()
       (CVE-2023-5158)
     - mptcp: userspace pm allow creating id 0 subflow
     - Bluetooth: hci_codec: Fix leaking content of local_codecs
     - Bluetooth: hci_sync: Fix handling of HCI_QUIRK_STRICT_DUPLICATE_FILTER
     - wifi: mwifiex: Fix tlv_buf_left calculation
     - md/raid5: release batch_last before waiting for another stripe_head
     - PCI: qcom: Fix IPQ8074 enumeration
     - net: replace calls to sock->ops->connect() with kernel_connect()
     - net: prevent rewrite of msg_name in sock_sendmsg()
     - drm/amd: Fix detection of _PR3 on the PCIe root port
     - drm/amd: Fix logic error in sienna_cichlid_update_pcie_parameters()
     - [arm64] Add Cortex-A520 CPU part definition
     - [arm64] errata: Add Cortex-A520 speculative unprivileged load workaround
     - HID: sony: Fix a potential memory leak in sony_probe()
     - ubi: Refuse attaching if mtd's erasesize is 0
     - erofs: fix memory leak of LZMA global compressed deduplication
     - wifi: iwlwifi: dbg_ini: fix structure packing
     - wifi: iwlwifi: mvm: Fix a memory corruption issue
     - wifi: cfg80211: hold wiphy lock in auto-disconnect
     - wifi: cfg80211: move wowlan disable under locks
     - wifi: cfg80211: add a work abstraction with special semantics
     - wifi: cfg80211: fix cqm_config access race
     - wifi: cfg80211: add missing kernel-doc for cqm_rssi_work
     - wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet
     - leds: Drop BUG_ON check for LED_COLOR_ID_MULTI
     - bpf: Fix tr dereferencing
     - regulator: mt6358: Drop *_SSHUB regulators
     - regulator: mt6358: Use linear voltage helpers for single range regulators
     - regulator: mt6358: split ops for buck and linear range LDO regulators
     - Bluetooth: Delete unused hci_req_prepare_suspend() declaration
     - Bluetooth: ISO: Fix handling of listen for unicast
     - drivers/net: process the result of hdlc_open() and add call of
       hdlc_close() in uhdlc_close()
     - wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling
     - [x86] perf/x86/amd/core: Fix overflow reset on hotplug
     - regmap: rbtree: Fix wrong register marked as in-cache when creating new
       node
     - wifi: mac80211: fix potential key use-after-free
     - [x86] perf/x86/amd: Do not WARN() on every IRQ
     - regulator/core: regulator_register: set device->class earlier
     - ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig
     - scsi: target: core: Fix deadlock due to recursive locking
     - ima: rework CONFIG_IMA dependency block
     - NFSv4: Fix a nfs4_state_manager() race
     - bpf: tcp_read_skb needs to pop skb regardless of seq
     - bpf, sockmap: Do not inc copied_seq when PEEK flag set
     - bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets
     - modpost: add missing else to the "of" check
     - net: fix possible store tearing in neigh_periodic_work()
     - bpf: Add BPF_FIB_LOOKUP_SKIP_NEIGH for bpf_fib_lookup
     - neighbour: annotate lockless accesses to n->nud_state
     - neighbour: switch to standard rcu, instead of rcu_bh
     - neighbour: fix data-races around n->output
     - ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data()
     - ptp: ocp: Fix error handling in ptp_ocp_device_init
     - net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent
     - ipv6: tcp: add a missing nf_reset_ct() in 3WHS handling
     - net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg
     - net: nfc: llcp: Add lock when modifying device list
     - net: ethernet: ti: am65-cpsw: Fix error code in
       am65_cpsw_nuss_init_tx_chns()
     - ibmveth: Remove condition to recompute TCP header checksum.
     - netfilter: handle the connecting collision properly in
       nf_conntrack_proto_sctp
     - netfilter: nf_tables: Deduplicate nft_register_obj audit logs
     - netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure
     - ipv4: Set offload_failed flag in fibmatch results
     - [armhf] net: stmmac: dwmac-stm32: fix resume on STM32 MCU
     - tipc: fix a potential deadlock on &tx->lock
     - tcp: fix quick-ack counting to count actual ACKs of new data
     - tcp: fix delayed ACKs for MSS boundary condition
     - sctp: update transport state when processing a dupcook packet
     - sctp: update hb timer immediately after users change hb_interval
     - netlink: split up copies in the ack construction
     - netlink: Fix potential skb memleak in netlink_ack
     - netlink: annotate data-races around sk->sk_err
     - HID: sony: remove duplicate NULL check before calling usb_free_urb()
     - HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit
     - intel_idle: add Emerald Rapids Xeon support
     - smb: use kernel_connect() and kernel_bind()
     - dm zoned: free dmz->ddev array in dmz_put_zoned_devices
     - RDMA/core: Require admin capabilities to set system parameters
     - of: dynamic: Fix potential memory leak in of_changeset_action()
     - IB/mlx4: Fix the size of a buffer in add_port_entries()
     - gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config()
     - gpio: pxa: disable pinctrl calls for MMP_GPIO
     - RDMA/cma: Initialize ib_sa_multicast structure to 0 when join
     - RDMA/cma: Fix truncation compilation warning in make_cma_ports
     - RDMA/uverbs: Fix typo of sizeof argument
     - RDMA/srp: Do not call scsi_done() from srp_abort()
     - RDMA/siw: Fix connection failure handling
     - RDMA/mlx5: Fix mutex unlocking on error flow for steering anchor creation
     - RDMA/mlx5: Fix NULL string error
     - [x86] sev: Use the GHCB protocol when available for SNP CPUID requests
     - ksmbd: fix race condition between session lookup and expire
     - ksmbd: fix uaf in smb20_oplock_break_ack
     - ipv6: remove nexthop_fib6_nh_bh()
     - vrf: Fix lockdep splat in output path
     - btrfs: fix an error handling path in btrfs_rename()
     - btrfs: fix fscrypt name leak after failure to join log transaction
     - netlink: remove the flex array from struct nlmsghdr
     - btrfs: file_remove_privs needs an exclusive lock in direct io write
     - ipv6: remove one read_lock()/read_unlock() pair in rt6_check_neigh()
     - xen/events: replace evtchn_rwlock with RCU (CVE-2023-34324)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.58
     - Revert "NFS: More fixes for nfs_direct_write_reschedule_io()"
     - Revert "NFS: Use the correct commit info in nfs_join_page_group()"
     - Revert "NFS: More O_DIRECT accounting fixes for error paths"
     - Revert "NFS: Fix O_DIRECT locking issues"
     - Revert "NFS: Fix error handling for O_DIRECT write scheduling"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.59
     - net: mana: Fix TX CQE error handling
     - mptcp: fix delegated action races
     - [x86] drm/i915: Don't set PIPE_CONTROL_FLUSH_L3 for aux inval
     - RDMA/cxgb4: Check skb value for failure to allocate
     - [arm64] perf/arm-cmn: Fix the unhandled overflow status of counter 4 to 7
     - [x86] platform/x86: think-lmi: Fix reference leak
     - [x86] platform/x86: hp-wmi:: Mark driver struct with __refdata to prevent
       section mismatch warning
     - scsi: Do not rescan devices with a suspended queue
     - HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect
     - quota: Fix slow quotaoff
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82YM
     - ata: libata-scsi: Disable scsi device manage_system_start_stop
     - net: prevent address rewrite in kernel_bind()
     - irqchip: renesas-rzg2l: Fix logic to clear TINT interrupt source
     - KEYS: trusted: Remove redundant static calls usage
     - ALSA: usb-audio: Fix microphone sound on Opencomm2 Headset
     - ALSA: usb-audio: Fix microphone sound on Nexigo webcam.
     - ALSA: hda/realtek: Change model for Intel RVP board
     - ASoC: simple-card-utils: fixup simple_util_startup() error handling
     - [x86] ASoC: Intel: soc-acpi: Add entry for HDMI_In capture support in MTL
       match table
     - [x86] ASoC: Intel: sof_sdw: add support for SKU 0B14
     - [x86] ASoC: Intel: soc-acpi: Add entry for sof_es8336 in MTL match table.
     - ASoC: Use of_property_read_bool() for boolean properties
     - ASoC: fsl_sai: MCLK bind with TX/RX enable bit
     - [arm64] ASoC: fsl_sai: Don't disable bitclock for i.MX8MP
     - ALSA: hda/realtek: Add quirk for HP Victus 16-d1xxx to enable mute LED
     - ALSA: hda/realtek: Add quirk for mute LEDs on HP ENVY x360 15-eu0xxx
     - ALSA: hda/realtek - ALC287 I2S speaker platform support
     - ALSA: hda/realtek - ALC287 merge RTK codec with CS CS35L41 AMP
     - pinctrl: nuvoton: wpcm450: fix out of bounds write
     - [arm64] drm/msm/dp: do not reinitialize phy unless retry during link
       training
     - [arm64] drm/msm/dsi: skip the wait for video mode done if not applicable
     - [arm64] drm/msm/dsi: fix irq_of_parse_and_map() error checking
     - [arm64] drm/msm/dpu: change _dpu_plane_calc_bw() to use u64 to avoid
       overflow
     - [arm64] drm/msm/dp: Add newlines to debug printks
     - can: isotp: isotp_sendmsg(): fix TX state detection and wait behavior
     - ravb: Fix up dma_free_coherent() call in ravb_remove()
     - ravb: Fix use-after-free issue in ravb_tx_timeout_work() (CVE-2023-35827)
     - ieee802154: ca8210: Fix a potential UAF in ca8210_probe
     - xen-netback: use default TX queue size for vifs
     - drm/vmwgfx: fix typo of sizeof argument
     - bpf: Fix verifier log for async callback return values
     - net: refine debug info in skb_checksum_help()
     - net: macsec: indicate next pn update when offloading
     - net: phy: mscc: macsec: reject PN update requests
     - net/mlx5e: macsec: use update_pn flag instead of PN comparation
     - ixgbe: fix crash with empty VF macvlan list
     - net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp
     - net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn()
     - net/smc: Fix pos miscalculation in statistics
     - pinctrl: renesas: rzn1: Enable missing PINMUX
     - workqueue: Override implicit ordered attribute in
       workqueue_apply_unbound_cpumask()
     - tcp: enforce receive buffer memory limits by allowing the tcp window to
       shrink
     - [armhf] dmaengine: stm32-mdma: abort resume if no ongoing transfer
     - [armhf] dmaengine: stm32-dma: fix stm32_dma_prep_slave_sg in case of MDMA
       chaining
     - [armhf] dmaengine: stm32-dma: fix residue in case of MDMA chaining
     - [armhf] dmaengine: stm32-mdma: use Link Address Register to compute
       residue
     - [armhf] dmaengine: stm32-mdma: set in_flight_bytes in case CRQA flag is
       set
     - usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer
     - net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read
     - [arm64,armhf] usb: dwc3: Soft reset phy on probe for host
     - usb: cdns3: Modify the return value of cdns_set_active () to void when
       CONFIG_PM_SLEEP is disabled
     - usb: hub: Guard against accesses to uninitialized BOS descriptors
     - usb: musb: Get the musb_qh poniter after musb_giveback
     - usb: musb: Modify the "HWVers" register address
     - iio: pressure: bmp280: Fix NULL pointer exception
     - iio: imu: bno055: Fix missing Kconfig dependencies
     - iio: adc: imx8qxp: Fix address for command buffer registers
     - iio: dac: ad3552r: Correct device IDs
     - iio: admv1013: add mixer_vgate corner cases
     - iio: pressure: dps310: Adjust Timeout Settings
     - iio: pressure: ms5611: ms5611_prom_is_valid false negative bug
     - iio: addac: Kconfig: update ad74413r selections
     - drm/atomic-helper: relax unregistered connector check
     - drm/amdgpu: add missing NULL check
     - drm/amd/display: Don't set dpms_off for seamless boot
     - ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA
     - ACPI: EC: Add quirk for the HP Pavilion Gaming 15-dk1xxx
     - ksmbd: not allow to open file if delelete on close bit is set
     - [x86] perf/x86/lbr: Filter vsyscall addresses
     - [x86] cpu: Fix AMD erratum #1485 on Zen4-based CPUs
     - mcb: remove is_added flag from mcb_device struct
     - [x86] thunderbolt: Workaround an IOMMU fault on certain systems with Intel
       Maple Ridge
     - [x86] thunderbolt: Check that lane 1 is in CL0 before enabling lane
       bonding
     - [x86] thunderbolt: Restart XDomain discovery handshake after failure
     - [powerpc*] 47x: Fix 47x syscall return crash
     - libceph: use kernel_connect()
     - ceph: fix incorrect revoked caps assert in ceph_fill_file_size()
     - ceph: fix type promotion bug on 32bit systems
     - Input: powermate - fix use-after-free in powermate_config_complete
     - Input: psmouse - fix fast_reconnect function for PS/2 mode
     - Input: xpad - add PXN V900 support
     - Input: i8042 - add Fujitsu Lifebook E5411 to i8042 quirk table
     - Input: goodix - ensure int GPIO is in input for gpio_count == 1 &&
       gpio_int_idx == 0 case
     - mctp: perform route lookups under a RCU read-side lock
     - nfp: flower: avoid rmmod nfp crash issues
     - usb: typec: ucsi: Use GET_CAPABILITY attributes data to set power supply
       scope
     - cgroup: Remove duplicates in cgroup v1 tasks file
     - dma-buf: add dma_fence_timestamp helper
     - pinctrl: avoid unsafe code pattern in find_pinctrl()
     - scsi: ufs: core: Correct clear TM error log
     - counter: chrdev: fix getting array extensions
     - counter: microchip-tcb-capture: Fix the use of internal GCLK logic
     - usb: typec: altmodes/displayport: Signal hpd low when exiting mode
     - usb: typec: ucsi: Clear EVENT_PENDING bit if ucsi_send_command fails
     - usb: gadget: udc-xilinx: replace memcpy with memcpy_toio
     - usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call
     - usb: cdnsp: Fixes issue with dequeuing not queued requests
     - [x86] alternatives: Disable KASAN in apply_alternatives()
     - [amd64] dmaengine: idxd: use spin_lock_irqsave before wait_event_lock_irq
     - [powerpc*] 8xx: Fix pte_access_permitted() for PAGE_NONE
     - [powerpc*] 64e: Fix wrong test in __ptep_test_and_clear_young()
     - ALSA: hda/realtek - Fixed two speaker platform
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.60
     - lib/Kconfig.debug: do not enable DEBUG_PREEMPT by default
     - igc: remove I226 Qbv BaseTime restriction
     - igc: enable Qbv configuration for 2nd GCL
     - igc: Remove reset adapter task for i226 during disable tsn config
     - igc: Add qbv_config_change_errors counter
     - igc: Add condition for qbv_config_change_errors counter
     - igc: Fix race condition in PTP tx code
     - Bluetooth: hci_event: Ignore NULL link key
     - Bluetooth: Reject connection with the device which has same BD_ADDR
     - Bluetooth: Fix a refcnt underflow problem for hci_conn
     - Bluetooth: vhci: Fix race when opening vhci device
     - Bluetooth: hci_event: Fix coding style
     - Bluetooth: avoid memcmp() out of bounds warning
     - ice: fix over-shifted variable
     - ice: reset first in crash dump kernels
     - net/smc: return the right falback reason when prefix checks fail
     - btrfs: fix stripe length calculation for non-zoned data chunk allocation
     - nfc: nci: fix possible NULL pointer dereference in send_acknowledge()
     - regmap: fix NULL deref on lookup
     - [x86] KVM: x86: Mask LVTPC when handling a PMI
     - [x86] sev: Disable MMIO emulation from user mode (CVE-2023-46813)
     - [x86] sev: Check IOBM for IOIO exceptions from user-space (CVE-2023-46813)
     - [x86] sev: Check for user-space IOIO pointing to kernel space
       (CVE-2023-46813)
     - [x86] fpu: Allow caller to constrain xfeatures when copying to uabi buffer
     - [x86] KVM: x86: Constrain guest-supported xfeatures only at
       KVM_GET_XSAVE{2}
     - [x86] KVM: SVM: add support for Invalid IPI Vector interception
     - [x86] KVM: SVM: refresh AVIC inhibition in svm_leave_nested()
     - audit,io_uring: io_uring openat triggers audit reference count underflow
     - tcp: check mptcp-level constraints for backlog coalescing
     - mptcp: more conservative check for zero probes
     - netfilter: nft_payload: fix wrong mac header matching
     - nvmet-tcp: Fix a possible UAF in queue intialization setup (CVE-2023-5178)
     - [x86] drm/i915: Retry gtt fault when out of fence registers
     - ALSA: hda/realtek - Fixed ASUS platform headset Mic issue
     - ALSA: hda/realtek: Add quirk for ASUS ROG GU603ZV
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15s-fq5xxx
     - qed: fix LL2 RX buffer allocation
     - xfrm: fix a data-race in xfrm_lookup_with_ifid()
     - xfrm: fix a data-race in xfrm_gen_index()
     - xfrm: interface: use DEV_STATS_INC()
     - wifi: cfg80211: use system_unbound_wq for wiphy work
     - net: ipv4: fix return value check in esp_remove_trailer
     - net: ipv6: fix return value check in esp_remove_trailer
     - net: rfkill: gpio: prevent value glitch during probe
     - tcp: fix excessive TLP and RACK timeouts from HZ rounding
     - tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single
       skb
     - tcp: Fix listen() warning with v4-mapped-v6 address.
     - tun: prevent negative ifindex
     - ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr
     - net: usb: smsc95xx: Fix an error code in smsc95xx_reset()
     - i40e: prevent crash on probe if hw registers have invalid values
     - net: dsa: bcm_sf2: Fix possible memory leak in bcm_sf2_mdio_register()
     - bonding: Return pointer to data after pull on skb
     - net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve
     - neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section
     - netfilter: nft_set_rbtree: .deactivate fails if element has expired
     - netlink: Correct offload_xstats size
     - netfilter: nf_tables: do not remove elements if set backend implements
       .abort
     - netfilter: nf_tables: revert do not remove elements if set backend
       implements .abort
     - net: phy: bcm7xxx: Add missing 16nm EPHY statistics
     - net: pktgen: Fix interface flags printing
     - net: avoid UAF on deleted altname
     - net: fix ifname in netlink ntf during netns move
     - net: check for altname conflicts when changing netdev's netns
     - usb: misc: onboard_usb_hub: add Genesys Logic GL850G hub support
     - usb: misc: onboard_usb_hub: add Genesys Logic GL852G hub support
     - usb: misc: onboard_usb_hub: add Genesys Logic GL3523 hub support
     - usb: misc: onboard_hub: add support for Microchip USB2412 USB 2.0 hub
     - serial: Move uart_change_speed() earlier
     - serial: Rename uart_change_speed() to uart_change_line_settings()
     - serial: Reduce spinlocked portion of uart_rs485_config()
     - serial: 8250: omap: Fix imprecise external abort for omap_8250_pm()
     - serial: 8250_omap: Fix errors with no_console_suspend
     - iio: core: introduce iio_device_{claim|release}_buffer_mode() APIs
     - iio: cros_ec: fix an use-after-free in cros_ec_sensors_push_data()
     - iio: adc: ad7192: Simplify using devm_regulator_get_enable()
     - iio: adc: ad7192: Correct reference voltage
     - pwr-mlxbf: extend Kconfig to include gpio-mlxbf3 dependency
     - fs-writeback: do not requeue a clean inode having skipped pages
     - btrfs: prevent transaction block reserve underflow when starting
       transaction
     - btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to
       1
     - btrfs: initialize start_slot in btrfs_log_prealloc_extents
     - i2c: mux: Avoid potential false error message in i2c_mux_add_adapter
     - overlayfs: set ctime when setting mtime and atime
     - gpio: timberdale: Fix potential deadlock on &tgpio->lock
     - ata: libata-core: Fix compilation warning in ata_dev_config_ncq()
     - ata: libata-eh: Fix compilation warning in ata_eh_link_report()
     - tracing: relax trace_event_eval_update() execution with cond_resched()
     - wifi: mwifiex: Sanity check tlv_len and tlv_bitmap_len
     - wifi: iwlwifi: Ensure ack flag is properly cleared.
     - HID: logitech-hidpp: Add Bluetooth ID for the Logitech M720 Triathlon
       mouse
     - HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event
     - Bluetooth: btusb: add shutdown function for QCA6174
     - Bluetooth: Avoid redundant authentication
     - Bluetooth: hci_core: Fix build warnings
     - wifi: cfg80211: Fix 6GHz scan configuration
     - wifi: mac80211: work around Cisco AP 9115 VHT MPDU length
     - wifi: mac80211: allow transmitting EAPOL frames with tainted key
     - wifi: cfg80211: avoid leaking stack data into trace
     - regulator/core: Revert "fix kobject release warning and memory leak in
       regulator_register()"
     - sky2: Make sure there is at least one frag_addr available
     - ipv4/fib: send notify when delete source address routes
     - drm: panel-orientation-quirks: Add quirk for One Mix 2S
     - btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c
     - btrfs: error out when COWing block using a stale transaction
     - btrfs: error when COWing block from a root that is being deleted
     - btrfs: error out when reallocating block for defrag using a stale
       transaction
     - drm/amd/pm: add unique_id for gc 11.0.3
     - HID: multitouch: Add required quirk for Synaptics 0xcd7e device
     - HID: nintendo: reinitialize USB Pro Controller after resuming from suspend
     - [x86] platform/x86: touchscreen_dmi: Add info for the Positivo C4128B
     - cpufreq: schedutil: Update next_freq when cpufreq_limits change
     - fprobe: Pass entry_data to handlers
     - fprobe: Add nr_maxactive to specify rethook_node pool size
     - fprobe: Fix to ensure the number of active retprobes is not zero
     - net: xfrm: skip policies marked as dead while reinserting policies
     - xfrm6: fix inet6_dev refcount underflow problem
     - net/mlx5: E-switch, register event handler before arming the event
     - net/mlx5: Handle fw tracer change ownership event based on MTRC
     - net/mlx5e: Don't offload internal port if filter device is out device
     - net/tls: split tls_rx_reader_lock
     - tcp: allow again tcp_disconnect() when threads are waiting
     - ice: Remove redundant pci_enable_pcie_error_reporting()
     - Bluetooth: hci_event: Fix using memcmp when comparing keys
     - tcp_bpf: properly release resources on error paths
     - net/smc: fix smc clc failed issue when netdevice not in init_net
     - mtd: physmap-core: Restore map_rom fallback
     - dt-bindings: mmc: sdhci-msm: correct minimum number of clocks
     - mmc: sdhci-pci-gli: fix LPM negotiation so x86/S0ix SoCs can suspend
     - mmc: core: sdio: hold retuning if sdio in 1-bit mode
     - mmc: core: Capture correct oemid-bits for eMMC cards
     - Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()"
     - pNFS: Fix a hang in nfs4_evict_inode()
     - pNFS/flexfiles: Check the layout validity in
       ff_layout_mirror_prepare_stats
     - NFSv4.1: fixup use EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - ACPI: irq: Fix incorrect return value in acpi_register_gsi()
     - nfs42: client needs to strip file mode's suid/sgid bit after ALLOCATE op
     - nvme: sanitize metadata bounce buffer for reads
     - nvme-pci: add BOGUS_NID for Intel 0a54 device
     - nvme-rdma: do not try to stop unallocated queues
     - [x86] KVM: x86/mmu: Stop zapping invalidated TDP MMU roots asynchronously
     - HID: input: map battery system charging
     - USB: serial: option: add Telit LE910C4-WWX 0x1035 composition
     - USB: serial: option: add entry for Sierra EM9191 with new firmware
     - USB: serial: option: add Fibocom to DELL custom modem FM101R-GL
     - perf: Disallow mis-matched inherited group reads (CVE-2023-5717)
     - [s390x] pci: fix iommu bitmap allocation
     - [s390x] cio: fix a memleak in css_alloc_subchannel
     - [x86] platform/surface: platform_profile: Propagate error if profile
       registration fails
     - [x86] platform/x86: intel-uncore-freq: Conditionally create attribute for
       read frequency
     - [x86] platform/x86: asus-wmi: Change ASUS_WMI_BRN_DOWN code from 0x20 to
       0x2e
     - [x86] platform/x86: asus-wmi: Only map brightness codes when using
       asus-wmi backlight control
     - [x86] platform/x86: asus-wmi: Map 0x2a code, Ignore 0x2b and 0x2c events
     - gpio: vf610: set value before the direction to avoid a glitch
     - drm/bridge: ti-sn65dsi86: Associate DSI device lifetime with auxiliary
       device
     - serial: 8250: omap: Move uart_write() inside PM section
     - serial: 8250: omap: convert to modern PM ops
     - kallsyms: Reduce the memory occupied by kallsyms_seqs_of_names[]
     - kallsyms: Add helper kallsyms_on_each_match_symbol()
     - tracing/kprobes: Return EADDRNOTAVAIL when func matches several symbols
     - gpio: vf610: make irq_chip immutable
     - gpio: vf610: mask the gpio irq in system suspend and support wakeup
     - phy: mapphone-mdm6600: Fix runtime disable on probe
     - phy: mapphone-mdm6600: Fix runtime PM for remove
     - phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins
     - net: move altnames together with the netdevice
     - Bluetooth: hci_sock: fix slab oob read in create_monitor_event
     - Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name
     - mptcp: avoid sending RST when closing the initial subflow
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.61
     - [x86] KVM: x86/pmu: Truncate counter value to allowed width on write
     - mmc: core: Align to common busy polling behaviour for mmc ioctls
     - mmc: block: ioctl: do write error check for spi
     - mmc: core: Fix error propagation for some ioctl commands
     - virtio_balloon: Fix endless deflation and inflation on arm64
     - virtio-mmio: fix memory leak of vm_dev
     - virtio-crypto: handle config changed by work queue
     - virtio_pci: fix the common cfg map size
     - vsock/virtio: initialize the_virtio_vsock before using VQs
     - vhost: Allow null msg.size on VHOST_IOTLB_INVALIDATE
     - mm: fix vm_brk_flags() to not bail out while holding lock
     - hugetlbfs: clear resv_map pointer if mmap fails
     - mm/page_alloc: correct start page when guard page debug is enabled
     - mm/migrate: fix do_pages_move for compat pointers
     - hugetlbfs: extend hugetlb_vma_lock to private VMAs
     - maple_tree: add GFP_KERNEL to allocations in mas_expected_entries()
     - nfsd: lock_rename() needs both directories to live on the same fs
     - [x86] drm/i915/pmu: Check if pmu is closed before stopping event
     - drm/amd: Disable ASPM for VI w/ all Intel systems
     - drm/dp_mst: Fix NULL deref in get_mst_branch_device_by_guid_helper()
     - [armhf] clk: ti: Fix missing omap4 mcbsp functional clock and aliases
     - [armhf] clk: ti: Fix missing omap5 mcbsp functional clock and aliases
     - r8169: fix the KCSAN reported data-race in rtl_tx() while reading
       tp->cur_tx
     - r8169: fix the KCSAN reported data-race in rtl_tx while reading
       TxDescArray[entry].opts1
     - r8169: fix the KCSAN reported data race in rtl_rx while reading
       desc->opts1
     - iavf: initialize waitqueues before starting watchdog_task
     - i40e: Fix I40E_FLAG_VF_VLAN_PRUNING value
     - igb: Fix potential memory leak in igb_add_ethtool_nfc_entry
     - neighbour: fix various data-races
     - igc: Fix ambiguity in the ethtool advertising
     - net: ieee802154: adf7242: Fix some potential buffer overflow in
       adf7242_stats_show()
     - net: usb: smsc95xx: Fix uninit-value access in smsc95xx_read_reg
     - r8152: Increase USB control msg timeout to 5000ms as per spec
     - r8152: Run the unload routine if we have errors during probe
     - r8152: Cancel hw_phy_work if we have an error in probe
     - r8152: Release firmware if we have an error in probe
     - tcp: fix wrong RTO timeout when received SACK reneging
     - gtp: uapi: fix GTPA_MAX
     - gtp: fix fragmentation needed check with gso
     - i40e: Fix wrong check for I40E_TXR_FLAGS_WB_ON_ITR
     - iavf: in iavf_down, disable queues when removing the driver
     - scsi: sd: Introduce manage_shutdown device flag
     - blk-throttle: check for overflow in calculate_bytes_allowed
     - io_uring/fdinfo: lock SQ thread while retrieving thread cpu/pid
       (CVE-2023-46862)
     - iio: afe: rescale: Accept only offset channels
     - iio: exynos-adc: request second interupt only when touchscreen mode is
       used
     - iio: adc: xilinx-xadc: Don't clobber preset voltage/temperature thresholds
     - iio: adc: xilinx-xadc: Correct temperature offset/scale for UltraScale
     - i2c: muxes: i2c-mux-pinctrl: Use of_get_i2c_adapter_by_node()
     - i2c: muxes: i2c-mux-gpmux: Use of_get_i2c_adapter_by_node()
     - i2c: muxes: i2c-demux-pinctrl: Use of_get_i2c_adapter_by_node()
     - i2c: stm32f7: Fix PEC handling in case of SMBUS transfers
     - i2c: aspeed: Fix i2c bus hang in slave read
     - tracing/kprobes: Fix the description of variable length arguments
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6ULL
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6SLL
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6UL
     - [x86] i8259: Skip probing when ACPI/MADT advertises PCAT compatibility
     - [x86] cpu: Add model number for Intel Arrow Lake mobile processor
     - perf/core: Fix potential NULL deref
     - clk: Sanitize possible_parent_show to Handle Return Value of
       of_clk_get_parent_name
     - [x86] platform/x86: Add s2idle quirk for more Lenovo laptops
     - ext4: add two helper functions extent_logical_end() and pa_logical_end()
     - ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow
     - ext4: avoid overlapping preallocations due to overflow
     - [x86] objtool/x86: add missing embedded_insn check
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.62
     - [arm*] ASoC: simple-card: fixup asoc_simple_probe() error handling
     - net: sched: cls_u32: Fix allocation size in u32_init()
     - [armhf] irqchip/stm32-exti: add missing DT IRQ flag translation
     - Input: synaptics-rmi4 - handle reset delay when using SMBus trsnsport
     - fbdev: atyfb: only use ioremap_uc() on i386 and ia64
     - netfilter: nfnetlink_log: silence bogus compiler warning
     - efi: fix memory leak in krealloc failure handling
     - ASoC: rt5650: fix the wrong result of key button
     - drm/ttm: Reorder sys manager cleanup step
     - [x86] fbdev: uvesafb: Call cn_del_callback() at the end of uvesafb_exit()
     - scsi: mpt3sas: Fix in error path
     - drm/amdgpu: Unset context priority is now invalid
     - gpu/drm: Eliminate DRM_SCHED_PRIORITY_UNSET
     - netfilter: nf_tables: audit log object reset once per table
     - drm/amdgpu: Reserve fences for VM update
     - net: chelsio: cxgb4: add an error code check in t4_load_phy_fw
     - r8152: Check for unplug in rtl_phy_patch_request()
     - r8152: Check for unplug in r8153b_ups_en() / r8153c_ups_en()
     - [powerpc*] mm: Fix boot crash with FLATMEM
     - io_uring: kiocb_done() should *not* trust ->ki_pos if
       ->{read,write}_iter() failed
     - ceph_wait_on_conflict_unlink(): grab reference before dropping ->d_lock
     - power: supply: core: Use blocking_notifier_call_chain to avoid RCU
       complaint
     - perf evlist: Avoid frequency mode for the dummy event
     - [x86] KVM: SVM: always update the x2avic msr interception (CVE-2023-5090)
     - mm/mempolicy: fix set_mempolicy_home_node() previous VMA pointer
     - mmap: fix error paths with dup_anon_vma()
     - ALSA: usb-audio: add quirk flag to enable native DSD for McIntosh devices
     - PCI: Prevent xHCI driver from claiming AMD VanGogh USB3 DRD device
     - usb: storage: set 1.50 as the lower bcdDevice for older "Super Top"
       compatibility
     - usb: typec: tcpm: Fix NULL pointer dereference in tcpm_pd_svdm()
     - usb: raw-gadget: properly handle interrupted requests
     - tty: n_gsm: fix race condition in status line change on dead connections
     - tty: 8250: Remove UC-257 and UC-431
     - tty: 8250: Add support for additional Brainboxes UC cards
     - tty: 8250: Add support for Brainboxes UP cards
     - tty: 8250: Add support for Intashield IS-100
     - tty: 8250: Fix port count of PX-257
     - tty: 8250: Fix up PX-803/PX-857
     - tty: 8250: Add support for additional Brainboxes PX cards
     - tty: 8250: Add support for Intashield IX cards
     - tty: 8250: Add Brainboxes Oxford Semiconductor-based quirks
     - misc: pci_endpoint_test: Add deviceID for J721S2 PCIe EP device support
     - ALSA: hda: intel-dsp-config: Fix JSL Chromebook quirk detection
     - [x86] ASoC: SOF: sof-pci-dev: Fix community key quirk detection
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.63
     - hwmon: (nct6775) Fix incorrect variable reuse in fan_div calculation
     - sched/fair: Fix cfs_rq_is_decayed() on !SMP
     - [x86] iov_iter, x86: Be consistent about the __user tag on
       copy_mc_to_user()
     - sched/uclamp: Set max_spare_cap_cpu even if max_spare_cap is 0
     - sched/uclamp: Ignore (util == 0) optimization in feec() when p_util_max =
       0
     - objtool: Propagate early errors
     - sched: Fix stop_one_cpu_nowait() vs hotplug
     - vfs: fix readahead(2) on block devices
     - writeback, cgroup: switch inodes with dirty timestamps to release dying
       cgwbs
     - [x86] srso: Fix SBPB enablement for (possible) future fixed HW
     - futex: Don't include process MM in futex key on no-MMU
     - [x86] numa: Introduce numa_fill_memblks()
     - ACPI/NUMA: Apply SRAT proximity domain to entire CFMWS window
     - [x86] sev-es: Allow copy_from_kernel_nofault() in earlier boot
     - [x86] boot: Fix incorrect startup_gdt_descr.size
     - [arm64,armhf] drivers/clocksource/timer-ti-dm: Don't call clk_get_rate()
       in stop function
     - pstore/platform: Add check for kstrdup
     - string: Adjust strtomem() logic to allow for smaller sources
     - genirq/matrix: Exclude managed interrupts in irq_matrix_allocated()
     - wifi: cfg80211: add flush functions for wiphy work
     - wifi: mac80211: move radar detect work to wiphy work
     - wifi: mac80211: move scan work to wiphy work
     - wifi: mac80211: move offchannel works to wiphy work
     - wifi: mac80211: move sched-scan stop work to wiphy work
     - wifi: mac80211: fix # of MSDU in A-MSDU calculation
     - wifi: iwlwifi: honor the enable_ini value
     - i40e: fix potential memory leaks in i40e_remove()
     - iavf: Fix promiscuous mode configuration flow messages
     - udp: add missing WRITE_ONCE() around up->encap_rcv
     - tcp: call tcp_try_undo_recovery when an RTOd TFO SYNACK is ACKed
     - gve: Use size_add() in call to struct_size()
     - tls: Only use data field in crypto completion function
     - tls: Use size_add() in call to struct_size()
     - tipc: Use size_add() in calls to struct_size()
     - net: spider_net: Use size_add() in call to struct_size()
     - net: ethernet: mtk_wed: fix EXT_INT_STATUS_RX_FBUF definitions for MT7986
       SoC
     - wifi: rtw88: debug: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
     - wifi: ath11k: fix boot failure with one MSI vector
     - wifi: mt76: mt7603: rework/fix rx pse hang check
     - wifi: mt76: mt7603: improve watchdog reset reliablity
     - wifi: mt76: mt7603: improve stuck beacon handling
     - wifi: mt76: mt7915: fix beamforming availability check
     - wifi: ath: dfs_pattern_detector: Fix a memory initialization issue
     - tcp_metrics: add missing barriers on delete
     - tcp_metrics: properly set tp->snd_ssthresh in tcp_init_metrics()
     - tcp_metrics: do not create an entry from tcp_init_metrics()
     - wifi: rtlwifi: fix EDCA limit set by BT coexistence
     - ACPI: property: Allow _DSD buffer data only for byte accessors
     - ACPI: video: Add acpi_backlight=vendor quirk for Toshiba Portégé R100
     - wifi: ath11k: fix Tx power value during active CAC
     - can: dev: can_restart(): don't crash kernel if carrier is OK
     - can: dev: can_restart(): fix race condition between controller restart and
       netif_carrier_on()
     - can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is
       accessed out of bounds
     - PM / devfreq: rockchip-dfi: Make pmu regmap mandatory
     - wifi: wfx: fix case where rates are out of order
     - netfilter: nf_tables: Drop pointless memset when dumping rules
     - thermal: core: prevent potential string overflow
     - r8169: use tp_to_dev instead of open code
     - r8169: fix rare issue with broken rx after link-down on RTL8125
     - net: skb_find_text: Ignore patterns extending past 'to'
     - tcp: fix cookie_init_timestamp() overflows
     - wifi: iwlwifi: call napi_synchronize() before freeing rx/tx queues
     - wifi: iwlwifi: pcie: synchronize IRQs before NAPI
     - wifi: iwlwifi: empty overflow queue during flush
     - Bluetooth: hci_sync: Fix Opcode prints in bt_dev_dbg/err
     - bpf: Fix unnecessary -EBUSY from htab_lock_bucket
     - ACPI: sysfs: Fix create_pnp_modalias() and create_of_modalias()
     - ipv6: avoid atomic fragment on GSO packets
     - net: add DEV_STATS_READ() helper
     - ipvlan: properly track tx_errors
     - regmap: debugfs: Fix a erroneous check after snprintf()
     - [arm64] spi: tegra: Fix missing IRQ check in tegra_slink_probe()
     - [arm64] clk: qcom: gcc-msm8996: Remove RPM bus clocks
     - [arm64] clk: qcom: clk-rcg2: Fix clock rate overflow for high parent
       frequencies
     - [arm64] clk: qcom: mmcc-msm8998: Don't check halt bit on some branch clks
     - [arm64] clk: qcom: mmcc-msm8998: Fix the SMMU GDSC
     - [arm64] clk: qcom: gcc-sm8150: Fix gcc_sdcc2_apps_clk_src
     - clk: imx: Select MXC_CLK for CLK_IMX8QXP
     - [arm64] clk: imx: imx8mq: correct error handling path
     - [arm64] clk: imx: imx8qxp: Fix elcdif_pll clock
     - [arm64] clk: renesas: rcar-gen3: Extend SDnH divider table
     - clk: linux/clk-provider.h: fix kernel-doc warnings and typos
     - [arm64] spi: nxp-fspi: use the correct ioremap function
     - [armhf] clk: ti: change ti_clk_register[_omap_hw]() API
     - [armhf] clk: ti: fix double free in of_ti_divider_clk_setup()
     - [arm64] clk: qcom: config IPQ_APSS_6018 should depend on QCOM_SMEM
     - [x86] platform/x86: wmi: Fix probe failure when failing to register WMI
       devices
     - [x86] platform/x86: wmi: Fix opening of char device
     - hwmon: (coretemp) Fix potentially truncated sysfs attribute name
     - Revert "hwmon: (sch56xx-common) Add DMI override table"
     - Revert "hwmon: (sch56xx-common) Add automatic module loading on supported
       devices"
     - hwmon: (sch5627) Use bit macros when accessing the control register
     - hwmon: (sch5627) Disallow write access if virtual registers are locked
     - [arm64,armhf] drm/rockchip: vop: Fix reset of state in duplicate state
       crtc funcs
     - [arm64,armhf] drm/rockchip: vop: Fix call to crtc reset helper
     - [arm64] drm/rockchip: vop2: Don't crash for invalid duplicate_state
     - [arm64] drm/rockchip: vop2: Add missing call to crtc reset helper
     - drm/radeon: possible buffer overflow
     - drm/amd/display: Check all enabled planes in dm_check_crtc_cursor
     - drm/amd/display: Refactor dm_get_plane_scale helper
     - drm/amd/display: Bail from dm_check_crtc_cursor if no relevant change
     - io_uring/kbuf: Fix check of BID wrapping in provided buffers
     - io_uring/kbuf: Allow the full buffer id space for provided buffers
     - [arm64] drm/rockchip: cdn-dp: Fix some error handling paths in
       cdn_dp_probe()
     - [arm64,armhf] gpu: host1x: Correct allocated size for contexts
     - [arm64,armhf] drm/rockchip: Fix type promotion bug in
       rockchip_gem_iommu_map()
     - xenbus: fix error exit in xenbus_init()
     - xen-pciback: Consider INTx disabled when MSI/MSI-X is enabled
     - [arm64] drm/msm/dsi: use msm_gem_kernel_put to free TX buffer
     - [arm64] drm/msm/dsi: free TX buffer in unbind
     - [arm64,armhf] clocksource/drivers/arm_arch_timer: limit XGene-1 workaround
     - drivers/perf: hisi: use cpuhp_state_remove_instance_nocalls() for
       hisi_hns3_pmu uninit process
     - [arm64] perf/arm-cmn: Revamp model detection
     - [arm64] perf/arm-cmn: Fix DTC domain detection
     - drivers/perf: hisi_pcie: Check the type first in pmu::event_init()
     - [arm64] perf: hisi: Fix use-after-free when register pmu fails
     - [arm64] dts: qcom: sdm845: cheza doesn't support LMh node
     - [arm64] dts: qcom: sc7280: link usb3_phy_wrapper_gcc_usb30_pipe_clk
     - [arm64] dts: qcom: msm8916: Fix iommu local address range
     - [arm64] dts: qcom: msm8992-libra: drop duplicated reserved memory
     - [arm64] dts: qcom: sc7280: Add missing LMH interrupts
     - [arm64] dts: qcom: sm8150: add ref clock to PCIe PHYs
     - [arm64] dts: qcom: sm8350: fix pinctrl for UART18
     - [arm64] dts: qcom: sdm845-mtp: fix WiFi configuration
     - [arm64] dts: marvell: cn9310: Use appropriate label for spi1 pins
     - [arm64] dts: qcom: apq8016-sbc: Add missing ADV7533 regulators
     - firmware: ti_sci: Mark driver as non removable
     - [arm64] dts: ti: k3-am62a7-sk: Drop i2c-1 to 100Khz
     - [arm64] clk: scmi: Free scmi_clk allocated when the clocks with invalid
       info are skipped
     - [arm64] dts: imx8qm-ss-img: Fix jpegenc compatible entry
     - [arm64] dts: imx8mm: Add sound-dai-cells to micfil node
     - [arm64] dts: imx8mn: Add sound-dai-cells to micfil node
     - [arm64] tegra: Use correct interrupts for Tegra234 TKE
     - module/decompress: use vmalloc() for gzip decompression workspace
     - [x86] ASoC: cs35l41: Verify PM runtime resume errors in IRQ handler
     - [x86] ASoC: cs35l41: Undo runtime PM changes at driver exit time
     - ALSA: hda: cs35l41: Fix unbalanced pm_runtime_get()
     - ALSA: hda: cs35l41: Undo runtime PM changes at driver exit time
     - KEYS: Include linux/errno.h in linux/verification.h
     - crypto: hisilicon/hpre - Fix a erroneous check after snprintf()
     - hwrng: bcm2835 - Fix hwrng throughput regression
     - [i386] hwrng: geode - fix accessing registers
     - RDMA/core: Use size_{add,sub,mul}() in calls to struct_size()
     - [x86] crypto: qat - ignore subsequent state up commands
     - [x86] crypto: qat - relocate bufferlist logic
     - [x86] crypto: qat - rename bufferlist functions
     - [x86] crypto: qat - change bufferlist logic interface
     - [x86] crypto: qat - generalize crypto request buffers
     - [x86] crypto: qat - extend buffer list interface
     - [x86] crypto: qat - fix unregistration of crypto algorithms
     - scsi: ibmvfc: Fix erroneous use of rtas_busy_delay with hcall return code
     - libnvdimm/of_pmem: Use devm_kstrdup instead of kstrdup and check its
       return value
     - nd_btt: Make BTT lanes preemptible
     - [arm64] crypto: caam/qi2 - fix Chacha20 + Poly1305 self test failure
     - [arm64,armhf] crypto: caam/jr - fix Chacha20 + Poly1305 self test failure
     - [x86] crypto: qat - increase size of buffers
     - [amd64] PCI: vmd: Correct PCI Header Type Register's multi-function check
     - hid: cp2112: Fix duplicate workqueue initialization
     - [armel,armhf] 9321/1: memset: cast the constant byte to unsigned char
     - ext4: move 'ix' sanity check to corrent position
     - IB/mlx5: Fix rdma counter binding for RAW QP
     - [arm64] RDMA/hns: Fix printing level of asynchronous events
     - [arm64] RDMA/hns: Fix uninitialized ucmd in hns_roce_create_qp_common()
     - [arm64] RDMA/hns: Fix signed-unsigned mixed comparisons
     - [arm64] RDMA/hns: Add check for SL
     - [arm64] RDMA/hns: The UD mode can only be configured with DCQCN
     - [x86] ASoC: SOF: core: Ensure sof_ops_free() is still called when probe
       never ran.
     - scsi: ufs: core: Leave space for '\0' in utf8 desc string
     - [amd64] RDMA/hfi1: Workaround truncation compilation error
     - HID: cp2112: Make irq_chip immutable
     - hid: cp2112: Fix IRQ shutdown stopping polling for all IRQs on chip
     - Revert "HID: logitech-hidpp: add a module parameter to keep firmware
       gestures"
     - HID: logitech-hidpp: Remove HIDPP_QUIRK_NO_HIDINPUT quirk
     - HID: logitech-hidpp: Don't restart IO, instead defer hid_connect() only
     - HID: logitech-hidpp: Revert "Don't restart communication if not necessary"
     - HID: logitech-hidpp: Move get_wireless_feature_index() check to
       hidpp_connect_event()
     - [x86] ASoC: Intel: Skylake: Fix mem leak when parsing UUIDs fails
     - padata: Fix refcnt handling in padata_free_shell()
     - [x86] crypto: qat - fix deadlock in backlog processing
     - IB/mlx5: Fix init stage error handling to avoid double free of same QP and
       UAF
     - mfd: core: Un-constify mfd_cell.of_reg
     - mfd: core: Ensure disabled devices are skipped without aborting
     - mfd: dln2: Fix double put in dln2_probe
     - dt-bindings: mfd: mt6397: Add binding for MT6357
     - dt-bindings: mfd: mt6397: Split out compatible for MediaTek MT6366 PMIC
     - mfd: arizona-spi: Set pdata.hpdet_channel for ACPI enumerated devs
     - leds: turris-omnia: Drop unnecessary mutex locking
     - leds: turris-omnia: Do not use SMBUS calls
     - leds: pwm: Don't disable the PWM when the LED should be off
     - leds: trigger: ledtrig-cpu:: Fix 'output may be truncated' issue for 'cpu'
     - apparmor: fix invalid reference on profile->disconnected
     - perf stat: Fix aggr mode initialization
     - iio: frequency: adf4350: Use device managed functions and fix power down
       issue.
     - perf kwork: Fix incorrect and missing free atom in work_push_atom()
     - perf kwork: Add the supported subcommands to the document
     - perf kwork: Set ordered_events to true in 'struct perf_tool'
     - filemap: add filemap_get_folios_tag()
     - f2fs: convert f2fs_write_cache_pages() to use filemap_get_folios_tag()
     - f2fs: compress: fix deadloop in f2fs_write_cache_pages()
     - f2fs: compress: fix to avoid use-after-free on dic
     - f2fs: compress: fix to avoid redundant compress extension
     - tty: tty_jobctrl: fix pid memleak in disassociate_ctty()
     - pinctrl: renesas: rzg2l: Make reverse order of enable() for disable()
     - perf record: Fix BTF type checks in the off-cpu profiling
     - dmaengine: idxd: Register dsa_bus_type before registering idxd sub-drivers
     - usb: dwc2: fix possible NULL pointer dereference caused by driver
       concurrency
     - usb: chipidea: Fix DMA overwrite for Tegra
     - usb: chipidea: Simplify Tegra DMA alignment code
     - dmaengine: ti: edma: handle irq_of_parse_and_map() errors
     - misc: st_core: Do not call kfree_skb() under spin_lock_irqsave()
     - USB: usbip: fix stub_dev hub disconnect
     - dmaengine: pxa_dma: Remove an erroneous BUG_ON() in pxad_free_desc()
     - f2fs: fix to initialize map.m_pblk in f2fs_precache_extents()
     - [powerpc*] Only define __parse_fpscr() when required
     - modpost: fix tee MODULE_DEVICE_TABLE built on big-endian host
     - modpost: fix ishtp MODULE_DEVICE_TABLE built on big-endian host
     - [powerpc*] 40x: Remove stale PTE_ATOMIC_UPDATES macro
     - [powerpc*] xive: Fix endian conversion size
     - [powerpc*] vas: Limit open window failure messages in log bufffer
     - [powerpc*] imc-pmu: Use the correct spinlock initializer.
     - [powerpc*] pseries: fix potential memory leak in init_cpu_associativity()
     - xhci: Loosen RPM as default policy to cover for AMD xHC 1.1
     - usb: host: xhci-plat: fix possible kernel oops while resuming
     - perf machine: Avoid out of bounds LBR memory read
     - perf hist: Add missing puts to hist__account_cycles
     - 9p/net: fix possible memory leak in p9_check_errors()
     - i3c: Fix potential refcount leak in i3c_master_register_new_i3c_devs
     - cxl/mem: Fix shutdown order
     - crypto: ccp - Name -1 return value as SEV_RET_NO_FW_CALL
     - [x86] sev: Change snp_guest_issue_request()'s fw_err argument
     - [amd64] virt: sevguest: Fix passing a stack buffer as a scatterlist target
     - rtc: pcf85363: fix wrong mask/val parameters in regmap_update_bits call
     - pcmcia: cs: fix possible hung task and memory leak pccardd()
     - pcmcia: ds: fix refcount leak in pcmcia_device_add()
     - pcmcia: ds: fix possible name leak in error path in pcmcia_device_add()
     - media: hantro: Check whether reset op is defined before use
     - media: verisilicon: Do not enable G2 postproc downscale if source is
       narrower than destination
     - media: ov5640: Drop dead code using frame_interval
     - media: ov5640: fix vblank unchange issue when work at dvp mode
     - media: i2c: max9286: Fix some redundant of_node_put() calls
     - media: ov5640: Fix a memory leak when ov5640_probe fails
     - media: bttv: fix use after free error due to btv->timeout timer
     - media: amphion: handle firmware debug message
     - media: mtk-jpegenc: Fix bug in JPEG encode quality selection
     - media: s3c-camif: Avoid inappropriate kfree()
     - media: vidtv: psi: Add check for kstrdup
     - media: vidtv: mux: Add check and kfree for kstrdup
     - media: cedrus: Fix clock/reset sequence
     - media: cadence: csi2rx: Unregister v4l2 async notifier
     - media: dvb-usb-v2: af9035: fix missing unlock
     - media: cec: meson: always include meson sub-directory in Makefile
     - regmap: prevent noinc writes from clobbering cache
     - pwm: sti: Reduce number of allocations and drop usage of chip_data
     - pwm: brcmstb: Utilize appropriate clock APIs in suspend/resume
     - Input: synaptics-rmi4 - fix use after free in rmi_unregister_function()
     - watchdog: ixp4xx: Make sure restart always works
     - llc: verify mac len before reading mac header
     - hsr: Prevent use after free in prp_create_tagged_frame()
     - tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING
     - bpf: Check map->usercnt after timer->timer is assigned
     - inet: shrink struct flowi_common
     - net: page_pool: add missing free_percpu when page_pool_init fail
     - dccp: Call security_inet_conn_request() after setting IPv4 addresses.
     - dccp/tcp: Call security_inet_conn_request() after setting IPv6 addresses.
     - net: r8169: Disable multicast filter for RTL8168H and RTL8107E
     - Fix termination state for idr_for_each_entry_ul()
     - net: stmmac: xgmac: Enable support for multiple Flexible PPS outputs
     - net/smc: fix dangling sock under state SMC_APPFINCLOSEWAIT
     - net/smc: allow cdc msg send rather than drop it with NULL sndbuf_desc
     - net/smc: put sk reference if close work was canceled
     - nvme: fix error-handling for io_uring nvme-passthrough
     - tg3: power down device only on SYSTEM_POWER_OFF
     - nbd: fix uaf in nbd_open
     - blk-core: use pr_warn_ratelimited() in bio_check_ro()
     - virtio/vsock: replace virtio_vsock_pkt with sk_buff
     - vsock/virtio: remove socket from connected/bound list on shutdown
     - r8169: respect userspace disabling IFF_MULTICAST
     - i2c: iproc: handle invalid slave state
     - netfilter: xt_recent: fix (increase) ipv6 literal buffer length
     - netfilter: nft_redir: use `struct nf_nat_range2` throughout and
       deduplicate eval call-backs
     - netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses
     - drm/syncobj: fix DRM_SYNCOBJ_WAIT_FLAGS_WAIT_AVAILABLE
     - [arm64,armhf] ASoC: hdmi-codec: register hpd callback on component probe
     - ASoC: dapm: fix clock get name
     - fbdev: imsttfb: Fix error path of imsttfb_probe()
     - fbdev: imsttfb: fix a resource leak in probe
     - fbdev: fsl-diu-fb: mark wr_reg_wa() static
     - tracing/kprobes: Fix the order of argument descriptions
     - io_uring/net: ensure socket is marked connected on connect retry
     - [x86] amd_nb: Use Family 19h Models 60h-7Fh Function 4 IDs
     - Revert "mmc: core: Capture correct oemid-bits for eMMC cards"
     - btrfs: use u64 for buffer sizes in the tree search ioctls
     - wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush()
     - virtio/vsock: don't use skbuff state to account credit
     - virtio/vsock: remove redundant 'skb_pull()' call
     - virtio/vsock: don't drop skbuff on copy failure
     - vsock/loopback: use only sk_buff_head.lock to protect the packet queue
     - virtio/vsock: fix leaks due to missing skb owner
     - virtio/vsock: Fix uninit-value in virtio_transport_recv_pkt()
     - virtio/vsock: fix header length on skb merging
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.64
     - lib/generic-radix-tree.c: Don't overflow in peek()
     - perf/core: Bail out early if the request AUX area is out of bound
     - srcu: Fix srcu_struct node grpmask overflow on 64-bit systems
     - [armhf] clocksource/drivers/timer-imx-gpt: Fix potential memory leak
     - smp,csd: Throw an error if a CSD lock is stuck for too long
     - cpu/hotplug: Don't offline the last non-isolated CPU
     - workqueue: Provide one lock class key per work_on_cpu() callsite
     - [x86] mm: Drop the 4 MB restriction on minimal NUMA node memory size
     - wifi: plfxlc: fix clang-specific fortify warning
     - wifi: mac80211_hwsim: fix clang-specific fortify warning
     - wifi: mac80211: don't return unset power in ieee80211_get_tx_power()
     - atl1c: Work around the DMA RX overflow issue
     - bpf: Detect IP == ksym.end as part of BPF program
     - wifi: ath9k: fix clang-specific fortify warnings
     - wifi: ath10k: fix clang-specific fortify warning
     - net: annotate data-races around sk->sk_tx_queue_mapping
     - net: annotate data-races around sk->sk_dst_pending_confirm
     - wifi: ath10k: Don't touch the CE interrupt registers after power up
     - vsock: read from socket's error queue
     - bpf: Ensure proper register state printing for cond jumps
     - Bluetooth: btusb: Add date->evt_skb is NULL check
     - Bluetooth: Fix double free in hci_conn_cleanup
     - ACPI: EC: Add quirk for HP 250 G7 Notebook PC
     - tsnep: Fix tsnep_request_irq() format-overflow warning
     - [x86] platform/x86: thinkpad_acpi: Add battery quirk for Thinkpad X120e
     - [x86] drm/gma500: Fix call trace when psb_gem_mm_init() fails
     - drm/amdgpu: not to save bo in the case of RAS err_event_athub
     - drm/amd: Update `update_pcie_parameters` functions to use uint8_t
       arguments
     - drm/amd/display: use full update for clip size increase of large plane
       source
     - string.h: add array-wrappers for (v)memdup_user()
     - kernel: kexec: copy user-array safely
     - kernel: watch_queue: copy user-array safely
     - drm_lease.c: copy user-array safely
     - drm: vmwgfx_surface.c: copy user-array safely
     - [arm64] drm/msm/dp: skip validity check for DP CTS EDID checksum
     - drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7
     - drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga
     - drm/amdgpu: Fix potential null pointer derefernce
     - drm/radeon: fix a possible null pointer dereference
     - drm/amdgpu/vkms: fix a possible null pointer dereference
     - [arm64] drm/panel: st7703: Pick different reset sequence
     - drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL
     - [arm64] dts: ls208xa: use a pseudo-bus to constrain usb dma size
     - ASoC: soc-card: Add storage for PCI SSID
     - [x86] ASoC: SOF: Pass PCI SSID to machine driver
     - crypto: pcrypt - Fix hungtask for PADATA_RESET
     - [x86] ASoC: SOF: ipc4: handle EXCEPTION_CAUGHT notification from firmware
     - [amd64] RDMA/hfi1: Use FIELD_GET() to extract Link Width
     - [arm64] scsi: hisi_sas: Set debugfs_dir pointer to NULL after removing
       debugfs
     - [powerpc*] scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool
     - fs/jfs: Add check for negative db_l2nbperpage
     - fs/jfs: Add validity check for db_maxag and db_agpref
     - jfs: fix array-index-out-of-bounds in dbFindLeaf
     - jfs: fix array-index-out-of-bounds in diAlloc
     - HID: lenovo: Detect quirk-free fw on cptkbd and stop applying workaround
     - [armel,armhf] 9320/1: fix stack depot IRQ stack filter
     - ALSA: hda: Fix possible null-ptr-deref when assigning a stream
     - [armel,armhf] PCI: mvebu: Use FIELD_PREP() with Link Width
     - atm: iphase: Do PCI error checks on own line
     - PCI: Do error check on own line to split long "if" conditions
     - scsi: libfc: Fix potential NULL pointer dereference in
       fc_lport_ptp_setup()
     - PCI: Use FIELD_GET() to extract Link Width
     - PCI: Extract ATS disabling to a helper function
     - PCI: Disable ATS for specific Intel IPU E2000 devices
     - PCI: Use FIELD_GET() in Sapphire RX 5600 XT Pulse quirk
     - [x86] ASoC: Intel: soc-acpi-cht: Add Lenovo Yoga Tab 3 Pro YT3-X90 quirk
     - crypto: hisilicon/qm - prevent soft lockup in receive loop
     - HID: Add quirk for Dell Pro Wireless Keyboard and Mouse KM5221W
     - exfat: support handle zero-size directory
     - mfd: intel-lpss: Add Intel Lunar Lake-M PCI IDs
     - iio: adc: stm32-adc: harden against NULL pointer deref in
       stm32_adc_probe()
     - [x86] thunderbolt: Apply USB 3.x bandwidth quirk only in software
       connection manager
     - [arm64,armhf] usb: dwc3: core: configure TX/RX threshold for DWC3_IP
     - soundwire: dmi-quirks: update HP Omen match
     - f2fs: fix error handling of __get_node_page
     - usb: gadget: f_ncm: Always set current gadget in ncm_bind()
     - 9p/trans_fd: Annotate data-racy writes to file::f_flags
     - 9p: v9fs_listxattr: fix %s null argument warning
     - i2c: fix memleak in i2c_new_client_device()
     - [armhf] i2c: sun6i-p2wi: Prevent potential division by zero
     - virtio-blk: fix implicit overflow on virtio_max_dma_size
     - media: gspca: cpia1: shift-out-of-bounds in set_flicker
     - media: vivid: avoid integer overflow
     - gfs2: ignore negated quota changes
     - gfs2: fix an oops in gfs2_permission
     - media: cobalt: Use FIELD_GET() to extract Link Width
     - media: ccs: Fix driver quirk struct documentation
     - media: imon: fix access to invalid resource for the second interface
     - drm/amd/display: Avoid NULL dereference of timing generator
     - i2c: dev: copy userspace array safely
     - [armhf] ASoC: ti: omap-mcbsp: Fix runtime PM underflow warnings
     - drm/qxl: prevent memory leak
     - ALSA: hda/realtek: Add quirk for ASUS UX7602ZM
     - drm/amdgpu: fix software pci_unplug on some chips
     - pwm: Fix double shift bug
     - wifi: iwlwifi: Use FW rate for non-data frames
     - sched/core: Optimize in_task() and in_interrupt() a bit
     - SUNRPC: ECONNRESET might require a rebind
     - NFSv4.1: fix handling NFS4ERR_DELAY when testing for session trunking
     - SUNRPC: Add an IS_ERR() check back to where it was
     - NFSv4.1: fix SP4_MACH_CRED protection for pnfs IO
     - SUNRPC: Fix RPC client cleaned up the freed pipefs dentries
     - gfs2: Silence "suspicious RCU usage in gfs2_permission" warning
     - net: set SOCK_RCU_FREE before inserting socket into hashtable
     - ipvlan: add ipvlan_route_v6_outbound() helper
     - tty: Fix uninit-value access in ppp_sync_receive()
     - [arm64] net: hns3: fix add VLAN fail issue
     - [arm64] net: hns3: add barrier in vf mailbox reply process
     - [arm64] net: hns3: fix incorrect capability bit display for copper port
     - [arm64] net: hns3: fix out-of-bounds access may occur when coalesce info
       is read via debugfs
     - [arm64] net: hns3: fix variable may not initialized problem in
       hns3_init_mac_addr()
     - [arm64] net: hns3: fix VF reset fail issue
     - [arm64] net: hns3: fix VF wrong speed and duplex issue
     - tipc: Fix kernel-infoleak due to uninitialized TLV value
     - net: mvneta: fix calls to page_pool_get_stats
     - ppp: limit MRU to 64K
     - xen/events: fix delayed eoi list handling
     - ptp: annotate data-race around q->head and q->tail
     - bonding: stop the device in bond_setup_by_slave()
     - af_unix: fix use-after-free in unix_stream_read_actor()
     - netfilter: nf_conntrack_bridge: initialize err to 0
     - netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()
     - net: stmmac: fix rx budget limit check
     - net: stmmac: avoid rx queue overrun
     - net/mlx5e: fix double free of encap_header
     - net/mlx5e: fix double free of encap_header in update funcs
     - net/mlx5e: Fix pedit endianness
     - net/mlx5e: Reduce the size of icosq_str
     - net/mlx5e: Check return value of snprintf writing to fw_version buffer
     - net/mlx5e: Check return value of snprintf writing to fw_version buffer for
       representors
     - macvlan: Don't propagate promisc change to lower dev in passthru
     - cifs: spnego: add ';' in HOST_KEY_LEN
     - cifs: fix check of rc in function generate_smb3signingkey
     - [x86] i915/perf: Fix NULL deref bugs with drm_dbg() calls
     - [x86] perf intel-pt: Fix async branch flags
     - [powerpc*] perf: Fix disabling BHRB and instruction sampling
     - bpf: Fix check_stack_write_fixed_off() to correctly spill imm
     - bpf: Fix precision tracking for BPF_ALU | BPF_TO_BE | BPF_END
     - scsi: mpt3sas: Fix loop logic
     - scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for
       selected registers
     - scsi: qla2xxx: Fix system crash due to bad pointer access
     - [x86] crypto: x86/sha - load modules based on CPU features
     - [x86] cpu/hygon: Fix the CPU topology evaluation for real
     - [x86] KVM: x86: hyper-v: Don't auto-enable stimer on write from user-space
     - [x86] KVM: x86: Ignore MSR_AMD64_TW_CFG access
     - [x86] KVM: x86: Clear bit12 of ICR after APIC-write VM-exit
     - audit: don't take task_lock() in audit_exe_compare() code path
     - audit: don't WARN_ON_ONCE(!current->mm) in audit_exe_compare()
     - proc: sysctl: prevent aliased sysctls from getting passed to init
     - tty/sysrq: replace smp_processor_id() with get_cpu()
     - tty: serial: meson: fix hard LOCKUP on crtscts mode
     - hvc/xen: fix console unplug
     - hvc/xen: fix error path in xen_hvc_init() to always register frontend
       driver
     - hvc/xen: fix event channel handling for secondary consoles
     - PCI/sysfs: Protect driver's D3cold preference from user space
     - watchdog: move softlockup_panic back to early_param
     - ACPI: resource: Do IRQ override on TongFang GMxXGxx
     - regmap: Ensure range selector registers are updated after cache sync
     - wifi: ath11k: fix temperature event locking
     - wifi: ath11k: fix dfs radar event locking
     - wifi: ath11k: fix htt pktlog locking
     - wifi: ath11k: fix gtk offload status event locking
     - [arm64] mmc: meson-gx: Remove setting of CMD_CFG_ERROR
     - genirq/generic_chip: Make irq_remove_generic_chip() irqdomain aware
     - KEYS: trusted: tee: Refactor register SHM usage
     - KEYS: trusted: Rollback init_trusted() consistently
     - [arm64] Restrict CPU_BIG_ENDIAN to GNU as or LLVM IAS 15.x or newer
     - ksmbd: handle malformed smb1 message
     - ksmbd: fix slab out of bounds write in smb_inherit_dacl()
     - mmc: vub300: fix an error code
     - mmc: sdhci_am654: fix start loop index for TAP value parsing
     - mmc: Add quirk MMC_QUIRK_BROKEN_CACHE_FLUSH for Micron eMMC Q2J54A
     - PCI/ASPM: Fix L1 substate handling in aspm_attr_store_common()
     - PCI: kirin: Don't discard .remove() callback
     - PCI: exynos: Don't discard .remove() callback
     - wifi: wilc1000: use vmm_table as array in wilc struct
     - svcrdma: Drop connection after an RDMA Read error
     - rcu/tree: Defer setting of jiffies during stall reset
     - [arm64] dts: qcom: ipq6018: Fix hwlock index for SMEM
     - PM: hibernate: Use __get_safe_page() rather than touching the list
     - PM: hibernate: Clean up sync_read handling in snapshot_write_next()
     - rcu: kmemleak: Ignore kmemleak false positives when RCU-freeing objects
     - btrfs: don't arbitrarily slow down delalloc if we're committing
     - [arm64] dts: qcom: ipq8074: Fix hwlock index for SMEM
     - [arm64] firmware: qcom_scm: use 64-bit calling convention only when client
       is 64-bit
     - ACPI: FPDT: properly handle invalid FPDT subtables
     - [arm64] dts: qcom: ipq6018: Fix tcsr_mutex register size
     - [arm64] mfd: qcom-spmi-pmic: Fix reference leaks in revid helper
     - [arm64] mfd: qcom-spmi-pmic: Fix revid implementation
     - ima: annotate iint mutex to avoid lockdep false positive warnings
     - ima: detect changes to the backing overlay file
     - netfilter: nf_tables: remove catchall element in GC sync path
       (CVE-2023-6111)
     - netfilter: nf_tables: split async and sync catchall in two functions
     - hid: lenovo: Resend all settings on reset_resume for compact keyboards
     - jbd2: fix potential data lost in recovering journal raced with
       synchronizing fs bdev
     - quota: explicitly forbid quota files from being encrypted
     - kernel/reboot: emergency_restart: Set correct system_state
     - i2c: core: Run atomic i2c xfer when !preemptible
     - tracing: Have the user copy of synthetic event address use correct context
     - driver core: Release all resources during unbind before updating device
       links
     - mcb: fix error handling for different scenarios when parsing
     - dmaengine: stm32-mdma: correct desc prep when channel running
     - [s390x] cmma: fix detection of DAT pages
     - mm/cma: use nth_page() in place of direct struct page manipulation
     - mm/memory_hotplug: use pfn math in place of direct struct page
       manipulation
     - mtd: cfi_cmdset_0001: Byte swap OTP info
     - xhci: Enable RPM on controllers that support low-power states
     - fs: add ctime accessors infrastructure
     - smb3: fix creating FIFOs when mounting with "sfu" mount option
     - smb3: fix touch -h of symlink
     - smb3: fix caching of ctime on setxattr
     - smb: client: fix use-after-free bug in cifs_debug_data_proc_show()
     - smb: client: fix potential deadlock when releasing mids
     - cifs: reconnect helper should set reconnect for the right channel
     - cifs: force interface update before a fresh session setup
     - cifs: do not reset chan_max if multichannel is not supported at mount
     - xfs: recovery should not clear di_flushiter unconditionally
     - btrfs: zoned: wait for data BG to be finished on direct IO allocation
     - ALSA: info: Fix potential deadlock at disconnection
     - ALSA: hda/realtek: Enable Mute LED on HP 255 G8
     - ALSA: hda/realtek - Add Dell ALC295 to pin fall back table
     - ALSA: hda/realtek - Enable internal speaker of ASUS K6500ZC
     - ALSA: hda/realtek: Enable Mute LED on HP 255 G10
     - ALSA: hda/realtek: Add quirks for HP Laptops
     - [arm64,armhf] pmdomain: bcm: bcm2835-power: check if the ASB register is
       equal to enable
     - [armhf] pmdomain: imx: Make imx pgc power domain also set the fwnode
     - cpufreq: stats: Fix buffer overflow detection in trans_stats()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0cb8:0xc559
     - bluetooth: Add device 0bda:887b to device tables
     - bluetooth: Add device 13d3:3571 to device tables
     - Bluetooth: btusb: Add RTW8852BE device 13d3:3570 to device tables
     - Bluetooth: btusb: Add 0bda:b85b for Fn-Link RTL8852BE
     - drm/amd/display: enable dsc_clk even if dsc_pg disabled
     - cxl/region: Validate region mode vs decoder mode
     - cxl/region: Cleanup target list on attach error
     - cxl/region: Move region-position validation to a helper
     - cxl/region: Do not try to cleanup after cxl_region_setup_targets() fails
     - cxl: Unify debug messages when calling devm_cxl_add_port()
     - cxl/mem: Move devm_cxl_add_endpoint() from cxl_core to cxl_mem
     - cxl/region: Fix x1 root-decoder granularity calculations
     - Revert ncsi: Propagate carrier gain/loss events to the NCSI controller
     - Revert "i2c: pxa: move to generic GPIO recovery"
     - lsm: fix default return value for vm_enough_memory
     - lsm: fix default return value for inode_getsecctx
     - [arm64] sbsa_gwdt: Calculate timeout with 64-bit math
     - i2c: designware: Disable TX_EMPTY irq while waiting for block length byte
     - [s390x] ap: fix AP bus crash on early config change callback invocation
     - net: ethtool: Fix documentation of ethtool_sprintf()
     - net: phylink: initialize carrier state at creation
     - i2c: i801: fix potential race in i801_block_transaction_byte_by_byte
     - f2fs: do not return EFSCORRUPTED, but try to run online repair
     - f2fs: avoid format-overflow warning
     - media: lirc: drop trailing space from scancode transmit
     - media: sharp: fix sharp encoding
     - dm-verity: don't use blocking calls from tasklets
     - nfsd: fix file memleak on client_opens_release
     - mmc: sdhci-pci-gli: A workaround to allow GL9750 to enter ASPM L1.2
     - mm: fix for negative counter: nr_file_hugepages
     - mm: kmem: drop __GFP_NOFAIL when allocating objcg vectors
     - mptcp: deal with large GSO size
     - mptcp: add validity check for sending RM_ADDR
     - mptcp: fix setsockopt(IP_TOS) subflow locking
     - r8169: fix network lost after resume on DASH systems
     - r8169: add handling DASH when DASH is disabled
     - mmc: sdhci-pci-gli: GL9750: Mask the replay timer timeout of AER
     - Revert "net: r8169: Disable multicast filter for RTL8168H and RTL8107E"
     - ext4: apply umask if ACL support is disabled
     - ext4: correct offset of gdb backup in non meta_bg group to update_backups
     - ext4: mark buffer new if it is unwritten to avoid stale data exposure
     - ext4: correct return value of ext4_convert_meta_bg
     - ext4: correct the start block of counting reserved clusters
     - ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks
     - ext4: add missed brelse in update_backups
     - ext4: properly sync file size update after O_SYNC direct IO
     - drm/amd/pm: Handle non-terminated overdrive commands.
     - [x86] drm/i915: Bump GLK CDCLK frequency when driving multiple pipes
     - [x86] drm/i915: Fix potential spectre vulnerability
     - drm/amd/pm: Fix error of MACO flag setting code
     - drm/amdgpu/smu13: drop compute workload workaround
     - drm/amdgpu: don't use pci_is_thunderbolt_attached()
     - drm/amdgpu: don't use ATRM for external devices
     - drm/amdgpu: fix error handling in amdgpu_bo_list_get()
     - drm/amdgpu: lower CS errors to debug severity
     - drm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer()
     - drm/amd/display: Enable fast plane updates on DCN3.2 and above
     - drm/amd/display: Change the DMCUB mailbox memory location from FB to inbox
     - [powerpc*] powernv: Fix fortify source warnings in opal-prd.c
     - tracing: Have trace_event_file have ref counters
     - Input: xpad - add VID for Turtle Beach controllers
     - mmc: sdhci-pci-gli: GL9755: Mask the replay timer timeout of AER
     - cxl/port: Fix NULL pointer access in devm_cxl_add_port()
 .
   [ Salvatore Bonaccorso ]
   * [rt] Drop "seqlock: Do the lockdep annotation before locking in
     do_write_seqcount_begin_nested()" (applied upstream)
   * Bump ABI to 14
   * Refresh "net: mana: Add new MANA VF performance counters for easier
     troubleshooting"
   * [rt] Update to 6.1.59-rt16
   * Do not enable DEBUG_PREEMPT (not enabled by default since 6.1.60)
   * [x86] drivers/platform/x86/hp: Enable X86_PLATFORM_DRIVERS_HP
     (Closes: #1038799)
   * nvmet: nul-terminate the NQNs passed in the connect command (CVE-2023-6121)

linux-signed-arm64 (6.1.64+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.64-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.56
     - NFS: Fix error handling for O_DIRECT write scheduling
     - NFS: Fix O_DIRECT locking issues
     - NFS: More O_DIRECT accounting fixes for error paths
     - NFS: Use the correct commit info in nfs_join_page_group()
     - NFS: More fixes for nfs_direct_write_reschedule_io()
     - NFS/pNFS: Report EINVAL errors from connect() to the server
     - SUNRPC: Mark the cred for revalidation if the server rejects it
     - NFSv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - NFSv4.1: fix pnfs MDS=DS session trunking
     - media: via: Use correct dependency for camera sensor drivers
     - netfs: Only call folio_start_fscache() one time for each folio
     - dm: fix a race condition in retrieve_deps
     - btrfs: improve error message after failure to add delayed dir index item
     - btrfs: remove BUG() after failure to insert delayed dir index item
     - ext4: replace the traditional ternary conditional operator with with
       max()/min()
     - ext4: move setting of trimmed bit into ext4_try_to_trim_range()
     - ext4: do not let fstrim block system suspend
     - [arm64] ASoC: meson: spdifin: start hw on dai probe
     - bpf: Avoid deadlock when using queue and stack maps from NMI
     - ASoC: rt5640: Revert "Fix sleep in atomic context"
     - ASoC: rt5640: Fix IRQ not being free-ed for HDA jack detect mode
     - ALSA: hda/realtek: Splitting the UX3402 into two separate models
     - net/core: Fix ETH_P_1588 flow dissector
     - ASoC: hdaudio.c: Add missing check for devm_kstrdup
     - [arm64] ASoC: imx-audmix: Fix return error with devm_clk_get()
     - iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set
     - [x86] ASoC: SOF: core: Only call sof_ops_free() on remove if the probe was
       successful
     - iavf: add iavf_schedule_aq_request() helper
     - iavf: schedule a request immediately after add/delete vlan
     - i40e: Fix VF VLAN offloading when port VLAN is configured
     - ionic: fix 16bit math issue when PAGE_SIZE >= 64KB
     - igc: Fix infinite initialization loop with early XDP redirect
     - scsi: iscsi_tcp: restrict to TCP sockets
     - [powerpc*] perf/hv-24x7: Update domain value check
     - dccp: fix dccp_v4_err()/dccp_v6_err() again
     - [x86] mm, kexec, ima: Use memblock_free_late() from
       ima_free_kexec_buffer()
     - net: hsr: Properly parse HSRv1 supervisor frames.
     - [x86] platform/x86: intel_scu_ipc: Check status after timeout in
       busy_loop()
     - [x86] platform/x86: intel_scu_ipc: Check status upon timeout in
       ipc_wait_for_interrupt()
     - [x86] platform/x86: intel_scu_ipc: Don't override scu in
       intel_scu_ipc_dev_simple_command()
     - [x86] platform/x86: intel_scu_ipc: Fail IPC send if still busy
     - [x86] srso: Fix srso_show_state() side effect
     - [x86] srso: Fix SBPB enablement for spec_rstack_overflow=off
     - [arm64] net: hns3: add cmdq check for vf periodic service task
     - [arm64] net: hns3: fix GRE checksum offload issue
     - [arm64] net: hns3: only enable unicast promisc when mac table full
     - [arm64] net: hns3: fix fail to delete tc flower rules during reset issue
     - [arm64] net: hns3: add 5ms delay before clear firmware reset irq source
     - net: bridge: use DEV_STATS_INC()
     - team: fix null-ptr-deref when team device type is changed
     - net: rds: Fix possible NULL-pointer dereference
     - [x86] i915/pmu: Move execlist stats initialization to execlist specific
       setup
     - locking/seqlock: Do the lockdep annotation before locking in
       do_write_seqcount_begin_nested()
     - net: ena: Flush XDP packets on error.
     - bnxt_en: Flush XDP for bnxt_poll_nitroa0()'s NAPI
     - igc: Expose tx-usecs coalesce setting to user
     - proc: nommu: /proc/<pid>/maps: release mmap read lock
     - proc: nommu: fix empty /proc/<pid>/maps
     - cifs: Fix UAF in cifs_demultiplex_thread()
     - gpio: tb10x: Fix an error handling path in tb10x_gpio_probe()
     - i2c: xiic: Correct return value check for xiic_reinit()
     - [armhf] dts: samsung: exynos4210-i9100: Fix LCD screen's physical size
     - f2fs: optimize iteration over sparse directories
     - f2fs: get out of a repeat loop when getting a locked data page
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling in PKEY_CLR2SECK2 IOCTL
     - [arm64] dts: qcom: sdm845-db845c: Mark cont splash memory region as
       reserved
     - wifi: ath11k: fix tx status reporting in encap offload mode
     - wifi: ath11k: Cleanup mac80211 references on failure during tx_complete
     - scsi: qla2xxx: Select qpair depending on which CPU post_cmd() gets called
     - scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id()
     - btrfs: reset destination buffer when read_extent_buffer() gets invalid
       range
     - vfio/mdev: Fix a null-ptr-deref bug for mdev_unregister_parent()
     - drm/bridge: ti-sn65dsi83: Do not generate HFP/HBP/HSA and EOT packet
     - [armhf] bus: ti-sysc: Use fsleep() instead of usleep_range() in
       sysc_reset()
     - [armhf] bus: ti-sysc: Fix missing AM35xx SoC matching
     - [arm64] firmware: arm_scmi: Harden perf domain info access
     - [arm64] firmware: arm_scmi: Fixup perf power-cost/microwatt support
     - power: supply: mt6370: Fix missing error code in mt6370_chg_toggle_cfo()
     - clk: sprd: Fix thm_parents incorrect configuration
     - clk: tegra: fix error return case for recalc_rate
     - [armhf] dts: omap: correct indentation
     - [armhf] dts: Unify pwm-omap-dmtimer node names
     - [armhf] dts: Unify pinctrl-single pin group nodes for omap4
     - [armhf] bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart
       wake-up
     - power: supply: ucs1002: fix error code in ucs1002_get_property()
     - power: supply: rk817: Fix node refcount leak
     - [arm64] soc: imx8m: Enable OCOTP clock for imx8mm before reading registers
     - [arm64] dts: imx: Add imx8mm-prt8mm.dtb to build
     - gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip
     - i2c: npcm7xx: Fix callback completion ordering
     - [x86] reboot: VMCLEAR active VMCSes before emergency reboot
     - ceph: drop messages from MDS when unmounting
     - dma-debug: don't call __dma_entry_alloc_check_leak() under
       free_entries_lock
     - bpf: Annotate bpf_long_memcpy with data_race
     - [arm64,armhf] spi: sun6i: reduce DMA RX transfer width to single byte
     - [arm64,armhf] spi: sun6i: fix race between DMA RX transfer completion and
       RX FIFO drain
     - nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid()
     - scsi: qedf: Add synchronization between I/O completions and abort
     - scsi: ufs: core: Move __ufshcd_send_uic_cmd() outside host_lock
     - scsi: ufs: core: Poll HCS.UCRDY before issuing a UIC command
     - ring-buffer: Avoid softlockup in ring_buffer_resize()
     - btrfs: assert delayed node locked when removing delayed item
     - ring-buffer: Do not attempt to read past "commit"
     - ata: sata_mv: Fix incorrect string length computation in mv_dump_mem()
     - [x86] platform/x86: asus-wmi: Support 2023 ROG X16 tablet mode
     - thermal/of: add missing of_node_put()
     - drm/amd/display: Don't check registers, if using AUX BL control
     - drm/amdgpu/soc21: don't remap HDP registers for SR-IOV
     - drm/amdgpu/nbio4.3: set proper rmmio_remap.reg_offset for SR-IOV
     - drm/amdgpu: Handle null atom context in VBIOS info ioctl
     - scsi: pm80xx: Use phy-specific SAS address when sending PHY_START command
     - scsi: pm80xx: Avoid leaking tags when processing
       OPC_INB_SET_CONTROLLER_CONFIG command
     - smb3: correct places where ENOTSUPP is used instead of preferred
       EOPNOTSUPP
     - ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset()
     - spi: nxp-fspi: reset the FLSHxCR1 registers
     - spi: stm32: add a delay before SPI disable
     - bpf: Clarify error expectations from bpf_clone_redirect
     - ALSA: hda: intel-sdw-acpi: Use u8 type for link index
     - firmware: cirrus: cs_dsp: Only log list of algorithms in debug build
     - media: vb2: frame_vector.c: replace WARN_ONCE with a comment
     - NFSv4.1: fix zero value filehandle in post open getattr
     - [x86] ASoC: SOF: Intel: MTL: Reduce the DSP init timeout
     - [powerpc*] watchpoints: Disable preemption in thread_change_pc()
     - [powerpc*] watchpoint: Disable pagefaults when getting user instruction
     - [powerpc*] watchpoints: Annotate atomic context in more places
     - [armhf] ncsi: Propagate carrier gain/loss events to the NCSI controller
     - net: hsr: Add __packed to struct hsr_sup_tlv.
     - perf build: Define YYNOMEM as YYNOABORT for bison < 3.81
     - nvme-pci: factor the iod mempool creation into a helper
     - nvme-pci: factor out a nvme_pci_alloc_dev helper
     - nvme-pci: do not set the NUMA node of device if it has none
     - wifi: ath11k: Don't drop tx_status when peer cannot be found
     - scsi: qla2xxx: Fix NULL pointer dereference in target mode
     - nvme-pci: always return an ERR_PTR from nvme_pci_alloc_dev
     - [x86] sgx: Resolves SECS reclaim vs. page fault for EAUG race
     - [x86] srso: Add SRSO mitigation for Hygon processors
     - [x86] KVM: SVM: INTERCEPT_RDTSCP is never intercepted anyway
     - [x86] KVM: SVM: Fix TSC_AUX virtualization setup
     - [x86] KVM: x86/mmu: Open code leaf invalidation from mmu_notifier
     - [x86] KVM: x86/mmu: Do not filter address spaces in
       for_each_tdp_mmu_root_yield_safe()
     - mptcp: fix bogus receive window shrinkage with multiple subflows
     - Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux"
     - serial: 8250_port: Check IRQ data before use
     - nilfs2: fix potential use after free in nilfs_gccache_submit_read_data()
     - netfilter: nf_tables: disallow rule removal from chain binding
       (CVE-2023-5197)
     - ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre
       M70q
     - ata: libata-scsi: link ata port and scsi device
     - ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION
       CODES
     - io_uring/fs: remove sqe->rw_flags checking from LINKAT
     - i2c: i801: unregister tco_pdev in i801_probe() error path
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82QF and 82UG
     - kernel/sched: Modify initial boot task idle setup
     - sched/rt: Fix live lock between select_fallback_rq() and RT push
     - netfilter: nf_tables: fix kdoc warnings after gc rework
     - Revert "SUNRPC dont update timeout value on connection reset"
     - timers: Tag (hr)timer softirq as hotplug safe
     - mm/slab_common: fix slab_caches list corruption after kmem_cache_destroy()
     - mm: memcontrol: fix GFP_NOFS recursion in memory.high enforcement
     - ring-buffer: Update "shortest_full" in polling
     - btrfs: properly report 0 avail for very full file systems
     - media: uvcvideo: Fix OOB read
     - bpf: Add override check to kprobe multi link attach
     - bpf: Fix BTF_ID symbol generation collision
     - bpf: Fix BTF_ID symbol generation collision in tools/
     - net: thunderbolt: Fix TCPv6 GSO checksum calculation
     - fs/smb/client: Reset password pointer to NULL (CVE-2023-5345)
     - ata: libata-core: Fix ata_port_request_pm() locking
     - ata: libata-core: Fix port and device removal
     - ata: libata-core: Do not register PM operations for SAS ports
     - ata: libata-sata: increase PMP SRST timeout to 10s
     - [x86] drm/i915/gt: Fix reservation address in ggtt_reserve_guc_top
     - power: supply: rk817: Add missing module alias
     - power: supply: ab8500: Set typing and props
     - fs: binfmt_elf_efpic: fix personality for ELF-FDPIC
     - [arm64] drm/meson: fix memory leak on ->hpd_notify callback
     - memcg: drop kmem.limit_in_bytes
     - mm, memcg: reconsider kmem.limit_in_bytes deprecation
     - [x86] ASoC: amd: yc: Fix a non-functional mic on Lenovo 82TL
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.57
     - ASoC: soc-utils: Export snd_soc_dai_is_dummy() symbol
     - mptcp: rename timer related helper to less confusing names
     - mptcp: fix dangling connection hang-up
     - mptcp: annotate lockless accesses to sk->sk_err
     - mptcp: move __mptcp_error_report in protocol.c
     - mptcp: process pending subflow error on close
     - ata,scsi: do not issue START STOP UNIT on resume
     - scsi: sd: Differentiate system and runtime start/stop management
     - scsi: sd: Do not issue commands to suspended disks on shutdown
     - scsi: core: Improve type safety of scsi_rescan_device()
     - scsi: Do not attempt to rescan suspended devices
     - ata: libata-scsi: Fix delayed scsi_rescan_device() execution
     - NFS: Cleanup unused rpc_clnt variable
     - NFS: rename nfs_client_kset to nfs_kset
     - NFSv4: Fix a state manager thread deadlock regression
     - mm/memory: add vm_normal_folio()
     - mm/mempolicy: convert queue_pages_pmd() to queue_folios_pmd()
     - mm/mempolicy: convert queue_pages_pte_range() to queue_folios_pte_range()
     - mm/mempolicy: convert migrate_page_add() to migrate_folio_add()
     - mm: mempolicy: keep VMA walk if both MPOL_MF_STRICT and MPOL_MF_MOVE are
       specified
     - mm/page_alloc: always remove pages from temporary list
     - mm/page_alloc: leave IRQs enabled for per-cpu page allocations
     - mm: page_alloc: fix CMA and HIGHATOMIC landing on the wrong buddy list
     - ring-buffer: remove obsolete comment for free_buffer_page()
     - ring-buffer: Fix bytes info in per_cpu buffer stats
     - btrfs: use struct qstr instead of name and namelen pairs
     - btrfs: setup qstr from dentrys using fscrypt helper
     - btrfs: use struct fscrypt_str instead of struct qstr
     - Revert "NFSv4: Retry LOCK on OLD_STATEID during delegation return"
     - [arm64] Avoid repeated AA64MMFR1_EL1 register read on pagefault path
     - net: add sysctl accept_ra_min_rtr_lft
     - net: change accept_ra_min_rtr_lft to affect all RA lifetimes
     - net: release reference to inet6_dev pointer
     - [arm64] cpufeature: Fix CLRBHB and BC detection
     - drm/amd/display: Adjust the MST resume flow
     - [arm64] iommu/arm-smmu-v3: Set TTL invalidation hint better
     - [arm64] iommu/arm-smmu-v3: Avoid constructing invalid range commands
     - rbd: move rbd_dev_refresh() definition
     - rbd: decouple header read-in from updating rbd_dev->header
     - rbd: decouple parent info read-in from updating rbd_dev
     - rbd: take header_rwsem in rbd_dev_refresh() only when updating
     - block: fix use-after-free of q->q_usage_counter
     - i40e: fix the wrong PTP frequency calculation
     - scsi: zfcp: Fix a double put in zfcp_port_enqueue()
     - [amd64] iommu/vt-d: Avoid memory allocation in iommu_suspend()
     - vringh: don't use vringh_kiov_advance() in vringh_iov_xfer()
       (CVE-2023-5158)
     - mptcp: userspace pm allow creating id 0 subflow
     - Bluetooth: hci_codec: Fix leaking content of local_codecs
     - Bluetooth: hci_sync: Fix handling of HCI_QUIRK_STRICT_DUPLICATE_FILTER
     - wifi: mwifiex: Fix tlv_buf_left calculation
     - md/raid5: release batch_last before waiting for another stripe_head
     - PCI: qcom: Fix IPQ8074 enumeration
     - net: replace calls to sock->ops->connect() with kernel_connect()
     - net: prevent rewrite of msg_name in sock_sendmsg()
     - drm/amd: Fix detection of _PR3 on the PCIe root port
     - drm/amd: Fix logic error in sienna_cichlid_update_pcie_parameters()
     - [arm64] Add Cortex-A520 CPU part definition
     - [arm64] errata: Add Cortex-A520 speculative unprivileged load workaround
     - HID: sony: Fix a potential memory leak in sony_probe()
     - ubi: Refuse attaching if mtd's erasesize is 0
     - erofs: fix memory leak of LZMA global compressed deduplication
     - wifi: iwlwifi: dbg_ini: fix structure packing
     - wifi: iwlwifi: mvm: Fix a memory corruption issue
     - wifi: cfg80211: hold wiphy lock in auto-disconnect
     - wifi: cfg80211: move wowlan disable under locks
     - wifi: cfg80211: add a work abstraction with special semantics
     - wifi: cfg80211: fix cqm_config access race
     - wifi: cfg80211: add missing kernel-doc for cqm_rssi_work
     - wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet
     - leds: Drop BUG_ON check for LED_COLOR_ID_MULTI
     - bpf: Fix tr dereferencing
     - regulator: mt6358: Drop *_SSHUB regulators
     - regulator: mt6358: Use linear voltage helpers for single range regulators
     - regulator: mt6358: split ops for buck and linear range LDO regulators
     - Bluetooth: Delete unused hci_req_prepare_suspend() declaration
     - Bluetooth: ISO: Fix handling of listen for unicast
     - drivers/net: process the result of hdlc_open() and add call of
       hdlc_close() in uhdlc_close()
     - wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling
     - [x86] perf/x86/amd/core: Fix overflow reset on hotplug
     - regmap: rbtree: Fix wrong register marked as in-cache when creating new
       node
     - wifi: mac80211: fix potential key use-after-free
     - [x86] perf/x86/amd: Do not WARN() on every IRQ
     - regulator/core: regulator_register: set device->class earlier
     - ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig
     - scsi: target: core: Fix deadlock due to recursive locking
     - ima: rework CONFIG_IMA dependency block
     - NFSv4: Fix a nfs4_state_manager() race
     - bpf: tcp_read_skb needs to pop skb regardless of seq
     - bpf, sockmap: Do not inc copied_seq when PEEK flag set
     - bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets
     - modpost: add missing else to the "of" check
     - net: fix possible store tearing in neigh_periodic_work()
     - bpf: Add BPF_FIB_LOOKUP_SKIP_NEIGH for bpf_fib_lookup
     - neighbour: annotate lockless accesses to n->nud_state
     - neighbour: switch to standard rcu, instead of rcu_bh
     - neighbour: fix data-races around n->output
     - ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data()
     - ptp: ocp: Fix error handling in ptp_ocp_device_init
     - net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent
     - ipv6: tcp: add a missing nf_reset_ct() in 3WHS handling
     - net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg
     - net: nfc: llcp: Add lock when modifying device list
     - net: ethernet: ti: am65-cpsw: Fix error code in
       am65_cpsw_nuss_init_tx_chns()
     - ibmveth: Remove condition to recompute TCP header checksum.
     - netfilter: handle the connecting collision properly in
       nf_conntrack_proto_sctp
     - netfilter: nf_tables: Deduplicate nft_register_obj audit logs
     - netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure
     - ipv4: Set offload_failed flag in fibmatch results
     - [armhf] net: stmmac: dwmac-stm32: fix resume on STM32 MCU
     - tipc: fix a potential deadlock on &tx->lock
     - tcp: fix quick-ack counting to count actual ACKs of new data
     - tcp: fix delayed ACKs for MSS boundary condition
     - sctp: update transport state when processing a dupcook packet
     - sctp: update hb timer immediately after users change hb_interval
     - netlink: split up copies in the ack construction
     - netlink: Fix potential skb memleak in netlink_ack
     - netlink: annotate data-races around sk->sk_err
     - HID: sony: remove duplicate NULL check before calling usb_free_urb()
     - HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit
     - intel_idle: add Emerald Rapids Xeon support
     - smb: use kernel_connect() and kernel_bind()
     - dm zoned: free dmz->ddev array in dmz_put_zoned_devices
     - RDMA/core: Require admin capabilities to set system parameters
     - of: dynamic: Fix potential memory leak in of_changeset_action()
     - IB/mlx4: Fix the size of a buffer in add_port_entries()
     - gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config()
     - gpio: pxa: disable pinctrl calls for MMP_GPIO
     - RDMA/cma: Initialize ib_sa_multicast structure to 0 when join
     - RDMA/cma: Fix truncation compilation warning in make_cma_ports
     - RDMA/uverbs: Fix typo of sizeof argument
     - RDMA/srp: Do not call scsi_done() from srp_abort()
     - RDMA/siw: Fix connection failure handling
     - RDMA/mlx5: Fix mutex unlocking on error flow for steering anchor creation
     - RDMA/mlx5: Fix NULL string error
     - [x86] sev: Use the GHCB protocol when available for SNP CPUID requests
     - ksmbd: fix race condition between session lookup and expire
     - ksmbd: fix uaf in smb20_oplock_break_ack
     - ipv6: remove nexthop_fib6_nh_bh()
     - vrf: Fix lockdep splat in output path
     - btrfs: fix an error handling path in btrfs_rename()
     - btrfs: fix fscrypt name leak after failure to join log transaction
     - netlink: remove the flex array from struct nlmsghdr
     - btrfs: file_remove_privs needs an exclusive lock in direct io write
     - ipv6: remove one read_lock()/read_unlock() pair in rt6_check_neigh()
     - xen/events: replace evtchn_rwlock with RCU (CVE-2023-34324)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.58
     - Revert "NFS: More fixes for nfs_direct_write_reschedule_io()"
     - Revert "NFS: Use the correct commit info in nfs_join_page_group()"
     - Revert "NFS: More O_DIRECT accounting fixes for error paths"
     - Revert "NFS: Fix O_DIRECT locking issues"
     - Revert "NFS: Fix error handling for O_DIRECT write scheduling"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.59
     - net: mana: Fix TX CQE error handling
     - mptcp: fix delegated action races
     - [x86] drm/i915: Don't set PIPE_CONTROL_FLUSH_L3 for aux inval
     - RDMA/cxgb4: Check skb value for failure to allocate
     - [arm64] perf/arm-cmn: Fix the unhandled overflow status of counter 4 to 7
     - [x86] platform/x86: think-lmi: Fix reference leak
     - [x86] platform/x86: hp-wmi:: Mark driver struct with __refdata to prevent
       section mismatch warning
     - scsi: Do not rescan devices with a suspended queue
     - HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect
     - quota: Fix slow quotaoff
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82YM
     - ata: libata-scsi: Disable scsi device manage_system_start_stop
     - net: prevent address rewrite in kernel_bind()
     - irqchip: renesas-rzg2l: Fix logic to clear TINT interrupt source
     - KEYS: trusted: Remove redundant static calls usage
     - ALSA: usb-audio: Fix microphone sound on Opencomm2 Headset
     - ALSA: usb-audio: Fix microphone sound on Nexigo webcam.
     - ALSA: hda/realtek: Change model for Intel RVP board
     - ASoC: simple-card-utils: fixup simple_util_startup() error handling
     - [x86] ASoC: Intel: soc-acpi: Add entry for HDMI_In capture support in MTL
       match table
     - [x86] ASoC: Intel: sof_sdw: add support for SKU 0B14
     - [x86] ASoC: Intel: soc-acpi: Add entry for sof_es8336 in MTL match table.
     - ASoC: Use of_property_read_bool() for boolean properties
     - ASoC: fsl_sai: MCLK bind with TX/RX enable bit
     - [arm64] ASoC: fsl_sai: Don't disable bitclock for i.MX8MP
     - ALSA: hda/realtek: Add quirk for HP Victus 16-d1xxx to enable mute LED
     - ALSA: hda/realtek: Add quirk for mute LEDs on HP ENVY x360 15-eu0xxx
     - ALSA: hda/realtek - ALC287 I2S speaker platform support
     - ALSA: hda/realtek - ALC287 merge RTK codec with CS CS35L41 AMP
     - pinctrl: nuvoton: wpcm450: fix out of bounds write
     - [arm64] drm/msm/dp: do not reinitialize phy unless retry during link
       training
     - [arm64] drm/msm/dsi: skip the wait for video mode done if not applicable
     - [arm64] drm/msm/dsi: fix irq_of_parse_and_map() error checking
     - [arm64] drm/msm/dpu: change _dpu_plane_calc_bw() to use u64 to avoid
       overflow
     - [arm64] drm/msm/dp: Add newlines to debug printks
     - can: isotp: isotp_sendmsg(): fix TX state detection and wait behavior
     - ravb: Fix up dma_free_coherent() call in ravb_remove()
     - ravb: Fix use-after-free issue in ravb_tx_timeout_work() (CVE-2023-35827)
     - ieee802154: ca8210: Fix a potential UAF in ca8210_probe
     - xen-netback: use default TX queue size for vifs
     - drm/vmwgfx: fix typo of sizeof argument
     - bpf: Fix verifier log for async callback return values
     - net: refine debug info in skb_checksum_help()
     - net: macsec: indicate next pn update when offloading
     - net: phy: mscc: macsec: reject PN update requests
     - net/mlx5e: macsec: use update_pn flag instead of PN comparation
     - ixgbe: fix crash with empty VF macvlan list
     - net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp
     - net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn()
     - net/smc: Fix pos miscalculation in statistics
     - pinctrl: renesas: rzn1: Enable missing PINMUX
     - workqueue: Override implicit ordered attribute in
       workqueue_apply_unbound_cpumask()
     - tcp: enforce receive buffer memory limits by allowing the tcp window to
       shrink
     - [armhf] dmaengine: stm32-mdma: abort resume if no ongoing transfer
     - [armhf] dmaengine: stm32-dma: fix stm32_dma_prep_slave_sg in case of MDMA
       chaining
     - [armhf] dmaengine: stm32-dma: fix residue in case of MDMA chaining
     - [armhf] dmaengine: stm32-mdma: use Link Address Register to compute
       residue
     - [armhf] dmaengine: stm32-mdma: set in_flight_bytes in case CRQA flag is
       set
     - usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer
     - net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read
     - [arm64,armhf] usb: dwc3: Soft reset phy on probe for host
     - usb: cdns3: Modify the return value of cdns_set_active () to void when
       CONFIG_PM_SLEEP is disabled
     - usb: hub: Guard against accesses to uninitialized BOS descriptors
     - usb: musb: Get the musb_qh poniter after musb_giveback
     - usb: musb: Modify the "HWVers" register address
     - iio: pressure: bmp280: Fix NULL pointer exception
     - iio: imu: bno055: Fix missing Kconfig dependencies
     - iio: adc: imx8qxp: Fix address for command buffer registers
     - iio: dac: ad3552r: Correct device IDs
     - iio: admv1013: add mixer_vgate corner cases
     - iio: pressure: dps310: Adjust Timeout Settings
     - iio: pressure: ms5611: ms5611_prom_is_valid false negative bug
     - iio: addac: Kconfig: update ad74413r selections
     - drm/atomic-helper: relax unregistered connector check
     - drm/amdgpu: add missing NULL check
     - drm/amd/display: Don't set dpms_off for seamless boot
     - ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA
     - ACPI: EC: Add quirk for the HP Pavilion Gaming 15-dk1xxx
     - ksmbd: not allow to open file if delelete on close bit is set
     - [x86] perf/x86/lbr: Filter vsyscall addresses
     - [x86] cpu: Fix AMD erratum #1485 on Zen4-based CPUs
     - mcb: remove is_added flag from mcb_device struct
     - [x86] thunderbolt: Workaround an IOMMU fault on certain systems with Intel
       Maple Ridge
     - [x86] thunderbolt: Check that lane 1 is in CL0 before enabling lane
       bonding
     - [x86] thunderbolt: Restart XDomain discovery handshake after failure
     - [powerpc*] 47x: Fix 47x syscall return crash
     - libceph: use kernel_connect()
     - ceph: fix incorrect revoked caps assert in ceph_fill_file_size()
     - ceph: fix type promotion bug on 32bit systems
     - Input: powermate - fix use-after-free in powermate_config_complete
     - Input: psmouse - fix fast_reconnect function for PS/2 mode
     - Input: xpad - add PXN V900 support
     - Input: i8042 - add Fujitsu Lifebook E5411 to i8042 quirk table
     - Input: goodix - ensure int GPIO is in input for gpio_count == 1 &&
       gpio_int_idx == 0 case
     - mctp: perform route lookups under a RCU read-side lock
     - nfp: flower: avoid rmmod nfp crash issues
     - usb: typec: ucsi: Use GET_CAPABILITY attributes data to set power supply
       scope
     - cgroup: Remove duplicates in cgroup v1 tasks file
     - dma-buf: add dma_fence_timestamp helper
     - pinctrl: avoid unsafe code pattern in find_pinctrl()
     - scsi: ufs: core: Correct clear TM error log
     - counter: chrdev: fix getting array extensions
     - counter: microchip-tcb-capture: Fix the use of internal GCLK logic
     - usb: typec: altmodes/displayport: Signal hpd low when exiting mode
     - usb: typec: ucsi: Clear EVENT_PENDING bit if ucsi_send_command fails
     - usb: gadget: udc-xilinx: replace memcpy with memcpy_toio
     - usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call
     - usb: cdnsp: Fixes issue with dequeuing not queued requests
     - [x86] alternatives: Disable KASAN in apply_alternatives()
     - [amd64] dmaengine: idxd: use spin_lock_irqsave before wait_event_lock_irq
     - [powerpc*] 8xx: Fix pte_access_permitted() for PAGE_NONE
     - [powerpc*] 64e: Fix wrong test in __ptep_test_and_clear_young()
     - ALSA: hda/realtek - Fixed two speaker platform
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.60
     - lib/Kconfig.debug: do not enable DEBUG_PREEMPT by default
     - igc: remove I226 Qbv BaseTime restriction
     - igc: enable Qbv configuration for 2nd GCL
     - igc: Remove reset adapter task for i226 during disable tsn config
     - igc: Add qbv_config_change_errors counter
     - igc: Add condition for qbv_config_change_errors counter
     - igc: Fix race condition in PTP tx code
     - Bluetooth: hci_event: Ignore NULL link key
     - Bluetooth: Reject connection with the device which has same BD_ADDR
     - Bluetooth: Fix a refcnt underflow problem for hci_conn
     - Bluetooth: vhci: Fix race when opening vhci device
     - Bluetooth: hci_event: Fix coding style
     - Bluetooth: avoid memcmp() out of bounds warning
     - ice: fix over-shifted variable
     - ice: reset first in crash dump kernels
     - net/smc: return the right falback reason when prefix checks fail
     - btrfs: fix stripe length calculation for non-zoned data chunk allocation
     - nfc: nci: fix possible NULL pointer dereference in send_acknowledge()
     - regmap: fix NULL deref on lookup
     - [x86] KVM: x86: Mask LVTPC when handling a PMI
     - [x86] sev: Disable MMIO emulation from user mode (CVE-2023-46813)
     - [x86] sev: Check IOBM for IOIO exceptions from user-space (CVE-2023-46813)
     - [x86] sev: Check for user-space IOIO pointing to kernel space
       (CVE-2023-46813)
     - [x86] fpu: Allow caller to constrain xfeatures when copying to uabi buffer
     - [x86] KVM: x86: Constrain guest-supported xfeatures only at
       KVM_GET_XSAVE{2}
     - [x86] KVM: SVM: add support for Invalid IPI Vector interception
     - [x86] KVM: SVM: refresh AVIC inhibition in svm_leave_nested()
     - audit,io_uring: io_uring openat triggers audit reference count underflow
     - tcp: check mptcp-level constraints for backlog coalescing
     - mptcp: more conservative check for zero probes
     - netfilter: nft_payload: fix wrong mac header matching
     - nvmet-tcp: Fix a possible UAF in queue intialization setup (CVE-2023-5178)
     - [x86] drm/i915: Retry gtt fault when out of fence registers
     - ALSA: hda/realtek - Fixed ASUS platform headset Mic issue
     - ALSA: hda/realtek: Add quirk for ASUS ROG GU603ZV
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15s-fq5xxx
     - qed: fix LL2 RX buffer allocation
     - xfrm: fix a data-race in xfrm_lookup_with_ifid()
     - xfrm: fix a data-race in xfrm_gen_index()
     - xfrm: interface: use DEV_STATS_INC()
     - wifi: cfg80211: use system_unbound_wq for wiphy work
     - net: ipv4: fix return value check in esp_remove_trailer
     - net: ipv6: fix return value check in esp_remove_trailer
     - net: rfkill: gpio: prevent value glitch during probe
     - tcp: fix excessive TLP and RACK timeouts from HZ rounding
     - tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single
       skb
     - tcp: Fix listen() warning with v4-mapped-v6 address.
     - tun: prevent negative ifindex
     - ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr
     - net: usb: smsc95xx: Fix an error code in smsc95xx_reset()
     - i40e: prevent crash on probe if hw registers have invalid values
     - net: dsa: bcm_sf2: Fix possible memory leak in bcm_sf2_mdio_register()
     - bonding: Return pointer to data after pull on skb
     - net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve
     - neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section
     - netfilter: nft_set_rbtree: .deactivate fails if element has expired
     - netlink: Correct offload_xstats size
     - netfilter: nf_tables: do not remove elements if set backend implements
       .abort
     - netfilter: nf_tables: revert do not remove elements if set backend
       implements .abort
     - net: phy: bcm7xxx: Add missing 16nm EPHY statistics
     - net: pktgen: Fix interface flags printing
     - net: avoid UAF on deleted altname
     - net: fix ifname in netlink ntf during netns move
     - net: check for altname conflicts when changing netdev's netns
     - usb: misc: onboard_usb_hub: add Genesys Logic GL850G hub support
     - usb: misc: onboard_usb_hub: add Genesys Logic GL852G hub support
     - usb: misc: onboard_usb_hub: add Genesys Logic GL3523 hub support
     - usb: misc: onboard_hub: add support for Microchip USB2412 USB 2.0 hub
     - serial: Move uart_change_speed() earlier
     - serial: Rename uart_change_speed() to uart_change_line_settings()
     - serial: Reduce spinlocked portion of uart_rs485_config()
     - serial: 8250: omap: Fix imprecise external abort for omap_8250_pm()
     - serial: 8250_omap: Fix errors with no_console_suspend
     - iio: core: introduce iio_device_{claim|release}_buffer_mode() APIs
     - iio: cros_ec: fix an use-after-free in cros_ec_sensors_push_data()
     - iio: adc: ad7192: Simplify using devm_regulator_get_enable()
     - iio: adc: ad7192: Correct reference voltage
     - pwr-mlxbf: extend Kconfig to include gpio-mlxbf3 dependency
     - fs-writeback: do not requeue a clean inode having skipped pages
     - btrfs: prevent transaction block reserve underflow when starting
       transaction
     - btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to
       1
     - btrfs: initialize start_slot in btrfs_log_prealloc_extents
     - i2c: mux: Avoid potential false error message in i2c_mux_add_adapter
     - overlayfs: set ctime when setting mtime and atime
     - gpio: timberdale: Fix potential deadlock on &tgpio->lock
     - ata: libata-core: Fix compilation warning in ata_dev_config_ncq()
     - ata: libata-eh: Fix compilation warning in ata_eh_link_report()
     - tracing: relax trace_event_eval_update() execution with cond_resched()
     - wifi: mwifiex: Sanity check tlv_len and tlv_bitmap_len
     - wifi: iwlwifi: Ensure ack flag is properly cleared.
     - HID: logitech-hidpp: Add Bluetooth ID for the Logitech M720 Triathlon
       mouse
     - HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event
     - Bluetooth: btusb: add shutdown function for QCA6174
     - Bluetooth: Avoid redundant authentication
     - Bluetooth: hci_core: Fix build warnings
     - wifi: cfg80211: Fix 6GHz scan configuration
     - wifi: mac80211: work around Cisco AP 9115 VHT MPDU length
     - wifi: mac80211: allow transmitting EAPOL frames with tainted key
     - wifi: cfg80211: avoid leaking stack data into trace
     - regulator/core: Revert "fix kobject release warning and memory leak in
       regulator_register()"
     - sky2: Make sure there is at least one frag_addr available
     - ipv4/fib: send notify when delete source address routes
     - drm: panel-orientation-quirks: Add quirk for One Mix 2S
     - btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c
     - btrfs: error out when COWing block using a stale transaction
     - btrfs: error when COWing block from a root that is being deleted
     - btrfs: error out when reallocating block for defrag using a stale
       transaction
     - drm/amd/pm: add unique_id for gc 11.0.3
     - HID: multitouch: Add required quirk for Synaptics 0xcd7e device
     - HID: nintendo: reinitialize USB Pro Controller after resuming from suspend
     - [x86] platform/x86: touchscreen_dmi: Add info for the Positivo C4128B
     - cpufreq: schedutil: Update next_freq when cpufreq_limits change
     - fprobe: Pass entry_data to handlers
     - fprobe: Add nr_maxactive to specify rethook_node pool size
     - fprobe: Fix to ensure the number of active retprobes is not zero
     - net: xfrm: skip policies marked as dead while reinserting policies
     - xfrm6: fix inet6_dev refcount underflow problem
     - net/mlx5: E-switch, register event handler before arming the event
     - net/mlx5: Handle fw tracer change ownership event based on MTRC
     - net/mlx5e: Don't offload internal port if filter device is out device
     - net/tls: split tls_rx_reader_lock
     - tcp: allow again tcp_disconnect() when threads are waiting
     - ice: Remove redundant pci_enable_pcie_error_reporting()
     - Bluetooth: hci_event: Fix using memcmp when comparing keys
     - tcp_bpf: properly release resources on error paths
     - net/smc: fix smc clc failed issue when netdevice not in init_net
     - mtd: physmap-core: Restore map_rom fallback
     - dt-bindings: mmc: sdhci-msm: correct minimum number of clocks
     - mmc: sdhci-pci-gli: fix LPM negotiation so x86/S0ix SoCs can suspend
     - mmc: core: sdio: hold retuning if sdio in 1-bit mode
     - mmc: core: Capture correct oemid-bits for eMMC cards
     - Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()"
     - pNFS: Fix a hang in nfs4_evict_inode()
     - pNFS/flexfiles: Check the layout validity in
       ff_layout_mirror_prepare_stats
     - NFSv4.1: fixup use EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - ACPI: irq: Fix incorrect return value in acpi_register_gsi()
     - nfs42: client needs to strip file mode's suid/sgid bit after ALLOCATE op
     - nvme: sanitize metadata bounce buffer for reads
     - nvme-pci: add BOGUS_NID for Intel 0a54 device
     - nvme-rdma: do not try to stop unallocated queues
     - [x86] KVM: x86/mmu: Stop zapping invalidated TDP MMU roots asynchronously
     - HID: input: map battery system charging
     - USB: serial: option: add Telit LE910C4-WWX 0x1035 composition
     - USB: serial: option: add entry for Sierra EM9191 with new firmware
     - USB: serial: option: add Fibocom to DELL custom modem FM101R-GL
     - perf: Disallow mis-matched inherited group reads (CVE-2023-5717)
     - [s390x] pci: fix iommu bitmap allocation
     - [s390x] cio: fix a memleak in css_alloc_subchannel
     - [x86] platform/surface: platform_profile: Propagate error if profile
       registration fails
     - [x86] platform/x86: intel-uncore-freq: Conditionally create attribute for
       read frequency
     - [x86] platform/x86: asus-wmi: Change ASUS_WMI_BRN_DOWN code from 0x20 to
       0x2e
     - [x86] platform/x86: asus-wmi: Only map brightness codes when using
       asus-wmi backlight control
     - [x86] platform/x86: asus-wmi: Map 0x2a code, Ignore 0x2b and 0x2c events
     - gpio: vf610: set value before the direction to avoid a glitch
     - drm/bridge: ti-sn65dsi86: Associate DSI device lifetime with auxiliary
       device
     - serial: 8250: omap: Move uart_write() inside PM section
     - serial: 8250: omap: convert to modern PM ops
     - kallsyms: Reduce the memory occupied by kallsyms_seqs_of_names[]
     - kallsyms: Add helper kallsyms_on_each_match_symbol()
     - tracing/kprobes: Return EADDRNOTAVAIL when func matches several symbols
     - gpio: vf610: make irq_chip immutable
     - gpio: vf610: mask the gpio irq in system suspend and support wakeup
     - phy: mapphone-mdm6600: Fix runtime disable on probe
     - phy: mapphone-mdm6600: Fix runtime PM for remove
     - phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins
     - net: move altnames together with the netdevice
     - Bluetooth: hci_sock: fix slab oob read in create_monitor_event
     - Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name
     - mptcp: avoid sending RST when closing the initial subflow
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.61
     - [x86] KVM: x86/pmu: Truncate counter value to allowed width on write
     - mmc: core: Align to common busy polling behaviour for mmc ioctls
     - mmc: block: ioctl: do write error check for spi
     - mmc: core: Fix error propagation for some ioctl commands
     - virtio_balloon: Fix endless deflation and inflation on arm64
     - virtio-mmio: fix memory leak of vm_dev
     - virtio-crypto: handle config changed by work queue
     - virtio_pci: fix the common cfg map size
     - vsock/virtio: initialize the_virtio_vsock before using VQs
     - vhost: Allow null msg.size on VHOST_IOTLB_INVALIDATE
     - mm: fix vm_brk_flags() to not bail out while holding lock
     - hugetlbfs: clear resv_map pointer if mmap fails
     - mm/page_alloc: correct start page when guard page debug is enabled
     - mm/migrate: fix do_pages_move for compat pointers
     - hugetlbfs: extend hugetlb_vma_lock to private VMAs
     - maple_tree: add GFP_KERNEL to allocations in mas_expected_entries()
     - nfsd: lock_rename() needs both directories to live on the same fs
     - [x86] drm/i915/pmu: Check if pmu is closed before stopping event
     - drm/amd: Disable ASPM for VI w/ all Intel systems
     - drm/dp_mst: Fix NULL deref in get_mst_branch_device_by_guid_helper()
     - [armhf] clk: ti: Fix missing omap4 mcbsp functional clock and aliases
     - [armhf] clk: ti: Fix missing omap5 mcbsp functional clock and aliases
     - r8169: fix the KCSAN reported data-race in rtl_tx() while reading
       tp->cur_tx
     - r8169: fix the KCSAN reported data-race in rtl_tx while reading
       TxDescArray[entry].opts1
     - r8169: fix the KCSAN reported data race in rtl_rx while reading
       desc->opts1
     - iavf: initialize waitqueues before starting watchdog_task
     - i40e: Fix I40E_FLAG_VF_VLAN_PRUNING value
     - igb: Fix potential memory leak in igb_add_ethtool_nfc_entry
     - neighbour: fix various data-races
     - igc: Fix ambiguity in the ethtool advertising
     - net: ieee802154: adf7242: Fix some potential buffer overflow in
       adf7242_stats_show()
     - net: usb: smsc95xx: Fix uninit-value access in smsc95xx_read_reg
     - r8152: Increase USB control msg timeout to 5000ms as per spec
     - r8152: Run the unload routine if we have errors during probe
     - r8152: Cancel hw_phy_work if we have an error in probe
     - r8152: Release firmware if we have an error in probe
     - tcp: fix wrong RTO timeout when received SACK reneging
     - gtp: uapi: fix GTPA_MAX
     - gtp: fix fragmentation needed check with gso
     - i40e: Fix wrong check for I40E_TXR_FLAGS_WB_ON_ITR
     - iavf: in iavf_down, disable queues when removing the driver
     - scsi: sd: Introduce manage_shutdown device flag
     - blk-throttle: check for overflow in calculate_bytes_allowed
     - io_uring/fdinfo: lock SQ thread while retrieving thread cpu/pid
       (CVE-2023-46862)
     - iio: afe: rescale: Accept only offset channels
     - iio: exynos-adc: request second interupt only when touchscreen mode is
       used
     - iio: adc: xilinx-xadc: Don't clobber preset voltage/temperature thresholds
     - iio: adc: xilinx-xadc: Correct temperature offset/scale for UltraScale
     - i2c: muxes: i2c-mux-pinctrl: Use of_get_i2c_adapter_by_node()
     - i2c: muxes: i2c-mux-gpmux: Use of_get_i2c_adapter_by_node()
     - i2c: muxes: i2c-demux-pinctrl: Use of_get_i2c_adapter_by_node()
     - i2c: stm32f7: Fix PEC handling in case of SMBUS transfers
     - i2c: aspeed: Fix i2c bus hang in slave read
     - tracing/kprobes: Fix the description of variable length arguments
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6ULL
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6SLL
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6UL
     - [x86] i8259: Skip probing when ACPI/MADT advertises PCAT compatibility
     - [x86] cpu: Add model number for Intel Arrow Lake mobile processor
     - perf/core: Fix potential NULL deref
     - clk: Sanitize possible_parent_show to Handle Return Value of
       of_clk_get_parent_name
     - [x86] platform/x86: Add s2idle quirk for more Lenovo laptops
     - ext4: add two helper functions extent_logical_end() and pa_logical_end()
     - ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow
     - ext4: avoid overlapping preallocations due to overflow
     - [x86] objtool/x86: add missing embedded_insn check
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.62
     - [arm*] ASoC: simple-card: fixup asoc_simple_probe() error handling
     - net: sched: cls_u32: Fix allocation size in u32_init()
     - [armhf] irqchip/stm32-exti: add missing DT IRQ flag translation
     - Input: synaptics-rmi4 - handle reset delay when using SMBus trsnsport
     - fbdev: atyfb: only use ioremap_uc() on i386 and ia64
     - netfilter: nfnetlink_log: silence bogus compiler warning
     - efi: fix memory leak in krealloc failure handling
     - ASoC: rt5650: fix the wrong result of key button
     - drm/ttm: Reorder sys manager cleanup step
     - [x86] fbdev: uvesafb: Call cn_del_callback() at the end of uvesafb_exit()
     - scsi: mpt3sas: Fix in error path
     - drm/amdgpu: Unset context priority is now invalid
     - gpu/drm: Eliminate DRM_SCHED_PRIORITY_UNSET
     - netfilter: nf_tables: audit log object reset once per table
     - drm/amdgpu: Reserve fences for VM update
     - net: chelsio: cxgb4: add an error code check in t4_load_phy_fw
     - r8152: Check for unplug in rtl_phy_patch_request()
     - r8152: Check for unplug in r8153b_ups_en() / r8153c_ups_en()
     - [powerpc*] mm: Fix boot crash with FLATMEM
     - io_uring: kiocb_done() should *not* trust ->ki_pos if
       ->{read,write}_iter() failed
     - ceph_wait_on_conflict_unlink(): grab reference before dropping ->d_lock
     - power: supply: core: Use blocking_notifier_call_chain to avoid RCU
       complaint
     - perf evlist: Avoid frequency mode for the dummy event
     - [x86] KVM: SVM: always update the x2avic msr interception (CVE-2023-5090)
     - mm/mempolicy: fix set_mempolicy_home_node() previous VMA pointer
     - mmap: fix error paths with dup_anon_vma()
     - ALSA: usb-audio: add quirk flag to enable native DSD for McIntosh devices
     - PCI: Prevent xHCI driver from claiming AMD VanGogh USB3 DRD device
     - usb: storage: set 1.50 as the lower bcdDevice for older "Super Top"
       compatibility
     - usb: typec: tcpm: Fix NULL pointer dereference in tcpm_pd_svdm()
     - usb: raw-gadget: properly handle interrupted requests
     - tty: n_gsm: fix race condition in status line change on dead connections
     - tty: 8250: Remove UC-257 and UC-431
     - tty: 8250: Add support for additional Brainboxes UC cards
     - tty: 8250: Add support for Brainboxes UP cards
     - tty: 8250: Add support for Intashield IS-100
     - tty: 8250: Fix port count of PX-257
     - tty: 8250: Fix up PX-803/PX-857
     - tty: 8250: Add support for additional Brainboxes PX cards
     - tty: 8250: Add support for Intashield IX cards
     - tty: 8250: Add Brainboxes Oxford Semiconductor-based quirks
     - misc: pci_endpoint_test: Add deviceID for J721S2 PCIe EP device support
     - ALSA: hda: intel-dsp-config: Fix JSL Chromebook quirk detection
     - [x86] ASoC: SOF: sof-pci-dev: Fix community key quirk detection
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.63
     - hwmon: (nct6775) Fix incorrect variable reuse in fan_div calculation
     - sched/fair: Fix cfs_rq_is_decayed() on !SMP
     - [x86] iov_iter, x86: Be consistent about the __user tag on
       copy_mc_to_user()
     - sched/uclamp: Set max_spare_cap_cpu even if max_spare_cap is 0
     - sched/uclamp: Ignore (util == 0) optimization in feec() when p_util_max =
       0
     - objtool: Propagate early errors
     - sched: Fix stop_one_cpu_nowait() vs hotplug
     - vfs: fix readahead(2) on block devices
     - writeback, cgroup: switch inodes with dirty timestamps to release dying
       cgwbs
     - [x86] srso: Fix SBPB enablement for (possible) future fixed HW
     - futex: Don't include process MM in futex key on no-MMU
     - [x86] numa: Introduce numa_fill_memblks()
     - ACPI/NUMA: Apply SRAT proximity domain to entire CFMWS window
     - [x86] sev-es: Allow copy_from_kernel_nofault() in earlier boot
     - [x86] boot: Fix incorrect startup_gdt_descr.size
     - [arm64,armhf] drivers/clocksource/timer-ti-dm: Don't call clk_get_rate()
       in stop function
     - pstore/platform: Add check for kstrdup
     - string: Adjust strtomem() logic to allow for smaller sources
     - genirq/matrix: Exclude managed interrupts in irq_matrix_allocated()
     - wifi: cfg80211: add flush functions for wiphy work
     - wifi: mac80211: move radar detect work to wiphy work
     - wifi: mac80211: move scan work to wiphy work
     - wifi: mac80211: move offchannel works to wiphy work
     - wifi: mac80211: move sched-scan stop work to wiphy work
     - wifi: mac80211: fix # of MSDU in A-MSDU calculation
     - wifi: iwlwifi: honor the enable_ini value
     - i40e: fix potential memory leaks in i40e_remove()
     - iavf: Fix promiscuous mode configuration flow messages
     - udp: add missing WRITE_ONCE() around up->encap_rcv
     - tcp: call tcp_try_undo_recovery when an RTOd TFO SYNACK is ACKed
     - gve: Use size_add() in call to struct_size()
     - tls: Only use data field in crypto completion function
     - tls: Use size_add() in call to struct_size()
     - tipc: Use size_add() in calls to struct_size()
     - net: spider_net: Use size_add() in call to struct_size()
     - net: ethernet: mtk_wed: fix EXT_INT_STATUS_RX_FBUF definitions for MT7986
       SoC
     - wifi: rtw88: debug: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
     - wifi: ath11k: fix boot failure with one MSI vector
     - wifi: mt76: mt7603: rework/fix rx pse hang check
     - wifi: mt76: mt7603: improve watchdog reset reliablity
     - wifi: mt76: mt7603: improve stuck beacon handling
     - wifi: mt76: mt7915: fix beamforming availability check
     - wifi: ath: dfs_pattern_detector: Fix a memory initialization issue
     - tcp_metrics: add missing barriers on delete
     - tcp_metrics: properly set tp->snd_ssthresh in tcp_init_metrics()
     - tcp_metrics: do not create an entry from tcp_init_metrics()
     - wifi: rtlwifi: fix EDCA limit set by BT coexistence
     - ACPI: property: Allow _DSD buffer data only for byte accessors
     - ACPI: video: Add acpi_backlight=vendor quirk for Toshiba Portégé R100
     - wifi: ath11k: fix Tx power value during active CAC
     - can: dev: can_restart(): don't crash kernel if carrier is OK
     - can: dev: can_restart(): fix race condition between controller restart and
       netif_carrier_on()
     - can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is
       accessed out of bounds
     - PM / devfreq: rockchip-dfi: Make pmu regmap mandatory
     - wifi: wfx: fix case where rates are out of order
     - netfilter: nf_tables: Drop pointless memset when dumping rules
     - thermal: core: prevent potential string overflow
     - r8169: use tp_to_dev instead of open code
     - r8169: fix rare issue with broken rx after link-down on RTL8125
     - net: skb_find_text: Ignore patterns extending past 'to'
     - tcp: fix cookie_init_timestamp() overflows
     - wifi: iwlwifi: call napi_synchronize() before freeing rx/tx queues
     - wifi: iwlwifi: pcie: synchronize IRQs before NAPI
     - wifi: iwlwifi: empty overflow queue during flush
     - Bluetooth: hci_sync: Fix Opcode prints in bt_dev_dbg/err
     - bpf: Fix unnecessary -EBUSY from htab_lock_bucket
     - ACPI: sysfs: Fix create_pnp_modalias() and create_of_modalias()
     - ipv6: avoid atomic fragment on GSO packets
     - net: add DEV_STATS_READ() helper
     - ipvlan: properly track tx_errors
     - regmap: debugfs: Fix a erroneous check after snprintf()
     - [arm64] spi: tegra: Fix missing IRQ check in tegra_slink_probe()
     - [arm64] clk: qcom: gcc-msm8996: Remove RPM bus clocks
     - [arm64] clk: qcom: clk-rcg2: Fix clock rate overflow for high parent
       frequencies
     - [arm64] clk: qcom: mmcc-msm8998: Don't check halt bit on some branch clks
     - [arm64] clk: qcom: mmcc-msm8998: Fix the SMMU GDSC
     - [arm64] clk: qcom: gcc-sm8150: Fix gcc_sdcc2_apps_clk_src
     - clk: imx: Select MXC_CLK for CLK_IMX8QXP
     - [arm64] clk: imx: imx8mq: correct error handling path
     - [arm64] clk: imx: imx8qxp: Fix elcdif_pll clock
     - [arm64] clk: renesas: rcar-gen3: Extend SDnH divider table
     - clk: linux/clk-provider.h: fix kernel-doc warnings and typos
     - [arm64] spi: nxp-fspi: use the correct ioremap function
     - [armhf] clk: ti: change ti_clk_register[_omap_hw]() API
     - [armhf] clk: ti: fix double free in of_ti_divider_clk_setup()
     - [arm64] clk: qcom: config IPQ_APSS_6018 should depend on QCOM_SMEM
     - [x86] platform/x86: wmi: Fix probe failure when failing to register WMI
       devices
     - [x86] platform/x86: wmi: Fix opening of char device
     - hwmon: (coretemp) Fix potentially truncated sysfs attribute name
     - Revert "hwmon: (sch56xx-common) Add DMI override table"
     - Revert "hwmon: (sch56xx-common) Add automatic module loading on supported
       devices"
     - hwmon: (sch5627) Use bit macros when accessing the control register
     - hwmon: (sch5627) Disallow write access if virtual registers are locked
     - [arm64,armhf] drm/rockchip: vop: Fix reset of state in duplicate state
       crtc funcs
     - [arm64,armhf] drm/rockchip: vop: Fix call to crtc reset helper
     - [arm64] drm/rockchip: vop2: Don't crash for invalid duplicate_state
     - [arm64] drm/rockchip: vop2: Add missing call to crtc reset helper
     - drm/radeon: possible buffer overflow
     - drm/amd/display: Check all enabled planes in dm_check_crtc_cursor
     - drm/amd/display: Refactor dm_get_plane_scale helper
     - drm/amd/display: Bail from dm_check_crtc_cursor if no relevant change
     - io_uring/kbuf: Fix check of BID wrapping in provided buffers
     - io_uring/kbuf: Allow the full buffer id space for provided buffers
     - [arm64] drm/rockchip: cdn-dp: Fix some error handling paths in
       cdn_dp_probe()
     - [arm64,armhf] gpu: host1x: Correct allocated size for contexts
     - [arm64,armhf] drm/rockchip: Fix type promotion bug in
       rockchip_gem_iommu_map()
     - xenbus: fix error exit in xenbus_init()
     - xen-pciback: Consider INTx disabled when MSI/MSI-X is enabled
     - [arm64] drm/msm/dsi: use msm_gem_kernel_put to free TX buffer
     - [arm64] drm/msm/dsi: free TX buffer in unbind
     - [arm64,armhf] clocksource/drivers/arm_arch_timer: limit XGene-1 workaround
     - drivers/perf: hisi: use cpuhp_state_remove_instance_nocalls() for
       hisi_hns3_pmu uninit process
     - [arm64] perf/arm-cmn: Revamp model detection
     - [arm64] perf/arm-cmn: Fix DTC domain detection
     - drivers/perf: hisi_pcie: Check the type first in pmu::event_init()
     - [arm64] perf: hisi: Fix use-after-free when register pmu fails
     - [arm64] dts: qcom: sdm845: cheza doesn't support LMh node
     - [arm64] dts: qcom: sc7280: link usb3_phy_wrapper_gcc_usb30_pipe_clk
     - [arm64] dts: qcom: msm8916: Fix iommu local address range
     - [arm64] dts: qcom: msm8992-libra: drop duplicated reserved memory
     - [arm64] dts: qcom: sc7280: Add missing LMH interrupts
     - [arm64] dts: qcom: sm8150: add ref clock to PCIe PHYs
     - [arm64] dts: qcom: sm8350: fix pinctrl for UART18
     - [arm64] dts: qcom: sdm845-mtp: fix WiFi configuration
     - [arm64] dts: marvell: cn9310: Use appropriate label for spi1 pins
     - [arm64] dts: qcom: apq8016-sbc: Add missing ADV7533 regulators
     - firmware: ti_sci: Mark driver as non removable
     - [arm64] dts: ti: k3-am62a7-sk: Drop i2c-1 to 100Khz
     - [arm64] clk: scmi: Free scmi_clk allocated when the clocks with invalid
       info are skipped
     - [arm64] dts: imx8qm-ss-img: Fix jpegenc compatible entry
     - [arm64] dts: imx8mm: Add sound-dai-cells to micfil node
     - [arm64] dts: imx8mn: Add sound-dai-cells to micfil node
     - [arm64] tegra: Use correct interrupts for Tegra234 TKE
     - module/decompress: use vmalloc() for gzip decompression workspace
     - [x86] ASoC: cs35l41: Verify PM runtime resume errors in IRQ handler
     - [x86] ASoC: cs35l41: Undo runtime PM changes at driver exit time
     - ALSA: hda: cs35l41: Fix unbalanced pm_runtime_get()
     - ALSA: hda: cs35l41: Undo runtime PM changes at driver exit time
     - KEYS: Include linux/errno.h in linux/verification.h
     - crypto: hisilicon/hpre - Fix a erroneous check after snprintf()
     - hwrng: bcm2835 - Fix hwrng throughput regression
     - [i386] hwrng: geode - fix accessing registers
     - RDMA/core: Use size_{add,sub,mul}() in calls to struct_size()
     - [x86] crypto: qat - ignore subsequent state up commands
     - [x86] crypto: qat - relocate bufferlist logic
     - [x86] crypto: qat - rename bufferlist functions
     - [x86] crypto: qat - change bufferlist logic interface
     - [x86] crypto: qat - generalize crypto request buffers
     - [x86] crypto: qat - extend buffer list interface
     - [x86] crypto: qat - fix unregistration of crypto algorithms
     - scsi: ibmvfc: Fix erroneous use of rtas_busy_delay with hcall return code
     - libnvdimm/of_pmem: Use devm_kstrdup instead of kstrdup and check its
       return value
     - nd_btt: Make BTT lanes preemptible
     - [arm64] crypto: caam/qi2 - fix Chacha20 + Poly1305 self test failure
     - [arm64,armhf] crypto: caam/jr - fix Chacha20 + Poly1305 self test failure
     - [x86] crypto: qat - increase size of buffers
     - [amd64] PCI: vmd: Correct PCI Header Type Register's multi-function check
     - hid: cp2112: Fix duplicate workqueue initialization
     - [armel,armhf] 9321/1: memset: cast the constant byte to unsigned char
     - ext4: move 'ix' sanity check to corrent position
     - IB/mlx5: Fix rdma counter binding for RAW QP
     - [arm64] RDMA/hns: Fix printing level of asynchronous events
     - [arm64] RDMA/hns: Fix uninitialized ucmd in hns_roce_create_qp_common()
     - [arm64] RDMA/hns: Fix signed-unsigned mixed comparisons
     - [arm64] RDMA/hns: Add check for SL
     - [arm64] RDMA/hns: The UD mode can only be configured with DCQCN
     - [x86] ASoC: SOF: core: Ensure sof_ops_free() is still called when probe
       never ran.
     - scsi: ufs: core: Leave space for '\0' in utf8 desc string
     - [amd64] RDMA/hfi1: Workaround truncation compilation error
     - HID: cp2112: Make irq_chip immutable
     - hid: cp2112: Fix IRQ shutdown stopping polling for all IRQs on chip
     - Revert "HID: logitech-hidpp: add a module parameter to keep firmware
       gestures"
     - HID: logitech-hidpp: Remove HIDPP_QUIRK_NO_HIDINPUT quirk
     - HID: logitech-hidpp: Don't restart IO, instead defer hid_connect() only
     - HID: logitech-hidpp: Revert "Don't restart communication if not necessary"
     - HID: logitech-hidpp: Move get_wireless_feature_index() check to
       hidpp_connect_event()
     - [x86] ASoC: Intel: Skylake: Fix mem leak when parsing UUIDs fails
     - padata: Fix refcnt handling in padata_free_shell()
     - [x86] crypto: qat - fix deadlock in backlog processing
     - IB/mlx5: Fix init stage error handling to avoid double free of same QP and
       UAF
     - mfd: core: Un-constify mfd_cell.of_reg
     - mfd: core: Ensure disabled devices are skipped without aborting
     - mfd: dln2: Fix double put in dln2_probe
     - dt-bindings: mfd: mt6397: Add binding for MT6357
     - dt-bindings: mfd: mt6397: Split out compatible for MediaTek MT6366 PMIC
     - mfd: arizona-spi: Set pdata.hpdet_channel for ACPI enumerated devs
     - leds: turris-omnia: Drop unnecessary mutex locking
     - leds: turris-omnia: Do not use SMBUS calls
     - leds: pwm: Don't disable the PWM when the LED should be off
     - leds: trigger: ledtrig-cpu:: Fix 'output may be truncated' issue for 'cpu'
     - apparmor: fix invalid reference on profile->disconnected
     - perf stat: Fix aggr mode initialization
     - iio: frequency: adf4350: Use device managed functions and fix power down
       issue.
     - perf kwork: Fix incorrect and missing free atom in work_push_atom()
     - perf kwork: Add the supported subcommands to the document
     - perf kwork: Set ordered_events to true in 'struct perf_tool'
     - filemap: add filemap_get_folios_tag()
     - f2fs: convert f2fs_write_cache_pages() to use filemap_get_folios_tag()
     - f2fs: compress: fix deadloop in f2fs_write_cache_pages()
     - f2fs: compress: fix to avoid use-after-free on dic
     - f2fs: compress: fix to avoid redundant compress extension
     - tty: tty_jobctrl: fix pid memleak in disassociate_ctty()
     - pinctrl: renesas: rzg2l: Make reverse order of enable() for disable()
     - perf record: Fix BTF type checks in the off-cpu profiling
     - dmaengine: idxd: Register dsa_bus_type before registering idxd sub-drivers
     - usb: dwc2: fix possible NULL pointer dereference caused by driver
       concurrency
     - usb: chipidea: Fix DMA overwrite for Tegra
     - usb: chipidea: Simplify Tegra DMA alignment code
     - dmaengine: ti: edma: handle irq_of_parse_and_map() errors
     - misc: st_core: Do not call kfree_skb() under spin_lock_irqsave()
     - USB: usbip: fix stub_dev hub disconnect
     - dmaengine: pxa_dma: Remove an erroneous BUG_ON() in pxad_free_desc()
     - f2fs: fix to initialize map.m_pblk in f2fs_precache_extents()
     - [powerpc*] Only define __parse_fpscr() when required
     - modpost: fix tee MODULE_DEVICE_TABLE built on big-endian host
     - modpost: fix ishtp MODULE_DEVICE_TABLE built on big-endian host
     - [powerpc*] 40x: Remove stale PTE_ATOMIC_UPDATES macro
     - [powerpc*] xive: Fix endian conversion size
     - [powerpc*] vas: Limit open window failure messages in log bufffer
     - [powerpc*] imc-pmu: Use the correct spinlock initializer.
     - [powerpc*] pseries: fix potential memory leak in init_cpu_associativity()
     - xhci: Loosen RPM as default policy to cover for AMD xHC 1.1
     - usb: host: xhci-plat: fix possible kernel oops while resuming
     - perf machine: Avoid out of bounds LBR memory read
     - perf hist: Add missing puts to hist__account_cycles
     - 9p/net: fix possible memory leak in p9_check_errors()
     - i3c: Fix potential refcount leak in i3c_master_register_new_i3c_devs
     - cxl/mem: Fix shutdown order
     - crypto: ccp - Name -1 return value as SEV_RET_NO_FW_CALL
     - [x86] sev: Change snp_guest_issue_request()'s fw_err argument
     - [amd64] virt: sevguest: Fix passing a stack buffer as a scatterlist target
     - rtc: pcf85363: fix wrong mask/val parameters in regmap_update_bits call
     - pcmcia: cs: fix possible hung task and memory leak pccardd()
     - pcmcia: ds: fix refcount leak in pcmcia_device_add()
     - pcmcia: ds: fix possible name leak in error path in pcmcia_device_add()
     - media: hantro: Check whether reset op is defined before use
     - media: verisilicon: Do not enable G2 postproc downscale if source is
       narrower than destination
     - media: ov5640: Drop dead code using frame_interval
     - media: ov5640: fix vblank unchange issue when work at dvp mode
     - media: i2c: max9286: Fix some redundant of_node_put() calls
     - media: ov5640: Fix a memory leak when ov5640_probe fails
     - media: bttv: fix use after free error due to btv->timeout timer
     - media: amphion: handle firmware debug message
     - media: mtk-jpegenc: Fix bug in JPEG encode quality selection
     - media: s3c-camif: Avoid inappropriate kfree()
     - media: vidtv: psi: Add check for kstrdup
     - media: vidtv: mux: Add check and kfree for kstrdup
     - media: cedrus: Fix clock/reset sequence
     - media: cadence: csi2rx: Unregister v4l2 async notifier
     - media: dvb-usb-v2: af9035: fix missing unlock
     - media: cec: meson: always include meson sub-directory in Makefile
     - regmap: prevent noinc writes from clobbering cache
     - pwm: sti: Reduce number of allocations and drop usage of chip_data
     - pwm: brcmstb: Utilize appropriate clock APIs in suspend/resume
     - Input: synaptics-rmi4 - fix use after free in rmi_unregister_function()
     - watchdog: ixp4xx: Make sure restart always works
     - llc: verify mac len before reading mac header
     - hsr: Prevent use after free in prp_create_tagged_frame()
     - tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING
     - bpf: Check map->usercnt after timer->timer is assigned
     - inet: shrink struct flowi_common
     - net: page_pool: add missing free_percpu when page_pool_init fail
     - dccp: Call security_inet_conn_request() after setting IPv4 addresses.
     - dccp/tcp: Call security_inet_conn_request() after setting IPv6 addresses.
     - net: r8169: Disable multicast filter for RTL8168H and RTL8107E
     - Fix termination state for idr_for_each_entry_ul()
     - net: stmmac: xgmac: Enable support for multiple Flexible PPS outputs
     - net/smc: fix dangling sock under state SMC_APPFINCLOSEWAIT
     - net/smc: allow cdc msg send rather than drop it with NULL sndbuf_desc
     - net/smc: put sk reference if close work was canceled
     - nvme: fix error-handling for io_uring nvme-passthrough
     - tg3: power down device only on SYSTEM_POWER_OFF
     - nbd: fix uaf in nbd_open
     - blk-core: use pr_warn_ratelimited() in bio_check_ro()
     - virtio/vsock: replace virtio_vsock_pkt with sk_buff
     - vsock/virtio: remove socket from connected/bound list on shutdown
     - r8169: respect userspace disabling IFF_MULTICAST
     - i2c: iproc: handle invalid slave state
     - netfilter: xt_recent: fix (increase) ipv6 literal buffer length
     - netfilter: nft_redir: use `struct nf_nat_range2` throughout and
       deduplicate eval call-backs
     - netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses
     - drm/syncobj: fix DRM_SYNCOBJ_WAIT_FLAGS_WAIT_AVAILABLE
     - [arm64,armhf] ASoC: hdmi-codec: register hpd callback on component probe
     - ASoC: dapm: fix clock get name
     - fbdev: imsttfb: Fix error path of imsttfb_probe()
     - fbdev: imsttfb: fix a resource leak in probe
     - fbdev: fsl-diu-fb: mark wr_reg_wa() static
     - tracing/kprobes: Fix the order of argument descriptions
     - io_uring/net: ensure socket is marked connected on connect retry
     - [x86] amd_nb: Use Family 19h Models 60h-7Fh Function 4 IDs
     - Revert "mmc: core: Capture correct oemid-bits for eMMC cards"
     - btrfs: use u64 for buffer sizes in the tree search ioctls
     - wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush()
     - virtio/vsock: don't use skbuff state to account credit
     - virtio/vsock: remove redundant 'skb_pull()' call
     - virtio/vsock: don't drop skbuff on copy failure
     - vsock/loopback: use only sk_buff_head.lock to protect the packet queue
     - virtio/vsock: fix leaks due to missing skb owner
     - virtio/vsock: Fix uninit-value in virtio_transport_recv_pkt()
     - virtio/vsock: fix header length on skb merging
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.64
     - lib/generic-radix-tree.c: Don't overflow in peek()
     - perf/core: Bail out early if the request AUX area is out of bound
     - srcu: Fix srcu_struct node grpmask overflow on 64-bit systems
     - [armhf] clocksource/drivers/timer-imx-gpt: Fix potential memory leak
     - smp,csd: Throw an error if a CSD lock is stuck for too long
     - cpu/hotplug: Don't offline the last non-isolated CPU
     - workqueue: Provide one lock class key per work_on_cpu() callsite
     - [x86] mm: Drop the 4 MB restriction on minimal NUMA node memory size
     - wifi: plfxlc: fix clang-specific fortify warning
     - wifi: mac80211_hwsim: fix clang-specific fortify warning
     - wifi: mac80211: don't return unset power in ieee80211_get_tx_power()
     - atl1c: Work around the DMA RX overflow issue
     - bpf: Detect IP == ksym.end as part of BPF program
     - wifi: ath9k: fix clang-specific fortify warnings
     - wifi: ath10k: fix clang-specific fortify warning
     - net: annotate data-races around sk->sk_tx_queue_mapping
     - net: annotate data-races around sk->sk_dst_pending_confirm
     - wifi: ath10k: Don't touch the CE interrupt registers after power up
     - vsock: read from socket's error queue
     - bpf: Ensure proper register state printing for cond jumps
     - Bluetooth: btusb: Add date->evt_skb is NULL check
     - Bluetooth: Fix double free in hci_conn_cleanup
     - ACPI: EC: Add quirk for HP 250 G7 Notebook PC
     - tsnep: Fix tsnep_request_irq() format-overflow warning
     - [x86] platform/x86: thinkpad_acpi: Add battery quirk for Thinkpad X120e
     - [x86] drm/gma500: Fix call trace when psb_gem_mm_init() fails
     - drm/amdgpu: not to save bo in the case of RAS err_event_athub
     - drm/amd: Update `update_pcie_parameters` functions to use uint8_t
       arguments
     - drm/amd/display: use full update for clip size increase of large plane
       source
     - string.h: add array-wrappers for (v)memdup_user()
     - kernel: kexec: copy user-array safely
     - kernel: watch_queue: copy user-array safely
     - drm_lease.c: copy user-array safely
     - drm: vmwgfx_surface.c: copy user-array safely
     - [arm64] drm/msm/dp: skip validity check for DP CTS EDID checksum
     - drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7
     - drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga
     - drm/amdgpu: Fix potential null pointer derefernce
     - drm/radeon: fix a possible null pointer dereference
     - drm/amdgpu/vkms: fix a possible null pointer dereference
     - [arm64] drm/panel: st7703: Pick different reset sequence
     - drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL
     - [arm64] dts: ls208xa: use a pseudo-bus to constrain usb dma size
     - ASoC: soc-card: Add storage for PCI SSID
     - [x86] ASoC: SOF: Pass PCI SSID to machine driver
     - crypto: pcrypt - Fix hungtask for PADATA_RESET
     - [x86] ASoC: SOF: ipc4: handle EXCEPTION_CAUGHT notification from firmware
     - [amd64] RDMA/hfi1: Use FIELD_GET() to extract Link Width
     - [arm64] scsi: hisi_sas: Set debugfs_dir pointer to NULL after removing
       debugfs
     - [powerpc*] scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool
     - fs/jfs: Add check for negative db_l2nbperpage
     - fs/jfs: Add validity check for db_maxag and db_agpref
     - jfs: fix array-index-out-of-bounds in dbFindLeaf
     - jfs: fix array-index-out-of-bounds in diAlloc
     - HID: lenovo: Detect quirk-free fw on cptkbd and stop applying workaround
     - [armel,armhf] 9320/1: fix stack depot IRQ stack filter
     - ALSA: hda: Fix possible null-ptr-deref when assigning a stream
     - [armel,armhf] PCI: mvebu: Use FIELD_PREP() with Link Width
     - atm: iphase: Do PCI error checks on own line
     - PCI: Do error check on own line to split long "if" conditions
     - scsi: libfc: Fix potential NULL pointer dereference in
       fc_lport_ptp_setup()
     - PCI: Use FIELD_GET() to extract Link Width
     - PCI: Extract ATS disabling to a helper function
     - PCI: Disable ATS for specific Intel IPU E2000 devices
     - PCI: Use FIELD_GET() in Sapphire RX 5600 XT Pulse quirk
     - [x86] ASoC: Intel: soc-acpi-cht: Add Lenovo Yoga Tab 3 Pro YT3-X90 quirk
     - crypto: hisilicon/qm - prevent soft lockup in receive loop
     - HID: Add quirk for Dell Pro Wireless Keyboard and Mouse KM5221W
     - exfat: support handle zero-size directory
     - mfd: intel-lpss: Add Intel Lunar Lake-M PCI IDs
     - iio: adc: stm32-adc: harden against NULL pointer deref in
       stm32_adc_probe()
     - [x86] thunderbolt: Apply USB 3.x bandwidth quirk only in software
       connection manager
     - [arm64,armhf] usb: dwc3: core: configure TX/RX threshold for DWC3_IP
     - soundwire: dmi-quirks: update HP Omen match
     - f2fs: fix error handling of __get_node_page
     - usb: gadget: f_ncm: Always set current gadget in ncm_bind()
     - 9p/trans_fd: Annotate data-racy writes to file::f_flags
     - 9p: v9fs_listxattr: fix %s null argument warning
     - i2c: fix memleak in i2c_new_client_device()
     - [armhf] i2c: sun6i-p2wi: Prevent potential division by zero
     - virtio-blk: fix implicit overflow on virtio_max_dma_size
     - media: gspca: cpia1: shift-out-of-bounds in set_flicker
     - media: vivid: avoid integer overflow
     - gfs2: ignore negated quota changes
     - gfs2: fix an oops in gfs2_permission
     - media: cobalt: Use FIELD_GET() to extract Link Width
     - media: ccs: Fix driver quirk struct documentation
     - media: imon: fix access to invalid resource for the second interface
     - drm/amd/display: Avoid NULL dereference of timing generator
     - i2c: dev: copy userspace array safely
     - [armhf] ASoC: ti: omap-mcbsp: Fix runtime PM underflow warnings
     - drm/qxl: prevent memory leak
     - ALSA: hda/realtek: Add quirk for ASUS UX7602ZM
     - drm/amdgpu: fix software pci_unplug on some chips
     - pwm: Fix double shift bug
     - wifi: iwlwifi: Use FW rate for non-data frames
     - sched/core: Optimize in_task() and in_interrupt() a bit
     - SUNRPC: ECONNRESET might require a rebind
     - NFSv4.1: fix handling NFS4ERR_DELAY when testing for session trunking
     - SUNRPC: Add an IS_ERR() check back to where it was
     - NFSv4.1: fix SP4_MACH_CRED protection for pnfs IO
     - SUNRPC: Fix RPC client cleaned up the freed pipefs dentries
     - gfs2: Silence "suspicious RCU usage in gfs2_permission" warning
     - net: set SOCK_RCU_FREE before inserting socket into hashtable
     - ipvlan: add ipvlan_route_v6_outbound() helper
     - tty: Fix uninit-value access in ppp_sync_receive()
     - [arm64] net: hns3: fix add VLAN fail issue
     - [arm64] net: hns3: add barrier in vf mailbox reply process
     - [arm64] net: hns3: fix incorrect capability bit display for copper port
     - [arm64] net: hns3: fix out-of-bounds access may occur when coalesce info
       is read via debugfs
     - [arm64] net: hns3: fix variable may not initialized problem in
       hns3_init_mac_addr()
     - [arm64] net: hns3: fix VF reset fail issue
     - [arm64] net: hns3: fix VF wrong speed and duplex issue
     - tipc: Fix kernel-infoleak due to uninitialized TLV value
     - net: mvneta: fix calls to page_pool_get_stats
     - ppp: limit MRU to 64K
     - xen/events: fix delayed eoi list handling
     - ptp: annotate data-race around q->head and q->tail
     - bonding: stop the device in bond_setup_by_slave()
     - af_unix: fix use-after-free in unix_stream_read_actor()
     - netfilter: nf_conntrack_bridge: initialize err to 0
     - netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()
     - net: stmmac: fix rx budget limit check
     - net: stmmac: avoid rx queue overrun
     - net/mlx5e: fix double free of encap_header
     - net/mlx5e: fix double free of encap_header in update funcs
     - net/mlx5e: Fix pedit endianness
     - net/mlx5e: Reduce the size of icosq_str
     - net/mlx5e: Check return value of snprintf writing to fw_version buffer
     - net/mlx5e: Check return value of snprintf writing to fw_version buffer for
       representors
     - macvlan: Don't propagate promisc change to lower dev in passthru
     - cifs: spnego: add ';' in HOST_KEY_LEN
     - cifs: fix check of rc in function generate_smb3signingkey
     - [x86] i915/perf: Fix NULL deref bugs with drm_dbg() calls
     - [x86] perf intel-pt: Fix async branch flags
     - [powerpc*] perf: Fix disabling BHRB and instruction sampling
     - bpf: Fix check_stack_write_fixed_off() to correctly spill imm
     - bpf: Fix precision tracking for BPF_ALU | BPF_TO_BE | BPF_END
     - scsi: mpt3sas: Fix loop logic
     - scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for
       selected registers
     - scsi: qla2xxx: Fix system crash due to bad pointer access
     - [x86] crypto: x86/sha - load modules based on CPU features
     - [x86] cpu/hygon: Fix the CPU topology evaluation for real
     - [x86] KVM: x86: hyper-v: Don't auto-enable stimer on write from user-space
     - [x86] KVM: x86: Ignore MSR_AMD64_TW_CFG access
     - [x86] KVM: x86: Clear bit12 of ICR after APIC-write VM-exit
     - audit: don't take task_lock() in audit_exe_compare() code path
     - audit: don't WARN_ON_ONCE(!current->mm) in audit_exe_compare()
     - proc: sysctl: prevent aliased sysctls from getting passed to init
     - tty/sysrq: replace smp_processor_id() with get_cpu()
     - tty: serial: meson: fix hard LOCKUP on crtscts mode
     - hvc/xen: fix console unplug
     - hvc/xen: fix error path in xen_hvc_init() to always register frontend
       driver
     - hvc/xen: fix event channel handling for secondary consoles
     - PCI/sysfs: Protect driver's D3cold preference from user space
     - watchdog: move softlockup_panic back to early_param
     - ACPI: resource: Do IRQ override on TongFang GMxXGxx
     - regmap: Ensure range selector registers are updated after cache sync
     - wifi: ath11k: fix temperature event locking
     - wifi: ath11k: fix dfs radar event locking
     - wifi: ath11k: fix htt pktlog locking
     - wifi: ath11k: fix gtk offload status event locking
     - [arm64] mmc: meson-gx: Remove setting of CMD_CFG_ERROR
     - genirq/generic_chip: Make irq_remove_generic_chip() irqdomain aware
     - KEYS: trusted: tee: Refactor register SHM usage
     - KEYS: trusted: Rollback init_trusted() consistently
     - [arm64] Restrict CPU_BIG_ENDIAN to GNU as or LLVM IAS 15.x or newer
     - ksmbd: handle malformed smb1 message
     - ksmbd: fix slab out of bounds write in smb_inherit_dacl()
     - mmc: vub300: fix an error code
     - mmc: sdhci_am654: fix start loop index for TAP value parsing
     - mmc: Add quirk MMC_QUIRK_BROKEN_CACHE_FLUSH for Micron eMMC Q2J54A
     - PCI/ASPM: Fix L1 substate handling in aspm_attr_store_common()
     - PCI: kirin: Don't discard .remove() callback
     - PCI: exynos: Don't discard .remove() callback
     - wifi: wilc1000: use vmm_table as array in wilc struct
     - svcrdma: Drop connection after an RDMA Read error
     - rcu/tree: Defer setting of jiffies during stall reset
     - [arm64] dts: qcom: ipq6018: Fix hwlock index for SMEM
     - PM: hibernate: Use __get_safe_page() rather than touching the list
     - PM: hibernate: Clean up sync_read handling in snapshot_write_next()
     - rcu: kmemleak: Ignore kmemleak false positives when RCU-freeing objects
     - btrfs: don't arbitrarily slow down delalloc if we're committing
     - [arm64] dts: qcom: ipq8074: Fix hwlock index for SMEM
     - [arm64] firmware: qcom_scm: use 64-bit calling convention only when client
       is 64-bit
     - ACPI: FPDT: properly handle invalid FPDT subtables
     - [arm64] dts: qcom: ipq6018: Fix tcsr_mutex register size
     - [arm64] mfd: qcom-spmi-pmic: Fix reference leaks in revid helper
     - [arm64] mfd: qcom-spmi-pmic: Fix revid implementation
     - ima: annotate iint mutex to avoid lockdep false positive warnings
     - ima: detect changes to the backing overlay file
     - netfilter: nf_tables: remove catchall element in GC sync path
       (CVE-2023-6111)
     - netfilter: nf_tables: split async and sync catchall in two functions
     - hid: lenovo: Resend all settings on reset_resume for compact keyboards
     - jbd2: fix potential data lost in recovering journal raced with
       synchronizing fs bdev
     - quota: explicitly forbid quota files from being encrypted
     - kernel/reboot: emergency_restart: Set correct system_state
     - i2c: core: Run atomic i2c xfer when !preemptible
     - tracing: Have the user copy of synthetic event address use correct context
     - driver core: Release all resources during unbind before updating device
       links
     - mcb: fix error handling for different scenarios when parsing
     - dmaengine: stm32-mdma: correct desc prep when channel running
     - [s390x] cmma: fix detection of DAT pages
     - mm/cma: use nth_page() in place of direct struct page manipulation
     - mm/memory_hotplug: use pfn math in place of direct struct page
       manipulation
     - mtd: cfi_cmdset_0001: Byte swap OTP info
     - xhci: Enable RPM on controllers that support low-power states
     - fs: add ctime accessors infrastructure
     - smb3: fix creating FIFOs when mounting with "sfu" mount option
     - smb3: fix touch -h of symlink
     - smb3: fix caching of ctime on setxattr
     - smb: client: fix use-after-free bug in cifs_debug_data_proc_show()
     - smb: client: fix potential deadlock when releasing mids
     - cifs: reconnect helper should set reconnect for the right channel
     - cifs: force interface update before a fresh session setup
     - cifs: do not reset chan_max if multichannel is not supported at mount
     - xfs: recovery should not clear di_flushiter unconditionally
     - btrfs: zoned: wait for data BG to be finished on direct IO allocation
     - ALSA: info: Fix potential deadlock at disconnection
     - ALSA: hda/realtek: Enable Mute LED on HP 255 G8
     - ALSA: hda/realtek - Add Dell ALC295 to pin fall back table
     - ALSA: hda/realtek - Enable internal speaker of ASUS K6500ZC
     - ALSA: hda/realtek: Enable Mute LED on HP 255 G10
     - ALSA: hda/realtek: Add quirks for HP Laptops
     - [arm64,armhf] pmdomain: bcm: bcm2835-power: check if the ASB register is
       equal to enable
     - [armhf] pmdomain: imx: Make imx pgc power domain also set the fwnode
     - cpufreq: stats: Fix buffer overflow detection in trans_stats()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0cb8:0xc559
     - bluetooth: Add device 0bda:887b to device tables
     - bluetooth: Add device 13d3:3571 to device tables
     - Bluetooth: btusb: Add RTW8852BE device 13d3:3570 to device tables
     - Bluetooth: btusb: Add 0bda:b85b for Fn-Link RTL8852BE
     - drm/amd/display: enable dsc_clk even if dsc_pg disabled
     - cxl/region: Validate region mode vs decoder mode
     - cxl/region: Cleanup target list on attach error
     - cxl/region: Move region-position validation to a helper
     - cxl/region: Do not try to cleanup after cxl_region_setup_targets() fails
     - cxl: Unify debug messages when calling devm_cxl_add_port()
     - cxl/mem: Move devm_cxl_add_endpoint() from cxl_core to cxl_mem
     - cxl/region: Fix x1 root-decoder granularity calculations
     - Revert ncsi: Propagate carrier gain/loss events to the NCSI controller
     - Revert "i2c: pxa: move to generic GPIO recovery"
     - lsm: fix default return value for vm_enough_memory
     - lsm: fix default return value for inode_getsecctx
     - [arm64] sbsa_gwdt: Calculate timeout with 64-bit math
     - i2c: designware: Disable TX_EMPTY irq while waiting for block length byte
     - [s390x] ap: fix AP bus crash on early config change callback invocation
     - net: ethtool: Fix documentation of ethtool_sprintf()
     - net: phylink: initialize carrier state at creation
     - i2c: i801: fix potential race in i801_block_transaction_byte_by_byte
     - f2fs: do not return EFSCORRUPTED, but try to run online repair
     - f2fs: avoid format-overflow warning
     - media: lirc: drop trailing space from scancode transmit
     - media: sharp: fix sharp encoding
     - dm-verity: don't use blocking calls from tasklets
     - nfsd: fix file memleak on client_opens_release
     - mmc: sdhci-pci-gli: A workaround to allow GL9750 to enter ASPM L1.2
     - mm: fix for negative counter: nr_file_hugepages
     - mm: kmem: drop __GFP_NOFAIL when allocating objcg vectors
     - mptcp: deal with large GSO size
     - mptcp: add validity check for sending RM_ADDR
     - mptcp: fix setsockopt(IP_TOS) subflow locking
     - r8169: fix network lost after resume on DASH systems
     - r8169: add handling DASH when DASH is disabled
     - mmc: sdhci-pci-gli: GL9750: Mask the replay timer timeout of AER
     - Revert "net: r8169: Disable multicast filter for RTL8168H and RTL8107E"
     - ext4: apply umask if ACL support is disabled
     - ext4: correct offset of gdb backup in non meta_bg group to update_backups
     - ext4: mark buffer new if it is unwritten to avoid stale data exposure
     - ext4: correct return value of ext4_convert_meta_bg
     - ext4: correct the start block of counting reserved clusters
     - ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks
     - ext4: add missed brelse in update_backups
     - ext4: properly sync file size update after O_SYNC direct IO
     - drm/amd/pm: Handle non-terminated overdrive commands.
     - [x86] drm/i915: Bump GLK CDCLK frequency when driving multiple pipes
     - [x86] drm/i915: Fix potential spectre vulnerability
     - drm/amd/pm: Fix error of MACO flag setting code
     - drm/amdgpu/smu13: drop compute workload workaround
     - drm/amdgpu: don't use pci_is_thunderbolt_attached()
     - drm/amdgpu: don't use ATRM for external devices
     - drm/amdgpu: fix error handling in amdgpu_bo_list_get()
     - drm/amdgpu: lower CS errors to debug severity
     - drm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer()
     - drm/amd/display: Enable fast plane updates on DCN3.2 and above
     - drm/amd/display: Change the DMCUB mailbox memory location from FB to inbox
     - [powerpc*] powernv: Fix fortify source warnings in opal-prd.c
     - tracing: Have trace_event_file have ref counters
     - Input: xpad - add VID for Turtle Beach controllers
     - mmc: sdhci-pci-gli: GL9755: Mask the replay timer timeout of AER
     - cxl/port: Fix NULL pointer access in devm_cxl_add_port()
 .
   [ Salvatore Bonaccorso ]
   * [rt] Drop "seqlock: Do the lockdep annotation before locking in
     do_write_seqcount_begin_nested()" (applied upstream)
   * Bump ABI to 14
   * Refresh "net: mana: Add new MANA VF performance counters for easier
     troubleshooting"
   * [rt] Update to 6.1.59-rt16
   * Do not enable DEBUG_PREEMPT (not enabled by default since 6.1.60)
   * [x86] drivers/platform/x86/hp: Enable X86_PLATFORM_DRIVERS_HP
     (Closes: #1038799)
   * nvmet: nul-terminate the NQNs passed in the connect command (CVE-2023-6121)

linux-signed-i386 (6.1.64+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.64-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.56
     - NFS: Fix error handling for O_DIRECT write scheduling
     - NFS: Fix O_DIRECT locking issues
     - NFS: More O_DIRECT accounting fixes for error paths
     - NFS: Use the correct commit info in nfs_join_page_group()
     - NFS: More fixes for nfs_direct_write_reschedule_io()
     - NFS/pNFS: Report EINVAL errors from connect() to the server
     - SUNRPC: Mark the cred for revalidation if the server rejects it
     - NFSv4.1: use EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - NFSv4.1: fix pnfs MDS=DS session trunking
     - media: via: Use correct dependency for camera sensor drivers
     - netfs: Only call folio_start_fscache() one time for each folio
     - dm: fix a race condition in retrieve_deps
     - btrfs: improve error message after failure to add delayed dir index item
     - btrfs: remove BUG() after failure to insert delayed dir index item
     - ext4: replace the traditional ternary conditional operator with with
       max()/min()
     - ext4: move setting of trimmed bit into ext4_try_to_trim_range()
     - ext4: do not let fstrim block system suspend
     - [arm64] ASoC: meson: spdifin: start hw on dai probe
     - bpf: Avoid deadlock when using queue and stack maps from NMI
     - ASoC: rt5640: Revert "Fix sleep in atomic context"
     - ASoC: rt5640: Fix IRQ not being free-ed for HDA jack detect mode
     - ALSA: hda/realtek: Splitting the UX3402 into two separate models
     - net/core: Fix ETH_P_1588 flow dissector
     - ASoC: hdaudio.c: Add missing check for devm_kstrdup
     - [arm64] ASoC: imx-audmix: Fix return error with devm_clk_get()
     - iavf: do not process adminq tasks when __IAVF_IN_REMOVE_TASK is set
     - [x86] ASoC: SOF: core: Only call sof_ops_free() on remove if the probe was
       successful
     - iavf: add iavf_schedule_aq_request() helper
     - iavf: schedule a request immediately after add/delete vlan
     - i40e: Fix VF VLAN offloading when port VLAN is configured
     - ionic: fix 16bit math issue when PAGE_SIZE >= 64KB
     - igc: Fix infinite initialization loop with early XDP redirect
     - scsi: iscsi_tcp: restrict to TCP sockets
     - [powerpc*] perf/hv-24x7: Update domain value check
     - dccp: fix dccp_v4_err()/dccp_v6_err() again
     - [x86] mm, kexec, ima: Use memblock_free_late() from
       ima_free_kexec_buffer()
     - net: hsr: Properly parse HSRv1 supervisor frames.
     - [x86] platform/x86: intel_scu_ipc: Check status after timeout in
       busy_loop()
     - [x86] platform/x86: intel_scu_ipc: Check status upon timeout in
       ipc_wait_for_interrupt()
     - [x86] platform/x86: intel_scu_ipc: Don't override scu in
       intel_scu_ipc_dev_simple_command()
     - [x86] platform/x86: intel_scu_ipc: Fail IPC send if still busy
     - [x86] srso: Fix srso_show_state() side effect
     - [x86] srso: Fix SBPB enablement for spec_rstack_overflow=off
     - [arm64] net: hns3: add cmdq check for vf periodic service task
     - [arm64] net: hns3: fix GRE checksum offload issue
     - [arm64] net: hns3: only enable unicast promisc when mac table full
     - [arm64] net: hns3: fix fail to delete tc flower rules during reset issue
     - [arm64] net: hns3: add 5ms delay before clear firmware reset irq source
     - net: bridge: use DEV_STATS_INC()
     - team: fix null-ptr-deref when team device type is changed
     - net: rds: Fix possible NULL-pointer dereference
     - [x86] i915/pmu: Move execlist stats initialization to execlist specific
       setup
     - locking/seqlock: Do the lockdep annotation before locking in
       do_write_seqcount_begin_nested()
     - net: ena: Flush XDP packets on error.
     - bnxt_en: Flush XDP for bnxt_poll_nitroa0()'s NAPI
     - igc: Expose tx-usecs coalesce setting to user
     - proc: nommu: /proc/<pid>/maps: release mmap read lock
     - proc: nommu: fix empty /proc/<pid>/maps
     - cifs: Fix UAF in cifs_demultiplex_thread()
     - gpio: tb10x: Fix an error handling path in tb10x_gpio_probe()
     - i2c: xiic: Correct return value check for xiic_reinit()
     - [armhf] dts: samsung: exynos4210-i9100: Fix LCD screen's physical size
     - f2fs: optimize iteration over sparse directories
     - f2fs: get out of a repeat loop when getting a locked data page
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling in PKEY_CLR2SECK2 IOCTL
     - [arm64] dts: qcom: sdm845-db845c: Mark cont splash memory region as
       reserved
     - wifi: ath11k: fix tx status reporting in encap offload mode
     - wifi: ath11k: Cleanup mac80211 references on failure during tx_complete
     - scsi: qla2xxx: Select qpair depending on which CPU post_cmd() gets called
     - scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id()
     - btrfs: reset destination buffer when read_extent_buffer() gets invalid
       range
     - vfio/mdev: Fix a null-ptr-deref bug for mdev_unregister_parent()
     - drm/bridge: ti-sn65dsi83: Do not generate HFP/HBP/HSA and EOT packet
     - [armhf] bus: ti-sysc: Use fsleep() instead of usleep_range() in
       sysc_reset()
     - [armhf] bus: ti-sysc: Fix missing AM35xx SoC matching
     - [arm64] firmware: arm_scmi: Harden perf domain info access
     - [arm64] firmware: arm_scmi: Fixup perf power-cost/microwatt support
     - power: supply: mt6370: Fix missing error code in mt6370_chg_toggle_cfo()
     - clk: sprd: Fix thm_parents incorrect configuration
     - clk: tegra: fix error return case for recalc_rate
     - [armhf] dts: omap: correct indentation
     - [armhf] dts: Unify pwm-omap-dmtimer node names
     - [armhf] dts: Unify pinctrl-single pin group nodes for omap4
     - [armhf] bus: ti-sysc: Fix SYSC_QUIRK_SWSUP_SIDLE_ACT handling for uart
       wake-up
     - power: supply: ucs1002: fix error code in ucs1002_get_property()
     - power: supply: rk817: Fix node refcount leak
     - [arm64] soc: imx8m: Enable OCOTP clock for imx8mm before reading registers
     - [arm64] dts: imx: Add imx8mm-prt8mm.dtb to build
     - gpio: pmic-eic-sprd: Add can_sleep flag for PMIC EIC chip
     - i2c: npcm7xx: Fix callback completion ordering
     - [x86] reboot: VMCLEAR active VMCSes before emergency reboot
     - ceph: drop messages from MDS when unmounting
     - dma-debug: don't call __dma_entry_alloc_check_leak() under
       free_entries_lock
     - bpf: Annotate bpf_long_memcpy with data_race
     - [arm64,armhf] spi: sun6i: reduce DMA RX transfer width to single byte
     - [arm64,armhf] spi: sun6i: fix race between DMA RX transfer completion and
       RX FIFO drain
     - nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid()
     - scsi: qedf: Add synchronization between I/O completions and abort
     - scsi: ufs: core: Move __ufshcd_send_uic_cmd() outside host_lock
     - scsi: ufs: core: Poll HCS.UCRDY before issuing a UIC command
     - ring-buffer: Avoid softlockup in ring_buffer_resize()
     - btrfs: assert delayed node locked when removing delayed item
     - ring-buffer: Do not attempt to read past "commit"
     - ata: sata_mv: Fix incorrect string length computation in mv_dump_mem()
     - [x86] platform/x86: asus-wmi: Support 2023 ROG X16 tablet mode
     - thermal/of: add missing of_node_put()
     - drm/amd/display: Don't check registers, if using AUX BL control
     - drm/amdgpu/soc21: don't remap HDP registers for SR-IOV
     - drm/amdgpu/nbio4.3: set proper rmmio_remap.reg_offset for SR-IOV
     - drm/amdgpu: Handle null atom context in VBIOS info ioctl
     - scsi: pm80xx: Use phy-specific SAS address when sending PHY_START command
     - scsi: pm80xx: Avoid leaking tags when processing
       OPC_INB_SET_CONTROLLER_CONFIG command
     - smb3: correct places where ENOTSUPP is used instead of preferred
       EOPNOTSUPP
     - ata: libata-eh: do not clear ATA_PFLAG_EH_PENDING in ata_eh_reset()
     - spi: nxp-fspi: reset the FLSHxCR1 registers
     - spi: stm32: add a delay before SPI disable
     - bpf: Clarify error expectations from bpf_clone_redirect
     - ALSA: hda: intel-sdw-acpi: Use u8 type for link index
     - firmware: cirrus: cs_dsp: Only log list of algorithms in debug build
     - media: vb2: frame_vector.c: replace WARN_ONCE with a comment
     - NFSv4.1: fix zero value filehandle in post open getattr
     - [x86] ASoC: SOF: Intel: MTL: Reduce the DSP init timeout
     - [powerpc*] watchpoints: Disable preemption in thread_change_pc()
     - [powerpc*] watchpoint: Disable pagefaults when getting user instruction
     - [powerpc*] watchpoints: Annotate atomic context in more places
     - [armhf] ncsi: Propagate carrier gain/loss events to the NCSI controller
     - net: hsr: Add __packed to struct hsr_sup_tlv.
     - perf build: Define YYNOMEM as YYNOABORT for bison < 3.81
     - nvme-pci: factor the iod mempool creation into a helper
     - nvme-pci: factor out a nvme_pci_alloc_dev helper
     - nvme-pci: do not set the NUMA node of device if it has none
     - wifi: ath11k: Don't drop tx_status when peer cannot be found
     - scsi: qla2xxx: Fix NULL pointer dereference in target mode
     - nvme-pci: always return an ERR_PTR from nvme_pci_alloc_dev
     - [x86] sgx: Resolves SECS reclaim vs. page fault for EAUG race
     - [x86] srso: Add SRSO mitigation for Hygon processors
     - [x86] KVM: SVM: INTERCEPT_RDTSCP is never intercepted anyway
     - [x86] KVM: SVM: Fix TSC_AUX virtualization setup
     - [x86] KVM: x86/mmu: Open code leaf invalidation from mmu_notifier
     - [x86] KVM: x86/mmu: Do not filter address spaces in
       for_each_tdp_mmu_root_yield_safe()
     - mptcp: fix bogus receive window shrinkage with multiple subflows
     - Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux"
     - serial: 8250_port: Check IRQ data before use
     - nilfs2: fix potential use after free in nilfs_gccache_submit_read_data()
     - netfilter: nf_tables: disallow rule removal from chain binding
       (CVE-2023-5197)
     - ALSA: hda: Disable power save for solving pop issue on Lenovo ThinkCentre
       M70q
     - ata: libata-scsi: link ata port and scsi device
     - ata: libata-scsi: ignore reserved bits for REPORT SUPPORTED OPERATION
       CODES
     - io_uring/fs: remove sqe->rw_flags checking from LINKAT
     - i2c: i801: unregister tco_pdev in i801_probe() error path
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82QF and 82UG
     - kernel/sched: Modify initial boot task idle setup
     - sched/rt: Fix live lock between select_fallback_rq() and RT push
     - netfilter: nf_tables: fix kdoc warnings after gc rework
     - Revert "SUNRPC dont update timeout value on connection reset"
     - timers: Tag (hr)timer softirq as hotplug safe
     - mm/slab_common: fix slab_caches list corruption after kmem_cache_destroy()
     - mm: memcontrol: fix GFP_NOFS recursion in memory.high enforcement
     - ring-buffer: Update "shortest_full" in polling
     - btrfs: properly report 0 avail for very full file systems
     - media: uvcvideo: Fix OOB read
     - bpf: Add override check to kprobe multi link attach
     - bpf: Fix BTF_ID symbol generation collision
     - bpf: Fix BTF_ID symbol generation collision in tools/
     - net: thunderbolt: Fix TCPv6 GSO checksum calculation
     - fs/smb/client: Reset password pointer to NULL (CVE-2023-5345)
     - ata: libata-core: Fix ata_port_request_pm() locking
     - ata: libata-core: Fix port and device removal
     - ata: libata-core: Do not register PM operations for SAS ports
     - ata: libata-sata: increase PMP SRST timeout to 10s
     - [x86] drm/i915/gt: Fix reservation address in ggtt_reserve_guc_top
     - power: supply: rk817: Add missing module alias
     - power: supply: ab8500: Set typing and props
     - fs: binfmt_elf_efpic: fix personality for ELF-FDPIC
     - [arm64] drm/meson: fix memory leak on ->hpd_notify callback
     - memcg: drop kmem.limit_in_bytes
     - mm, memcg: reconsider kmem.limit_in_bytes deprecation
     - [x86] ASoC: amd: yc: Fix a non-functional mic on Lenovo 82TL
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.57
     - ASoC: soc-utils: Export snd_soc_dai_is_dummy() symbol
     - mptcp: rename timer related helper to less confusing names
     - mptcp: fix dangling connection hang-up
     - mptcp: annotate lockless accesses to sk->sk_err
     - mptcp: move __mptcp_error_report in protocol.c
     - mptcp: process pending subflow error on close
     - ata,scsi: do not issue START STOP UNIT on resume
     - scsi: sd: Differentiate system and runtime start/stop management
     - scsi: sd: Do not issue commands to suspended disks on shutdown
     - scsi: core: Improve type safety of scsi_rescan_device()
     - scsi: Do not attempt to rescan suspended devices
     - ata: libata-scsi: Fix delayed scsi_rescan_device() execution
     - NFS: Cleanup unused rpc_clnt variable
     - NFS: rename nfs_client_kset to nfs_kset
     - NFSv4: Fix a state manager thread deadlock regression
     - mm/memory: add vm_normal_folio()
     - mm/mempolicy: convert queue_pages_pmd() to queue_folios_pmd()
     - mm/mempolicy: convert queue_pages_pte_range() to queue_folios_pte_range()
     - mm/mempolicy: convert migrate_page_add() to migrate_folio_add()
     - mm: mempolicy: keep VMA walk if both MPOL_MF_STRICT and MPOL_MF_MOVE are
       specified
     - mm/page_alloc: always remove pages from temporary list
     - mm/page_alloc: leave IRQs enabled for per-cpu page allocations
     - mm: page_alloc: fix CMA and HIGHATOMIC landing on the wrong buddy list
     - ring-buffer: remove obsolete comment for free_buffer_page()
     - ring-buffer: Fix bytes info in per_cpu buffer stats
     - btrfs: use struct qstr instead of name and namelen pairs
     - btrfs: setup qstr from dentrys using fscrypt helper
     - btrfs: use struct fscrypt_str instead of struct qstr
     - Revert "NFSv4: Retry LOCK on OLD_STATEID during delegation return"
     - [arm64] Avoid repeated AA64MMFR1_EL1 register read on pagefault path
     - net: add sysctl accept_ra_min_rtr_lft
     - net: change accept_ra_min_rtr_lft to affect all RA lifetimes
     - net: release reference to inet6_dev pointer
     - [arm64] cpufeature: Fix CLRBHB and BC detection
     - drm/amd/display: Adjust the MST resume flow
     - [arm64] iommu/arm-smmu-v3: Set TTL invalidation hint better
     - [arm64] iommu/arm-smmu-v3: Avoid constructing invalid range commands
     - rbd: move rbd_dev_refresh() definition
     - rbd: decouple header read-in from updating rbd_dev->header
     - rbd: decouple parent info read-in from updating rbd_dev
     - rbd: take header_rwsem in rbd_dev_refresh() only when updating
     - block: fix use-after-free of q->q_usage_counter
     - i40e: fix the wrong PTP frequency calculation
     - scsi: zfcp: Fix a double put in zfcp_port_enqueue()
     - [amd64] iommu/vt-d: Avoid memory allocation in iommu_suspend()
     - vringh: don't use vringh_kiov_advance() in vringh_iov_xfer()
       (CVE-2023-5158)
     - mptcp: userspace pm allow creating id 0 subflow
     - Bluetooth: hci_codec: Fix leaking content of local_codecs
     - Bluetooth: hci_sync: Fix handling of HCI_QUIRK_STRICT_DUPLICATE_FILTER
     - wifi: mwifiex: Fix tlv_buf_left calculation
     - md/raid5: release batch_last before waiting for another stripe_head
     - PCI: qcom: Fix IPQ8074 enumeration
     - net: replace calls to sock->ops->connect() with kernel_connect()
     - net: prevent rewrite of msg_name in sock_sendmsg()
     - drm/amd: Fix detection of _PR3 on the PCIe root port
     - drm/amd: Fix logic error in sienna_cichlid_update_pcie_parameters()
     - [arm64] Add Cortex-A520 CPU part definition
     - [arm64] errata: Add Cortex-A520 speculative unprivileged load workaround
     - HID: sony: Fix a potential memory leak in sony_probe()
     - ubi: Refuse attaching if mtd's erasesize is 0
     - erofs: fix memory leak of LZMA global compressed deduplication
     - wifi: iwlwifi: dbg_ini: fix structure packing
     - wifi: iwlwifi: mvm: Fix a memory corruption issue
     - wifi: cfg80211: hold wiphy lock in auto-disconnect
     - wifi: cfg80211: move wowlan disable under locks
     - wifi: cfg80211: add a work abstraction with special semantics
     - wifi: cfg80211: fix cqm_config access race
     - wifi: cfg80211: add missing kernel-doc for cqm_rssi_work
     - wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet
     - leds: Drop BUG_ON check for LED_COLOR_ID_MULTI
     - bpf: Fix tr dereferencing
     - regulator: mt6358: Drop *_SSHUB regulators
     - regulator: mt6358: Use linear voltage helpers for single range regulators
     - regulator: mt6358: split ops for buck and linear range LDO regulators
     - Bluetooth: Delete unused hci_req_prepare_suspend() declaration
     - Bluetooth: ISO: Fix handling of listen for unicast
     - drivers/net: process the result of hdlc_open() and add call of
       hdlc_close() in uhdlc_close()
     - wifi: mt76: mt76x02: fix MT76x0 external LNA gain handling
     - [x86] perf/x86/amd/core: Fix overflow reset on hotplug
     - regmap: rbtree: Fix wrong register marked as in-cache when creating new
       node
     - wifi: mac80211: fix potential key use-after-free
     - [x86] perf/x86/amd: Do not WARN() on every IRQ
     - regulator/core: regulator_register: set device->class earlier
     - ima: Finish deprecation of IMA_TRUSTED_KEYRING Kconfig
     - scsi: target: core: Fix deadlock due to recursive locking
     - ima: rework CONFIG_IMA dependency block
     - NFSv4: Fix a nfs4_state_manager() race
     - bpf: tcp_read_skb needs to pop skb regardless of seq
     - bpf, sockmap: Do not inc copied_seq when PEEK flag set
     - bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets
     - modpost: add missing else to the "of" check
     - net: fix possible store tearing in neigh_periodic_work()
     - bpf: Add BPF_FIB_LOOKUP_SKIP_NEIGH for bpf_fib_lookup
     - neighbour: annotate lockless accesses to n->nud_state
     - neighbour: switch to standard rcu, instead of rcu_bh
     - neighbour: fix data-races around n->output
     - ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data()
     - ptp: ocp: Fix error handling in ptp_ocp_device_init
     - net: dsa: mv88e6xxx: Avoid EEPROM timeout when EEPROM is absent
     - ipv6: tcp: add a missing nf_reset_ct() in 3WHS handling
     - net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg
     - net: nfc: llcp: Add lock when modifying device list
     - net: ethernet: ti: am65-cpsw: Fix error code in
       am65_cpsw_nuss_init_tx_chns()
     - ibmveth: Remove condition to recompute TCP header checksum.
     - netfilter: handle the connecting collision properly in
       nf_conntrack_proto_sctp
     - netfilter: nf_tables: Deduplicate nft_register_obj audit logs
     - netfilter: nf_tables: nft_set_rbtree: fix spurious insertion failure
     - ipv4: Set offload_failed flag in fibmatch results
     - [armhf] net: stmmac: dwmac-stm32: fix resume on STM32 MCU
     - tipc: fix a potential deadlock on &tx->lock
     - tcp: fix quick-ack counting to count actual ACKs of new data
     - tcp: fix delayed ACKs for MSS boundary condition
     - sctp: update transport state when processing a dupcook packet
     - sctp: update hb timer immediately after users change hb_interval
     - netlink: split up copies in the ack construction
     - netlink: Fix potential skb memleak in netlink_ack
     - netlink: annotate data-races around sk->sk_err
     - HID: sony: remove duplicate NULL check before calling usb_free_urb()
     - HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit
     - intel_idle: add Emerald Rapids Xeon support
     - smb: use kernel_connect() and kernel_bind()
     - dm zoned: free dmz->ddev array in dmz_put_zoned_devices
     - RDMA/core: Require admin capabilities to set system parameters
     - of: dynamic: Fix potential memory leak in of_changeset_action()
     - IB/mlx4: Fix the size of a buffer in add_port_entries()
     - gpio: aspeed: fix the GPIO number passed to pinctrl_gpio_set_config()
     - gpio: pxa: disable pinctrl calls for MMP_GPIO
     - RDMA/cma: Initialize ib_sa_multicast structure to 0 when join
     - RDMA/cma: Fix truncation compilation warning in make_cma_ports
     - RDMA/uverbs: Fix typo of sizeof argument
     - RDMA/srp: Do not call scsi_done() from srp_abort()
     - RDMA/siw: Fix connection failure handling
     - RDMA/mlx5: Fix mutex unlocking on error flow for steering anchor creation
     - RDMA/mlx5: Fix NULL string error
     - [x86] sev: Use the GHCB protocol when available for SNP CPUID requests
     - ksmbd: fix race condition between session lookup and expire
     - ksmbd: fix uaf in smb20_oplock_break_ack
     - ipv6: remove nexthop_fib6_nh_bh()
     - vrf: Fix lockdep splat in output path
     - btrfs: fix an error handling path in btrfs_rename()
     - btrfs: fix fscrypt name leak after failure to join log transaction
     - netlink: remove the flex array from struct nlmsghdr
     - btrfs: file_remove_privs needs an exclusive lock in direct io write
     - ipv6: remove one read_lock()/read_unlock() pair in rt6_check_neigh()
     - xen/events: replace evtchn_rwlock with RCU (CVE-2023-34324)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.58
     - Revert "NFS: More fixes for nfs_direct_write_reschedule_io()"
     - Revert "NFS: Use the correct commit info in nfs_join_page_group()"
     - Revert "NFS: More O_DIRECT accounting fixes for error paths"
     - Revert "NFS: Fix O_DIRECT locking issues"
     - Revert "NFS: Fix error handling for O_DIRECT write scheduling"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.59
     - net: mana: Fix TX CQE error handling
     - mptcp: fix delegated action races
     - [x86] drm/i915: Don't set PIPE_CONTROL_FLUSH_L3 for aux inval
     - RDMA/cxgb4: Check skb value for failure to allocate
     - [arm64] perf/arm-cmn: Fix the unhandled overflow status of counter 4 to 7
     - [x86] platform/x86: think-lmi: Fix reference leak
     - [x86] platform/x86: hp-wmi:: Mark driver struct with __refdata to prevent
       section mismatch warning
     - scsi: Do not rescan devices with a suspended queue
     - HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect
     - quota: Fix slow quotaoff
     - [x86] ASoC: amd: yc: Fix non-functional mic on Lenovo 82YM
     - ata: libata-scsi: Disable scsi device manage_system_start_stop
     - net: prevent address rewrite in kernel_bind()
     - irqchip: renesas-rzg2l: Fix logic to clear TINT interrupt source
     - KEYS: trusted: Remove redundant static calls usage
     - ALSA: usb-audio: Fix microphone sound on Opencomm2 Headset
     - ALSA: usb-audio: Fix microphone sound on Nexigo webcam.
     - ALSA: hda/realtek: Change model for Intel RVP board
     - ASoC: simple-card-utils: fixup simple_util_startup() error handling
     - [x86] ASoC: Intel: soc-acpi: Add entry for HDMI_In capture support in MTL
       match table
     - [x86] ASoC: Intel: sof_sdw: add support for SKU 0B14
     - [x86] ASoC: Intel: soc-acpi: Add entry for sof_es8336 in MTL match table.
     - ASoC: Use of_property_read_bool() for boolean properties
     - ASoC: fsl_sai: MCLK bind with TX/RX enable bit
     - [arm64] ASoC: fsl_sai: Don't disable bitclock for i.MX8MP
     - ALSA: hda/realtek: Add quirk for HP Victus 16-d1xxx to enable mute LED
     - ALSA: hda/realtek: Add quirk for mute LEDs on HP ENVY x360 15-eu0xxx
     - ALSA: hda/realtek - ALC287 I2S speaker platform support
     - ALSA: hda/realtek - ALC287 merge RTK codec with CS CS35L41 AMP
     - pinctrl: nuvoton: wpcm450: fix out of bounds write
     - [arm64] drm/msm/dp: do not reinitialize phy unless retry during link
       training
     - [arm64] drm/msm/dsi: skip the wait for video mode done if not applicable
     - [arm64] drm/msm/dsi: fix irq_of_parse_and_map() error checking
     - [arm64] drm/msm/dpu: change _dpu_plane_calc_bw() to use u64 to avoid
       overflow
     - [arm64] drm/msm/dp: Add newlines to debug printks
     - can: isotp: isotp_sendmsg(): fix TX state detection and wait behavior
     - ravb: Fix up dma_free_coherent() call in ravb_remove()
     - ravb: Fix use-after-free issue in ravb_tx_timeout_work() (CVE-2023-35827)
     - ieee802154: ca8210: Fix a potential UAF in ca8210_probe
     - xen-netback: use default TX queue size for vifs
     - drm/vmwgfx: fix typo of sizeof argument
     - bpf: Fix verifier log for async callback return values
     - net: refine debug info in skb_checksum_help()
     - net: macsec: indicate next pn update when offloading
     - net: phy: mscc: macsec: reject PN update requests
     - net/mlx5e: macsec: use update_pn flag instead of PN comparation
     - ixgbe: fix crash with empty VF macvlan list
     - net/mlx5e: Again mutually exclude RX-FCS and RX-port-timestamp
     - net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn()
     - net/smc: Fix pos miscalculation in statistics
     - pinctrl: renesas: rzn1: Enable missing PINMUX
     - workqueue: Override implicit ordered attribute in
       workqueue_apply_unbound_cpumask()
     - tcp: enforce receive buffer memory limits by allowing the tcp window to
       shrink
     - [armhf] dmaengine: stm32-mdma: abort resume if no ongoing transfer
     - [armhf] dmaengine: stm32-dma: fix stm32_dma_prep_slave_sg in case of MDMA
       chaining
     - [armhf] dmaengine: stm32-dma: fix residue in case of MDMA chaining
     - [armhf] dmaengine: stm32-mdma: use Link Address Register to compute
       residue
     - [armhf] dmaengine: stm32-mdma: set in_flight_bytes in case CRQA flag is
       set
     - usb: xhci: xhci-ring: Use sysdev for mapping bounce buffer
     - net: usb: dm9601: fix uninitialized variable use in dm9601_mdio_read
     - [arm64,armhf] usb: dwc3: Soft reset phy on probe for host
     - usb: cdns3: Modify the return value of cdns_set_active () to void when
       CONFIG_PM_SLEEP is disabled
     - usb: hub: Guard against accesses to uninitialized BOS descriptors
     - usb: musb: Get the musb_qh poniter after musb_giveback
     - usb: musb: Modify the "HWVers" register address
     - iio: pressure: bmp280: Fix NULL pointer exception
     - iio: imu: bno055: Fix missing Kconfig dependencies
     - iio: adc: imx8qxp: Fix address for command buffer registers
     - iio: dac: ad3552r: Correct device IDs
     - iio: admv1013: add mixer_vgate corner cases
     - iio: pressure: dps310: Adjust Timeout Settings
     - iio: pressure: ms5611: ms5611_prom_is_valid false negative bug
     - iio: addac: Kconfig: update ad74413r selections
     - drm/atomic-helper: relax unregistered connector check
     - drm/amdgpu: add missing NULL check
     - drm/amd/display: Don't set dpms_off for seamless boot
     - ACPI: resource: Skip IRQ override on ASUS ExpertBook B1402CBA
     - ACPI: EC: Add quirk for the HP Pavilion Gaming 15-dk1xxx
     - ksmbd: not allow to open file if delelete on close bit is set
     - [x86] perf/x86/lbr: Filter vsyscall addresses
     - [x86] cpu: Fix AMD erratum #1485 on Zen4-based CPUs
     - mcb: remove is_added flag from mcb_device struct
     - [x86] thunderbolt: Workaround an IOMMU fault on certain systems with Intel
       Maple Ridge
     - [x86] thunderbolt: Check that lane 1 is in CL0 before enabling lane
       bonding
     - [x86] thunderbolt: Restart XDomain discovery handshake after failure
     - [powerpc*] 47x: Fix 47x syscall return crash
     - libceph: use kernel_connect()
     - ceph: fix incorrect revoked caps assert in ceph_fill_file_size()
     - ceph: fix type promotion bug on 32bit systems
     - Input: powermate - fix use-after-free in powermate_config_complete
     - Input: psmouse - fix fast_reconnect function for PS/2 mode
     - Input: xpad - add PXN V900 support
     - Input: i8042 - add Fujitsu Lifebook E5411 to i8042 quirk table
     - Input: goodix - ensure int GPIO is in input for gpio_count == 1 &&
       gpio_int_idx == 0 case
     - mctp: perform route lookups under a RCU read-side lock
     - nfp: flower: avoid rmmod nfp crash issues
     - usb: typec: ucsi: Use GET_CAPABILITY attributes data to set power supply
       scope
     - cgroup: Remove duplicates in cgroup v1 tasks file
     - dma-buf: add dma_fence_timestamp helper
     - pinctrl: avoid unsafe code pattern in find_pinctrl()
     - scsi: ufs: core: Correct clear TM error log
     - counter: chrdev: fix getting array extensions
     - counter: microchip-tcb-capture: Fix the use of internal GCLK logic
     - usb: typec: altmodes/displayport: Signal hpd low when exiting mode
     - usb: typec: ucsi: Clear EVENT_PENDING bit if ucsi_send_command fails
     - usb: gadget: udc-xilinx: replace memcpy with memcpy_toio
     - usb: gadget: ncm: Handle decoding of multiple NTB's in unwrap call
     - usb: cdnsp: Fixes issue with dequeuing not queued requests
     - [x86] alternatives: Disable KASAN in apply_alternatives()
     - [amd64] dmaengine: idxd: use spin_lock_irqsave before wait_event_lock_irq
     - [powerpc*] 8xx: Fix pte_access_permitted() for PAGE_NONE
     - [powerpc*] 64e: Fix wrong test in __ptep_test_and_clear_young()
     - ALSA: hda/realtek - Fixed two speaker platform
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.60
     - lib/Kconfig.debug: do not enable DEBUG_PREEMPT by default
     - igc: remove I226 Qbv BaseTime restriction
     - igc: enable Qbv configuration for 2nd GCL
     - igc: Remove reset adapter task for i226 during disable tsn config
     - igc: Add qbv_config_change_errors counter
     - igc: Add condition for qbv_config_change_errors counter
     - igc: Fix race condition in PTP tx code
     - Bluetooth: hci_event: Ignore NULL link key
     - Bluetooth: Reject connection with the device which has same BD_ADDR
     - Bluetooth: Fix a refcnt underflow problem for hci_conn
     - Bluetooth: vhci: Fix race when opening vhci device
     - Bluetooth: hci_event: Fix coding style
     - Bluetooth: avoid memcmp() out of bounds warning
     - ice: fix over-shifted variable
     - ice: reset first in crash dump kernels
     - net/smc: return the right falback reason when prefix checks fail
     - btrfs: fix stripe length calculation for non-zoned data chunk allocation
     - nfc: nci: fix possible NULL pointer dereference in send_acknowledge()
     - regmap: fix NULL deref on lookup
     - [x86] KVM: x86: Mask LVTPC when handling a PMI
     - [x86] sev: Disable MMIO emulation from user mode (CVE-2023-46813)
     - [x86] sev: Check IOBM for IOIO exceptions from user-space (CVE-2023-46813)
     - [x86] sev: Check for user-space IOIO pointing to kernel space
       (CVE-2023-46813)
     - [x86] fpu: Allow caller to constrain xfeatures when copying to uabi buffer
     - [x86] KVM: x86: Constrain guest-supported xfeatures only at
       KVM_GET_XSAVE{2}
     - [x86] KVM: SVM: add support for Invalid IPI Vector interception
     - [x86] KVM: SVM: refresh AVIC inhibition in svm_leave_nested()
     - audit,io_uring: io_uring openat triggers audit reference count underflow
     - tcp: check mptcp-level constraints for backlog coalescing
     - mptcp: more conservative check for zero probes
     - netfilter: nft_payload: fix wrong mac header matching
     - nvmet-tcp: Fix a possible UAF in queue intialization setup (CVE-2023-5178)
     - [x86] drm/i915: Retry gtt fault when out of fence registers
     - ALSA: hda/realtek - Fixed ASUS platform headset Mic issue
     - ALSA: hda/realtek: Add quirk for ASUS ROG GU603ZV
     - ALSA: hda/relatek: Enable Mute LED on HP Laptop 15s-fq5xxx
     - qed: fix LL2 RX buffer allocation
     - xfrm: fix a data-race in xfrm_lookup_with_ifid()
     - xfrm: fix a data-race in xfrm_gen_index()
     - xfrm: interface: use DEV_STATS_INC()
     - wifi: cfg80211: use system_unbound_wq for wiphy work
     - net: ipv4: fix return value check in esp_remove_trailer
     - net: ipv6: fix return value check in esp_remove_trailer
     - net: rfkill: gpio: prevent value glitch during probe
     - tcp: fix excessive TLP and RACK timeouts from HZ rounding
     - tcp: tsq: relax tcp_small_queue_check() when rtx queue contains a single
       skb
     - tcp: Fix listen() warning with v4-mapped-v6 address.
     - tun: prevent negative ifindex
     - ipv4: fib: annotate races around nh->nh_saddr_genid and nh->nh_saddr
     - net: usb: smsc95xx: Fix an error code in smsc95xx_reset()
     - i40e: prevent crash on probe if hw registers have invalid values
     - net: dsa: bcm_sf2: Fix possible memory leak in bcm_sf2_mdio_register()
     - bonding: Return pointer to data after pull on skb
     - net/sched: sch_hfsc: upgrade 'rt' to 'sc' when it becomes a inner curve
     - neighbor: tracing: Move pin6 inside CONFIG_IPV6=y section
     - netfilter: nft_set_rbtree: .deactivate fails if element has expired
     - netlink: Correct offload_xstats size
     - netfilter: nf_tables: do not remove elements if set backend implements
       .abort
     - netfilter: nf_tables: revert do not remove elements if set backend
       implements .abort
     - net: phy: bcm7xxx: Add missing 16nm EPHY statistics
     - net: pktgen: Fix interface flags printing
     - net: avoid UAF on deleted altname
     - net: fix ifname in netlink ntf during netns move
     - net: check for altname conflicts when changing netdev's netns
     - usb: misc: onboard_usb_hub: add Genesys Logic GL850G hub support
     - usb: misc: onboard_usb_hub: add Genesys Logic GL852G hub support
     - usb: misc: onboard_usb_hub: add Genesys Logic GL3523 hub support
     - usb: misc: onboard_hub: add support for Microchip USB2412 USB 2.0 hub
     - serial: Move uart_change_speed() earlier
     - serial: Rename uart_change_speed() to uart_change_line_settings()
     - serial: Reduce spinlocked portion of uart_rs485_config()
     - serial: 8250: omap: Fix imprecise external abort for omap_8250_pm()
     - serial: 8250_omap: Fix errors with no_console_suspend
     - iio: core: introduce iio_device_{claim|release}_buffer_mode() APIs
     - iio: cros_ec: fix an use-after-free in cros_ec_sensors_push_data()
     - iio: adc: ad7192: Simplify using devm_regulator_get_enable()
     - iio: adc: ad7192: Correct reference voltage
     - pwr-mlxbf: extend Kconfig to include gpio-mlxbf3 dependency
     - fs-writeback: do not requeue a clean inode having skipped pages
     - btrfs: prevent transaction block reserve underflow when starting
       transaction
     - btrfs: return -EUCLEAN for delayed tree ref with a ref count not equals to
       1
     - btrfs: initialize start_slot in btrfs_log_prealloc_extents
     - i2c: mux: Avoid potential false error message in i2c_mux_add_adapter
     - overlayfs: set ctime when setting mtime and atime
     - gpio: timberdale: Fix potential deadlock on &tgpio->lock
     - ata: libata-core: Fix compilation warning in ata_dev_config_ncq()
     - ata: libata-eh: Fix compilation warning in ata_eh_link_report()
     - tracing: relax trace_event_eval_update() execution with cond_resched()
     - wifi: mwifiex: Sanity check tlv_len and tlv_bitmap_len
     - wifi: iwlwifi: Ensure ack flag is properly cleared.
     - HID: logitech-hidpp: Add Bluetooth ID for the Logitech M720 Triathlon
       mouse
     - HID: holtek: fix slab-out-of-bounds Write in holtek_kbd_input_event
     - Bluetooth: btusb: add shutdown function for QCA6174
     - Bluetooth: Avoid redundant authentication
     - Bluetooth: hci_core: Fix build warnings
     - wifi: cfg80211: Fix 6GHz scan configuration
     - wifi: mac80211: work around Cisco AP 9115 VHT MPDU length
     - wifi: mac80211: allow transmitting EAPOL frames with tainted key
     - wifi: cfg80211: avoid leaking stack data into trace
     - regulator/core: Revert "fix kobject release warning and memory leak in
       regulator_register()"
     - sky2: Make sure there is at least one frag_addr available
     - ipv4/fib: send notify when delete source address routes
     - drm: panel-orientation-quirks: Add quirk for One Mix 2S
     - btrfs: fix some -Wmaybe-uninitialized warnings in ioctl.c
     - btrfs: error out when COWing block using a stale transaction
     - btrfs: error when COWing block from a root that is being deleted
     - btrfs: error out when reallocating block for defrag using a stale
       transaction
     - drm/amd/pm: add unique_id for gc 11.0.3
     - HID: multitouch: Add required quirk for Synaptics 0xcd7e device
     - HID: nintendo: reinitialize USB Pro Controller after resuming from suspend
     - [x86] platform/x86: touchscreen_dmi: Add info for the Positivo C4128B
     - cpufreq: schedutil: Update next_freq when cpufreq_limits change
     - fprobe: Pass entry_data to handlers
     - fprobe: Add nr_maxactive to specify rethook_node pool size
     - fprobe: Fix to ensure the number of active retprobes is not zero
     - net: xfrm: skip policies marked as dead while reinserting policies
     - xfrm6: fix inet6_dev refcount underflow problem
     - net/mlx5: E-switch, register event handler before arming the event
     - net/mlx5: Handle fw tracer change ownership event based on MTRC
     - net/mlx5e: Don't offload internal port if filter device is out device
     - net/tls: split tls_rx_reader_lock
     - tcp: allow again tcp_disconnect() when threads are waiting
     - ice: Remove redundant pci_enable_pcie_error_reporting()
     - Bluetooth: hci_event: Fix using memcmp when comparing keys
     - tcp_bpf: properly release resources on error paths
     - net/smc: fix smc clc failed issue when netdevice not in init_net
     - mtd: physmap-core: Restore map_rom fallback
     - dt-bindings: mmc: sdhci-msm: correct minimum number of clocks
     - mmc: sdhci-pci-gli: fix LPM negotiation so x86/S0ix SoCs can suspend
     - mmc: core: sdio: hold retuning if sdio in 1-bit mode
     - mmc: core: Capture correct oemid-bits for eMMC cards
     - Revert "pinctrl: avoid unsafe code pattern in find_pinctrl()"
     - pNFS: Fix a hang in nfs4_evict_inode()
     - pNFS/flexfiles: Check the layout validity in
       ff_layout_mirror_prepare_stats
     - NFSv4.1: fixup use EXCHGID4_FLAG_USE_PNFS_DS for DS server
     - ACPI: irq: Fix incorrect return value in acpi_register_gsi()
     - nfs42: client needs to strip file mode's suid/sgid bit after ALLOCATE op
     - nvme: sanitize metadata bounce buffer for reads
     - nvme-pci: add BOGUS_NID for Intel 0a54 device
     - nvme-rdma: do not try to stop unallocated queues
     - [x86] KVM: x86/mmu: Stop zapping invalidated TDP MMU roots asynchronously
     - HID: input: map battery system charging
     - USB: serial: option: add Telit LE910C4-WWX 0x1035 composition
     - USB: serial: option: add entry for Sierra EM9191 with new firmware
     - USB: serial: option: add Fibocom to DELL custom modem FM101R-GL
     - perf: Disallow mis-matched inherited group reads (CVE-2023-5717)
     - [s390x] pci: fix iommu bitmap allocation
     - [s390x] cio: fix a memleak in css_alloc_subchannel
     - [x86] platform/surface: platform_profile: Propagate error if profile
       registration fails
     - [x86] platform/x86: intel-uncore-freq: Conditionally create attribute for
       read frequency
     - [x86] platform/x86: asus-wmi: Change ASUS_WMI_BRN_DOWN code from 0x20 to
       0x2e
     - [x86] platform/x86: asus-wmi: Only map brightness codes when using
       asus-wmi backlight control
     - [x86] platform/x86: asus-wmi: Map 0x2a code, Ignore 0x2b and 0x2c events
     - gpio: vf610: set value before the direction to avoid a glitch
     - drm/bridge: ti-sn65dsi86: Associate DSI device lifetime with auxiliary
       device
     - serial: 8250: omap: Move uart_write() inside PM section
     - serial: 8250: omap: convert to modern PM ops
     - kallsyms: Reduce the memory occupied by kallsyms_seqs_of_names[]
     - kallsyms: Add helper kallsyms_on_each_match_symbol()
     - tracing/kprobes: Return EADDRNOTAVAIL when func matches several symbols
     - gpio: vf610: make irq_chip immutable
     - gpio: vf610: mask the gpio irq in system suspend and support wakeup
     - phy: mapphone-mdm6600: Fix runtime disable on probe
     - phy: mapphone-mdm6600: Fix runtime PM for remove
     - phy: mapphone-mdm6600: Fix pinctrl_pm handling for sleep pins
     - net: move altnames together with the netdevice
     - Bluetooth: hci_sock: fix slab oob read in create_monitor_event
     - Bluetooth: hci_sock: Correctly bounds check and pad HCI_MON_NEW_INDEX name
     - mptcp: avoid sending RST when closing the initial subflow
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.61
     - [x86] KVM: x86/pmu: Truncate counter value to allowed width on write
     - mmc: core: Align to common busy polling behaviour for mmc ioctls
     - mmc: block: ioctl: do write error check for spi
     - mmc: core: Fix error propagation for some ioctl commands
     - virtio_balloon: Fix endless deflation and inflation on arm64
     - virtio-mmio: fix memory leak of vm_dev
     - virtio-crypto: handle config changed by work queue
     - virtio_pci: fix the common cfg map size
     - vsock/virtio: initialize the_virtio_vsock before using VQs
     - vhost: Allow null msg.size on VHOST_IOTLB_INVALIDATE
     - mm: fix vm_brk_flags() to not bail out while holding lock
     - hugetlbfs: clear resv_map pointer if mmap fails
     - mm/page_alloc: correct start page when guard page debug is enabled
     - mm/migrate: fix do_pages_move for compat pointers
     - hugetlbfs: extend hugetlb_vma_lock to private VMAs
     - maple_tree: add GFP_KERNEL to allocations in mas_expected_entries()
     - nfsd: lock_rename() needs both directories to live on the same fs
     - [x86] drm/i915/pmu: Check if pmu is closed before stopping event
     - drm/amd: Disable ASPM for VI w/ all Intel systems
     - drm/dp_mst: Fix NULL deref in get_mst_branch_device_by_guid_helper()
     - [armhf] clk: ti: Fix missing omap4 mcbsp functional clock and aliases
     - [armhf] clk: ti: Fix missing omap5 mcbsp functional clock and aliases
     - r8169: fix the KCSAN reported data-race in rtl_tx() while reading
       tp->cur_tx
     - r8169: fix the KCSAN reported data-race in rtl_tx while reading
       TxDescArray[entry].opts1
     - r8169: fix the KCSAN reported data race in rtl_rx while reading
       desc->opts1
     - iavf: initialize waitqueues before starting watchdog_task
     - i40e: Fix I40E_FLAG_VF_VLAN_PRUNING value
     - igb: Fix potential memory leak in igb_add_ethtool_nfc_entry
     - neighbour: fix various data-races
     - igc: Fix ambiguity in the ethtool advertising
     - net: ieee802154: adf7242: Fix some potential buffer overflow in
       adf7242_stats_show()
     - net: usb: smsc95xx: Fix uninit-value access in smsc95xx_read_reg
     - r8152: Increase USB control msg timeout to 5000ms as per spec
     - r8152: Run the unload routine if we have errors during probe
     - r8152: Cancel hw_phy_work if we have an error in probe
     - r8152: Release firmware if we have an error in probe
     - tcp: fix wrong RTO timeout when received SACK reneging
     - gtp: uapi: fix GTPA_MAX
     - gtp: fix fragmentation needed check with gso
     - i40e: Fix wrong check for I40E_TXR_FLAGS_WB_ON_ITR
     - iavf: in iavf_down, disable queues when removing the driver
     - scsi: sd: Introduce manage_shutdown device flag
     - blk-throttle: check for overflow in calculate_bytes_allowed
     - io_uring/fdinfo: lock SQ thread while retrieving thread cpu/pid
       (CVE-2023-46862)
     - iio: afe: rescale: Accept only offset channels
     - iio: exynos-adc: request second interupt only when touchscreen mode is
       used
     - iio: adc: xilinx-xadc: Don't clobber preset voltage/temperature thresholds
     - iio: adc: xilinx-xadc: Correct temperature offset/scale for UltraScale
     - i2c: muxes: i2c-mux-pinctrl: Use of_get_i2c_adapter_by_node()
     - i2c: muxes: i2c-mux-gpmux: Use of_get_i2c_adapter_by_node()
     - i2c: muxes: i2c-demux-pinctrl: Use of_get_i2c_adapter_by_node()
     - i2c: stm32f7: Fix PEC handling in case of SMBUS transfers
     - i2c: aspeed: Fix i2c bus hang in slave read
     - tracing/kprobes: Fix the description of variable length arguments
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6ULL
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6SLL
     - [arm64,armhf] nvmem: imx: correct nregs for i.MX6UL
     - [x86] i8259: Skip probing when ACPI/MADT advertises PCAT compatibility
     - [x86] cpu: Add model number for Intel Arrow Lake mobile processor
     - perf/core: Fix potential NULL deref
     - clk: Sanitize possible_parent_show to Handle Return Value of
       of_clk_get_parent_name
     - [x86] platform/x86: Add s2idle quirk for more Lenovo laptops
     - ext4: add two helper functions extent_logical_end() and pa_logical_end()
     - ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow
     - ext4: avoid overlapping preallocations due to overflow
     - [x86] objtool/x86: add missing embedded_insn check
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.62
     - [arm*] ASoC: simple-card: fixup asoc_simple_probe() error handling
     - net: sched: cls_u32: Fix allocation size in u32_init()
     - [armhf] irqchip/stm32-exti: add missing DT IRQ flag translation
     - Input: synaptics-rmi4 - handle reset delay when using SMBus trsnsport
     - fbdev: atyfb: only use ioremap_uc() on i386 and ia64
     - netfilter: nfnetlink_log: silence bogus compiler warning
     - efi: fix memory leak in krealloc failure handling
     - ASoC: rt5650: fix the wrong result of key button
     - drm/ttm: Reorder sys manager cleanup step
     - [x86] fbdev: uvesafb: Call cn_del_callback() at the end of uvesafb_exit()
     - scsi: mpt3sas: Fix in error path
     - drm/amdgpu: Unset context priority is now invalid
     - gpu/drm: Eliminate DRM_SCHED_PRIORITY_UNSET
     - netfilter: nf_tables: audit log object reset once per table
     - drm/amdgpu: Reserve fences for VM update
     - net: chelsio: cxgb4: add an error code check in t4_load_phy_fw
     - r8152: Check for unplug in rtl_phy_patch_request()
     - r8152: Check for unplug in r8153b_ups_en() / r8153c_ups_en()
     - [powerpc*] mm: Fix boot crash with FLATMEM
     - io_uring: kiocb_done() should *not* trust ->ki_pos if
       ->{read,write}_iter() failed
     - ceph_wait_on_conflict_unlink(): grab reference before dropping ->d_lock
     - power: supply: core: Use blocking_notifier_call_chain to avoid RCU
       complaint
     - perf evlist: Avoid frequency mode for the dummy event
     - [x86] KVM: SVM: always update the x2avic msr interception (CVE-2023-5090)
     - mm/mempolicy: fix set_mempolicy_home_node() previous VMA pointer
     - mmap: fix error paths with dup_anon_vma()
     - ALSA: usb-audio: add quirk flag to enable native DSD for McIntosh devices
     - PCI: Prevent xHCI driver from claiming AMD VanGogh USB3 DRD device
     - usb: storage: set 1.50 as the lower bcdDevice for older "Super Top"
       compatibility
     - usb: typec: tcpm: Fix NULL pointer dereference in tcpm_pd_svdm()
     - usb: raw-gadget: properly handle interrupted requests
     - tty: n_gsm: fix race condition in status line change on dead connections
     - tty: 8250: Remove UC-257 and UC-431
     - tty: 8250: Add support for additional Brainboxes UC cards
     - tty: 8250: Add support for Brainboxes UP cards
     - tty: 8250: Add support for Intashield IS-100
     - tty: 8250: Fix port count of PX-257
     - tty: 8250: Fix up PX-803/PX-857
     - tty: 8250: Add support for additional Brainboxes PX cards
     - tty: 8250: Add support for Intashield IX cards
     - tty: 8250: Add Brainboxes Oxford Semiconductor-based quirks
     - misc: pci_endpoint_test: Add deviceID for J721S2 PCIe EP device support
     - ALSA: hda: intel-dsp-config: Fix JSL Chromebook quirk detection
     - [x86] ASoC: SOF: sof-pci-dev: Fix community key quirk detection
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.63
     - hwmon: (nct6775) Fix incorrect variable reuse in fan_div calculation
     - sched/fair: Fix cfs_rq_is_decayed() on !SMP
     - [x86] iov_iter, x86: Be consistent about the __user tag on
       copy_mc_to_user()
     - sched/uclamp: Set max_spare_cap_cpu even if max_spare_cap is 0
     - sched/uclamp: Ignore (util == 0) optimization in feec() when p_util_max =
       0
     - objtool: Propagate early errors
     - sched: Fix stop_one_cpu_nowait() vs hotplug
     - vfs: fix readahead(2) on block devices
     - writeback, cgroup: switch inodes with dirty timestamps to release dying
       cgwbs
     - [x86] srso: Fix SBPB enablement for (possible) future fixed HW
     - futex: Don't include process MM in futex key on no-MMU
     - [x86] numa: Introduce numa_fill_memblks()
     - ACPI/NUMA: Apply SRAT proximity domain to entire CFMWS window
     - [x86] sev-es: Allow copy_from_kernel_nofault() in earlier boot
     - [x86] boot: Fix incorrect startup_gdt_descr.size
     - [arm64,armhf] drivers/clocksource/timer-ti-dm: Don't call clk_get_rate()
       in stop function
     - pstore/platform: Add check for kstrdup
     - string: Adjust strtomem() logic to allow for smaller sources
     - genirq/matrix: Exclude managed interrupts in irq_matrix_allocated()
     - wifi: cfg80211: add flush functions for wiphy work
     - wifi: mac80211: move radar detect work to wiphy work
     - wifi: mac80211: move scan work to wiphy work
     - wifi: mac80211: move offchannel works to wiphy work
     - wifi: mac80211: move sched-scan stop work to wiphy work
     - wifi: mac80211: fix # of MSDU in A-MSDU calculation
     - wifi: iwlwifi: honor the enable_ini value
     - i40e: fix potential memory leaks in i40e_remove()
     - iavf: Fix promiscuous mode configuration flow messages
     - udp: add missing WRITE_ONCE() around up->encap_rcv
     - tcp: call tcp_try_undo_recovery when an RTOd TFO SYNACK is ACKed
     - gve: Use size_add() in call to struct_size()
     - tls: Only use data field in crypto completion function
     - tls: Use size_add() in call to struct_size()
     - tipc: Use size_add() in calls to struct_size()
     - net: spider_net: Use size_add() in call to struct_size()
     - net: ethernet: mtk_wed: fix EXT_INT_STATUS_RX_FBUF definitions for MT7986
       SoC
     - wifi: rtw88: debug: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
     - wifi: ath11k: fix boot failure with one MSI vector
     - wifi: mt76: mt7603: rework/fix rx pse hang check
     - wifi: mt76: mt7603: improve watchdog reset reliablity
     - wifi: mt76: mt7603: improve stuck beacon handling
     - wifi: mt76: mt7915: fix beamforming availability check
     - wifi: ath: dfs_pattern_detector: Fix a memory initialization issue
     - tcp_metrics: add missing barriers on delete
     - tcp_metrics: properly set tp->snd_ssthresh in tcp_init_metrics()
     - tcp_metrics: do not create an entry from tcp_init_metrics()
     - wifi: rtlwifi: fix EDCA limit set by BT coexistence
     - ACPI: property: Allow _DSD buffer data only for byte accessors
     - ACPI: video: Add acpi_backlight=vendor quirk for Toshiba Portégé R100
     - wifi: ath11k: fix Tx power value during active CAC
     - can: dev: can_restart(): don't crash kernel if carrier is OK
     - can: dev: can_restart(): fix race condition between controller restart and
       netif_carrier_on()
     - can: dev: can_put_echo_skb(): don't crash kernel if can_priv::echo_skb is
       accessed out of bounds
     - PM / devfreq: rockchip-dfi: Make pmu regmap mandatory
     - wifi: wfx: fix case where rates are out of order
     - netfilter: nf_tables: Drop pointless memset when dumping rules
     - thermal: core: prevent potential string overflow
     - r8169: use tp_to_dev instead of open code
     - r8169: fix rare issue with broken rx after link-down on RTL8125
     - net: skb_find_text: Ignore patterns extending past 'to'
     - tcp: fix cookie_init_timestamp() overflows
     - wifi: iwlwifi: call napi_synchronize() before freeing rx/tx queues
     - wifi: iwlwifi: pcie: synchronize IRQs before NAPI
     - wifi: iwlwifi: empty overflow queue during flush
     - Bluetooth: hci_sync: Fix Opcode prints in bt_dev_dbg/err
     - bpf: Fix unnecessary -EBUSY from htab_lock_bucket
     - ACPI: sysfs: Fix create_pnp_modalias() and create_of_modalias()
     - ipv6: avoid atomic fragment on GSO packets
     - net: add DEV_STATS_READ() helper
     - ipvlan: properly track tx_errors
     - regmap: debugfs: Fix a erroneous check after snprintf()
     - [arm64] spi: tegra: Fix missing IRQ check in tegra_slink_probe()
     - [arm64] clk: qcom: gcc-msm8996: Remove RPM bus clocks
     - [arm64] clk: qcom: clk-rcg2: Fix clock rate overflow for high parent
       frequencies
     - [arm64] clk: qcom: mmcc-msm8998: Don't check halt bit on some branch clks
     - [arm64] clk: qcom: mmcc-msm8998: Fix the SMMU GDSC
     - [arm64] clk: qcom: gcc-sm8150: Fix gcc_sdcc2_apps_clk_src
     - clk: imx: Select MXC_CLK for CLK_IMX8QXP
     - [arm64] clk: imx: imx8mq: correct error handling path
     - [arm64] clk: imx: imx8qxp: Fix elcdif_pll clock
     - [arm64] clk: renesas: rcar-gen3: Extend SDnH divider table
     - clk: linux/clk-provider.h: fix kernel-doc warnings and typos
     - [arm64] spi: nxp-fspi: use the correct ioremap function
     - [armhf] clk: ti: change ti_clk_register[_omap_hw]() API
     - [armhf] clk: ti: fix double free in of_ti_divider_clk_setup()
     - [arm64] clk: qcom: config IPQ_APSS_6018 should depend on QCOM_SMEM
     - [x86] platform/x86: wmi: Fix probe failure when failing to register WMI
       devices
     - [x86] platform/x86: wmi: Fix opening of char device
     - hwmon: (coretemp) Fix potentially truncated sysfs attribute name
     - Revert "hwmon: (sch56xx-common) Add DMI override table"
     - Revert "hwmon: (sch56xx-common) Add automatic module loading on supported
       devices"
     - hwmon: (sch5627) Use bit macros when accessing the control register
     - hwmon: (sch5627) Disallow write access if virtual registers are locked
     - [arm64,armhf] drm/rockchip: vop: Fix reset of state in duplicate state
       crtc funcs
     - [arm64,armhf] drm/rockchip: vop: Fix call to crtc reset helper
     - [arm64] drm/rockchip: vop2: Don't crash for invalid duplicate_state
     - [arm64] drm/rockchip: vop2: Add missing call to crtc reset helper
     - drm/radeon: possible buffer overflow
     - drm/amd/display: Check all enabled planes in dm_check_crtc_cursor
     - drm/amd/display: Refactor dm_get_plane_scale helper
     - drm/amd/display: Bail from dm_check_crtc_cursor if no relevant change
     - io_uring/kbuf: Fix check of BID wrapping in provided buffers
     - io_uring/kbuf: Allow the full buffer id space for provided buffers
     - [arm64] drm/rockchip: cdn-dp: Fix some error handling paths in
       cdn_dp_probe()
     - [arm64,armhf] gpu: host1x: Correct allocated size for contexts
     - [arm64,armhf] drm/rockchip: Fix type promotion bug in
       rockchip_gem_iommu_map()
     - xenbus: fix error exit in xenbus_init()
     - xen-pciback: Consider INTx disabled when MSI/MSI-X is enabled
     - [arm64] drm/msm/dsi: use msm_gem_kernel_put to free TX buffer
     - [arm64] drm/msm/dsi: free TX buffer in unbind
     - [arm64,armhf] clocksource/drivers/arm_arch_timer: limit XGene-1 workaround
     - drivers/perf: hisi: use cpuhp_state_remove_instance_nocalls() for
       hisi_hns3_pmu uninit process
     - [arm64] perf/arm-cmn: Revamp model detection
     - [arm64] perf/arm-cmn: Fix DTC domain detection
     - drivers/perf: hisi_pcie: Check the type first in pmu::event_init()
     - [arm64] perf: hisi: Fix use-after-free when register pmu fails
     - [arm64] dts: qcom: sdm845: cheza doesn't support LMh node
     - [arm64] dts: qcom: sc7280: link usb3_phy_wrapper_gcc_usb30_pipe_clk
     - [arm64] dts: qcom: msm8916: Fix iommu local address range
     - [arm64] dts: qcom: msm8992-libra: drop duplicated reserved memory
     - [arm64] dts: qcom: sc7280: Add missing LMH interrupts
     - [arm64] dts: qcom: sm8150: add ref clock to PCIe PHYs
     - [arm64] dts: qcom: sm8350: fix pinctrl for UART18
     - [arm64] dts: qcom: sdm845-mtp: fix WiFi configuration
     - [arm64] dts: marvell: cn9310: Use appropriate label for spi1 pins
     - [arm64] dts: qcom: apq8016-sbc: Add missing ADV7533 regulators
     - firmware: ti_sci: Mark driver as non removable
     - [arm64] dts: ti: k3-am62a7-sk: Drop i2c-1 to 100Khz
     - [arm64] clk: scmi: Free scmi_clk allocated when the clocks with invalid
       info are skipped
     - [arm64] dts: imx8qm-ss-img: Fix jpegenc compatible entry
     - [arm64] dts: imx8mm: Add sound-dai-cells to micfil node
     - [arm64] dts: imx8mn: Add sound-dai-cells to micfil node
     - [arm64] tegra: Use correct interrupts for Tegra234 TKE
     - module/decompress: use vmalloc() for gzip decompression workspace
     - [x86] ASoC: cs35l41: Verify PM runtime resume errors in IRQ handler
     - [x86] ASoC: cs35l41: Undo runtime PM changes at driver exit time
     - ALSA: hda: cs35l41: Fix unbalanced pm_runtime_get()
     - ALSA: hda: cs35l41: Undo runtime PM changes at driver exit time
     - KEYS: Include linux/errno.h in linux/verification.h
     - crypto: hisilicon/hpre - Fix a erroneous check after snprintf()
     - hwrng: bcm2835 - Fix hwrng throughput regression
     - [i386] hwrng: geode - fix accessing registers
     - RDMA/core: Use size_{add,sub,mul}() in calls to struct_size()
     - [x86] crypto: qat - ignore subsequent state up commands
     - [x86] crypto: qat - relocate bufferlist logic
     - [x86] crypto: qat - rename bufferlist functions
     - [x86] crypto: qat - change bufferlist logic interface
     - [x86] crypto: qat - generalize crypto request buffers
     - [x86] crypto: qat - extend buffer list interface
     - [x86] crypto: qat - fix unregistration of crypto algorithms
     - scsi: ibmvfc: Fix erroneous use of rtas_busy_delay with hcall return code
     - libnvdimm/of_pmem: Use devm_kstrdup instead of kstrdup and check its
       return value
     - nd_btt: Make BTT lanes preemptible
     - [arm64] crypto: caam/qi2 - fix Chacha20 + Poly1305 self test failure
     - [arm64,armhf] crypto: caam/jr - fix Chacha20 + Poly1305 self test failure
     - [x86] crypto: qat - increase size of buffers
     - [amd64] PCI: vmd: Correct PCI Header Type Register's multi-function check
     - hid: cp2112: Fix duplicate workqueue initialization
     - [armel,armhf] 9321/1: memset: cast the constant byte to unsigned char
     - ext4: move 'ix' sanity check to corrent position
     - IB/mlx5: Fix rdma counter binding for RAW QP
     - [arm64] RDMA/hns: Fix printing level of asynchronous events
     - [arm64] RDMA/hns: Fix uninitialized ucmd in hns_roce_create_qp_common()
     - [arm64] RDMA/hns: Fix signed-unsigned mixed comparisons
     - [arm64] RDMA/hns: Add check for SL
     - [arm64] RDMA/hns: The UD mode can only be configured with DCQCN
     - [x86] ASoC: SOF: core: Ensure sof_ops_free() is still called when probe
       never ran.
     - scsi: ufs: core: Leave space for '\0' in utf8 desc string
     - [amd64] RDMA/hfi1: Workaround truncation compilation error
     - HID: cp2112: Make irq_chip immutable
     - hid: cp2112: Fix IRQ shutdown stopping polling for all IRQs on chip
     - Revert "HID: logitech-hidpp: add a module parameter to keep firmware
       gestures"
     - HID: logitech-hidpp: Remove HIDPP_QUIRK_NO_HIDINPUT quirk
     - HID: logitech-hidpp: Don't restart IO, instead defer hid_connect() only
     - HID: logitech-hidpp: Revert "Don't restart communication if not necessary"
     - HID: logitech-hidpp: Move get_wireless_feature_index() check to
       hidpp_connect_event()
     - [x86] ASoC: Intel: Skylake: Fix mem leak when parsing UUIDs fails
     - padata: Fix refcnt handling in padata_free_shell()
     - [x86] crypto: qat - fix deadlock in backlog processing
     - IB/mlx5: Fix init stage error handling to avoid double free of same QP and
       UAF
     - mfd: core: Un-constify mfd_cell.of_reg
     - mfd: core: Ensure disabled devices are skipped without aborting
     - mfd: dln2: Fix double put in dln2_probe
     - dt-bindings: mfd: mt6397: Add binding for MT6357
     - dt-bindings: mfd: mt6397: Split out compatible for MediaTek MT6366 PMIC
     - mfd: arizona-spi: Set pdata.hpdet_channel for ACPI enumerated devs
     - leds: turris-omnia: Drop unnecessary mutex locking
     - leds: turris-omnia: Do not use SMBUS calls
     - leds: pwm: Don't disable the PWM when the LED should be off
     - leds: trigger: ledtrig-cpu:: Fix 'output may be truncated' issue for 'cpu'
     - apparmor: fix invalid reference on profile->disconnected
     - perf stat: Fix aggr mode initialization
     - iio: frequency: adf4350: Use device managed functions and fix power down
       issue.
     - perf kwork: Fix incorrect and missing free atom in work_push_atom()
     - perf kwork: Add the supported subcommands to the document
     - perf kwork: Set ordered_events to true in 'struct perf_tool'
     - filemap: add filemap_get_folios_tag()
     - f2fs: convert f2fs_write_cache_pages() to use filemap_get_folios_tag()
     - f2fs: compress: fix deadloop in f2fs_write_cache_pages()
     - f2fs: compress: fix to avoid use-after-free on dic
     - f2fs: compress: fix to avoid redundant compress extension
     - tty: tty_jobctrl: fix pid memleak in disassociate_ctty()
     - pinctrl: renesas: rzg2l: Make reverse order of enable() for disable()
     - perf record: Fix BTF type checks in the off-cpu profiling
     - dmaengine: idxd: Register dsa_bus_type before registering idxd sub-drivers
     - usb: dwc2: fix possible NULL pointer dereference caused by driver
       concurrency
     - usb: chipidea: Fix DMA overwrite for Tegra
     - usb: chipidea: Simplify Tegra DMA alignment code
     - dmaengine: ti: edma: handle irq_of_parse_and_map() errors
     - misc: st_core: Do not call kfree_skb() under spin_lock_irqsave()
     - USB: usbip: fix stub_dev hub disconnect
     - dmaengine: pxa_dma: Remove an erroneous BUG_ON() in pxad_free_desc()
     - f2fs: fix to initialize map.m_pblk in f2fs_precache_extents()
     - [powerpc*] Only define __parse_fpscr() when required
     - modpost: fix tee MODULE_DEVICE_TABLE built on big-endian host
     - modpost: fix ishtp MODULE_DEVICE_TABLE built on big-endian host
     - [powerpc*] 40x: Remove stale PTE_ATOMIC_UPDATES macro
     - [powerpc*] xive: Fix endian conversion size
     - [powerpc*] vas: Limit open window failure messages in log bufffer
     - [powerpc*] imc-pmu: Use the correct spinlock initializer.
     - [powerpc*] pseries: fix potential memory leak in init_cpu_associativity()
     - xhci: Loosen RPM as default policy to cover for AMD xHC 1.1
     - usb: host: xhci-plat: fix possible kernel oops while resuming
     - perf machine: Avoid out of bounds LBR memory read
     - perf hist: Add missing puts to hist__account_cycles
     - 9p/net: fix possible memory leak in p9_check_errors()
     - i3c: Fix potential refcount leak in i3c_master_register_new_i3c_devs
     - cxl/mem: Fix shutdown order
     - crypto: ccp - Name -1 return value as SEV_RET_NO_FW_CALL
     - [x86] sev: Change snp_guest_issue_request()'s fw_err argument
     - [amd64] virt: sevguest: Fix passing a stack buffer as a scatterlist target
     - rtc: pcf85363: fix wrong mask/val parameters in regmap_update_bits call
     - pcmcia: cs: fix possible hung task and memory leak pccardd()
     - pcmcia: ds: fix refcount leak in pcmcia_device_add()
     - pcmcia: ds: fix possible name leak in error path in pcmcia_device_add()
     - media: hantro: Check whether reset op is defined before use
     - media: verisilicon: Do not enable G2 postproc downscale if source is
       narrower than destination
     - media: ov5640: Drop dead code using frame_interval
     - media: ov5640: fix vblank unchange issue when work at dvp mode
     - media: i2c: max9286: Fix some redundant of_node_put() calls
     - media: ov5640: Fix a memory leak when ov5640_probe fails
     - media: bttv: fix use after free error due to btv->timeout timer
     - media: amphion: handle firmware debug message
     - media: mtk-jpegenc: Fix bug in JPEG encode quality selection
     - media: s3c-camif: Avoid inappropriate kfree()
     - media: vidtv: psi: Add check for kstrdup
     - media: vidtv: mux: Add check and kfree for kstrdup
     - media: cedrus: Fix clock/reset sequence
     - media: cadence: csi2rx: Unregister v4l2 async notifier
     - media: dvb-usb-v2: af9035: fix missing unlock
     - media: cec: meson: always include meson sub-directory in Makefile
     - regmap: prevent noinc writes from clobbering cache
     - pwm: sti: Reduce number of allocations and drop usage of chip_data
     - pwm: brcmstb: Utilize appropriate clock APIs in suspend/resume
     - Input: synaptics-rmi4 - fix use after free in rmi_unregister_function()
     - watchdog: ixp4xx: Make sure restart always works
     - llc: verify mac len before reading mac header
     - hsr: Prevent use after free in prp_create_tagged_frame()
     - tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING
     - bpf: Check map->usercnt after timer->timer is assigned
     - inet: shrink struct flowi_common
     - net: page_pool: add missing free_percpu when page_pool_init fail
     - dccp: Call security_inet_conn_request() after setting IPv4 addresses.
     - dccp/tcp: Call security_inet_conn_request() after setting IPv6 addresses.
     - net: r8169: Disable multicast filter for RTL8168H and RTL8107E
     - Fix termination state for idr_for_each_entry_ul()
     - net: stmmac: xgmac: Enable support for multiple Flexible PPS outputs
     - net/smc: fix dangling sock under state SMC_APPFINCLOSEWAIT
     - net/smc: allow cdc msg send rather than drop it with NULL sndbuf_desc
     - net/smc: put sk reference if close work was canceled
     - nvme: fix error-handling for io_uring nvme-passthrough
     - tg3: power down device only on SYSTEM_POWER_OFF
     - nbd: fix uaf in nbd_open
     - blk-core: use pr_warn_ratelimited() in bio_check_ro()
     - virtio/vsock: replace virtio_vsock_pkt with sk_buff
     - vsock/virtio: remove socket from connected/bound list on shutdown
     - r8169: respect userspace disabling IFF_MULTICAST
     - i2c: iproc: handle invalid slave state
     - netfilter: xt_recent: fix (increase) ipv6 literal buffer length
     - netfilter: nft_redir: use `struct nf_nat_range2` throughout and
       deduplicate eval call-backs
     - netfilter: nat: fix ipv6 nat redirect with mapped and scoped addresses
     - drm/syncobj: fix DRM_SYNCOBJ_WAIT_FLAGS_WAIT_AVAILABLE
     - [arm64,armhf] ASoC: hdmi-codec: register hpd callback on component probe
     - ASoC: dapm: fix clock get name
     - fbdev: imsttfb: Fix error path of imsttfb_probe()
     - fbdev: imsttfb: fix a resource leak in probe
     - fbdev: fsl-diu-fb: mark wr_reg_wa() static
     - tracing/kprobes: Fix the order of argument descriptions
     - io_uring/net: ensure socket is marked connected on connect retry
     - [x86] amd_nb: Use Family 19h Models 60h-7Fh Function 4 IDs
     - Revert "mmc: core: Capture correct oemid-bits for eMMC cards"
     - btrfs: use u64 for buffer sizes in the tree search ioctls
     - wifi: cfg80211: fix kernel-doc for wiphy_delayed_work_flush()
     - virtio/vsock: don't use skbuff state to account credit
     - virtio/vsock: remove redundant 'skb_pull()' call
     - virtio/vsock: don't drop skbuff on copy failure
     - vsock/loopback: use only sk_buff_head.lock to protect the packet queue
     - virtio/vsock: fix leaks due to missing skb owner
     - virtio/vsock: Fix uninit-value in virtio_transport_recv_pkt()
     - virtio/vsock: fix header length on skb merging
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.64
     - lib/generic-radix-tree.c: Don't overflow in peek()
     - perf/core: Bail out early if the request AUX area is out of bound
     - srcu: Fix srcu_struct node grpmask overflow on 64-bit systems
     - [armhf] clocksource/drivers/timer-imx-gpt: Fix potential memory leak
     - smp,csd: Throw an error if a CSD lock is stuck for too long
     - cpu/hotplug: Don't offline the last non-isolated CPU
     - workqueue: Provide one lock class key per work_on_cpu() callsite
     - [x86] mm: Drop the 4 MB restriction on minimal NUMA node memory size
     - wifi: plfxlc: fix clang-specific fortify warning
     - wifi: mac80211_hwsim: fix clang-specific fortify warning
     - wifi: mac80211: don't return unset power in ieee80211_get_tx_power()
     - atl1c: Work around the DMA RX overflow issue
     - bpf: Detect IP == ksym.end as part of BPF program
     - wifi: ath9k: fix clang-specific fortify warnings
     - wifi: ath10k: fix clang-specific fortify warning
     - net: annotate data-races around sk->sk_tx_queue_mapping
     - net: annotate data-races around sk->sk_dst_pending_confirm
     - wifi: ath10k: Don't touch the CE interrupt registers after power up
     - vsock: read from socket's error queue
     - bpf: Ensure proper register state printing for cond jumps
     - Bluetooth: btusb: Add date->evt_skb is NULL check
     - Bluetooth: Fix double free in hci_conn_cleanup
     - ACPI: EC: Add quirk for HP 250 G7 Notebook PC
     - tsnep: Fix tsnep_request_irq() format-overflow warning
     - [x86] platform/x86: thinkpad_acpi: Add battery quirk for Thinkpad X120e
     - [x86] drm/gma500: Fix call trace when psb_gem_mm_init() fails
     - drm/amdgpu: not to save bo in the case of RAS err_event_athub
     - drm/amd: Update `update_pcie_parameters` functions to use uint8_t
       arguments
     - drm/amd/display: use full update for clip size increase of large plane
       source
     - string.h: add array-wrappers for (v)memdup_user()
     - kernel: kexec: copy user-array safely
     - kernel: watch_queue: copy user-array safely
     - drm_lease.c: copy user-array safely
     - drm: vmwgfx_surface.c: copy user-array safely
     - [arm64] drm/msm/dp: skip validity check for DP CTS EDID checksum
     - drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7
     - drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga
     - drm/amdgpu: Fix potential null pointer derefernce
     - drm/radeon: fix a possible null pointer dereference
     - drm/amdgpu/vkms: fix a possible null pointer dereference
     - [arm64] drm/panel: st7703: Pick different reset sequence
     - drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL
     - [arm64] dts: ls208xa: use a pseudo-bus to constrain usb dma size
     - ASoC: soc-card: Add storage for PCI SSID
     - [x86] ASoC: SOF: Pass PCI SSID to machine driver
     - crypto: pcrypt - Fix hungtask for PADATA_RESET
     - [x86] ASoC: SOF: ipc4: handle EXCEPTION_CAUGHT notification from firmware
     - [amd64] RDMA/hfi1: Use FIELD_GET() to extract Link Width
     - [arm64] scsi: hisi_sas: Set debugfs_dir pointer to NULL after removing
       debugfs
     - [powerpc*] scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool
     - fs/jfs: Add check for negative db_l2nbperpage
     - fs/jfs: Add validity check for db_maxag and db_agpref
     - jfs: fix array-index-out-of-bounds in dbFindLeaf
     - jfs: fix array-index-out-of-bounds in diAlloc
     - HID: lenovo: Detect quirk-free fw on cptkbd and stop applying workaround
     - [armel,armhf] 9320/1: fix stack depot IRQ stack filter
     - ALSA: hda: Fix possible null-ptr-deref when assigning a stream
     - [armel,armhf] PCI: mvebu: Use FIELD_PREP() with Link Width
     - atm: iphase: Do PCI error checks on own line
     - PCI: Do error check on own line to split long "if" conditions
     - scsi: libfc: Fix potential NULL pointer dereference in
       fc_lport_ptp_setup()
     - PCI: Use FIELD_GET() to extract Link Width
     - PCI: Extract ATS disabling to a helper function
     - PCI: Disable ATS for specific Intel IPU E2000 devices
     - PCI: Use FIELD_GET() in Sapphire RX 5600 XT Pulse quirk
     - [x86] ASoC: Intel: soc-acpi-cht: Add Lenovo Yoga Tab 3 Pro YT3-X90 quirk
     - crypto: hisilicon/qm - prevent soft lockup in receive loop
     - HID: Add quirk for Dell Pro Wireless Keyboard and Mouse KM5221W
     - exfat: support handle zero-size directory
     - mfd: intel-lpss: Add Intel Lunar Lake-M PCI IDs
     - iio: adc: stm32-adc: harden against NULL pointer deref in
       stm32_adc_probe()
     - [x86] thunderbolt: Apply USB 3.x bandwidth quirk only in software
       connection manager
     - [arm64,armhf] usb: dwc3: core: configure TX/RX threshold for DWC3_IP
     - soundwire: dmi-quirks: update HP Omen match
     - f2fs: fix error handling of __get_node_page
     - usb: gadget: f_ncm: Always set current gadget in ncm_bind()
     - 9p/trans_fd: Annotate data-racy writes to file::f_flags
     - 9p: v9fs_listxattr: fix %s null argument warning
     - i2c: fix memleak in i2c_new_client_device()
     - [armhf] i2c: sun6i-p2wi: Prevent potential division by zero
     - virtio-blk: fix implicit overflow on virtio_max_dma_size
     - media: gspca: cpia1: shift-out-of-bounds in set_flicker
     - media: vivid: avoid integer overflow
     - gfs2: ignore negated quota changes
     - gfs2: fix an oops in gfs2_permission
     - media: cobalt: Use FIELD_GET() to extract Link Width
     - media: ccs: Fix driver quirk struct documentation
     - media: imon: fix access to invalid resource for the second interface
     - drm/amd/display: Avoid NULL dereference of timing generator
     - i2c: dev: copy userspace array safely
     - [armhf] ASoC: ti: omap-mcbsp: Fix runtime PM underflow warnings
     - drm/qxl: prevent memory leak
     - ALSA: hda/realtek: Add quirk for ASUS UX7602ZM
     - drm/amdgpu: fix software pci_unplug on some chips
     - pwm: Fix double shift bug
     - wifi: iwlwifi: Use FW rate for non-data frames
     - sched/core: Optimize in_task() and in_interrupt() a bit
     - SUNRPC: ECONNRESET might require a rebind
     - NFSv4.1: fix handling NFS4ERR_DELAY when testing for session trunking
     - SUNRPC: Add an IS_ERR() check back to where it was
     - NFSv4.1: fix SP4_MACH_CRED protection for pnfs IO
     - SUNRPC: Fix RPC client cleaned up the freed pipefs dentries
     - gfs2: Silence "suspicious RCU usage in gfs2_permission" warning
     - net: set SOCK_RCU_FREE before inserting socket into hashtable
     - ipvlan: add ipvlan_route_v6_outbound() helper
     - tty: Fix uninit-value access in ppp_sync_receive()
     - [arm64] net: hns3: fix add VLAN fail issue
     - [arm64] net: hns3: add barrier in vf mailbox reply process
     - [arm64] net: hns3: fix incorrect capability bit display for copper port
     - [arm64] net: hns3: fix out-of-bounds access may occur when coalesce info
       is read via debugfs
     - [arm64] net: hns3: fix variable may not initialized problem in
       hns3_init_mac_addr()
     - [arm64] net: hns3: fix VF reset fail issue
     - [arm64] net: hns3: fix VF wrong speed and duplex issue
     - tipc: Fix kernel-infoleak due to uninitialized TLV value
     - net: mvneta: fix calls to page_pool_get_stats
     - ppp: limit MRU to 64K
     - xen/events: fix delayed eoi list handling
     - ptp: annotate data-race around q->head and q->tail
     - bonding: stop the device in bond_setup_by_slave()
     - af_unix: fix use-after-free in unix_stream_read_actor()
     - netfilter: nf_conntrack_bridge: initialize err to 0
     - netfilter: nf_tables: fix pointer math issue in nft_byteorder_eval()
     - net: stmmac: fix rx budget limit check
     - net: stmmac: avoid rx queue overrun
     - net/mlx5e: fix double free of encap_header
     - net/mlx5e: fix double free of encap_header in update funcs
     - net/mlx5e: Fix pedit endianness
     - net/mlx5e: Reduce the size of icosq_str
     - net/mlx5e: Check return value of snprintf writing to fw_version buffer
     - net/mlx5e: Check return value of snprintf writing to fw_version buffer for
       representors
     - macvlan: Don't propagate promisc change to lower dev in passthru
     - cifs: spnego: add ';' in HOST_KEY_LEN
     - cifs: fix check of rc in function generate_smb3signingkey
     - [x86] i915/perf: Fix NULL deref bugs with drm_dbg() calls
     - [x86] perf intel-pt: Fix async branch flags
     - [powerpc*] perf: Fix disabling BHRB and instruction sampling
     - bpf: Fix check_stack_write_fixed_off() to correctly spill imm
     - bpf: Fix precision tracking for BPF_ALU | BPF_TO_BE | BPF_END
     - scsi: mpt3sas: Fix loop logic
     - scsi: megaraid_sas: Increase register read retry rount from 3 to 30 for
       selected registers
     - scsi: qla2xxx: Fix system crash due to bad pointer access
     - [x86] crypto: x86/sha - load modules based on CPU features
     - [x86] cpu/hygon: Fix the CPU topology evaluation for real
     - [x86] KVM: x86: hyper-v: Don't auto-enable stimer on write from user-space
     - [x86] KVM: x86: Ignore MSR_AMD64_TW_CFG access
     - [x86] KVM: x86: Clear bit12 of ICR after APIC-write VM-exit
     - audit: don't take task_lock() in audit_exe_compare() code path
     - audit: don't WARN_ON_ONCE(!current->mm) in audit_exe_compare()
     - proc: sysctl: prevent aliased sysctls from getting passed to init
     - tty/sysrq: replace smp_processor_id() with get_cpu()
     - tty: serial: meson: fix hard LOCKUP on crtscts mode
     - hvc/xen: fix console unplug
     - hvc/xen: fix error path in xen_hvc_init() to always register frontend
       driver
     - hvc/xen: fix event channel handling for secondary consoles
     - PCI/sysfs: Protect driver's D3cold preference from user space
     - watchdog: move softlockup_panic back to early_param
     - ACPI: resource: Do IRQ override on TongFang GMxXGxx
     - regmap: Ensure range selector registers are updated after cache sync
     - wifi: ath11k: fix temperature event locking
     - wifi: ath11k: fix dfs radar event locking
     - wifi: ath11k: fix htt pktlog locking
     - wifi: ath11k: fix gtk offload status event locking
     - [arm64] mmc: meson-gx: Remove setting of CMD_CFG_ERROR
     - genirq/generic_chip: Make irq_remove_generic_chip() irqdomain aware
     - KEYS: trusted: tee: Refactor register SHM usage
     - KEYS: trusted: Rollback init_trusted() consistently
     - [arm64] Restrict CPU_BIG_ENDIAN to GNU as or LLVM IAS 15.x or newer
     - ksmbd: handle malformed smb1 message
     - ksmbd: fix slab out of bounds write in smb_inherit_dacl()
     - mmc: vub300: fix an error code
     - mmc: sdhci_am654: fix start loop index for TAP value parsing
     - mmc: Add quirk MMC_QUIRK_BROKEN_CACHE_FLUSH for Micron eMMC Q2J54A
     - PCI/ASPM: Fix L1 substate handling in aspm_attr_store_common()
     - PCI: kirin: Don't discard .remove() callback
     - PCI: exynos: Don't discard .remove() callback
     - wifi: wilc1000: use vmm_table as array in wilc struct
     - svcrdma: Drop connection after an RDMA Read error
     - rcu/tree: Defer setting of jiffies during stall reset
     - [arm64] dts: qcom: ipq6018: Fix hwlock index for SMEM
     - PM: hibernate: Use __get_safe_page() rather than touching the list
     - PM: hibernate: Clean up sync_read handling in snapshot_write_next()
     - rcu: kmemleak: Ignore kmemleak false positives when RCU-freeing objects
     - btrfs: don't arbitrarily slow down delalloc if we're committing
     - [arm64] dts: qcom: ipq8074: Fix hwlock index for SMEM
     - [arm64] firmware: qcom_scm: use 64-bit calling convention only when client
       is 64-bit
     - ACPI: FPDT: properly handle invalid FPDT subtables
     - [arm64] dts: qcom: ipq6018: Fix tcsr_mutex register size
     - [arm64] mfd: qcom-spmi-pmic: Fix reference leaks in revid helper
     - [arm64] mfd: qcom-spmi-pmic: Fix revid implementation
     - ima: annotate iint mutex to avoid lockdep false positive warnings
     - ima: detect changes to the backing overlay file
     - netfilter: nf_tables: remove catchall element in GC sync path
       (CVE-2023-6111)
     - netfilter: nf_tables: split async and sync catchall in two functions
     - hid: lenovo: Resend all settings on reset_resume for compact keyboards
     - jbd2: fix potential data lost in recovering journal raced with
       synchronizing fs bdev
     - quota: explicitly forbid quota files from being encrypted
     - kernel/reboot: emergency_restart: Set correct system_state
     - i2c: core: Run atomic i2c xfer when !preemptible
     - tracing: Have the user copy of synthetic event address use correct context
     - driver core: Release all resources during unbind before updating device
       links
     - mcb: fix error handling for different scenarios when parsing
     - dmaengine: stm32-mdma: correct desc prep when channel running
     - [s390x] cmma: fix detection of DAT pages
     - mm/cma: use nth_page() in place of direct struct page manipulation
     - mm/memory_hotplug: use pfn math in place of direct struct page
       manipulation
     - mtd: cfi_cmdset_0001: Byte swap OTP info
     - xhci: Enable RPM on controllers that support low-power states
     - fs: add ctime accessors infrastructure
     - smb3: fix creating FIFOs when mounting with "sfu" mount option
     - smb3: fix touch -h of symlink
     - smb3: fix caching of ctime on setxattr
     - smb: client: fix use-after-free bug in cifs_debug_data_proc_show()
     - smb: client: fix potential deadlock when releasing mids
     - cifs: reconnect helper should set reconnect for the right channel
     - cifs: force interface update before a fresh session setup
     - cifs: do not reset chan_max if multichannel is not supported at mount
     - xfs: recovery should not clear di_flushiter unconditionally
     - btrfs: zoned: wait for data BG to be finished on direct IO allocation
     - ALSA: info: Fix potential deadlock at disconnection
     - ALSA: hda/realtek: Enable Mute LED on HP 255 G8
     - ALSA: hda/realtek - Add Dell ALC295 to pin fall back table
     - ALSA: hda/realtek - Enable internal speaker of ASUS K6500ZC
     - ALSA: hda/realtek: Enable Mute LED on HP 255 G10
     - ALSA: hda/realtek: Add quirks for HP Laptops
     - [arm64,armhf] pmdomain: bcm: bcm2835-power: check if the ASB register is
       equal to enable
     - [armhf] pmdomain: imx: Make imx pgc power domain also set the fwnode
     - cpufreq: stats: Fix buffer overflow detection in trans_stats()
     - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0cb8:0xc559
     - bluetooth: Add device 0bda:887b to device tables
     - bluetooth: Add device 13d3:3571 to device tables
     - Bluetooth: btusb: Add RTW8852BE device 13d3:3570 to device tables
     - Bluetooth: btusb: Add 0bda:b85b for Fn-Link RTL8852BE
     - drm/amd/display: enable dsc_clk even if dsc_pg disabled
     - cxl/region: Validate region mode vs decoder mode
     - cxl/region: Cleanup target list on attach error
     - cxl/region: Move region-position validation to a helper
     - cxl/region: Do not try to cleanup after cxl_region_setup_targets() fails
     - cxl: Unify debug messages when calling devm_cxl_add_port()
     - cxl/mem: Move devm_cxl_add_endpoint() from cxl_core to cxl_mem
     - cxl/region: Fix x1 root-decoder granularity calculations
     - Revert ncsi: Propagate carrier gain/loss events to the NCSI controller
     - Revert "i2c: pxa: move to generic GPIO recovery"
     - lsm: fix default return value for vm_enough_memory
     - lsm: fix default return value for inode_getsecctx
     - [arm64] sbsa_gwdt: Calculate timeout with 64-bit math
     - i2c: designware: Disable TX_EMPTY irq while waiting for block length byte
     - [s390x] ap: fix AP bus crash on early config change callback invocation
     - net: ethtool: Fix documentation of ethtool_sprintf()
     - net: phylink: initialize carrier state at creation
     - i2c: i801: fix potential race in i801_block_transaction_byte_by_byte
     - f2fs: do not return EFSCORRUPTED, but try to run online repair
     - f2fs: avoid format-overflow warning
     - media: lirc: drop trailing space from scancode transmit
     - media: sharp: fix sharp encoding
     - dm-verity: don't use blocking calls from tasklets
     - nfsd: fix file memleak on client_opens_release
     - mmc: sdhci-pci-gli: A workaround to allow GL9750 to enter ASPM L1.2
     - mm: fix for negative counter: nr_file_hugepages
     - mm: kmem: drop __GFP_NOFAIL when allocating objcg vectors
     - mptcp: deal with large GSO size
     - mptcp: add validity check for sending RM_ADDR
     - mptcp: fix setsockopt(IP_TOS) subflow locking
     - r8169: fix network lost after resume on DASH systems
     - r8169: add handling DASH when DASH is disabled
     - mmc: sdhci-pci-gli: GL9750: Mask the replay timer timeout of AER
     - Revert "net: r8169: Disable multicast filter for RTL8168H and RTL8107E"
     - ext4: apply umask if ACL support is disabled
     - ext4: correct offset of gdb backup in non meta_bg group to update_backups
     - ext4: mark buffer new if it is unwritten to avoid stale data exposure
     - ext4: correct return value of ext4_convert_meta_bg
     - ext4: correct the start block of counting reserved clusters
     - ext4: remove gdb backup copy for meta bg in setup_new_flex_group_blocks
     - ext4: add missed brelse in update_backups
     - ext4: properly sync file size update after O_SYNC direct IO
     - drm/amd/pm: Handle non-terminated overdrive commands.
     - [x86] drm/i915: Bump GLK CDCLK frequency when driving multiple pipes
     - [x86] drm/i915: Fix potential spectre vulnerability
     - drm/amd/pm: Fix error of MACO flag setting code
     - drm/amdgpu/smu13: drop compute workload workaround
     - drm/amdgpu: don't use pci_is_thunderbolt_attached()
     - drm/amdgpu: don't use ATRM for external devices
     - drm/amdgpu: fix error handling in amdgpu_bo_list_get()
     - drm/amdgpu: lower CS errors to debug severity
     - drm/amd/display: fix a NULL pointer dereference in amdgpu_dm_i2c_xfer()
     - drm/amd/display: Enable fast plane updates on DCN3.2 and above
     - drm/amd/display: Change the DMCUB mailbox memory location from FB to inbox
     - [powerpc*] powernv: Fix fortify source warnings in opal-prd.c
     - tracing: Have trace_event_file have ref counters
     - Input: xpad - add VID for Turtle Beach controllers
     - mmc: sdhci-pci-gli: GL9755: Mask the replay timer timeout of AER
     - cxl/port: Fix NULL pointer access in devm_cxl_add_port()
 .
   [ Salvatore Bonaccorso ]
   * [rt] Drop "seqlock: Do the lockdep annotation before locking in
     do_write_seqcount_begin_nested()" (applied upstream)
   * Bump ABI to 14
   * Refresh "net: mana: Add new MANA VF performance counters for easier
     troubleshooting"
   * [rt] Update to 6.1.59-rt16
   * Do not enable DEBUG_PREEMPT (not enabled by default since 6.1.60)
   * [x86] drivers/platform/x86/hp: Enable X86_PLATFORM_DRIVERS_HP
     (Closes: #1038799)
   * nvmet: nul-terminate the NQNs passed in the connect command (CVE-2023-6121)

llvm-toolchain-16 (1:16.0.6-15~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
   * Change build-dep from sid's llvm-spirv-16 to bookworm's llvm-spirv-14.
llvm-toolchain-16 (1:16.0.6-15~deb11u2) bullseye; urgency=medium
 .
   * Build-dep on llvm-spirv instead of llvm-spirv-16 to make sbuild happy.
llvm-toolchain-16 (1:16.0.6-15~deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bullseye.
llvm-toolchain-16 (1:16.0.6-14) unstable; urgency=medium
 .
   [ Sylvestre Ledru ]
   * On bionic & buster, for apt.llvm.org, pass -DLLVM_ENABLE_ZSTD=OFF
     as libzstd is too old
 .
   [ Gianfranco Costamagna ]
   * Add i386 and mips64el to spirv architectures.
llvm-toolchain-16 (1:16.0.6-13) unstable; urgency=medium
 .
   [ Gianfranco Costamagna ]
   * Also runtime-depend on {libzstd,zlib1g}-dev, from Paravoid (Closes:
     #1047718)
 .
   [ Sylvestre Ledru ]
   * Strip -fcf-protection for wasm build - new flag added in dpkg 1.22
llvm-toolchain-16 (1:16.0.6-12) unstable; urgency=medium
 .
   [ John Paul Adrian Glaubitz ]
   * Disable wasm support on powerpc and powerpcspe
   * Remove powerpc from BINUTILS_GOLD_ARCHS again
 .
   [ Sylvestre Ledru ]
   * Disable python3-lldb on mips64el to unnreak the build
llvm-toolchain-16 (1:16.0.6-11) unstable; urgency=medium
 .
   * debian/patches/D158066.patch:
     - upstream fix for Debian bug: #1049362
   * Also build-depend on libzstd-dev (Closes: #1047718)
   * Explicitly depend on libcurl4-openssl-dev, since nss is being removed.
     (Closes: #1043552)
llvm-toolchain-16 (1:16.0.6-10) unstable; urgency=medium
 .
   * update test to depend on libstdc++-13-dev
   * Also ignore mlir test on armel, hang
llvm-toolchain-16 (1:16.0.6-9) unstable; urgency=medium
 .
   * Really enable spirv, and disable spirv on mips* since it's not yet
     bootstrapped. Thanks <tjaalton> for the patch
llvm-toolchain-16 (1:16.0.6-8) unstable; urgency=medium
 .
   * Make sure flang-16 depends on libflang-16-dev (Closes: #1041202)
llvm-toolchain-16 (1:16.0.6-7) unstable; urgency=medium
 .
   * Use spirv-16 to build llvm. This should fix libclc-16 content
     and fix mesa build
   * Don't reduce parallel builds anymore on riscv64
llvm-toolchain-16 (1:16.0.6-6) unstable; urgency=medium
 .
   * Do the delete of wasi in libclang-rt regardless (Closes: #1041834)
llvm-toolchain-16 (1:16.0.6-5) unstable; urgency=medium
 .
   [ Samuel Thibault ]
   * Fix hurd build by fixing Linux-specific lines.
   * Fix wasi-libc build-deps on i386 !linux-i386
 .
   [ Sylvestre Ledru ]
   * set -DCMAKE_SYSTEM_NAME=Generic to build wasm to fix upstream #63799
llvm-toolchain-16 (1:16.0.6-4) unstable; urgency=medium
 .
   * lldb-16: lldb no longer depend on llvm-dev (Closes: #1039490)
   * Unbreak the libclang links (Closes: #1040205)
     And add tests to make sure we don't regress
   * Fix the libclang-16.so symbol file
   * Remove broken symlinks (closes: #857680)
llvm-toolchain-16 (1:16.0.6-3) unstable; urgency=medium
 .
   [ Sylvestre Ledru ]
   * Only pass -Bno-symbolic if it exists
 .
   [ Gianfranco Costamagna ]
   * Revert LIBCXXABI_ARM_EHABI => _LIBCXXABI_ARM_EHABI change,
     FTBFS on arm*.
llvm-toolchain-16 (1:16.0.6-2) unstable; urgency=medium
 .
   * Remove debian/NEWS to fix debian-news-entry-has-unknown-version
   * Fix libomp-16-doc: documentation-package-not-architecture-independent
   * Fix llvm-16-dev: depends-on-obsolete-package Depends: libtinfo-dev => libncurses-dev
   * Enable Xtensa experimental backend (Closes: #1033911)
   * Fix the path /usr/lib/llvm-16/lib/clang/16/ (Closes: #1036623)
   * Refresh the list of symbol of libclang1-16
   * Refresh the list of symbol for libomp.so.5
   * Add symbols files for libomptarget.rtl* and libomptarget.so
 .
   [ Gianfranco Costamagna ]
   * Try to unbreak HURD
   * Add back powerpc to gold architectures
   * Use bfd linker on p*pc*
llvm-toolchain-16 (1:16.0.6-1) unstable; urgency=medium
 .
   * New upstream release
llvm-toolchain-16 (1:16.0.5-1) unstable; urgency=medium
 .
   [ Gianfranco Costamagna ]
   * Add patch from llvm-15 (Graham Inggs) to update Ubuntu releases names
     to include Ubuntu mantic
 .
   [ Sylvestre Ledru ]
   * Upload to unstable
llvm-toolchain-16 (1:16.0.5-1~exp1) experimental; urgency=medium
 .
   * New upstream release
llvm-toolchain-16 (1:16.0.4-1~exp1) experimental; urgency=medium
 .
   * New upstream release
llvm-toolchain-16 (1:16.0.3-1~exp1) experimental; urgency=medium
 .
   * New upstream release
llvm-toolchain-16 (1:16.0.2-1~exp1) experimental; urgency=medium
 .
   * New snapshot release
llvm-toolchain-16 (1:16.0.1-1~exp2) experimental; urgency=medium
 .
   [ Sylvestre Ledru ]
   * cherry pick changes from snapshot for sccache
 .
   [ Gianfranco Costamagna ]
   * Use parallel=2 on riscv64
   * Add omptarget again to optional interfaces (Closes: #1033933)
   * Adapt test when llvm is built without Z3 support (error message changed)
llvm-toolchain-16 (1:16.0.1-1~exp1) experimental; urgency=medium
 .
   * New upstream release
llvm-toolchain-16 (1:16.0.0-1~exp5) experimental; urgency=medium
 .
   * Don't ship liborc on armel too
   * Install ASAN symbolize on riscv64
   * Limit parallel building to 3 on riscv64, should speed up extremely slow builds due to too many concurrent threads
llvm-toolchain-16 (1:16.0.0-1~exp4) UNRELEASED; urgency=medium
 .
   * Use 16 for wasm libs instead of 16.0.0
     https://github.com/llvm/llvm-project/issues/61550
llvm-toolchain-16 (1:16.0.0-1~exp3) experimental; urgency=medium
 .
   * Revert gold linker on riscv64, FTBFS
llvm-toolchain-16 (1:16.0.0-1~exp2) experimental; urgency=medium
 .
   [ Matthias Klose <doko@ubuntu.com> ]
   * Install liborc_rt-armhf.a on armhf.
   * Don't ship gdb scripts for ompd on armhf.
   * Don't run MLIR tests on armhf, timeouts on the buildds.
 .
   [ Gianfranco Costamagna ]
   * Try to use gold linker on riscv64, to see if the build goes to
     the end successfully
llvm-toolchain-16 (1:16.0.0-1~exp1) experimental; urgency=medium
 .
   * New upstream release
llvm-toolchain-16 (1:16.0.0~+rc4-1~exp1) experimental; urgency=medium
 .
   * New snapshot release
llvm-toolchain-16 (1:16.0.0~+rc3-1~exp1) experimental; urgency=medium
 .
   * New snapshot release
llvm-toolchain-16 (1:16.0.0~+rc2-1~exp1) experimental; urgency=medium
 .
   * New snapshot release
llvm-toolchain-16 (1:16.0.0~+rc1-1~exp1) experimental; urgency=medium
 .
   * First rc of 16
   * Branching of 16 (snapshot is now 17)
   * ship libHLFIRTransforms & libHLFIRDialect in libflang
   * Also install liborc_rt-x86_64.a in libclang-rt
   * Adjust some path since upstream changed the path from
     /usr/lib/llvm-16/lib/clang/16.0.0/ to
     /usr/lib/llvm-16/lib/clang/16/
   * Workaround some missing files on buster
   * Replace LLVM_CONFIG by LLVM_CMAKE_DIR
   * Bring back -DBUILTINS_CMAKE_ARGS & -DRUNTIMES_CMAKE_ARGS options
     https://github.com/llvm/llvm-project/issues/59097
   * unbreak a symlink to fix to libclang
   * Add a symlink /usr/lib/x86_64-linux-gnu/{libclang-16.so.16.0.0 => libclang-16.so.1}
     Expected by program like the firefox build system
   * ship amdgpu-arch & nvptx-arch in clang-tools
   * ship llvm-omp-kernel-replay in libomp-X.Y-dev
   * Disable flang on s390x. Seems that it is breaking
   * compiler-rt: Only build liborc on amd64, i386 & arm64
   * Don't build omptarget on i386

lxc (1:5.0.2-1+deb12u2) bookworm; urgency=medium
 .
   * Cherry-pick upstream fix for creating ephemeral copies (See #1001713)

mda-lv2 (1.2.10-1+deb12u1) bookworm; urgency=medium
 .
   * debian/gbp.conf: Work in bookworm branch
   * debian/rules: Fix LV2 plugin installation location (Closes: #1055029)

mediawiki (1:1.39.5-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 1.39.5, fixing CVE-2023-3550,
     CVE-2023-45359, CVE-2023-45360, CVE-2023-45361, CVE-2023-45362,
     CVE-2023-45363, CVE-2023-45364.
mediawiki (1:1.39.4-2) unstable; urgency=medium
 .
   * Set Breaks/Replaces for mediawiki-extensions-math (Closes: #1039075)
mediawiki (1:1.39.4-1) unstable; urgency=medium
 .
   [ Kunal Mehta ]
   * Update apache2 config for PHP 8
   * Set "X-Content-Type-Options: nosniff" header for image directories
   * Remove pre-Apache 2.3 support
 .
   [ Taavi Väänänen ]
   * New upstream version 1.39.4, fixing CVE-2023-29141, CVE-2023-36674
     and CVE-2023-36675.
     * The bundled guzzlehttp/guzzle library was updated to 2.4.5 to fix
       CVE-2023-29197.

midge (0.2.41+dfsg-1~deb12u1) bookworm; urgency=medium
 .
   * QA upload.
   * Rebuild for bookworm.
 .
 midge (0.2.41+dfsg-1) unstable; urgency=medium
 .
   * QA upload.
   * Switch to copyright-format 1.0.
   * Repack without examples/covers/*.  (Closes: #1056147)
   * Import package history into GIT.

minizip (1.1-8+deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload by the LTS Team.
   * CVE-2023-45853 (Closes: #1056719)
     Reject overflows of zip header fields in minizip.

mosquitto (2.0.11-1.2+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload.
   * Several security vulnerabilities have been discovered in mosquitto, a MQTT
     compatible message broker, which may be abused for a denial of service
     attack.
   * CVE-2021-34434:
     In Eclipse Mosquitto when using the dynamic security plugin, if the ability
     for a client to make subscriptions on a topic is revoked when a durable
     client is offline, then existing subscriptions for that client are not
     revoked.
   * CVE-2021-41039:
     An MQTT v5 client connecting with a large number of user-property
     properties could cause excessive CPU usage, leading to a loss of
     performance and possible denial of service.
   * CVE-2023-0809:
     Fix excessive memory being allocated based on malicious initial packets
     that are not CONNECT packets.
   * CVE-2023-3592:
     Fix memory leak when clients send v5 CONNECT packets with a will message
     that contains invalid property types.
   * Fix CVE-2023-28366:
     The broker in Eclipse Mosquitto has a memory leak that can be abused
     remotely when a client sends many QoS 2 messages with duplicate message
     IDs, and fails to respond to PUBREC commands. This occurs because of
     mishandling of EAGAIN from the libc send function.

mrtg (2.17.10-5+deb12u2) bookworm; urgency=medium
 .
   * Changed a debconf template to honor Debian Policy (10.7.3), not
     changing the place a conffile, discarding any user changes.
     Thanks to Andreas Beckmann <anbe@debian.org>. Consequently:
       - debian/mrtg.config: changed a comment.
       - debian/mrtg.postinst: dropped the first conditional block,
         related to moving the /etc/mrtg.cfg to /etc/mrtg/.
       - debian/mrtg.templates: updated to show a specific message to
         users.
       - debian/po/: ran debconf-updatepo to update all templates.
       - Closes: #1039103, #1041332
   * debian/po/:
       - mrtg.templates: reviewed all messages. Thanks to Justin B Rye
         <justin.byam.rye@gmail.com> for all help in debian-l10n-english
         list and to Jonathan Wiltshire <jmw@debian.org> for the suggestion
         to ask for help in that list.
       - Updated all translations. Thanks to all translators.
mrtg (2.17.10-5+deb12u1) bookworm; urgency=medium
 .
   * Added a debconf dialog to allow the user to decide if /etc/mrtg.cfg must
     be moved to /etc/mrtg/mrtg.cfg. Consequently:
       - Added a new debconf template (files debian/mrtg.config and
         debian/mrtg.templates).
       - Updated debian/mrtg.postinst.
       - Updated translations in debian/po/ (es.po, fr.po, nl.po, pt.po,
         pt_BR.po, ro.po and sv.po).
       - Added new translations to debian/po/ (gl.po and vi_VN.po).
       - Closes: #1039103

mutter (43.8-0+deb12u1) bookworm; urgency=medium
 .
   [ Simon McVittie ]
   * d/control.in, d/gbp.conf: Use debian/bookworm branch
   * Apply changes from 43.7-2 to bookworm
     (Closes: #1035092, #1049934, #1042055)
   * New upstream stable release 43.8
     - Fix the ability to drag libdecor windows by their title bar on
       touchscreens (mutter#2872)
     - Fix flickering and rendering artifacts when using software rendering,
       for example on older Intel hardware unsupported by the Gallium i915
       driver (mutter#2602)
     - Improve GNOME Shell app grid performance by avoiding repainting
       monitors other than the one it is displayed on
       (partially fixes gnome-shell#6819)
     - Upstream CI adjustments not relevant to Debian
     - All other changes were previously included in 43.7-1, 43.7-2
   * d/patches: Drop patches that were included in the upstream release
   * Split the triple-buffering patch into its individual commits.
     This should hopefully make it easier to keep track of its status.
 .
   [ Daniel van Vugt ]
   * Update triple-buffering-v4-43 patchset to 43.8-54-g95b2d2157c
     (2023-09-25)
     - d/p/triple-buffering/clutter-frame-clock-Fall-back-to-triple-buffering-not-dou.patch:
       Fall back to triple buffering, not double buffering, when the driver
       doesn't support GPU timestamps (Xorg, Raspberry Pi, others).
       This avoids lower than intended framerates, typically 30fps rather
       than 60fps. Change also included in 44.1-1.
       (LP: #2017137, #2017097)
     - d/p/triple-buffering/clutter-frame-clock-Avoid-rapidly-toggling-dynamic-max-re.patch:
       Fix increased mouse input latency after the above change.
       Change also included in 45.alpha and 44.3 upstream.
       (LP: #2023363)
     - d/p/triple-buffering/clutter-frame-clock-Record-measurements-of-zero-for-curso.patch:
       Fix mouse cursor stuttering when moving across animated UI elements,
       possibly a regression in 41.0. Change also included in 44.3-2.
       (LP: #2023766)
 .
 mutter (43.7-2) unstable; urgency=medium
 .
   * Team upload
   * d/patches: Update to upstream gnome-43 branch commit
     43.7-9-g3139cbb47c, excluding CI-only changes
     - d/p/output-kms-Use-meta_kms_connector_get_preferred_mode-in-i.patch:
       Make the choice of preferred video mode consistent between code
       paths, fixing choice of video mode on some monitors (mutter!3055)
     - d/p/cogl-gl-framebuffer-Fix-inverted-test-in-ensure_bits_init.patch:
       change was already included in 43.7-1, just update metadata
     - d/p/clutter-stage-Add-is-grabbed-property.patch,
       d/p/window-Postpone-focusing-until-grab-ended-if-uninteractab.patch:
       Give focus to new app windows when launched from the gnome-shell
       overview, fixing a regression in 43.3-5 and upstream 43.4
       (Closes: #1035092, #1049934)
     - d/p/tests-Introduce-and-use-a-custom-test-shell.patch,
       d/p/tests-test-shell-Emulate-overview-grabs.patch,
       d/p/tests-test-runner-Add-toggle_overview-command.patch,
       d/p/tests-Add-test-case-for-restoring-focus-after-overview.patch:
       Add unit test coverage for #1035092
   * d/p/tests-Reinstate-meta_test_get_plugin_name.patch:
     Reinstate a symbol in libmutter-test-11 removed by the above patches,
     in case a dependent package is using it
   * d/libmutter-test-11.symbols: Add a new symbol introduced by the test
     for #1035092
 .
 mutter (43.7-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream stable release 43.7
     - Functionally equivalent to 43.6-1
   * d/p/wayland-outputs-Fix-potential-crash-when-output-has-no-mo.patch:
     Drop patch, applied upstream
   * d/gbp.conf, d/control.in: Use debian/trixie branch
   * d/p/cogl-gl-framebuffer-Fix-inverted-test-in-ensure_bits_init.patch:
     Add patch from upstream 45.beta to fix a test failure with recent Mesa
     (Closes: #1042055, LP: #2025287)
   * d/patches: Improve tracking of upstream status
mutter (43.7-2) unstable; urgency=medium
 .
   * Team upload
   * d/patches: Update to upstream gnome-43 branch commit
     43.7-9-g3139cbb47c, excluding CI-only changes
     - d/p/output-kms-Use-meta_kms_connector_get_preferred_mode-in-i.patch:
       Make the choice of preferred video mode consistent between code
       paths, fixing choice of video mode on some monitors (mutter!3055)
     - d/p/cogl-gl-framebuffer-Fix-inverted-test-in-ensure_bits_init.patch:
       change was already included in 43.7-1, just update metadata
     - d/p/clutter-stage-Add-is-grabbed-property.patch,
       d/p/window-Postpone-focusing-until-grab-ended-if-uninteractab.patch:
       Give focus to new app windows when launched from the gnome-shell
       overview, fixing a regression in 43.3-5 and upstream 43.4
       (Closes: #1035092, #1049934)
     - d/p/tests-Introduce-and-use-a-custom-test-shell.patch,
       d/p/tests-test-shell-Emulate-overview-grabs.patch,
       d/p/tests-test-runner-Add-toggle_overview-command.patch,
       d/p/tests-Add-test-case-for-restoring-focus-after-overview.patch:
       Add unit test coverage for #1035092
   * d/p/tests-Reinstate-meta_test_get_plugin_name.patch:
     Reinstate a symbol in libmutter-test-11 removed by the above patches,
     in case a dependent package is using it
   * d/libmutter-test-11.symbols: Add a new symbol introduced by the test
     for #1035092
mutter (43.7-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream stable release 43.7
     - Functionally equivalent to 43.6-1
   * d/p/wayland-outputs-Fix-potential-crash-when-output-has-no-mo.patch:
     Drop patch, applied upstream
   * d/gbp.conf, d/control.in: Use debian/trixie branch
   * d/p/cogl-gl-framebuffer-Fix-inverted-test-in-ensure_bits_init.patch:
     Add patch from upstream 45.beta to fix a test failure with recent Mesa
     (Closes: #1042055, LP: #2025287)
   * d/patches: Improve tracking of upstream status
mutter (43.6-1) unstable; urgency=medium
 .
   * New upstream stable release 43.5
     - Always update surfaces belonging to a window that is being recorded
       or included in a screencast, even if the window is not visible
       on a local display (mutter#2538, mutter!2789)
     - Export previously-private meta_window_has_pointer(), needed by
       screenshot UI fixes in gnome-shell 43.5 (mutter!2928)
       + d/libmutter-11-0.symbols: Update to add that symbol
     - All other changes were already present in 43.4-2
   * New upstream stable release 43.6
     - Fix a resource leak when a compositor view is destroyed (mutter!2991)
     - Fix a crash when headless gdm greeter via gnome-remote-desktop
       attempts to blank the screen (mutter#2841)
   * d/patches: Drop patches that were applied upstream
   * d/p/wayland-outputs-Fix-potential-crash-when-output-has-no-mo.patch:
     Backport patch from 44~beta to fix a crash during suspend/resume on
     some systems (mutter#2570, Closes: #1036268)

nagios-plugins-contrib (42.20230308+deb12u1) bookworm; urgency=medium
 .
   [ Manfred Stock ]
   * [f5a0186] Extend fix for on-disk version detection on Bookworm
     (Closes: #1033791)

netty (1:4.1.48-7+deb12u1) bookworm-security; urgency=high
 .
   * Team upload.
     Fix CVE-2023-34462: (Closes: #1038947)
     Guard against high memory usage when parsing ClientHello messages.
   * Fix CVE-2023-44487: (Closes: #1054234)
     The HTTP/2 protocol allows a denial of service (server resource
     consumption) because request cancellation can reset many streams quickly.

network-manager-openconnect (1.2.8-3+deb12u1) bookworm; urgency=medium
 .
   [ Salvatore Bonaccorso ]
   * Add User Agent to Openconnect VPN for NetworkManager (Closes:
     #1053467)
   * Use openconnect_set_useragent() where available
   * Add support for GTK4 in user-agent calls
   * Add Build-Depends on libgtk-4-bin for gtk4-builder-tool

nghttp2 (1.52.0-1+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2023-44487 (Closes: #1053769)

node-babel7 (7.20.15+ds1+~cs214.269.168-3+deb12u1) bookworm-security; urgency=medium
 .
   * Team upload
   * Only evaluate own String/Number/Math methods
     (Closes: #1053880, CVE-2023-45133)

node-browserify-sign (4.2.1-3+deb12u1) bookworm-security; urgency=high
 .
   * Team upload
   * Properly check the upper bound for DSA signatures (Closes: #1054667, CVE-2023-46234)

node-undici (5.15.0+dfsg1+~cs20.10.9.3-1+deb12u2) bookworm; urgency=medium
 .
   * Delete cookie and host headers on cross-origin redirect
     (Closes: #1053879, CVE-2023-45143)

nvidia-graphics-drivers (525.147.05-4~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.147.05-4) unstable; urgency=medium
 .
   * Build libnvidia-fbc1 for arm64, too.  (Closes: #1057078)
   * bug-control: Report information about more driver components.
   * Do not yet recommend nvidia-suspend-common.
 .
 nvidia-graphics-drivers (525.147.05-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.147.05 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which could cause some DisplayPort monitors to flicker.
     - Fixed a bug that could cause monitors to flicker when the performance
       state changes on Turing GPUs.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (525.125.06-3) unstable; urgency=medium
 .
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
   * Switch suggestion from obsolete vulkan-utils to vulkan-tools.
     (Closes: #1055503)
 .
 nvidia-graphics-drivers (525.125.06-2) unstable; urgency=medium
 .
   * Backport get_user_pages and pin_user_pages changes from
     535.86.05 to fix kernel module build for Linux 6.5.
nvidia-graphics-drivers (525.147.05-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.147.05 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which could cause some DisplayPort monitors to flicker.
     - Fixed a bug that could cause monitors to flicker when the performance
       state changes on Turing GPUs.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
nvidia-graphics-drivers (525.125.06-3) unstable; urgency=medium
 .
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
   * Switch suggestion from obsolete vulkan-utils to vulkan-tools.
     (Closes: #1055503)
nvidia-graphics-drivers (525.125.06-2) unstable; urgency=medium
 .
   * Backport get_user_pages changes from 535.86.05 to fix kernel module build
     for Linux 6.5.
nvidia-graphics-drivers (525.125.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.125.06 (2023-05-09).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039678)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     - Fixed a bug which prevented running a Wayland compositor in headless
       mode on GPUs without display hardware.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.

nvidia-graphics-drivers-tesla (525.147.05-4~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
   * Do not yet build nvidia-suspend-common for bookworm.
 .
 nvidia-graphics-drivers-tesla (525.147.05-4) unstable; urgency=medium
 .
   * Rebuild as Tesla driver.
 .
 nvidia-graphics-drivers (525.147.05-4~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.147.05-4) unstable; urgency=medium
 .
   * Build libnvidia-fbc1 for arm64, too.  (Closes: #1057078)
   * bug-control: Report information about more driver components.
   * Do not yet recommend nvidia-suspend-common.
 .
 nvidia-graphics-drivers-tesla (525.147.05-3) unstable; urgency=medium
 .
   * nvidia-suspend-common: Do not start services on installation/upgrade.
     (Closes: #1056384)
 .
 nvidia-graphics-drivers-tesla (525.147.05-2) unstable; urgency=medium
 .
   * nvidia-suspend-common: Do not stop/restart services on upgrade.
 .
 nvidia-graphics-drivers-tesla (525.147.05-1) unstable; urgency=medium
 .
   * New upstream Tesla release 525.147.05 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055143)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which could cause some DisplayPort monitors to flicker.
     - Fixed a bug that could cause monitors to flicker when the performance
       state changes on Turing GPUs.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (525.147.05-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.147.05 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which could cause some DisplayPort monitors to flicker.
     - Fixed a bug that could cause monitors to flicker when the performance
       state changes on Turing GPUs.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers-tesla (525.125.06-3) unstable; urgency=medium
 .
   * nvidia-suspend-common: New package for the systemd power management
     integration scripts.  (Closes: #1038006)
 .
 nvidia-graphics-drivers (525.125.06-3) unstable; urgency=medium
 .
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
   * Switch suggestion from obsolete vulkan-utils to vulkan-tools.
     (Closes: #1055503)
 .
 nvidia-graphics-drivers-tesla (525.125.06-2) unstable; urgency=medium
 .
   * Rebuild as Tesla driver.
 .
 nvidia-graphics-drivers (525.125.06-2) unstable; urgency=medium
 .
   * Backport get_user_pages and pin_user_pages changes from
     535.86.05 to fix kernel module build for Linux 6.5.
nvidia-graphics-drivers-tesla (525.147.05-3) unstable; urgency=medium
 .
   * nvidia-suspend-common: Do not start services on installation/upgrade.
     (Closes: #1056384)
nvidia-graphics-drivers-tesla (525.147.05-2) unstable; urgency=medium
 .
   * nvidia-suspend-common: Do not stop/restart services on upgrade.
     (Closes: #1056384)
nvidia-graphics-drivers-tesla (525.147.05-1) unstable; urgency=medium
 .
   * New upstream Tesla release 525.147.05 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055143)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which could cause some DisplayPort monitors to flicker.
     - Fixed a bug that could cause monitors to flicker when the performance
       state changes on Turing GPUs.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
nvidia-graphics-drivers-tesla (525.125.06-3) unstable; urgency=medium
 .
   * nvidia-suspend-common: New package for the systemd power management
     integration scripts.  (Closes: #1038006)
 .
 nvidia-graphics-drivers (525.125.06-3) unstable; urgency=medium
 .
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
   * Switch suggestion from obsolete vulkan-utils to vulkan-tools.
     (Closes: #1055503)
nvidia-graphics-drivers-tesla (525.125.06-2) unstable; urgency=medium
 .
   * Rebuild as Tesla driver.
nvidia-graphics-drivers-tesla (525.125.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.125.06 (2023-05-09).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039685)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     - Fixed a bug which prevented running a Wayland compositor in headless
       mode on GPUs without display hardware.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.

nvidia-graphics-drivers-tesla-470 (470.223.02-2~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-2) unstable; urgency=medium
 .
   * Build libnvidia-tesla-470-fbc1 for arm64, too.  (Closes: #1057078)
   * bug-control: Report information about more driver components.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-1) unstable; urgency=medium
 .
   * New upstream Tesla release 470.223.02 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055142)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which caused incorrect reporting of presentation
       times when using the VK_NV_present_barrier Vulkan extension.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.223.02-1) bullseye; urgency=medium
 .
   * New upstream long term support branch release 470.223.02 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which caused incorrect reporting of presentation
       times when using the VK_NV_present_barrier Vulkan extension.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Upload to bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.199.02-4) unstable; urgency=medium
 .
   * Refuse to load module if IBT is enabled.  (Closes: #1052069)
   * Switch suggestion from obsolete vulkan-utils to vulkan-tools
     (525.125.06-3).  (Closes: #1055503)
 .
 nvidia-graphics-drivers-tesla-470 (470.199.02-3) unstable; urgency=medium
 .
   * Revert backport of pin_user_pages changes.
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
 .
 nvidia-graphics-drivers-tesla-470 (470.199.02-2) unstable; urgency=medium
 .
   * Backport get_user_pages and pin_user_pages changes from 520.56.06,
     525.53 and 535.86.05 to fix kernel module build for Linux 6.5.
 .
 nvidia-graphics-drivers-tesla-470 (470.199.02-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
nvidia-graphics-drivers-tesla-470 (470.223.02-2~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-2~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-2) unstable; urgency=medium
 .
   * Build libnvidia-tesla-470-fbc1 for arm64, too.  (Closes: #1057078)
   * bug-control: Report information about more driver components.
 .
 nvidia-graphics-drivers-tesla-470 (470.223.02-1) unstable; urgency=medium
 .
   * New upstream Tesla release 470.223.02 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055142)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which caused incorrect reporting of presentation
       times when using the VK_NV_present_barrier Vulkan extension.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.223.02-1) bullseye; urgency=medium
 .
   * New upstream long term support branch release 470.223.02 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which caused incorrect reporting of presentation
       times when using the VK_NV_present_barrier Vulkan extension.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Upload to bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.199.02-4) unstable; urgency=medium
 .
   * Refuse to load module if IBT is enabled.  (Closes: #1052069)
   * Switch suggestion from obsolete vulkan-utils to vulkan-tools
     (525.125.06-3).  (Closes: #1055503)
 .
 nvidia-graphics-drivers-tesla-470 (470.199.02-3) unstable; urgency=medium
 .
   * Revert backport of pin_user_pages changes.
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
 .
 nvidia-graphics-drivers-tesla-470 (470.199.02-2) unstable; urgency=medium
 .
   * Backport get_user_pages and pin_user_pages changes from 520.56.06,
     525.53 and 535.86.05 to fix kernel module build for Linux 6.5.
nvidia-graphics-drivers-tesla-470 (470.223.02-1) unstable; urgency=medium
 .
   * New upstream long term support branch release 470.223.02 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055142)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which caused incorrect reporting of presentation
       times when using the VK_NV_present_barrier Vulkan extension.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
nvidia-graphics-drivers-tesla-470 (470.199.02-4) unstable; urgency=medium
 .
   * Refuse to load module if IBT is enabled.  (Closes: #1052069)
   * Switch suggestion from obsolete vulkan-utils to vulkan-tools
     (525.125.06-3).  (Closes: #1055503)
nvidia-graphics-drivers-tesla-470 (470.199.02-3) unstable; urgency=medium
 .
   * Revert backport of pin_user_pages changes.  (Closes: #1052069)
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
nvidia-graphics-drivers-tesla-470 (470.199.02-2) unstable; urgency=medium
 .
   * Backport get_user_pages changes from 520.56.06, 525.53 and 535.86.05 to
     fix kernel module build for Linux 6.5.
nvidia-graphics-drivers-tesla-470 (470.199.02-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.199.02 (2023-06-26).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039684)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.

nvidia-open-gpu-kernel-modules (525.147.05-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-open-gpu-kernel-modules (525.147.05-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.147.05 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
   * Refresh patches.
   * Fix FTBFS with quilt 0.67.
 .
 nvidia-open-gpu-kernel-modules (525.125.06-2) unstable; urgency=medium
 .
   * Backport get_user_pages changes from 535.86.05 to fix kernel module build
     for Linux 6.5.
nvidia-open-gpu-kernel-modules (525.125.06-2) unstable; urgency=medium
 .
   * Backport get_user_pages changes from 535.86.05 to fix kernel module build
     for Linux 6.5.
nvidia-open-gpu-kernel-modules (525.125.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.125.06 (2023-06-26).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039686)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468

open-vm-tools (2:12.2.0-1+deb12u2) bookworm-security; urgency=medium
 .
   * Closes:  #1054666
   * [81326c8] Fixing CVE-2023-34059.
     This fixes a file descriptor hijack vulnerability in the vmware-user-suid-wrapper
     command.  A malicious actor with non-root privileges might have been able to hijack the
     /dev/uinput file descriptor allowing them to simulate user inputs.
   * [95acc49] Fixing CVE-2023-34058.
     This fixes a SAML Token Signature Bypass vulnerability. A malicious actor
     that has been granted Guest Operation Privileges in a target virtual
     machine might have been able to elevate their privileges if that target
     virtual machine has been assigned a more privileged Guest Alias.
open-vm-tools (2:12.2.0-1+deb12u2~bpo11+1) bullseye-backports; urgency=high
 .
   * Rebuild for bullseye-backports.
   * debian/{gbp.conf,.gitlab-ci.yaml}: configure for bullseye-backports.
open-vm-tools (2:12.2.0-1+deb12u2~bpo10+1) buster-backports-sloppy; urgency=medium
 .
   * Rebuild for buster-backports.
   * [d01f552] Updating gbp.conf for buster-backports.
   * [5adfc551] No -Wno-error=address-of-packed-member in CFLAGS
   * [8d38a239] Revert "build-depend on libgdk-pixbuf-xlib-2.0-dev"
   * [1957baa1] Revert "d/rules, d/control: switch to use fuse3"
   * Don't build containerinfo package - build-deps missing

opendkim (2.11.0~beta2-8+deb12u1) bookworm; urgency=medium
 .
   * Non-Maintainer upload by the security team.
 .
   [ David Bürgin ]
   * Add patch "rev-ares-deletion.patch" for CVE-2022-48521:
     Delete Authentication-Results headers in reverse (Closes: #1041107).

openjdk-17 (17.0.9+9-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm
openjdk-17 (17.0.9+9-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye
openjdk-17 (17.0.9~6ea-1) unstable; urgency=medium
 .
   * OpenJDK 17.0.9 early access, build 6.
 .
   [ Matthias Klose ]
   * Build-depend on the unversioned libfreetype-dev.
   * Backport the openjdk-17 zero support for loong64 (Xuefeng Pan).
     Closes: #1051906.
   * Build using GCC 13 on development versions.
 .
   [ Vladimir Petko ]
   * Fix jquery-min.js symlink. Closes: #998763.
openjdk-17 (17.0.9~4ea-1) unstable; urgency=medium
 .
   * OpenJDK 17.0.9 early access, build 4.
 .
   [ Vladimir Petko ]
   * d/t/jtreg-autopkgtest.{sh,in}: JDK-8232153 - set NSS_DEFAULT_DB_TYPE
     to let sun/security/pkcs11/Secmod/AddTrustedCert.java pass.
   * d/p/exclude-broken-tests.patch: quarantine pkcs11 tests failing with NSS 3.91.
   * d/t/problems-armhf.txt: quarantine armhf failing tests:
     - java/net/httpclient/ManyRequestsLegacy.java: SSL request timeout.
     - java/util/Random/RandomTestBsi1999.java: deadlock in CI.
   * d/copyright: Remove liblcms from excluded files.
   * d/rules: Enable jtreg tests for bionic and focal.
   * d/p/build_gtest.patch: Update patch to work with earlier versions
     of google-test.
 .
   [ Matthias Klose ]
   * Explicitly configure --without-jtreg with the nocheck profile
openjdk-17 (17.0.8+7-1) unstable; urgency=high
 .
   * OpenJDK 17.0.8 release, build 7.
     - CVE-2023-22006, CVE-2023-22036, CVE-2023-22041, CVE-2023-22044,
       CVE-2023-22045, CVE-2023-22049, CVE-2023-25193.
     - Release notes:
       https://www.oracle.com/java/technologies/javase/17-0-8-relnotes.html#R17_0_8
 .
   * Don't run the tests on powerpc, hangs on the buildd.
   * Refresh patches.

openrefine (3.6.2-2+deb12u2) bookworm; urgency=medium
 .
   * Fix CVE-2023-41887 and CVE-2023-41886:
     OpenRefine is a powerful free, open source tool for working with messy
     data. Prior to this version, a remote code execution vulnerability allows
     any unauthenticated user to execute code on the server.

opensc (0.23.0-0.3+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Fix CVE-2023-4535 with two upstream patches (Closes: #1055520)
   * Fix CVE-2023-40660 with upstream patch (Closes: #1055521)
   * Fix CVE-2023-40661 with upstream patches (Closes: #1055522)

openssl (3.0.11-1~deb12u2) bookworm-security; urgency=medium
 .
   * CVE-2023-5363 (Incorrect cipher key and IV length processing).

openvpn (2.6.3-1+deb12u2) bookworm-security; urgency=medium
 .
   * Cherry-Pick upstream fixes for two CVEs
     - CVE-2023-46849: Use of --fragment option can lead to a division by zero
       error which can be fatal
     - CVE-2023-46850: Incorrect use of send buffer can cause memory to be sent
       to peer
openvpn (2.6.3-1+deb12u2~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.

oscrypto (1.3.0-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   [ Jochen Sprickerhof ]
   * Fix autopkgtest by switching to autopkgtest-pkg-pybuild. Closes: #1033822.
   [ Bastian Germann ]
   * Fix OpenSSL version parsing, take 1.
   [ Arnaud Rebillout ]
   * Fix OpenSSL version parsing, take 2. Closes: #1055598.

pcs (0.11.5-1+deb12u1) bookworm; urgency=medium
 .
   * d/patches: add fix for resource move (Closes: #1042893)

perl (5.36.0-7+deb12u1) bookworm; urgency=medium
 .
   * [SECURITY] CVE-2023-47038: Write past buffer end via illegal
     user-defined Unicode property. (Closes: #1056746)

php-phpseclib3 (3.0.19-1+deb12u1) bookworm; urgency=medium
 .
   * Track bookworm
   * Math/BinaryField: fix for excessively large degrees [CVE-2023-49316]
     (Closes: #1057008)

pmix (4.2.2-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Do not follow links when doing "chown" (CVE-2023-41915) (Closes: #1051729)

postgresql-15 (15.5-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version.
 .
     * Fix handling of unknown-type arguments in DISTINCT "any" aggregate
       functions (Tom Lane)
 .
       This error led to a text-type value being interpreted as an unknown-type
       value (that is, a zero-terminated string) at runtime.  This could result
       in disclosure of server memory following the text value.
 .
       The PostgreSQL Project thanks Jingzhou Fu for reporting this problem.
       (CVE-2023-5868)
 .
     * Detect integer overflow while computing new array dimensions
       (Tom Lane)
 .
       When assigning new elements to array subscripts that are outside the
       current array bounds, an undetected integer overflow could occur in edge
       cases.  Memory stomps that are potentially exploitable for arbitrary
       code execution are possible, and so is disclosure of server memory.
 .
       The PostgreSQL Project thanks Pedro Gallegos for reporting this problem.
       (CVE-2023-5869)
 .
     * Prevent the pg_signal_backend role from signalling background workers
       and autovacuum processes (Noah Misch, Jelte Fennema-Nio)
 .
       The documentation says that pg_signal_backend
       cannot issue signals to superuser-owned processes.  It was able to
       signal these background processes, though, because they advertise a
       role OID of zero.  Treat that as indicating superuser ownership.
       The security implications of cancelling one of these process types
       are fairly small so far as the core code goes (we'll just start
       another one), but extensions might add background workers that are
       more vulnerable.
 .
       Also ensure that the is_superuser parameter is set correctly in such
       processes.  No specific security consequences are known for that
       oversight, but it might be significant for some extensions.
 .
       The PostgreSQL Project thanks Hemanth Sandrana and Mahendrakar
       Srinivasarao for reporting this problem. (CVE-2023-5870)
 .
     * Fix misbehavior during recursive page split in GiST index build
       (Heikki Linnakangas)
 .
       Fix a case where the location of a page downlink was incorrectly
       tracked, and introduce some logic to allow recovering from such
       situations rather than silently doing the wrong thing.  This error could
       result in incorrect answers from subsequent index searches. It may be
       advisable to reindex all GiST indexes after installing this update.
 .
     * Prevent de-duplication of btree index entries for interval columns
 .
       There are interval values that are distinguishable but compare equal,
       for example 24:00:00 and 1 day.  This breaks assumptions made by btree
       de-duplication, so interval columns need to be excluded from
       de-duplication.  This oversight can cause incorrect results from
       index-only scans.  Moreover, after updating amcheck will report an error
       for almost all such indexes.  Users should reindex any btree indexes on
       interval columns.
 .
   * Rebase debian/patches/libpgport-pkglibdir.
postgresql-15 (15.4-3) unstable; urgency=medium
 .
   * Stop building lib packages, postgresql-16 is in unstable.
   * Use LLVM 15 for JIT support, 16 is not supported yet. (Closes: #1051881)
postgresql-15 (15.4-2) unstable; urgency=medium
 .
   * Disable jit on loong64; PG does not support LLVM 16 yet while LLVM
     versions before 16 do not support loong64. (Closes: #1051385)
   * Introduce build profile pkg.postgresql.nolibpkgs.
postgresql-15 (15.4-1) unstable; urgency=medium
 .
   * New upstream version.
 .
     + Disallow substituting a schema or owner name into an extension script if
       the name contains a quote, backslash, or dollar sign (Noah Misch)
 .
       This restriction guards against SQL-injection hazards for trusted
       extensions.
 .
       The PostgreSQL Project thanks Micah Gate, Valerie Woolard, Tim
       Carey-Smith, and Christoph Berg for reporting this problem.
       (CVE-2023-39417)
 .
     + Fix MERGE to enforce row security policies properly (Dean Rasheed)
 .
       When MERGE performs an UPDATE action, it should enforce any UPDATE or
       SELECT RLS policies defined on the target table, to be consistent with
       the way that a plain UPDATE with a WHERE clause works.  Instead it was
       enforcing INSERT RLS policies for both INSERT and UPDATE actions.
 .
       In addition, when MERGE performs a DO NOTHING action, it applied the
       target table's DELETE RLS policies to existing rows, even though those
       rows are not being deleted.  While it's not a security problem, this
       could result in unwanted errors.
 .
       The PostgreSQL Project thanks Dean Rasheed for reporting this problem.
       (CVE-2023-39418)
 .
   * Test-Depend on tzdata-legacy | tzdata (<< 2023c-8).
postgresql-15 (15.4-0+deb12u1) bookworm; urgency=medium
 .
   * New upstream version.
 .
     + Disallow substituting a schema or owner name into an extension script if
       the name contains a quote, backslash, or dollar sign (Noah Misch)
       This restriction guards against SQL-injection hazards for trusted
       extensions.
       The PostgreSQL Project thanks Micah Gate, Valerie Woolard, Tim
       Carey-Smith, and Christoph Berg for reporting this problem.
       (CVE-2023-39417)
 .
     + Fix MERGE to enforce row security policies properly (Dean Rasheed)
       When MERGE performs an UPDATE action, it should enforce any UPDATE or
       SELECT RLS policies defined on the target table, to be consistent with
       the way that a plain UPDATE with a WHERE clause works.  Instead it was
       enforcing INSERT RLS policies for both INSERT and UPDATE actions.
       In addition, when MERGE performs a DO NOTHING action, it applied the
       target table's DELETE RLS policies to existing rows, even though those
       rows are not being deleted.  While it's not a security problem, this
       could result in unwanted errors.
       The PostgreSQL Project thanks Dean Rasheed for reporting this problem.
       (CVE-2023-39418)
postgresql-15 (15.3-1) experimental; urgency=medium
 .
   * New upstream version.
 .
     + Prevent CREATE SCHEMA from defeating changes in search_path
       (Report and fix by Alexander Lakhin, CVE-2023-2454)
 .
       Within a CREATE SCHEMA command, objects in the prevailing search_path,
       as well as those in the newly-created schema, would be visible even
       within a called function or script that attempted to set a secure
       search_path.  This could allow any user having permission to create a
       schema to hijack the privileges of a security definer function or
       extension script.
 .
     + Enforce row-level security policies correctly after inlining a
       set-returning function (Report by Wolfgang Walther, CVE-2023-2455)
 .
       If a set-returning SQL-language function refers to a table having
       row-level security policies, and it can be inlined into a calling query,
       those RLS policies would not get enforced properly in some cases
       involving re-using a cached plan under a different role. This could
       allow a user to see or modify rows that should have been invisible.
 .
   * Reenable JIT on s390x using workaround patch from SUSE.

proftpd-dfsg (1.3.8+dfsg-4+deb12u2) bookworm; urgency=medium
 .
   * Add patch from upstream to address issue 1694 (Closes: #1051236).

python-cogent (2023.2.12a1+dfsg-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Drop old patch fix-build-on-single-cpu-systems.patch, as it was
     disabling the affected tests for everybody.
   * Add new patch skip-parallel-tests-on-single-cpu-systems.patch,
     where the tests are only skipped when the system has a single CPU.
     Closes: #1030885.

python3-onelogin-saml2 (1.12.0-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Fix expired test payloads. Closes: #1036255.

pyzoltan (1.0.1-5+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * debian/rules: Set NPROC to 1 so that the package may be
     built on systems with a single core. Closes: #1055625.

qbittorrent (4.5.2-3+deb12u1) bookworm; urgency=medium
 .
   * Disable UPnP for web UI by default in qbittorrent-nox (Closes: #1056379)

qemu (1:7.2+dfsg-7+deb12u3) bookworm; urgency=medium
 .
   * +hw-ide-ahci-fix-legacy-software-reset.patch - fix legacy ide regression
     introduced in 7.2.6
   * update to upstream 7.2.7 stable/bugfix release, v7.2.7.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.7 :
    - Update version for 7.2.7 release
    - target/tricore: Rename tricore_feature
    - tracetool: avoid invalid escape in Python string
    - tests/tcg/s390x: Test LAALG with negative cc_src
    - target/s390x: Fix LAALG not updating cc_src
    - tests/qtest: ahci-test: add test exposing reset issue with pending callback
    - hw/ide: reset: cancel async DMA operation before resetting state
    - target/mips: Fix TX79 LQ/SQ opcodes
    - target/mips: Fix MSA BZ/BNZ opcodes displacement
    - ui/gtk-egl: apply scale factor when calculating window's dimension
    - ui/gtk: force realization of drawing area
    - ati-vga: Implement fallback for pixman routines
    - block/nvme: nvme_process_completion() fix bound for cid
    - target/arm: Correctly propagate stage 1 BTI guarded bit in a two-stage walk
    - target/arm: Fix handling of SW and NSW bits for stage 2 walks
    - target/arm: Don't allow stage 2 page table walks to downgrade to NS
    - target/arm: Don't access TCG code when debugging with KVM
    - Revert "linux-user: fix compat with glibc >= 2.36 sys/mount.h"
    - Revert "linux-user: add more compat ioctl definitions"
    - qemu-iotests: 024: add rebasing test case for overlay_size > backing_size
    - qemu-img: rebase: stop when reaching EOF of old backing file
    - tests/tcg: Add -fno-stack-protector
    - tests/migration: Add -fno-stack-protector
    - misc/led: LED state is set opposite of what is expected
    - hw/sd/sdhci: Block Size Register bits [14:12] is lost
    - lasips2: LASI PS/2 devices are not user-createable
    - linux-user/sh4: Fix crashes on signal delivery
    - linux-user/mips: fix abort on integer overflow
    - migration: Fix analyze-migration read operation signedness
    - hw/pvrdma: Protect against buggy or malicious guest driver
    - disas/riscv: Fix the typo of inverted order of pmpaddr13 and pmpaddr14
    - hw/audio/es1370: reset current sample counter
    - migration/qmp: Fix crash on setting tls-authz with null
    - amd_iommu: Fix APIC address check
    - linux-user/hppa: Fix struct target_sigcontext layout
    - chardev/char-pty: Avoid losing bytes when the other side just
      (re-)connected
    - hw/display/ramfb: plug slight guest-triggerable leak on mode setting
    - target/i386: fix memory operand size for CVTPS2PD
    - target/i386: generalize operand size "ph" for use in CVTPS2PD
    - target/i386: Fix exception classes for MOVNTPS/MOVNTPD.
    - target/i386: Fix exception classes for SSE/AVX instructions.
    - target/i386: Fix and add some comments next to SSE/AVX instructions.
    - tests/tcg/i386: correct mask for VPERM2F128/VPERM2I128
    - target/i386: fix operand size of unary SSE operations
    - scsi-disk: ensure that FORMAT UNIT commands are terminated
    - esp: restrict non-DMA transfer length to that of available data
    - esp: use correct type for esp_dma_enable() in sysbus_esp_gpio_demux()
    - optionrom: Remove build-id section
    - ui/vnc: fix handling of VNC_FEATURE_XVP
    - ui/vnc: fix debug output for invalid audio message
    - hw/scsi/scsi-disk: Disallow block sizes smaller than 512 [CVE-2023-42467]
    - accel/tcg: mttcg remove false-negative halted assertion
    - target/arm: Don't skip MTE checks for LDRT/STRT at EL0
    - hw/cxl: Fix CFMW config memory leak
    - linux-user/hppa: lock both words of function descriptor
    - linux-user/hppa: clear the PSW 'N' bit when delivering signals
    - hw/ppc: Always store the decrementer value
    - target/ppc: Decrementer fix BookE semantics
    - target/ppc: Sign-extend large decrementer to 64-bits
    - hw/ppc: Avoid decrementer rounding errors
    - hw/ppc: Round up the decrementer interval when converting to ns
    - host-utils: Add muldiv64_round_up
    - hw/ppc: Introduce functions for conversion between timebase and nanoseconds
 .
   * update to upstream 7.2.6 stable/bugfix release, v7.2.6.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.6 :
    - Update version for 7.2.6 release
    - tpm: fix crash when FD >= 1024 and unnecessary errors due to EINTR
    - s390x/ap: fix missing subsystem reset registration
    - ui: fix crash when there are no active_console
    - hw/tpm: TIS on sysbus: Remove unsupport ppi command line option
    - target/riscv/pmp.c: respect mseccfg.RLB for pmpaddrX changes
    - hw/riscv: virt: Fix riscv,pmu DT node path
    - linux-user/riscv: Use abi type for target_ucontext
    - hw/intc: Make rtc variable names consistent
    - hw/intc: Fix upper/lower mtime write calculation
    - hw/char/riscv_htif: Fix printing of console characters on big endian hosts
    - arm64: Restore trapless ptimer access
    - virtio: Drop out of coroutine context in virtio_load()
    - qxl: don't assert() if device isn't yet initialized
    - hw/net/vmxnet3: Fix guest-triggerable assert()
    - docs tests: Fix use of migrate_set_parameter
    - qemu-options.hx: Rephrase the descriptions of the -hd* and -cdrom options
    - hw/i2c/aspeed: Fix TXBUF transmission start position error
    - hw/i2c/aspeed: Fix Tx count and Rx size error in buffer pool mode
    - hw/ide/ahci: fix broken SError handling
    - hw/ide/ahci: fix ahci_write_fis_sdb()
    - hw/ide/ahci: PxCI should not get cleared when ERR_STAT is set
    - hw/ide/ahci: PxSACT and PxCI is cleared when PxCMD.ST is cleared
    - hw/ide/ahci: simplify and document PxCI handling
    - hw/ide/ahci: write D2H FIS when processing NCQ command
    - hw/ide/core: set ERR_STAT in unsupported command completion
    - target/ppc: Flush inputs to zero with NJ in ppc_store_vscr
    - ppc/vof: Fix missed fields in VOF cleanup
    - hw/ppc/e500: fix broken snapshot replay
    - block-migration: Ensure we don't crash during migration cleanup
    - docs/about/license: Update LICENSE URL
    - target/arm: Fix 64-bit SSRA
    - target/arm: Fix SME ST1Q
    - accel/kvm: Specify default IPA size for arm64
    - kvm: Introduce kvm_arch_get_default_type hook
    - include/hw/virtio/virtio-gpu: Fix virtio-gpu with blob on big endian hosts
    - target/s390x: Check reserved bits of VFMIN/VFMAX's M5
    - target/s390x: Fix VSTL with a large length
    - target/s390x: Use a 16-bit immediate in VREP
    - target/s390x: Fix the "ignored match" case in VSTRS
    - Fixed incorrect LLONG alignment for openrisc and cris
    - include/exec/user: Set ABI_LLONG_ALIGNMENT to 4 for nios2
    - include/exec/user: Set ABI_LLONG_ALIGNMENT to 4 for microblaze
    - linux-user/elfload: Set V in ELF_HWCAP for RISC-V
    - hw/nvme: fix CRC64 for guard tag
    - dump: kdump-zlib data pages not dumped with pvtime/aarch64
    - hw/smbios: Fix core count in type4
    - hw/smbios: Fix thread count in type4
    - hw/smbios: Fix smbios_smp_sockets caculation
    - machine: Add helpers to get cores/threads per socket
    - pnv_lpc: disable reentrancy detection for lpc-hc
    - loongarch: mark loongarch_ipi_iocsr re-entrnacy safe
    - apic: disable reentrancy detection for apic-msi
    - raven: disable reentrancy detection for iomem
    - bcm2835_property: disable reentrancy detection for iomem
    - lsi53c895a: disable reentrancy detection for MMIO region, too
    - lsi53c895a: disable reentrancy detection for script RAM
    - hw: replace most qemu_bh_new calls with qemu_bh_new_guarded
    - checkpatch: add qemu_bh_new/aio_bh_new checks
    - async: avoid use-after-free on re-entrancy guard
    - async: Add an optional reentrancy guard to the BH API
    - memory: prevent dma-reentracy issues
    - python: drop pipenv
    - gitlab-ci: check-dco.py: switch from master to stable-7.2 branch

qpdf (11.3.0-1+deb12u1) bookworm; urgency=medium
 .
   * Fix data loss bug introduced in 11.0.0 and fixed in 11.6.3. The bug
     causes the qpdf tokenizer to discard the character after a one-digit
     or two-digit quoted octal string. Most writers don't create these, and
     they are rare outside of content streams. By default, qpdf doesn't
     parse content streams. The most common place for this to occur would
     be in a document's /ID string, but in the worst case, this bug could
     cause silent damage to some strings in a PDF file's metadata, such as
     bookmark names or form field values. (Closes: #1054158)

rabbitmq-server (3.10.8-1.1+deb12u1) bookworm-security; urgency=high
 .
   * CVE-2023-46118: Denial of Service by publishing large messages over the
     HTTP API. Applied upstream patches that introduce a limit of 10MB:
     - Reduce_default_HTTP_API_request_body_size_limit_to_10_MiB.patch
     - Introduce_HTTP_request_body_limit_for_definition_uploads.patch
     (Closes: #1056723).

redis (5:7.0.11-1+deb12u1) bookworm; urgency=medium
 .
   * Drop ProcSubset=pid hardening flag from the systemd unit files it causes
     difficult-to-reproduce crashes with memory allocation errors. A big thanks
     to Arnaud Rebillout <arnaudr@kali.org> for the extensive investigation.
     (Closes: #1055039)
   * Update debian/gbp.conf for the debian/bookworm branch.

request-tracker4 (4.4.6+dfsg-1.1+deb12u1) bookworm-security; urgency=medium
 .
   * Apply upstream patch which fixes several security vulnerabilities
     (Closes: #1054516).
     - [CVE-2023-41259] Vulnerablility to unvalidated email headers in
       incoming email and the mail-gateway REST interface.
     - [CVE-2023-41260] Information leakage via response messages returned
       from requests sent via the mail-gateway REST interface.
   * Replace patches from 4.4.6+dfsg-1.1 with git-dpm managed patches:
     - Switch-to-Test-MockTime-HiRes-in-date-api-test.diff
     - Update-tests-for-EN-datetime-locale-change-to-space.diff
   * Add upstream fix to tests for FTBFS due to expired certs.

request-tracker5 (5.0.3+dfsg-3~deb12u2) bookworm-security; urgency=medium
 .
   * Apply upstream patch which fixes several security vulnerabilities
     (Closes: #1054517).
     - [CVE-2023-41259] Vulnerablility to unvalidated email headers in
       incoming email and the mail-gateway REST interface.
     - [CVE-2023-41620] Information leakage via response messages returned
       from requests sent via the mail-gateway REST interface.
     - [CVE-2023-45024] Information leakage via transaction searches made by
       authenticated users in the transaction query builder.
     - Reveal information about data on various RT objects in errors and other
       response messages to REST 2 requests.
   * Add upstream fix to tests for FTBFS due to expired certs.

roundcube (1.6.4+dfsg-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security and bugfix release:
     + Fix CVE-2023-5631: Cross-site scripting (XSS) vulnerability in handling
       of SVG in HTML messages. (Closes: #1054079)
     + Managesieve plugin: Fix javascript error when relational or spamtest
       extension is not enabled.
     + Fix PHP8 warnings.
   * Replace upstream release “version” 1.6-git with the actual tagged version.
   * Add DEP-8 test to check RCMAIL_VERSION against d/changelog.
   * Salsa CI: Disable lintian and reprotest jobs.
   * Refresh patches.
roundcube (1.6.3+dfsg-2) unstable; urgency=low
 .
   * Replace upstream release “version” 1.6-git with the actual tagged version
     (currently 1.6.3).
roundcube (1.6.3+dfsg-1) unstable; urgency=medium
 .
   * New upstream security and bugfix release:
     + Fix cross-site scripting (XSS) vulnerability in handling of linkrefs in
       plain text messages. (Closes: #1052059)
     + Fix regression that broke use_secure_urls feature hence OAuth2
       authentication. (Closes: #1050317)
     + Fix regression where LDAP addressbook 'filter' option was ignored.
     + Fix regression in decoding mail parts FETCHed from IMAP.
     + Fix PHP8 warnings.
   * roundcube-core.cron: Trigger gc twice every hour. (Closes: #1043395)
   * Fix GuzzleHttp autoload location. (Closes: #1040705)
   * d/p/fix-autoload-location.patch: Set ‘Forwarded: not-needed’ DEP-3 header.
   * Refresh d/patches.

rust-sd (0.7.6-1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Prefix the version of the binary package with '0.80.really.' to sort
     between 0.74-1 in squeeze (from unrelated src:sd) and 1.0.0-1 in sid.
     (Closes: #1037192)

samba (2:4.17.12+dfsg-0+deb12u1) bookworm-security; urgency=medium
 .
   * new stable security bugfix release:
     o CVE-2023-3961: https://www.samba.org/samba/security/CVE-2023-3961.html
       Unsanitized pipe names allow SMB clients to connect as root
       to existing unix domain sockets on the file system.
     o CVE-2023-4091: https://www.samba.org/samba/security/CVE-2023-4091.html
       SMB client can truncate files to 0 bytes by opening files with OVERWRITE
       disposition when using the acl_xattr Samba VFS module with the smb.conf
       setting "acl_xattr:ignore system acls = yes"
     o CVE-2023-4154: https://www.samba.org/samba/security/CVE-2023-4154.html
       An RODC and a user with the GET_CHANGES right can view all attributes,
       including secrets and passwords.  Additionally, the access check fails
       open on error conditions.
     o CVE-2023-42669: https://www.samba.org/samba/security/CVE-2023-42669.html
       Calls to the rpcecho server on the AD DC can request that the server
       block for a user-defined amount of time, denying service.
     o CVE-2023-42670: https://www.samba.org/samba/security/CVE-2023-42670.html
       Samba can be made to start multiple incompatible RPC listeners,
       disrupting service on the AD DC.
samba (2:4.17.12+dfsg-0+deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports (no source changes).

sitesummary (0.1.56~deb12u2) bookworm; urgency=medium
 .
   [ Guido Berhoerster ]
   * Use systemd timer for running sitesummary-client if available.
     (Cherry-picked from release 0.1.58).

slurm-wlm (22.05.8-4+deb12u1) bookworm-security; urgency=medium
 .
   * Fix CVE-2023-41914

slurm-wlm-contrib (22.05.8-4+deb12u1) bookworm-security; urgency=medium
 .
   * Fix CVE-2023-41914

speech-dispatcher-contrib (0.11.4-3+deb12u1) bookworm; urgency=medium
 .
   * control: Enable voxin on armhf and arm64 archs.

spyder (5.4.2+ds-5+deb12u1) stable; urgency=medium
 .
   * Fix interface language auto-configuration (closes: #1054475)

strongswan (5.9.8-5+deb12u1) bookworm-security; urgency=medium
 .
   * d/patches: add fix for CVE-2023-41913 in charon-tkm
     Buffer Overflow When Handling DH Public Values

symfony (5.4.23+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * debian/gbp.conf: Track bookworm branch
   * Backport security fixes from Symfony 5.4.31
     - [TwigBridge] Ensure CodeExtension's filters properly escape their input
       [CVE-2023-46734] (Closes: #1055774)
     - [Security] Fix possible session fixation when only the *token* changes
       [CVE-2023-46733] (Closes: #1055775)

systemd (252.19-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.19
   * Refresh patches
 .
 systemd (252.18-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.18
   * Refresh patches
systemd (252.18-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.18
   * Refresh patches

tbsync (4.7-1~deb12u1) bookworm; urgency=medium
 .
   [ Mechtilde ]
   * [f9e272f] Adjust version of dependencies
   * Prepared for release in bookworm (proposed-updates)
tbsync (4.3+git20230524+9459652-1) experimental; urgency=medium
 .
   [ Mechtilde ]
   * [70d9fd8] New upstream version 4.3+git20230524+9459652
               Made it fit for thunderbird 115.*
   * [70d9fd8] New upstream version 4.3+git20230524+9459652
   * [6321440] Changed coompression for zip file

thunderbird (1:115.5.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:115.5.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.4.1-1) unstable; urgency=medium
 .
   * [c51ab77] New upstream version 115.4.1
     Fixed CVE issues in upstream version 115.4.1 (MFSA 2023-47):
     CVE-2023-5721: Queued up rendering could have allowed websites to
                    clickjack
     CVE-2023-5732: Address bar spoofing via bidirectional characters
     CVE-2023-5724: Large WebGL draw could have led to a crash
     CVE-2023-5725: WebExtensions could open arbitrary URLs
     CVE-2023-5728: Improper object tracking during GC in the JavaScript
                    engine could have led to a crash.
     CVE-2023-5730: Memory safety bugs fixed in Firefox 119, Firefox ESR 115.4,
                    and Thunderbird 115.4.1
thunderbird (1:115.4.1-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:115.4.1-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:115.3.1-1) unstable; urgency=medium
 .
   * [276a53a] New upstream version 115.3.1
     Fixed CVE issues in upstream version 115.3.1 (MFSA 2023-44):
     CVE-2023-5217: Heap buffer overflow in libvpx
   * [a360abf] d/control: Point VCS links to debian/sid
thunderbird (1:115.3.1-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
   * [6d72841] d/mozconfig.default: Use internal shipped librnp version
   * [fb349c5] d/control: Drop librnp0 package from Depends
   * [0a8206b] d/thunderbird.install: Install local build rnp tools
   * [e556e49] d/mozconfig.default: Use internal shipped nss version
   * [73412b7] d/control: Adjust the Build-Depends packages
thunderbird (1:115.3.1-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
   * [5758be4] d/mozconfig.default: Use internal shipped vpx version
   * [f6cd3cb] d/control: Drop libvpx-dev from Build-Depnds
thunderbird (1:115.3.0-1) unstable; urgency=medium
 .
   * [2e67467] New upstream version 115.3.0
     Fixed CVE issues in upstream version 115.3 (MFSA 2023-43):
     CVE-2023-5168: Out-of-bounds write in FilterNodeD2D1
     CVE-2023-5169: Out-of-bounds write in PathOps
     CVE-2023-5171: Use-after-free in Ion Compiler
     CVE-2023-5176: Memory safety bugs fixed in Firefox 118, Firefox
                    ESR 115.3, and Thunderbird 115.3
thunderbird (1:115.3.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
   * [39648bd] d/mozconfig.default: Use internal shipped librnp version
   * [9407d2b] d/control: Drop librnp0 package from Depends
   * [cba1af1] d/thunderbird.install: Install local build rnp tools
   * [cbb4c5e] d/mozconfig.default: Use internal shipped nss version
   * [0e8e530] d/control: Adjust the Build-Depends packages
thunderbird (1:115.2.2-1) unstable; urgency=medium
 .
   * [08bc8c9] d/thunderbird.desktop: Update data with upstream data
     (Closes: #1042912, #1051261)
   * [2fd665b] New upstream version 115.2.2
     Fixed CVE issues in upstream version 115.2.2 (MFSA 2023-40):
     CVE-2023-4863: Heap buffer overflow in libwebp
   * [7b862be] d/copyright: Update content due upstream changes
   * [140b77d] d/s/lintian-overrides: Update data for overrides
thunderbird (1:115.2.0-1) unstable; urgency=medium
 .
   * [1415d01] New upstream version 115.2.0
     Fixed CVE issues in upstream version 115.2 (MFSA 2023-36):
     CVE-2023-4573: Memory corruption in IPC CanvasTranslator
     CVE-2023-4574: Memory corruption in IPC ColorPickerShownCallback
     CVE-2023-4575: Memory corruption in IPC FilePickerShownCallback
     CVE-2023-4576: Integer Overflow in RecordedSourceSurfaceCreation
     CVE-2023-4577: Memory corruption in JIT UpdateRegExpStatics
     CVE-2023-4051: Full screen notification obscured by file open dialog
     CVE-2023-4578: Error reporting methods in SpiderMonkey could have
                    triggered an Out of Memory Exception
     CVE-2023-4053: Full screen notification obscured by external program
     CVE-2023-4580: Push notifications saved to disk unencrypted
     CVE-2023-4581: XLL file extensions were downloadable without warnings
     CVE-2023-4582: Buffer Overflow in WebGL glGetProgramiv
     CVE-2023-4583: Browsing Context potentially not cleared when closing
                    Private Window
     CVE-2023-4584: Memory safety bugs fixed in Firefox 117, Firefox ESR
                    102.15, Firefox ESR 115.2, Thunderbird 102.15, and
                    Thunderbird 115.2
     CVE-2023-4585: Memory safety bugs fixed in Firefox 117, Firefox ESR 115.2,
                    and Thunderbird 115.2
thunderbird (1:115.1.1-1) unstable; urgency=medium
 .
   [ Christoph Goehre ]
   * [880cabe] ship glxtest and vaapitest binaries
     (Closes: #1043057)
 .
   [ Carsten Schoenert ]
   * [8474b9b] d/thunderbird.install: Use upstream graphics for icons
   * [85f99a2] d/c-u-t.py: Use Version() from python3-packaging
   * [86e3335] d/thunderbird.desktop: Sort MimeType entries alphabetically
   * [2bc5f47] New upstream version 115.1.1
   * [ddec51f] Revert "d/mozconfig.default: Use internal shipped librnp
               version"
   * [3ef27e2] Revert "d/control: Drop librnp0 package from Depends"
   * [9011502] Revert "d/thunderbird.install: Install rnp tools too"
   * [d5eef62] d/control: Bump version of librnp{0,-dev}
     (Closes: #1041409)
 .
   [ Max Nikulin ]
   * [0e04b0e] d/thunderbird.desktop: Add IANA MIME type for .vcf vcard
   * [ce01092] d/thunderbird.desktop: Add mid: URI to MIME types
     (Closes: #1008159)
   * [c11a22f] d/thunderbird.desktop: Add news: URI to MIME types
   * [bf5586f] d/thunderbird.desktop: Add webcal: URI to MIME types
thunderbird (1:115.1.0-1) unstable; urgency=medium
 .
   * [8c11865] d/gbp.conf: Adjust upstream branch to new ESR cycle
   * [fb76340] New upstream version 115.1.0
     Fixed CVE issues in upstream version 115.1 (MFSA 2023-33):
     CVE-2023-4045: Offscreen Canvas could have bypassed cross-origin
                    restrictions
     CVE-2023-4046: Incorrect value used during WASM compilation
     CVE-2023-4047: Potential permissions request bypass via clickjacking
     CVE-2023-4048: Crash in DOMParser due to out-of-memory conditions
     CVE-2023-4049: Fix potential race conditions when releasing platform
                    objects
     CVE-2023-4050: Stack buffer overflow in StorageManager
     CVE-2023-4055: Cookie jar overflow caused unexpected cookie jar state
     CVE-2023-4056: Memory safety bugs fixed in Firefox 116,
                    Firefox ESR 115.1, Firefox ESR 102.14, Thunderbird 115.1,
                    and Thunderbird 102.14
     CVE-2023-4057: Memory safety bugs fixed in Firefox 116,
                    Firefox ESR 115.1, and Thunderbird 115.1
   * [b562827] Rebuild patch queue from patch-queue branch
     Removed patches (included upstream):
     fixes/Bug-1840931-More-properly-handle-files-4GB-in-elfhack.-r-.patch
     fixes/Bug-1842933-Use-NEON_FLAGS-instead-of-VPX_ASFLAGS-for-lib.patch
     porting-mips/Bug-1841197-Undefine-the-mips-builtin-macro-on-mips-in-sk.patch
     porting-mips64el/Bug-1841201-Work-around-tail-call-optimization-not-happen.patch
     porting-ppc64el/Work-around-bz-1775202-to-fix-FTBFS-on-ppc64el.patch
thunderbird (1:115.0.1-2) experimental; urgency=medium
 .
   [ Carsten Schoenert ]
   * [39b1576] d/create-upstream-tarballs.py: Catch non existing versions
   * [f663f6a] d/create-upstream-tarballs.py: Running black formatter
   * [8e6d7fe] d/create-upstream-tarballs.py: Use speaking variable name
 .
   [ Christoph Goehre ]
   * [cdab989] Rebuild patch queue from patch-queue branch
     Added patch:
     porting-mips64el/Bug-1841201-Work-around-tail-call-optimization-not-happen.patch
thunderbird (1:115.0.1-1) experimental; urgency=medium
 .
   * [30f2fcc] New upstream version 115.0.1
     Fixed CVE issues in upstream version 115.0.1 (MFSA 2023-27):
     CVE-2023-3600: Use-after-free in workers
     CVE-2023-3417: File Extension Spoofing using the Text Direction
                    Override Character
   * [efbb370] Rebuild patch queue from patch-queue branch
     Added patches:
     debian-hacks/rnp-Fix-include-for-format-specifiers-for-uint32_t.patch
     fixes/skia-Cast-SkEndian_SwapBE32-n-to-uint32_t-on-big-endian.patch
     porting-mips64el/skia-Disable-musttail-on-mips64.patch
     porting-ppc64el/skia-Disable-musttail-on-ppc64el.patch
   * [f78b777] d/mozconfig.default: Use internal shipped librnp version
   * [a606cdb] d/control: Drop librnp0 package from Depends
   * [104bf35] d/thunderbird.install: Install rnp tools too
thunderbird (1:115.0-1) experimental; urgency=medium
 .
   [ Carsten Schoenert ]
   * [3a6b0eb] New upstream version 115.0
   * [1c11a15] Rebuild patch queue from patch-queue branch
     Dropped patches:
     debian-hacks/Decrease-Cargo-minimal-version-to-1.46.0.patch
     debian-hacks/Fix-Floating-Point-Normalization-breakage-on-32bit-Linux.patch
     debian-hacks/Use-remoting-name-for-call-to-gdk_set_program_class.patch
     fixes/Bug-1556197-amend-Bug-1544631-for-fixing-mips32.patch
     fixes/Bug-628252-os2.cc-fails-to-compile-against-GCC-4.6-m.patch
     porting-armhf/Bug-1526653-Include-struct-definitions-for-user_vfp-and-u.patch
     porting-kfreebsd-hurd/Allow-ipc-code-to-build-on-GNU-hurd.patch
     porting-kfreebsd-hurd/Allow-ipc-code-to-build-on-GNU-kfreebsd.patch
     porting-kfreebsd-hurd/FTBFS-hurd-fixing-unsupported-platform-Hurd.patch
     porting-kfreebsd-hurd/LDAP-support-building-on-GNU-kFreeBSD-and-GNU-Hurd.patch
     porting-kfreebsd-hurd/adding-missed-HURD-adoptions.patch
     porting-kfreebsd-hurd/ipc-chromium-fix-if-define-for-kFreeBSD-and-Hurd.patch
     porting-ppc64el/work-around-a-build-failure-with-clang-on-ppc64el.patch
     porting/Work-around-GCC-ICE-on-mips-i386-and-s390x.patch
     Added patches:
     fixes/Bug-1840931-More-properly-handle-files-4GB-in-elfhack.-r-.patch
     fixes/Bug-1842933-Use-NEON_FLAGS-instead-of-VPX_ASFLAGS-for-lib.patch
     fixes/Fix-math_private.h-for-i386-FTBFS.patch
     porting-mips/Bug-1841197-Undefine-the-mips-builtin-macro-on-mips-in-sk.patch
     porting-ppc64el/Work-around-GCC-ICE-on-ppc64el.patch
     porting-ppc64el/Work-around-bz-1775202-to-fix-FTBFS-on-ppc64el.patch
   * [8d1d0e0] d/source.filter: Add build/android to list
 .
   [ Bo YU ]
   * [ddf55dc] riscv64: Add build support for Riscv64 (Closes: #1026118)
thunderbird (1:115.0~b6-1) experimental; urgency=medium
 .
   * [1d7c51d] New upstream version 115.0~b6
thunderbird (1:115.0~b4-1) experimental; urgency=medium
 .
   * [5685662] New upstream version 115.0~b4
   * [0ff4fd0] Rebuild patch queue from patch-queue branch
     Updated patches:
     porting-kfreebsd-hurd/Allow-ipc-code-to-build-on-GNU-hurd.patch
     porting-kfreebsd-hurd/Allow-ipc-code-to-build-on-GNU-kfreebsd.patch
   * [67def1f] d/control: Add libotr5 to Depends
thunderbird (1:114.0~b2-1) experimental; urgency=medium
 .
   * [1f5bec1] New upstream version 114.0~b2
   * [df5220a] Rebuild patch queue from patch-queue branch
     Updated patches:
     porting-kfreebsd-hurd/FTBFS-hurd-fixing-unsupported-platform-Hurd.patch
     porting/Work-around-GCC-ICE-on-mips-i386-and-s390x.patch
   * [71e654b] d/rules: Add 2 files to dh_missing
thunderbird (1:113.0~b3-1) experimental; urgency=medium
 .
   [ Carsten Schoenert ]
   * [569da29] apparmor: Expand profile folder about .mozilla-thunderbird
     (Closes: #1030532)
   * [777be0a] New upstream version 113.0~b3
   * [ae90792] Rebuild patch queue from patch-queue branch
     Dropped patch (included upstream):
     debian-hacks/Make-Thunderbird-build-reproducible.patch
 .
   [ Timothy Pearson ]
   * [5dff12c] Explicitly set SQLite endianness on ppc64el
 .
   [ intrigeri ]
   * [c0ea3f9] AppArmor: update profile from upstream at
     commit a03a894c6c30b7a566aa74645802de1cea580bca
thunderbird (1:112.0~b1-1) experimental; urgency=medium
 .
   * [c89a60d] d/source.filter: Update content to filter out
   * [12cd2c8] New upstream version 112.0~b1
   * [6655d37] Rebuild patch queue from patch-queue branch
     Removed patch:
     debian-hacks/Relax-minimum-supporter-rust-version-to-1.63.patch
   * [c4744df] d/control: Increade B-D on rustc to >= 1.65
   * [ad73ef1] d/thunderbird.docs: Readd Apache-2 related Notice file
   * [ebf44e8] d/control: Adjust B-D to libfontconfig-dev
   * [6cea088] d/control: Increase Standards-Version to 4.6.2
   * [2d0d8ee] d/copyright: Update content due upstream changes
   * [268ee53] Lintian: Update overrides for source package
   * [28ffd63] Lintian: Update overrides for thunderbird package
   * [200f86d] Lintian: Update override for thunderbird-l10n-all
thunderbird (1:110.0~b4-1) experimental; urgency=medium
 .
   [ Amr Ibrahim ]
   * [22b9eb7] thunderbird.desktop: Update StartupWMClass
 .
   [ Carsten Schoenert ]
   * [afe6c6a] d/copyright: Update content due upstream changes
   * [7b31b9d] d/source.filter: Update content to filter out
   * [03b50b4] Lintian: Adjust overrides for thunderbird package
   * [d3510d8] Lintian: Adjust overrides for source package
   * [57839a2] d/control: Increase version in B-D for libnss-dev
   * [958648e] d-create-upstream-tarballs.py: Use correct variable
   * [208f93e] New upstream version 110.0~b4
     (Closes: #1031541)
   * [ba87378] Rebuild patch queue from patch-queue branch
     Added patch:
     debian-hacks/Relax-minimum-supporter-rust-version-to-1.63.patch
     Adjusted patch:
     debian-hacks/Fix-Floating-Point-Normalization-breakage-on-32bit-Linux.patch
     porting-kfreebsd-hurd/FTBFS-hurd-fixing-unsupported-platform-Hurd.patch
   * [3104ede] Drop usage of autoconf calls
   * [42a2545] d/control: Increase some versions in B-D
   * [551a17f] d/rules: Don't remove configure on dh_clean
   * [3b7b408] d/source.filter: Don't filter configure from upstream data
   * [48913d3] d/thunderbird.docs: Drop install of NOTICE file
   * [44589db] d/mozconfig.default: Use internal version of ICU
   * [3eba559] d/control: Drop libicu-dev from B-D for now
thunderbird (1:104.0~b2-1) experimental; urgency=medium
 .
   * [92670b2] d/repack.py: Small rework and adjustments
   * [06fb656] d/create-upstream-tarballs.py: Adding new helper script
   * [331247d] d/README.source: Update information on importing data
   * [57a6dd7] d/source.filter: Relax filter rule for old-configure
   * [36696b6] d/repack.py: Don't exit(1) if unused filter items exist
   * [3b14d11] d/create-thunderbird-l10n-tarball.sh: Drop old helper
   * [5468bb8] d/gbp.conf: Drop 'import-orig' section
   * [fd4d5c1] d/source.filter: Add files named *.orig and *.rej
   * [5035e50] New upstream version 104.0~b2
   * [cc89049] Rebuild patch queue from patch-queue branch
     Removed patch:
     debian-hacks/Lower-down-required-NSS-version.patch
thunderbird (1:103.0~b5-1) experimental; urgency=medium
 .
   * [a060ea2] d/gbp.conf: Sign tags automatically
     (cherry-picked from debian/sid)
   * [ac331c8] New upstream version 103.0~b5
   * [00dd354] Rebuild patch queue from patch-queue branch
     Added patch:
     debian-hacks/Lower-down-required-NSS-version.patch
   * [5c35afb] d/watch: Look now for versions starting with 3 digits
     (cherry-picked from debian/sid)
   * [a897f48] d/control: Add package thunderbird-l10n-es-mx
     (cherry-picked from debian/sid)

tiff (4.5.0-6+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix a memory leak in tiffcrop (CVE-2023-3576)
   * Fix buffer overflows in tiffcp and raw2tiff
     (CVE-2023-40745, CVE-2023-41175)

toil (5.9.2-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Apply patch by Michael R. Crusoe to request a single core
     in the tests. Closes: #1031192.

tomcat10 (10.1.6-1+deb12u1) bookworm-security; urgency=high
 .
   * Fix CVE-2023-45648: Request smuggling. Tomcat did not correctly parse HTTP
     trailer headers. A specially crafted, invalid trailer header could cause
     Tomcat to treat a single request as multiple requests leading to the
     possibility of request smuggling when behind a reverse proxy.
   * Fix CVE-2023-44487: DoS caused by HTTP/2 frame overhead (Rapid Reset Attack)
   * Fix CVE-2023-42795: Information Disclosure. When recycling various internal
     objects, including the request and the response, prior to re-use by the next
     request/response, an error could cause Tomcat to skip some parts of the
     recycling process leading to information leaking from the current
     request/response to the next.
   * Fix CVE-2023-41080: Open redirect. If the ROOT (default) web application
     is configured to use FORM authentication then it is possible that a
     specially crafted URL could be used to trigger a redirect to an URL of
     the attackers choice.
   * Fix CVE-2023-28709: Denial of Service. If non-default HTTP connector
     settings were used such that the maxParameterCount could be reached using
     query string parameters and a request was submitted that supplied exactly
     maxParameterCount parameters in the query string, the limit for uploaded
     request parts could be bypassed with the potential for a denial of service
     to occur.

tor (0.4.7.16-1) bookworm-security; urgency=medium
 .
   * New upstream version.
   * Target bookworm-security:
     o Major bugfixes (TROVE-2023-004, relay):
       - Mitigate an issue when Tor compiled with OpenSSL can crash during
         handshake with a remote relay. Fixes bug 40874; bugfix
         on 0.2.7.2-alpha.

trafficserver (9.2.3+ds-1+deb12u1) bookworm-security; urgency=medium
 .
   * Multiple CVE fixes for 9.2.x (Closes: #1054427, Closes: #1053801)
     - CVE-2022-47185: Improper input validation vulnerability
     - CVE-2023-33934: Improper Input Validation vulnerability
     - CVE-2023-39456: Improper Input Validation vulnerability
     - CVE-2023-41752: Exposure of Sensitive Information to an Unauthorized Actor
     - CVE-2023-44487: The HTTP/2 protocol allows a denial of service
   * Refresh d/patches for 9.2.3 release
   * Add patch to workaround missing sphinxcontrib.jquery module
   * Update d/trafficserver-experimental-plugins for 9.2.3 release
trafficserver (9.2.3+ds-1) unstable; urgency=medium
 .
   * New upstream version 9.2.3+ds
   * Update d/trafficserver-experimental-plugins for 9.2.3 release
   * CVEs fixes (Closes: #1054427, Closes: #1053801)
     - CVE-2023-39456: Improper Input Validation vulnerability
     - CVE-2023-41752: Exposure of Sensitive Information to an Unauthorized Actor
     - CVE-2023-44487: The HTTP/2 protocol allows a denial of service
trafficserver (9.2.2+ds-1) unstable; urgency=medium
 .
   [ Emanuele Rocca ]
   * Remove myself from Uploaders
 .
   [ Jean Baptiste Favre ]
   * New upstream version 9.2.1+ds
   * Update d/patches for 9.2.2
     - CVE-2022-47185: Improper input validation vulnerability
     - CVE-2023-33934: Improper input validation vulnerability
trafficserver (9.2.1+ds-1) unstable; urgency=medium
 .
   * New upstream version 9.2.1+ds
   * Update d/patches for 9.2.1 release
   * Update Build-Depends to allow documentation build
   * Update patch to fix HTTP proxy tests plus forwarded URL
   * Update patch to fix doc build plus forwarded URL
   * Update d/copyright

tzdata (2023c-5+deb12u1) bookworm; urgency=medium
 .
   * Update leap-seconds.list from upstream
   * Remove leapseconds during clean target
tzdata (2023c-5exp1) experimental; urgency=medium
 .
   * Drop /usr/share/zoneinfo/posix (identical to /usr/share/zoneinfo)
     (LP: #2008076)
   * Split right/* timezones into separate tzdata-legacy package (LP: #2008076)
   * Drop providing tzdata-bookworm from tzdata

unadf (0.7.11a-5+deb12u1) bookworm; urgency=medium
 .
   * CVE-2016-1243 / CVE-2016-1244 (Closes: #838248)

vips (8.14.1-3+deb12u1) bookworm; urgency=medium
 .
   * Backport upstream security fix for CVE-2023-40032: svgload: fix
     null-pointer dereference.

vlc (3.0.20-0+deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version 3.0.20
     - Improve muxing timestamps in a few formats (Closes: #1054528)
     - Fix potential security issue (OOB Write) on MMS://
   * debian/gbp.conf: Work in bookworm branch
   * debian/patches: Drop patches included upstream
vlc (3.0.20-0+deb11u1) bullseye-security; urgency=medium
 .
   * New upstream version 3.0.19
     - Fix potential security issue (OOB Write) on MMS://
vlc (3.0.19-1) unstable; urgency=medium
 .
   * New upstream version 3.0.19
   * debian/patches: Drop patches from upstream
vlc (3.0.18-4) unstable; urgency=medium
 .
   [ Pino Toscano ]
   * d/vlc-plugin-base.install: drop non-existing files
   * d/rules: drop "libva" from "removeplugins" for all the archs
   * d/vlc-plugin-video-output: mark vaapi plugins as "libva"
 .
   [ Sebastian Ramacher ]
   * debian/: Disable libplacebo. libplacebo 6 is too new for vlc.
vlc (3.0.18-3) unstable; urgency=medium
 .
   * debian/control: Bump Standards-Version
   * debian/: Disable SDL support (Closes: #1038590)

webkit2gtk (2.42.2-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
     - Fixes CVE-2023-41983 and CVE-2023-42852.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
webkit2gtk (2.42.2-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
     - Fixes CVE-2023-41983 and CVE-2023-42852.
   * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
     clang instead. Keep using gcc in other architectures because clang has
     problems in at least i386, arm64 and mipsel (see #1010329 and
     #1016811).
     - debian/rules: Tell CMake to use clang.
     - debian/control.in: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and
       USE_PREBUILT_DOCS=YES.
     - debian/control.in: Remove build dependency on ccache.
   * debian/rules:
     - Disable USE_AVI, USE_GBM, USE_GSTREAMER_TRANSCODER and USE_JPEGXL
       due to missing or additional build dependencies.
   * debian/control.in:
     - Don't require version 1.20.0 of libgstreamer-plugins-bad1.0-dev.
     - Remove build dependency on libjxl-dev.
   * debian/patches/disable-dmabuf.patch:
     - Disable the DMABuf renderer in all cases in bullseye
       (see #1054101).
webkit2gtk (2.42.1-2) unstable; urgency=medium
 .
   * debian/patches/disable-dmabuf-nvidia.patch:
     - Disable the DMABuf renderer for NVIDIA proprietary drivers
       (Closes: #1039720, #1052055).
webkit2gtk (2.42.1-1) unstable; urgency=high
 .
   * New upstream release.
webkit2gtk (2.42.1-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * Disable JPEG XL to avoid adding new dependencies.
     - debian/control.in: Remove build dependency on libjxl-dev.
     - debian/rules: Build with -DUSE_JPEGXL=OFF.
   * debian/patches/disable-dmabuf-nvidia.patch:
     - Disable the DMABuf renderer for NVIDIA proprietary drivers
       (See #1039720 and #1052055).
webkit2gtk (2.42.1-1~deb11u2) bullseye-security; urgency=medium
 .
   * debian/patches/disable-dmabuf.patch:
     - Disable the DMABuf renderer in all cases in bullseye
       (Closes: #1054101).
webkit2gtk (2.42.1-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
   * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
     clang instead. Keep using gcc in other architectures because clang has
     problems in at least i386, arm64 and mipsel (see #1010329 and
     #1016811).
     - debian/rules: Tell CMake to use clang.
     - debian/control.in: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and
       USE_PREBUILT_DOCS=YES.
     - debian/control.in: Remove build dependency on ccache.
   * debian/rules:
     - Disable USE_AVI, USE_GBM, USE_GSTREAMER_TRANSCODER and USE_JPEGXL
       due to missing or additional build dependencies.
   * debian/control.in:
     - Don't require version 1.20.0 of libgstreamer-plugins-bad1.0-dev.
     - Remove build dependency on libjxl-dev.
   * debian/patches/disable-dmabuf-nvidia.patch:
     - Disable the DMABuf renderer for NVIDIA proprietary drivers
       (See #1039720 and #1052055).
webkit2gtk (2.42.1-1~bpo12+1) bookworm-backports; urgency=medium
 .
   * Rebuild for bookworm-backports.
webkit2gtk (2.42.0-1) unstable; urgency=medium
 .
   * New upstream release.
   * Bring all changes from the 2.41 (experimental) branch.
   * debian/gbp.conf:
     - Update upstream branch name.
   * debian/control.in:
     - Remove the minimum versions of all build dependencies in the cases
       where they are very old.
     - Add build dependency on libjxl-dev, JPEGXL is now enabled by
       default.
     - Require CMake 3.16
   * debian/control-common.in:
     - Add dependency on libgles2. This is no longer detected automatically
       because it's loaded at runtime by libepoxy (see #1050777).
   * debian/source/lintian-overrides:
     - Update source-is-missing overrides.
   * debian/libwebkit2gtk-4.0-37.symbols:
     - Update symbols.
   * debian/rules:
     - Use --max-parallel=2 in Debian mipsel builds again.
     - Don't build jpegxl support on Ubuntu yet (it's still in universe)
       (Jeremy Bicha).
   * debian/copyright:
     - Update copyright information of all files.
webkit2gtk (2.42.0-1~bpo12+1) bookworm-backports; urgency=medium
 .
   * Rebuild for bookworm-backports.
webkit2gtk (2.41.92-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Drop fix-ftbfs-riscv64.patch.
webkit2gtk (2.41.91-2) experimental; urgency=medium
 .
   * debian/patches/fix-ftbfs-riscv64.patch:
     - Fix FTBFS in riscv64.
   * debian/control-common.in:
     - Add dependency on libgles2. This is no longer detected automatically
       because it's loaded at runtime by libepoxy (see #1050777).
webkit2gtk (2.41.91-1) experimental; urgency=medium
 .
   * New upstream development release.
   * debian/rules:
     - Use --max-parallel=2 in Debian mipsel builds again.
     - Don't build jpegxl support on Ubuntu yet (it's still in universe)
       (Jeremy Bicha).
webkit2gtk (2.41.90-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Refresh all patches and drop fix-jsc-timestamp.patch.
   * debian/rules:
     - Set Build-Depends-Indep to jdupes when USE_PREBUILT_DOCS is set.
     - Use -O1 instead of -Os in sh4 (thanks, John Paul Adrian Glaubitz)
       (#1042519).
   * debian/copyright:
     - Update copyright information of all files.
   * debian/libwebkit2gtk-4.0-37.symbols:
     - Update symbols.
webkit2gtk (2.41.6-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Refresh all patches.
   * debian/copyright:
     - Update copyright information of all files.
   * debian/rules:
     - Use override_dh_install-indep when setting up the documentation.
   * debian/control.in:
     - Move jdupes to Build-Depends-Indep.
   * debian/patches/fix-jsc-timestamp.patch:
     - Ensure reproducibility of __TIMESTAMP__ in JSCBytecodeCacheVersion.cpp.
webkit2gtk (2.41.5-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Refresh all patches.
   * debian/copyright:
     - Update copyright information of all files.
   * debian/control.in:
     - Enable the bubblewrap sandbox in riscv64.
     - Add build dependency on libjxl-dev, JPEGXL is now enabled by
       default.
webkit2gtk (2.41.4-1) experimental; urgency=medium
 .
   * New upstream development release.
   * Refresh all patches.
   * debian/control:
     - Remove the minimum versions of all build dependencies in the cases
       where they are very old.
   * debian/libwebkit2gtk-4.0-37.symbols:
     - Update symbols.
   * debian/rules:
     - Pass -VNone to dh_makeshlibs for javascriptcore to keep the behavior
       of the debhelper compat level 11 and earlier.
   * debian/copyright:
     - Update copyright information of all files.
   * debian/source/lintian-overrides:
     - Update source-is-missing overrides.
webkit2gtk (2.40.5-1) unstable; urgency=high
 .
   * New upstream release.
   * debian/rules:
     - Use -O1 instead of -Os in sh4 (thanks, John Paul Adrian Glaubitz)
       (Closes: #1042519).
   * Drop debian/patches/fix-jsc-timestamp.patch.

weborf (0.19-2.1+deb12u1) bookworm; urgency=medium
 .
   * Backport patch from upstream to fix denial of service (Closes: 1054417)

wireshark (4.0.11-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream version
     - security fixes:
       - SSH dissector crash (CVE-2023-6174)
       - NetScreen file parser crash (CVE-2023-6175)
wireshark (4.0.10-1) unstable; urgency=medium
 .
   * New upstream version
     - security fixes:
       - RTPS dissector memory leak (CVE-2023-5371)
wireshark (4.0.8-1) unstable; urgency=medium
 .
   * New upstream version
     - security fixes:
       - CBOR dissector crash (CVE-2023-4512)
       - BT SDP dissector infinite loop (CVE-2023-4511)
       - BT SDP dissector memory leak (CVE-2023-4513)
       - CP2179 dissector crash
wireshark (4.0.7-1) unstable; urgency=medium
 .
   * New upstream version
     - security fixes:
       - Kafka dissector crash (CVE-2023-3648)
       - iSCSI dissector crash (CVE-2023-3649)
   * Drop wireshark-gtk transitional package (Closes: #1038267)
   * Ignore test failure on hppa, like on many other exotic architectures
     (Closes: #1025875)
wireshark (4.0.6-1) unstable; urgency=medium
 .
   * Upload to unstable
 .
 wireshark (4.0.6-1~exp1) experimental; urgency=medium
 .
   * New upstream version 4.0.6
     - security fixes:
       - Candump log file parser crash (CVE-2023-2855)
       - BLF file parser crash (CVE-2023-2857)
       - GDSDB dissector infinite loop
       - NetScaler file parser crash (CVE-2023-2858)
       - VMS TCPIPtrace file parser crash (CVE-2023-2856)
       - BLF file parser crash (CVE-2023-2854)
       - RTPS dissector crash (CVE-2023-0666)
       - IEEE C37.118 Synchrophasor dissector crash (CVE-2023-0668)
       - XRA dissector infinite loop
   * Fix mismatched Lintian overrides
 .
 wireshark (4.0.5-1~exp1) experimental; urgency=medium
 .
   [ Balint Reczey ]
   * New upstream version 4.0.4
     - security fixes:
       -  ISO 15765 and ISO 10681 dissector crash (CVE-2023-1161)
          (Closes: #1033756)
   * Drop 0001-tests-Get-tests-working-with-Python-3.11-except-with.patch
     integrated to the new upstream release.
   * New upstream version 4.0.5
     - security fixes (Closes: #1034721):
       - RPCoRDMA dissector crash (CVE-2023-1992)
       - LISP dissector large loop (CVE-2023-1993)
       - GQUIC dissector crash (CVE-2023-1994)
 .
   [ Remus-Gabriel Chelu ]
   * Adding Romanian debconf templates translation (Closes: #1033792)
wireshark (4.0.6-1~exp1) experimental; urgency=medium
 .
   * New upstream version 4.0.6
     - security fixes:
       - Candump log file parser crash (CVE-2023-2855)
       - BLF file parser crash (CVE-2023-2857)
       - GDSDB dissector infinite loop
       - NetScaler file parser crash (CVE-2023-2858)
       - VMS TCPIPtrace file parser crash (CVE-2023-2856)
       - BLF file parser crash (CVE-2023-2854)
       - RTPS dissector crash (CVE-2023-0666)
       - IEEE C37.118 Synchrophasor dissector crash (CVE-2023-0668)
       - XRA dissector infinite loop
   * Fix mismatched Lintian overrides

wormhole-william (1.0.6-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Disable flaky tests. Closes: #1031063.

xen (4.17.2+76-ge1f9cb16e2-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm to address the security issues since
     4.17.1+2-gb773c48e36-1 listed below.
   * d/salsa-ci.yml: Set RELEASE variable to bookworm
 .
 xen (4.17.2+76-ge1f9cb16e2-1) unstable; urgency=medium
 .
   * Update to new upstream version 4.17.2-76-ge1f9cb16e2, which also contains
     security fixes for the following issues: (Closes: #1056928)
     - x86/AMD: mismatch in IOMMU quarantine page table levels
       XSA-445 CVE-2023-46835
     - x86: BTC/SRSO fixes not fully effective
       XSA-446 CVE-2023-46836
 .
 xen (4.17.2+55-g0b56bed864-1) unstable; urgency=medium
 .
   * Update to new upstream version 4.17.2+55-g0b56bed864, which also contains
     security fixes for the following issues:
     - arm32: The cache may not be properly cleaned/invalidated
       XSA-437 CVE-2023-34321
     - top-level shadow reference dropped too early for 64-bit PV guests
       XSA-438 CVE-2023-34322
     - x86/AMD: Divide speculative information leak
       XSA-439 CVE-2023-20588
     - xenstored: A transaction conflict can crash C Xenstored
       XSA-440 CVE-2023-34323
     - x86/AMD: missing IOMMU TLB flushing
       XSA-442 CVE-2023-34326
     - Multiple vulnerabilities in libfsimage disk handling
       XSA-443 CVE-2023-34325
     - x86/AMD: Debug Mask handling
       XSA-444 CVE-2023-34327 CVE-2023-34328
   * Note that the following XSA are not listed, because...
     - XSA-441 has patches for the Linux kernel.
 .
 xen (4.17.2-1) unstable; urgency=medium
 .
   * Update to new upstream version 4.17.2, which also contains
     security fixes for the following issues: (Closes: #1042102)
     - x86/AMD: Zenbleed
       XSA-433 CVE-2023-20593
     - x86/AMD: Speculative Return Stack Overflow
       XSA-434 CVE-2023-20569
     - x86/Intel: Gather Data Sampling
       XSA-435 CVE-2022-40982
     - arm: Guests can trigger a deadlock on Cortex-A77
       XSA-436 CVE-2023-34320
   * Note that the following XSA are not listed, because...
     - XSA-432 has patches for the Linux kernel.
xen (4.17.2+55-g0b56bed864-1) unstable; urgency=medium
 .
   * Update to new upstream version 4.17.2+55-g0b56bed864, which also contains
     security fixes for the following issues:
     - arm32: The cache may not be properly cleaned/invalidated
       XSA-437 CVE-2023-34321
     - top-level shadow reference dropped too early for 64-bit PV guests
       XSA-438 CVE-2023-34322
     - x86/AMD: Divide speculative information leak
       XSA-439 CVE-2023-20588
     - xenstored: A transaction conflict can crash C Xenstored
       XSA-440 CVE-2023-34323
     - x86/AMD: missing IOMMU TLB flushing
       XSA-442 CVE-2023-34326
     - Multiple vulnerabilities in libfsimage disk handling
       XSA-443 CVE-2023-34325
     - x86/AMD: Debug Mask handling
       XSA-444 CVE-2023-34327 CVE-2023-34328
   * Note that the following XSA are not listed, because...
     - XSA-441 has patches for the Linux kernel.
xen (4.17.2-1) unstable; urgency=medium
 .
   * Update to new upstream version 4.17.2, which also contains
     security fixes for the following issues: (Closes: #1042102)
     - x86/AMD: Zenbleed
       XSA-433 CVE-2023-20593
     - x86/AMD: Speculative Return Stack Overflow
       XSA-434 CVE-2023-20569
     - x86/Intel: Gather Data Sampling
       XSA-435 CVE-2022-40982
     - arm: Guests can trigger a deadlock on Cortex-A77
       XSA-436 CVE-2023-34320
   * Note that the following XSA are not listed, because...
     - XSA-432 has patches for the Linux kernel.

xorg-server (2:21.1.7-3+deb12u2) bookworm-security; urgency=high
 .
   * 0003-mi-fix-CloseScreen-initialization-order.patch,
     0004-fb-properly-wrap-unwrap-CloseScreen.patch: drop, causes other
     bugs that are worse than CVE-2023-5574.
 .
 xorg-server (2:21.1.7-3+deb12u1) bookworm-security; urgency=medium
 .
   * present-Check-for-NULL-to-prevent-crash.patch: drop, applied upstream since 21.1.4
   * Xi/randr: fix handling of PropModeAppend/Prepend (CVE-2023-5367)
   * mi: reset the PointerWindows reference on screen switch (CVE-2023-5380)
   * mi: fix CloseScreen initialization order
   * fb: properly wrap/unwrap CloseScreen (CVE-2023-5574)
xorg-server (2:21.1.7-3+deb12u1) bookworm-security; urgency=medium
 .
   * present-Check-for-NULL-to-prevent-crash.patch: drop, applied upstream since 21.1.4
   * Xi/randr: fix handling of PropModeAppend/Prepend (CVE-2023-5367)
   * mi: reset the PointerWindows reference on screen switch (CVE-2023-5380)
   * mi: fix CloseScreen initialization order
   * fb: properly wrap/unwrap CloseScreen (CVE-2023-5574)

yuzu (0-1335+ds-1+deb12u1) bookworm; urgency=medium
 .
   * strip :native from glslang-tools build dependency (Closes: #1041491)

zookeeper (3.8.0-11+deb12u1) bookworm-security; urgency=medium
 .
   * Team upload:
     - CVE-2023-44981: Prevent a potential authorisation bypass vulnerability.
       If SASL Quorum Peer authentication was enabled (via
       quorum.auth.enableSasl), authorisation was performed by verifying that
       the instance part in the SASL authentication ID was listed in the zoo.cfg
       server list. However, this value is optional, and, if missing (such as in
       'eve@EXAMPLE.COM'), the authorisation check will be skipped. As a result,
       an arbitrary endpoint could join the cluster and begin propagating
       counterfeit changes to the leader, essentially giving it complete
       read-write access to the data tree. (Closes: #1054224)
=======================================
Sat, 07 Oct 2023 - Debian 12.2 released
=======================================
[Date: Sat, 07 Oct 2023 08:39:01 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

btrfs-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
btrfs-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
btrfs-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
cdrom-core-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
cdrom-core-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
cdrom-core-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
crc-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
crc-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
crc-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
crypto-dm-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
crypto-dm-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
crypto-dm-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
crypto-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
crypto-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
crypto-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
dasd-extra-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
dasd-extra-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
dasd-extra-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
dasd-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
dasd-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
dasd-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
ext4-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
ext4-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
ext4-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
f2fs-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
f2fs-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
f2fs-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
fat-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
fat-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
fat-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
fuse-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
fuse-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
fuse-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
isofs-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
isofs-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
isofs-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
kernel-image-6.1.0-11-s390x-di |   6.1.38-4 | s390x
kernel-image-6.1.0-12-s390x-di |   6.1.52-1 | s390x
kernel-image-6.1.0-9-s390x-di |   6.1.27-1 | s390x
linux-headers-6.1.0-11-s390x |   6.1.38-4 | s390x
linux-headers-6.1.0-12-s390x |   6.1.52-1 | s390x
linux-headers-6.1.0-9-s390x |   6.1.27-1 | s390x
linux-image-6.1.0-11-s390x |   6.1.38-4 | s390x
linux-image-6.1.0-11-s390x-dbg |   6.1.38-4 | s390x
linux-image-6.1.0-12-s390x |   6.1.52-1 | s390x
linux-image-6.1.0-12-s390x-dbg |   6.1.52-1 | s390x
linux-image-6.1.0-9-s390x |   6.1.27-1 | s390x
linux-image-6.1.0-9-s390x-dbg |   6.1.27-1 | s390x
loop-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
loop-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
loop-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
md-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
md-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
md-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
mtd-core-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
mtd-core-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
mtd-core-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
multipath-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
multipath-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
multipath-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
nbd-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
nbd-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
nbd-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
nic-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
nic-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
nic-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
scsi-core-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
scsi-core-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
scsi-core-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
scsi-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
scsi-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
scsi-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
udf-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
udf-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
udf-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x
xfs-modules-6.1.0-11-s390x-di |   6.1.38-4 | s390x
xfs-modules-6.1.0-12-s390x-di |   6.1.52-1 | s390x
xfs-modules-6.1.0-9-s390x-di |   6.1.27-1 | s390x

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:39:15 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

affs-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
affs-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
affs-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
affs-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
affs-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
affs-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
ata-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
ata-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
ata-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
ata-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
ata-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
ata-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
btrfs-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
btrfs-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
btrfs-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
btrfs-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
btrfs-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
btrfs-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
cdrom-core-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
cdrom-core-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
cdrom-core-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
cdrom-core-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
cdrom-core-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
cdrom-core-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
crc-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
crc-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
crc-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
crc-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
crc-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
crc-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
crypto-dm-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
crypto-dm-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
crypto-dm-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
crypto-dm-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
crypto-dm-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
crypto-dm-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
crypto-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
crypto-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
crypto-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
crypto-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
crypto-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
crypto-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
event-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
event-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
event-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
event-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
event-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
event-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
ext4-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
ext4-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
ext4-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
ext4-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
ext4-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
ext4-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
f2fs-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
f2fs-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
f2fs-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
f2fs-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
f2fs-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
f2fs-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
fat-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
fat-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
fat-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
fat-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
fat-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
fat-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
fb-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
fb-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
fb-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
fb-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
fb-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
fb-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
firewire-core-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
firewire-core-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
firewire-core-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
firewire-core-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
firewire-core-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
firewire-core-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
fuse-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
fuse-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
fuse-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
fuse-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
fuse-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
fuse-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
input-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
input-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
input-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
input-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
input-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
input-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
isofs-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
isofs-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
isofs-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
isofs-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
isofs-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
isofs-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
jfs-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
jfs-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
jfs-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
jfs-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
jfs-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
jfs-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
kernel-image-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
kernel-image-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
kernel-image-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
kernel-image-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
kernel-image-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
kernel-image-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
linux-headers-6.1.0-11-4kc-malta |   6.1.38-4 | mipsel
linux-headers-6.1.0-11-mips32r2el |   6.1.38-4 | mipsel
linux-headers-6.1.0-12-4kc-malta |   6.1.52-1 | mipsel
linux-headers-6.1.0-12-mips32r2el |   6.1.52-1 | mipsel
linux-headers-6.1.0-9-4kc-malta |   6.1.27-1 | mipsel
linux-headers-6.1.0-9-mips32r2el |   6.1.27-1 | mipsel
linux-image-6.1.0-11-4kc-malta |   6.1.38-4 | mipsel
linux-image-6.1.0-11-4kc-malta-dbg |   6.1.38-4 | mipsel
linux-image-6.1.0-11-mips32r2el |   6.1.38-4 | mipsel
linux-image-6.1.0-11-mips32r2el-dbg |   6.1.38-4 | mipsel
linux-image-6.1.0-12-4kc-malta |   6.1.52-1 | mipsel
linux-image-6.1.0-12-4kc-malta-dbg |   6.1.52-1 | mipsel
linux-image-6.1.0-12-mips32r2el |   6.1.52-1 | mipsel
linux-image-6.1.0-12-mips32r2el-dbg |   6.1.52-1 | mipsel
linux-image-6.1.0-9-4kc-malta |   6.1.27-1 | mipsel
linux-image-6.1.0-9-4kc-malta-dbg |   6.1.27-1 | mipsel
linux-image-6.1.0-9-mips32r2el |   6.1.27-1 | mipsel
linux-image-6.1.0-9-mips32r2el-dbg |   6.1.27-1 | mipsel
loop-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
loop-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
loop-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
loop-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
loop-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
loop-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
md-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
md-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
md-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
md-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
md-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
md-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
minix-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
minix-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
minix-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
minix-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
minix-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
minix-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
mmc-core-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
mmc-core-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
mmc-core-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
mmc-core-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
mmc-core-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
mmc-core-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
mmc-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
mmc-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
mmc-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
mmc-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
mmc-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
mmc-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
mouse-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
mouse-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
mouse-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
mouse-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
mouse-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
mouse-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
multipath-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
multipath-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
multipath-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
multipath-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
multipath-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
multipath-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
nbd-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
nbd-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
nbd-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
nbd-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
nbd-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
nbd-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
nfs-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
nfs-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
nfs-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
nfs-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
nfs-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
nfs-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
nic-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
nic-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
nic-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
nic-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
nic-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
nic-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
nic-shared-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
nic-shared-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
nic-shared-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
nic-shared-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
nic-shared-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
nic-shared-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
nic-usb-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
nic-usb-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
nic-usb-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
nic-usb-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
nic-usb-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
nic-usb-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
nic-wireless-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
nic-wireless-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
nic-wireless-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
nic-wireless-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
nic-wireless-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
nic-wireless-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
pata-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
pata-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
pata-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
pata-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
pata-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
pata-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
ppp-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
ppp-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
ppp-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
ppp-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
ppp-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
ppp-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
sata-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
sata-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
sata-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
sata-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
sata-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
sata-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
scsi-core-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
scsi-core-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
scsi-core-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
scsi-core-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
scsi-core-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
scsi-core-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
scsi-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
scsi-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
scsi-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
scsi-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
scsi-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
scsi-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
scsi-nic-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
scsi-nic-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
scsi-nic-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
scsi-nic-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
scsi-nic-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
scsi-nic-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
sound-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
sound-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
sound-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
sound-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
sound-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
sound-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
speakup-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
speakup-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
speakup-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
speakup-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
speakup-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
speakup-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
squashfs-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
squashfs-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
squashfs-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
squashfs-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
squashfs-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
squashfs-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
udf-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
udf-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
udf-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
udf-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
udf-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
udf-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
usb-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
usb-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
usb-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
usb-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
usb-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
usb-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
usb-serial-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
usb-serial-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
usb-serial-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
usb-serial-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
usb-serial-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
usb-serial-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
usb-storage-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
usb-storage-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
usb-storage-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
usb-storage-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
usb-storage-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
usb-storage-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel
xfs-modules-6.1.0-11-4kc-malta-di |   6.1.38-4 | mipsel
xfs-modules-6.1.0-11-mips32r2el-di |   6.1.38-4 | mipsel
xfs-modules-6.1.0-12-4kc-malta-di |   6.1.52-1 | mipsel
xfs-modules-6.1.0-12-mips32r2el-di |   6.1.52-1 | mipsel
xfs-modules-6.1.0-9-4kc-malta-di |   6.1.27-1 | mipsel
xfs-modules-6.1.0-9-mips32r2el-di |   6.1.27-1 | mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:40:24 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

ata-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
ata-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
ata-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
btrfs-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
btrfs-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
btrfs-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
cdrom-core-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
cdrom-core-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
cdrom-core-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
crc-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
crc-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
crc-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
crypto-dm-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
crypto-dm-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
crypto-dm-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
crypto-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
crypto-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
crypto-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
event-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
event-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
event-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
ext4-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
ext4-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
ext4-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
f2fs-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
f2fs-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
f2fs-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
fancontrol-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
fancontrol-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
fancontrol-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
fat-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
fat-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
fat-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
fb-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
fb-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
fb-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
firewire-core-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
firewire-core-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
firewire-core-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
fuse-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
fuse-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
fuse-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
hypervisor-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
hypervisor-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
hypervisor-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
i2c-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
i2c-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
i2c-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
input-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
input-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
input-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
isofs-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
isofs-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
isofs-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
jfs-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
jfs-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
jfs-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
kernel-image-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
kernel-image-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
kernel-image-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
linux-headers-6.1.0-11-powerpc64le |   6.1.38-4 | ppc64el
linux-headers-6.1.0-12-powerpc64le |   6.1.52-1 | ppc64el
linux-headers-6.1.0-9-powerpc64le |   6.1.27-1 | ppc64el
linux-image-6.1.0-11-powerpc64le |   6.1.38-4 | ppc64el
linux-image-6.1.0-11-powerpc64le-dbg |   6.1.38-4 | ppc64el
linux-image-6.1.0-12-powerpc64le |   6.1.52-1 | ppc64el
linux-image-6.1.0-12-powerpc64le-dbg |   6.1.52-1 | ppc64el
linux-image-6.1.0-9-powerpc64le |   6.1.27-1 | ppc64el
linux-image-6.1.0-9-powerpc64le-dbg |   6.1.27-1 | ppc64el
loop-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
loop-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
loop-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
md-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
md-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
md-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
mouse-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
mouse-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
mouse-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
mtd-core-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
mtd-core-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
mtd-core-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
multipath-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
multipath-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
multipath-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
nbd-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
nbd-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
nbd-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
nic-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
nic-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
nic-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
nic-shared-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
nic-shared-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
nic-shared-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
nic-usb-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
nic-usb-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
nic-usb-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
nic-wireless-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
nic-wireless-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
nic-wireless-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
ppp-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
ppp-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
ppp-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
sata-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
sata-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
sata-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
scsi-core-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
scsi-core-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
scsi-core-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
scsi-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
scsi-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
scsi-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
scsi-nic-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
scsi-nic-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
scsi-nic-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
serial-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
serial-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
serial-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
squashfs-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
squashfs-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
squashfs-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
udf-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
udf-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
udf-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
uinput-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
uinput-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
uinput-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
usb-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
usb-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
usb-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
usb-serial-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
usb-serial-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
usb-serial-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
usb-storage-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
usb-storage-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
usb-storage-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el
xfs-modules-6.1.0-11-powerpc64le-di |   6.1.38-4 | ppc64el
xfs-modules-6.1.0-12-powerpc64le-di |   6.1.52-1 | ppc64el
xfs-modules-6.1.0-9-powerpc64le-di |   6.1.27-1 | ppc64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:40:34 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

linux-headers-6.1.0-11-amd64 |   6.1.38-4 | amd64
linux-headers-6.1.0-11-cloud-amd64 |   6.1.38-4 | amd64
linux-headers-6.1.0-11-rt-amd64 |   6.1.38-4 | amd64
linux-headers-6.1.0-12-amd64 |   6.1.52-1 | amd64
linux-headers-6.1.0-12-cloud-amd64 |   6.1.52-1 | amd64
linux-headers-6.1.0-12-rt-amd64 |   6.1.52-1 | amd64
linux-headers-6.1.0-9-amd64 |   6.1.27-1 | amd64
linux-headers-6.1.0-9-cloud-amd64 |   6.1.27-1 | amd64
linux-headers-6.1.0-9-rt-amd64 |   6.1.27-1 | amd64
linux-image-6.1.0-11-amd64-dbg |   6.1.38-4 | amd64
linux-image-6.1.0-11-amd64-unsigned |   6.1.38-4 | amd64
linux-image-6.1.0-11-cloud-amd64-dbg |   6.1.38-4 | amd64
linux-image-6.1.0-11-cloud-amd64-unsigned |   6.1.38-4 | amd64
linux-image-6.1.0-11-rt-amd64-dbg |   6.1.38-4 | amd64
linux-image-6.1.0-11-rt-amd64-unsigned |   6.1.38-4 | amd64
linux-image-6.1.0-12-amd64-dbg |   6.1.52-1 | amd64
linux-image-6.1.0-12-amd64-unsigned |   6.1.52-1 | amd64
linux-image-6.1.0-12-cloud-amd64-dbg |   6.1.52-1 | amd64
linux-image-6.1.0-12-cloud-amd64-unsigned |   6.1.52-1 | amd64
linux-image-6.1.0-12-rt-amd64-dbg |   6.1.52-1 | amd64
linux-image-6.1.0-12-rt-amd64-unsigned |   6.1.52-1 | amd64
linux-image-6.1.0-9-amd64-dbg |   6.1.27-1 | amd64
linux-image-6.1.0-9-amd64-unsigned |   6.1.27-1 | amd64
linux-image-6.1.0-9-cloud-amd64-dbg |   6.1.27-1 | amd64
linux-image-6.1.0-9-cloud-amd64-unsigned |   6.1.27-1 | amd64
linux-image-6.1.0-9-rt-amd64-dbg |   6.1.27-1 | amd64
linux-image-6.1.0-9-rt-amd64-unsigned |   6.1.27-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:40:43 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

linux-headers-6.1.0-11-arm64 |   6.1.38-4 | arm64
linux-headers-6.1.0-11-cloud-arm64 |   6.1.38-4 | arm64
linux-headers-6.1.0-11-rt-arm64 |   6.1.38-4 | arm64
linux-headers-6.1.0-12-arm64 |   6.1.52-1 | arm64
linux-headers-6.1.0-12-cloud-arm64 |   6.1.52-1 | arm64
linux-headers-6.1.0-12-rt-arm64 |   6.1.52-1 | arm64
linux-headers-6.1.0-9-arm64 |   6.1.27-1 | arm64
linux-headers-6.1.0-9-cloud-arm64 |   6.1.27-1 | arm64
linux-headers-6.1.0-9-rt-arm64 |   6.1.27-1 | arm64
linux-image-6.1.0-11-arm64-dbg |   6.1.38-4 | arm64
linux-image-6.1.0-11-arm64-unsigned |   6.1.38-4 | arm64
linux-image-6.1.0-11-cloud-arm64-dbg |   6.1.38-4 | arm64
linux-image-6.1.0-11-cloud-arm64-unsigned |   6.1.38-4 | arm64
linux-image-6.1.0-11-rt-arm64-dbg |   6.1.38-4 | arm64
linux-image-6.1.0-11-rt-arm64-unsigned |   6.1.38-4 | arm64
linux-image-6.1.0-12-arm64-dbg |   6.1.52-1 | arm64
linux-image-6.1.0-12-arm64-unsigned |   6.1.52-1 | arm64
linux-image-6.1.0-12-cloud-arm64-dbg |   6.1.52-1 | arm64
linux-image-6.1.0-12-cloud-arm64-unsigned |   6.1.52-1 | arm64
linux-image-6.1.0-12-rt-arm64-dbg |   6.1.52-1 | arm64
linux-image-6.1.0-12-rt-arm64-unsigned |   6.1.52-1 | arm64
linux-image-6.1.0-9-arm64-dbg |   6.1.27-1 | arm64
linux-image-6.1.0-9-arm64-unsigned |   6.1.27-1 | arm64
linux-image-6.1.0-9-cloud-arm64-dbg |   6.1.27-1 | arm64
linux-image-6.1.0-9-cloud-arm64-unsigned |   6.1.27-1 | arm64
linux-image-6.1.0-9-rt-arm64-dbg |   6.1.27-1 | arm64
linux-image-6.1.0-9-rt-arm64-unsigned |   6.1.27-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:40:54 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

btrfs-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
btrfs-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
cdrom-core-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
cdrom-core-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
crc-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
crc-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
crypto-dm-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
crypto-dm-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
crypto-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
crypto-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
event-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
event-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
ext4-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
ext4-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
f2fs-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
f2fs-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
fat-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
fat-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
fb-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
fb-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
fuse-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
fuse-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
input-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
input-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
ipv6-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
ipv6-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
isofs-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
isofs-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
jffs2-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
jffs2-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
jfs-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
jfs-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
kernel-image-6.1.0-11-marvell-di |   6.1.38-4 | armel
kernel-image-6.1.0-9-marvell-di |   6.1.27-1 | armel
leds-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
leds-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
linux-headers-6.1.0-11-marvell |   6.1.38-4 | armel
linux-headers-6.1.0-11-rpi |   6.1.38-4 | armel
linux-headers-6.1.0-9-marvell |   6.1.27-1 | armel
linux-headers-6.1.0-9-rpi |   6.1.27-1 | armel
linux-image-6.1.0-11-marvell |   6.1.38-4 | armel
linux-image-6.1.0-11-marvell-dbg |   6.1.38-4 | armel
linux-image-6.1.0-11-rpi |   6.1.38-4 | armel
linux-image-6.1.0-11-rpi-dbg |   6.1.38-4 | armel
linux-image-6.1.0-9-marvell |   6.1.27-1 | armel
linux-image-6.1.0-9-marvell-dbg |   6.1.27-1 | armel
linux-image-6.1.0-9-rpi |   6.1.27-1 | armel
linux-image-6.1.0-9-rpi-dbg |   6.1.27-1 | armel
loop-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
loop-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
md-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
md-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
minix-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
minix-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
mmc-core-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
mmc-core-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
mmc-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
mmc-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
mouse-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
mouse-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
mtd-core-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
mtd-core-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
mtd-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
mtd-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
multipath-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
multipath-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
nbd-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
nbd-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
nic-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
nic-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
nic-shared-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
nic-shared-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
nic-usb-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
nic-usb-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
ppp-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
ppp-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
sata-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
sata-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
scsi-core-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
scsi-core-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
squashfs-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
squashfs-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
udf-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
udf-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
uinput-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
uinput-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
usb-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
usb-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
usb-serial-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
usb-serial-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel
usb-storage-modules-6.1.0-11-marvell-di |   6.1.38-4 | armel
usb-storage-modules-6.1.0-9-marvell-di |   6.1.27-1 | armel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:41:07 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

ata-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
ata-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
ata-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
btrfs-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
btrfs-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
btrfs-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
cdrom-core-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
cdrom-core-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
cdrom-core-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
crc-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
crc-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
crc-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
crypto-dm-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
crypto-dm-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
crypto-dm-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
crypto-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
crypto-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
crypto-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
efi-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
efi-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
efi-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
event-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
event-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
event-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
ext4-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
ext4-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
ext4-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
f2fs-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
f2fs-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
f2fs-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
fat-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
fat-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
fat-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
fb-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
fb-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
fb-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
fuse-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
fuse-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
fuse-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
i2c-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
i2c-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
i2c-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
input-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
input-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
input-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
isofs-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
isofs-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
isofs-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
jfs-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
jfs-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
jfs-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
kernel-image-6.1.0-11-armmp-di |   6.1.38-4 | armhf
kernel-image-6.1.0-12-armmp-di |   6.1.52-1 | armhf
kernel-image-6.1.0-9-armmp-di |   6.1.27-1 | armhf
leds-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
leds-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
leds-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
linux-headers-6.1.0-11-armmp |   6.1.38-4 | armhf
linux-headers-6.1.0-11-armmp-lpae |   6.1.38-4 | armhf
linux-headers-6.1.0-11-rt-armmp |   6.1.38-4 | armhf
linux-headers-6.1.0-12-armmp |   6.1.52-1 | armhf
linux-headers-6.1.0-12-armmp-lpae |   6.1.52-1 | armhf
linux-headers-6.1.0-12-rt-armmp |   6.1.52-1 | armhf
linux-headers-6.1.0-9-armmp |   6.1.27-1 | armhf
linux-headers-6.1.0-9-armmp-lpae |   6.1.27-1 | armhf
linux-headers-6.1.0-9-rt-armmp |   6.1.27-1 | armhf
linux-image-6.1.0-11-armmp |   6.1.38-4 | armhf
linux-image-6.1.0-11-armmp-dbg |   6.1.38-4 | armhf
linux-image-6.1.0-11-armmp-lpae |   6.1.38-4 | armhf
linux-image-6.1.0-11-armmp-lpae-dbg |   6.1.38-4 | armhf
linux-image-6.1.0-11-rt-armmp |   6.1.38-4 | armhf
linux-image-6.1.0-11-rt-armmp-dbg |   6.1.38-4 | armhf
linux-image-6.1.0-12-armmp |   6.1.52-1 | armhf
linux-image-6.1.0-12-armmp-dbg |   6.1.52-1 | armhf
linux-image-6.1.0-12-armmp-lpae |   6.1.52-1 | armhf
linux-image-6.1.0-12-armmp-lpae-dbg |   6.1.52-1 | armhf
linux-image-6.1.0-12-rt-armmp |   6.1.52-1 | armhf
linux-image-6.1.0-12-rt-armmp-dbg |   6.1.52-1 | armhf
linux-image-6.1.0-9-armmp |   6.1.27-1 | armhf
linux-image-6.1.0-9-armmp-dbg |   6.1.27-1 | armhf
linux-image-6.1.0-9-armmp-lpae |   6.1.27-1 | armhf
linux-image-6.1.0-9-armmp-lpae-dbg |   6.1.27-1 | armhf
linux-image-6.1.0-9-rt-armmp |   6.1.27-1 | armhf
linux-image-6.1.0-9-rt-armmp-dbg |   6.1.27-1 | armhf
loop-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
loop-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
loop-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
md-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
md-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
md-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
mmc-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
mmc-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
mmc-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
mtd-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
mtd-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
mtd-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
multipath-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
multipath-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
multipath-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
nbd-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
nbd-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
nbd-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
nic-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
nic-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
nic-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
nic-shared-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
nic-shared-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
nic-shared-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
nic-usb-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
nic-usb-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
nic-usb-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
nic-wireless-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
nic-wireless-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
nic-wireless-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
pata-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
pata-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
pata-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
ppp-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
ppp-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
ppp-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
sata-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
sata-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
sata-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
scsi-core-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
scsi-core-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
scsi-core-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
scsi-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
scsi-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
scsi-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
scsi-nic-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
scsi-nic-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
scsi-nic-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
sound-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
sound-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
sound-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
speakup-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
speakup-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
speakup-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
squashfs-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
squashfs-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
squashfs-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
udf-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
udf-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
udf-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
uinput-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
uinput-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
uinput-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
usb-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
usb-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
usb-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
usb-serial-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
usb-serial-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
usb-serial-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf
usb-storage-modules-6.1.0-11-armmp-di |   6.1.38-4 | armhf
usb-storage-modules-6.1.0-12-armmp-di |   6.1.52-1 | armhf
usb-storage-modules-6.1.0-9-armmp-di |   6.1.27-1 | armhf

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:41:18 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

linux-headers-6.1.0-11-686 |   6.1.38-4 | i386
linux-headers-6.1.0-11-686-pae |   6.1.38-4 | i386
linux-headers-6.1.0-11-rt-686-pae |   6.1.38-4 | i386
linux-headers-6.1.0-12-686 |   6.1.52-1 | i386
linux-headers-6.1.0-12-686-pae |   6.1.52-1 | i386
linux-headers-6.1.0-12-rt-686-pae |   6.1.52-1 | i386
linux-headers-6.1.0-9-686 |   6.1.27-1 | i386
linux-headers-6.1.0-9-686-pae |   6.1.27-1 | i386
linux-headers-6.1.0-9-rt-686-pae |   6.1.27-1 | i386
linux-image-6.1.0-11-686-dbg |   6.1.38-4 | i386
linux-image-6.1.0-11-686-pae-dbg |   6.1.38-4 | i386
linux-image-6.1.0-11-686-pae-unsigned |   6.1.38-4 | i386
linux-image-6.1.0-11-686-unsigned |   6.1.38-4 | i386
linux-image-6.1.0-11-rt-686-pae-dbg |   6.1.38-4 | i386
linux-image-6.1.0-11-rt-686-pae-unsigned |   6.1.38-4 | i386
linux-image-6.1.0-12-686-dbg |   6.1.52-1 | i386
linux-image-6.1.0-12-686-pae-dbg |   6.1.52-1 | i386
linux-image-6.1.0-12-686-pae-unsigned |   6.1.52-1 | i386
linux-image-6.1.0-12-686-unsigned |   6.1.52-1 | i386
linux-image-6.1.0-12-rt-686-pae-dbg |   6.1.52-1 | i386
linux-image-6.1.0-12-rt-686-pae-unsigned |   6.1.52-1 | i386
linux-image-6.1.0-9-686-dbg |   6.1.27-1 | i386
linux-image-6.1.0-9-686-pae-dbg |   6.1.27-1 | i386
linux-image-6.1.0-9-686-pae-unsigned |   6.1.27-1 | i386
linux-image-6.1.0-9-686-unsigned |   6.1.27-1 | i386
linux-image-6.1.0-9-rt-686-pae-dbg |   6.1.27-1 | i386
linux-image-6.1.0-9-rt-686-pae-unsigned |   6.1.27-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:41:33 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

affs-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
affs-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
affs-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
affs-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
affs-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
affs-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
ata-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
ata-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
ata-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
ata-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
ata-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
ata-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
btrfs-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
btrfs-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
btrfs-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
btrfs-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
btrfs-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
btrfs-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
cdrom-core-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
cdrom-core-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
cdrom-core-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
cdrom-core-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
cdrom-core-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
cdrom-core-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
crc-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
crc-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
crc-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
crc-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
crc-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
crc-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
crypto-dm-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
crypto-dm-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
crypto-dm-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
crypto-dm-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
crypto-dm-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
crypto-dm-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
crypto-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
crypto-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
crypto-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
crypto-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
crypto-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
crypto-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
event-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
event-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
event-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
event-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
event-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
event-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
ext4-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
ext4-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
ext4-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
ext4-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
ext4-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
ext4-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
f2fs-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
f2fs-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
f2fs-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
f2fs-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
f2fs-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
f2fs-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
fat-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
fat-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
fat-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
fat-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
fat-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
fat-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
fb-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
fb-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
fb-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
fb-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
fb-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
fb-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
firewire-core-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
firewire-core-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
firewire-core-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
firewire-core-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
firewire-core-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
firewire-core-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
fuse-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
fuse-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
fuse-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
fuse-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
fuse-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
fuse-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
input-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
input-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
input-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
input-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
input-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
input-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
isofs-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
isofs-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
isofs-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
isofs-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
isofs-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
isofs-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
jfs-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
jfs-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
jfs-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
jfs-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
jfs-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
jfs-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
kernel-image-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
kernel-image-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
kernel-image-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
kernel-image-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
kernel-image-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
kernel-image-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
linux-headers-6.1.0-11-5kc-malta |   6.1.38-4 | mips64el
linux-headers-6.1.0-11-mips64r2el |   6.1.38-4 | mips64el
linux-headers-6.1.0-12-5kc-malta |   6.1.52-1 | mips64el
linux-headers-6.1.0-12-mips64r2el |   6.1.52-1 | mips64el
linux-headers-6.1.0-9-5kc-malta |   6.1.27-1 | mips64el
linux-headers-6.1.0-9-mips64r2el |   6.1.27-1 | mips64el
linux-image-6.1.0-11-5kc-malta |   6.1.38-4 | mips64el
linux-image-6.1.0-11-5kc-malta-dbg |   6.1.38-4 | mips64el
linux-image-6.1.0-11-mips64r2el |   6.1.38-4 | mips64el
linux-image-6.1.0-11-mips64r2el-dbg |   6.1.38-4 | mips64el
linux-image-6.1.0-12-5kc-malta |   6.1.52-1 | mips64el
linux-image-6.1.0-12-5kc-malta-dbg |   6.1.52-1 | mips64el
linux-image-6.1.0-12-mips64r2el |   6.1.52-1 | mips64el
linux-image-6.1.0-12-mips64r2el-dbg |   6.1.52-1 | mips64el
linux-image-6.1.0-9-5kc-malta |   6.1.27-1 | mips64el
linux-image-6.1.0-9-5kc-malta-dbg |   6.1.27-1 | mips64el
linux-image-6.1.0-9-mips64r2el |   6.1.27-1 | mips64el
linux-image-6.1.0-9-mips64r2el-dbg |   6.1.27-1 | mips64el
loop-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
loop-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
loop-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
loop-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
loop-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
loop-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
md-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
md-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
md-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
md-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
md-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
md-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
minix-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
minix-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
minix-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
minix-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
minix-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
minix-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
mmc-core-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
mmc-core-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
mmc-core-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
mmc-core-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
mmc-core-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
mmc-core-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
mmc-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
mmc-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
mmc-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
mmc-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
mmc-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
mmc-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
mouse-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
mouse-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
mouse-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
mouse-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
mouse-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
mouse-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
multipath-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
multipath-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
multipath-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
multipath-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
multipath-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
multipath-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
nbd-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
nbd-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
nbd-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
nbd-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
nbd-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
nbd-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
nfs-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
nfs-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
nfs-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
nfs-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
nfs-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
nfs-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
nic-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
nic-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
nic-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
nic-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
nic-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
nic-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
nic-shared-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
nic-shared-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
nic-shared-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
nic-shared-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
nic-shared-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
nic-shared-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
nic-usb-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
nic-usb-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
nic-usb-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
nic-usb-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
nic-usb-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
nic-usb-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
nic-wireless-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
nic-wireless-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
nic-wireless-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
nic-wireless-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
nic-wireless-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
nic-wireless-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
pata-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
pata-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
pata-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
pata-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
pata-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
pata-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
ppp-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
ppp-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
ppp-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
ppp-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
ppp-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
ppp-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
sata-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
sata-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
sata-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
sata-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
sata-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
sata-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
scsi-core-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
scsi-core-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
scsi-core-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
scsi-core-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
scsi-core-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
scsi-core-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
scsi-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
scsi-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
scsi-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
scsi-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
scsi-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
scsi-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
scsi-nic-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
scsi-nic-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
scsi-nic-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
scsi-nic-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
scsi-nic-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
scsi-nic-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
sound-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
sound-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
sound-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
sound-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
sound-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
sound-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
speakup-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
speakup-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
speakup-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
speakup-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
speakup-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
speakup-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
squashfs-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
squashfs-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
squashfs-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
squashfs-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
squashfs-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
squashfs-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
udf-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
udf-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
udf-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
udf-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
udf-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
udf-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
usb-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
usb-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
usb-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
usb-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
usb-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
usb-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
usb-serial-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
usb-serial-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
usb-serial-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
usb-serial-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
usb-serial-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
usb-serial-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
usb-storage-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
usb-storage-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
usb-storage-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
usb-storage-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
usb-storage-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
usb-storage-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el
xfs-modules-6.1.0-11-5kc-malta-di |   6.1.38-4 | mips64el
xfs-modules-6.1.0-11-mips64r2el-di |   6.1.38-4 | mips64el
xfs-modules-6.1.0-12-5kc-malta-di |   6.1.52-1 | mips64el
xfs-modules-6.1.0-12-mips64r2el-di |   6.1.52-1 | mips64el
xfs-modules-6.1.0-9-5kc-malta-di |   6.1.27-1 | mips64el
xfs-modules-6.1.0-9-mips64r2el-di |   6.1.27-1 | mips64el

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:41:49 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

affs-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
affs-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
affs-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
affs-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
affs-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
affs-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
ata-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
ata-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
ata-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
ata-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
ata-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
ata-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
btrfs-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
btrfs-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
btrfs-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
btrfs-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
btrfs-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
btrfs-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
cdrom-core-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
cdrom-core-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
cdrom-core-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
crc-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
crc-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
crc-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
crc-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
crc-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
crc-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
crypto-dm-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
crypto-dm-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
crypto-dm-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
crypto-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
crypto-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
crypto-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
crypto-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
crypto-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
crypto-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
event-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
event-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
event-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
event-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
event-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
event-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
ext4-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
ext4-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
ext4-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
ext4-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
ext4-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
ext4-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
f2fs-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
f2fs-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
f2fs-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
f2fs-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
f2fs-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
f2fs-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
fat-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
fat-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
fat-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
fat-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
fat-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
fat-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
fb-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
fb-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
fb-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
fb-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
fb-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
fb-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
firewire-core-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
firewire-core-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
firewire-core-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
firewire-core-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
firewire-core-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
firewire-core-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
fuse-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
fuse-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
fuse-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
fuse-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
fuse-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
fuse-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
input-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
input-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
input-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
input-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
input-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
input-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
isofs-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
isofs-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
isofs-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
isofs-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
isofs-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
isofs-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
jfs-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
jfs-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
jfs-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
jfs-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
jfs-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
jfs-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
kernel-image-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
kernel-image-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
kernel-image-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
kernel-image-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
kernel-image-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
kernel-image-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
linux-headers-6.1.0-11-loongson-3 |   6.1.38-4 | mips64el, mipsel
linux-headers-6.1.0-11-octeon |   6.1.38-4 | mips64el, mipsel
linux-headers-6.1.0-12-loongson-3 |   6.1.52-1 | mips64el, mipsel
linux-headers-6.1.0-12-octeon |   6.1.52-1 | mips64el, mipsel
linux-headers-6.1.0-9-loongson-3 |   6.1.27-1 | mips64el, mipsel
linux-headers-6.1.0-9-octeon |   6.1.27-1 | mips64el, mipsel
linux-image-6.1.0-11-loongson-3 |   6.1.38-4 | mips64el, mipsel
linux-image-6.1.0-11-loongson-3-dbg |   6.1.38-4 | mips64el, mipsel
linux-image-6.1.0-11-octeon |   6.1.38-4 | mips64el, mipsel
linux-image-6.1.0-11-octeon-dbg |   6.1.38-4 | mips64el, mipsel
linux-image-6.1.0-12-loongson-3 |   6.1.52-1 | mips64el, mipsel
linux-image-6.1.0-12-loongson-3-dbg |   6.1.52-1 | mips64el, mipsel
linux-image-6.1.0-12-octeon |   6.1.52-1 | mips64el, mipsel
linux-image-6.1.0-12-octeon-dbg |   6.1.52-1 | mips64el, mipsel
linux-image-6.1.0-9-loongson-3 |   6.1.27-1 | mips64el, mipsel
linux-image-6.1.0-9-loongson-3-dbg |   6.1.27-1 | mips64el, mipsel
linux-image-6.1.0-9-octeon |   6.1.27-1 | mips64el, mipsel
linux-image-6.1.0-9-octeon-dbg |   6.1.27-1 | mips64el, mipsel
loop-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
loop-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
loop-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
loop-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
loop-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
loop-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
md-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
md-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
md-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
md-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
md-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
md-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
minix-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
minix-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
minix-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
minix-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
minix-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
minix-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
mmc-core-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
mmc-core-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
mmc-core-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
mmc-core-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
mmc-core-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
mmc-core-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
mmc-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
mmc-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
mmc-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
mmc-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
mmc-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
mmc-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
mouse-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
mouse-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
mouse-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
mouse-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
mouse-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
mouse-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
multipath-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
multipath-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
multipath-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
multipath-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
multipath-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
multipath-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
nbd-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
nbd-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
nbd-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
nbd-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
nbd-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
nbd-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
nfs-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
nfs-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
nfs-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
nfs-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
nfs-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
nfs-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
nic-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
nic-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
nic-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
nic-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
nic-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
nic-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
nic-shared-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
nic-shared-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
nic-shared-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
nic-shared-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
nic-shared-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
nic-shared-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
nic-usb-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
nic-usb-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
nic-usb-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
nic-usb-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
nic-usb-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
nic-usb-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
nic-wireless-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
nic-wireless-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
nic-wireless-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
pata-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
pata-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
pata-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
pata-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
pata-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
pata-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
ppp-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
ppp-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
ppp-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
ppp-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
ppp-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
ppp-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
sata-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
sata-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
sata-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
sata-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
sata-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
sata-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
scsi-core-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
scsi-core-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
scsi-core-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
scsi-core-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
scsi-core-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
scsi-core-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
scsi-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
scsi-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
scsi-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
scsi-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
scsi-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
scsi-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
scsi-nic-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
scsi-nic-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
scsi-nic-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
sound-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
sound-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
sound-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
sound-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
sound-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
sound-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
speakup-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
speakup-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
speakup-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
speakup-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
speakup-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
speakup-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
squashfs-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
squashfs-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
squashfs-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
squashfs-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
squashfs-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
squashfs-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
udf-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
udf-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
udf-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
udf-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
udf-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
udf-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
usb-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
usb-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
usb-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
usb-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
usb-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
usb-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
usb-serial-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
usb-serial-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
usb-serial-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
usb-serial-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
usb-serial-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
usb-serial-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
usb-storage-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
usb-storage-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
usb-storage-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
usb-storage-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
usb-storage-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
usb-storage-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel
xfs-modules-6.1.0-11-loongson-3-di |   6.1.38-4 | mips64el, mipsel
xfs-modules-6.1.0-11-octeon-di |   6.1.38-4 | mips64el, mipsel
xfs-modules-6.1.0-12-loongson-3-di |   6.1.52-1 | mips64el, mipsel
xfs-modules-6.1.0-12-octeon-di |   6.1.52-1 | mips64el, mipsel
xfs-modules-6.1.0-9-loongson-3-di |   6.1.27-1 | mips64el, mipsel
xfs-modules-6.1.0-9-octeon-di |   6.1.27-1 | mips64el, mipsel

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:42:01 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

acpi-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
acpi-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
acpi-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
ata-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
ata-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
ata-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
btrfs-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
btrfs-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
btrfs-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
cdrom-core-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
cdrom-core-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
cdrom-core-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
crc-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
crc-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
crc-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
crypto-dm-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
crypto-dm-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
crypto-dm-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
crypto-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
crypto-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
crypto-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
efi-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
efi-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
efi-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
event-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
event-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
event-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
ext4-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
ext4-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
ext4-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
f2fs-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
f2fs-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
f2fs-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
fat-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
fat-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
fat-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
fb-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
fb-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
fb-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
firewire-core-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
firewire-core-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
firewire-core-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
fuse-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
fuse-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
fuse-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
i2c-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
i2c-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
i2c-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
input-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
input-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
input-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
isofs-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
isofs-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
isofs-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
jfs-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
jfs-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
jfs-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
kernel-image-6.1.0-11-amd64-di |   6.1.38-4 | amd64
kernel-image-6.1.0-12-amd64-di |   6.1.52-1 | amd64
kernel-image-6.1.0-9-amd64-di |   6.1.27-1 | amd64
linux-image-6.1.0-11-amd64 |   6.1.38-4 | amd64
linux-image-6.1.0-11-cloud-amd64 |   6.1.38-4 | amd64
linux-image-6.1.0-11-rt-amd64 |   6.1.38-4 | amd64
linux-image-6.1.0-12-amd64 |   6.1.52-1 | amd64
linux-image-6.1.0-12-cloud-amd64 |   6.1.52-1 | amd64
linux-image-6.1.0-12-rt-amd64 |   6.1.52-1 | amd64
linux-image-6.1.0-9-amd64 |   6.1.27-1 | amd64
linux-image-6.1.0-9-cloud-amd64 |   6.1.27-1 | amd64
linux-image-6.1.0-9-rt-amd64 |   6.1.27-1 | amd64
loop-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
loop-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
loop-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
md-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
md-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
md-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
mmc-core-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
mmc-core-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
mmc-core-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
mmc-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
mmc-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
mmc-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
mouse-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
mouse-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
mouse-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
mtd-core-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
mtd-core-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
mtd-core-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
multipath-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
multipath-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
multipath-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
nbd-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
nbd-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
nbd-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
nic-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
nic-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
nic-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
nic-pcmcia-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
nic-pcmcia-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
nic-pcmcia-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
nic-shared-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
nic-shared-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
nic-shared-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
nic-usb-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
nic-usb-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
nic-usb-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
nic-wireless-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
nic-wireless-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
nic-wireless-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
pata-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
pata-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
pata-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
pcmcia-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
pcmcia-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
pcmcia-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
pcmcia-storage-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
pcmcia-storage-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
pcmcia-storage-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
ppp-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
ppp-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
ppp-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
rfkill-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
rfkill-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
rfkill-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
sata-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
sata-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
sata-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
scsi-core-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
scsi-core-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
scsi-core-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
scsi-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
scsi-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
scsi-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
scsi-nic-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
scsi-nic-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
scsi-nic-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
serial-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
serial-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
serial-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
sound-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
sound-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
sound-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
speakup-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
speakup-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
speakup-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
squashfs-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
squashfs-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
squashfs-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
udf-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
udf-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
udf-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
uinput-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
uinput-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
uinput-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
usb-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
usb-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
usb-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
usb-serial-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
usb-serial-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
usb-serial-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
usb-storage-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
usb-storage-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
usb-storage-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64
xfs-modules-6.1.0-11-amd64-di |   6.1.38-4 | amd64
xfs-modules-6.1.0-12-amd64-di |   6.1.52-1 | amd64
xfs-modules-6.1.0-9-amd64-di |   6.1.27-1 | amd64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-amd64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:42:12 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

ata-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
ata-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
ata-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
btrfs-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
btrfs-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
btrfs-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
cdrom-core-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
cdrom-core-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
cdrom-core-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
crc-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
crc-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
crc-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
crypto-dm-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
crypto-dm-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
crypto-dm-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
crypto-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
crypto-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
crypto-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
efi-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
efi-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
efi-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
event-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
event-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
event-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
ext4-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
ext4-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
ext4-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
f2fs-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
f2fs-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
f2fs-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
fat-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
fat-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
fat-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
fb-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
fb-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
fb-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
fuse-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
fuse-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
fuse-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
i2c-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
i2c-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
i2c-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
input-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
input-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
input-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
isofs-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
isofs-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
isofs-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
jfs-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
jfs-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
jfs-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
kernel-image-6.1.0-11-arm64-di |   6.1.38-4 | arm64
kernel-image-6.1.0-12-arm64-di |   6.1.52-1 | arm64
kernel-image-6.1.0-9-arm64-di |   6.1.27-1 | arm64
leds-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
leds-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
leds-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
linux-image-6.1.0-11-arm64 |   6.1.38-4 | arm64
linux-image-6.1.0-11-cloud-arm64 |   6.1.38-4 | arm64
linux-image-6.1.0-11-rt-arm64 |   6.1.38-4 | arm64
linux-image-6.1.0-12-arm64 |   6.1.52-1 | arm64
linux-image-6.1.0-12-cloud-arm64 |   6.1.52-1 | arm64
linux-image-6.1.0-12-rt-arm64 |   6.1.52-1 | arm64
linux-image-6.1.0-9-arm64 |   6.1.27-1 | arm64
linux-image-6.1.0-9-cloud-arm64 |   6.1.27-1 | arm64
linux-image-6.1.0-9-rt-arm64 |   6.1.27-1 | arm64
loop-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
loop-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
loop-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
md-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
md-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
md-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
mmc-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
mmc-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
mmc-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
mtd-core-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
mtd-core-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
mtd-core-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
multipath-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
multipath-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
multipath-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
nbd-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
nbd-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
nbd-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
nic-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
nic-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
nic-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
nic-shared-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
nic-shared-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
nic-shared-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
nic-usb-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
nic-usb-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
nic-usb-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
nic-wireless-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
nic-wireless-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
nic-wireless-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
ppp-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
ppp-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
ppp-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
sata-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
sata-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
sata-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
scsi-core-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
scsi-core-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
scsi-core-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
scsi-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
scsi-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
scsi-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
scsi-nic-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
scsi-nic-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
scsi-nic-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
sound-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
sound-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
sound-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
speakup-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
speakup-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
speakup-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
squashfs-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
squashfs-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
squashfs-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
udf-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
udf-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
udf-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
uinput-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
uinput-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
uinput-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
usb-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
usb-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
usb-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
usb-serial-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
usb-serial-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
usb-serial-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
usb-storage-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
usb-storage-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
usb-storage-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64
xfs-modules-6.1.0-11-arm64-di |   6.1.38-4 | arm64
xfs-modules-6.1.0-12-arm64-di |   6.1.52-1 | arm64
xfs-modules-6.1.0-9-arm64-di |   6.1.27-1 | arm64

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-arm64)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:42:25 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

acpi-modules-6.1.0-11-686-di |   6.1.38-4 | i386
acpi-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
acpi-modules-6.1.0-12-686-di |   6.1.52-1 | i386
acpi-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
acpi-modules-6.1.0-9-686-di |   6.1.27-1 | i386
acpi-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
ata-modules-6.1.0-11-686-di |   6.1.38-4 | i386
ata-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
ata-modules-6.1.0-12-686-di |   6.1.52-1 | i386
ata-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
ata-modules-6.1.0-9-686-di |   6.1.27-1 | i386
ata-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
btrfs-modules-6.1.0-11-686-di |   6.1.38-4 | i386
btrfs-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
btrfs-modules-6.1.0-12-686-di |   6.1.52-1 | i386
btrfs-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
btrfs-modules-6.1.0-9-686-di |   6.1.27-1 | i386
btrfs-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
cdrom-core-modules-6.1.0-11-686-di |   6.1.38-4 | i386
cdrom-core-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
cdrom-core-modules-6.1.0-12-686-di |   6.1.52-1 | i386
cdrom-core-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
cdrom-core-modules-6.1.0-9-686-di |   6.1.27-1 | i386
cdrom-core-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
crc-modules-6.1.0-11-686-di |   6.1.38-4 | i386
crc-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
crc-modules-6.1.0-12-686-di |   6.1.52-1 | i386
crc-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
crc-modules-6.1.0-9-686-di |   6.1.27-1 | i386
crc-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
crypto-dm-modules-6.1.0-11-686-di |   6.1.38-4 | i386
crypto-dm-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
crypto-dm-modules-6.1.0-12-686-di |   6.1.52-1 | i386
crypto-dm-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
crypto-dm-modules-6.1.0-9-686-di |   6.1.27-1 | i386
crypto-dm-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
crypto-modules-6.1.0-11-686-di |   6.1.38-4 | i386
crypto-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
crypto-modules-6.1.0-12-686-di |   6.1.52-1 | i386
crypto-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
crypto-modules-6.1.0-9-686-di |   6.1.27-1 | i386
crypto-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
efi-modules-6.1.0-11-686-di |   6.1.38-4 | i386
efi-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
efi-modules-6.1.0-12-686-di |   6.1.52-1 | i386
efi-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
efi-modules-6.1.0-9-686-di |   6.1.27-1 | i386
efi-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
event-modules-6.1.0-11-686-di |   6.1.38-4 | i386
event-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
event-modules-6.1.0-12-686-di |   6.1.52-1 | i386
event-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
event-modules-6.1.0-9-686-di |   6.1.27-1 | i386
event-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
ext4-modules-6.1.0-11-686-di |   6.1.38-4 | i386
ext4-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
ext4-modules-6.1.0-12-686-di |   6.1.52-1 | i386
ext4-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
ext4-modules-6.1.0-9-686-di |   6.1.27-1 | i386
ext4-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
f2fs-modules-6.1.0-11-686-di |   6.1.38-4 | i386
f2fs-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
f2fs-modules-6.1.0-12-686-di |   6.1.52-1 | i386
f2fs-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
f2fs-modules-6.1.0-9-686-di |   6.1.27-1 | i386
f2fs-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
fat-modules-6.1.0-11-686-di |   6.1.38-4 | i386
fat-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
fat-modules-6.1.0-12-686-di |   6.1.52-1 | i386
fat-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
fat-modules-6.1.0-9-686-di |   6.1.27-1 | i386
fat-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
fb-modules-6.1.0-11-686-di |   6.1.38-4 | i386
fb-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
fb-modules-6.1.0-12-686-di |   6.1.52-1 | i386
fb-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
fb-modules-6.1.0-9-686-di |   6.1.27-1 | i386
fb-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
firewire-core-modules-6.1.0-11-686-di |   6.1.38-4 | i386
firewire-core-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
firewire-core-modules-6.1.0-12-686-di |   6.1.52-1 | i386
firewire-core-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
firewire-core-modules-6.1.0-9-686-di |   6.1.27-1 | i386
firewire-core-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
fuse-modules-6.1.0-11-686-di |   6.1.38-4 | i386
fuse-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
fuse-modules-6.1.0-12-686-di |   6.1.52-1 | i386
fuse-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
fuse-modules-6.1.0-9-686-di |   6.1.27-1 | i386
fuse-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
i2c-modules-6.1.0-11-686-di |   6.1.38-4 | i386
i2c-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
i2c-modules-6.1.0-12-686-di |   6.1.52-1 | i386
i2c-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
i2c-modules-6.1.0-9-686-di |   6.1.27-1 | i386
i2c-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
input-modules-6.1.0-11-686-di |   6.1.38-4 | i386
input-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
input-modules-6.1.0-12-686-di |   6.1.52-1 | i386
input-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
input-modules-6.1.0-9-686-di |   6.1.27-1 | i386
input-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
isofs-modules-6.1.0-11-686-di |   6.1.38-4 | i386
isofs-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
isofs-modules-6.1.0-12-686-di |   6.1.52-1 | i386
isofs-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
isofs-modules-6.1.0-9-686-di |   6.1.27-1 | i386
isofs-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
jfs-modules-6.1.0-11-686-di |   6.1.38-4 | i386
jfs-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
jfs-modules-6.1.0-12-686-di |   6.1.52-1 | i386
jfs-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
jfs-modules-6.1.0-9-686-di |   6.1.27-1 | i386
jfs-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
kernel-image-6.1.0-11-686-di |   6.1.38-4 | i386
kernel-image-6.1.0-11-686-pae-di |   6.1.38-4 | i386
kernel-image-6.1.0-12-686-di |   6.1.52-1 | i386
kernel-image-6.1.0-12-686-pae-di |   6.1.52-1 | i386
kernel-image-6.1.0-9-686-di |   6.1.27-1 | i386
kernel-image-6.1.0-9-686-pae-di |   6.1.27-1 | i386
linux-image-6.1.0-11-686 |   6.1.38-4 | i386
linux-image-6.1.0-11-686-pae |   6.1.38-4 | i386
linux-image-6.1.0-11-rt-686-pae |   6.1.38-4 | i386
linux-image-6.1.0-12-686 |   6.1.52-1 | i386
linux-image-6.1.0-12-686-pae |   6.1.52-1 | i386
linux-image-6.1.0-12-rt-686-pae |   6.1.52-1 | i386
linux-image-6.1.0-9-686 |   6.1.27-1 | i386
linux-image-6.1.0-9-686-pae |   6.1.27-1 | i386
linux-image-6.1.0-9-rt-686-pae |   6.1.27-1 | i386
loop-modules-6.1.0-11-686-di |   6.1.38-4 | i386
loop-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
loop-modules-6.1.0-12-686-di |   6.1.52-1 | i386
loop-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
loop-modules-6.1.0-9-686-di |   6.1.27-1 | i386
loop-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
md-modules-6.1.0-11-686-di |   6.1.38-4 | i386
md-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
md-modules-6.1.0-12-686-di |   6.1.52-1 | i386
md-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
md-modules-6.1.0-9-686-di |   6.1.27-1 | i386
md-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
mmc-core-modules-6.1.0-11-686-di |   6.1.38-4 | i386
mmc-core-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
mmc-core-modules-6.1.0-12-686-di |   6.1.52-1 | i386
mmc-core-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
mmc-core-modules-6.1.0-9-686-di |   6.1.27-1 | i386
mmc-core-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
mmc-modules-6.1.0-11-686-di |   6.1.38-4 | i386
mmc-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
mmc-modules-6.1.0-12-686-di |   6.1.52-1 | i386
mmc-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
mmc-modules-6.1.0-9-686-di |   6.1.27-1 | i386
mmc-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
mouse-modules-6.1.0-11-686-di |   6.1.38-4 | i386
mouse-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
mouse-modules-6.1.0-12-686-di |   6.1.52-1 | i386
mouse-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
mouse-modules-6.1.0-9-686-di |   6.1.27-1 | i386
mouse-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
mtd-core-modules-6.1.0-11-686-di |   6.1.38-4 | i386
mtd-core-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
mtd-core-modules-6.1.0-12-686-di |   6.1.52-1 | i386
mtd-core-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
mtd-core-modules-6.1.0-9-686-di |   6.1.27-1 | i386
mtd-core-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
multipath-modules-6.1.0-11-686-di |   6.1.38-4 | i386
multipath-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
multipath-modules-6.1.0-12-686-di |   6.1.52-1 | i386
multipath-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
multipath-modules-6.1.0-9-686-di |   6.1.27-1 | i386
multipath-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
nbd-modules-6.1.0-11-686-di |   6.1.38-4 | i386
nbd-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
nbd-modules-6.1.0-12-686-di |   6.1.52-1 | i386
nbd-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
nbd-modules-6.1.0-9-686-di |   6.1.27-1 | i386
nbd-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
nic-modules-6.1.0-11-686-di |   6.1.38-4 | i386
nic-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
nic-modules-6.1.0-12-686-di |   6.1.52-1 | i386
nic-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
nic-modules-6.1.0-9-686-di |   6.1.27-1 | i386
nic-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
nic-pcmcia-modules-6.1.0-11-686-di |   6.1.38-4 | i386
nic-pcmcia-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
nic-pcmcia-modules-6.1.0-12-686-di |   6.1.52-1 | i386
nic-pcmcia-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
nic-pcmcia-modules-6.1.0-9-686-di |   6.1.27-1 | i386
nic-pcmcia-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
nic-shared-modules-6.1.0-11-686-di |   6.1.38-4 | i386
nic-shared-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
nic-shared-modules-6.1.0-12-686-di |   6.1.52-1 | i386
nic-shared-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
nic-shared-modules-6.1.0-9-686-di |   6.1.27-1 | i386
nic-shared-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
nic-usb-modules-6.1.0-11-686-di |   6.1.38-4 | i386
nic-usb-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
nic-usb-modules-6.1.0-12-686-di |   6.1.52-1 | i386
nic-usb-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
nic-usb-modules-6.1.0-9-686-di |   6.1.27-1 | i386
nic-usb-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
nic-wireless-modules-6.1.0-11-686-di |   6.1.38-4 | i386
nic-wireless-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
nic-wireless-modules-6.1.0-12-686-di |   6.1.52-1 | i386
nic-wireless-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
nic-wireless-modules-6.1.0-9-686-di |   6.1.27-1 | i386
nic-wireless-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
pata-modules-6.1.0-11-686-di |   6.1.38-4 | i386
pata-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
pata-modules-6.1.0-12-686-di |   6.1.52-1 | i386
pata-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
pata-modules-6.1.0-9-686-di |   6.1.27-1 | i386
pata-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
pcmcia-modules-6.1.0-11-686-di |   6.1.38-4 | i386
pcmcia-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
pcmcia-modules-6.1.0-12-686-di |   6.1.52-1 | i386
pcmcia-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
pcmcia-modules-6.1.0-9-686-di |   6.1.27-1 | i386
pcmcia-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
pcmcia-storage-modules-6.1.0-11-686-di |   6.1.38-4 | i386
pcmcia-storage-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
pcmcia-storage-modules-6.1.0-12-686-di |   6.1.52-1 | i386
pcmcia-storage-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
pcmcia-storage-modules-6.1.0-9-686-di |   6.1.27-1 | i386
pcmcia-storage-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
ppp-modules-6.1.0-11-686-di |   6.1.38-4 | i386
ppp-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
ppp-modules-6.1.0-12-686-di |   6.1.52-1 | i386
ppp-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
ppp-modules-6.1.0-9-686-di |   6.1.27-1 | i386
ppp-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
rfkill-modules-6.1.0-11-686-di |   6.1.38-4 | i386
rfkill-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
rfkill-modules-6.1.0-12-686-di |   6.1.52-1 | i386
rfkill-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
rfkill-modules-6.1.0-9-686-di |   6.1.27-1 | i386
rfkill-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
sata-modules-6.1.0-11-686-di |   6.1.38-4 | i386
sata-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
sata-modules-6.1.0-12-686-di |   6.1.52-1 | i386
sata-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
sata-modules-6.1.0-9-686-di |   6.1.27-1 | i386
sata-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
scsi-core-modules-6.1.0-11-686-di |   6.1.38-4 | i386
scsi-core-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
scsi-core-modules-6.1.0-12-686-di |   6.1.52-1 | i386
scsi-core-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
scsi-core-modules-6.1.0-9-686-di |   6.1.27-1 | i386
scsi-core-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
scsi-modules-6.1.0-11-686-di |   6.1.38-4 | i386
scsi-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
scsi-modules-6.1.0-12-686-di |   6.1.52-1 | i386
scsi-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
scsi-modules-6.1.0-9-686-di |   6.1.27-1 | i386
scsi-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
scsi-nic-modules-6.1.0-11-686-di |   6.1.38-4 | i386
scsi-nic-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
scsi-nic-modules-6.1.0-12-686-di |   6.1.52-1 | i386
scsi-nic-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
scsi-nic-modules-6.1.0-9-686-di |   6.1.27-1 | i386
scsi-nic-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
serial-modules-6.1.0-11-686-di |   6.1.38-4 | i386
serial-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
serial-modules-6.1.0-12-686-di |   6.1.52-1 | i386
serial-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
serial-modules-6.1.0-9-686-di |   6.1.27-1 | i386
serial-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
sound-modules-6.1.0-11-686-di |   6.1.38-4 | i386
sound-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
sound-modules-6.1.0-12-686-di |   6.1.52-1 | i386
sound-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
sound-modules-6.1.0-9-686-di |   6.1.27-1 | i386
sound-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
speakup-modules-6.1.0-11-686-di |   6.1.38-4 | i386
speakup-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
speakup-modules-6.1.0-12-686-di |   6.1.52-1 | i386
speakup-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
speakup-modules-6.1.0-9-686-di |   6.1.27-1 | i386
speakup-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
squashfs-modules-6.1.0-11-686-di |   6.1.38-4 | i386
squashfs-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
squashfs-modules-6.1.0-12-686-di |   6.1.52-1 | i386
squashfs-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
squashfs-modules-6.1.0-9-686-di |   6.1.27-1 | i386
squashfs-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
udf-modules-6.1.0-11-686-di |   6.1.38-4 | i386
udf-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
udf-modules-6.1.0-12-686-di |   6.1.52-1 | i386
udf-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
udf-modules-6.1.0-9-686-di |   6.1.27-1 | i386
udf-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
uinput-modules-6.1.0-11-686-di |   6.1.38-4 | i386
uinput-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
uinput-modules-6.1.0-12-686-di |   6.1.52-1 | i386
uinput-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
uinput-modules-6.1.0-9-686-di |   6.1.27-1 | i386
uinput-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
usb-modules-6.1.0-11-686-di |   6.1.38-4 | i386
usb-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
usb-modules-6.1.0-12-686-di |   6.1.52-1 | i386
usb-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
usb-modules-6.1.0-9-686-di |   6.1.27-1 | i386
usb-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
usb-serial-modules-6.1.0-11-686-di |   6.1.38-4 | i386
usb-serial-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
usb-serial-modules-6.1.0-12-686-di |   6.1.52-1 | i386
usb-serial-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
usb-serial-modules-6.1.0-9-686-di |   6.1.27-1 | i386
usb-serial-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
usb-storage-modules-6.1.0-11-686-di |   6.1.38-4 | i386
usb-storage-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
usb-storage-modules-6.1.0-12-686-di |   6.1.52-1 | i386
usb-storage-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
usb-storage-modules-6.1.0-9-686-di |   6.1.27-1 | i386
usb-storage-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386
xfs-modules-6.1.0-11-686-di |   6.1.38-4 | i386
xfs-modules-6.1.0-11-686-pae-di |   6.1.38-4 | i386
xfs-modules-6.1.0-12-686-di |   6.1.52-1 | i386
xfs-modules-6.1.0-12-686-pae-di |   6.1.52-1 | i386
xfs-modules-6.1.0-9-686-di |   6.1.27-1 | i386
xfs-modules-6.1.0-9-686-pae-di |   6.1.27-1 | i386

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux-signed-i386)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:42:47 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

linux-headers-6.1.0-11-common |   6.1.38-4 | all
linux-headers-6.1.0-11-common-rt |   6.1.38-4 | all
linux-headers-6.1.0-12-common |   6.1.52-1 | all
linux-headers-6.1.0-12-common-rt |   6.1.52-1 | all
linux-headers-6.1.0-9-common |   6.1.27-1 | all
linux-headers-6.1.0-9-common-rt |   6.1.27-1 | all
linux-support-6.1.0-11 |   6.1.38-4 | all
linux-support-6.1.0-12 |   6.1.52-1 | all
linux-support-6.1.0-9 |   6.1.27-1 | all

------------------- Reason -------------------
[auto-cruft] NBS (no longer built by linux - based on source metadata)
----------------------------------------------
=========================================================================
=========================================================================
[Date: Sat, 07 Oct 2023 08:29:38 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

https-everywhere | 2022.5.11-1 | source
webext-https-everywhere | 2022.5.11-1 | all
Closed bugs: 1041348

------------------- Reason -------------------
ROM; obsolete;major browsers offer native support now
----------------------------------------------
=========================================================================

amd64-microcode (3.20230808.1.1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm (no changes)
 .
 amd64-microcode (3.20230808.1.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20230804-6-gf2eb058a
     * Fixes for CVE-2023-20569 "AMD Inception" on AMD Zen4 processors
     (closes: #1043381)
   * WARNING: for proper operation on AMD Genoa and Bergamo processors,
     either up-to-date BIOS (with AGESA 1.0.0.8 or newer) or up-to-date
     Linux kernels (minimal versions on each active Linux stable branch:
     v4.19.289 v5.4.250 v5.10.187 v5.15.120 v6.1.37 v6.3.11 v6.4.1)
     are *required*
   * New Microcode patches:
     +  Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a10113e
     +  Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a10123e
     +  Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa00212
     +  Family=0x19 Model=0xa0 Stepping=0x01: Patch=0x0aa00116
   * README: update for new release
   * debian/NEWS: AMD Genoa/Bergamo kernel version restrictions
   * debian/changelog: update entry for release 3.20230719.1, noting
     that it included fixes for "AMD Inception" for Zen3 processors.
     We did not know about AMD Inception at the time, but we always
     include all available microcode updates when issuing a new
     package, so we lucked out.
   * debian/changelog: correct some information in 3.20230808.1
     entry and reupload as 3.20230808.1.1.  There's no Zenbleed
     for Zen4... oops!
amd64-microcode (3.20230808.1.1~deb11u1) bullseye; urgency=medium
 .
   * Build for bullseye
   * Revert move to non-free-firmware
 .
 amd64-microcode (3.20230808.1.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20230804-6-gf2eb058a
     * Fixes for CVE-2023-20569 "AMD Inception" on AMD Zen4 processors
     (closes: #1043381)
   * WARNING: for proper operation on AMD Genoa and Bergamo processors,
     either up-to-date BIOS (with AGESA 1.0.0.8 or newer) or up-to-date
     Linux kernels (minimal versions on each active Linux stable branch:
     v4.19.289 v5.4.250 v5.10.187 v5.15.120 v6.1.37 v6.3.11 v6.4.1)
     are *required*
   * New Microcode patches:
     +  Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a10113e
     +  Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a10123e
     +  Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa00212
     +  Family=0x19 Model=0xa0 Stepping=0x01: Patch=0x0aa00116
   * README: update for new release
   * debian/NEWS: AMD Genoa/Bergamo kernel version restrictions
   * debian/changelog: update entry for release 3.20230719.1, noting
     that it included fixes for "AMD Inception" for Zen3 processors.
     We did not know about AMD Inception at the time, but we always
     include all available microcode updates when issuing a new
     package, so we lucked out.
   * debian/changelog: correct some information in 3.20230808.1
     entry and reupload as 3.20230808.1.1.  There's no Zenbleed
     for Zen4... oops!
amd64-microcode (3.20230808.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20230804-6-gf2eb058a
     * Fixes for CVE-2023-20593 "Zenbleed" on AMD Zen4 processors
     * Fixes for CVE-2023-20569 "AMD Inception" on AMD Zen4 processors
     (closes: #1043381)
   * WARNING: for proper operation on AMD Genoa and Bergamo processors,
     either up-to-date BIOS (with AGESA 1.0.0.8 or newer) or up-to-date
     Linux kernels (minimal versions on each active Linux stable branch:
     v4.19.289 v5.4.250 v5.10.187 v5.15.120 v6.1.37 v6.3.11 v6.4.1)
     are *required*
   * New Microcode patches:
     +  Family=0x19 Model=0x11 Stepping=0x01: Patch=0x0a10113e
     +  Family=0x19 Model=0x11 Stepping=0x02: Patch=0x0a10123e
     +  Family=0x19 Model=0xa0 Stepping=0x02: Patch=0x0aa00212
     +  Family=0x19 Model=0xa0 Stepping=0x01: Patch=0x0aa00116
   * README: update for new release
   * debian/NEWS: AMD Genoa/Bergamo kernel version restrictions
   * debian/changelog: update entry for release 3.20230719.1, noting
     that it included fixes for "AMD Inception" for Zen3 processors
amd64-microcode (3.20230719.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20230625-39-g59fbffa9:
     * Fixes for CVE-2023-20593 "Zenbleed" on AMD Zen2 processors
       (closes: #1041863)
     * New Microcode patches:
       + Family=0x17 Model=0xa0 Stepping=0x00: Patch=0x08a00008
     * Updated Microcode patches:
       + Family=0x17 Model=0x31 Stepping=0x00: Patch=0x0830107a
       + Family=0x19 Model=0x01 Stepping=0x00: Patch=0x0a001079
       + Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011d1
       + Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001234
   * README: update for new release
amd64-microcode (3.20230719.1~deb12u1) bookworm-security; urgency=high
 .
   * Rebuild for bookworm-security (no changes)
 .
 amd64-microcode (3.20230719.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20230625-39-g59fbffa9:
     * Fixes for CVE-2023-20593 "Zenbleed" on AMD Zen2 processors
       (closes: #1041863)
     * New Microcode patches:
       + Family=0x17 Model=0xa0 Stepping=0x00: Patch=0x08a00008
     * Updated Microcode patches:
       + Family=0x17 Model=0x31 Stepping=0x00: Patch=0x0830107a
       + Family=0x19 Model=0x01 Stepping=0x00: Patch=0x0a001079
       + Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011d1
       + Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001234
   * README: update for new release
amd64-microcode (3.20230719.1~deb11u1) bullseye-security; urgency=high
 .
   * Build for bullseye-security
   * Revert move to non-free-firmware
 .
 amd64-microcode (3.20230719.1) unstable; urgency=high
 .
   * Update package data from linux-firmware 20230625-39-g59fbffa9:
     * Fixes for CVE-2023-20593 "Zenbleed" on AMD Zen2 processors
       (closes: #1041863)
     * New Microcode patches:
       + Family=0x17 Model=0xa0 Stepping=0x00: Patch=0x08a00008
     * Updated Microcode patches:
       + Family=0x17 Model=0x31 Stepping=0x00: Patch=0x0830107a
       + Family=0x19 Model=0x01 Stepping=0x00: Patch=0x0a001079
       + Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011d1
       + Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001234
   * README: update for new release
 .
 amd64-microcode (3.20230414.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20230404-38-gfab14965:
     (closes: #1031103)
     * Updated Microcode patches:
       + Family=0x17 Model=0x31 Stepping=0x00: Patch=0x08301072
       + Family=0x19 Model=0x01 Stepping=0x00: Patch=0x0a001078
       + Family=0x19 Model=0x01 Stepping=0x01: Patch=0x0a0011ce
       + Family=0x19 Model=0x01 Stepping=0x02: Patch=0x0a001231
   * README: update for new release
 .
 amd64-microcode (3.20220411.2) unstable; urgency=medium
 .
   * Move source and binary from non-free/admin to non-free-firmware/admin
     following the 2022 General Resolution about non-free firmware.
 .
 amd64-microcode (3.20220411.1) unstable; urgency=medium
 .
   * Update package data from linux-firmware 20220411:
     * New microcode updates from AMD upstream (20220408)
       (closes: #1006444, #1009333)
       + New Microcode patches:
         sig 0x00830f10, patch id 0x08301055, 2022-02-15
         sig 0x00a00f10, patch id 0x0a001058, 2022-02-10
         sig 0x00a00f11, patch id 0x0a001173, 2022-01-31
         sig 0x00a00f12, patch id 0x0a001229, 2022-02-10
       + Updated Microcode patches:
         sig 0x00800f12, patch id 0x0800126e, 2021/11/11
     * New AMD-SEV firmware from AMD upstream (20220308)
       Fixes: CVE-2019-9836 (closes: #970395)
       + New SEV firmware:
         Family 17h models 00h-0fh: version 0.17 build 48
         Family 17h models 30h-3fh: version 0.24 build 15
         Family 19h models 00h-0fh: version 1.51 build 3
   * README: update for new release
   * debian: ship AMD-SEV firmware.
     Upstream license is the same license used for amd-ucode
 .
 amd64-microcode (3.20191218.1) unstable; urgency=medium
 .
   * New microcode update packages from AMD upstream:
     + Removed Microcode updates (known to cause issues):
       sig 0x00830f10, patch id 0x08301025, 2019-07-11
   * README: update for new release
 .
 amd64-microcode (3.20191021.1) unstable; urgency=medium
 .
   * New microcode update packages from AMD upstream:
     + New Microcodes:
       sig 0x00830f10, patch id 0x08301025, 2019-07-11
     + Updated Microcodes:
       sig 0x00800f12, patch id 0x08001250, 2019-04-16
       sig 0x00800f82, patch id 0x0800820d, 2019-04-16
   * README: update for new release

arctica-greeter (0.99.3.0-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + [a11y] Add patches 0001 and 0002. Support configuring the onscreen
       keyboard theme via ArcticaGreeter's gsettings.
     + [a11y, i18n]  Use 'Compact' OSK layout (instead of Small) which include
       special keys such as German Umlauts, etc.
     + Add 0004-src-session-list.vala-Treat-gnome-xorg-as-GNOME-and-.patch. Show
       correct icon for GNOME/X.Org session in session chooser list.
     + Add patches 0005, 0006 and 0007. Make PAM messages (esp. on login failure,
       password expiry, etc.) be displayed fully and in readable colors.
   * debian/30_arctica-greeter-theme-debian.gschema.override:
     + Use active theme rather then emerald (although the button color scheme
       is designed for emerald). This allows the user/admin to adjust the
       background image of Arctica Greeter via the alternative system in
       desktop-base.

autofs (5.1.8-2+deb12u2) bookworm; urgency=medium
 .
   * use correct reference for IN6 macro call
   * dont probe interface that cant send packet (Closes: #1041051)

base-files (12.4+deb12u2) bookworm; urgency=medium
 .
   * Change /etc/debian_version to 12.2, for Debian 12.2 point release.

batik (1.16+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * Fixing CVE-2022-44729 and CVE-2022-44730

bind9 (1:9.18.19-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream version 9.18.19
    - CVE-2023-3341: A stack exhaustion flaw in control channel code may
      cause named to terminate unexpectedly
    - CVE-2023-4236: named may terminate unexpectedly under high
      DNS-over-TLS query load
bind9 (1:9.18.16-1) unstable; urgency=medium
 .
   * New upstream version 9.18.16
    - CVE-2023-2828: The overmem cleaning process has been improved,
      to prevent the cache from significantly exceeding the configured
      max-cache-size limit.
    - CVE-2023-2911: A query that prioritizes stale data over lookup
      triggers a fetch to refresh the stale data in cache. If the fetch
      is aborted for exceeding the recursion quota, it was possible for
      named to enter an infinite callback loop and crash due to stack
      overflow. This has been fixed.

boxer-data (10.9.12+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Fix class Desktop.web.firefox.harden. No longer install obsolete Firefox
     addon https-everywhere.

brltty (6.5-7+deb12u1) bookworm; urgency=medium
 .
   * patches/git-xbrlapi: Fix ba+a2 load failure log flood, and failure to use
     braille shortcuts in Orca.
   * patches/git-base-none-quality: Set quality to low or none for base and no
     screen drivers.

ca-certificates-java (20230620~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.  (Closes: #1039472)
 .
 ca-certificates-java (20230620) unstable; urgency=medium
 .
   [ Matthias Klose ]
   * Bump standards version.
   * Build-depend on default-jdk-headless instead of default-jdk.
 .
   [ Vladimir Petko ]
   * d/ca-certificates-java.postinst: Work-around not yet configured jre.
ca-certificates-java (20230620~deb12u1~bpo12+1) bookworm-backports; urgency=medium
 .
   * Rebuild for bookworm-backports.  This includes fixes that are otherwise
     blocking anything with a build-dep on java from building in
     bookworm-backports.
ca-certificates-java (20230620~bpo12+1) bookworm-backports; urgency=medium
 .
   * Rebuild for bookworm-backports to unblock the autobuilder for
     bookworm-backports..

cairosvg (2.5.2-1.1+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Handle data-URLs in safe mode (Closes: #1050643)

calibre (6.13.0+repack-2+deb12u1) bookworm; urgency=medium
 .
   * "ERROR: Unhandled exception" when opening Settings > Saving Books to disk (Closes: #1041779)
   * Rediff patches.
     Add reproduced error messages

chromium (116.0.5845.180-1~deb12u1) bookworm-security; urgency=high
 .
   [ Andres Salomon]
   * New upstream security release.
     - CVE-2023-4761: Out of bounds memory access in FedCM. Reported by DarkNavy.
     - CVE-2023-4762: Type Confusion in V8. Reported by Rong Jian of VRI.
     - CVE-2023-4763: Use after free in Networks. Reported by anonymous.
     - CVE-2023-4764: Incorrect security UI in BFCache.
       Reported by Irvan Kurniawan (sourc7).
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - 0001-Add-PPC64-support-for-boringssl.patch: Fix incorrect function call
       parameter types in gmult_func() and ghash_func() implementations
chromium (116.0.5845.180-1~deb11u1) bullseye-security; urgency=high
 .
   [ Andres Salomon]
   * New upstream security release.
     - CVE-2023-4761: Out of bounds memory access in FedCM. Reported by DarkNavy.
     - CVE-2023-4762: Type Confusion in V8. Reported by Rong Jian of VRI.
     - CVE-2023-4763: Use after free in Networks. Reported by anonymous.
     - CVE-2023-4764: Incorrect security UI in BFCache.
       Reported by Irvan Kurniawan (sourc7).
 .
   [ Timothy Pearson ]
   * d/patches/ppc64le:
     - 0001-Add-PPC64-support-for-boringssl.patch: Fix incorrect function call
       parameter types in gmult_func() and ghash_func() implementations
chromium (116.0.5845.140-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-4572: Use after free in MediaStream.
       Reported by fwnfwn(@_fwnfwn).
   * Drop d/chromium.conffiles; it's been a year (and major debian release)
     since started deleting /etc/chromium/policies/recommended/duckduckgo.json
     (closes: #1024981).
chromium (116.0.5845.140-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-4572: Use after free in MediaStream.
       Reported by fwnfwn(@_fwnfwn).
   * Drop d/chromium.conffiles; it's been a year (and major debian release)
     since started deleting /etc/chromium/policies/recommended/duckduckgo.json
     (closes: #1024981).
chromium (116.0.5845.140-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-4572: Use after free in MediaStream.
       Reported by fwnfwn(@_fwnfwn).
   * Drop d/chromium.conffiles; it's been a year (and major debian release)
     since started deleting /etc/chromium/policies/recommended/duckduckgo.json
     (closes: #1024981).
chromium (116.0.5845.110-2) unstable; urgency=high
 .
   * Remove Bullseye-specific workarounds from debian/rules (closes: #1038679).
chromium (116.0.5845.110-1) unstable; urgency=high
 .
   [ Timothy Pearson ]
   * New upstream security release.
     - CVE-2023-4430: Use after free in Vulkan.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-4429: Use after free in Loader. Reported by Anonymous.
     - CVE-2023-4428: Out of bounds memory access in CSS.
       Reported by Francisco Alonso (@revskills).
     - CVE-2023-4427: Out of bounds memory access in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-4431: Out of bounds memory access in Fonts.
       Reported by Microsoft Security Researcher.
     - CVE-2023-4074 Use after free in Blink Task Scheduling [53]1450899 High 
     - CVE-2023-3732 Out of bounds memory access in Mojo [54]1459124 High 
     - CVE-2023-4076 Use after free in WebRTC Giuliana Pritchard
 .
   [ Andres Salomon ]
   * d/patches/upstream hvec.patch: add arm* v4l2 build fix.
   * d/rules: FTBFS if we're uploading to -security distribution w/out CVEs.
chromium (116.0.5845.110-1~deb12u1) bookworm-security; urgency=high
 .
   [ Timothy Pearson ]
   * New upstream security release.
     - CVE-2023-4430: Use after free in Vulkan.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-4429: Use after free in Loader. Reported by Anonymous.
     - CVE-2023-4428: Out of bounds memory access in CSS.
       Reported by Francisco Alonso (@revskills).
     - CVE-2023-4427: Out of bounds memory access in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-4431: Out of bounds memory access in Fonts.
       Reported by Microsoft Security Researcher.
 .
   [ Andres Salomon ]
   * d/patches/upstream hvec.patch: add arm* v4l2 build fix.
   * d/rules: FTBFS if we're uploading to -security distribution w/out CVEs.
 .
 chromium (116.0.5845.96-2) unstable; urgency=high
 .
   * d/patches/upstream/limits.patch: Add a build fix for arm64.
chromium (116.0.5845.110-1~deb11u1) bullseye-security; urgency=high
 .
   [ Timothy Pearson ]
   * New upstream security release.
     - CVE-2023-4430: Use after free in Vulkan.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-4429: Use after free in Loader. Reported by Anonymous.
     - CVE-2023-4428: Out of bounds memory access in CSS.
       Reported by Francisco Alonso (@revskills).
     - CVE-2023-4427: Out of bounds memory access in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-4431: Out of bounds memory access in Fonts.
       Reported by Microsoft Security Researcher.
 .
   [ Andres Salomon ]
   * d/patches/upstream hvec.patch: add arm* v4l2 build fix.
   * d/rules: FTBFS if we're uploading to -security distribution w/out CVEs.
 .
 chromium (116.0.5845.96-2) unstable; urgency=high
 .
   * d/patches/upstream/limits.patch: Add a build fix for arm64.
chromium (116.0.5845.96-2) unstable; urgency=high
 .
   * d/patches/upstream/limits.patch: Add a build fix for arm64.
   * The follow CVEs were fixed in the prior release and I forgot them.
     - CVE-2023-2312: Use after free in Offline. Reported by avaue at S.S.L..
     - CVE-2023-4349: Use after free in Device Trust Connectors.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2023-4350: Inappropriate implementation in Fullscreen.
       Reported by Khiem Tran (@duckhiem).
     - CVE-2023-4351: Use after free in Network.
       Reported by Guang and Weipeng Jiang of VRI.
     - CVE-2023-4352: Type Confusion in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-4353: Heap buffer overflow in ANGLE.
       Reported by Christoph Diehl / Microsoft Vulnerability Research.
     - CVE-2023-4354: Heap buffer overflow in Skia.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-4355: Out of bounds memory access in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-4356: Use after free in Audio.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2023-4357: Insufficient validation of untrusted input in XML.
       Reported by Igor Sak-Sakovskii.
     - CVE-2023-4358: Use after free in DNS.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2023-4359: Inappropriate implementation in App Launcher.
       Reported by @retsew0x01.
     - CVE-2023-4360: Inappropriate implementation in Color.
       Reported by Axel Chong.
     - CVE-2023-4361: Inappropriate implementation in Autofill.
       Reported by Thomas Orlita.
     - CVE-2023-4362: Heap buffer overflow in Mojom IDL.
       Reported by Zhao Hai of NanJing Cyberpeace TianYu Lab.
     - CVE-2023-4363: Inappropriate implementation in WebShare.
       Reported by Alesandro Ortiz.
     - CVE-2023-4364: Inappropriate implementation in Permission Prompts.
       Reported by Jasper Rebane.
     - CVE-2023-4365: Inappropriate implementation in Fullscreen.
       Reported by Hafiizh.
     - CVE-2023-4366: Use after free in Extensions. Reported by asnine.
     - CVE-2023-4367: Insufficient policy enforcement in Extensions API.
       Reported by Axel Chong.
     - CVE-2023-4368: Insufficient policy enforcement in Extensions API.
       Reported by Axel Chong.
chromium (116.0.5845.96-1) unstable; urgency=high
 .
   * New upstream stable release.
   * d/patches:
    - fixes/cmath.patch: drop, merged upstream.
    - fixes/vector.patch: drop, merged upstream.
    - fixes/cookieresult.patch: drop, merged upstream.
    - fixes/gcc13-headers.patch: drop portions which have been merged upstream.
    - upstream/feature-list-static.patch: drop, merged upstream.
    - disable/catapult.patch: refresh.
    - upstream/statelessV4L2.patch: refresh.
    - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh.
    - ppc64le/libaom/0001-Add-ppc64-target-to-libaom.patch: refresh.
    - ppc64le/breakpad/0001-Implement-support-for-ppc64-on-Linux.patch: refresh.
    - ppc64le/third_party/use-sysconf-page-size-on-ppc64.patch: refresh.
    - fixes/rust-clanglib.patch: add patch to handle new clang deps for rust.
    - debianization/clang-15.patch: add patch to use lld-15.
    - bookworm/typename.patch: more typename fixes needed.
    - fixes/variant.patch: add a missing header that libstdc++ needs.
    - fixes/vector.patch: add a missing header that libstdc++ needs.
    - fixes/null.patch: fix missing namespace for nullptr_t + header fix.
    - fixes/size.patch: missing header fix.
    - bookworm/brotli.patch: revert upstream change that requires newer brotli.
    - bookworm/struct-ctor.patch: add a bunch of explicit struct constructors
      to make clang-15 happy.
    - fixes/size.patch
    - bullseye/stringpiece.patch: drop, since we're bundling re2 now.
   * d/rules: automatically detect rust/clang versions & add needed rust args.
     But also disable rust for now.
   * d/rules: drop use_gnome_keyring=false, upstream has completely removed
     libgnome-keyring support in favor of gnome's libsecret.
   * d/control: add build-dep on libclang-rt-dev for rust.
   * Use bundled re2 (for now) instead of libre2-dev due to random crashes
     we're seeing. Adjust build-deps, Files-Excluded, d/clean,
     and d/scripts/unbundle accordingly.
 .
   [ Timothy Pearson ]
    * d/patches/ppc64le:
      - database/0001-Properly-detect-little-endian-PPC64-systems.patch: refresh
        for upstream changes
      - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
        refresh for upstream changes
      - third_party/0002-third-party-boringssl-add-generated-files.patch:
        refresh, no changes
      - third_party/use-sysconf-page-size-on-ppc64.patch: refresh for upstream
        changes
      - third_party/skia-vsx-instructions.patch: refresh for upstream changes
chromium (116.0.5845.96-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
   * d/patches:
    - fixes/cmath.patch: drop, merged upstream.
    - fixes/vector.patch: drop, merged upstream.
    - fixes/cookieresult.patch: drop, merged upstream.
    - upstream/feature-list-static.patch: drop, merged upstream.
    - disable/catapult.patch: refresh.
    - upstream/statelessV4L2.patch: refresh.
    - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh.
    - ppc64le/libaom/0001-Add-ppc64-target-to-libaom.patch: refresh.
    - ppc64le/breakpad/0001-Implement-support-for-ppc64-on-Linux.patch: refresh.
    - ppc64le/third_party/use-sysconf-page-size-on-ppc64.patch: refresh.
    - fixes/rust-clanglib.patch: add patch to handle new clang deps for rust.
    - debianization/clang-15.patch: add patch to use lld-15.
    - bookworm/typename.patch: more typename fixes needed.
    - fixes/variant.patch: add a missing header that libstdc++ needs.
    - fixes/vector.patch: add a missing header that libstdc++ needs.
    - fixes/null.patch: fix missing namespace for nullptr_t + header fix.
    - fixes/size.patch: missing header fix.
    - bookworm/brotli.patch: revert upstream change that requires newer brotli.
    - bookworm/struct-ctor.patch: add a bunch of explicit struct constructors
      to make clang-15 happy.
    - fixes/size.patch
    - bullseye/stringpiece.patch: drop, since we're bundling re2 now.
   * d/rules: automatically detect rust/clang versions & add needed rust args.
     But also disable rust for now.
   * d/rules: drop use_gnome_keyring=false, upstream has completely removed
     libgnome-keyring support in favor of gnome's libsecret.
   * Use bundled re2 (for now) instead of libre2-dev due to random crashes
     we're seeing. Adjust build-deps, Files-Excluded, d/clean,
     and d/scripts/unbundle accordingly.
 .
   [ Timothy Pearson ]
    * d/patches/ppc64le:
      - database/0001-Properly-detect-little-endian-PPC64-systems.patch: refresh
        for upstream changes
      - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
        refresh for upstream changes
      - third_party/0002-third-party-boringssl-add-generated-files.patch:
        refresh, no changes
      - third_party/use-sysconf-page-size-on-ppc64.patch: refresh for upstream
        changes
      - third_party/skia-vsx-instructions.patch: refresh for upstream changes
chromium (116.0.5845.96-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-2312: Use after free in Offline. Reported by avaue at S.S.L.
     - CVE-2023-4349: Use after free in Device Trust Connectors.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2023-4350: Inappropriate implementation in Fullscreen.
       Reported by Khiem Tran (@duckhiem).
     - CVE-2023-4351: Use after free in Network.
       Reported by Guang and Weipeng Jiang of VRI.
     - CVE-2023-4352: Type Confusion in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-4353: Heap buffer overflow in ANGLE.
       Reported by Christoph Diehl / Microsoft Vulnerability Research.
     - CVE-2023-4354: Heap buffer overflow in Skia.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-4355: Out of bounds memory access in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-4356: Use after free in Audio.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2023-4357: Insufficient validation of untrusted input in XML.
       Reported by Igor Sak-Sakovskii.
     - CVE-2023-4358: Use after free in DNS.
       Reported by Weipeng Jiang (@Krace) of VRI.
     - CVE-2023-4359: Inappropriate implementation in App Launcher.
       Reported by @retsew0x01.
     - CVE-2023-4360: Inappropriate implementation in Color.
       Reported by Axel Chong.
     - CVE-2023-4361: Inappropriate implementation in Autofill.
       Reported by Thomas Orlita.
     - CVE-2023-4362: Heap buffer overflow in Mojom IDL.
       Reported by Zhao Hai of NanJing Cyberpeace TianYu Lab.
     - CVE-2023-4363: Inappropriate implementation in WebShare.
       Reported by Alesandro Ortiz.
     - CVE-2023-4364: Inappropriate implementation in Permission Prompts.
       Reported by Jasper Rebane.
     - CVE-2023-4365: Inappropriate implementation in Fullscreen.
       Reported by Hafiizh.
     - CVE-2023-4366: Use after free in Extensions. Reported by asnine.
     - CVE-2023-4367: Insufficient policy enforcement in Extensions API.
       Reported by Axel Chong.
     - CVE-2023-4368: Insufficient policy enforcement in Extensions API.
       Reported by Axel Chong.
   * d/patches:
    - fixes/cmath.patch: drop, merged upstream.
    - fixes/vector.patch: drop, merged upstream.
    - fixes/cookieresult.patch: drop, merged upstream.
    - upstream/feature-list-static.patch: drop, merged upstream.
    - disable/catapult.patch: refresh.
    - upstream/statelessV4L2.patch: refresh.
    - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh.
    - ppc64le/libaom/0001-Add-ppc64-target-to-libaom.patch: refresh.
    - ppc64le/breakpad/0001-Implement-support-for-ppc64-on-Linux.patch: refresh.
    - ppc64le/third_party/use-sysconf-page-size-on-ppc64.patch: refresh.
    - fixes/rust-clanglib.patch: add patch to handle new clang deps for rust.
    - debianization/clang-version.patch: move from bullseye/lld-13.patch.
    - bookworm/typename.patch: more typename fixes needed.
    - fixes/variant.patch: add a missing header that libstdc++ needs.
    - fixes/vector.patch: add a missing header that libstdc++ needs.
    - fixes/null.patch: fix missing namespace for nullptr_t + header fix.
    - fixes/size.patch: missing header fix.
    - bookworm/brotli.patch: revert upstream change that requires newer brotli.
    - bookworm/struct-ctor.patch: add a bunch of explicit struct constructors
      to make clang-15 happy.
    - fixes/size.patch
    - bullseye/stringpiece.patch: drop, since we're bundling re2 now.
    - bullseye/downgrade-typescript.patch: newer tsc 5.1 doesn't work with
      bullseye's ancient nodejs, so we have to downgrade back to 5.0.
    - bullseye/constexpr.patch: add another build fix.
    - bullseye/default-equality-op.patch: add another build fix.
   * d/rules: automatically detect rust/clang versions & add needed rust args.
     But also continue disabling rust for now.
   * d/rules: drop use_gnome_keyring=false, upstream has completely removed
     libgnome-keyring support in favor of gnome's libsecret.
   * Use bundled re2 (for now) instead of libre2-dev due to random crashes
     we're seeing. Adjust build-deps, Files-Excluded, d/clean,
     and d/scripts/unbundle accordingly.
 .
   [ Timothy Pearson ]
    * d/patches/ppc64le:
      - database/0001-Properly-detect-little-endian-PPC64-systems.patch: refresh
        for upstream changes
      - third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
        refresh for upstream changes
      - third_party/0002-third-party-boringssl-add-generated-files.patch:
        refresh, no changes
      - third_party/use-sysconf-page-size-on-ppc64.patch: refresh for upstream
        changes
      - third_party/skia-vsx-instructions.patch: refresh for upstream changes
chromium (115.0.5790.170-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-4068: Type Confusion in V8. Reported by Jerry.
     - CVE-2023-4069: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2023-4070: Type Confusion in V8. Reported by Jerry.
     - CVE-2023-4071: Heap buffer overflow in Visuals.
       Reported by Guang and Weipeng Jiang of VRI.
     - CVE-2023-4072: Out of bounds read and write in WebGL.
       Reported by Apple Security Engineering and Architecture (SEAR).
     - CVE-2023-4073: Out of bounds memory access in ANGLE.
       Reported by Jaehun Jeong(@n3sk) of Theori.
     - CVE-2023-4074: Use after free in Blink Task Scheduling.
       Reported by Anonymous.
     - CVE-2023-4075: Use after free in Cast.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-4076: Use after free in WebRTC.
       Reported by Natalie Silvanovich of Google Project Zero.
     - CVE-2023-4077: Insufficient data validation in Extensions.
       Reported by Anonymous.
     - CVE-2023-4078: Inappropriate implementation in Extensions.
       Reported by Anonymous.
   * debian/patches/disable/driver-chrome-path.patch: refresh for minor changes.
chromium (115.0.5790.170-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-4068: Type Confusion in V8. Reported by Jerry.
     - CVE-2023-4069: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2023-4070: Type Confusion in V8. Reported by Jerry.
     - CVE-2023-4071: Heap buffer overflow in Visuals.
       Reported by Guang and Weipeng Jiang of VRI.
     - CVE-2023-4072: Out of bounds read and write in WebGL.
       Reported by Apple Security Engineering and Architecture (SEAR).
     - CVE-2023-4073: Out of bounds memory access in ANGLE.
       Reported by Jaehun Jeong(@n3sk) of Theori.
     - CVE-2023-4074: Use after free in Blink Task Scheduling.
       Reported by Anonymous.
     - CVE-2023-4075: Use after free in Cast.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-4076: Use after free in WebRTC.
       Reported by Natalie Silvanovich of Google Project Zero.
     - CVE-2023-4077: Insufficient data validation in Extensions.
       Reported by Anonymous.
     - CVE-2023-4078: Inappropriate implementation in Extensions.
       Reported by Anonymous.
   * debian/patches/disable/driver-chrome-path.patch: refresh for minor changes.
 .
 chromium (115.0.5790.102-2) unstable; urgency=high
 .
   * debian/patches/upstream/contains.patch:Yet Another v4l2 ARM build fix.
 .
 chromium (115.0.5790.102-1) unstable; urgency=high
 .
   * New upstream stable release.
   * debian/patches/upstream/statelessV4L2.patch: add v4l2 build fix.
 .
 chromium (115.0.5790.98-2) unstable; urgency=high
 .
   * Add build fix for gcc13 on arm64.
chromium (115.0.5790.170-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-4068: Type Confusion in V8. Reported by Jerry.
     - CVE-2023-4069: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2023-4070: Type Confusion in V8. Reported by Jerry.
     - CVE-2023-4071: Heap buffer overflow in Visuals.
       Reported by Guang and Weipeng Jiang of VRI.
     - CVE-2023-4072: Out of bounds read and write in WebGL.
       Reported by Apple Security Engineering and Architecture (SEAR).
     - CVE-2023-4073: Out of bounds memory access in ANGLE.
       Reported by Jaehun Jeong(@n3sk) of Theori.
     - CVE-2023-4074: Use after free in Blink Task Scheduling.
       Reported by Anonymous.
     - CVE-2023-4075: Use after free in Cast.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-4076: Use after free in WebRTC.
       Reported by Natalie Silvanovich of Google Project Zero.
     - CVE-2023-4077: Insufficient data validation in Extensions.
       Reported by Anonymous.
     - CVE-2023-4078: Inappropriate implementation in Extensions.
       Reported by Anonymous.
   * debian/patches/disable/driver-chrome-path.patch: refresh for minor changes.
 .
 chromium (115.0.5790.102-2) unstable; urgency=high
 .
   * debian/patches/upstream/contains.patch:Yet Another v4l2 ARM build fix.
 .
 chromium (115.0.5790.102-1) unstable; urgency=high
 .
   * New upstream stable release.
   * debian/patches/upstream/statelessV4L2.patch: add v4l2 build fix.
 .
 chromium (115.0.5790.98-2) unstable; urgency=high
 .
   * Add build fix for gcc13 on arm64.
chromium (115.0.5790.102-2) unstable; urgency=high
 .
   * debian/patches/upstream/contains.patch:Yet Another v4l2 ARM build fix.
chromium (115.0.5790.102-1) unstable; urgency=high
 .
   * New upstream stable release.
   * debian/patches/upstream/statelessV4L2.patch: add v4l2 build fix.
chromium (115.0.5790.98-2) unstable; urgency=high
 .
   * Add build fix for gcc13 on arm64.
chromium (115.0.5790.98-1) unstable; urgency=high
 .
   * New upstream release
     - CVE-2023-3727: Use after free in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-3728: Use after free in WebRTC.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2023-3730: Use after free in Tab Groups. Reported by @ginggilBesel.
     - CVE-2023-3732: Out of bounds memory access in Mojo.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-3733: Inappropriate implementation in WebApp Installs.
       Reported by Ahmed ElMasry.
     - CVE-2023-3734: Inappropriate implementation in Picture In Picture.
       Reported by Thomas Orlita.
     - CVE-2023-3735: Inappropriate implementation in Web API Permission Prompts.
       Reported by Ahmed ElMasry.
     - CVE-2023-3736: Inappropriate implementation in Custom Tabs.
       Reported by Philipp Beer (TU Wien).
     - CVE-2023-3737: Inappropriate implementation in Notifications.
       Reported by Narendra Bhati of Suma Soft Pvt. Ltd. Pune (India) .
     - CVE-2023-3738: Inappropriate implementation in Autofill.
       Reported by Hafiizh.
     - CVE-2023-3740: Insufficient validation of untrusted input in Themes.
       Reported by Fardeen Siddiqui.
 .
   * d/rules:
     - use system rustc installation
   * Add build-dep on rustc.
   * d/patches:
     - debianization/master-preferences.patch: upstream variable renamed
     - disable/catapult.patch: upstream changes required reworking
     - disable/tests.patch: remove new upstream puffin test data file
       dependencies
     - disable/unrar.patch: upstream changes required reworking
     - fixes/cmath.patch: add missing header include for skia
     - fixes/vector.patch: add missing header include for net
     - upstream/sizet.patch: drop, merged upstream
     - ppc64le/fixes/fix-partition-alloc-compile.patch: refresh for upstream
       changes
     - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh
       for upstream changes
     - ppc64le/third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       refresh for upstream changes
     - ppc64le/third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch:
       regenerate configs from upstream source
     - ppc64le/third_party/skia-vsx-instructions.patch: refresh for upstream
       changes
 .
   [ Andres Salomon ]
     - fixes/clang-and-gcc11.patch: drop, (a different version) merged upstream.
     - bookworm/typename.patch: drop parts that were merged upstream, and add
       new build fixes.
     - bookworm/structured-binding-scope-bug.patch: drop some of it, add new bits
     - bullseye/constexpr.patch: refresh for string -> StringPiece change.
     - bullseye/stringpiece.patch: add to work around older libre2.
     - bullseye/default-equality-op.patch: add more workarounds for older
       compilers
     - fixes/brandversion-construct.patch: add to fix build failure.
     - fixes/SkColor4f-init.patch: another missing struct constructor fix.
     - fixes/cookieresult.patch: another struct ctor build fix.
     - fixes/gcc13-with-clang14.patch: fix FTBFS with gcc-13 (closes: #1037604).
     - fixes/gcc13-headers.patch: fix a bunch of missing includes which
       gcc-13 wants
     - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh.
     - ppc64le/libaom/0001-Add-ppc64-target-to-libaom.patch: refresh.
     - ppc64le/third_party/0002-third-party-boringssl-add-generated-files.patch:
       refresh.
chromium (115.0.5790.98-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream release
     - CVE-2023-3727: Use after free in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-3728: Use after free in WebRTC.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2023-3730: Use after free in Tab Groups. Reported by @ginggilBesel.
     - CVE-2023-3732: Out of bounds memory access in Mojo.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-3733: Inappropriate implementation in WebApp Installs.
       Reported by Ahmed ElMasry.
     - CVE-2023-3734: Inappropriate implementation in Picture In Picture.
       Reported by Thomas Orlita.
     - CVE-2023-3735: Inappropriate implementation in Web API Permission Prompts.
       Reported by Ahmed ElMasry.
     - CVE-2023-3736: Inappropriate implementation in Custom Tabs.
       Reported by Philipp Beer (TU Wien).
     - CVE-2023-3737: Inappropriate implementation in Notifications.
       Reported by Narendra Bhati of Suma Soft Pvt. Ltd. Pune (India) .
     - CVE-2023-3738: Inappropriate implementation in Autofill.
       Reported by Hafiizh.
     - CVE-2023-3740: Insufficient validation of untrusted input in Themes.
       Reported by Fardeen Siddiqui.
 .
   * d/rules:
     - use system rustc installation
   * Add build-dep on rustc.
   * d/patches:
     - debianization/master-preferences.patch: upstream variable renamed
     - disable/catapult.patch: upstream changes required reworking
     - disable/tests.patch: remove new upstream puffin test data file
       dependencies
     - disable/unrar.patch: upstream changes required reworking
     - fixes/cmath.patch: add missing header include for skia
     - fixes/vector.patch: add missing header include for net
     - upstream/sizet.patch: drop, merged upstream
     - ppc64le/fixes/fix-partition-alloc-compile.patch: refresh for upstream
       changes
     - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh
       for upstream changes
     - ppc64le/third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       refresh for upstream changes
     - ppc64le/third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch:
       regenerate configs from upstream source
     - ppc64le/third_party/skia-vsx-instructions.patch: refresh for upstream
       changes
 .
   [ Andres Salomon ]
     - fixes/clang-and-gcc11.patch: drop, (a different version) merged upstream.
     - bookworm/typename.patch: drop parts that were merged upstream, and add
       new build fixes.
     - bookworm/structured-binding-scope-bug.patch: drop some of it, add new bits
     - bullseye/constexpr.patch: refresh for string -> StringPiece change.
     - bullseye/stringpiece.patch: add to work around older libre2.
     - bullseye/default-equality-op.patch: add more workarounds for older
       compilers
     - fixes/brandversion-construct.patch: add to fix build failure.
     - fixes/SkColor4f-init.patch: another missing struct constructor fix.
     - fixes/cookieresult.patch: another struct ctor build fix.
     - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh.
     - ppc64le/libaom/0001-Add-ppc64-target-to-libaom.patch: refresh.
     - ppc64le/third_party/0002-third-party-boringssl-add-generated-files.patch:
       refresh.
chromium (115.0.5790.98-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream release
     - CVE-2023-3727: Use after free in WebRTC.
       Reported by Cassidy Kim(@cassidy6564).
     - CVE-2023-3728: Use after free in WebRTC.
       Reported by Zhenghang Xiao (@Kipreyyy).
     - CVE-2023-3730: Use after free in Tab Groups. Reported by @ginggilBesel.
     - CVE-2023-3732: Out of bounds memory access in Mojo.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-3733: Inappropriate implementation in WebApp Installs.
       Reported by Ahmed ElMasry.
     - CVE-2023-3734: Inappropriate implementation in Picture In Picture.
       Reported by Thomas Orlita.
     - CVE-2023-3735: Inappropriate implementation in Web API Permission Prompts.
       Reported by Ahmed ElMasry.
     - CVE-2023-3736: Inappropriate implementation in Custom Tabs.
       Reported by Philipp Beer (TU Wien).
     - CVE-2023-3737: Inappropriate implementation in Notifications.
       Reported by Narendra Bhati of Suma Soft Pvt. Ltd. Pune (India) .
     - CVE-2023-3738: Inappropriate implementation in Autofill.
       Reported by Hafiizh.
     - CVE-2023-3740: Insufficient validation of untrusted input in Themes.
       Reported by Fardeen Siddiqui.
 .
   * d/patches:
     - debianization/master-preferences.patch: upstream variable renamed
     - disable/catapult.patch: upstream changes required reworking
     - disable/tests.patch: remove new upstream puffin test data file
       dependencies
     - disable/unrar.patch: upstream changes required reworking
     - fixes/cmath.patch: add missing header include for skia
     - fixes/vector.patch: add missing header include for net
     - upstream/sizet.patch: drop, merged upstream
     - ppc64le/fixes/fix-partition-alloc-compile.patch: refresh for upstream
       changes
     - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh
       for upstream changes
     - ppc64le/third_party/0002-third_party-libvpx-Remove-bad-ppc64-config.patch:
       refresh for upstream changes
     - ppc64le/third_party/0003-third_party-libvpx-Add-ppc64-generated-config.patch:
       regenerate configs from upstream source
     - ppc64le/third_party/skia-vsx-instructions.patch: refresh for upstream
       changes
 .
   [ Andres Salomon ]
     - fixes/clang-and-gcc11.patch: drop, (a different version) merged upstream.
     - bookworm/typename.patch: drop parts that were merged upstream, and add
       new build fixes.
     - bookworm/structured-binding-scope-bug.patch: drop some of it, add new bits
     - bullseye/constexpr.patch: refresh for string -> StringPiece change.
     - bullseye/stringpiece.patch: add to work around older libre2.
     - bullseye/default-equality-op.patch: add more workarounds for older
       compilers
     - fixes/brandversion-construct.patch: add to fix build failure.
     - fixes/SkColor4f-init.patch: another missing struct constructor fix.
     - fixes/cookieresult.patch: another struct ctor build fix.
     - ppc64le/third_party/0001-Add-PPC64-support-for-boringssl.patch: refresh.
     - ppc64le/libaom/0001-Add-ppc64-target-to-libaom.patch: refresh.
     - ppc64le/third_party/0002-third-party-boringssl-add-generated-files.patch:
       refresh.
     - bullseye/disable-mojo-ipcz.patch: refresh.
     - bullseye/mulodic.patch: refresh.
chromium (114.0.5735.198-1) unstable; urgency=high
 .
   * New upstream security release.
     - CVE-2023-3420: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2023-3421: Use after free in Media.
       Reported by Piotr Bania of Cisco Talos.
     - CVE-2023-3422: Use after free in Guest View. Reported by asnine.

cjose (0.6.2.1-1+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2023-37464 (Closes: #1041423)

clamav (1.0.3+dfsg-1~deb12u1) bookworm; urgency=medium
 .
   * Import 1.0.3
   * Remove unnecessary warning messages in freshclam during update.
clamav (1.0.2+dfsg-1) unstable; urgency=medium
 .
   * Import 1.0.2 (Closes: #1050057)
     - CVE-2023-20197 (Possible DoS in HFS+ file parser).
     - CVE-2023-20212 (Possible DoS in AutoIt file parser).
   * Use cmake for xml2 detection (Closes: #949100).
   * Replace tomsfastmath with OpenSSL's BN.
   * Don't enable clamonacc by default (Closes: #1030171).
   * Let the clamav-daemon.socket depend on the service file again
     (Closes: #1044136).
clamav (1.0.2+dfsg-1~deb12u1) bookworm; urgency=medium
 .
   * Import 1.0.2 (Closes: #1050057)
     - CVE-2023-20197 (Possible DoS in HFS+ file parser).
     - CVE-2023-20212 (Possible DoS in AutoIt file parser).
   * Use cmake for xml2 detection (Closes: #949100).
   * Replace tomsfastmath with OpenSSL's BN.
   * Don't enable clamonacc by default (Closes: #1030171).
   * Let the clamav-daemon.socket depend on the service file again
     (Closes: #1044136).

cryptmount (6.2.0-1+deb12u1) bookworm; urgency=low
 .
   * Fix for memory-initialization in command-line parser (bug#1038384)
     - one-line change to source-code, replacing malloc() with calloc()
     - reduces risk of SEGV crashes when handling unrecognized command-line options

cups (2.4.2-3+deb12u4) bookworm; urgency=medium
 .
   * remove debian/NEWS again to avoid too much information when only
     the client part is installed
   * fix typo in config filename
cups (2.4.2-3+deb12u3) bookworm; urgency=medium
 .
   * move debian/NEWS.Debian to debian/NEWS
cups (2.4.2-3+deb12u2) bookworm; urgency=medium
 .
   * CVE-2023-4504
     Postscript parsing heap-based buffer overflow
   * CVE-2023-32360 (Closes: #1051953)
     authentication issue

curl (7.88.1-10+deb12u3) bookworm; urgency=medium
 .
   * Team upload.
 .
   [ Andreas Hasenack ]
   * Move ldap-test to a script and add retry logic.
 .
   [ Carlos Henrique Lima Melara ]
   * Fix CVE-2023-38039: HTTP headers eat all memory.
       - Done by debian/patches/CVE-2023-38039.patch.
curl (7.88.1-10+deb12u2) bookworm; urgency=medium
 .
   * Team upload.
   * LDAP backend: correct the usage of OpenLDAP-specific functionality being
     disabled with an upstream patch (Closes: #1041964)
     This corrects the improper fetching of binary attributes.
   * debian/tests: add a DEP-8 test that getting binary LDAP attributes works now
curl (7.88.1-10+deb12u1) bookworm-security; urgency=medium
 .
   * Team upload.
   * Fix CVE-2023-32001: TOCTOU race condition in Curl_fopen():
     - Done by d/p/CVE-2023-32001.patch (Closes: #1041812).
curl (7.88.1-10+deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.

cyrus-imapd (3.6.1-4+deb12u1) bookworm; urgency=medium
 .
   * Doc: add patch to fix minimal version needed before upgrade
     (see #1037346)
   * Fix postint version check (see #1037346)

dar (2.7.8-2) bookworm; urgency=high
 .
   * Include a patch that can prevent issues with creating isolated catalogs
     with dar built using gcc 12 or newer.  Closes: #1050663.

dbus (1.14.10-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm
 .
 dbus (1.14.10-1) unstable; urgency=medium
 .
   * New upstream stable release
     - Fix a dbus-daemon crash during policy reload if a connection belongs
       to a user account that has been deleted, or if a Name Service Switch
       plugin is broken, on kernels not supporting SO_PEERGROUPS
     - Report the error correctly if getting the groups of a uid fails
     - If a connection has a primary group ID but no supplementary groups,
       report the primary group ID in GetConnectionCredentials()
       UnixGroupIDs field
   * dbus-user-session: Copy XDG_CURRENT_DESKTOP to activation environment.
     Previously this was only done if dbus-x11 was installed.
     This is needed by various freedesktop.org specifications, in particular
     for xdg-desktop-portal (>= 1.17) to choose the correct portal backend
     for a desktop session. Some session managers like gnome-session and
     plasma-workspace already upload this into the activation environment,
     but many older or simpler session managers do not.
dbus (1.14.8-2) unstable; urgency=high
 .
   * dbus-daemon.postinst: Stop trying to take DPKG_ROOT into account.
     This unintentionally disabled the code path that would copy systemd's
     /etc/machine-id in preference to creating an entirely new machine ID.
     (Closes: #1040790)
   * d/tests: Add test coverage for #1040790

debian-archive-keyring (2023.3+deb12u1) bookworm; urgency=medium
 .
   * Clean up leftover keyrings in trusted.gpg.d
   * Adjust keyring cleanup versions for a stable update

debian-edu-doc (2.12.18~deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm.
 .
 debian-edu-doc (2.12.18) unstable; urgency=medium
 .
   [ Holger Levsen ]
   * Update Debian Edu Bookworm manual from the wiki, thanks to Guido Berhörster.
   * Update Debian Edu Bookworm manual from the wiki.
   * debian/copyright: Update after running 'make update-copyright'.
 .
   [ Frans Spiesschaert ]
   * Synchronize translations from weblate.org
 .
   [ Translation updates ]
   * Bookworm manual:
     - Brasilian Portuguese: Fred Maranhão and José Vieira.
     - Dutch: Frans Spiesschaert.
     - Portuguese: Fred Maranhão.
     - Romanian: Remus-Gabriel Chelu.
     - Spanish: Eulalio Barbero Espinosa and Francisco Javier Carro Orgeira.
     - Swedish: Luna Jernberg.
 .
   * Bullseye manual:
     - Brasilian Portuguese: Fred Maranhão and José Vieira.
     - Portuguese: Fred Maranhão.
     - Romanian: Remus-Gabriel Chelu.
     - Spanish: Eulalio Barbero Espinosa and Francisco Javier Carro Orgeira.
     - Swedish: Luna Jernberg.

debian-edu-install (2.12.9~deb12u1) bookworm; urgency=medium
 .
   * Release to bookworm.

debian-installer (20230607+deb12u2) bookworm; urgency=medium
 .
   * Bump Linux kernel ABI to 6.1.0-13.
   * Adjust linux-image build-deps as well.

debian-installer-netboot-images (20230607+deb12u2) bookworm; urgency=medium
 .
   * Update to 20230607+deb12u2, from bookworm-proposed-updates.

debian-parl (1.9.31+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild using newer boxer-data.
     + parl-desktop: no longer depend on webext-https-everywhere because
     nowadays all major browsers offer native support for HTTPS only mode.
     (Closes: #1041350)

debianutils (5.7-0.5~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 debianutils (5.7-0.5) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * update-shells: Do not create duplicate entries in /etc/shells.
   * update-shells: Manage (/usr)/bin/sh in the state file.
   * update-shells: Fix canonicalization of shells in aliased locations.
     (Closes: #1035820)

dgit (10.7+deb12u2) bookworm; urgency=medium
 .
   * Prevent pushing older versions than is in the archive.
     Closes: #1050711.  [Reports from Helmut Grohne and Phil Hands]
     Backported from dgit 11.3.
 .
 dgit (10.7+deb12u1) bookworm; urgency=medium
 .
   * Use the old /updates security map only for buster.  Fixes fetching from
     suites ,-security after buster.  [Matthew Vernon]  Closes: #1050179.
dgit (10.7+deb12u1) bookworm; urgency=medium
 .
   * Use the old /updates security map only for buster.  Fixes fetching from
     suites ,-security after buster.  [Matthew Vernon]  Closes: #1050179.

dhcpcd5 (9.4.1-24~deb12u2) bookworm; urgency=medium
 .
   * Fixed dhcpcd.preinst with the tilde version.
dhcpcd5 (9.4.1-24~deb12u1) bookworm; urgency=medium
 .
   * Backported Wheezy upgrade mitigation from unstable (Closes: #1037190).
     + Include /usr/share/dpkg/pkg-info.mk needed for target version mingling.
     + Add epoch to bin:dhcpcd via override_dh_gencontrol.
       Wheezy had (1:3.2.3-11+deb7u1) so reintroduce the epoch for one target.
     + Add dhcpcd.preinst by Andreas Beckmann to clean up upgrade leftovers.
dhcpcd5 (9.4.1-23) experimental; urgency=medium
 .
   [ Martin-Éric Racine ]
   * Migrate both VCS addresses to 5-less ones.
 .
   [ Shengjing Zhu ]
   * Drop Conflicts/Replaces dhcp-client (Closes: #1036085).
   * Drop deprecated ntpd integration (Closes: #1036092).
     No longer working since ntpd was superseded by ntpsec.

dpdk (22.11.3-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream release 22.11.3; for a full list of changes see:
     http://doc.dpdk.org/guides-22.11/rel_notes/release_22_11.html
   * Refresh patches to remove fuzz from 22.11.3
   * Update symbols file for internal experimental symbol in librte-common-
     sfc-efx23
dpdk (22.11.2-3) unstable; urgency=medium
 .
   * d/p/disable-parallel-sphinx.patch: fix reprotest for parallel
     sphinx
   * d/t/test-initscripts: adapt to dropped sysV to un-break autopkgtest
dpdk (22.11.2-2) unstable; urgency=medium
 .
   * No changes source-only upload.

dput-ng (1.35+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
 .
   [ Mattia Rizzolo ]
   * Update codenames of allowed upload targets.  Closes: #1051142
     Add bookworm-backports, bullseye-backports-sloppy, and trixie.
 .
   [ Gianfranco Costamagna ]
   * Fix FTBFS due to time bomb, move from bionic to jammy in test fixtures,
     also postpone another time bomb due to focal.  Closes: #1042271

efibootguard (0.13-2+deb12u1) bookworm; urgency=medium
 .
   * d/patches: Backport fix to address CVE-2023-39950
     Backport of security fix for CVE-2023-39950, Insufficient
     or missing validation and sanitization of input from untrustworthy
     bootloader environment files can cause crashes and probably also
     code injections into `bg_setenv`) or programs using `libebgenv`.
     (Closes: #1049436)

electrum (4.3.4+dfsg1-1+deb12u1) bookworm; urgency=high
 .
   * Add debian/patches/Lightning-security-fix.patch to fix a Lightning security
     problem fixed upstream in 4.4.6.  (Closes: #1052211)
   * Add myself to uploaders and remove Tristan Seligmann <mithrandi@debian.org>.
     (Closes: #1041171).

fastdds (2.9.1+ds-1+deb12u1) bookworm-security; urgency=medium
 .
   * Backport security fixes
     - CVE-2023-39534 Malformed GAP submessage triggers assertion failure
     - CVE-2023-39945 Unhandled exception on malformed data submessage
     - CVE-2023-39946 Heap overflow triggered by PID_PROPERTY_LIST
     - CVE-2023-39947 Heap overflow triggered by PID_PROPERTY_LIST
     - CVE-2023-39948 Uncaught fastcdr exceptions
     - CVE-2023-39949 Improper validation of sequence numbers
     (Closes: #1043548)

filezilla (3.63.0-1+deb12u2) bookworm; urgency=medium
 .
   * Add patch: 0003-crash-when-removing-filetypes-from-list.patch (Closes: #1043556)
filezilla (3.63.0-1+deb12u1) bookworm; urgency=medium
 .
   * Fix FTBFS and add 32-bit builds back to bookworm

firefox-esr (102.15.1esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fix for mfsa2023-40, also known as CVE-2023-4863.
firefox-esr (102.15.1esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fix for mfsa2023-40, also known as CVE-2023-4863.
firefox-esr (102.15.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-35, also known as:
     CVE-2023-4573, CVE-2023-4574, CVE-2023-4575, CVE-2023-4581,
     CVE-2023-4584.
firefox-esr (102.15.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-35, also known as:
     CVE-2023-4573, CVE-2023-4574, CVE-2023-4575, CVE-2023-4581,
     CVE-2023-4584.
firefox-esr (102.14.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-30, also known as:
     CVE-2023-4045, CVE-2023-4046, CVE-2023-4047, CVE-2023-4048,
     CVE-2023-4049, CVE-2023-4050, CVE-2023-4055, CVE-2023-4056.
firefox-esr (102.14.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-30, also known as:
     CVE-2023-4045, CVE-2023-4046, CVE-2023-4047, CVE-2023-4048,
     CVE-2023-4049, CVE-2023-4050, CVE-2023-4055, CVE-2023-4056.
firefox-esr (102.13.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-23, also known as:
     CVE-2023-37201, CVE-2023-37202, CVE-2023-37207, CVE-2023-37208,
     CVE-2023-37211.
 .
   * debian/rules, media/ffvpx/config_unix64.h: Work around
     https://sourceware.org/bugzilla/show_bug.cgi?id=30578.
   * debian/upstream.mk: Unstable is trixie.

firewalld (1.3.3-1~deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm.
firewalld (1.3.2-1) experimental; urgency=medium
 .
   * New upstream version 1.3.2
firewalld (1.3.1-1) experimental; urgency=medium
 .
   * New upstream version 1.3.1

flann (1.9.2+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * Drop extra -llz4 from flann.pc (already in Requires:) (Closes: #1052649)

foot (1.13.1-2+deb12u1) bookworm; urgency=medium
 .
   * Backport patch to ignore XTGETTCAP queries with invalid hex encodings
     (Closes: #1053115)

freedombox (23.6.2+deb12u1) bookworm; urgency=medium
 .
   * upgrades: Use n= in apt preferences
   * upgrades: Use n= for unattended-upgrades origin pattern (Closes: #1043969)

freeradius (3.2.1+dfsg-4+deb12u1) bookworm; urgency=medium
 .
   * Add d/gbp.conf for bookworm stable branch
   * Cherry-Pick two upstream commits to fix TLS-Client-Cert-Common-Name
     contains incorrect value (Closes: #1043282)

frr (8.4.4-1.1~deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Update to upstream 8.4.4 stable point release.
frr (8.4.4-1) unstable; urgency=medium
 .
   * new upstream release FRR 8.4.4
   * upstream fix CVE-2023-31489 (closes: #1036061)
   * upstream fix CVE-2023-31490 (closes: #1036062)
   * correctly use sphinxdoc:Built-Using
   * point watch file at git tarball, no more upstream dist tarballs

ghostscript (10.0.0~dfsg-11+deb12u2) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Copy pcx buffer overrun fix from devices/gdevpcx.c (CVE-2023-38559)
     (Closes: #1043033)
   * IJS device - try and secure the IJS server startup (CVE-2023-43115)

gjs (1.74.2-1+deb12u1) bookworm; urgency=medium
 .
   * d/p/function-Always-initialize-callback-return-value.patch:
     Add patch backported from upstream 1.77.1 avoiding infinite loops
     of idle callbacks if an idle handler is called during GC. The most
     common reason for this is if a GNOME Shell extension incorrectly does
     not disconnect all of its signal/idle/timeout handlers. This change
     mitigates the infinite loop and associated log flooding, but does not
     fix the extension behaviour. (Closes: #1034356)

glibc (2.36-9+deb12u2) bookworm; urgency=medium
 .
   * debian/patches/git-updates.diff: update from upstream stable branch:
     - Fix the value of F_GETLK/F_SETLK/F_SETLKW with __USE_FILE_OFFSET64 on
       ppc64el.  Closes: #1050592.
     - Fix a stack read overflow in getaddrinfo in no-aaaa mode
       (CVE-2023-4527).  Closes: #1051958.
     - Fix use after free in getcanonname (CVE-2023-4806, CVE-2023-5156).
     - Update the x86 cacheinfo code to look at the per-thread L3 cache to
       determine the non-temporal threshold. This improves memory and string
       functions on modern CPUs.
     - Fix _dl_find_object to return correct values even during early startup.
     - Always call destructors in reverse constructor order.

gnome-shell (43.6-1~deb12u2) bookworm-security; urgency=high
 .
   * Team upload
   * Avoid exposing window previews on lock screen via keyboard shortcuts
     (Closes: #1052067, CVE-2023-43090, gnome-shell#6990)

gosa-plugins-netgroups (2.8~git20211022.3b6449d-4+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Silence PHP 8.2 deprecation warnings. (Closes: #1038683).

gosa-plugins-systems (2.8~git20211027.5741b8f-4+deb12u2) bookworm; urgency=medium
 .
   [ Guido Berhörster ]
   * debian/patches:
     + Add 1004_enforce_unqualified_hostname.patch. (Closes: #1042083, #1039700).
     + Extend patch 1004. Add unqualified hostname checks for all types of
       systems.
 .
   [ Mike Gabriel ]
   * debian/patches:
     + Add 1003_fix-icon-rendering-in-DHCP-servlet.patch. Adjust icon image html
       code rendering to classic/default theme alternatives. (Closes: #1049410).
     + Add 1005_plugins-admin-systems-goto-class_printGeneric.inc-Fi.patch. Fix
       adding (standalone) "Network printer" systems via GOsa²'s system
       management. (Closes: #1050215).
     + Add 1006_plugins-admin-systems-class_termDNS.inc-Avoid-doubli.patch. Fix
       generation of target DNs for various system types. This avoids faulty
       duplications in the DN, such as 'ou=printers,ou=systems,ou=systems,
       <base_ou_dn>.
gosa-plugins-systems (2.8~git20211027.5741b8f-4+deb12u1) bookworm; urgency=medium
 .
   [ Guido Berhoerster ]
   * debian/patches:
     + Add 1002_fix-dhcp-dns-checkboxes.patch fixing checkboxes. (Closes:
       #1041619).

gst-plugins-ugly1.0 (1.22.0-2+deb12u1) bookworm-security; urgency=medium
 .
   * SA-2023-0004 / SA-2023-0005

gtk+3.0 (3.24.38-2~deb12u1) bookworm; urgency=medium
 .
   * Rebuild new upstream release 3.24.38 for Debian 12
   * Changes since 3.24.37-2 in initial Debian 12 release:
     - Fix application crash with "Couldn't find current GLX or EGL context"
       under unknown circumstances (gtk#5711 upstream, regression in 3.24.37)
     - Fix a gnome-flashback crash when taking screenshots
       (gtk#5691, regression in 3.24.37)
     - Fix application crash when running under Wayland with the
       cursor-theme-size GSetting set to 0 (gtk#5700)
     - Ensure apps launched under Wayland after setting
       org.gtk.Settings.Modules will load the desired modules at startup
       (gtk!5733)
     - Don't crash in Wayland environments that don't implement
       xdg_activation_v1, such as Enlightenment (Closes: #1043000)
     - Fix a crash in gtk_application_set_screensaver_active() during
       app exit (gtk#5775)
     - Silence GFileInfo warnings if used with a backported version of GLib
       (gtk!5645)
     - Use a light colour for the caret in dark themes, making it much
       easier to see in some apps, in particular Evince (evince#1842)
     - Show more information in the "inspector" debugging interface: Pango
       backend, input method module (gtk!5706, gtk#4512)
     - Fix broken links in documentation (gtk!5718)
     - Update documentation to discourage use of
       gdk_pixbuf_get_from_window() (gtk#5691)
     - Translation updates: ab, bg, ca, da, de, es, eu, fa, fr, gl, he, hu,
       id, it, ka, ko, lt, nl, pl, pt, pt_BR, ru, sl, sr, sv, tr, uk
     - testsuite: Disable some reftests that are not reliable
     - Windows-specific changes not relevant to Debian
     - macOS-specific (Quartz) changes not relevant to Debian
     - d/p/Update-Galician-translation.patch,
       d/p/Update-Hebrew-translation.patch,
       d/p/selection-Use-the-right-mime-type.patch:
       Drop patches that were included in 3.24.38
gtk+3.0 (3.24.38-1) experimental; urgency=medium
 .
   [ Jeremy Bícha ]
   * New upstream release
   * Drop 3 patches applied in new release

gtk4 (4.8.3+ds-2+deb12u1) bookworm; urgency=medium
 .
   * d/p/placessidebar-Make-all-rows-ellipsize.patch:
     Add patch from upstream gtk-4-8 branch to fix truncation in places
     sidebar with large text accessibility setting (Closes: #1043261)
   * d/patches: Mark patch for #1029972 as also applied for 4.8.4
   * d/watch: Only watch for versions 4.8.x for bookworm
   * d/gbp.conf, d/control.in: Switch packaging branch to debian/bookworm

highway (1.0.3-3+deb12u1) bookworm; urgency=medium
 .
   * d/rules: Fix armhf neon-less system. Closes: #1033656

hnswlib (0.6.2-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * cve-2023-37365.patch: new: fix CVE-2023-37365.
     This is done by capping M to 10000 per discussion with upstream.
     (Closes: #1041426)

horizon (3:23.0.0-5+deb12u1) bookworm; urgency=medium
 .
   * CVE-2022-45582: Open redirect/phishing attack via "success_url" parameter,
     add upstream patch: "Fix success_url parameter issue for Edit Snapshot"
     (Closes: #1050518).

icingaweb2 (2.11.4-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Update branch in gbp.conf & Vcs-Git URL.
   * Add patch to suppress Deprecated notices.
     (closes: #1037925)

imlib2 (1.10.0-4+deb12u1) bookworm; urgency=medium
 .
   *  Fix imlib_clone_image() no longer preserves the alpha channel flag.
      (Closes: #1041406)

indent (2.2.12-4+deb12u2) bookworm; urgency=medium
 .
   * Apply two patches by Petr Písař <ppisar@redhat.com>.
   - Fix an out-of-buffer read in search_brace()/lexi() on an condition
     without parentheses followed with an overlong comment.
   - Fix a heap buffer overwrite in search_brace(). Closes: #1049366.
     This one is CVE-2023-40305.

inetutils (2:2.4-2+deb12u1) bookworm; urgency=medium
 .
   * Add patch from upstream to check return values for set*id() functions.
     Fixes CVE-2023-40303. (Closes: #1049365)

inn2 (2.7.1-1+deb12u1) bookworm; urgency=medium
 .
   * Added patch backport_a1f2e9323: this upstream commit fixes nnrpd hangs
     when compression is enabled.
   * Added patch backport_f7d111aad: this upstream commit adds support for
     high-precision syslog timestamps which now are the default in Debian.
   * Made inn-{radius,secrets}.conf not world readable.

intel-microcode (3.20230808.1~deb12u1) bookworm-security; urgency=high
 .
   * Build for bookworm (no changes)
 .
 intel-microcode (3.20230808.1) unstable; urgency=high
 .
   * New upstream microcode datafile 20230808 (closes: #1043305)
     Mitigations for "Downfall" INTEL-SA-00828 (CVE-2022-40982),
     INTEL-SA-00836 (CVE-2023-23908) and INTEL-SA-00837 (CVE-2022-41804)
     * Updated microcodes:
       sig 0x00050653, pf_mask 0x97, 2023-03-23, rev 0x1000181, size 36864
       sig 0x00050654, pf_mask 0xb7, 2023-03-06, rev 0x2007006, size 44032
       sig 0x00050656, pf_mask 0xbf, 2023-03-17, rev 0x4003604, size 38912
       sig 0x00050657, pf_mask 0xbf, 2023-03-17, rev 0x5003604, size 38912
       sig 0x0005065b, pf_mask 0xbf, 2023-03-21, rev 0x7002703, size 30720
       sig 0x000606a6, pf_mask 0x87, 2023-03-30, rev 0xd0003a5, size 297984
       sig 0x000706e5, pf_mask 0x80, 2023-02-26, rev 0x00bc, size 113664
       sig 0x000806c1, pf_mask 0x80, 2023-02-27, rev 0x00ac, size 111616
       sig 0x000806c2, pf_mask 0xc2, 2023-02-27, rev 0x002c, size 98304
       sig 0x000806d1, pf_mask 0xc2, 2023-02-27, rev 0x0046, size 103424
       sig 0x000806e9, pf_mask 0xc0, 2023-02-22, rev 0x00f4, size 106496
       sig 0x000806e9, pf_mask 0x10, 2023-02-23, rev 0x00f4, size 105472
       sig 0x000806ea, pf_mask 0xc0, 2023-02-23, rev 0x00f4, size 105472
       sig 0x000806eb, pf_mask 0xd0, 2023-02-23, rev 0x00f4, size 106496
       sig 0x000806ec, pf_mask 0x94, 2023-02-26, rev 0x00f8, size 106496
       sig 0x000806f8, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1, size 572416
       sig 0x000806f7, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f6, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f5, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f4, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f8, pf_mask 0x10, 2023-05-15, rev 0x2c000271, size 605184
       sig 0x000806f6, pf_mask 0x10, 2023-05-15, rev 0x2c000271
       sig 0x000806f5, pf_mask 0x10, 2023-05-15, rev 0x2c000271
       sig 0x000806f4, pf_mask 0x10, 2023-05-15, rev 0x2c000271
       sig 0x00090672, pf_mask 0x07, 2023-04-18, rev 0x002e, size 220160
       sig 0x00090675, pf_mask 0x07, 2023-04-18, rev 0x002e
       sig 0x000b06f2, pf_mask 0x07, 2023-04-18, rev 0x002e
       sig 0x000b06f5, pf_mask 0x07, 2023-04-18, rev 0x002e
       sig 0x000906a3, pf_mask 0x80, 2023-04-18, rev 0x042c, size 219136
       sig 0x000906a4, pf_mask 0x80, 2023-04-18, rev 0x042c
       sig 0x000906e9, pf_mask 0x2a, 2023-02-23, rev 0x00f4, size 108544
       sig 0x000906ea, pf_mask 0x22, 2023-02-23, rev 0x00f4, size 104448
       sig 0x000906eb, pf_mask 0x02, 2023-02-23, rev 0x00f4, size 106496
       sig 0x000906ec, pf_mask 0x22, 2023-02-23, rev 0x00f4, size 105472
       sig 0x000906ed, pf_mask 0x22, 2023-02-27, rev 0x00fa, size 106496
       sig 0x000a0652, pf_mask 0x20, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0653, pf_mask 0x22, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0655, pf_mask 0x22, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0660, pf_mask 0x80, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0661, pf_mask 0x80, 2023-02-23, rev 0x00f8, size 96256
       sig 0x000a0671, pf_mask 0x02, 2023-02-26, rev 0x0059, size 104448
       sig 0x000b0671, pf_mask 0x32, 2023-06-06, rev 0x0119, size 210944
       sig 0x000b06a2, pf_mask 0xe0, 2023-06-06, rev 0x4119, size 216064
       sig 0x000b06a3, pf_mask 0xe0, 2023-06-06, rev 0x4119
       sig 0x000b06e0, pf_mask 0x11, 2023-04-12, rev 0x0011, size 136192
   * source: update symlinks to reflect id of the latest release, 20230808
intel-microcode (3.20230808.1~deb11u1) bullseye-security; urgency=high
 .
   * Backport to Debian Bullseye
   * debian/control: revert non-free-firmware change
 .
 intel-microcode (3.20230808.1) unstable; urgency=high
 .
   * New upstream microcode datafile 20230808 (closes: #1043305)
     Mitigations for "Downfall" INTEL-SA-00828 (CVE-2022-40982),
     INTEL-SA-00836 (CVE-2023-23908) and INTEL-SA-00837 (CVE-2022-41804)
     * Updated microcodes:
       sig 0x00050653, pf_mask 0x97, 2023-03-23, rev 0x1000181, size 36864
       sig 0x00050654, pf_mask 0xb7, 2023-03-06, rev 0x2007006, size 44032
       sig 0x00050656, pf_mask 0xbf, 2023-03-17, rev 0x4003604, size 38912
       sig 0x00050657, pf_mask 0xbf, 2023-03-17, rev 0x5003604, size 38912
       sig 0x0005065b, pf_mask 0xbf, 2023-03-21, rev 0x7002703, size 30720
       sig 0x000606a6, pf_mask 0x87, 2023-03-30, rev 0xd0003a5, size 297984
       sig 0x000706e5, pf_mask 0x80, 2023-02-26, rev 0x00bc, size 113664
       sig 0x000806c1, pf_mask 0x80, 2023-02-27, rev 0x00ac, size 111616
       sig 0x000806c2, pf_mask 0xc2, 2023-02-27, rev 0x002c, size 98304
       sig 0x000806d1, pf_mask 0xc2, 2023-02-27, rev 0x0046, size 103424
       sig 0x000806e9, pf_mask 0xc0, 2023-02-22, rev 0x00f4, size 106496
       sig 0x000806e9, pf_mask 0x10, 2023-02-23, rev 0x00f4, size 105472
       sig 0x000806ea, pf_mask 0xc0, 2023-02-23, rev 0x00f4, size 105472
       sig 0x000806eb, pf_mask 0xd0, 2023-02-23, rev 0x00f4, size 106496
       sig 0x000806ec, pf_mask 0x94, 2023-02-26, rev 0x00f8, size 106496
       sig 0x000806f8, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1, size 572416
       sig 0x000806f7, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f6, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f5, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f4, pf_mask 0x87, 2023-05-09, rev 0x2b0004b1
       sig 0x000806f8, pf_mask 0x10, 2023-05-15, rev 0x2c000271, size 605184
       sig 0x000806f6, pf_mask 0x10, 2023-05-15, rev 0x2c000271
       sig 0x000806f5, pf_mask 0x10, 2023-05-15, rev 0x2c000271
       sig 0x000806f4, pf_mask 0x10, 2023-05-15, rev 0x2c000271
       sig 0x00090672, pf_mask 0x07, 2023-04-18, rev 0x002e, size 220160
       sig 0x00090675, pf_mask 0x07, 2023-04-18, rev 0x002e
       sig 0x000b06f2, pf_mask 0x07, 2023-04-18, rev 0x002e
       sig 0x000b06f5, pf_mask 0x07, 2023-04-18, rev 0x002e
       sig 0x000906a3, pf_mask 0x80, 2023-04-18, rev 0x042c, size 219136
       sig 0x000906a4, pf_mask 0x80, 2023-04-18, rev 0x042c
       sig 0x000906e9, pf_mask 0x2a, 2023-02-23, rev 0x00f4, size 108544
       sig 0x000906ea, pf_mask 0x22, 2023-02-23, rev 0x00f4, size 104448
       sig 0x000906eb, pf_mask 0x02, 2023-02-23, rev 0x00f4, size 106496
       sig 0x000906ec, pf_mask 0x22, 2023-02-23, rev 0x00f4, size 105472
       sig 0x000906ed, pf_mask 0x22, 2023-02-27, rev 0x00fa, size 106496
       sig 0x000a0652, pf_mask 0x20, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0653, pf_mask 0x22, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0655, pf_mask 0x22, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0660, pf_mask 0x80, 2023-02-23, rev 0x00f8, size 97280
       sig 0x000a0661, pf_mask 0x80, 2023-02-23, rev 0x00f8, size 96256
       sig 0x000a0671, pf_mask 0x02, 2023-02-26, rev 0x0059, size 104448
       sig 0x000b0671, pf_mask 0x32, 2023-06-06, rev 0x0119, size 210944
       sig 0x000b06a2, pf_mask 0xe0, 2023-06-06, rev 0x4119, size 216064
       sig 0x000b06a3, pf_mask 0xe0, 2023-06-06, rev 0x4119
       sig 0x000b06e0, pf_mask 0x11, 2023-04-12, rev 0x0011, size 136192
   * source: update symlinks to reflect id of the latest release, 20230808
 .
 intel-microcode (3.20230512.1) unstable; urgency=medium
 .
   * New upstream microcode datafile 20230512 (closes: #1036013)
     * New microcodes:
       sig 0x000906a4, pf_mask 0x40, 2022-10-12, rev 0x0004, size 115712
       sig 0x000b06e0, pf_mask 0x01, 2022-12-19, rev 0x0010, size 134144
     * Updated microcodes:
       sig 0x00050653, pf_mask 0x97, 2022-12-21, rev 0x1000171, size 36864
       sig 0x00050654, pf_mask 0xb7, 2022-12-21, rev 0x2006f05, size 44032
       sig 0x00050656, pf_mask 0xbf, 2022-12-21, rev 0x4003501, size 37888
       sig 0x00050657, pf_mask 0xbf, 2022-12-21, rev 0x5003501, size 37888
       sig 0x0005065b, pf_mask 0xbf, 2022-12-21, rev 0x7002601, size 29696
       sig 0x000606a6, pf_mask 0x87, 2022-12-28, rev 0xd000390, size 296960
       sig 0x000706e5, pf_mask 0x80, 2022-12-25, rev 0x00ba, size 113664
       sig 0x000806a1, pf_mask 0x10, 2023-01-13, rev 0x0033, size 34816
       sig 0x000806c1, pf_mask 0x80, 2022-12-28, rev 0x00aa, size 110592
       sig 0x000806c2, pf_mask 0xc2, 2022-12-28, rev 0x002a, size 97280
       sig 0x000806d1, pf_mask 0xc2, 2022-12-28, rev 0x0044, size 102400
       sig 0x000806e9, pf_mask 0xc0, 2022-12-26, rev 0x00f2, size 105472
       sig 0x000806e9, pf_mask 0x10, 2023-01-02, rev 0x00f2, size 105472
       sig 0x000806ea, pf_mask 0xc0, 2022-12-26, rev 0x00f2, size 105472
       sig 0x000806eb, pf_mask 0xd0, 2022-12-26, rev 0x00f2, size 105472
       sig 0x000806ec, pf_mask 0x94, 2022-12-26, rev 0x00f6, size 105472
       sig 0x000806f8, pf_mask 0x87, 2023-03-13, rev 0x2b000461, size 564224
       sig 0x000806f7, pf_mask 0x87, 2023-03-13, rev 0x2b000461
       sig 0x000806f6, pf_mask 0x87, 2023-03-13, rev 0x2b000461
       sig 0x000806f5, pf_mask 0x87, 2023-03-13, rev 0x2b000461
       sig 0x000806f4, pf_mask 0x87, 2023-03-13, rev 0x2b000461
       sig 0x000806f8, pf_mask 0x10, 2023-02-14, rev 0x2c0001d1, size 595968
       sig 0x000806f6, pf_mask 0x10, 2023-02-14, rev 0x2c0001d1
       sig 0x000806f5, pf_mask 0x10, 2023-02-14, rev 0x2c0001d1
       sig 0x000806f4, pf_mask 0x10, 2023-02-14, rev 0x2c0001d1
       sig 0x000906a3, pf_mask 0x80, 2023-02-14, rev 0x042a, size 218112
       sig 0x000906a4, pf_mask 0x80, 2023-02-14, rev 0x042a
       sig 0x000906e9, pf_mask 0x2a, 2022-12-26, rev 0x00f2, size 108544
       sig 0x000906ea, pf_mask 0x22, 2023-01-12, rev 0x00f2, size 104448
       sig 0x000906eb, pf_mask 0x02, 2022-12-26, rev 0x00f2, size 105472
       sig 0x000906ec, pf_mask 0x22, 2023-01-12, rev 0x00f2, size 104448
       sig 0x000906ed, pf_mask 0x22, 2023-02-05, rev 0x00f8, size 104448
       sig 0x000a0652, pf_mask 0x20, 2022-12-27, rev 0x00f6, size 96256
       sig 0x000a0653, pf_mask 0x22, 2023-01-01, rev 0x00f6, size 97280
       sig 0x000a0655, pf_mask 0x22, 2022-12-26, rev 0x00f6, size 96256
       sig 0x000a0660, pf_mask 0x80, 2022-12-26, rev 0x00f6, size 97280
       sig 0x000a0661, pf_mask 0x80, 2022-12-26, rev 0x00f6, size 96256
       sig 0x000a0671, pf_mask 0x02, 2022-12-25, rev 0x0058, size 103424
       sig 0x000b0671, pf_mask 0x32, 2023-02-06, rev 0x0113, size 207872
       sig 0x000b06a2, pf_mask 0xc0, 2023-02-22, rev 0x4112, size 212992
       sig 0x000b06a3, pf_mask 0xc0, 2023-02-22, rev 0x4112
   * source: update symlinks to reflect id of the latest release, 20230512

iperf3 (3.12-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix memory allocation hazard and crash (Closes: #1040830)

jekyll (4.3.1+dfsg-3+deb12u1) bookworm; urgency=medium
 .
   [ Sébastien Villemot ]
   * Allow YAML aliases (Closes: #1050867)

jetty9 (9.4.50-4+deb12u1) bookworm-security; urgency=high
 .
   * Team upload.
   * The org.eclipse.jetty.servlets.CGI has been deprecated. It is potentially
     unsafe to use it. The upstream developers of Jetty recommend to use Fast CGI
     instead. See also CVE-2023-36479.
   * Fix CVE-2023-26048:
     Jetty is a java based web server and servlet engine. In affected versions
     servlets with multipart support (e.g. annotated with `@MultipartConfig`)
     that call `HttpServletRequest.getParameter()` or
     `HttpServletRequest.getParts()` may cause `OutOfMemoryError` when the
     client sends a multipart request with a part that has a name but no
     filename and very large content. This happens even with the default
     settings of `fileSizeThreshold=0` which should stream the whole part
     content to disk.
   * Fix CVE-2023-26049:
     Nonstandard cookie parsing in Jetty may allow an attacker to smuggle
     cookies within other cookies, or otherwise perform unintended behavior by
     tampering with the cookie parsing mechanism.
   * Fix CVE-2023-40167:
     Prior to this version Jetty accepted the `+` character proceeding the
     content-length value in a HTTP/1 header field. This is more permissive than
     allowed by the RFC and other servers routinely reject such requests with
     400 responses. There is no known exploit scenario, but it is conceivable
     that request smuggling could result if jetty is used in combination with a
     server that does not close the connection after sending such a 400
     response.
   * CVE-2023-36479:
     Users of the CgiServlet with a very specific command structure may have the
     wrong command executed. If a user sends a request to a
     org.eclipse.jetty.servlets.CGI Servlet for a binary with a space in its
     name, the servlet will escape the command by wrapping it in quotation
     marks. This wrapped command, plus an optional command prefix, will then be
     executed through a call to Runtime.exec. If the original binary name
     provided by the user contains a quotation mark followed by a space, the
     resulting command line will contain multiple tokens instead of one.
   * Fix CVE-2023-41900:
     Jetty is vulnerable to weak authentication. If a Jetty
     `OpenIdAuthenticator` uses the optional nested `LoginService`, and that
     `LoginService` decides to revoke an already authenticated user, then the
     current request will still treat the user as authenticated. The
     authentication is then cleared from the session and subsequent requests
     will not be treated as authenticated. So a request on a previously
     authenticated session could be allowed to bypass authentication after it
     had been rejected by the `LoginService`. This impacts usages of the
     jetty-openid which have configured a nested `LoginService` and where that
     `LoginService` is capable of rejecting previously authenticated users.

kanboard (1.2.26+ds-2+deb12u2) bookworm-security; urgency=high
 .
   * backport fix for CVE-2023-36813: Multiple Authenticated SQL Injections
     https://github.com/kanboard/kanboard/security/advisories/GHSA-9gvq-78jp-jxcx
     Fix picked from kanboard v1.2.31
     https://github.com/kanboard/kanboard/commit/25b93343baeaf8ad
     (Closes: #1040265)
 .
 kanboard (1.2.26+ds-2+deb12u1) bookworm; urgency=high
 .
   * Cherry-pick security fixes from kanboard_1.2.26+ds-[34] for bookworm.
   * backport fix for CVE-2023-32685 from kanboard v1.2.29
     https://github.com/kanboard/kanboard/security/advisories/GHSA-hjmw-gm82-r4gv
     Based on upstream commits 26b6eeb & c9c1872.
     (cherry picked from commit d9b8d854f2d35831b04b84cfdda41cc7b49e3a28)
     (Closes: #1036874)
   * backport security fixes from kanboard v1.2.30.
      > CVE-2023-33956: Parameter based Indirect Object Referencing leading
        to private file exposure
      > CVE-2023-33968: Missing access control allows user to move and
        duplicate tasks to any project in the software
      > CVE-2023-33969: Stored XSS in the Task External Link Functionality
      > CVE-2023-33970: Missing access control in internal task links feature
     (cherry picked from commit 4ad0ad220613bbf04bef559addba8c363fdf0dfa)
     (Closes: #1037167)
   * point gbp & salsa at bookworm

kernelshark (2.2.1-1~deb12u1) bookworm; urgency=medium
 .
   [ Sudip Mukherjee ]
   * New upstream version 2.2.1 (Closes: #1049866)
     - Update links for version update.
   * Fix package description. (Closes: #1028585)
kernelshark (2.2.1-1~bpo12+1) bookworm-backports; urgency=medium
 .
   * Rebuild for bookworm-backports.

krb5 (1.20.1-2+deb12u1) bookworm; urgency=high
 .
   * Fixes CVE-2023-36054: a  remote authenticated attacker can cause
     kadmind to free an uninitialized pointer.  Upstream believes remote
     code execusion is unlikely, Closes: #1043431

lemonldap-ng (2.16.1+ds-deb12u2) bookworm; urgency=medium
 .
   * Fix open redirection when OIDC RP has no redirect uris
   * Fix Server-Side-Request-Forgery issue in OIDC (CVE-2023-44469)
 .
 lemonldap-ng (2.16.1+ds-deb12u1) bookworm; urgency=medium
 .
   * Apply login control to auth-slave requests
   * Fix open redirection due to incorrect escape handling
lemonldap-ng (2.16.1+ds-deb12u1) bookworm; urgency=medium
 .
   * Apply login control to auth-slave requests
   * Fix open redirection due to incorrect escape handling

libapache-mod-jk (1:1.2.48-2+deb12u1) bookworm; urgency=high
 .
   * Fix CVE-2023-41081:
     The mod_jk component of Apache Tomcat Connectors, an Apache 2 module to
     forward requests from Apache to Tomcat, in some circumstances, such as when
     a configuration included "JkOptions +ForwardDirectories" but the
     configuration did not provide explicit mounts for all possible proxied
     requests, mod_jk would use an implicit mapping and map the request to the
     first defined worker. Such an implicit mapping could result in the
     unintended exposure of the status worker and/or bypass security constraints
     configured in httpd. As of this security update, the implicit mapping
     functionality has been removed and all mappings must now be via explicit
     configuration. This issue affects Apache Tomcat Connectors (mod_jk only).
     (Closes: #1051956)

libclamunrar (1.0.3-1~deb12u1) bookworm; urgency=medium
 .
   [ Scott Kitterman ]
   * Remove Stphen Gran from uploaders, add myself (Closes: #964554)
     - Thanks for all your contributions over the years
 .
   [ Sebastian Andrzej Siewior ]
   * Import 1.0.3

libhtmlcleaner-java (2.26-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload.
   * Fix CVE-2023-34624:
     A security vulnerability has been discovered in libhtmlcleaner-java, a Java
     HTML parser library. An attacker was able to cause a denial of service
     (StackOverflowError) if the parser runs on user supplied input with deeply
     nested HTML elements. This update introduces a new nesting depth limit
     which can be overridden in cleaner properties.

libmatemixer (1.26.0-2+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0001_remove-weak-pointers-on-dispose.patch. Remove weak pointers on
       dispose.
       A weak pointer has a callback that will happily overwrite freed object
       memory if the weakly referenced object outlives the object storing the
       reference. Remove those callbacks when they are no longer needed.
       This resolves heap corruptions / application crashes when removing audio
       devices, such as USB audio devices. (Closes: #1052555).

libpam-mklocaluser (0.18+deb12u1) bookworm; urgency=medium
 .
   [ Mihai Moldovan ]
   * README: Typo and grammar fixes.
 .
   [ Guido Berhoerster ]
   * debian/pam-auth-update/mklocaluser:
     + Ensure this PAM module is ordered before other session type modules.
       Since this potentially changes the home directory, the module should be
       ordered before others which require the correct location of the home
       directory and/or start executables, particularly pam_systemd. (Closes:
       #1052475).

librsvg (2.54.7+dfsg-1~deb12u1) bookworm-security; urgency=medium
 .
   * Team upload
   * Rebuild for bookworm-security
 .
 librsvg (2.54.7+dfsg-1) unstable; urgency=high
 .
   * Team upload
   * New upstream stable release 2.54.6
     - Fix a directory traversal vulnerability
       (Closes: #1041810, CVE-2023-38633)
     - Drop a redundant test-case that frequently regressed as a result of
       non-problematic font rendering changes
   * New upstream stable release 2.54.7
     - Fix compilation of 2.54.6 on rustc < 1.58
   * d/rules: Skip several known-failing reftests on big-endian architectures.
     These succeeded when librsvg_2.54.5+dfsg-1 was uploaded in September
     2022, but regressed sometime between then and the bookworm release,
     presumably as a result of changes in some other package.
     (Mitigates: #1038447)
 .
 librsvg (2.54.5+dfsg-3) unstable; urgency=medium
 .
   * Team upload
   * d/p/debian/tests-Skip-known-failing-tests-on-i386.patch:
     Skip two tests that have started failing on i386 since October 2022
     (Mitigates: #1038252)
 .
 librsvg (2.54.5+dfsg-2) unstable; urgency=medium
 .
   * Restore the librsvg2-tests build and corresponding autopkgtests
     which were set up a while ago but disabled to avoid having the upload
     blocked in the Debian NEW queue. Include the svg needed for the tests.
librsvg (2.54.5+dfsg-3) unstable; urgency=medium
 .
   * Team upload
   * d/p/debian/tests-Skip-known-failing-tests-on-i386.patch:
     Skip two tests that have started failing on i386 since October 2022
     (Mitigates: #1038252)
librsvg (2.54.5+dfsg-2) unstable; urgency=medium
 .
   * Restore the librsvg2-tests build and corresponding autopkgtests
     which were set up a while ago but disabled to avoid having the upload
     blocked in the Debian NEW queue. Include the svg needed for the tests.

libvpx (1.12.0-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * encode_api_test: add ConfigResizeChangeThreadCount
   * VP8: disallow thread count changes (CVE-2023-5217) (Closes: #1053182)

libwebp (1.2.4-0.2+deb12u1) bookworm-security; urgency=medium
 .
   * CVE-2023-4863

libxnvctrl (525.85.05-3~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 libxnvctrl (525.85.05-3) unstable; urgency=medium
 .
   * Upload to unstable.
 .
 libxnvctrl (525.85.05-2) experimental; urgency=medium
 .
   * Fork as separate source package building only libxnvctrl0, libxnvctrl-dev
     in main.
   * Upload to experimental.
libxnvctrl (525.85.05-2) experimental; urgency=medium
 .
   * Fork as separate source package building only libxnvctrl0, libxnvctrl-dev
     in main.
   * Upload to experimental.

linux (6.1.55-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.53
     - Revert "bridge: Add extack warning when enabling STP in netns."
     - Partially revert "drm/amd/display: Fix possible underflow for displays
       with large vblank"
     - scsi: ufs: Try harder to change the power mode
     - Revert "Revert drm/amd/display: Enable Freesync Video Mode by default"
     - ALSA: hda/realtek: Enable 4 amplifiers instead of 2 on a HP platform
     - [powerpc*] boot: Disable power10 features after BOOTAFLAGS assignment
     - media: uapi: HEVC: Add num_delta_pocs_of_ref_rps_idx field
     - 9p: virtio: fix unlikely null pointer deref in handle_rerror
     - 9p: virtio: make sure 'offs' is initialized in zc_request
     - ksmbd: fix out of bounds in smb3_decrypt_req()
     - ksmbd: validate session id and tree id in compound request
     - ksmbd: no response from compound read
     - ksmbd: fix out of bounds in init_smb2_rsp_hdr()
     - ASoC: da7219: Flush pending AAD IRQ when suspending
     - ASoC: da7219: Check for failure reading AAD IRQ events
     - [x86] ASoC: nau8821: Add DMI quirk mechanism for active-high jack-detect
     - ethernet: atheros: fix return value check in atl1c_tso_csum()
     - [s390x] dasd: use correct number of retries for ERP requests
     - [s390x] dasd: fix hanging device after request requeue
     - fs/nls: make load_nls() take a const parameter
     - ASoC: rt5682-sdw: fix for JD event handling in ClockStop Mode0
     - ASoc: codecs: ES8316: Fix DMIC config
     - ASoC: rt711: fix for JD event handling in ClockStop Mode0
     - ASoC: rt711-sdca: fix for JD event handling in ClockStop Mode0
     - ASoC: atmel: Fix the 8K sample parameter in I2SC master
     - ALSA: usb-audio: Add quirk for Microsoft Modern Wireless Headset
     - [x86] platform/x86: intel: hid: Always call BTNL ACPI method
     - [x86] platform/x86/intel/hid: Add HP Dragonfly G2 to VGBS DMI quirks
     - [x86] platform/x86: think-lmi: Use kfree_sensitive instead of kfree
     - [x86] platform/x86: asus-wmi: Fix setting RGB mode on some TUF laptops
     - [x86] platform/x86: huawei-wmi: Silence ambient light sensor
     - drm/amd/smu: use AverageGfxclkFrequency* to replace previous GFX Curr
       Clock
     - drm/amd/display: Guard DCN31 PHYD32CLK logic against chip family
     - drm/amd/display: Exit idle optimizations before attempt to access PHY
     - ovl: Always reevaluate the file signature for IMA
     - ALSA: usb-audio: Update for native DSD support quirks
     - security: keys: perform capable check only on privileged operations
     - kprobes: Prohibit probing on CFI preamble symbol
     - clk: fixed-mmio: make COMMON_CLK_FIXED_MMIO depend on HAS_IOMEM
     - Revert "wifi: ath6k: silence false positive -Wno-dangling-pointer warning
       on GCC 12"
     - net: dsa: microchip: KSZ9477 register regmap alignment to 32 bit
       boundaries
     - net: annotate data-races around sk->sk_{rcv|snd}timeo
     - net: usb: qmi_wwan: add Quectel EM05GV2
     - wifi: brcmfmac: Fix field-spanning write in brcmf_scan_params_v2_to_v1()
     - [powerpc*] powermac: Use early_* IO variants in via_calibrate_decr()
     - [x86] platform/x86/amd/pmf: Fix unsigned comparison with less than zero
     - scsi: lpfc: Remove reftag check in DIF paths
     - scsi: qedi: Fix potential deadlock on &qedi_percpu->p_work_lock
     - [arm64] net: hns3: restore user pause configure when disable autoneg
     - drm/amdgpu: Match against exact bootloader status
     - wifi: cfg80211: remove links only on AP
     - wifi: mac80211: Use active_links instead of valid_links in Tx
     - netlabel: fix shift wrapping bug in netlbl_catmap_setlong()
     - bnx2x: fix page fault following EEH recovery
     - cifs: fix sockaddr comparison in iface_cmp
     - cifs: fix max_credits implementation
     - sctp: handle invalid error codes without calling BUG()
     - scsi: aacraid: Reply queue mapping to CPUs based on IRQ affinity
     - scsi: storvsc: Always set no_report_opcodes
     - scsi: lpfc: Fix incorrect big endian type assignment in bsg loopback path
     - ALSA: seq: oss: Fix racy open/close of MIDI devices
     - net: sfp: handle 100G/25G active optical cables in sfp_parse_support
     - tracing: Introduce pipe_cpumask to avoid race on trace_pipes
     - of: property: Simplify of_link_to_phandle()
     - [x86] cpufreq: intel_pstate: set stale CPU frequency to minimum
     - crypto: rsa-pkcs1pad - Use helper to set reqsize
     - [x86] KVM: x86/mmu: Use kstrtobool() instead of strtobool()
     - [x86] KVM: x86/mmu: Add "never" option to allow sticky disabling of
       nx_huge_pages
     - net: Avoid address overwrite in kernel_connect
     - drm/amd/display: ensure async flips are only accepted for fast updates
     - udf: Check consistency of Space Bitmap Descriptor
     - udf: Handle error when adding extent to a file
     - Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN
     - Revert "net: macsec: preserve ingress frame ordering"
     - reiserfs: Check the return value from __getblk()
     - eventfd: prevent underflow for eventfd semaphores
     - fs: Fix error checking for d_hash_and_lookup()
     - iomap: Remove large folio handling in iomap_invalidate_folio()
     - tmpfs: verify {g,u}id mount options correctly
     - vfs, security: Fix automount superblock LSM init problem, preventing NFS
       sb sharing
     - [armel,armhf] ptrace: Restore syscall restart tracing
     - [armel,armhf] ptrace: Restore syscall skipping for tracers
     - OPP: Fix passing 0 to PTR_ERR in _opp_attach_genpd()
     - [arm64] ptrace: Clean up error handling path in sve_set_common()
     - sched/psi: Select KERNFS as needed
     - [x86] decompressor: Don't rely on upper 32 bits of GPRs being preserved
     - [arm64] sme: Don't use streaming mode to probe the maximum SME VL
     - [arm64] fpsimd: Only provide the length to cpufeature for xCR registers
     - sched/rt: Fix sysctl_sched_rr_timeslice intial value
     - perf/imx_ddr: don't enable counter0 if none of 4 counters are used
     - [s390x] pkey: fix/harmonize internal keyblob headers
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling in PKEY_GENSECK2 IOCTL
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling for sysfs attributes
     - [s390x] paes: fix PKEY_TYPE_EP11_AES handling for secure keyblobs
     - [x86] ACPI: x86: s2idle: Post-increment variables when getting constraints
     - [x86] ACPI: x86: s2idle: Fix a logic error parsing AMD constraints table
     - thermal/of: Fix potential uninitialized value access
     - cpufreq: amd-pstate-ut: Remove module parameter access
     - cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver
     - [x86] efistub: Fix PCI ROM preservation in mixed mode
     - [x86] cpufreq: powernow-k8: Use related_cpus instead of cpus in
       driver.exit()
     - bpftool: use a local copy of perf_event to fix accessing :: Bpf_cookie
     - bpftool: Define a local bpf_perf_link to fix accessing its fields
     - bpftool: Use a local copy of BPF_LINK_TYPE_PERF_EVENT in pid_iter.bpf.c
     - bpftool: Use a local bpf_perf_event_value to fix accessing its fields
     - bpf: Clear the probe_addr for uprobe
     - bpf: Fix an error in verifying a field in a union
     - tcp: tcp_enter_quickack_mode() should be static
     - regmap: rbtree: Use alloc_flags for memory allocations
     - wifi: rtw89: debug: Fix error handling in
       rtw89_debug_priv_btc_manual_set()
     - wifi: mt76: mt7921: fix non-PSC channel scan fail
     - udp: re-score reuseport groups when connected sockets are present
     - bpf: reject unhashed sockets in bpf_sk_assign
     - wifi: mt76: testmode: add nla_policy for MT76_TM_ATTR_TX_LENGTH
     - [arm64,armhf] spi: tegra20-sflash: fix to check return value of
       platform_get_irq() in tegra_sflash_probe()
     - can: gs_usb: gs_usb_receive_bulk_callback(): count RX overflow errors also
       in case of OOM
     - wifi: mt76: mt7915: fix power-limits while chan_switch
     - wifi: mwifiex: Fix OOB and integer underflow when rx packets
     - wifi: mwifiex: fix error recovery in PCIE buffer descriptor management
     - crypto: api - Use work queue in crypto_destroy_instance
     - Bluetooth: nokia: fix value check in nokia_bluetooth_serdev_probe()
     - Bluetooth: Fix potential use-after-free when clear keys
     - Bluetooth: hci_sync: Don't double print name in add/remove adv_monitor
     - Bluetooth: hci_sync: Avoid use-after-free in dbg for hci_add_adv_monitor()
     - net: tcp: fix unexcepted socket die when snd_wnd is 0
     - net-memcg: Fix scope of sockmem pressure indicators
     - ice: ice_aq_check_events: fix off-by-one check when filling buffer
     - [arm64,armhf] crypto: caam - fix unchecked return value error
     - [arm64,armhf] hwrng: iproc-rng200 - Implement suspend and resume calls
     - lwt: Fix return values of BPF xmit ops
     - lwt: Check LWTUNNEL_XMIT_CONTINUE strictly
     - fs: ocfs2: namei: check return value of ocfs2_add_entry()
     - net: annotate data-races around sk->sk_lingertime
     - wifi: mwifiex: fix memory leak in mwifiex_histogram_read()
     - wifi: mwifiex: Fix missed return in oob checks failed path
     - wifi: ath9k: fix races between ath9k_wmi_cmd and ath9k_wmi_ctrl_rx
     - wifi: ath9k: protect WMI command response buffer replacement with a lock
     - wifi: nl80211/cfg80211: add forgotten nla_policy for BSS color attribute
     - mac80211: make ieee80211_tx_info padding explicit
     - wifi: mwifiex: avoid possible NULL skb pointer dereference
     - Bluetooth: btusb: Do not call kfree_skb() under spin_lock_irqsave()
     - [arm64] mm: use ptep_clear() instead of pte_clear() in clear_flush()
     - wifi: ath9k: use IS_ERR() with debugfs_create_dir()
     - ice: avoid executing commands on other ports when driving sync
     - net: arcnet: Do not call kfree_skb() under local_irq_disable()
     - mlxsw: i2c: Fix chunk size setting in output mailbox buffer
     - mlxsw: i2c: Limit single transaction buffer size
     - mlxsw: core_hwmon: Adjust module label names based on MTCAP sensor counter
     - sfc: Check firmware supports Ethernet PTP filter
     - net/sched: sch_hfsc: Ensure inner classes have fsc curve (CVE-2023-4623)
     - netrom: Deny concurrent connect().
     - quota: factor out dquot_write_dquot()
     - quota: rename dquot_active() to inode_quota_active()
     - quota: add new helper dquot_active()
     - quota: fix dqput() to follow the guarantees dquot_srcu should provide
     - drm/amd/display: Do not set drr on pipe commit
     - [arm64] dts: qcom: sm6350: Fix ZAP region
     - [arm64] dts: qcom: sm8250: correct dynamic power coefficients
     - [arm64] dts: qcom: msm8916-l8150: correct light sensor VDDIO supply
     - [arm64] dts: qcom: sm8250-edo: Add gpio line names for TLMM
     - [arm64] dts: qcom: sm8250-edo: Add GPIO line names for PMIC GPIOs
     - [arm64] dts: qcom: sm8250-edo: Rectify gpio-keys
     - [arm64] dts: qcom: sc8280xp-crd: Correct vreg_misc_3p3 GPIO
     - [arm64] dts: qcom: sc8280xp: Add missing SCM interconnect
     - [arm64] dts: qcom: msm8996: Add missing interrupt to the USB2 controller
     - [arm64] dts: qcom: sdm845-tama: Set serial indices and stdout-path
     - [arm64] dts: qcom: sm8350: Fix CPU idle state residency times
     - [arm64] dts: qcom: sm8350: Add missing LMH interrupts to cpufreq
     - [arm64] dts: qcom: sm8350: Use proper CPU compatibles
     - [arm64] dts: qcom: pm8350: fix thermal zone name
     - [arm64] dts: qcom: pm8350b: fix thermal zone name
     - [arm64] dts: qcom: pmr735b: fix thermal zone name
     - [arm64] dts: qcom: pmk8350: fix ADC-TM compatible string
     - [arm64] dts: qcom: sm8250: Mark PCIe hosts as DMA coherent
     - [armhf] dts: stm32: Rename mdio0 to mdio
     - [armhf] dts: stm32: YAML validation fails for Argon Boards
     - [armhf] dts: stm32: adopt generic iio bindings for adc channels on
       emstamp-argon
     - [armhf] dts: stm32: Add missing detach mailbox for emtrion emSBC-Argon
     - [armhf] dts: stm32: YAML validation fails for Odyssey Boards
     - [armhf] dts: stm32: Add missing detach mailbox for Odyssey SoM
     - [armhf] dts: stm32: Update to generic ADC channel binding on DHSOM systems
     - [armhf] dts: stm32: Add missing detach mailbox for DHCOM SoM
     - [arm64] firmware: ti_sci: Use system_state to determine polling
     - drm/amdgpu: avoid integer overflow warning in
       amdgpu_device_resize_fb_bar()
     - [arm64] tegra: Fix HSUART for Jetson AGX Orin
     - [arm64] dts: qcom: sm8250-sony-xperia: correct GPIO keys wakeup again
     - [arm64] dts: qcom: pm6150l: Add missing short interrupt
     - [arm64] dts: qcom: pm660l: Add missing short interrupt
     - [arm64] dts: qcom: pmi8994: Add missing OVP interrupt
     - [arm64] tegra: Fix HSUART for Smaug
     - [arm64,armhf] drm/etnaviv: fix dumping of active MMU context
     - block: cleanup queue_wc_store
     - block: don't allow enabling a cache on devices that don't support it
     - [x86] mm: Fix PAT bit missing from page protection modify mask
     - [arm64] drm: adv7511: Fix low refresh rate register for ADV7533/5
     - drm/amdgpu: Update min() to min_t() in 'amdgpu_info_ioctl'
     - md: Factor out is_md_suspended helper
     - md: Change active_io to percpu
     - md: restore 'noio_flag' for the last mddev_resume()
     - md/raid10: factor out dereference_rdev_and_rrdev()
     - md/raid10: use dereference_rdev_and_rrdev() to get devices
     - md/md-bitmap: remove unnecessary local variable in backlog_store()
     - md/md-bitmap: hold 'reconfig_mutex' in backlog_store()
     - [arm64] drm/msm: Update dev core dump to not print backwards
     - [arm64,armhf] drm/tegra: dpaux: Fix incorrect return value of
       platform_get_irq
     - [arm64] dts: qcom: sm8150: Fix the I2C7 interrupt
     - [armhf] drm/armada: Fix off-by-one error in armada_overlay_get_property()
     - drm/repaper: Reduce temporary buffer size in repaper_fb_dirty()
     - drm/panel: simple: Add missing connector type and pixel format for AUO
       T215HVN01
     - ima: Remove deprecated IMA_TRUSTED_KEYRING Kconfig
     - [arm64] drm/msm/mdp5: Don't leak some plane state
     - [arm64] firmware: meson_sm: fix to avoid potential NULL pointer
       dereference
     - [arm64] drm/msm/dpu: fix the irq index in
       dpu_encoder_phys_wb_wait_for_commit_done
     - smackfs: Prevent underflow in smk_set_cipso()
     - drm/amd/pm: fix variable dereferenced issue in amdgpu_device_attr_create()
     - [arm64] drm/msm/a2xx: Call adreno_gpu_init() earlier
     - audit: fix possible soft lockup in __audit_inode_child()
     - block/mq-deadline: use correct way to throttling write requests
     - io_uring: fix drain stalls by invalid SQE
     - [armhf] bus: ti-sysc: Fix cast to enum warning
     - md/raid5-cache: fix a deadlock in r5l_exit_log()
     - md/raid5-cache: fix null-ptr-deref for r5l_flush_stripe_to_raid()
     - firmware: cs_dsp: Fix new control name check
     - md: add error_handlers for raid0 and linear
     - md/raid0: Factor out helper for mapping and submitting a bio
     - md/raid0: Fix performance regression for large sequential writes
     - md: raid0: account for split bio in iostat accounting
     - of: overlay: Call of_changeset_init() early
     - ALSA: ac97: Fix possible error value of *rac97
     - ipmi:ssif: Add check for kstrdup
     - ipmi:ssif: Fix a memory leak when scanning for an adapter
     - PCI/DOE: Fix destroy_work_on_stack() race
     - [arm64,armhf] clk: sunxi-ng: Modify mismatched function name
     - [amd64] EDAC/igen6: Fix the issue of no error events
     - ext4: correct grp validation in ext4_mb_good_group
     - ext4: avoid potential data overflow in next_linear_group
     - kvm/vfio: Prepare for accepting vfio device fd
     - kvm/vfio: ensure kvg instance stays around in kvm_vfio_group_add()
     - PCI: microchip: Correct the DED and SEC interrupt bit offsets
     - PCI: Mark NVIDIA T4 GPUs to avoid bus reset
     - [armhf] pinctrl: mcp23s08: check return value of devm_kasprintf()
     - PCI: Allow drivers to request exclusive config regions
     - PCI: Add locking to RMW PCI Express Capability Register accessors
     - PCI: pciehp: Use RMW accessors for changing LNKCTL
     - PCI/ASPM: Use RMW accessors for changing LNKCTL
     - [powerpc*] radix: Move some functions into #ifdef
       CONFIG_KVM_BOOK3S_HV_POSSIBLE
     - vfio/type1: fix cap_migration information leak
     - [amd64,arm64] nvdimm: Fix memleak of pmu attr_groups in
       unregister_nvdimm_pmu()
     - [arm64,arm64] nvdimm: Fix dereference after free in register_nvdimm_pmu()
     - [powerpc*] fadump: reset dump area size if fadump memory reserve fails
     - [powerpc*] perf: Convert fsl_emb notifier to state machine callbacks
     - drm/amdgpu: Use RMW accessors for changing LNKCTL
     - drm/radeon: Use RMW accessors for changing LNKCTL
     - net/mlx5: Use RMW accessors for changing LNKCTL
     - wifi: ath11k: Use RMW accessors for changing LNKCTL
     - wifi: ath10k: Use RMW accessors for changing LNKCTL
     - NFSv4.2: Rework scratch handling for READ_PLUS
     - NFSv4.2: Fix READ_PLUS smatch warnings
     - NFSv4.2: Fix up READ_PLUS alignment
     - NFSv4.2: Fix READ_PLUS size calculations
     - [powerpc*] Don't include lppaca.h in paca.h
     - [powerpc*] pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT
     - nfs/blocklayout: Use the passed in gfp flags
     - [powerpc*] pseries: Fix hcall tracepoints with JUMP_LABEL=n
     - [powerpc*] mpc5xxx: Add missing fwnode_handle_put()
     - [powerpc*] iommu: Fix notifiers being shared by PCI and VIO buses
     - ext4: fix unttached inode after power cut with orphan file feature enabled
     - jfs: validate max amount of blocks before allocation.
     - fs: lockd: avoid possible wrong NULL parameter
     - NFSD: da_addr_body field missing in some GETDEVICEINFO replies
     - NFS: Guard against READDIR loop when entry names exceed MAXNAMELEN
     - NFSv4.2: fix handling of COPY ERR_OFFLOAD_NO_REQ
     - pNFS: Fix assignment of xprtdata.cred
     - cgroup/cpuset: Inherit parent's load balance state in v2
     - RDMA/qedr: Remove a duplicate assignment in irdma_query_ah()
     - media: ov5640: fix low resolution image abnormal issue
     - media: ad5820: Drop unsupported ad5823 from i2c_ and of_device_id tables
     - media: i2c: tvp5150: check return value of devm_kasprintf()
     - media: v4l2-core: Fix a potential resource leak in
       v4l2_fwnode_parse_link()
     - [amd64] iommu/amd/iommu_v2: Fix pasid_state refcount dec hit 0 warning on
       pasid unbind
     - [arm64,armhf] iommu: rockchip: Fix directory table address encoding
     - drivers: usb: smsusb: fix error handling code in smsusb_init_device
     - media: dib7000p: Fix potential division by zero
     - media: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer()
     - media: cx24120: Add retval check for cx24120_message_send()
     - RDMA/siw: Fabricate a GID on tun and loopback devices
     - [arm64] scsi: hisi_sas: Fix warnings detected by sparse
     - [arm64] scsi: hisi_sas: Fix normally completed I/O analysed as failed
     - dt-bindings: extcon: maxim,max77843: restrict connector properties
     - media: rkvdec: increase max supported height for H.264
     - usb: phy: mxs: fix getting wrong state with mxs_phy_is_otg_host()
     - scsi: RDMA/srp: Fix residual handling
     - scsi: iscsi: Rename iscsi_set_param() to iscsi_if_set_param()
     - scsi: iscsi: Add length check for nlattr payload
     - scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param()
     - scsi: be2iscsi: Add length check when parsing nlattrs
     - scsi: qla4xxx: Add length check when parsing nlattrs
     - serial: sprd: Assign sprd_port after initialized to avoid wrong access
     - serial: sprd: Fix DMA buffer leak issue
     - [x86] APM: drop the duplicate APM_MINOR_DEV macro
     - RDMA/rxe: Split rxe_run_task() into two subroutines
     - RDMA/rxe: Fix incomplete state save in rxe_requester
     - scsi: qedf: Do not touch __user pointer in
       qedf_dbg_stop_io_on_error_cmd_read() directly
     - scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read()
       directly
     - scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read()
       directly
     - RDMA/irdma: Replace one-element array with flexible-array member
     - [arm64] coresight: tmc: Explicit type conversions to prevent integer
       overflow
     - interconnect: qcom: qcm2290: Enable sync state
     - dma-buf/sync_file: Fix docs syntax
     - driver core: test_async: fix an error code
     - driver core: Call dma_cleanup() on the test_remove path
     - kernfs: add stub helper for kernfs_generic_poll()
     - extcon: cht_wc: add POWER_SUPPLY dependency
     - iommu/sprd: Add missing force_aperture
     - [arm64] RDMA/hns: Fix port active speed
     - [arm64] RDMA/hns: Fix incorrect post-send with direct wqe of wr-list
     - [arm64] RDMA/hns: Fix inaccurate error label name in init instance
     - [arm64] RDMA/hns: Fix CQ and QP cache affinity
     - IB/uverbs: Fix an potential error pointer dereference
     - fsi: aspeed: Reset master errors after CFAM reset
     - [amd64] iommu/vt-d: Fix to flush cache of PASID directory table
     - [x86] platform/x86: dell-sysman: Fix reference leak
     - media: cec: core: add adap_nb_transmit_canceled() callback
     - media: cec: core: add adap_unconfigured() callback
     - media: go7007: Remove redundant if statement
     - media: venus: hfi_venus: Only consider sys_idle_indicator on V1
     - docs: ABI: fix spelling/grammar in SBEFIFO timeout interface
     - USB: gadget: core: Add missing kerneldoc for vbus_work
     - USB: gadget: f_mass_storage: Fix unused variable warning
     - drivers: base: Free devm resources when unregistering a device
     - HID: input: Support devices sending Eraser without Invert
     - media: ov5640: Enable MIPI interface in ov5640_set_power_mipi()
     - media: ov5640: Fix initial RESETB state and annotate timings
     - media: i2c: ov2680: Set V4L2_CTRL_FLAG_MODIFY_LAYOUT on flips
     - media: ov2680: Remove auto-gain and auto-exposure controls
     - media: ov2680: Fix ov2680_bayer_order()
     - media: ov2680: Fix vflip / hflip set functions
     - media: ov2680: Remove VIDEO_V4L2_SUBDEV_API ifdef-s
     - media: ov2680: Don't take the lock for try_fmt calls
     - media: ov2680: Add ov2680_fill_format() helper function
     - media: ov2680: Fix ov2680_set_fmt() which == V4L2_SUBDEV_FORMAT_TRY not
       working
     - media: ov2680: Fix regulators being left enabled on ov2680_power_on()
       errors
     - media: i2c: rdacm21: Fix uninitialized value
     - f2fs: fix to avoid mmap vs set_compress_option case
     - f2fs: judge whether discard_unit is section only when have
       CONFIG_BLK_DEV_ZONED
     - f2fs: Only lfs mode is allowed with zoned block device feature
     - Revert "f2fs: fix to do sanity check on extent cache correctly"
     - cgroup:namespace: Remove unused cgroup_namespaces_init()
     - [arm64] coresight: trbe: Fix TRBE potential sleep in atomic context
     - RDMA/irdma: Prevent zero-length STAG registration (CVE-2023-25775)
     - scsi: core: Use 32-bit hostnum in scsi_host_lookup()
     - scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock
     - [arm64,armhf] serial: tegra: handle clk prepare error in
       tegra_uart_hw_init()
     - [arm64,armhf] amba: bus: fix refcount leak
     - Revert "IB/isert: Fix incorrect release of isert connection"
     - RDMA/siw: Balance the reference of cep->kref in the error path
     - RDMA/siw: Correct wrong debug message
     - RDMA/efa: Fix wrong resources deallocation order
     - HID: logitech-dj: Fix error handling in logi_dj_recv_switch_to_dj_mode()
     - HID: uclogic: Correct devm device reference for hidinput input_dev name
     - HID: multitouch: Correct devm device reference for hidinput input_dev name
     - [x86] platform/x86/amd/pmf: Fix a missing cleanup path
     - tick/rcu: Fix false positive "softirq work is pending" messages
     - [x86] speculation: Mark all Skylake CPUs as vulnerable to GDS
     - tracing: Remove extra space at the end of hwlat_detector/mode
     - tracing: Fix race issue between cpu buffer write and swap
     - mtd: rawnand: brcmnand: Fix mtd oobsize
     - dmaengine: idxd: Modify the dependence of attribute pasid_enabled
     - [arm64,armhf] phy/rockchip: inno-hdmi: use correct vco_div_5 macro on
       rk3328
     - [arm64,armhf] phy/rockchip: inno-hdmi: round fractal pixclock in rk3328
       recalc_rate
     - [arm64,armhf] phy/rockchip: inno-hdmi: do not power on rk3328 post pll on
       reg write
     - rpmsg: glink: Add check for kstrdup
     - leds: pwm: Fix error code in led_pwm_create_fwnode()
     - leds: multicolor: Use rounded division when calculating color components
     - leds: Fix BUG_ON check for LED_COLOR_ID_MULTI that is always false
     - leds: trigger: tty: Do not use LED_ON/OFF constants, use
       led_blink_set_oneshot instead
     - mtd: spi-nor: Check bus width while setting QE bit
     - mtd: rawnand: fsmc: handle clk prepare error in fsmc_nand_resume()
     - dmaengine: ste_dma40: Add missing IRQ check in d40_probe
     - Drivers: hv: vmbus: Don't dereference ACPI root object handle
     - cpufreq: Fix the race condition while updating the transition_task of
       policy
     - virtio_ring: fix avail_wrap_counter in virtqueue_add_packed
     - igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU (CVE-2023-42752)
     - netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for
       ip_set_hash_netportnet.c (CVE-2023-42753)
     - netfilter: nft_exthdr: Fix non-linear header modification
     - netfilter: xt_u32: validate user space input
     - netfilter: xt_sctp: validate the flag_info count
     - skbuff: skb_segment, Call zero copy functions before using skbuff frags
     - igb: set max size RX buffer when store bad packet is enabled
     - PM / devfreq: Fix leak in devfreq_dev_release()
     - ALSA: pcm: Fix missing fixup call in compat hw_refine ioctl
     - rcu: dump vmalloc memory info safely
     - printk: ringbuffer: Fix truncating buffer size min_t cast
     - scsi: core: Fix the scsi_set_resid() documentation
     - mm/vmalloc: add a safer version of find_vm_area() for debug
     - cpu/hotplug: Prevent self deadlock on CPU hot-unplug
     - media: i2c: ccs: Check rules is non-NULL
     - media: i2c: Add a camera sensor top level menu
     - PCI: rockchip: Use 64-bit mask on MSI 64-bit PCI address
     - ipmi_si: fix a memleak in try_smi_init()
     - [armhf] OMAP2+: Fix -Warray-bounds warning in _pwrdm_state_switch()
     - XArray: Do not return sibling entries from xa_load() (Closes: #1053120)
     - io_uring: break iopolling on signal
     - backlight/gpio_backlight: Compare against struct fb_info.device
     - backlight/bd6107: Compare against struct fb_info.device
     - backlight/lv5207lp: Compare against struct fb_info.device
     - drm/amd/display: register edp_backlight_control() for DCN301
     - i3c: master: svc: fix probe failure when no i3c device exist
     - [arm64] csum: Fix OoB access in IP checksum code for negative lengths
     - ALSA: hda/cirrus: Fix broken audio on hardware with two CS42L42 codecs.
     - media: dvb: symbol fixup for dvb_attach() (Closes: #1051613)
     - media: venus: hfi_venus: Write to VIDC_CTRL_INIT after unmasking
       interrupts
     - Revert "scsi: qla2xxx: Fix buffer overrun"
     - scsi: mpt3sas: Perform additional retries if doorbell read returns 0
     - PCI: Free released resource after coalescing
     - PCI: hv: Fix a crash in hv_pci_restore_msi_msg() during hibernation
     - PCI/PM: Only read PCI_PM_CTRL register when available
     - Revert "PCI: Mark NVIDIA T4 GPUs to avoid bus reset"
     - block: don't add or resize partition on the disk with GENHD_FL_NO_PART
     - procfs: block chmod on /proc/thread-self/comm
     - drm/amd/display: Add smu write msg id fail retry process
     - bpf: Fix issue in verifying allow_ptr_leaks
     - dlm: fix plock lookup when using multiple lockspaces
     - dccp: Fix out of bounds access in DCCP error handler
     - [x86] sev: Make enc_dec_hypercall() accept a size instead of npages
     - r8169: fix ASPM-related issues on a number of systems with NIC version
       from RTL8168h
     - X.509: if signature is unsupported skip validation
     - net: handle ARPHRD_PPP in dev_is_mac_header_xmit()
     - fsverity: skip PKCS#7 parser when keyring is empty
     - [x86] MCE: Always save CS register on AMD Zen IF Poison errors
     - platform/chrome: chromeos_acpi: print hex string for ACPI_TYPE_BUFFER
     - [arm64] mmc: renesas_sdhi: register irqs before registering controller
     - pstore/ram: Check start of empty przs during init
     - [arm64] sdei: abort running SDEI handlers during crash
     - [s390x] dcssblk: fix kernel crash with list_add corruption
     - [s390x] ipl: add missing secure/has_secure file to ipl type 'unknown'
     - [s390x] dasd: fix string length handling
     - [armhf] crypto: stm32 - fix loop iterating through scatterlist for DMA
     - cpufreq: brcmstb-avs-cpufreq: Fix -Warray-bounds bug
     - of: property: fw_devlink: Add a devlink for panel followers
     - usb: typec: tcpm: set initial svdm version based on pd revision
     - usb: typec: bus: verify partner exists in typec_altmode_attention
     - USB: core: Unite old scheme and new scheme descriptor reads
     - USB: core: Change usb_get_device_descriptor() API
     - USB: core: Fix race by not overwriting udev->descriptor in hub_port_init()
     - USB: core: Fix oversight in SuperSpeed initialization
     - [x86] sgx: Break up long non-preemptible delays in sgx_vepc_release()
     - [x86] perf/x86/uncore: Correct the number of CHAs on EMR
     - tracing: Zero the pipe cpumask on alloc to avoid spurious -EBUSY
     - Revert "drm/amd/display: Do not set drr on pipe commit"
     - md: Free resources in __md_stop
     - NFSv4.2: Fix a potential double free with READ_PLUS
     - NFSv4.2: Rework scratch handling for READ_PLUS (again)
     - md: fix regression for null-ptr-deference in __md_stop()
     - clk: Mark a fwnode as initialized when using CLK_OF_DECLARE() macro
     - treewide: Fix probing of devices in DT overlays
     - clk: Avoid invalid function names in CLK_OF_DECLARE()
     - udf: initialize newblock to 0
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.54
     - net/ipv6: SKB symmetric hash should incorporate transport ports
     - mm: multi-gen LRU: rename lrugen->lists[] to lrugen->folios[]
     - Multi-gen LRU: fix per-zone reclaim
     - io_uring: always lock in io_apoll_task_func
     - io_uring: revert "io_uring fix multishot accept ordering"
     - io_uring/net: don't overflow multishot accept
     - io_uring: break out of iowq iopoll on teardown
     - io_uring/sqpoll: fix io-wq affinity when IORING_SETUP_SQPOLL is used
     - io_uring: Don't set affinity on a dying sqpoll thread
     - drm/virtio: Conditionally allocate virtio_gpu_fence
     - scsi: qla2xxx: Adjust IOCB resource on qpair create
     - scsi: qla2xxx: Limit TMF to 8 per function
     - scsi: qla2xxx: Fix deletion race condition
     - scsi: qla2xxx: fix inconsistent TMF timeout
     - scsi: qla2xxx: Fix command flush during TMF
     - scsi: qla2xxx: Fix erroneous link up failure
     - scsi: qla2xxx: Turn off noisy message log
     - scsi: qla2xxx: Fix session hang in gnl
     - scsi: qla2xxx: Fix TMF leak through
     - scsi: qla2xxx: Remove unsupported ql2xenabledif option
     - scsi: qla2xxx: Flush mailbox commands on chip reset
     - scsi: qla2xxx: Fix smatch warn for qla_init_iocb_limit()
     - scsi: qla2xxx: Error code did not return to upper layer
     - scsi: qla2xxx: Fix firmware resource tracking
     - null_blk: fix poll request timeout handling
     - drm/ast: Fix DRAM init on AST2200
     - send channel sequence number in SMB3 requests after reconnects
     - memcg: drop kmem.limit_in_bytes
     - mm: hugetlb_vmemmap: fix a race between vmemmap pmd split
     - cifs: update desired access while requesting for directory lease
     - [x86] pinctrl: cherryview: fix address_space_handler() argument
     - dt-bindings: clock: xlnx,versal-clk: drop select:false
     - [arm64,armhf] clk: imx: pll14xx: dynamically configure PLL for
       393216000/361267200Hz
     - [arm64,armhf] clk: imx: pll14xx: align pdiv with reference manual
     - NFS: Fix a potential data corruption
     - NFSv4/pnfs: minor fix for cleanup path in nfs4_get_device_info
     - bus: mhi: host: Skip MHI reset if device is in RDDM
     - net: add SKB_HEAD_ALIGN() helper
     - net: remove osize variable in __alloc_skb()
     - net: factorize code in kmalloc_reserve()
     - net: deal with integer overflows in kmalloc_reserve() (CVE-2023-42752)
     - tpm_crb: Fix an error handling path in crb_acpi_add()
     - gfs2: Switch to wait_event in gfs2_logd
     - gfs2: low-memory forced flush fixes
     - kconfig: fix possible buffer overflow
     - Input: iqs7222 - configure power mode before triggering ATI
     - perf trace: Use zfree() to reduce chances of use after free
     - perf trace: Really free the evsel->priv area
     - backlight: gpio_backlight: Drop output GPIO direction check for initial
       power state
     - Input: tca6416-keypad - always expect proper IRQ number in i2c client
     - Input: tca6416-keypad - fix interrupt enable disbalance
     - perf annotate bpf: Don't enclose non-debug code with an assert()
     - [x86] virt: Drop unnecessary check on extended CPUID level in
       cpu_has_svm()
     - perf vendor events: Update the JSON/events descriptions for power10
       platform
     - perf vendor events: Drop some of the JSON/events for power10 platform
     - perf vendor events: Drop STORES_PER_INST metric event for power10 platform
     - perf top: Don't pass an ERR_PTR() directly to perf_session__delete()
     - watchdog: intel-mid_wdt: add MODULE_ALIAS() to allow auto-load
     - pwm: lpc32xx: Remove handling of PWM channels
     - [x86] drm/i915: mark requests for GuC virtual engines to avoid
       use-after-free
     - blk-throttle: use calculate_io/bytes_allowed() for throtl_trim_slice()
     - blk-throttle: consider 'carryover_ios/bytes' in throtl_trim_slice()
     - cifs: use fs_context for automounts
     - smb: propagate error code of extract_sharename()
     - net/sched: fq_pie: avoid stalls in fq_pie_timer()
     - sctp: annotate data-races around sk->sk_wmem_queued
     - ipv4: annotate data-races around fi->fib_dead
     - net: read sk->sk_family once in sk_mc_loop()
     - net: fib: avoid warn splat in flow dissector
     - xsk: Fix xsk_diag use-after-free error during socket cleanup
     - [x86] drm/i915/gvt: Verify pfn is "valid" before dereferencing "struct
       page"
     - [x86] drm/i915/gvt: Put the page reference obtained by KVM's gfn_to_pfn()
     - [x86] drm/i915/gvt: Drop unused helper intel_vgpu_reset_gtt()
     - net: use sk_forward_alloc_get() in sk_get_meminfo()
     - net: annotate data-races around sk->sk_forward_alloc
     - mptcp: annotate data-races around msk->rmem_fwd_alloc
     - ipv4: ignore dst hint for multipath routes
     - ipv6: ignore dst hint for multipath routes
     - igb: disable virtualization features on 82580
     - gve: fix frag_list chaining
     - veth: Fixing transmit return status for dropped packets
     - net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr
     - net: phy: micrel: Correct bit assignments for phy_device flags
     - bpf, sockmap: Fix skb refcnt race after locking changes
     - af_unix: Fix data-races around user->unix_inflight.
     - af_unix: Fix data-race around unix_tot_inflight.
     - af_unix: Fix data-races around sk->sk_shutdown.
     - af_unix: Fix data race around sk->sk_err.
     - net: sched: sch_qfq: Fix UAF in qfq_dequeue() (CVE-2023-4921)
     - kcm: Destroy mutex in kcm_exit_net()
     - igc: Change IGC_MIN to allow set rx/tx value between 64 and 80
     - igbvf: Change IGBVF_MIN to allow set rx/tx value between 64 and 80
     - igb: Change IGB_MIN to allow set rx/tx value between 64 and 80
     - [s390x] zcrypt: don't leak memory if dev_set_name() fails
     - idr: fix param name in idr_alloc_cyclic() doc
     - ip_tunnels: use DEV_STATS_INC()
     - bpf: Remove prog->active check for bpf_lsm and bpf_iter
     - bpf: Invoke __bpf_prog_exit_sleepable_recur() on recursion in
       kern_sys_bpf().
     - bpf: Assign bpf_tramp_run_ctx::saved_run_ctx before recursion check.
     - netfilter: nftables: exthdr: fix 4-byte stack OOB write
     - netfilter: nfnetlink_osf: avoid OOB read
     - [arm64] net: hns3: fix tx timeout issue
     - [arm64] net: hns3: fix byte order conversion issue in
       hclge_dbg_fd_tcam_read()
     - [arm64] net: hns3: fix debugfs concurrency issue between kfree buffer and
       read
     - [arm64] net: hns3: fix invalid mutex between tc qdisc and dcb ets command
       issue
     - [arm64] net: hns3: fix the port information display when sfp is absent
     - [arm64] net: hns3: remove GSO partial feature bit
     - sh: boards: Fix CEU buffer size passed to dma_declare_coherent_memory()
     - Multi-gen LRU: avoid race in inc_min_seq()
     - net/mlx5: Free IRQ rmap and notifier on kernel shutdown
     - clocksource/drivers/arm_arch_timer: Disable timer before programming CVAL
     - jbd2: fix checkpoint cleanup performance regression
     - jbd2: check 'jh->b_transaction' before removing it from checkpoint
     - jbd2: correct the end of the journal recovery scan range
     - ext4: add correct group descriptors and reserved GDT blocks to system zone
     - ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup}
     - f2fs: flush inode if atomic file is aborted
     - f2fs: avoid false alarm of circular locking
     - hwspinlock: qcom: add missing regmap config for SFPB MMIO implementation
     - ata: ahci: Add Elkhart Lake AHCI controller
     - ata: pata_falcon: fix IO base selection for Q40
     - ata: sata_gemini: Add missing MODULE_DESCRIPTION
     - ata: pata_ftide010: Add missing MODULE_DESCRIPTION
     - fuse: nlookup missing decrement in fuse_direntplus_link
     - btrfs: zoned: do not zone finish data relocation block group
     - btrfs: fix start transaction qgroup rsv double free
     - btrfs: free qgroup rsv on io failure
     - btrfs: don't start transaction when joining with TRANS_JOIN_NOSTART
     - btrfs: set page extent mapped after read_folio in relocate_one_page
     - btrfs: zoned: re-enable metadata over-commit for zoned mode
     - btrfs: use the correct superblock to compare fsid in btrfs_validate_super
     - [arm64] drm/mxsfb: Disable overlay plane in
       mxsfb_plane_overlay_atomic_disable()
     - drm/amd/display: enable cursor degamma for DCN3+ DRM legacy gamma
     - drm/amd/display: prevent potential division by zero errors
     - [x86] KVM: SVM: Take and hold ir_list_lock when updating vCPU's Physical
       ID entry
     - [x86] KVM: SVM: Don't inject #UD if KVM attempts to skip SEV guest insn
     - [x86] KVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost
       migration
     - [x86] KVM: nSVM: Check instead of asserting on nested TSC scaling support
     - [x86] KVM: nSVM: Load L1's TSC multiplier based on L1 state, not L2 state
     - [x86] KVM: SVM: Set target pCPU during IRTE update if target vCPU is
       running
     - [x86] KVM: SVM: Skip VMSA init in sev_es_init_vmcb() if pointer is NULL
     - perf hists browser: Fix hierarchy mode header
     - perf test shell stat_bpf_counters: Fix test on Intel
     - perf tools: Handle old data in PERF_RECORD_ATTR
     - perf hists browser: Fix the number of entries for 'e' key
     - drm/amd/display: always switch off ODM before committing more streams
     - drm/amd/display: Remove wait while locked
     - drm/amdgpu: register a dirty framebuffer callback for fbcon
       (Closes: #1037142)
     - net: ipv4: fix one memleak in __inet_del_ifa()
     - net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in
       smcr_port_add
     - net: stmmac: fix handling of zero coalescing tx-usecs
     - net: ethernet: mvpp2_main: fix possible OOB write in
       mvpp2_ethtool_get_rxnfc()
     - net: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in
       mtk_hwlro_get_fdir_all()
     - hsr: Fix uninit-value access in fill_frame_info()
     - net: ethernet: adi: adin1110: use eth_broadcast_addr() to assign broadcast
       address
     - net:ethernet:adi:adin1110: Fix forwarding offload
     - r8152: check budget for r8152_poll()
     - kcm: Fix memory leak in error path of kcm_sendmsg()
     - net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict()
     - net: macb: Enable PTP unicast
     - net: macb: fix sleep inside spinlock
     - ipv6: fix ip6_sock_set_addr_preferences() typo
     - ipv6: Remove in6addr_any alternatives.
     - tcp: Factorise sk_family-independent comparison in
       inet_bind2_bucket_match(_addr_any).
     - tcp: Fix bind() regression for v4-mapped-v6 wildcard address.
     - tcp: Fix bind() regression for v4-mapped-v6 non-wildcard address.
     - ixgbe: fix timestamp configuration code
     - kcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg().
     - drm/amd/display: Fix a bug when searching for insert_above_mpcc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.55
     - autofs: fix memory leak of waitqueues in autofs_catatonic_mode
     - btrfs: output extra debug info if we failed to find an inline backref
     - ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer
     - kernel/fork: beware of __put_task_struct() calling context
     - rcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to
       _idle()
     - [x86] ACPI: video: Add backlight=native DMI quirk for Lenovo Ideapad Z470
     - [arm64] perf/smmuv3: Enable HiSilicon Erratum 162001900 quirk for HIP08/09
     - [amr64] perf/imx_ddr: speed up overflow frequency of cycle
     - hw_breakpoint: fix single-stepping when using bpf_overflow_handler
     - [x86] ACPI: x86: s2idle: Catch multiple ACPI_TYPE_PACKAGE objects
     - devlink: remove reload failed checks in params get/set callbacks
     - crypto: lrw,xts - Replace strlcpy with strscpy
     - ice: Don't tx before switchdev is fully configured
     - wifi: ath9k: fix fortify warnings
     - wifi: ath9k: fix printk specifier
     - wifi: mwifiex: fix fortify warning
     - mt76: mt7921: don't assume adequate headroom for SDIO headers
     - wifi: wil6210: fix fortify warnings
     - [armhf] can: sun4i_can: Add acceptance register quirk
     - [armhf] can: sun4i_can: Add support for the Allwinner D1
     - net: Use sockaddr_storage for getsockopt(SO_PEERNAME).
     - net/ipv4: return the real errno instead of -EINVAL
     - crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui()
     - Bluetooth: Fix hci_suspend_sync crash
     - netlink: convert nlk->flags to atomic flags
     - tpm_tis: Resend command to recover from data transfer errors
     - [arm64,armhf] mmc: sdhci-esdhc-imx: improve ESDHC_FLAG_ERR010450
     - alx: fix OOB-read compiler warning
     - wifi: mac80211: check S1G action frame size
     - netfilter: ebtables: fix fortify warnings in size_entry_mwt()
     - wifi: cfg80211: reject auth/assoc to AP with our address
     - wifi: cfg80211: ocb: don't leave if not joined
     - wifi: mac80211: check for station first in client probe
     - wifi: mac80211_hwsim: drop short frames
     - drm/bridge: tc358762: Instruct DSI host to generate HSE packets
     - drm/edid: Add quirk for OSVR HDK 2.0
     - [arm64] dts: qcom: sm6125-pdx201: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm6350: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm8150-kumano: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm8250-edo: correct ramoops pmsg-size
     - drm/amd/display: Fix underflow issue on 175hz timing
     - [x86] ASoC: SOF: topology: simplify code to prevent static analysis
       warnings
     - [x86] ASoC: Intel: sof_sdw: Update BT offload config for soundwire config
     - [x86] ALSA: hda: intel-dsp-cfg: add LunarLake support
     - drm/amd/display: Use DTBCLK as refclk instead of DPREFCLK
     - drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN31
     - drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN314
     - [armhf] drm/exynos: fix a possible null-pointer dereference due to data
       race in exynos_drm_crtc_atomic_disable()
     - [armhf] bus: ti-sysc: Configure uart quirks for k3 SoC
     - md: raid1: fix potential OOB in raid1_remove_disk()
     - fs/jfs: prevent double-free in dbUnmount() after failed jfs_remount()
     - jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount
     - [arm64,armhf] PCI: dwc: Provide deinit callback for i.MX
     - [armel,armhf] 9317/1: kexec: Make smp stop calls asynchronous
     - [powerpc*] pseries: fix possible memory leak in ibmebus_bus_init()
     - PCI: vmd: Disable bridge window for domain reset
     - PCI: fu740: Set the number of MSI vectors
     - media: mdp3: Fix resource leaks in of_find_device_by_node
     - media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer
     - media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer()
     - media: af9005: Fix null-ptr-deref in af9005_i2c_xfer
     - media: anysee: fix null-ptr-deref in anysee_master_xfer
     - media: az6007: Fix null-ptr-deref in az6007_i2c_xfer()
     - media: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer
     - scsi: lpfc: Abort outstanding ELS cmds when mailbox timeout error is
       detected
     - media: tuners: qt1010: replace BUG_ON with a regular error
     - media: pci: cx23885: replace BUG with error return
     - usb: cdns3: Put the cdns set active part outside the spin lock
     - usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc
     - scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()
     - serial: cpm_uart: Avoid suspicious locking
     - misc: open-dice: make OPEN_DICE depend on HAS_IOMEM
     - usb: ehci: add workaround for chipidea PORTSC.PEC bug
     - usb: chipidea: add workaround for chipidea PEC bug
     - media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler
       warning
     - kobject: Add sanity check for kset->kobj.ktype in kset_register()
     - [armhf] interconnect: Fix locking for runpm vs reclaim
     - printk: Keep non-panic-CPUs out of console lock
     - printk: Consolidate console deferred printing
     - dma-buf: Add unlocked variant of attachment-mapping functions
     - misc: fastrpc: Prepare to dynamic dma-buf locking specification
     - misc: fastrpc: Fix incorrect DMA mapping unmap request
     - btrfs: add a helper to read the superblock metadata_uuid
     - btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super
     - block: factor out a bvec_set_page helper
     - nvmet: use bvec_set_page to initialize bvecs
     - nvmet-tcp: pass iov_len instead of sg->length to bvec_set_page()
     - drm: gm12u320: Fix the timeout usage for usb_bulk_msg()
     - scsi: qla2xxx: Fix NULL vs IS_ERR() bug for debugfs_create_dir()
     - [x86] ibt: Suppress spurious ENDBR
     - scsi: target: core: Fix target_cmd_counter leak
     - scsi: lpfc: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
     - panic: Reenable preemption in WARN slowpath
     - [x86] boot/compressed: Reserve more memory for page tables
     - [x86] purgatory: Remove LTO flags
     - md/raid1: fix error: ISO C90 forbids mixed declarations
     - Revert "SUNRPC: Fail faster on bad verifier"
     - attr: block mode changes of symlinks
     - ovl: fix failed copyup of fileattr on a symlink
     - ovl: fix incorrect fdput() on aio completion
     - io_uring/net: fix iter retargeting for selected buf
     - nvme: avoid bogus CRTO values
     - md: Put the right device in md_seq_next
     - Revert "drm/amd: Disable S/G for APUs when 64GB or more host memory"
     - dm: don't attempt to queue IO under RCU protection
     - btrfs: fix lockdep splat and potential deadlock after failure running
       delayed items
     - btrfs: fix a compilation error if DEBUG is defined in btree_dirty_folio
     - btrfs: release path before inode lookup during the ino lookup ioctl
     - btrfs: check for BTRFS_FS_ERROR in pending ordered assert
     - tracing: Have tracing_max_latency inc the trace array ref count
     - tracing: Have event inject files inc the trace array ref count
     - tracing: Increase trace array ref count on enable and filter files
     - tracing: Have current_trace inc the trace array ref count
     - tracing: Have option files inc the trace array ref count
     - selinux: fix handling of empty opts in selinux_fs_context_submount()
     - nfsd: fix change_info in NFSv4 RENAME replies
     - tracefs: Add missing lockdown check to tracefs_create_dir()
     - [armhf] i2c: aspeed: Reset the i2c controller when timeout occurs
     - ata: libata: disallow dev-initiated LPM transitions to unsupported states
     - ata: libahci: clear pending interrupt status
     - scsi: megaraid_sas: Fix deadlock on firmware crashdump
     - scsi: pm8001: Setup IRQs on resume
     - ext4: fix rec_len verify error
     - drm/amd/display: fix the white screen issue when >= 64GB DRAM
     - Revert "memcg: drop kmem.limit_in_bytes"
     - drm/amdgpu: fix amdgpu_cs_p1_user_fence
     - net/sched: Retire rsvp classifier (CVE-2023-42755)
     - [arm64,armhf] interconnect: Teach lockdep about icc_bw_lock order
 .
   [ Bastian Blank ]
   * Backport changes in Microsoft Azure Network Adapter up to 6.6.
     (closes: #1035378)
 .
   [ Salvatore Bonaccorso ]
   * [armel/marvell] Disable features to shrink kernel image (fixes FTBFS):
     - tcp: Disable MPTCP
     - tracing: Disable FUNCTION_TRACER
   * Bump ABI to 13
   * [rt] Update to 6.1.54-rt15
   * Drop now unknown config options for IPv4 and IPv6 Resource Reservation
     Protocol (RSVP, RSVP6)
   * [rt] Refresh "printk: Bring back the RT bits."
   * [rt] Refresh "printk: avoid preempt_disable() for PREEMPT_RT"
   * [rt] Drop "kernel/fork: beware of __put_task_struct() calling context"
     (applied upstream)
   * netfilter: nf_tables: don't skip expired elements during walk
     (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction API to avoid race with control plane
     (CVE-2023-4244)
   * netfilter: nf_tables: adapt set backend to use GC transaction API
     (CVE-2023-4244)
   * netfilter: nft_set_hash: mark set element as dead when deleting from packet
     path (CVE-2023-4244)
   * netfilter: nf_tables: remove busy mark and gc batch API (CVE-2023-4244)
   * netfilter: nf_tables: don't fail inserts if duplicate has expired
   * netfilter: nf_tables: fix GC transaction races with netns and netlink event
     exit path (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction race with netns dismantle
     (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction race with abort path
   * netfilter: nf_tables: use correct lock to protect gc_list
   * netfilter: nf_tables: defer gc run if previous batch is still pending
   * netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
   * netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention
   * netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync() in catchall GC
   * netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation
     fails
   * netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration
   * netfilter: nf_tables: fix memleak when more than 255 elements expired
   * netfilter: nf_tables: disallow element removal on anonymous sets
   * netfilter: conntrack: fix extension size table
   * netfilter, bpf: Adjust timeouts of non-confirmed CTs in
     bpf_ct_insert_entry()
   * netfilter: nf_tables: disable toggling dormant table state more than once
   * netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP
     (CVE-2023-42756)
   * misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to
     probe (Closes: #1052063)
   * ipv4: fix null-deref in ipv4_link_failure
 .
   [ Vincent Blut ]
   * drivers/char/hw_random: Change HW_RANDOM from module to built-in
     (Closes: #1041007)
   * drivers/char/tpm: Do not explicitly set HW_RANDOM_TPM
   * [arm64, cloud, x86] drivers/char/tpm: Do not explicitly enable TCG_TPM
   * [arm*,ppc64*,sparc64,s390x] drivers/char/hw_random: Prevent some HW Random
     Number Generator drivers from being built-in
linux (6.1.52-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.39
     - fs: pipe: reveal missing function protoypes
     - block: Fix the type of the second bdev_op_is_zoned_write() argument
     - erofs: clean up cached I/O strategies
     - erofs: avoid tagged pointers to mark sync decompression
     - erofs: remove tagged pointer helpers
     - erofs: move zdata.h into zdata.c
     - erofs: kill hooked chains to avoid loops on deduplicated compressed images
     - [x86] resctrl: Only show tasks' pid in current pid namespace
     - blk-iocost: use spin_lock_irqsave in adjust_inuse_and_calc_cost
     - [x86] sev: Fix calculation of end address based on number of pages
     - virt: sevguest: Add CONFIG_CRYPTO dependency
     - blk-mq: fix potential io hang by wrong 'wake_batch'
     - lockd: drop inappropriate svc_get() from locked_get()
     - nvme-core: fix memory leak in dhchap_secret_store
     - nvme-core: fix memory leak in dhchap_ctrl_secret
     - nvme-core: add missing fault-injection cleanup
     - nvme-core: fix dev_pm_qos memleak
     - md/raid10: check slab-out-of-bounds in md_bitmap_get_counter
     - md/raid10: fix overflow of md/safe_mode_delay
     - md/raid10: fix wrong setting of max_corr_read_errors
     - md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request
     - md/raid10: fix io loss while replacement replace rdev
     - md/raid1-10: factor out a helper to add bio to plug
     - md/raid1-10: factor out a helper to submit normal write
     - md/raid1-10: submit write io directly if bitmap is not enabled
     - block: fix blktrace debugfs entries leakage
     - irqchip/stm32-exti: Fix warning on initialized field overwritten
     - irqchip/jcore-aic: Fix missing allocation of IRQ descriptors
     - svcrdma: Prevent page release when nothing was received
     - erofs: simplify iloc()
     - erofs: fix compact 4B support for 16k block size
     - posix-timers: Prevent RT livelock in itimer_delete()
     - tick/rcu: Fix bogus ratelimit condition
     - tracing/timer: Add missing hrtimer modes to decode_hrtimer_mode().
     - clocksource/drivers/cadence-ttc: Fix memory leak in ttc_timer_probe
     - PM: domains: fix integer overflow issues in genpd_parse_state()
     - perf/arm-cmn: Fix DTC reset
     - [x86] mm: Allow guest.enc_status_change_prepare() to fail
     - [x86] tdx: Fix race between set_memory_encrypted() and
       load_unaligned_zeropad()
     - drivers/perf: hisi: Don't migrate perf to the CPU going to teardown
     - powercap: RAPL: Fix CONFIG_IOSF_MBI dependency
     - PM: domains: Move the verification of in-params from genpd_add_device()
     - cpufreq: intel_pstate: Fix energy_performance_preference for passive
     - thermal/drivers/sun8i: Fix some error handling paths in sun8i_ths_probe()
     - rcu: Make rcu_cpu_starting() rely on interrupts being disabled
     - rcu-tasks: Stop rcu_tasks_invoke_cbs() from using never-onlined CPUs
     - rcutorture: Correct name of use_softirq module parameter
     - rcuscale: Move shutdown from wait_event() to wait_event_idle()
     - rcu/rcuscale: Move rcu_scale_*() after kfree_scale_cleanup()
     - rcu/rcuscale: Stop kfree_scale_thread thread(s) after unloading rcuscale
     - perf/ibs: Fix interface via core pmu events
     - [x86] mm: Fix __swp_entry_to_pte() for Xen PV guests
     - locking/atomic: arm: fix sync ops
     - evm: Complete description of evm_inode_setattr()
     - pstore/ram: Add check for kstrdup
     - igc: Enable and fix RX hash usage by netstack
     - wifi: ath9k: fix AR9003 mac hardware hang check register offset
       calculation
     - wifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx
     - spi: spi-geni-qcom: Correct CS_TOGGLE bit in SPI_TRANS_CFG
     - wifi: wilc1000: fix for absent RSN capabilities WFA testcase
     - wifi: mwifiex: Fix the size of a memory allocation in
       mwifiex_ret_802_11_scan()
     - sctp: add bpf_bypass_getsockopt proto callback
     - bpf: Don't EFAULT for {g,s}setsockopt with wrong optlen
     - spi: dw: Round of n_bytes to power of 2
     - nfc: llcp: fix possible use of uninitialized variable in
       nfc_llcp_send_connect()
     - bpftool: JIT limited misreported as negative value on aarch64
     - bpf: Remove bpf trampoline selector
     - bpf: Fix memleak due to fentry attach failure
     - regulator: core: Fix more error checking for debugfs_create_dir()
     - regulator: core: Streamline debugfs operations
     - wifi: orinoco: Fix an error handling path in spectrum_cs_probe()
     - wifi: orinoco: Fix an error handling path in orinoco_cs_probe()
     - wifi: atmel: Fix an error handling path in atmel_probe()
     - wifi: wl3501_cs: Fix an error handling path in wl3501_probe()
     - wifi: ray_cs: Fix an error handling path in ray_probe()
     - wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes
     - wifi: ath10k: Trigger STA disconnect after reconfig complete on hardware
       restart
     - wifi: mac80211: recalc min chandef for new STA links
     - wifi: rsi: Do not configure WoWlan in shutdown hook if not enabled
     - wifi: rsi: Do not set MMC_PM_KEEP_POWER in shutdown
     - ice: handle extts in the miscellaneous interrupt thread
     - watchdog/perf: define dummy watchdog_update_hrtimer_threshold() on correct
       config
     - watchdog/perf: more properly prevent false positives with turbo modes
     - kexec: fix a memory leak in crash_shrink_memory()
     - mmc: mediatek: Avoid ugly error message when SDIO wakeup IRQ isn't used
     - memstick r592: make memstick_debug_get_tpc_name() static
     - wifi: ath9k: Fix possible stall on ath9k_txq_list_has_key()
     - wifi: mac80211: Fix permissions for valid_links debugfs entry
     - rtnetlink: extend RTEXT_FILTER_SKIP_STATS to IFLA_VF_INFO
     - wifi: ath11k: Add missing check for ioremap
     - wifi: iwlwifi: pull from TXQs with softirqs disabled
     - wifi: iwlwifi: pcie: fix NULL pointer dereference in
       iwl_pcie_irq_rx_msix_handler()
     - wifi: mac80211: Remove "Missing iftype sband data/EHT cap" spam
     - wifi: cfg80211: rewrite merging of inherited elements
     - wifi: cfg80211: drop incorrect nontransmitted BSS update code
     - wifi: cfg80211: fix regulatory disconnect with OCB/NAN
     - wifi: cfg80211/mac80211: Fix ML element common size calculation
     - wifi: ieee80211: Fix the common size calculation for reconfiguration ML
     - mmc: Add MMC_QUIRK_BROKEN_SD_CACHE for Kingston Canvas Go Plus from
       11/2019
     - wifi: iwlwifi: mvm: indicate HW decrypt for beacon protection
     - wifi: ath9k: convert msecs to jiffies where needed
     - bpf: Factor out socket lookup functions for the TC hookpoint.
     - bpf: Call __bpf_sk_lookup()/__bpf_skc_lookup() directly via TC hookpoint
     - bpf: Fix bpf socket lookup from tc/xdp to respect socket VRF bindings
     - can: length: fix bitstuffing count
     - net: stmmac: fix double serdes powerdown
     - netlink: fix potential deadlock in netlink_set_err()
     - netlink: do not hard code device address lenth in fdb dumps
     - bonding: do not assume skb mac_header is set
     - gtp: Fix use-after-free in __gtp_encap_destroy().
     - net: axienet: Move reset before 64-bit DMA detection
     - ocfs2: Fix use of slab data with sendpage
     - sfc: fix crash when reading stats while NIC is resetting
     - net: nfc: Fix use-after-free caused by nfc_llcp_find_local (CVE-2023-3863)
     - lib/ts_bm: reset initial match offset for every block of text
     - netfilter: conntrack: dccp: copy entire header to stack buffer, not just
       basic one
     - netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return
       value.
     - ipvlan: Fix return value of ipvlan_queue_xmit()
     - netlink: Add __sock_i_ino() for __netlink_diag_dump().
     - drm/amd/display: Add logging for display MALL refresh setting
     - radeon: avoid double free in ci_dpm_init()
     - drm/amd/display: Explicitly specify update type per plane info change
     - drm/bridge: it6505: Move a variable assignment behind a null pointer check
       in receive_timing_debugfs_show()
     - Input: drv260x - sleep between polling GO bit
     - drm/bridge: ti-sn65dsi83: Fix enable error path
     - drm/bridge: tc358768: always enable HS video mode
     - drm/bridge: tc358768: fix PLL parameters computation
     - drm/bridge: tc358768: fix PLL target frequency
     - drm/bridge: tc358768: fix TCLK_ZEROCNT computation
     - drm/bridge: tc358768: Add atomic_get_input_bus_fmts() implementation
     - drm/bridge: tc358768: fix TCLK_TRAILCNT computation
     - drm/bridge: tc358768: fix THS_ZEROCNT computation
     - drm/bridge: tc358768: fix TXTAGOCNT computation
     - drm/bridge: tc358768: fix THS_TRAILCNT computation
     - drm/vram-helper: fix function names in vram helper doc
     - mm: call arch_swap_restore() from do_swap_page()
     - clk: vc5: Use `clamp()` to restrict PLL range
     - bootmem: remove the vmemmap pages from kmemleak in free_bootmem_page
     - clk: vc5: Fix .driver_data content in i2c_device_id
     - clk: vc7: Fix .driver_data content in i2c_device_id
     - clk: rs9: Fix .driver_data content in i2c_device_id
     - Input: adxl34x - do not hardcode interrupt trigger type
     - drm: sun4i_tcon: use devm_clk_get_enabled in `sun4i_tcon_init_clocks`
     - drm/panel: sharp-ls043t1le01: adjust mode settings
     - driver: soc: xilinx: use _safe loop iterator to avoid a use after free
     - ASoC: Intel: sof_sdw: remove SOF_SDW_TGL_HDMI for MeteorLake devices
     - drm/vkms: isolate pixel conversion functionality
     - drm: Add fixed-point helper to get rounded integer values
     - drm/vkms: Fix RGB565 pixel conversion
     - ARM: dts: stm32: Move ethernet MAC EEPROM from SoM to carrier boards
     - bus: ti-sysc: Fix dispc quirk masking bool variables
     - [arm64:]dts: microchip: sparx5: do not use PSCI on reference boards
     - drm/bridge: tc358767: Switch to devm MIPI-DSI helpers
     - clk: imx: scu: use _safe list iterator to avoid a use after free
     - hwmon: (f71882fg) prevent possible division by zero
     - RDMA/bnxt_re: Disable/kill tasklet only if it is enabled
     - RDMA/bnxt_re: Fix to remove unnecessary return labels
     - RDMA/bnxt_re: Use unique names while registering interrupts
     - RDMA/bnxt_re: Remove a redundant check inside bnxt_re_update_gid
     - RDMA/bnxt_re: Fix to remove an unnecessary log
     - drm/msm/dsi: don't allow enabling 14nm VCO with unprogrammed rate
     - drm/msm/disp/dpu: get timing engine status from intf status register
     - drm/msm/dpu: Set DPU_DATA_HCTL_EN for in INTF_SC7180_MASK
     - iommu/virtio: Detach domain on endpoint release
     - iommu/virtio: Return size mapped for a detached domain
     - clk: renesas: rzg2l: Fix CPG_SIPLL5_CLK1 register write
     - ARM: dts: gta04: Move model property out of pinctrl node
     - drm/bridge: anx7625: Convert to i2c's .probe_new()
     - drm/bridge: anx7625: Prevent endless probe loop
     - ARM: dts: qcom: msm8974: do not use underscore in node name (again)
     - [arm64] dts: qcom: msm8916: correct camss unit address
     - [arm64] dts: qcom: msm8916: correct MMC unit address
     - [arm64] dts: qcom: msm8994: correct SPMI unit address
     - [arm64] dts: qcom: msm8996: correct camss unit address
     - [arm64] dts: qcom: sdm630: correct camss unit address
     - [arm64] dts: qcom: sdm845: correct camss unit address
     - [arm64] dts: qcom: sm8350: Add GPI DMA compatible fallback
     - [arm64] dts: qcom: sm8350: correct DMA controller unit address
     - [arm64] dts: qcom: sdm845-polaris: add missing touchscreen child node reg
     - [arm64] dts: qcom: apq8016-sbc: Fix regulator constraints
     - [arm64] dts: qcom: apq8016-sbc: Fix 1.8V power rail on LS expansion
     - drm/bridge: Introduce pre_enable_prev_first to alter bridge init order
     - drm/bridge: ti-sn65dsi83: Fix enable/disable flow to meet spec
     - drm/panel: simple: fix active size for Ampire AM-480272H3TMQW-T01H
     - ARM: ep93xx: fix missing-prototype warnings
     - ARM: omap2: fix missing tick_broadcast() prototype
     - [arm64] dts: qcom: pm7250b: add missing spmi-vadc include
     - [arm64] dts: qcom: apq8096: fix fixed regulator name property
     - [arm64] dts: mediatek: mt8183: Add mediatek,broken-save-restore-fw to
       kukui
     - ARM: dts: stm32: Shorten the AV96 HDMI sound card name
     - memory: brcmstb_dpfe: fix testing array offset after use
     - ARM: dts: qcom: apq8074-dragonboard: Set DMA as remotely controlled
     - ASoC: es8316: Increment max value for ALC Capture Target Volume control
     - ASoC: es8316: Do not set rate constraints for unsupported MCLKs
     - ARM: dts: meson8: correct uart_B and uart_C clock references
     - soc/fsl/qe: fix usb.c build errors
     - RDMA/irdma: avoid fortify-string warning in irdma_clr_wqes
     - IB/hfi1: Fix wrong mmu_node used for user SDMA packet after invalidate
     - RDMA/hns: Fix hns_roce_table_get return value
     - ARM: dts: iwg20d-q7-common: Fix backlight pwm specifier
     - drm/msm/dpu: set DSC flush bit correctly at MDP CTL flush register
     - fbdev: omapfb: lcd_mipid: Fix an error handling path in mipid_spi_probe()
     - [arm64] dts: ti: k3-j7200: Fix physical address of pin
     - Input: pm8941-powerkey - fix debounce on gen2+ PMICs
     - ARM: dts: stm32: Fix audio routing on STM32MP15xx DHCOM PDK2
     - ARM: dts: stm32: fix i2s endpoint format property for stm32mp15xx-dkx
     - hwmon: (gsc-hwmon) fix fan pwm temperature scaling
     - hwmon: (pmbus/adm1275) Fix problems with temperature monitoring on ADM1272
     - ARM: dts: BCM5301X: fix duplex-full => full-duplex
     - clk: Export clk_hw_forward_rate_request()
     - drm/amd/display: Fix a test CalculatePrefetchSchedule()
     - drm/amd/display: Fix a test dml32_rq_dlg_get_rq_reg()
     - drm/amdkfd: Fix potential deallocation of previously deallocated memory.
     - soc: mediatek: SVS: Fix MT8192 GPU node name
     - drm/amd/display: Fix artifacting on eDP panels when engaging freesync
       video mode
     - drm/radeon: fix possible division-by-zero errors
     - HID: uclogic: Modular KUnit tests should not depend on KUNIT=y
     - RDMA/rxe: Add ibdev_dbg macros for rxe
     - RDMA/rxe: Replace pr_xxx by rxe_dbg_xxx in rxe_mw.c
     - RDMA/rxe: Fix access checks in rxe_check_bind_mw
     - amdgpu: validate offset_in_bo of drm_amdgpu_gem_va
     - drm/msm/a5xx: really check for A510 in a5xx_gpu_init
     - RDMA/bnxt_re: wraparound mbox producer index
     - RDMA/bnxt_re: Avoid calling wake_up threads from spin_lock context
     - clk: imx: clk-imxrt1050: fix memory leak in imxrt1050_clocks_probe
     - clk: imx: clk-imx8mn: fix memory leak in imx8mn_clocks_probe
     - clk: imx93: fix memory leak and missing unwind goto in imx93_clocks_probe
     - clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe()
     - [arm64] dts: qcom: sdm845: Flush RSC sleep & wake votes
     - [arm64] dts: qcom: sm8250-edo: Panel framebuffer is 2.5k instead of 4k
     - clk: bcm: rpi: Fix off by one in raspberrypi_discover_clocks()
     - clk: clocking-wizard: Fix Oops in clk_wzrd_register_divider()
     - clk: tegra: tegra124-emc: Fix potential memory leak
     - ALSA: ac97: Fix possible NULL dereference in snd_ac97_mixer
     - drm/msm/dpu: do not enable color-management if DSPPs are not available
     - drm/msm/dpu: Fix slice_last_group_size calculation
     - drm/msm/dsi: Use DSC slice(s) packet size to compute word count
     - drm/msm/dsi: Flip greater-than check for slice_count and slice_per_intf
     - drm/msm/dsi: Remove incorrect references to slice_count
     - drm/msm/dp: Free resources after unregistering them
     - [arm64] dts: mediatek: Add cpufreq nodes for MT8192
     - [arm64] dts: mediatek: mt8192: Fix CPUs capacity-dmips-mhz
     - drm/amdgpu: Fix memcpy() in sienna_cichlid_append_powerplay_table
       function.
     - drm/amdgpu: Fix usage of UMC fill record in RAS
     - drm/msm/dpu: correct MERGE_3D length
     - clk: vc5: check memory returned by kasprintf()
     - clk: cdce925: check return value of kasprintf()
     - clk: si5341: return error if one synth clock registration fails
     - clk: si5341: check return value of {devm_}kasprintf()
     - clk: si5341: free unused memory on probe failure
     - clk: keystone: sci-clk: check return value of kasprintf()
     - clk: ti: clkctrl: check return value of kasprintf()
     - drivers: meson: secure-pwrc: always enable DMA domain
     - ovl: update of dentry revalidate flags after copy up
     - ASoC: imx-audmix: check return value of devm_kasprintf()
     - clk: Fix memory leak in devm_clk_notifier_register()
     - ARM: dts: lan966x: kontron-d10: fix board reset
     - ARM: dts: lan966x: kontron-d10: fix SPI CS
     - ASoC: amd: acp: clear pdm dma interrupt mask
     - PCI: cadence: Fix Gen2 Link Retraining process
     - PCI: vmd: Reset VMD config register between soft reboots
     - scsi: qedf: Fix NULL dereference in error handling
     - pinctrl: bcm2835: Handle gpiochip_add_pin_range() errors
     - [x86] platform/x86: lenovo-yogabook: Fix work race on remove()
     - [x86] platform/x86: lenovo-yogabook: Reprobe devices on remove()
     - [x86] platform/x86: lenovo-yogabook: Set default keyboard backligh
       brightness on probe()
     - PCI/ASPM: Disable ASPM on MFD function removal to avoid use-after-free
     - scsi: 3w-xxxx: Add error handling for initialization failure in tw_probe()
     - PCI: pciehp: Cancel bringup sequence if card is not present
     - PCI: ftpci100: Release the clock resources
     - pinctrl: sunplus: Add check for kmalloc
     - PCI: Add pci_clear_master() stub for non-CONFIG_PCI
     - scsi: lpfc: Revise NPIV ELS unsol rcv cmpl logic to drop ndlp based on
       nlp_state
     - perf bench: Add missing setlocale() call to allow usage of %'d style
       formatting
     - pinctrl: cherryview: Return correct value if pin in push-pull mode
     - [x86] platform/x86: think-lmi: mutex protection around multiple WMI calls
     - [x86] platform/x86: think-lmi: Correct System password interface
     - [x86] platform/x86: think-lmi: Correct NVME password handling
     - pinctrl:sunplus: Add check for kmalloc
     - pinctrl: npcm7xx: Add missing check for ioremap
     - kcsan: Don't expect 64 bits atomic builtins from 32 bits architectures
     - powerpc/interrupt: Don't read MSR from interrupt_exit_kernel_prepare()
     - [powerpc*] signal32: Force inlining of __unsafe_save_user_regs() and
       save_tm_user_regs_unsafe()
     - perf script: Fix allocation of evsel->priv related to per-event dump files
     - [x86] platform/x86: thinkpad_acpi: Fix lkp-tests warnings for platform
       profiles
     - perf dwarf-aux: Fix off-by-one in die_get_varname()
     - [x86] platform/x86/dell/dell-rbtn: Fix resources leaking on error path
     - [x86] perf tool x86: Consolidate is_amd check into single function
     - [x86] perf tool x86: Fix perf_env memory leak
     - [powerpc*] 64s: Fix VAS mm use after free
     - pinctrl: microchip-sgpio: check return value of devm_kasprintf()
     - pinctrl: at91-pio4: check return value of devm_kasprintf()
     - [powerpc*] powernv/sriov: perform null check on iov before dereferencing
       iov
     - [powerpc*] simplify ppc_save_regs
     - [powerpc*] update ppc_save_regs to save current r1 in pt_regs
     - PCI: qcom: Remove PCIE20_ prefix from register definitions
     - PCI: qcom: Sort and group registers and bitfield definitions
     - PCI: qcom: Use lower case for hex
     - PCI: qcom: Use DWC helpers for modifying the read-only DBI registers
     - PCI: qcom: Disable write access to read only registers for IP v2.9.0
     - [powerpc*] book3s64/mm: Fix DirectMap stats in /proc/meminfo
     - [powerpc*] mm/dax: Fix the condition when checking if altmap vmemap can
       cross-boundary
     - PCI: endpoint: Fix Kconfig indent style
     - PCI: endpoint: Fix a Kconfig prompt of vNTB driver
     - PCI: endpoint: functions/pci-epf-test: Fix dma_chan direction
     - PCI: vmd: Fix uninitialized variable usage in vmd_enable_domain()
     - vfio/mdev: Move the compat_class initialization to module init
     - hwrng: virtio - Fix race on data_avail and actual data
     - modpost: remove broken calculation of exception_table_entry size
     - crypto: nx - fix build warnings when DEBUG_FS is not enabled
     - modpost: fix section mismatch message for R_ARM_ABS32
     - modpost: fix section mismatch message for R_ARM_{PC24,CALL,JUMP24}
     - crypto: marvell/cesa - Fix type mismatch warning
     - crypto: jitter - correct health test during initialization
     - modpost: fix off by one in is_executable_section()
     - crypto: kpp - Add helper to set reqsize
     - crypto: qat - Use helper to set reqsize
     - crypto: qat - unmap buffer before free for DH
     - crypto: qat - unmap buffers before free for RSA
     - NFSv4.2: fix wrong shrinker_id
     - NFSv4.1: freeze the session table upon receiving NFS4ERR_BADSESSION
     - SMB3: Do not send lease break acknowledgment if all file handles have been
       closed
     - dax: Fix dax_mapping_release() use after free
     - dax: Introduce alloc_dev_dax_id()
     - dax/kmem: Pass valid argument to memory_group_register_static
     - hwrng: st - keep clock enabled while hwrng is registered
     - kbuild: Disable GCOV for *.mod.o
     - efi/libstub: Disable PCI DMA before grabbing the EFI memory map
     - cifs: prevent use-after-free by freeing the cfile later
     - cifs: do all necessary checks for credits within or before locking
     - smb: client: fix broken file attrs with nodfs mounts
     - ksmbd: avoid field overflow warning
     - [arm64] sme: Use STR P to clear FFR context field in streaming SVE mode
     - [x86] efi: Make efi_set_virtual_address_map IBT safe
     - md/raid1-10: fix casting from randomized structure in raid1_submit_write()
     - USB: serial: option: add LARA-R6 01B PIDs
     - usb: dwc3: gadget: Propagate core init errors to UDC during pullup
     - phy: tegra: xusb: Clear the driver reference in usb-phy dev
     - iio: adc: ad7192: Fix null ad7192_state pointer access
     - iio: adc: ad7192: Fix internal/external clock selection
     - iio: accel: fxls8962af: errata bug only applicable for FXLS8962AF
     - iio: accel: fxls8962af: fixup buffer scan element type
     - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on
       EliteBook
     - ALSA: hda/realtek: Add quirk for Clevo NPx0SNx
     - ALSA: jack: Fix mutex call in snd_jack_report()
     - ALSA: pcm: Fix potential data race at PCM memory allocation helpers
     - block: fix signed int overflow in Amiga partition support
     - block: add overflow checks for Amiga partition support
     - block: change all __u32 annotations to __be32 in affs_hardblocks.h
     - block: increment diskseq on all media change events
     - btrfs: fix race when deleting free space root from the dirty cow roots
       list
     - SUNRPC: Fix UAF in svc_tcp_listen_data_ready()
     - w1: w1_therm: fix locking behavior in convert_t
     - w1: fix loop in w1_fini()
     - dt-bindings: power: reset: qcom-pon: Only allow reboot-mode pre-pmk8350
     - f2fs: do not allow to defragment files have FI_COMPRESS_RELEASED
     - usb: dwc2: platform: Improve error reporting for problems during .remove()
     - usb: dwc2: Fix some error handling paths
     - serial: 8250: omap: Fix freeing of resources on failed register
     - clk: qcom: mmcc-msm8974: remove oxili_ocmemgx_clk
     - clk: qcom: camcc-sc7180: Add parent dependency to all camera GDSCs
     - clk: qcom: gcc-ipq6018: Use floor ops for sdcc clocks
     - clk: qcom: gcc-qcm2290: Mark RCGs shared where applicable
     - media: usb: Check az6007_read() return value
     - media: amphion: drop repeated codec data for vc1l format
     - media: amphion: drop repeated codec data for vc1g format
     - media: amphion: initiate a drain of the capture queue in dynamic
       resolution change
     - media: videodev2.h: Fix struct v4l2_input tuner index comment
     - media: usb: siano: Fix warning due to null work_func_t function pointer
       (CVE-2023-4132)
     - media: i2c: Correct format propagation for st-mipid02
     - media: hi846: fix usage of pm_runtime_get_if_in_use()
     - media: mediatek: vcodec: using decoder status instead of core work count
     - clk: qcom: reset: support resetting multiple bits
     - clk: qcom: ipq6018: fix networking resets
     - clk: qcom: dispcc-qcm2290: Fix BI_TCXO_AO handling
     - clk: qcom: dispcc-qcm2290: Fix GPLL0_OUT_DIV handling
     - clk: qcom: mmcc-msm8974: use clk_rcg2_shared_ops for mdp_clk_src clock
     - staging: vchiq_arm: mark vchiq_platform_init() static
     - usb: dwc3: qcom: Fix potential memory leak
     - usb: gadget: u_serial: Add null pointer check in gserial_suspend
     - extcon: Fix kernel doc of property fields to avoid warnings
     - extcon: Fix kernel doc of property capability fields to avoid warnings
     - usb: phy: phy-tahvo: fix memory leak in tahvo_usb_probe()
     - usb: hide unused usbfs_notify_suspend/resume functions
     - usb: misc: eud: Fix eud sysfs path (use 'qcom_eud')
     - serial: core: lock port for stop_rx() in uart_suspend_port()
     - serial: 8250: lock port for stop_rx() in omap8250_irq()
     - serial: core: lock port for start_rx() in uart_resume_port()
     - serial: 8250: lock port for UART_IER access in omap8250_irq()
     - kernfs: fix missing kernfs_idr_lock to remove an ID from the IDR
     - lkdtm: replace ll_rw_block with submit_bh
     - i3c: master: svc: fix cpu schedule in spin lock
     - coresight: Fix loss of connection info when a module is unloaded
     - mfd: rt5033: Drop rt5033-battery sub-device
     - media: venus: helpers: Fix ALIGN() of non power of two
     - media: atomisp: gmin_platform: fix out_len in gmin_get_config_dsm_var()
     - gfs2: Fix duplicate should_fault_in_pages() call
     - f2fs: fix potential deadlock due to unpaired node_write lock use
     - f2fs: fix to avoid NULL pointer dereference f2fs_write_end_io()
       (CVE-2023-2898)
     - [s390x] KVM: s390: fix KVM_S390_GET_CMMA_BITS for GFNs in memslot holes
     - usb: dwc3: qcom: Release the correct resources in dwc3_qcom_remove()
     - usb: dwc3: qcom: Fix an error handling path in dwc3_qcom_probe()
     - usb: common: usb-conn-gpio: Set last role to unknown before initial
       detection
     - usb: dwc3-meson-g12a: Fix an error handling path in
       dwc3_meson_g12a_probe()
     - mfd: wcd934x: Fix an error handling path in wcd934x_slim_probe()
     - mfd: intel-lpss: Add missing check for platform_get_resource
     - Revert "usb: common: usb-conn-gpio: Set last role to unknown before
       initial detection"
     - serial: 8250_omap: Use force_suspend and resume for system suspend
     - device property: Fix documentation for fwnode_get_next_parent()
     - device property: Clarify description of returned value in some functions
     - drivers: fwnode: fix fwnode_irq_get[_byname]()
     - nvmem: sunplus-ocotp: release otp->clk before return
     - nvmem: rmem: Use NVMEM_DEVID_AUTO
     - bus: fsl-mc: don't assume child devices are all fsl-mc devices
     - mfd: stmfx: Fix error path in stmfx_chip_init
     - mfd: stmfx: Nullify stmfx->vdd in case of error
     - [s390x] KVM: s390: vsie: fix the length of APCB bitmap
     - [s390x] KVM: s390/diag: fix racy access of physical cpu number in diag 9c
       handler
     - cpufreq: mediatek: correct voltages for MT7622 and MT7623
     - misc: fastrpc: check return value of devm_kasprintf()
     - clk: qcom: mmcc-msm8974: fix MDSS_GDSC power flags
     - hwtracing: hisi_ptt: Fix potential sleep in atomic context
     - mfd: stmpe: Only disable the regulators if they are enabled
     - phy: tegra: xusb: check return value of devm_kzalloc()
     - lib/bitmap: drop optimization of bitmap_{from,to}_arr64
     - pwm: imx-tpm: force 'real_period' to be zero in suspend
     - pwm: sysfs: Do not apply state to already disabled PWMs
     - pwm: ab8500: Fix error code in probe()
     - pwm: mtk_disp: Fix the disable flow of disp_pwm
     - md/raid10: fix the condition to call bio_end_io_acct()
     - rtc: st-lpc: Release some resources in st_rtc_probe() in case of error
     - [x86] drm/i915/psr: Use hw.adjusted mode when calculating io/fast wake
       times
     - [x86] drm/i915/guc/slpc: Apply min softlimit correctly
     - f2fs: check return value of freeze_super()
     - media: cec: i2c: ch7322: also select REGMAP
     - sctp: fix potential deadlock on &net->sctp.addr_wq_lock
     - net/sched: act_ipt: add sanity checks on table name and hook locations
     - net: add a couple of helpers for iph tot_len
     - net/sched: act_ipt: add sanity checks on skb before calling target
     - spi: spi-geni-qcom: enable SPI_CONTROLLER_MUST_TX for GPI DMA mode
     - net: mscc: ocelot: don't report that RX timestamping is enabled by default
     - net: mscc: ocelot: don't keep PTP configuration of all ports in single
       structure
     - net: dsa: felix: don't drop PTP frames with tag_8021q when RX timestamping
       is disabled
     - net: dsa: sja1105: always enable the INCL_SRCPT option
     - net: dsa: tag_sja1105: always prefer source port information from
       INCL_SRCPT
     - Add MODULE_FIRMWARE() for FIRMWARE_TG357766.
     - Bluetooth: fix invalid-bdaddr quirk for non-persistent setup
     - Bluetooth: ISO: use hci_sync for setting CIG parameters
     - Bluetooth: MGMT: add CIS feature bits to controller information
     - Bluetooth: MGMT: Use BIT macro when defining bitfields
     - Bluetooth: MGMT: Fix marking SCAN_RSP as not connectable
     - ibmvnic: Do not reset dql stats on NON_FATAL err
     - net: dsa: vsc73xx: fix MTU configuration
     - mlxsw: minimal: fix potential memory leak in mlxsw_m_linecards_init
     - spi: bcm-qspi: return error if neither hif_mspi nor mspi is available
     - drm/amdgpu: fix number of fence calculations
     - drm/amd: Don't try to enable secure display TA multiple times
     - mailbox: ti-msgmgr: Fill non-message tx data fields with 0x0
     - f2fs: fix error path handling in truncate_dnode()
     - octeontx2-af: Fix mapping for NIX block from CGX connection
     - octeontx2-af: Add validation before accessing cgx and lmac
     - ntfs: Fix panic about slab-out-of-bounds caused by ntfs_listxattr()
     - [powerpc*] allow PPC_EARLY_DEBUG_CPM only when SERIAL_CPM=y
     - [powerpc*] dts: turris1x.dts: Fix PCIe MEM size for pci2 node
     - net: bridge: keep ports without IFF_UNICAST_FLT in BR_PROMISC mode
     - net: dsa: tag_sja1105: fix source port decoding in vlan_filtering=0 bridge
       mode
     - net: fix net_dev_start_xmit trace event vs skb_transport_offset()
     - tcp: annotate data races in __tcp_oow_rate_limited()
     - bpf, btf: Warn but return no error for NULL btf from
       __register_btf_kfunc_id_set()
     - xsk: Honor SO_BINDTODEVICE on bind
     - net/sched: act_pedit: Add size check for TCA_PEDIT_PARMS_EX
     - fanotify: disallow mount/sb marks on kernel internal pseudo fs
     - pptp: Fix fib lookup calls.
     - net: dsa: tag_sja1105: fix MAC DA patching from meta frames
     - net: dsa: sja1105: always enable the send_meta options
     - octeontx-af: fix hardware timestamp configuration
     - afs: Fix accidental truncation when storing data
     - [s390x] qeth: Fix vipa deletion
     - apparmor: fix missing error check for rhashtable_insert_fast
     - i2c: xiic: Don't try to handle more interrupt events after error
     - dm: fix undue/missing spaces
     - dm: avoid split of quoted strings where possible
     - dm ioctl: have constant on the right side of the test
     - dm ioctl: Avoid double-fetch of version
     - extcon: usbc-tusb320: Convert to i2c's .probe_new()
     - extcon: usbc-tusb320: Unregister typec port on driver removal
     - btrfs: do not BUG_ON() on tree mod log failure at balance_level()
     - i2c: qup: Add missing unwind goto in qup_i2c_probe()
     - irqchip/loongson-pch-pic: Fix potential incorrect hwirq assignment
     - NFSD: add encoding of op_recall flag for write delegation
     - irqchip/loongson-pch-pic: Fix initialization of HT vector register
     - io_uring: wait interruptibly for request completions on exit
     - mmc: core: disable TRIM on Kingston EMMC04G-M627
     - mmc: core: disable TRIM on Micron MTFC4GACAJCN-1M
     - mmc: mmci: Set PROBE_PREFER_ASYNCHRONOUS
     - mmc: sdhci: fix DMA configure compatibility issue when 64bit DMA mode is
       used.
     - wifi: cfg80211: fix regulatory disconnect for non-MLO
     - wifi: ath10k: Serialize wake_tx_queue ops
     - wifi: mt76: mt7921e: fix init command fail with enabled device
     - bcache: fixup btree_cache_wait list damage
     - bcache: Remove unnecessary NULL point check in node allocations
     - bcache: Fix __bch_btree_node_alloc to make the failure behavior consistent
     - watch_queue: prevent dangling pipe pointer
     - integrity: Fix possible multiple allocation in integrity_inode_get()
     - autofs: use flexible array in ioctl structure
     - mm/damon/ops-common: atomically test and clear young on ptes and pmds
     - shmem: use ramfs_kill_sb() for kill_sb method of ramfs-based tmpfs
     - jffs2: reduce stack usage in jffs2_build_xattr_subsystem()
     - fs: avoid empty option when generating legacy mount string
     - ext4: Remove ext4 locking of moved directory
     - Revert "f2fs: fix potential corruption when moving a directory"
     - fs: Establish locking order for unrelated directories
     - fs: Lock moved directories
     - i2c: nvidia-gpu: Add ACPI property to align with device-tree
     - i2c: nvidia-gpu: Remove ccgx,firmware-build property
     - usb: typec: ucsi: Mark dGPUs as DEVICE scope
     - ipvs: increase ip_vs_conn_tab_bits range for 64BIT
     - btrfs: add handling for RAID1C23/DUP to btrfs_reduce_alloc_profile
     - btrfs: delete unused BGs while reclaiming BGs
     - btrfs: bail out reclaim process if filesystem is read-only
     - btrfs: add block-group tree to lockdep classes
     - btrfs: reinsert BGs failed to reclaim
     - btrfs: fix race when deleting quota root from the dirty cow roots list
     - btrfs: fix extent buffer leak after tree mod log failure at split_node()
     - btrfs: do not BUG_ON() on tree mod log failure at __btrfs_cow_block()
     - ASoC: mediatek: mt8173: Fix irq error path
     - ASoC: mediatek: mt8173: Fix snd_soc_component_initialize error path
     - regulator: tps65219: Fix matching interrupts for their regulators
     - ARM: dts: qcom: ipq4019: fix broken NAND controller properties override
     - ARM: orion5x: fix d2net gpio initialization
     - leds: trigger: netdev: Recheck NETDEV_LED_MODE_LINKUP on dev rename
     - blktrace: use inline function for blk_trace_remove() while blktrace is
       disabled
     - fs: no need to check source
     - xfs: explicitly specify cpu when forcing inodegc delayed work to run
       immediately
     - xfs: check that per-cpu inodegc workers actually run on that cpu
     - xfs: disable reaping in fscounters scrub
     - xfs: fix xfs_inodegc_stop racing with mod_delayed_work
     - mm/mmap: Fix extra maple tree write
     - [x86] drm/i915: Fix TypeC mode initialization during system resume
     - [x86] drm/i915/tc: Fix TC port link ref init for DP MST during HW readout
     - [x86] drm/i915/tc: Fix system resume MST mode restore for DP-alt sinks
     - mtd: parsers: refer to ARCH_BCMBCA instead of ARCH_BCM4908
     - netfilter: nf_tables: unbind non-anonymous set if rule construction fails
     - netfilter: conntrack: Avoid nf_ct_helper_hash uses after free
     - wireguard: queueing: use saner cpu selection wrapping
     - wireguard: netlink: send staged packets when setting initial private key
     - tty: serial: fsl_lpuart: add earlycon for imx8ulp platform
     - block/partition: fix signedness issue for Amiga partitions
     - io_uring: Use io_schedule* in cqring wait
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.40
     - HID: amd_sfh: Rename the float32 variable
     - HID: amd_sfh: Fix for shift-out-of-bounds
     - net: lan743x: Don't sleep in atomic context
     - workqueue: clean up WORK_* constant types, clarify masking
     - ksmbd: add missing compound request handing in some commands
     - ksmbd: fix out of bounds read in smb2_sess_setup
     - drm/panel: simple: Add connector_type for innolux_at043tn24
     - drm/bridge: ti-sn65dsi86: Fix auxiliary bus lifetime
     - swiotlb: always set the number of areas before allocating the pool
     - swiotlb: reduce the swiotlb buffer size on allocation failure
     - swiotlb: reduce the number of areas to match actual memory pool size
     - drm/panel: simple: Add Powertip PH800480T013 drm_display_mode flags
     - ice: Fix max_rate check while configuring TX rate limits
     - igc: Remove delay during TX ring configuration
     - net/mlx5e: fix double free in mlx5e_destroy_flow_table
     - net/mlx5e: fix memory leak in mlx5e_fs_tt_redirect_any_create
     - net/mlx5e: fix memory leak in mlx5e_ptp_open
     - net/mlx5e: Check for NOT_READY flag state after locking
     - igc: set TP bit in 'supported' and 'advertising' fields of
       ethtool_link_ksettings
     - igc: Handle PPS start time programming for past time values
     - blk-crypto: use dynamic lock class for blk_crypto_profile::lock
     - scsi: qla2xxx: Fix error code in qla2x00_start_sp()
     - scsi: ufs: ufs-mediatek: Add dependency for RESET_CONTROLLER
     - bpf: Fix max stack depth check for async callbacks
     - net: mvneta: fix txq_map in case of txq_number==1
     - net/sched: cls_fw: Fix improper refcount update leads to use-after-free
       (CVE-2023-3776)
     - gve: Set default duplex configuration to full
     - octeontx2-af: Promisc enable/disable through mbox
     - octeontx2-af: Move validation of ptp pointer before its usage
     - ionic: remove WARN_ON to prevent panic_on_warn
     - net: bgmac: postpone turning IRQs off to avoid SoC hangs
     - net: prevent skb corruption on frag list segmentation
     - icmp6: Fix null-ptr-deref of ip6_null_entry->rt6i_idev in icmp6_dev().
     - udp6: fix udp6_ehashfn() typo
     - ntb: idt: Fix error handling in idt_pci_driver_init()
     - NTB: amd: Fix error handling in amd_ntb_pci_driver_init()
     - ntb: intel: Fix error handling in intel_ntb_pci_driver_init()
     - NTB: ntb_transport: fix possible memory leak while device_register() fails
     - NTB: ntb_tool: Add check for devm_kcalloc
     - ipv6/addrconf: fix a potential refcount underflow for idev
     - net: dsa: qca8k: Add check for skb_copy
     - [x86] platform/x86: wmi: Break possible infinite loop when parsing GUID
     - kernel/trace: Fix cleanup logic of enable_trace_eprobe
     - igc: Fix launchtime before start of cycle
     - igc: Fix inserting of empty frame for launchtime
     - nvme: fix the NVME_ID_NS_NVM_STS_MASK definition
     - [x86] drm/i915: Don't preserve dpll_hw_state for slave crtc in Bigjoiner
     - [x86] drm/i915: Fix one wrong caching mode enum usage
     - octeontx2-pf: Add additional check for MCAM rules
     - erofs: avoid useless loops in z_erofs_pcluster_readmore() when reading
       beyond EOF
     - erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond
       EOF
     - erofs: fix fsdax unavailability for chunk-based regular files
     - wifi: airo: avoid uninitialized warning in airo_get_rate()
     - bpf: cpumap: Fix memory leak in cpu_map_update_elem
     - net/sched: flower: Ensure both minimum and maximum ports are specified
     - riscv: mm: fix truncation warning on RV32
     - netdevsim: fix uninitialized data in nsim_dev_trap_fa_cookie_write()
     - net/sched: make psched_mtu() RTNL-less safe
     - wifi: rtw89: debug: fix error code in rtw89_debug_priv_send_h2c_set()
     - net/sched: sch_qfq: refactor parsing of netlink parameters
     - net/sched: sch_qfq: account for stab overhead in qfq_enqueue
       (CVE-2023-3611)
     - nvme-pci: fix DMA direction of unmapping integrity data
     - fs/ntfs3: Check fields while reading (CVE-2022-48502)
     - ovl: let helper ovl_i_path_real() return the realinode
     - ovl: fix null pointer dereference in ovl_get_acl_rcu()
     - cifs: fix session state check in smb2_find_smb_ses
     - drm/client: Send hotplug event after registering a client
     - drm/amdgpu/sdma4: set align mask to 255
     - drm/amd/pm: revise the ASPM settings for thunderbolt attached scenario
     - drm/amdgpu: add the fan abnormal detection feature
     - drm/amdgpu: Fix minmax warning
     - drm/amd/pm: add abnormal fan detection for smu 13.0.0
     - f2fs: fix the wrong condition to determine atomic context
     - f2fs: fix deadlock in i_xattr_sem and inode page lock
     - pinctrl: amd: Add Z-state wake control bits
     - pinctrl: amd: Adjust debugfs output
     - pinctrl: amd: Add fields for interrupt status and wake status
     - pinctrl: amd: Detect internal GPIO0 debounce handling
     - pinctrl: amd: Fix mistake in handling clearing pins at startup
     - pinctrl: amd: Detect and mask spurious interrupts
     - pinctrl: amd: Revert "pinctrl: amd: disable and mask interrupts on probe"
     - pinctrl: amd: Only use special debounce behavior for GPIO 0
     - pinctrl: amd: Use amd_pinconf_set() for all config options
     - pinctrl: amd: Drop pull up select configuration
     - pinctrl: amd: Unify debounce handling into amd_pinconf_set()
     - tpm: Do not remap from ACPI resources again for Pluton TPM
     - tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation
     - tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
     - tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
     - tpm: return false from tpm_amd_is_rng_defective on non-x86 platforms
     - mtd: rawnand: meson: fix unaligned DMA buffers handling
     - net: bcmgenet: Ensure MDIO unregistration has clocks enabled
     - net: phy: dp83td510: fix kernel stall during netboot in DP83TD510E PHY
       driver
     - tracing/user_events: Fix incorrect return value for writing operation when
       events are disabled
     - [powerpc*] Fail build if using recordmcount with binutils v2.37
     - misc: fastrpc: Create fastrpc scalar with correct buffer count
     - [powerpc*] security: Fix Speculation_Store_Bypass reporting on Power10
     - [powerpc*] 64s: Fix native_hpte_remove() to be irq-safe
     - [mips*] Loongson: Fix cpu_probe_loongson() again
     - [mips*] KVM: Fix NULL pointer dereference
     - ext4: Fix reusing stale buffer heads from last failed mounting
     - ext4: fix wrong unit use in ext4_mb_clear_bb
     - ext4: get block from bh in ext4_free_blocks for fast commit replay
     - ext4: fix wrong unit use in ext4_mb_new_blocks
     - ext4: fix to check return value of freeze_bdev() in ext4_shutdown()
     - ext4: turn quotas off if mount failed after enabling quotas
     - ext4: only update i_reserved_data_blocks on successful block allocation
     - fs: dlm: revert check required context while close
     - soc: qcom: mdt_loader: Fix unconditional call to scm_pas_mem_setup
     - ext2/dax: Fix ext2_setsize when len is page aligned
     - jfs: jfs_dmap: Validate db_l2nbperpage while mounting
     - hwrng: imx-rngc - fix the timeout for init and self check
     - dm integrity: reduce vmalloc space footprint on 32-bit architectures
     - scsi: mpi3mr: Propagate sense data for admin queue SCSI I/O
     - [s390x] zcrypt: do not retry administrative requests
     - PCI/PM: Avoid putting EloPOS E2/S2/H2 PCIe Ports in D3cold
     - PCI: Release resource invalidated by coalescing
     - PCI: Add function 1 DMA alias quirk for Marvell 88SE9235
     - PCI: qcom: Disable write access to read only registers for IP v2.3.3
     - PCI: epf-test: Fix DMA transfer completion initialization
     - PCI: epf-test: Fix DMA transfer completion detection
     - PCI: rockchip: Assert PCI Configuration Enable bit after probe
     - PCI: rockchip: Write PCI Device ID to correct register
     - PCI: rockchip: Add poll and timeout to wait for PHY PLLs to be locked
     - PCI: rockchip: Fix legacy IRQ generation for RK3399 PCIe endpoint core
     - PCI: rockchip: Use u32 variable to access 32-bit registers
     - PCI: rockchip: Set address alignment for endpoint mode
     - misc: pci_endpoint_test: Free IRQs before removing the device
     - misc: pci_endpoint_test: Re-init completion for every test
     - mfd: pm8008: Fix module autoloading
     - md/raid0: add discard support for the 'original' layout
     - dm init: add dm-mod.waitfor to wait for asynchronously probed block
       devices
     - fs: dlm: return positive pid value for F_GETLK
     - fs: dlm: fix cleanup pending ops when interrupted
     - fs: dlm: interrupt posix locks only when process is killed
     - fs: dlm: make F_SETLK use unkillable wait_event
     - fs: dlm: fix mismatch of plock results from userspace
     - scsi: lpfc: Fix double free in lpfc_cmpl_els_logo_acc() caused by
       lpfc_nlp_not_used()
     - drm/atomic: Allow vblank-enabled + self-refresh "disable"
     - drm/rockchip: vop: Leave vblank enabled in self-refresh
     - drm/amd/display: fix seamless odm transitions
     - drm/amd/display: edp do not add non-edid timings
     - drm/amd/display: Remove Phantom Pipe Check When Calculating K1 and K2
     - drm/amd/display: disable seamless boot if force_odm_combine is enabled
     - drm/amdgpu: fix clearing mappings for BOs that are always valid in VM
     - drm/amd: Disable PSR-SU on Parade 0803 TCON
     - drm/amd/display: add a NULL pointer check
     - drm/amd/display: Correct `DMUB_FW_VERSION` macro
     - drm/amd/display: Add monitor specific edid quirk
     - drm/amdgpu: avoid restore process run into dead loop.
     - drm/ttm: Don't leak a resource on swapout move error
     - serial: atmel: don't enable IRQs prematurely
     - tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() in
       case of error
     - tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk()
       when iterating clk
     - tty: serial: imx: fix rs485 rx after tx
     - firmware: stratix10-svc: Fix a potential resource leak in
       svc_create_memory_pool()
     - libceph: harden msgr2.1 frame segment length checks
     - ceph: add a dedicated private data for netfs rreq
     - ceph: fix blindly expanding the readahead windows
     - ceph: don't let check_caps skip sending responses for revoke msgs
     - xhci: Fix resume issue of some ZHAOXIN hosts
     - xhci: Fix TRB prefetch issue of ZHAOXIN hosts
     - xhci: Show ZHAOXIN xHCI root hub speed correctly
     - meson saradc: fix clock divider mask length
     - opp: Fix use-after-free in lazy_opp_tables after probe deferral
     - soundwire: qcom: fix storing port config out-of-bounds
     - Revert "8250: add support for ASIX devices with a FIFO bug"
     - bus: ixp4xx: fix IXP4XX_EXP_T1_MASK
     - [s390x] decompressor: fix misaligned symbol build error
     - dm: verity-loadpin: Add NULL pointer check for 'bdev' parameter
     - tracing/histograms: Add histograms to hist_vars if they have referenced
       variables
     - tracing: Fix memory leak of iter->temp when reading trace_pipe
     - nvme: don't reject probe due to duplicate IDs for single-ported PCIe
       devices
     - perf: RISC-V: Remove PERF_HES_STOPPED flag checking in riscv_pmu_start()
     - regmap-irq: Fix out-of-bounds access when allocating config buffers
     - net: ena: fix shift-out-of-bounds in exponential backoff
     - ring-buffer: Fix deadloop issue on reading trace_pipe
     - ftrace: Fix possible warning on checking all pages used in
       ftrace_process_locs()
     - drm/amd/pm: share the code around SMU13 pcie parameters update
     - drm/amd/pm: conditionally disable pcie lane/speed switching for SMU13
     - cifs: if deferred close is disabled then close files immediately
     - [x86] perf/x86: Fix lockdep warning in for_each_sibling_event() on SPR
     - PM: QoS: Restore support for default value on frequency QoS
     - pwm: meson: modify and simplify calculation in meson_pwm_get_state
     - pwm: meson: fix handling of period/duty if greater than UINT_MAX
     - fprobe: Release rethook after the ftrace_ops is unregistered
     - fprobe: Ensure running fprobe_exit_handler() finished before calling
       rethook_free()
     - tracing: Fix null pointer dereference in tracing_err_log_open()
     - tracing/probes: Fix not to count error code to total length
     - tracing/probes: Fix to update dynamic data counter if fetcharg uses it
     - tracing/user_events: Fix struct arg size match check
     - scsi: qla2xxx: Multi-que support for TMF
     - scsi: qla2xxx: Fix task management cmd failure
     - scsi: qla2xxx: Fix task management cmd fail due to unavailable resource
     - scsi: qla2xxx: Fix hang in task management
     - scsi: qla2xxx: Wait for io return on terminate rport
     - scsi: qla2xxx: Fix mem access after free
     - scsi: qla2xxx: Array index may go out of bound
     - scsi: qla2xxx: Avoid fcport pointer dereference
     - scsi: qla2xxx: Fix buffer overrun
     - scsi: qla2xxx: Fix potential NULL pointer dereference
     - scsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport()
     - scsi: qla2xxx: Correct the index of array
     - scsi: qla2xxx: Pointer may be dereferenced
     - scsi: qla2xxx: Remove unused nvme_ls_waitq wait queue
     - scsi: qla2xxx: Fix end of loop test
     - [mips*] kvm: Fix build error with KVM_MIPS_DEBUG_COP0_COUNTERS enabled
     - Revert "drm/amd: Disable PSR-SU on Parade 0803 TCON"
     - swiotlb: mark swiotlb_memblock_alloc() as __init
     - net/sched: sch_qfq: reintroduce lmax bound check for MTU
     - drm/atomic: Fix potential use-after-free in nonblocking commits
     - net/ncsi: make one oem_gma function for all mfr id
     - net/ncsi: change from ndo_set_mac_address to dev_set_mac_address
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.41
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.42
     - io_uring: treat -EAGAIN for REQ_F_NOWAIT as final for io-wq
     - ALSA: hda/realtek - remove 3k pull low procedure
     - ALSA: hda/realtek: Add quirk for Clevo NS70AU
     - ALSA: hda/realtek: Enable Mute LED on HP Laptop 15s-eq2xxx
     - maple_tree: set the node limit when creating a new root node
     - maple_tree: fix node allocation testing on 32 bit
     - keys: Fix linking a duplicate key to a keyring's assoc_array
     - perf probe: Add test for regression introduced by switch to
       die_get_decl_file()
     - btrfs: fix warning when putting transaction with qgroups enabled after
       abort
     - fuse: revalidate: don't invalidate if interrupted
     - fuse: Apply flags2 only when userspace set the FUSE_INIT_EXT
     - btrfs: set_page_extent_mapped after read_folio in btrfs_cont_expand
     - btrfs: zoned: fix memory leak after finding block group with super blocks
     - fuse: ioctl: translate ENOSYS in outarg
     - btrfs: fix race between balance and cancel/pause
     - regmap: Drop initial version of maximum transfer length fixes
     - of: Preserve "of-display" device name for compatibility
     - regmap: Account for register length in SMBus I/O limits
     - [arm64] fpsimd: Ensure SME storage is allocated after SVE VL changes
     - can: mcp251xfd: __mcp251xfd_chip_set_mode(): increase poll timeout
     - can: bcm: Fix UAF in bcm_proc_show()
     - can: gs_usb: gs_can_open(): improve error handling
     - dma-buf/dma-resv: Stop leaking on krealloc() failure
     - drm/amdgpu/vkms: relax timer deactivation by hrtimer_try_to_cancel
     - drm/amdgpu/pm: make gfxclock consistent for sienna cichlid
     - drm/amdgpu/pm: make mclk consistent for smu 13.0.7
     - drm/client: Fix memory leak in drm_client_target_cloned
     - drm/client: Fix memory leak in drm_client_modeset_probe
     - drm/amd/display: only accept async flips for fast updates
     - drm/amd/display: Disable MPC split by default on special asic
     - drm/amd/display: check TG is non-null before checking if enabled
     - drm/amd/display: Keep PHY active for DP displays on DCN31
     - ASoC: fsl_sai: Disable bit clock with transmitter
     - ASoC: fsl_sai: Revert "ASoC: fsl_sai: Enable MCTL_MCLK_EN bit for master
       mode"
     - ASoC: tegra: Fix ADX byte map
     - ASoC: rt5640: Fix sleep in atomic context
     - ASoC: cs42l51: fix driver to properly autoload with automatic module
       loading
     - ASoC: codecs: wcd938x: fix missing clsh ctrl error handling
     - ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove
     - ASoC: qdsp6: audioreach: fix topology probe deferral
     - ASoC: tegra: Fix AMX byte map
     - ASoC: codecs: wcd938x: fix resource leaks on component remove
     - ASoC: codecs: wcd938x: fix missing mbhc init error handling
     - ASoC: codecs: wcd934x: fix resource leaks on component remove
     - ASoC: codecs: wcd938x: fix codec initialisation race
     - ASoC: codecs: wcd938x: fix soundwire initialisation race
     - ext4: correct inline offset when handling xattrs in inode body
     - drm/radeon: Fix integer overflow in radeon_cs_parser_init
     - ALSA: emu10k1: roll up loops in DSP setup code for Audigy
     - quota: Properly disable quotas when add_dquot_ref() fails
     - quota: fix warning in dqgrab()
     - HID: add quirk for 03f0:464a HP Elite Presenter Mouse
     - ovl: check type and offset of struct vfsmount in ovl_entry
     - udf: Fix uninitialized array access for some pathnames
     - fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev
     - [mips*] dec: prom: Address -Warray-bounds warning
     - FS: JFS: Fix null-ptr-deref Read in txBegin
     - FS: JFS: Check for read-only mounted filesystem in txBegin
     - ACPI: video: Add backlight=native DMI quirk for Dell Studio 1569
     - rcu-tasks: Avoid pr_info() with spin lock in cblist_init_generic()
     - rcu: Mark additional concurrent load from ->cpu_no_qs.b.exp
     - sched/fair: Don't balance task to its current running CPU
     - wifi: ath11k: fix registration of 6Ghz-only phy without the full channel
       range
     - bpf: Print a warning only if writing to unprivileged_bpf_disabled.
     - bpf: Address KCSAN report on bpf_lru_list
     - bpf: tcp: Avoid taking fast sock lock in iterator
     - wifi: ath11k: add support default regdb while searching board-2.bin for
       WCN6855
     - wifi: mac80211_hwsim: Fix possible NULL dereference
     - spi: dw: Add compatible for Intel Mount Evans SoC
     - wifi: ath11k: fix memory leak in WMI firmware stats
     - net: ethernet: litex: add support for 64 bit stats
     - devlink: report devlink_port_type_warn source device
     - wifi: wext-core: Fix -Wstringop-overflow warning in
       ioctl_standard_iw_point()
     - wifi: iwlwifi: Add support for new PCI Id
     - wifi: iwlwifi: mvm: avoid baid size integer overflow
     - wifi: iwlwifi: pcie: add device id 51F1 for killer 1675
     - igb: Fix igb_down hung on surprise removal
     - net: hns3: fix strncpy() not using dest-buf length as length issue
     - ASoC: amd: acp: fix for invalid dai id handling in acp_get_byte_count()
     - ASoC: codecs: wcd938x: fix mbhc impedance loglevel
     - ASoC: codecs: wcd938x: fix dB range for HPHL and HPHR
     - ASoC: qcom: q6apm: do not close GPR port before closing graph
     - sched/fair: Use recent_used_cpu to test p->cpus_ptr
     - sched/psi: Fix avgs_work re-arm in psi_avgs_work()
     - sched/psi: Rearrange polling code in preparation
     - sched/psi: Rename existing poll members in preparation
     - sched/psi: Extract update_triggers side effect
     - sched/psi: Allow unprivileged polling of N*2s period
     - sched/psi: use kernfs polling functions for PSI trigger polling
     - pinctrl: renesas: rzv2m: Handle non-unique subnode names
     - pinctrl: renesas: rzg2l: Handle non-unique subnode names
     - spi: bcm63xx: fix max prepend length
     - fbdev: imxfb: warn about invalid left/right margin
     - fbdev: imxfb: Removed unneeded release_mem_region
     - perf build: Fix library not found error when using CSLIBS
     - btrfs: be a bit more careful when setting mirror_num_ret in
       btrfs_map_block
     - spi: s3c64xx: clear loopback bit after loopback test
     - kallsyms: Improve the performance of kallsyms_lookup_name()
     - kallsyms: Correctly sequence symbols when CONFIG_LTO_CLANG=y
     - kallsyms: strip LTO-only suffixes from promoted global functions
     - dsa: mv88e6xxx: Do a final check before timing out
     - net: ethernet: ti: cpsw_ale: Fix cpsw_ale_get_field()/cpsw_ale_set_field()
     - bridge: Add extack warning when enabling STP in netns.
     - net: ethernet: mtk_eth_soc: handle probe deferral
     - cifs: fix mid leak during reconnection after timeout threshold
     - ASoC: SOF: ipc3-dtrace: uninitialized data in
       dfsentry_trace_filter_write()
     - net: sched: cls_matchall: Undo tcf_bind_filter in case of failure after
       mall_set_parms
     - net: sched: cls_u32: Undo tcf_bind_filter if u32_replace_hw_knode
     - net: sched: cls_u32: Undo refcount decrement in case update failed
     - net: sched: cls_bpf: Undo tcf_bind_filter in case of an error
     - net: dsa: microchip: ksz8: Separate static MAC table operations for code
       reuse
     - net: dsa: microchip: ksz8: Make ksz8_r_sta_mac_table() static
     - net: dsa: microchip: ksz8_r_sta_mac_table(): Avoid using error code for
       empty entries
     - net: dsa: microchip: correct KSZ8795 static MAC table access
     - iavf: Fix use-after-free in free_netdev
     - iavf: Fix out-of-bounds when setting channels on remove
     - iavf: use internal state to free traffic IRQs
     - iavf: Move netdev_update_features() into watchdog task
     - iavf: send VLAN offloading caps once after VFR
     - iavf: make functions static where possible
     - iavf: Wait for reset in callbacks which trigger it
     - iavf: fix a deadlock caused by rtnl and driver's lock circular
       dependencies
     - iavf: fix reset task race with iavf_remove()
     - security: keys: Modify mismatched function name
     - octeontx2-pf: Dont allocate BPIDs for LBK interfaces
     - bpf: Fix subprog idx logic in check_max_stack_depth
     - bpf: Repeat check_max_stack_depth for async callbacks
     - bpf, arm64: Fix BTI type used for freplace attached functions
     - igc: Avoid transmit queue timeout for XDP
     - igc: Prevent garbled TX queue with XDP ZEROCOPY
     - net: ipv4: use consistent txhash in TIME_WAIT and SYN_RECV
     - tcp: annotate data-races around tcp_rsk(req)->txhash
     - tcp: annotate data-races around tcp_rsk(req)->ts_recent
     - net: ipv4: Use kfree_sensitive instead of kfree
     - net:ipv6: check return value of pskb_trim()
     - Revert "tcp: avoid the lookup process failing to get sk in ehash table"
     - fbdev: au1200fb: Fix missing IRQ check in au1200fb_drv_probe
     - llc: Don't drop packet from non-root netns.
     - ALSA: hda/realtek: Fix generic fixup definition for cs35l41 amp
     - netfilter: nf_tables: fix spurious set element insertion failure
     - netfilter: nf_tables: can't schedule in nft_chain_validate
     - netfilter: nft_set_pipapo: fix improper element removal (CVE-2023-4004)
     - netfilter: nf_tables: skip bound chain in netns release path
     - netfilter: nf_tables: skip bound chain on rule flush (CVE-2023-3777)
     - Bluetooth: use RCU for hci_conn_params and iterate safely in hci_sync
     - Bluetooth: hci_event: call disconnect callback before deleting conn
     - Bluetooth: ISO: fix iso_conn related locking and validity issues
     - Bluetooth: hci_sync: Avoid use-after-free in dbg for
       hci_remove_adv_monitor()
     - tcp: annotate data-races around tp->tcp_tx_delay
     - tcp: annotate data-races around tp->tsoffset
     - tcp: annotate data-races around tp->keepalive_time
     - tcp: annotate data-races around tp->keepalive_intvl
     - tcp: annotate data-races around tp->keepalive_probes
     - tcp: annotate data-races around icsk->icsk_syn_retries
     - tcp: annotate data-races around tp->linger2
     - tcp: annotate data-races around rskq_defer_accept
     - tcp: annotate data-races around tp->notsent_lowat
     - tcp: annotate data-races around icsk->icsk_user_timeout
     - tcp: annotate data-races around fastopenq.max_qlen
     - net: phy: prevent stale pointer dereference in phy_init()
     - jbd2: recheck chechpointing non-dirty buffer
     - tracing/histograms: Return an error if we fail to add histogram to
       hist_vars list
     - drm/ttm: fix bulk_move corruption when adding a entry
     - spi: dw: Remove misleading comment for Mount Evans SoC
     - kallsyms: add kallsyms_seqs_of_names to list of special symbols
     - scripts/kallsyms.c Make the comment up-to-date with current implementation
     - scripts/kallsyms: update the usage in the comment block
     - bpf: allow precision tracking for programs with subprogs
     - bpf: stop setting precise in current state
     - bpf: aggressively forget precise markings during state checkpointing
     - drm/amd/display: use max_dsc_bpp in amdgpu_dm
     - drm/amd/display: fix some coding style issues
     - drm/dp_mst: Clear MSG_RDY flag before sending new message
     - drm/amd/display: force connector state when bpc changes during compliance
     - drm/amd/display: Clean up errors & warnings in amdgpu_dm.c
     - drm/amd/display: fix linux dp link lost handled only one time
     - drm/amd/display: Add polling method to handle MST reply packet
     - Revert "drm/amd/display: edp do not add non-edid timings"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.43
     - netfilter: nf_tables: fix underflow in object reference counter
     - netfilter: nf_tables: fix underflow in chain reference counter
     - [x86] platform/x86/amd/pmf: Notify OS power slider update
     - [x86] platform/x86/amd/pmf: reduce verbosity of apmf_get_system_params
     - drm/amd/display: Keep PHY active for dp config
     - ovl: fix null pointer dereference in ovl_permission()
     - drm/amd: Move helper for dynamic speed switch check out of smu13
     - drm/amd: Align SMU11 SMU_MSG_OverridePcieParameters implementation with
       SMU13
     - jbd2: Fix wrongly judgement for buffer head removing while doing
       checkpoint
     - blk-mq: Fix stall due to recursive flush plug
     - [powerpc*] pseries/vas: Hold mmap_mutex after mmap lock during window
       close
     - [s390x] KVM: s390: pv: fix index value of replaced ASCE
     - io_uring: don't audit the capability check in io_uring_create()
     - gpio: tps68470: Make tps68470_gpio_output() always set the initial value
     - pwm: Add a stub for devm_pwmchip_add()
     - gpio: mvebu: Make use of devm_pwmchip_add
     - gpio: mvebu: fix irq domain leak
     - btrfs: fix race between quota disable and relocation
     - i2c: Delete error messages for failed memory allocations
     - i2c: Improve size determinations
     - i2c: nomadik: Remove unnecessary goto label
     - i2c: nomadik: Use devm_clk_get_enabled()
     - i2c: nomadik: Remove a useless call in the remove function
     - [mips*] Loongson: Move arch cflags to MIPS top level Makefile
     - [mips*] Loongson: Fix build error when make modules_install
     - PCI/ASPM: Return 0 or -ETIMEDOUT from pcie_retrain_link()
     - PCI/ASPM: Factor out pcie_wait_for_retrain()
     - PCI/ASPM: Avoid link retraining race
     - PCI: rockchip: Remove writes to unused registers
     - PCI: rockchip: Fix window mapping and address translation for endpoint
     - PCI: rockchip: Don't advertise MSI-X in PCIe capabilities
     - drm/amd/display: add FB_DAMAGE_CLIPS support
     - drm/amd/display: Check if link state is valid
     - drm/amd/display: Rework context change check
     - drm/amd/display: Enable new commit sequence only for DCN32x
     - drm/amd/display: Copy DC context in the commit streams
     - drm/amd/display: Include surface of unaffected streams
     - drm/amd/display: Use min transition for all SubVP plane add/remove
     - drm/amd/display: add ODM case when looking for first split pipe
     - drm/amd/display: use low clocks for no plane configs
     - drm/amd/display: fix unbounded requesting for high pixel rate modes on
       dcn315
     - drm/amd/display: add pixel rate based CRB allocation support
     - drm/amd/display: fix dcn315 single stream crb allocation
     - drm/amd/display: Update correct DCN314 register header
     - drm/amd/display: Set minimum requirement for using PSR-SU on Rembrandt
     - drm/amd/display: Set minimum requirement for using PSR-SU on Phoenix
     - drm/ttm: Don't print error message if eviction was interrupted
     - drm/ttm: Don't leak a resource on eviction error
     - n_tty: Rename tail to old_tail in n_tty_read()
     - tty: fix hang on tty device with no_room set
     - drm/ttm: never consider pinned BOs for eviction&swap
     - [arm64] KVM: arm64: Condition HW AF updates on config option
     - [arm64] errata: Mitigate Ampere1 erratum AC03_CPU_38 at stage-2
     - mptcp: introduce 'sk' to replace 'sock->sk' in mptcp_listen()
     - mptcp: do not rely on implicit state check in mptcp_listen()
     - tracing/probes: Add symstr type for dynamic events
     - tracing/probes: Fix to avoid double count of the string length on the
       array
     - tracing: Allow synthetic events to pass around stacktraces
     - Revert "tracing: Add "(fault)" name injection to kernel probes"
     - tracing/probes: Fix to record 0-length data_loc in fetch_store_string*()
       if fails
     - maple_tree: add __init and __exit to test module
     - maple_tree: fix 32 bit mas_next testing
     - drm/amd/display: Rework comments on dc file
     - drm/amd/display: fix dc/core/dc.c kernel-doc
     - drm/amd/display: Add FAMS validation before trying to use it
     - drm/amd/display: update extended blank for dcn314 onwards
     - drm/amd/display: Fix possible underflow for displays with large vblank
     - drm/amd/display: Prevent vtotal from being set to 0
     - phy: phy-mtk-dp: Fix an error code in probe()
     - phy: qcom-snps: correct struct qcom_snps_hsphy kerneldoc
     - phy: qcom-snps-femto-v2: keep cfg_ahb_clk enabled during runtime suspend
     - phy: qcom-snps-femto-v2: properly enable ref clock
     - soundwire: qcom: update status correctly with mask
     - media: staging: atomisp: select V4L2_FWNODE
     - media: amphion: Fix firmware path to match linux-firmware
     - i40e: Fix an NULL vs IS_ERR() bug for debugfs_create_dir()
     - iavf: fix potential deadlock on allocation failure
     - iavf: check for removal state before IAVF_FLAG_PF_COMMS_FAILED
     - net: phy: marvell10g: fix 88x3310 power up
     - net: hns3: fix the imp capability bit cannot exceed 32 bits issue
     - net: hns3: fix wrong tc bandwidth weight data issue
     - net: hns3: fix wrong bw weight of disabled tc issue
     - vxlan: calculate correct header length for GPE
     - vxlan: generalize vxlan_parse_gpe_hdr and remove unused args
     - vxlan: fix GRO with VXLAN-GPE
     - phy: hisilicon: Fix an out of bounds check in hisi_inno_phy_probe()
     - atheros: fix return value check in atl1_tso()
     - ethernet: atheros: fix return value check in atl1e_tso_csum()
     - ipv6 addrconf: fix bug where deleting a mngtmpaddr can create a new
       temporary address
     - tcp: Reduce chance of collisions in inet6_hashfn(). (CVE-2023-1206)
     - ice: Fix memory management in ice_ethtool_fdir.c
     - bonding: reset bond's flags when down link is P2P device
     - team: reset team's flags when down link is P2P device
     - octeontx2-af: Removed unnecessary debug messages.
     - octeontx2-af: Fix hash extraction enable configuration
     - net: stmmac: Apply redundant write work around on 4.xx too
     - [x86] platform/x86: msi-laptop: Fix rfkill out-of-sync on MSI Wind U100
     - [x86] traps: Fix load_unaligned_zeropad() handling for shared TDX memory
     - igc: Fix Kernel Panic during ndo_tx_timeout callback
     - netfilter: nft_set_rbtree: fix overlap expiration walk
     - netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR
       (CVE-2023-4015)
     - netfilter: nf_tables: disallow rule addition to bound chain via
       NFTA_RULE_CHAIN_ID (CVE-2023-4147)
     - mm: suppress mm fault logging if fatal signal already pending
     - net/sched: mqprio: refactor nlattr parsing to a separate function
     - net/sched: mqprio: add extack to mqprio_parse_nlattr()
     - net/sched: mqprio: Add length check for TCA_MQPRIO_{MAX/MIN}_RATE64
     - benet: fix return value check in be_lancer_xmit_workarounds()
     - tipc: check return value of pskb_trim()
     - tipc: stop tipc crypto on failure in tipc_node_create
     - RDMA/mlx4: Make check for invalid flags stricter
     - drm/msm/dpu: drop enum dpu_core_perf_data_bus_id
     - drm/msm/adreno: Fix snapshot BINDLESS_DATA size
     - RDMA/irdma: Add missing read barriers
     - RDMA/irdma: Fix data race on CQP completion stats
     - RDMA/irdma: Fix data race on CQP request done
     - RDMA/mthca: Fix crash when polling CQ for shared QPs
     - RDMA/bnxt_re: Prevent handling any completions after qp destroy
     - drm/msm: Fix IS_ERR_OR_NULL() vs NULL check in a5xx_submit_in_rb()
     - cxl/acpi: Fix a use-after-free in cxl_parse_cfmws()
     - cxl/acpi: Return 'rc' instead of '0' in cxl_parse_cfmws()
     - ASoC: fsl_spdif: Silence output on stop
     - block: Fix a source code comment in include/uapi/linux/blkzoned.h
     - smb3: do not set NTLMSSP_VERSION flag for negotiate not auth request
     - [x86] drm/i915: Fix an error handling path in igt_write_huge()
     - xenbus: check xen_domain in xenbus_probe_initcall
     - dm raid: fix missing reconfig_mutex unlock in raid_ctr() error paths
     - dm raid: clean up four equivalent goto tags in raid_ctr()
     - dm raid: protect md_stop() with 'reconfig_mutex'
     - drm/amd: Fix an error handling mistake in psp_sw_init()
     - drm/amd/display: Unlock on error path in
       dm_handle_mst_sideband_msg_ready_event()
     - RDMA/irdma: Fix op_type reporting in CQEs
     - RDMA/irdma: Report correct WC error
     - drm/msm: Switch idr_lock to spinlock
     - drm/msm: Disallow submit with fence id 0
     - ublk_drv: move ublk_get_device_from_id into ublk_ctrl_uring_cmd
     - ublk: fail to start device if queue setup is interrupted
     - ublk: fail to recover device if queue setup is interrupted
     - ata: pata_ns87415: mark ns87560_tf_read static
     - ring-buffer: Fix wrong stat of cpu_buffer->read
     - tracing: Fix warning in trace_buffered_event_disable()
     - Revert "usb: gadget: tegra-xudc: Fix error check in
       tegra_xudc_powerdomain_init()"
     - usb: gadget: call usb_gadget_check_config() to verify UDC capability
     - USB: gadget: Fix the memory leak in raw_gadget driver
     - usb: gadget: core: remove unbalanced mutex_unlock in usb_gadget_activate
     - KVM: Grab a reference to KVM for VM and vCPU stats file descriptors
     - KVM: VMX: Don't fudge CR0 and CR4 for restricted L2 guest
     - KVM: x86: Disallow KVM_SET_SREGS{2} if incoming CR0 is invalid
     - serial: qcom-geni: drop bogus runtime pm state update
     - serial: 8250_dw: Preserve original value of DLF register
     - serial: sifive: Fix sifive_serial_console_setup() section
     - USB: serial: option: support Quectel EM060K_128
     - USB: serial: option: add Quectel EC200A module support
     - USB: serial: simple: add Kaufmann RKS+CAN VCP
     - USB: serial: simple: sort driver entries
     - can: gs_usb: gs_can_close(): add missing set of CAN state to
       CAN_STATE_STOPPED
     - usb: typec: Set port->pd before adding device for typec_port
     - usb: typec: Iterate pds array when showing the pd list
     - usb: typec: Use sysfs_emit_at when concatenating the string
     - Revert "usb: dwc3: core: Enable AutoRetry feature in the controller"
     - usb: dwc3: pci: skip BYT GPIO lookup table for hardwired phy
     - usb: dwc3: don't reset device side if dwc3 was configured as host-only
     - usb: misc: ehset: fix wrong if condition
     - usb: ohci-at91: Fix the unhandle interrupt when resume
     - USB: quirks: add quirk for Focusrite Scarlett
     - usb: cdns3: fix incorrect calculation of ep_buf_size when more than one
       config
     - usb: xhci-mtk: set the dma max_seg_size
     - Revert "usb: xhci: tegra: Fix error check"
     - Documentation: security-bugs.rst: update preferences when dealing with the
       linux-distros group
     - Documentation: security-bugs.rst: clarify CVE handling
     - staging: r8712: Fix memory leak in _r8712_init_xmit_priv()
     - staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
     - tty: n_gsm: fix UAF in gsm_cleanup_mux
     - Revert "xhci: add quirk for host controllers that don't update endpoint
       DCS"
     - ALSA: hda/realtek: Support ASUS G713PV laptop
     - ALSA: hda/relatek: Enable Mute LED on HP 250 G8
     - hwmon: (k10temp) Enable AMD3255 Proc to show negative temperature
     - hwmon: (nct7802) Fix for temp6 (PECI1) processed even if PECI1 disabled
     - btrfs: account block group tree when calculating global reserve size
     - btrfs: check if the transaction was aborted at btrfs_wait_for_commit()
     - btrfs: check for commit error at btrfs_attach_transaction_barrier()
     - [x86] MCE/AMD: Decrement threshold_bank refcount when removing threshold
       blocks
     - file: always lock position for FMODE_ATOMIC_POS
     - nfsd: Remove incorrect check in nfsd4_validate_stateid
     - ACPI/IORT: Remove erroneous id_count check in iort_node_get_rmr_info()
     - tpm_tis: Explicitly check for error code
     - irq-bcm6345-l1: Do not assume a fixed block to cpu mapping
     - irqchip/gic-v4.1: Properly lock VPEs when doing a directLPI invalidation
     - locking/rtmutex: Fix task->pi_waiters integrity
     - proc/vmcore: fix signedness bug in read_from_oldmem()
     - xen: speed up grant-table reclaim
     - virtio-net: fix race between set queues and probe
     - net: dsa: qca8k: fix search_and_insert wrong handling of new rule
     - net: dsa: qca8k: fix broken search_and_del
     - net: dsa: qca8k: fix mdb add/del case with 0 VID
     - soundwire: fix enumeration completion
     - [s390x] dasd: fix hanging device after quiesce/resume
     - [s390x] dasd: print copy pair message only for the correct error
     - ASoC: wm8904: Fill the cache for WM8904_ADC_TEST_0 register
     - [arm64] sme: Set new vector length before reallocating
     - PM: sleep: wakeirq: fix wake irq arming
     - ceph: never send metrics if disable_send_metrics is set
     - [x86] drm/i915/dpt: Use shmem for dpt objects
     - dm cache policy smq: ensure IO doesn't prevent cleaner policy progress
     - rbd: make get_lock_owner_info() return a single locker or NULL
     - rbd: harden get_lock_owner_info() a bit
     - rbd: retrieve and check lock owner twice before blocklisting
     - drm/amd/display: set per pipe dppclk to 0 when dpp is off
     - tracing: Fix trace_event_raw_event_synth() if else statement
     - drm/amd/display: perform a bounds check before filling dirty rectangles
     - drm/amd/display: Write to correct dirty_rect
     - ACPI: processor: perflib: Use the "no limit" frequency QoS
     - ACPI: processor: perflib: Avoid updating frequency QoS unnecessarily
     - cpufreq: intel_pstate: Drop ACPI _PSS states table patching
     - mptcp: ensure subflow is unhashed before cleaning the backlog
     - dma-buf: keep the signaling time of merged fences v3
     - dma-buf: fix an error pointer vs NULL bug
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.44
     - xen/netback: Fix buffer overrun triggered by unusual packet
       (CVE-2023-34319)
     - [x86] fix backwards merge of GDS/SRSO bit
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.45
     - io_uring: gate iowait schedule on having pending requests
     - perf: Fix function pointer case
     - net/mlx5: Free irqs only on shutdown callback
     - [arm64] iommu/arm-smmu-v3: Work around MMU-600 erratum 1076982
     - [arm64] iommu/arm-smmu-v3: Document MMU-700 erratum 2812531
     - [arm64] iommu/arm-smmu-v3: Add explicit feature for nesting
     - [arm64] iommu/arm-smmu-v3: Document nesting-related errata
     - [arm64] dts: imx8mm-venice-gw7903: disable disp_blk_ctrl
     - [arm64] dts: imx8mm-venice-gw7904: disable disp_blk_ctrl
     - [arm64] dts: phycore-imx8mm: Label typo-fix of VPU
     - [arm64] dts: phycore-imx8mm: Correction in gpio-line-names
     - [arm64] dts: imx8mn-var-som: add missing pull-up for onboard PHY reset
       pinmux
     - [arm64] dts: freescale: Fix VPU G2 clock
     - [arm64,armhf] firmware: smccc: Fix use of uninitialised results structure
     - lib/bitmap: workaround const_eval test build failure
     - [arm64] firmware: arm_scmi: Fix chan_free cleanup on SMC
     - word-at-a-time: use the same return type for has_zero regardless of
       endianness
     - [s390x] KVM: s390: fix sthyi error handling
     - erofs: fix wrong primary bvec selection on deduplicated extents
     - wifi: cfg80211: Fix return value in scan logic
     - net/mlx5e: fix double free in macsec_fs_tx_create_crypto_table_groups
     - net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx
     - net/mlx5: fix potential memory leak in mlx5e_init_rep_rx
     - net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer()
     - net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set
     - net/mlx5e: Move representor neigh cleanup to profile cleanup_tx
     - bpf: Add length check for SK_DIAG_BPF_STORAGE_REQ_MAP_FD parsing
     - rtnetlink: let rtnl_bridge_setlink checks IFLA_BRIDGE_MODE length
     - [armhf] net: dsa: fix value check in bcm_sf2_sw_probe()
     - perf test uprobe_from_different_cu: Skip if there is no gcc
     - net: sched: cls_u32: Fix match key mis-addressing
     - mISDN: hfcpci: Fix potential deadlock on &hc->lock
     - qed: Fix scheduling in a tasklet while getting stats
     - net: annotate data-races around sk->sk_reserved_mem
     - net: annotate data-race around sk->sk_txrehash
     - net: annotate data-races around sk->sk_max_pacing_rate
     - net: add missing READ_ONCE(sk->sk_rcvlowat) annotation
     - net: add missing READ_ONCE(sk->sk_sndbuf) annotation
     - net: add missing READ_ONCE(sk->sk_rcvbuf) annotation
     - net: annotate data-races around sk->sk_mark
     - net: add missing data-race annotations around sk->sk_peek_off
     - net: add missing data-race annotation for sk_ll_usec
     - net: annotate data-races around sk->sk_priority
     - net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX.
     - ice: Fix RDMA VSI removal during queue rebuild
     - bpf, cpumap: Handle skb as well when clean up ptr_ring
     - net/sched: cls_u32: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4208)
     - net/sched: cls_fw: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4207)
     - net/sched: cls_route: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4206)
     - bpf: sockmap: Remove preempt_disable in sock_map_sk_acquire
     - net: netsec: Ignore 'phy-mode' on SynQuacer in DT mode
     - bnxt_en: Fix page pool logic for page size >= 64K
     - bnxt_en: Fix max_mtu setting for multi-buf XDP
     - net: dcb: choose correct policy to parse DCB_ATTR_BCN
     - [s390x] qeth: Don't call dev_close/dev_open (DOWN/UP)
     - ip6mr: Fix skb_under_panic in ip6mr_cache_report()
     - vxlan: Fix nexthop hash size
     - net/mlx5: fs_core: Make find_closest_ft more generic
     - net/mlx5: fs_core: Skip the FTs in the same FS_TYPE_PRIO_CHAINS fs_prio
     - tcp_metrics: fix addr_same() helper
     - tcp_metrics: annotate data-races around tm->tcpm_stamp
     - tcp_metrics: annotate data-races around tm->tcpm_lock
     - tcp_metrics: annotate data-races around tm->tcpm_vals[]
     - tcp_metrics: annotate data-races around tm->tcpm_net
     - tcp_metrics: fix data-race in tcpm_suck_dst() vs fastopen
     - scsi: zfcp: Defer fc_rport blocking until after ADISC response
     - scsi: storvsc: Limit max_sectors for virtual Fibre Channel devices
     - libceph: fix potential hang in ceph_osdc_notify()
     - USB: zaurus: Add ID for A-300/B-500/C-700
     - ceph: defer stopping mdsc delayed_work
     - [arm64] firmware: arm_scmi: Drop OF node reference in the transport
       channel setup
     - exfat: use kvmalloc_array/kvfree instead of kmalloc_array/kfree
     - exfat: release s_lock before calling dir_emit()
     - bpf: Disable preemption in bpf_perf_event_output
     - [arm64] dts: stratix10: fix incorrect I2C property for SCL signal
     - net: tun_chr_open(): set sk_uid from current_fsuid() (CVE-2023-4194)
     - net: tap_open(): set sk_uid from current_fsuid() (CVE-2023-4194)
     - wifi: mt76: mt7615: do not advertise 5 GHz on first phy of MT7615D (DBDC)
     - [x86] hyperv: Disable IBT when hypercall page lacks ENDBR instruction
     - rbd: prevent busy loop when requesting exclusive lock
     - bpf: Disable preemption in bpf_event_output
     - [powerpc*] ftrace: Create a dummy stackframe to fix stack unwind
     - [arm64] fpsimd: Sync and zero pad FPSIMD state for streaming SVE
     - [arm64] fpsimd: Clear SME state in the target task when setting the VL
     - [arm64] fpsimd: Sync FPSIMD state with SVE for SME only systems
     - open: make RESOLVE_CACHED correctly test for O_TMPFILE
     - drm/ttm: check null pointer before accessing when swapping
     - [x86] drm/i915: Fix premature release of request's reusable memory
     - [x86] drm/i915/gt: Cleanup aux invalidation registers
     - bpf, cpumap: Make sure kthread is running before map update returns
     - file: reinstate f_pos locking optimization for regular files
     - mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required()
     - fs/sysv: Null check to prevent null-ptr-deref bug
     - Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
       (CVE-2023-40283)
     - debugobjects: Recheck debug_objects_enabled before reporting
     - net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
     - fs: Protect reconfiguration of sb read-write from racing writes
     - btrfs: remove BUG_ON()'s in add_new_free_space()
     - f2fs: fix to do sanity check on direct node in truncate_dnode()
     - io_uring: annotate offset timeout races
     - [powerpc*] mm/altmap: Fix altmap boundary check
     - [armhf] drm/imx/ipuv3: Fix front porch adjustment upon hactive aligning
     - drm/amd/display: Ensure that planes are in the same order
     - drm/amd/display: skip CLEAR_PAYLOAD_ID_TABLE if device mst_en is 0
     - f2fs: fix to set flush_merge opt and show noflush_merge
     - f2fs: don't reset unchangable mount option in f2fs_remount()
     - exfat: check if filename entries exceeds max filename length
       (CVE-2023-4273)
     - [arm64] ptrace: Don't enable SVE when setting streaming SVE
     - drm/amdgpu: add vram reservation based on vram_usagebyfirmware_v2_2
     - drm/amdgpu: Remove unnecessary domain argument
     - drm/amdgpu: Use apt name for FW reserved region
     - [x86] Revert "drm/i915: Disable DC states for all commits"
       (Closes: #1043564)
     - [x86] CPU/AMD: Do not leak quotient data after a division by 0
       (CVE-2023-20588)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.46
     - Revert "loongarch/cpu: Switch to arch_cpu_finalize_init()"
     - tpm: Disable RNG for all AMD fTPMs
     - tpm: Add a helper for checking hwrng enabled
     - ksmbd: validate command request size
     - ksmbd: fix wrong next length validation of ea buffer in smb2_set_ea()
     - [x86] KVM: SEV: snapshot the GHCB before accessing it
     - [x86] KVM: SEV: only access GHCB fields once (CVE-2023-4155)
     - wifi: nl80211: fix integer overflow in nl80211_parse_mbssid_elems()
     - wifi: rtw89: fix 8852AE disconnection caused by RX full flags
     - wireguard: allowedips: expand maximum node depth
     - ipv6: adjust ndisc_is_useropt() to also return true for PIO
     - mptcp: avoid bogus reset on fallback close
     - mptcp: fix disconnect vs accept race
     - [arm64,armhf] dmaengine: pl330: Return DMA_PAUSED when transaction is
       paused
     - [amd64] net: mana: Fix MANA VF unload when hardware is unresponsive
     - nvme-pci: add NVME_QUIRK_BOGUS_NID for Samsung PM9B1 256G and 512G
     - drm/nouveau/gr: enable memory loads on helper invocation on all channels
     - drm/nouveau/nvkm/dp: Add workaround to fix DP 1.3+ DPCD issues
     - drm/shmem-helper: Reset vma->vm_ops before calling dma_buf_mmap()
     - drm/amdgpu: fix possible UAF in amdgpu_cs_pass1()
     - drm/amd/display: check attr flag before set cursor degamma on DCN3+
     - drm/amdgpu: add S/G display parameter
     - drm/amd: Disable S/G for APUs when 64GB or more host memory
     - drm/amd/display: limit DPIA link rate to HBR3
     - cpuidle: dt_idle_genpd: Add helper function to remove genpd topology
     - hwmon: (pmbus/bel-pfe) Enable PMBUS_SKIP_STATUS_CHECK for pfe1100
     - nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput
     - drm/amd/pm: fulfill swsmu peak profiling mode shader/memory clock settings
     - drm/amd/pm: expose swctf threshold setting for legacy powerplay
     - drm/amd/pm: fulfill powerplay peak profiling mode shader/memory clock
       settings
     - drm/amd/pm: avoid unintentional shutdown due to temperature momentary
       fluctuation
     - drm/amd/display: Handle virtual hardware detect
     - drm/amd/display: Add function for validate and update new stream
     - drm/amd/display: Handle seamless boot stream
     - drm/amd/display: Update OTG instance in the commit stream
     - drm/amd/display: Avoid ABM when ODM combine is enabled for eDP
     - drm/amd/display: Use update plane and stream routine for DCN32x
     - drm/amd/display: Disable phantom OTG after enable for plane disable
     - drm/amd/display: Retain phantom plane/stream if validation fails
     - drm/amd/display: fix the build when DRM_AMD_DC_DCN is not set
     - drm/amd/display: trigger timing sync only if TG is running
     - io_uring: correct check for O_TMPFILE
     - [arm64] iio: cros_ec: Fix the allocation size for cros_ec_command
     - iio: adc: ad7192: Fix ac excitation feature
     - iio: adc: ina2xx: avoid NULL pointer dereference on OF device match
     - [arm*] binder: fix memory leak in binder_init()
     - misc: rtsx: judge ASPM Mode to set PETXCFG Reg
     - usb-storage: alauda: Fix uninit-value in alauda_check_media()
     - [arm64,armhf] usb: dwc3: Properly handle processing of pending events
     - USB: Gadget: core: Help prevent panic during UVC unconfigure
     - usb: common: usb-conn-gpio: Prevent bailing out if initial role is none
     - usb: typec: tcpm: Fix response to vsafe0V event
     - usb: typec: altmodes/displayport: Signal hpd when configuring pin
       assignment
     - [x86] cpu/amd: Enable Zenbleed fix for AMD Custom APU 0405
     - [x86] mm: Fix VDSO and VVAR placement on 5-level paging machines
     - [x86] sev: Do not try to parse for the CC blob on non-AMD hardware
     - [x86] speculation: Add cpu_show_gds() prototype
     - [x86] Move gds_ucode_mitigated() declaration to header
     - drm/nouveau/disp: Revert a NULL check inside nouveau_connector_get_modes
       (Closes: #1042753)
     - iio: core: Prevent invalid memory access when there is no parent
     - interconnect: qcom: Add support for mask-based BCMs
     - interconnect: qcom: sm8450: add enable_mask for bcm nodes
     - net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()
     - bpf, sockmap: Fix map type error in sock_map_del_link
     - bpf, sockmap: Fix bug that strp_done cannot be called
     - mISDN: Update parameter type of dsp_cmx_send()
     - macsec: use DEV_STATS_INC()
     - mptcp: fix the incorrect judgment for msk->cb_flags
     - net/packet: annotate data-races around tp->status
     - net/smc: Use correct buffer sizes when switching between TCP and SMC
     - tcp: add missing family to tcp_set_ca_state() tracepoint
     - tunnels: fix kasan splat when generating ipv4 pmtu error
     - xsk: fix refcount underflow in error path
     - bonding: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
     - dccp: fix data-race around dp->dccps_mss_cache
     - drivers: net: prevent tun_build_skb() to exceed the packet size limit
     - drivers: vxlan: vnifilter: free percpu vni stats on error path
     - iavf: fix potential races for FDIR filters
     - [amd64] IB/hfi1: Fix possible panic during hotplug remove
     - drm/rockchip: Don't spam logs in atomic check
     - wifi: cfg80211: fix sband iftype data lookup for AP_VLAN
     - RDMA/umem: Set iova in ODP flow
     - net: tls: avoid discarding data on record close
     - net: phy: at803x: remove set/get wol callbacks for AR8032
     - [arm64] net: dsa: ocelot: call dsa_tag_8021q_unregister() under
       rtnl_lock() on driver remove
     - [arm64] net: hns3: refactor hclge_mac_link_status_wait for interface reuse
     - [arm64] net: hns3: add wait until mac link down
     - [arm64] net: hns3: fix deadlock issue when externel_lb and reset are
       executed together
     - nexthop: Fix infinite nexthop dump when using maximum nexthop ID
     - nexthop: Make nexthop bucket dump more efficient
     - nexthop: Fix infinite nexthop bucket dump when using maximum nexthop ID
     - [arm64] net: hns3: fix strscpy causing content truncation issue
     - dmaengine: owl-dma: Modify mismatched function name
     - net/mlx5: Allow 0 for total host VFs
     - net/mlx5: LAG, Check correct bucket when modifying LAG
     - net/mlx5: Skip clock update work when device is in error state
     - net/mlx5: Reload auxiliary devices in pci error handlers
     - ibmvnic: Enforce stronger sanity checks on login response
     - ibmvnic: Unmap DMA login rsp buffer on send login fail
     - ibmvnic: Handle DMA unmapping of login buffs in release functions
     - ibmvnic: Do partial reset on login failure
     - ibmvnic: Ensure login failure recovery is safe from other resets
     - gpio: ws16c48: Fix off-by-one error in WS16C48 resource region extent
     - gpio: sim: mark the GPIO chip as a one that can sleep
     - btrfs: wait for actual caching progress during allocation
     - btrfs: don't stop integrity writeback too early
     - btrfs: properly clear end of the unreserved range in cow_file_range
     - btrfs: exit gracefully if reloc roots don't match
     - btrfs: reject invalid reloc tree root keys with stack dump
     - btrfs: set cache_block_group_error if we find an error
     - nvme-tcp: fix potential unbalanced freeze & unfreeze
     - nvme-rdma: fix potential unbalanced freeze & unfreeze
     - netfilter: nf_tables: report use refcount overflow
     - scsi: core: Fix legacy /proc parsing buffer overflow
     - [x86] scsi: storvsc: Fix handling of virtual Fibre Channel timeouts
     - scsi: ufs: renesas: Fix private allocation
     - scsi: 53c700: Check that command slot is not NULL
     - scsi: snic: Fix possible memory leak if device_add() fails
     - scsi: core: Fix possible memory leak if device_add() fails
     - scsi: fnic: Replace return codes in fnic_clean_pending_aborts()
     - scsi: qedi: Fix firmware halt over suspend and resume
     - scsi: qedf: Fix firmware halt over suspend and resume
     - [x86] platform/x86: serial-multi-instantiate: Auto detect IRQ resource for
       CSC3551
     - ACPI: scan: Create platform device for CS35L56
     - sch_netem: fix issues in netem_change() vs get_dist_table()
     - drm/amd/pm/smu7: move variables to where they are used
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.47
     - [arm64] mmc: sdhci-f-sdh30: Replace with sdhci_pltfm
     - [arm64] cpuidle: psci: Extend information in log about OSI/PC mode
     - [arm64] cpuidle: psci: Move enabling OSI mode after power domains creation
     - zsmalloc: consolidate zs_pool's migrate_lock and size_class's locks
     - zsmalloc: fix races between modifications of fullness and isolated
     - net/smc: replace mutex rmbs_lock and sndbufs_lock with rw_semaphore
     - net/smc: Fix setsockopt and sysctl to specify same buffer size again
     - net: phy: at803x: Use devm_regulator_get_enable_optional()
     - net: phy: at803x: fix the wol setting functions
     - drm/amdgpu: fix calltrace warning in amddrm_buddy_fini
     - drm/amdgpu: Fix integer overflow in amdgpu_cs_pass1
     - drm/amdgpu: fix memory leak in mes self test
     - [x86] ASoC: Intel: sof_sdw: add quirk for MTL RVP
     - [x86] ASoC: Intel: sof_sdw: add quirk for LNL RVP
     - ASoC: SOF: amd: Add pci revision id check
     - drm/stm: ltdc: fix late dereference check
     - drm: rcar-du: remove R-Car H3 ES1.* workarounds
     - [x86] ASoC: amd: vangogh: Add check for acp config flags in vangogh
       platform
     - [x86] ASoC: Intel: sof_sdw_rt_sdca_jack_common: test SOF_JACK_JDSRC in
       _exit
     - [x86] ASoC: Intel: sof_sdw: Add support for Rex soundwire
     - iopoll: Call cpu_relax() in busy loops
     - [x86] ASoC: SOF: Intel: fix SoundWire/HDaudio mutual exclusion
     - dma-remap: use kvmalloc_array/kvfree for larger dma memory remap
     - accel/habanalabs: add pci health check during heartbeat
     - HID: logitech-hidpp: Add USB and Bluetooth IDs for the Logitech G915 TKL
       Keyboard
     - [amd64] iommu/amd: Introduce Disable IRTE Caching Support
     - drm/amdgpu: install stub fence into potential unused fence pointers
     - drm/amd/display: Apply 60us prefetch for DCFCLK <= 300Mhz
     - RDMA/mlx5: Return the firmware result upon destroying QP/RQ
     - drm/amd/display: Skip DPP DTO update if root clock is gated
     - drm/amd/display: Enable dcn314 DPP RCO
     - ASoC: SOF: core: Free the firmware trace before calling snd_sof_shutdown()
     - HID: intel-ish-hid: ipc: Add Arrow Lake PCI device ID
     - ALSA: hda/realtek: Add quirks for ROG ALLY CS35l41 audio
     - smb: client: fix warning in cifs_smb3_do_mount()
     - cifs: fix session state check in reconnect to avoid use-after-free issue
     - serial: stm32: Ignore return value of uart_remove_one_port() in .remove()
     - led: qcom-lpg: Fix resource leaks in for_each_available_child_of_node()
       loops
     - media: v4l2-mem2mem: add lock to protect parameter num_rdy
     - media: camss: set VFE bpl_alignment to 16 for sdm845 and sm8250
     - usb: gadget: u_serial: Avoid spinlock recursion in __gs_console_push
     - usb: gadget: uvc: queue empty isoc requests if no video buffer is
       available
     - media: platform: mediatek: vpu: fix NULL ptr dereference
     - [x86] thunderbolt: Read retimer NVM authentication status prior
       tb_retimer_set_inbound_sbtx()
     - usb: chipidea: imx: don't request QoS for imx8ulp
     - usb: chipidea: imx: add missing USB PHY DPDM wakeup setting
     - gfs2: Fix possible data races in gfs2_show_options()
     - pcmcia: rsrc_nonstatic: Fix memory leak in nonstatic_release_resource_db()
     - [x86] thunderbolt: Add Intel Barlow Ridge PCI ID
     - [x86] thunderbolt: Limit Intel Barlow Ridge USB3 bandwidth
     - firewire: net: fix use after free in fwnet_finish_incoming_packet()
     - watchdog: sp5100_tco: support Hygon FCH/SCH (Server Controller Hub)
     - Bluetooth: L2CAP: Fix use-after-free
     - Bluetooth: btusb: Add MT7922 bluetooth ID for the Asus Ally
     - ceph: try to dump the msgs when decoding fails
     - drm/amdgpu: Fix potential fence use-after-free v2
     - fs/ntfs3: Enhance sanity check while generating attr_list
     - fs: ntfs3: Fix possible null-pointer dereferences in mi_read()
     - fs/ntfs3: Mark ntfs dirty when on-disk struct is corrupted
     - ALSA: hda/realtek: Add quirks for Unis H3C Desktop B760 & Q760
     - ALSA: hda: fix a possible null-pointer dereference due to data race in
       snd_hdac_regmap_sync()
     - ALSA: hda/realtek: Add quirk for ASUS ROG GX650P
     - ALSA: hda/realtek: Add quirk for ASUS ROG GA402X
     - ALSA: hda/realtek: Add quirk for ASUS ROG GZ301V
     - Bluetooth: MGMT: Use correct address for memcpy()
     - ring-buffer: Do not swap cpu_buffer during resize process
     - igc: read before write to SRRCTL register
     - drm/amd/display: save restore hdcp state when display is unplugged from
       mst hub
     - drm/amd/display: phase3 mst hdcp for multiple displays
     - drm/amd/display: fix access hdcp_workqueue assert
     - [arm64] KVM: arm64: vgic-v4: Make the doorbell request robust w.r.t
       preemption
     - fbdev/hyperv-fb: Do not set struct fb_info.apertures
     - video/aperture: Only remove sysfb on the default vga pci device
       (Closes: #1051163)
     - btrfs: move out now unused BG from the reclaim list
     - btrfs: convert btrfs_block_group::needs_free_space to runtime flag
     - btrfs: convert btrfs_block_group::seq_zone to runtime flag
     - btrfs: fix use-after-free of new block group that became unused
     - virtio-mmio: don't break lifecycle of vm_dev
     - cifs: fix potential oops in cifs_oplock_break
     - i2c: bcm-iproc: Fix bcm_iproc_i2c_isr deadlock issue
     - i2c: hisi: Only handle the interrupt of the driver's transfer
     - i2c: tegra: Fix i2c-tegra DMA config option processing
     - fbdev: mmp: fix value check in mmphw_probe()
     - [powerpc*] rtas_flash: allow user copy to flash block cache objects
     - tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux
     - tty: serial: fsl_lpuart: Clear the error flags by writing 1 for lpuart32
       platforms
     - btrfs: fix incorrect splitting in btrfs_drop_extent_map_range
     - btrfs: fix BUG_ON condition in btrfs_cancel_balance
     - i2c: designware: Correct length byte validation logic
     - i2c: designware: Handle invalid SMBus block data response length value
     - net: xfrm: Fix xfrm_address_filter OOB read
     - net: af_key: fix sadb_x_filter validation
     - net: xfrm: Amend XFRMA_SEC_CTX nla_policy structure
     - xfrm: fix slab-use-after-free in decode_session6
     - ip6_vti: fix slab-use-after-free in decode_session6
     - ip_vti: fix potential slab-use-after-free in decode_session6
     - xfrm: add NULL check in xfrm_update_ae_params (CVE-2023-3772)
     - xfrm: add forgotten nla_policy for XFRMA_MTIMER_THRESH (CVE-2023-3773)
     - virtio_net: notify MAC address change on device initialization
     - virtio-net: set queues after driver_ok
     - net: pcs: Add missing put_device call in miic_create
     - net: phy: fix IRQ-based wake-on-lan over hibernate / power off
     - drm/panel: simple: Fix AUO G121EAN01 panel timings according to the docs
     - net: macb: In ZynqMP resume always configure PS GTR for non-wakeup source
     - octeon_ep: cancel tx_timeout_task later in remove sequence
     - netfilter: nf_tables: fix false-positive lockdep splat
     - netfilter: nf_tables: deactivate catchall elements in next generation
       (CVE-2023-4569)
     - ipvs: fix racy memcpy in proc_do_sync_threshold
     - netfilter: nft_dynset: disallow object maps
     - net: phy: broadcom: stub c45 read/write for 54810
     - team: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
     - net: openvswitch: reject negative ifindex
     - iavf: fix FDIR rule fields masks validation
     - i40e: fix misleading debug logs
     - net: dsa: mv88e6xxx: Wait for EEPROM done before HW reset
     - sfc: don't unregister flow_indr if it was never registered
     - sock: Fix misuse of sk_under_memory_pressure()
     - net: do not allow gso_size to be set to GSO_BY_FRAGS
     - qede: fix firmware halt over suspend and resume
     - ice: Block switchdev mode when ADQ is active and vice versa
     - bus: ti-sysc: Flush posted write on enable before reset
     - [arm64] dts: qcom: qrb5165-rb5: fix thermal zone conflict
     - [arm64] dts: rockchip: Disable HS400 for eMMC on ROCK Pi 4
     - [arm64] dts: rockchip: Disable HS400 for eMMC on ROCK 4C+
     - [armhf] dts: imx: align LED node names with dtschema
     - [arm64] dts: imx8mm: Drop CSI1 PHY reference clock configuration
     - [armhf] dts: imx: Set default tuning step for imx6sx usdhc
     - [arm64] dts: imx93: Fix anatop node size
     - ASoC: rt5665: add missed regulator_bulk_disable
     - ASoC: meson: axg-tdm-formatter: fix channel slot allocation
     - ALSA: hda/realtek: Add quirks for HP G11 Laptops
     - soc: aspeed: uart-routing: Use __sysfs_match_string
     - soc: aspeed: socinfo: Add kfree for kstrdup
     - ALSA: hda/realtek - Remodified 3k pull low procedure
     - serial: 8250: Fix oops for port->pm on uart_change_pm()
     - ALSA: usb-audio: Add support for Mythware XA001AU capture and playback
       interfaces.
     - cifs: Release folio lock on fscache read hit.
     - virtio-net: Zero max_tx_vq field for VIRTIO_NET_CTRL_MQ_HASH_CONFIG case
     - [arm64] dts: rockchip: Fix Wifi/Bluetooth on ROCK Pi 4 boards
     - blk-crypto: dynamically allocate fallback profile
     - mmc: wbsd: fix double mmc_free_host() in wbsd_init()
     - mmc: block: Fix in_flight[issue_type] value error
     - drm/qxl: fix UAF on handle creation
     - [x86] drm/i915/sdvo: fix panel_type initialization
     - drm/amd: flush any delayed gfxoff on suspend entry
     - drm/amdgpu: skip fence GFX interrupts disable/enable for S0ix
     - drm/amdgpu/pm: fix throttle_status for other than MP1 11.0.7
     - drm/amd/display: disable RCO for DCN314
     - zsmalloc: allow only one active pool compaction context
     - sched/fair: unlink misfit task from cpu overutilized
     - sched/fair: Remove capacity inversion detection
     - drm/amd/display: Implement workaround for writing to OTG_PIXEL_RATE_DIV
       register
     - hugetlb: do not clear hugetlb dtor until allocating vmemmap
     - netfilter: set default timeout to 3 secs for sctp shutdown send and recv
       state
     - [arm64] ptrace: Ensure that SME is set up for target when writing SSVE
       state
     - drm/amd/pm: skip the RLC stop when S0i3 suspend for SMU v13.0.4/11
     - drm/amdgpu: keep irq count in amdgpu_irq_disable_all
     - af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (CVE-2023-4622)
     - drm/nouveau/disp: fix use-after-free in error handling of
       nouveau_connector_create
     - net: fix the RTO timer retransmitting skb every 1ms if linear option is
       enabled
     - [arm64] mmc: f-sdh30: fix order of function calls in sdhci_f_sdh30_remove
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.48
     - [x86] cpu: Fix __x86_return_thunk symbol type
     - [x86] cpu: Fix up srso_safe_ret() and __x86_return_thunk()
     - [x86] alternative: Make custom return thunk unconditional
     - [x86] cpu: Clean up SRSO return thunk mess
     - [x86] cpu: Rename original retbleed methods
     - [x86] cpu: Rename srso_(.*)_alias to srso_alias_\1
     - [x86] cpu: Cleanup the untrain mess
     - [x86] srso: Explain the untraining sequences a bit more
     - [x86] static_call: Fix __static_call_fixup()
     - [x86] retpoline: Don't clobber RFLAGS during srso_safe_ret()
       (Closes: #1043585)
     - [x86] CPU/AMD: Fix the DIV(0) initial fix attempt (CVE-2023-20588)
     - [x86] srso: Disable the mitigation on unaffected configurations
     - [x86] retpoline,kprobes: Fix position of thunk sections with
       CONFIG_LTO_CLANG
     - [x86] objtool/x86: Fixup frame-pointer vs rethunk
     - [x86] srso: Correct the mitigation status when SMT is disabled
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.49
     - [x86] objtool/x86: Fix SRSO mess
     - Revert "f2fs: don't reset unchangable mount option in f2fs_remount()"
     - Revert "f2fs: fix to set flush_merge opt and show noflush_merge"
     - Revert "f2fs: fix to do sanity check on direct node in truncate_dnode()"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.50
     - NFSv4.2: fix error handling in nfs42_proc_getxattr
     - NFSv4: fix out path in __nfs4_get_acl_uncached
     - xprtrdma: Remap Receive buffers after a reconnect
     - drm/ast: Use drm_aperture_remove_conflicting_pci_framebuffers
     - fbdev/radeon: use pci aperture helpers
     - [x86] drm/gma500: Use drm_aperture_remove_conflicting_pci_framebuffers
     - drm/aperture: Remove primary argument
     - video/aperture: Only kick vgacon when the pdev is decoding vga
     - video/aperture: Move vga handling to pci function
     - PCI: acpiphp: Reassign resources on bridge if necessary
     - [mips*]: cpu-features: Enable octeon_cache by cpu_type
     - [mips*] cpu-features: Use boot_cpu_type for CPU type based features
     - jbd2: remove t_checkpoint_io_list
     - jbd2: remove journal_clean_one_cp_list()
     - jbd2: fix a race when checking checkpoint buffer busy
     - can: raw: fix receiver memory leak
     - can: raw: fix lockdep issue in raw_release()
     - [s390x] zcrypt: remove unnecessary (void *) conversions
     - [s390x] zcrypt: fix reply buffer calculations for CCA replies
     - [x86] drm/i915: Add the gen12_needs_ccs_aux_inv helper
     - [x86] drm/i915/gt: Ensure memory quiesced before invalidation
     - [x86] drm/i915/gt: Poll aux invalidation register bit on invalidation
     - [x86] drm/i915/gt: Support aux invalidation on all engines
     - tracing: Fix cpu buffers unavailable due to 'record_disabled' missed
     - tracing: Fix memleak due to race between current_tracer and trace
     - devlink: move code to a dedicated directory
     - devlink: add missing unregister linecard notification
     - [arm64] net: dsa: felix: fix oversize frame dropping for always closed
       tc-taprio gates
     - sock: annotate data-races around prot->memory_pressure
     - dccp: annotate data-races in dccp_poll()
     - ipvlan: Fix a reference count leak warning in ipvlan_ns_exit()
     - mlxsw: pci: Set time stamp fields also when its type is MIRROR_UTC
     - mlxsw: reg: Fix SSPR register layout
     - mlxsw: Fix the size of 'VIRT_ROUTER_MSB'
     - net: bgmac: Fix return value check for fixed_phy_register()
     - net: bcmgenet: Fix return value check for fixed_phy_register()
     - net: validate veth and vxcan peer ifindexes
     - ipv4: fix data-races around inet->inet_id
     - ice: fix receive buffer size miscalculation
     - Revert "ice: Fix ice VF reset during iavf initialization"
     - ice: Fix NULL pointer deref during VF reset
     - can: isotp: fix support for transmission of SF without flow control
     - igb: Avoid starting unnecessary workqueues
     - igc: Fix the typo in the PTM Control macro
     - net/sched: fix a qdisc modification with ambiguous command request
     - i40e: fix potential NULL pointer dereferencing of pf->vf
       i40e_sync_vsi_filters()
     - netfilter: nf_tables: flush pending destroy work before netlink notifier
     - netfilter: nf_tables: fix out of memory error handling
     - rtnetlink: Reject negative ifindexes in RTM_NEWLINK
     - bonding: fix macvlan over alb bond support
     - [x86] KVM: x86: Preserve TDP MMU roots until they are explicitly
       invalidated
     - [x86] KVM: x86/mmu: Fix an sign-extension bug with mmu_seq that hangs
       vCPUs
     - io_uring: get rid of double locking
     - io_uring: extract a io_msg_install_complete helper
     - io_uring/msg_ring: move double lock/unlock helpers higher up
     - io_uring/msg_ring: fix missing lock on overflow for IOPOLL (CVE-2023-2430)
     - [x86] ASoC: amd: yc: Add VivoBook Pro 15 to quirks list for acp6x
     - [x86] ASoC: cs35l41: Correct amp_gain_tlv values
     - ibmveth: Use dcbf rather than dcbfl
     - wifi: mac80211: limit reorder_buf_filtered to avoid UBSAN warning
     - [x86] platform/x86: ideapad-laptop: Add support for new hotkeys found on
       ThinkBook 14s Yoga ITL
     - NFSv4: Fix dropped lock for racing OPEN and delegation return
     - clk: Fix slab-out-of-bounds error in devm_clk_release()
     - mm,ima,kexec,of: use memblock_free_late from ima_free_kexec_buffer
     - shmem: fix smaps BUG sleeping while atomic
     - ALSA: ymfpci: Fix the missing snd_card_free() call at probe error
     - mm/gup: handle cont-PTE hugetlb pages correctly in gup_must_unshare() via
       GUP-fast
     - mm: add a call to flush_cache_vmap() in vmap_pfn()
     - mm: memory-failure: fix unexpected return value in soft_offline_page()
     - NFS: Fix a use after free in nfs_direct_join_group()
     - nfsd: Fix race to FREE_STATEID and cl_revoked
     - selinux: set next pointer before attaching to list
     - batman-adv: Trigger events for auto adjusted MTU
     - batman-adv: Don't increase MTU when set by user
     - batman-adv: Do not get eth header before batadv_check_management_packet
     - batman-adv: Fix TT global entry leak when client roamed back
     - batman-adv: Fix batadv_v_ogm_aggr_send memory leak
     - batman-adv: Hold rtnl lock during MTU update via netlink
     - lib/clz_ctz.c: Fix __clzdi2() and __ctzdi2() for 32-bit kernels
     - of: dynamic: Refactor action prints to not use "%pOF" inside devtree_lock
     - pinctrl: amd: Mask wake bits on probe again
     - media: vcodec: Fix potential array out-of-bounds in encoder queue_setup
     - PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for
       non-root bus
     - drm/vmwgfx: Fix shader stage validation
     - [x86] drm/i915/dgfx: Enable d3cold at s2idle
     - drm/display/dp: Fix the DP DSC Receiver cap size
     - [x86] fpu: Invalidate FPU state correctly on exec()
     - [x86] fpu: Set X86_FEATURE_OSXSAVE feature after enabling OSXSAVE in CR4
       (Closes: #1050622)
     - hwmon: (aquacomputer_d5next) Add selective 200ms delay after sending ctrl
       report
     - nfs: use vfs setgid helper
     - nfsd: use vfs setgid helper
     - cgroup/cpuset: Rename functions dealing with DEADLINE accounting
     - sched/cpuset: Bring back cpuset_mutex
     - sched/cpuset: Keep track of SCHED_DEADLINE task in cpusets
     - cgroup/cpuset: Iterate only if DEADLINE tasks are present
     - sched/deadline: Create DL BW alloc, free & check overflow interface
     - cgroup/cpuset: Free DL BW in case can_attach() fails
     - [x86] thunderbolt: Fix Thunderbolt 3 display flickering issue on 2nd hot
       plug onwards
     - can: raw: add missing refcount for memory leak fix
     - madvise:madvise_free_pte_range(): don't use mapcount() against large folio
       for sharing check
     - scsi: snic: Fix double free in snic_tgt_create()
     - scsi: core: raid_class: Remove raid_component_add()
     - clk: Fix undefined reference to `clk_rate_exclusive_{get,put}'
     - dma-buf/sw_sync: Avoid recursive lock during fence signal
     - gpio: sim: dispose of irq mappings before destroying the irq_sim domain
     - gpio: sim: pass the GPIO device's software node to irq domain
     - [x86] ASoC: amd: yc: Fix a non-functional mic on Lenovo 82SJ
     - maple_tree: disable mas_wr_append() when other readers are possible
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.51
     - ACPI: thermal: Drop nocrt parameter
     - module: Expose module_init_layout_section()
     - [arm64] module-plts: inline linux/moduleloader.h
     - [arm64] module: Use module_init_layout_section() to spot init sections
     - [armel,armhf] module: Use module_init_layout_section() to spot init
       sections
     - [x86] thunderbolt: Fix a backport error for display flickering issue
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.52
     - erofs: ensure that the post-EOF tails are all zeroed
     - ksmbd: fix wrong DataOffset validation of create context
     - ksmbd: fix slub overflow in ksmbd_decode_ntlmssp_auth_blob()
     - ksmbd: replace one-element array with flex-array member in struct
       smb2_ea_info
     - ksmbd: reduce descriptor size if remaining bytes is less than request size
     - [arm64] net: enetc: use EXPORT_SYMBOL_GPL for enetc_phc_index
     - modules: only allow symbol_get of EXPORT_SYMBOL_GPL modules
     - USB: serial: option: add Quectel EM05G variant (0x030e)
     - USB: serial: option: add FOXCONN T99W368/T99W373 product
     - ALSA: usb-audio: Fix init call orders for UAC1
     - [arm64,armhf] usb: dwc3: meson-g12a: do post init to fix broken usb after
       resumption
     - [arm64,armhf] usb: chipidea: imx: improve logic if samsung,picophy-*
       parameter is 0
     - HID: wacom: remove the battery when the EKR is off
     - staging: rtl8712: fix race condition
     - Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race
       condition (CVE-2023-1989)
     - wifi: mt76: mt7921: do not support one stream on secondary antenna only
     - wifi: mt76: mt7921: fix skb leak by txs missing in AMSDU
     - [arm64] serial: qcom-geni: fix opp vote on shutdown
     - firmware: stratix10-svc: Fix an NULL vs IS_ERR() bug in probe
     - tcpm: Avoid soft reset when partner does not support get_status
     - dt-bindings: sc16is7xx: Add property to change GPIO function
     - nilfs2: fix general protection fault in nilfs_lookup_dirty_data_buffers()
     - nilfs2: fix WARNING in mark_buffer_dirty due to discarded buffer reuse
     - [arm64] usb: typec: tcpci: clear the fault status bit
     - pinctrl: amd: Don't show `Invalid config param` errors
 .
   [ Salvatore Bonaccorso ]
   * drivers/ptp: Make PTP_1588_CLOCK builtin (except armel/marvell)
     (Closes: #1036744)
   * [rt] Refresh "serial: 8250: implement write_atomic"
   * Bump ABI to 12
   * [rt] Update to 6.1.46-rt13
   * [rt] Refresh "net: Remove the obsolte u64_stats_fetch_*_irq() users (net)."
   * [x86] tpm: Enable hwrng only for Pluton on AMD CPUs
linux (6.1.38-4) bookworm-security; urgency=high
 .
   * Fix "init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()"
     backport
linux (6.1.38-4~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.11
 .
 linux (6.1.38-4) bookworm-security; urgency=high
 .
   * Fix "init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()"
     backport
 .
 linux (6.1.38-3) bookworm-security; urgency=high
 .
   [ Salvatore Bonaccorso ]
   * [x86] Add mitigations for Gather Data Sampling (GDS) (CVE-2022-40982)
     - init: Provide arch_cpu_finalize_init()
     - x86/cpu: Switch to arch_cpu_finalize_init()
     - ARM: cpu: Switch to arch_cpu_finalize_init()
     - ia64/cpu: Switch to arch_cpu_finalize_init()
     - loongarch/cpu: Switch to arch_cpu_finalize_init()
     - m68k/cpu: Switch to arch_cpu_finalize_init()
     - mips/cpu: Switch to arch_cpu_finalize_init()
     - sh/cpu: Switch to arch_cpu_finalize_init()
     - sparc/cpu: Switch to arch_cpu_finalize_init()
     - um/cpu: Switch to arch_cpu_finalize_init()
     - init: Remove check_bugs() leftovers
     - init: Invoke arch_cpu_finalize_init() earlier
     - init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()
     - x86/init: Initialize signal frame size late
     - x86/fpu: Remove cpuinfo argument from init functions
     - x86/fpu: Mark init functions __init
     - x86/fpu: Move FPU initialization into arch_cpu_finalize_init()
     - x86/speculation: Add Gather Data Sampling mitigation
     - x86/speculation: Add force option to GDS mitigation
     - x86/speculation: Add Kconfig option for GDS
     - KVM: Add GDS_NO support to KVM
     - x86/mem_encrypt: Unbreak the AMD_MEM_ENCRYPT=n build
     - x86/xen: Fix secondary processors' FPU initialization
     - x86/mm: fix poking_init() for Xen PV guests
     - x86/mm: Use mm_alloc() in poking_init()
     - mm: Move mm_cachep initialization to mm_init()
     - x86/mm: Initialize text poking earlier
     - Documentation/x86: Fix backwards on/off logic about YMM support
   * [x86] Add a Speculative RAS Overflow (SRSO) mitigation (CVE-2023-20569)
     - x86/bugs: Increase the x86 bugs vector size to two u32s
     - x86/srso: Add a Speculative RAS Overflow mitigation
     - x86/srso: Add IBPB_BRTYPE support
     - x86/srso: Add SRSO_NO support
     - x86/srso: Add IBPB
     - x86/srso: Add IBPB on VMEXIT
     - x86/srso: Fix return thunks in generated code
     - x86/srso: Add a forgotten NOENDBR annotation
   * Bump ABI to 11
 .
   [ Ben Hutchings ]
   * [x86] Add missing pieces of SRSO mitigation:
     - x86/cpu, kvm: Add support for CPUID_80000021_EAX
     - x86/srso: Tie SBPB bit setting to microcode patch detection
linux (6.1.38-3) bookworm-security; urgency=high
 .
   [ Salvatore Bonaccorso ]
   * [x86] Add mitigations for Gather Data Sampling (GDS) (CVE-2022-40982)
     - init: Provide arch_cpu_finalize_init()
     - x86/cpu: Switch to arch_cpu_finalize_init()
     - ARM: cpu: Switch to arch_cpu_finalize_init()
     - ia64/cpu: Switch to arch_cpu_finalize_init()
     - loongarch/cpu: Switch to arch_cpu_finalize_init()
     - m68k/cpu: Switch to arch_cpu_finalize_init()
     - mips/cpu: Switch to arch_cpu_finalize_init()
     - sh/cpu: Switch to arch_cpu_finalize_init()
     - sparc/cpu: Switch to arch_cpu_finalize_init()
     - um/cpu: Switch to arch_cpu_finalize_init()
     - init: Remove check_bugs() leftovers
     - init: Invoke arch_cpu_finalize_init() earlier
     - init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()
     - x86/init: Initialize signal frame size late
     - x86/fpu: Remove cpuinfo argument from init functions
     - x86/fpu: Mark init functions __init
     - x86/fpu: Move FPU initialization into arch_cpu_finalize_init()
     - x86/speculation: Add Gather Data Sampling mitigation
     - x86/speculation: Add force option to GDS mitigation
     - x86/speculation: Add Kconfig option for GDS
     - KVM: Add GDS_NO support to KVM
     - x86/mem_encrypt: Unbreak the AMD_MEM_ENCRYPT=n build
     - x86/xen: Fix secondary processors' FPU initialization
     - x86/mm: fix poking_init() for Xen PV guests
     - x86/mm: Use mm_alloc() in poking_init()
     - mm: Move mm_cachep initialization to mm_init()
     - x86/mm: Initialize text poking earlier
     - Documentation/x86: Fix backwards on/off logic about YMM support
   * [x86] Add a Speculative RAS Overflow (SRSO) mitigation (CVE-2023-20569)
     - x86/bugs: Increase the x86 bugs vector size to two u32s
     - x86/srso: Add a Speculative RAS Overflow mitigation
     - x86/srso: Add IBPB_BRTYPE support
     - x86/srso: Add SRSO_NO support
     - x86/srso: Add IBPB
     - x86/srso: Add IBPB on VMEXIT
     - x86/srso: Fix return thunks in generated code
     - x86/srso: Add a forgotten NOENDBR annotation
   * Bump ABI to 11
 .
   [ Ben Hutchings ]
   * [x86] Add missing pieces of SRSO mitigation:
     - x86/cpu, kvm: Add support for CPUID_80000021_EAX
     - x86/srso: Tie SBPB bit setting to microcode patch detection
linux (6.1.38-2) bookworm-security; urgency=high
 .
   * [x86] cpu/amd: Move the errata checking functionality up
   * [x86] cpu/amd: Add a Zenbleed fix (CVE-2023-20593)
linux (6.1.38-2~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.10
 .
 linux (6.1.38-2) bookworm-security; urgency=high
 .
   * [x86] cpu/amd: Move the errata checking functionality up
   * [x86] cpu/amd: Add a Zenbleed fix (CVE-2023-20593)
 .
 linux (6.1.38-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.38
     - drm/amd/display: Remove optimization for VRR updates
     - drm/amd/display: Do not update DRR while BW optimizations pending
     - PCI/ACPI: Validate acpi_pci_set_power_state() parameter
     - PCI/ACPI: Call _REG when transitioning D-states
     - execve: always mark stack as growing down during early stack setup
     - perf symbols: Symbol lookup with kcore can fail if multiple segments match
       stext
     - scripts/tags.sh: Resolve gtags empty index generation
     - drm/amdgpu: Validate VM ioctl flags.
     - drm/amd/display: Ensure vmin and vmax adjust for DCE
 .
   [ Salvatore Bonaccorso ]
   * drm: use mgr->dev in drm_dbg_kms in drm_dp_add_payload_part2
   * mm/mmap: Fix VM_LOCKED check in do_vmi_align_munmap()
   * netfilter: nf_tables: do not ignore genmask when looking up chain by id
     (CVE-2023-31248)
   * netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
     (CVE-2023-35001)
 .
 linux (6.1.37-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.28
     - [x86] ASOC: Intel: sof_sdw: add quirk for Intel 'Rooks County' NUC M15
     - [x86] ASoC: Intel: soc-acpi: add table for Intel 'Rooks County' NUC M15
     - ASoC: soc-pcm: fix hw->formats cleared by soc_pcm_hw_init() for dpcm
     - [x86] hyperv: Block root partition functionality in a Confidential VM
     - [x86] ASoC: amd: yc: Add DMI entries to support Victus by HP Laptop
       16-e1xxx (8A22)
     - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for the Acer Iconia One 7
       B1-750
     - [x86] ASoC: da7213.c: add missing pm_runtime_disable()
     - scsi: mpi3mr: Handle soft reset in progress fault code (0xF002)
     - net: sfp: add quirk enabling 2500Base-x for HG MXPD-483II
     - [x86] platform/x86: thinkpad_acpi: Add missing T14s Gen1 type to s2idle
       quirk list
     - wifi: ath11k: reduce the MHI timeout to 20s
     - tracing: Error if a trace event has an array for a __field()
     - [x86] cpu: Add model number for Intel Arrow Lake processor
     - wireguard: timers: cast enum limits members to int in prints
     - wifi: mt76: mt7921e: Set memory space enable in PCI_COMMAND if unset
     - [arm64] Always load shadow stack pointer directly from the task struct
     - [arm64] Stash shadow stack pointer in the task struct on interrupt
     - PCI: pciehp: Fix AB-BA deadlock between reset_lock and device_lock
     - [arm64] PCI: qcom: Fix the incorrect register usage in v2.7.0 config
     - [arm64] phy: qcom-qmp-pcie: sc8180x PCIe PHY has 2 lanes
     - [arm64,armhf] usb: dwc3: gadget: Stall and restart EP0 if host is
       unresponsive
     - [arm64,armhf] USB: dwc3: fix runtime pm imbalance on probe errors
     - [arm64,armhf] USB: dwc3: fix runtime pm imbalance on unbind
     - [x86] hwmon: (k10temp) Check range scale when CUR_TEMP register is
       read-write
     - hwmon: (adt7475) Use device_property APIs when configuring polarity
     - tpm: Add !tpm_amd_is_rng_defective() to the hwrng_unregister() call site
     - posix-cpu-timers: Implement the missing timer_wait_running callback
     - blk-stat: fix QUEUE_FLAG_STATS clear
     - blk-crypto: don't use struct request_queue for public interfaces
     - blk-crypto: add a blk_crypto_config_supported_natively helper
     - blk-crypto: move internal only declarations to blk-crypto-internal.h
     - blk-crypto: Add a missing include directive
     - blk-mq: release crypto keyslot before reporting I/O complete
     - blk-crypto: make blk_crypto_evict_key() return void
     - blk-crypto: make blk_crypto_evict_key() more robust
     - tty: Prevent writing chars during tcsetattr TCSADRAIN/FLUSH
     - xhci: fix debugfs register accesses while suspended
     - serial: fix TIOCSRS485 locking
     - serial: 8250: Fix serial8250_tx_empty() race with DMA Tx
     - tick/nohz: Fix cpu_is_hotpluggable() by checking with nohz subsystem
     - fs: fix sysctls.c built
     - [mips*] fw: Allow firmware to pass a empty env
     - ipmi:ssif: Add send_retries increment
     - ipmi: fix SSIF not responding under certain cond.
     - wifi: mt76: add missing locking to protect against concurrent rx/status
       calls
     - [arm64,armhf] pwm: meson: Fix axg ao mux parents
     - [arm64,armhf] pwm: meson: Fix g12a ao clk81 name
     - soundwire: qcom: correct setting ignore bit on v1.5.1
     - ring-buffer: Ensure proper resetting of atomic variables in
       ring_buffer_reset_online_cpus
     - ring-buffer: Sync IRQ works before buffer destruction
     - crypto: api - Demote BUG_ON() in crypto_unregister_alg() to a WARN_ON()
     - [arm64] crypto: safexcel - Cleanup ring IRQ workqueues on load failure
     - [x86] crypto: ccp - Don't initialize CCP for PSP 0x1649
     - rcu: Avoid stack overflow due to __rcu_irq_enter_check_tick() being
       kprobe-ed
     - reiserfs: Add security prefix to xattr name in reiserfs_security_write()
     - [x86] KVM: nVMX: Emulate NOPs in L2, and PAUSE if it's not intercepted
     - [arm64] KVM: arm64: Avoid vcpu->mutex v. kvm->lock inversion in CPU_ON
     - [arm64] KVM: arm64: Avoid lock inversion when setting the VM register
       width
     - [arm64] KVM: arm64: Use config_lock to protect data ordered against
       KVM_RUN
     - [arm64] KVM: arm64: Use config_lock to protect vgic state
     - [arm64] KVM: arm64: vgic: Don't acquire its_lock before config_lock
     - relayfs: fix out-of-bounds access in relay_file_read (CVE-2023-3268)
     - drm/amd/display: Remove stutter only configurations
     - drm/amd/display: limit timing for single dimm memory
     - drm/amd/display: fix PSR-SU/DSC interoperability support
     - drm/amd/display: fix a divided-by-zero error
     - ksmbd: fix racy issue under cocurrent smb2 tree disconnect
       (CVE-2023-32254)
     - ksmbd: call rcu_barrier() in ksmbd_server_exit()
     - ksmbd: fix NULL pointer dereference in smb2_get_info_filesystem()
     - ksmbd: fix memleak in session setup
     - ksmbd: not allow guest user on multichannel
     - ksmbd: fix deadlock in ksmbd_find_crypto_ctx()
     - [x86] ACPI: video: Remove acpi_backlight=video quirk for Lenovo ThinkPad
       W530
     - [arm64,armhf] i2c: omap: Fix standard mode false ACK readings
     - tracing: Fix permissions for the buffer_percent file
     - swsmu/amdgpu_smu: Fix the wrong if-condition
     - drm/amd/pm: re-enable the gfx imu when smu resume
     - [amd64] iommu/amd: Fix "Guest Virtual APIC Table Root Pointer"
       configuration in IRTE
     - Revert "ubifs: dirty_cow_znode: Fix memleak in error handling path"
     - ubifs: Fix memleak when insert_old_idx() failed
     - ubi: Fix return value overwrite issue in try_write_vid_and_data()
     - ubifs: Free memory for tmpfile name
     - ubifs: Fix memory leak in do_rename
     - ceph: fix potential use-after-free bug when trimming caps
     - xfs: don't consider future format versions valid
     - cxl/hdm: Fail upon detecting 0-sized decoders
     - bus: mhi: host: Remove duplicate ee check for syserr
     - bus: mhi: host: Use mhi_tryset_pm_state() for setting fw error state
     - bus: mhi: host: Range check CHDBOFF and ERDBOFF
     - rcu: Fix missing TICK_DEP_MASK_RCU_EXP dependency check
     - tpm, tpm_tis: Do not skip reset of original interrupt vector
     - tpm, tpm_tis: Claim locality before writing TPM_INT_ENABLE register
     - tpm, tpm_tis: Disable interrupts if tpm_tis_probe_irq() failed
     - tpm, tpm_tis: Claim locality before writing interrupt registers
     - tpm, tpm: Implement usage counter for locality
     - tpm, tpm_tis: Claim locality when interrupts are reenabled on resume
     - erofs: stop parsing non-compact HEAD index if clusterofs is invalid
     - erofs: initialize packed inode after root inode is assigned
     - erofs: fix potential overflow calculating xattr_isize
     - [arm64,armhf] drm/rockchip: Drop unbalanced obj unref
     - [x86] drm/i915/dg2: Drop one PCI ID
     - drm/vgem: add missing mutex_destroy
     - drm/probe-helper: Cancel previous job before starting new one
     - drm/amdgpu: register a vga_switcheroo client for MacBooks with apple-gmux
     - [arm64] dts: ti: k3-am62-main: Fix GPIO numbers in DT
     - [arm64] drm/msm/disp/dpu: check for crtc enable rather than crtc active to
       release shared resources
     - [amd64] EDAC/skx: Fix overflows on the DRAM row address mapping arrays
     - regulator: core: Shorten off-on-delay-us for always-on/boot-on by time
       since booted
     - [arm64] dts: ti: k3-am62a7-sk: Fix DDR size to full 4GB
     - [arm64] dts: qcom: msm8998: Fix stm-stimulus-base reg name
     - [arm64] dts: qcom: sdm845: correct dynamic power coefficients
     - [x86] MCE/AMD: Use an u64 for bank_map
     - [arm64] firmware: qcom_scm: Clear download bit during reboot
     - [arm64] drm/bridge: adv7533: Fix adv7533_mode_valid for adv7533 and
       adv7535
     - [arm64] drm/msm/adreno: drop bogus pm_runtime_set_active()
     - [arm64] drm: msm: adreno: Disable preemption on Adreno 510
     - [amd64] virt/coco/sev-guest: Double-buffer messages
     - [arm64] dts: qcom: sm8350-microsoft-surface: fix USB dual-role mode
       property
     - [x86] ACPI: processor: Fix evaluating _PDC method when running as Xen dom0
     - [arm64] mmc: sdhci-of-esdhc: fix quirk to ignore command inhibit for data
     - [armhf] dts: gta04: fix excess dma channel usage
     - [arm64] firmware: arm_scmi: Fix xfers allocation on Rx channel
     - [arm64] perf/arm-cmn: Move overlapping wp_combine field
     - [armhf] dts: stm32: fix spi1 pin assignment on stm32mp15
     - [arm64] cpufreq: qcom-cpufreq-hw: Revert adding cpufreq qos
     - [arm64,armhf] drm/lima/lima_drv: Add missing unwind goto in
       lima_pdev_probe()
     - [arm64,armhf] gpu: host1x: Fix potential double free if IOMMU is disabled
     - [arm64,armhf] gpu: host1x: Fix memory leak of device names
     - drm/ttm: optimize pool allocations a bit v2
     - drm/ttm/pool: Fix ttm_pool_alloc error path
     - regulator: core: Consistently set mutex_owner when using
       ww_mutex_lock_slow()
     - regulator: core: Avoid lockdep reports when resolving supplies
     - [x86] apic: Fix atomic update of offset in reserve_eilvt_offset()
     - [arm64] dts: qcom: msm8994-angler: Fix cont_splash_mem mapping
     - [arm64] dts: qcom: msm8994-angler: removed clash with smem_region
     - [arm64,armhf] media: cedrus: fix use after free bug in cedrus_remove due
       to race condition (CVE-2023-35826)
     - [arm64] media: rkvdec: fix use after free bug in rkvdec_remove
       (CVE-2023-35829)
     - [amd64] platform/x86/amd: pmc: Don't try to read SMU version on Picasso
     - [amd64] platform/x86/amd: pmc: Hide SMU version and program attributes for
       Picasso
     - [amd64] platform/x86/amd: pmc: Don't dump data after resume from s0i3 on
       picasso
     - [amd64] platform/x86/amd: pmc: Move idlemask check into
       `amd_pmc_idlemask_read`
     - [amd64] platform/x86/amd: pmc: Utilize SMN index 0 for driver probe
     - [amd64] platform/x86/amd: pmc: Move out of BIOS SMN pair for STB init
     - media: dm1105: Fix use after free bug in dm1105_remove due to race
       condition (CVE-2023-35824)
     - media: saa7134: fix use after free bug in saa7134_finidev due to race
       condition (CVE-2023-35823)
     - media: v4l: async: Return async sub-devices to subnotifier list
     - drm/amd/display: Fix potential null dereference
     - [arm64,armhf] media: rc: gpio-ir-recv: Fix support for wake-up
     - [arm64] media: venus: dec: Fix handling of the start cmd
     - [arm64] media: venus: dec: Fix capture formats enumeration order
     - [armhf] regulator: stm32-pwr: fix of_iomap leak
     - [x86] ioapic: Don't return 0 from arch_dynirq_lower_bound()
     - [arm64] kgdb: Set PSTATE.SS to 1 to re-enable single-step
     - [arm64] perf/arm-cmn: Fix port detection for CMN-700
     - [x86] drm/i915: Make intel_get_crtc_new_encoder() less oopsy
     - tick/common: Align tick period with the HZ tick.
     - ACPI: bus: Ensure that notify handlers are not running after removal
     - cpufreq: use correct unit when verify cur freq
     - [arm64] rpmsg: glink: Propagate TX failures in intentless mode as well
     - platform/chrome: cros_typec_switch: Add missing fwnode_handle_put()
     - wifi: ath6kl: minor fix for allocation size
     - wifi: ath9k: hif_usb: fix memory leak of remain_skbs
     - wifi: ath11k: Use platform_get_irq() to get the interrupt
     - wifi: ath5k: Use platform_get_irq() to get the interrupt
     - wifi: ath5k: fix an off by one check in ath5k_eeprom_read_freq_list()
     - wifi: ath11k: fix SAC bug on peer addition with sta band migration
     - wifi: brcmfmac: support CQM RSSI notification with older firmware
     - wifi: ath6kl: reduce WARN to dev_dbg() in callback
     - tools: bpftool: Remove invalid \' json escape
     - wifi: rtw88: mac: Return the original error from rtw_pwr_seq_parser()
     - wifi: rtw88: mac: Return the original error from rtw_mac_power_switch()
     - bpf: take into account liveness when propagating precision
     - bpf: fix precision propagation verbose logging
     - [x86] crypto: qat - fix concurrency issue when device state changes
     - scm: fix MSG_CTRUNC setting condition for SO_PASSSEC
     - wifi: ath11k: fix deinitialization of firmware resources
     - bpf: Remove misleading spec_v1 check on var-offset stack read
     - net: pcs: xpcs: remove double-read of link state when using AN
     - vlan: partially enable SIOCSHWTSTAMP in container
     - net/packet: annotate accesses to po->xmit
     - net/packet: convert po->origdev to an atomic flag
     - net/packet: convert po->auxdata to an atomic flag
     - libbpf: Fix ld_imm64 copy logic for ksym in light skeleton.
     - netfilter: keep conntrack reference until IPsecv6 policy checks are done
     - bpf: Fix __reg_bound_offset 64->32 var_off subreg propagation
     - scsi: target: core: Change the way target_xcopy_do_work() sets restiction
       on max I/O
     - scsi: target: Move sess cmd counter to new struct
     - scsi: target: Move cmd counter allocation
     - scsi: target: Pass in cmd counter to use during cmd setup
     - scsi: target: iscsit: isert: Alloc per conn cmd counter
     - scsi: target: iscsit: Stop/wait on cmds during conn close
     - scsi: target: Fix multiple LUN_RESET handling
     - scsi: target: iscsit: Fix TAS handling during conn cleanup
     - scsi: megaraid: Fix mega_cmd_done() CMDID_INT_CMDS
     - net: sunhme: Fix uninitialized return code
     - f2fs: handle dqget error in f2fs_transfer_project_quota()
     - f2fs: fix uninitialized skipped_gc_rwsem
     - f2fs: apply zone capacity to all zone type
     - f2fs: compress: fix to call f2fs_wait_on_page_writeback() in
       f2fs_write_raw_pages()
     - f2fs: fix scheduling while atomic in decompression path
     - [arm64,armhf] crypto: caam - Clear some memory in instantiate_rng
     - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_rfreg()
     - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_reg()
     - scsi: libsas: Add sas_ata_device_link_abort()
     - [arm64] scsi: hisi_sas: Handle NCQ error when IPTT is valid
     - wifi: rt2x00: Fix memory leak when handling surveys
     - f2fs: fix iostat lock protection
     - net: qrtr: correct types of trace event parameters
     - bpftool: Fix bug for long instructions in program CFG dumps
     - crypto: drbg - Only fail when jent is unavailable in FIPS mode
     - xsk: Fix unaligned descriptor validation
     - f2fs: fix to avoid use-after-free for cached IPU bio
     - wifi: iwlwifi: fix duplicate entry in iwl_dev_info_table
     - bpf/btf: Fix is_int_ptr()
     - scsi: lpfc: Fix ioremap issues in lpfc_sli4_pci_mem_setup()
     - [arm64,armhf] net: ethernet: stmmac: dwmac-rk: rework optional clock
       handling
     - [arm64,armhf] net: ethernet: stmmac: dwmac-rk: fix optional phy regulator
       handling
     - wifi: ath11k: fix writing to unintended memory region
     - bpf, sockmap: fix deadlocks in the sockhash and sockmap
     - nvmet: fix error handling in nvmet_execute_identify_cns_cs_ns()
     - nvmet: fix Identify Namespace handling
     - nvmet: fix Identify Controller handling
     - nvmet: fix Identify Active Namespace ID list handling
     - nvmet: fix I/O Command Set specific Identify Controller
     - nvme: fix async event trace event
     - blk-mq: don't plug for head insertions in blk_execute_rq_nowait
     - wifi: iwlwifi: debug: fix crash in __iwl_err()
     - wifi: iwlwifi: trans: don't trigger d3 interrupt twice
     - wifi: iwlwifi: mvm: don't set CHECKSUM_COMPLETE for unsupported protocols
     - bpf, sockmap: Revert buggy deadlock fix in the sockhash and sockmap
     - f2fs: fix to check return value of f2fs_do_truncate_blocks()
     - f2fs: fix to check return value of inc_valid_block_count()
     - md/raid10: fix task hung in raid10d
     - md/raid10: fix leak of 'r10bio->remaining' for recovery
     - md/raid10: fix memleak for 'conf->bio_split'
     - md/raid10: fix memleak of md thread
     - md/raid10: don't call bio_start_io_acct twice for bio which experienced
       read error
     - wifi: iwlwifi: mvm: don't drop unencrypted MCAST frames
     - wifi: iwlwifi: yoyo: skip dump correctly on hw error
     - wifi: iwlwifi: yoyo: Fix possible division by zero
     - wifi: iwlwifi: mvm: initialize seq variable
     - wifi: iwlwifi: fw: move memset before early return
     - jdb2: Don't refuse invalidation of already invalidated buffers
     - io_uring/rsrc: use nospec'ed indexes
     - wifi: iwlwifi: make the loop for card preparation effective
     - wifi: mt76: handle failure of vzalloc in mt7615_coredump_work
     - wifi: mt76: add flexible polling wait-interval support
     - wifi: mt76: mt7921e: fix probe timeout after reboot
     - wifi: mt76: fix 6GHz high channel not be scanned
     - mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data
     - wifi: mt76: mt7921: fix missing unwind goto in `mt7921u_probe`
     - wifi: mt76: mt7921e: improve reliability of dma reset
     - wifi: mt76: mt7921e: stop chip reset worker in unregister hook
     - wifi: mt76: connac: fix txd multicast rate setting
     - wifi: iwlwifi: mvm: check firmware response size
     - netfilter: conntrack: restore IPS_CONFIRMED out of
       nf_conntrack_hash_check_insert()
     - netfilter: conntrack: fix wrong ct->timeout value
     - wifi: iwlwifi: fw: fix memory leak in debugfs
     - ixgbe: Allow flow hash to be set via ethtool
     - ixgbe: Enable setting RSS table to default values
     - net/mlx5e: Don't clone flow post action attributes second time
     - net/mlx5: E-switch, Create per vport table based on devlink encap mode
     - net/mlx5: E-switch, Don't destroy indirect table in split rule
     - net/mlx5e: Fix error flow in representor failing to add vport rx rule
     - net/mlx5: Suspend auxiliary devices only in case of PCI device suspend
     - net/mlx5: Use recovery timeout on sync reset flow
     - net/mlx5e: Nullify table pointer when failing to create
     - net: stmmac:fix system hang when setting up tag_8021q VLAN for DSA ports
     - bpf: Fix race between btf_put and btf_idr walk.
     - bpf: Don't EFAULT for getsockopt with optval=NULL
     - netfilter: nf_tables: don't write table validation state without mutex
     - net/sched: sch_fq: fix integer overflow of "credit"
     - ipv4: Fix potential uninit variable access bug in __ip_make_skb()
     - Revert "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to
       unfinished work"
     - netlink: Use copy_to_user() for optval in netlink_getsockopt().
     - [x86] net: amd: Fix link leak when verifying config failed
     - tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp.
     - [x86] ASoC: cs35l41: Only disable internal boost
     - drivers: staging: rtl8723bs: Fix locking in _rtw_join_timeout_handler()
     - drivers: staging: rtl8723bs: Fix locking in rtw_scan_timeout_handler()
     - [arm64] usb: host: xhci-rcar: remove leftover quirk handling
     - [arm64,armhf] usb: dwc3: gadget: Change condition for processing suspend
       event
     - [armhf] serial: stm32: Re-assert RTS/DE GPIO in RS485 mode only if more
       data are transmitted
     - iio: light: max44009: add missing OF device matching
     - [arm64,armhf] spi: imx: Don't skip cleanup in remove's error path
     - [x86] ASoC: soc-compress: Inherit atomicity from DAI link for Compress FE
     - [arm64,armhf] PCI: imx6: Install the fault handler only on compatible
       match
     - ASoC: es8316: Handle optional IRQ assignment
     - [arm64] spi: qup: Don't skip cleanup in remove's error path
     - [x86] vmci_host: fix a race condition in vmci_host_poll() causing GPF
     - of: Fix modalias string generation
     - [amd64] HID: amd_sfh: Correct the structure fields
     - [amd64] HID: amd_sfh: Correct the sensor enable and disable command
     - [amd64] HID: amd_sfh: Fix illuminance value
     - [amd64] HID: amd_sfh: Add support for shutdown operation
     - [amd64] HID: amd_sfh: Correct the stop all command
     - [amd64] HID: amd_sfh: Increase sensor command timeout for SFH1.1
     - [amd64] HID: amd_sfh: Handle "no sensors" enabled for SFH1.1
     - cacheinfo: Check sib_leaf in cache_leaves_are_shared()
     - [arm64] coresight: etm_pmu: Set the module field
     - PCI/PM: Extend D3hot delay for NVIDIA HDA controllers
     - spi: cadence-quadspi: fix suspend-resume implementations
     - [arm64,armhf] usb: chipidea: fix missing goto in `ci_hdrc_probe`
     - [arm64] tty: serial: fsl_lpuart: adjust buffer length to the intended size
     - serial: 8250: Add missing wakeup event reporting
     - spi: cadence-quadspi: use macro DEFINE_SIMPLE_DEV_PM_OPS
     - [x86] staging: rtl8192e: Fix W_DISABLE# does not work after stop/start
     - [arm64] spmi: Add a check for remove callback when removing a SPMI driver
     - virtio_ring: don't update event idx on get_buf
     - [powerpc*] rtas: use memmove for potentially overlapping buffer copy
     - sched/fair: Fix inaccurate tally of ttwu_move_affine
     - perf/core: Fix hardlockup failure caused by perf throttle
     - Revert "objtool: Support addition to set CFA base"
     - sched/rt: Fix bad task migration for rt tasks
     - tracing/user_events: Ensure write index cannot be negative
     - [amd64] IB/hifi1: add a null check of kzalloc_node in
       hfi1_ipoib_txreq_init
     - [amd64] RDMA/rdmavt: Delete unnecessary NULL check
     - workqueue: Fix hung time report of worker pools
     - [armhf] rtc: omap: include header for omap_rtc_power_off_program prototype
     - RDMA/mlx4: Prevent shift wrapping in set_user_sq_size()
     - [arm64,armhf] rtc: meson-vrtc: Use ktime_get_real_ts64() to get the
       current time
     - clk: add missing of_node_put() in "assigned-clocks" property parsing
     - [arm64] power: supply: rk817: Fix low SOC bugs
     - RDMA/cm: Trace icm_send_rej event before the cm state is reset
     - RDMA/srpt: Add a check for valid 'mad_agent' pointer
     - [amd64] IB/hfi1: Fix SDMA mmu_rb_node not being evicted in LRU order
     - [amd64] IB/hfi1: Fix bugs with non-PAGE_SIZE-end multi-iovec user SDMA
       requests
     - [arm64,armhf] clk: imx: fracn-gppll: fix the rate table
     - [arm64,armhf] clk: imx: fracn-gppll: disable hardware select control
     - NFSv4.1: Always send a RECLAIM_COMPLETE after establishing lease
     - [amd64] iommu/amd: Set page size bitmap during V2 domain allocation
     - [arm64] Input: raspberrypi-ts - fix refcount leak in rpi_ts_probe
     - swiotlb: relocate PageHighMem test away from rmem_swiotlb_setup
     - swiotlb: fix debugfs reporting of reserved memory pools
     - RDMA/mlx5: Check pcie_relaxed_ordering_enabled() in UMR
     - RDMA/mlx5: Fix flow counter query via DEVX
     - SUNRPC: remove the maximum number of retries in call_bind_status
     - RDMA/mlx5: Use correct device num_ports when modify DC
     - timekeeping: Fix references to nonexistent ktime_get_fast_ns()
     - SMB3: Add missing locks to protect deferred close file list
     - SMB3: Close deferred file handles in case of handle lease break
     - ext4: fix i_disksize exceeding i_size problem in paritally written case
     - ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline
     - [arm64] dmaengine: mv_xor_v2: Fix an error code.
     - [armhf] leds: tca6507: Fix error handling of using
       fwnode_property_read_string
     - soundwire: cadence: rename sdw_cdns_dai_dma_data as sdw_cdns_dai_runtime
     - [x86] soundwire: intel: don't save hw_params for use in prepare
     - [arm64,armhf] phy: tegra: xusb: Add missing tegra_xusb_port_unregister for
       usb2_port and ulpi_port
     - [arm64,armhf] pinctrl-bcm2835.c: fix race condition when setting gpio dir
     - [x86] ACPI: PM: Do not turn of unused power resources on the Toshiba Click
       Mini
     - PM: hibernate: Turn snapshot_test into global variable
     - PM: hibernate: Do not get block device exclusively in test_resume mode
     - afs: Fix updating of i_size with dv jump from server
     - afs: Fix getattr to report server i_size on dirs, not local size
     - afs: Avoid endless loop if file is larger than expected
     - ALSA: usb-audio: Add quirk for Pioneer DDJ-800
     - [x86] ALSA: hda/realtek: Add quirk for ThinkPad P1 Gen 6
     - [x86] ALSA: hda/realtek: Add quirk for ASUS UM3402YAR using CS35L41
     - [x86] ALSA: hda/realtek: support HP Pavilion Aero 13-be0xxx Mute LED
     - [x86] ALSA: hda/realtek: Fix mute and micmute LEDs for an HP laptop
     - nilfs2: do not write dirty data after degenerating to read-only
     - nilfs2: fix infinite loop in nilfs_mdt_get_block()
     - mm: do not reclaim private data from pinned page
     - drbd: correctly submit flush bio on barrier
     - md/raid10: fix null-ptr-deref in raid10_sync_request
     - md/raid5: Improve performance for sequential IO
     - mtd: core: provide unique name for nvmem device, take two
     - mtd: core: fix nvmem error reporting
     - mtd: core: fix error path for nvmem provider
     - mtd: spi-nor: core: Update flash's current address mode when changing
       address mode
     - [arm64] mailbox: zynqmp: Fix IPI isr handling
     - [arm64] mailbox: zynqmp: Fix typo in IPI documentation
     - wifi: rtl8xxxu: RTL8192EU always needs full init
     - wifi: rtw89: fix potential race condition between napi_init and
       napi_enable
     - [arm64] clk: rockchip: rk3399: allow clk_cifout to force clk_cifout_src to
       reparent
     - btrfs: scrub: reject unsupported scrub flags
     - [s390x] dasd: fix hanging blockdevice after request requeue
     - mm/mempolicy: correctly update prev when policy is equal on mbind
     - dm verity: fix error handling for check_at_most_once on FEC
     - dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path
     - dm flakey: fix a crash with invalid table line
     - dm ioctl: fix nested locking in table_clear() to remove deadlock concern
       (CVE-2023-2269)
     - dm: don't lock fs when the map is NULL in process of resume
     - blk-iocost: avoid 64-bit division in ioc_timer_fn
     - cifs: fix potential use-after-free bugs in TCP_Server_Info::hostname
     - cifs: protect session status check in smb2_reconnect()
     - [x86] thunderbolt: Use correct type in tb_port_is_clx_enabled() prototype
     - wifi: ath11k: synchronize ath11k_mac_he_gi_to_nl80211_he_gi()'s return
       type
     - [x86] perf auxtrace: Fix address filter entire kernel size
     - [x86] perf intel-pt: Fix CYC timestamps after standalone CBR
     - i40e: Remove unused i40e status codes
     - i40e: Remove string printing for i40e_status
     - i40e: use int for i40e_status
     - scsi: libsas: Grab the ATA port lock in sas_ata_device_link_abort()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.29
     - [arm64,armhf] USB: dwc3: gadget: drop dead hibernation code
     - [arm64,armhf] usb: dwc3: gadget: Execute gadget stop after halting the
       controller
     - drm/vmwgfx: Remove explicit and broken vblank handling
     - drm/vmwgfx: Fix Legacy Display Unit atomic drm support
     - [amd64] crypto: ccp - Clear PSP interrupt status register before calling
       handler
     - [x86] perf/x86/core: Zero @lbr instead of returning -1 in
       x86_perf_get_lbr() stub
     - [x86] KVM: x86: Track supported PERF_CAPABILITIES in kvm_caps
     - [x86] KVM: x86/pmu: Disallow legacy LBRs if architectural LBRs are
       available
     - mtd: spi-nor: spansion: Remove NO_SFDP_FLAGS from s28hs512t info
     - mtd: spi-nor: add SFDP fixups for Quad Page Program
     - mtd: spi-nor: Add a RWW flag
     - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s28hx
       SEMPER flash
     - [arm64] mailbox: zynq: Switch to flexible array to simplify code
     - [arm64] mailbox: zynqmp: Fix counts of child nodes
     - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s25hx
       SEMPER flash
     - drm/amd/display: Ext displays with dock can't recognized after resume
     - [x86] KVM: x86/mmu: Avoid indirect call for get_cr3
     - [x86] KVM: x86: Do not unload MMU roots when only toggling CR0.WP with TDP
       enabled
     - [x86] KVM: x86: Make use of kvm_read_cr*_bits() when testing bits
     - [x86] KVM: VMX: Make CR0.WP a guest owned bit
     - [x86] KVM: x86/mmu: Refresh CR0.WP prior to checking for emulated
       permission faults
     - [x86] ASoC: Intel: soc-acpi-byt: Fix "WM510205" match no longer working
     - scsi: qedi: Fix use after free bug in qedi_remove()
     - drm/amd/display: Remove FPU guards from the DML folder
     - drm/amd/display: Add missing WA and MCLK validation
     - drm/amd/display: Return error code on DSC atomic check failure
     - drm/amd/display: Fixes for dcn32_clk_mgr implementation
     - drm/amd/display: Reset OUTBOX0 r/w pointer on DMUB reset
     - drm/amd/display: Do not clear GPINT register when releasing DMUB from
       reset
     - drm/amd/display: Update bounding box values for DCN321
     - ixgbe: Fix panic during XDP_TX with > 64 CPUs
     - [armhf] net/ncsi: clear Tx enable mode when handling a Config required AEN
     - tcp: fix skb_copy_ubufs() vs BIG TCP
     - net/sched: cls_api: remove block_cb from driver_list before freeing
     - sit: update dev->needed_headroom in ipip6_tunnel_bind_dev()
     - net: ipv6: fix skb hash for some RST packets
     - [arm64,armhf] net: dsa: mv88e6xxx: add mv88e6321 rsvd2cpu
     - writeback: fix call of incorrect macro
     - block: Skip destroyed blkg when restart in blkg_destroy_all()
     - [arm64,armhf] watchdog: dw_wdt: Fix the error handling path of
       dw_wdt_drv_probe()
     - [arm64,armhf] i2c: tegra: Fix PEC support for SMBUS block read
     - net/sched: act_mirred: Add carrier check
     - r8152: fix flow control issue of RTL8156A
     - r8152: fix the poor throughput for 2.5G devices
     - r8152: move setting r8153b_rx_agg_chg_indicate()
     - sfc: Fix module EEPROM reporting for QSFP modules
     - rxrpc: Fix hard call timeout units
     - [x86] drm/i915/mtl: Add the missing CPU transcoder mask in
       intel_device_info
     - ethtool: Fix uninitialized number of lanes
     - af_packet: Don't send zero-byte data in packet_sendmsg_spkt().
     - drm/amdgpu: add a missing lock for AMDGPU_SCHED
     - ALSA: caiaq: input: Add error handling for unsupported input methods in
       `snd_usb_caiaq_input_init`
     - [s390x] KVM: s390: fix race in gmap_make_secure()
     - ice: block LAN in case of VF to VF offload
     - virtio_net: suppress cpu stall when free_unused_bufs
     - [arm64] net: enetc: check the index of the SFI rather than the handle
     - perf record: Fix "read LOST count failed" msg with sample read
     - perf scripts intel-pt-events.py: Fix IPC output for Python 2
     - perf vendor events s390: Remove UTF-8 characters from JSON file
     - perf tests record_offcpu.sh: Fix redirection of stderr to stdin
     - perf ftrace: Make system wide the default target for latency subcommand
     - perf vendor events power9: Remove UTF-8 characters from JSON files
     - perf pmu: zfree() expects a pointer to a pointer to zero it after freeing
       its contents
     - perf map: Delete two variable initialisations before null pointer checks
       in sort__sym_from_cmp()
     - perf cs-etm: Fix timeless decode mode detection
     - crypto: api - Add scaffolding to change completion function signature
     - crypto: engine - Use crypto_request_complete
     - crypto: engine - fix crypto_queue backlog handling
     - perf symbols: Fix return incorrect build_id size in elf_read_build_id()
     - perf tracepoint: Fix memory leak in is_valid_tracepoint()
     - perf stat: Separate bperf from bpf_profiler
     - [x86] retbleed: Fix return thunk alignment
     - btrfs: fix btrfs_prev_leaf() to not return the same key twice
     - btrfs: zoned: fix wrong use of bitops API in btrfs_ensure_empty_zones
     - btrfs: properly reject clear_cache and v1 cache for block-group-tree
     - btrfs: fix assertion of exclop condition when starting balance
     - btrfs: fix encoded write i_size corruption with no-holes
     - btrfs: don't free qgroup space unless specified
     - btrfs: zero the buffer before marking it dirty in btrfs_redirty_list_add
     - btrfs: make clear_cache mount option to rebuild FST without disabling it
     - btrfs: print-tree: parent bytenr must be aligned to sector size
     - btrfs: fix space cache inconsistency after error loading it from disk
     - btrfs: zoned: zone finish data relocation BG with last IO
     - btrfs: zoned: fix full zone super block reading on ZNS
     - cifs: fix pcchunk length type in smb2_copychunk_range
     - cifs: release leases for deferred close handles when freezing
     - [amd64] platform/x86/intel-uncore-freq: Return error on write frequency
     - [x86] platform/x86: touchscreen_dmi: Add upside-down quirk for GDIX1002 ts
       on the Juno Tablet
     - [x86] platform/x86: thinkpad_acpi: Fix platform profiles on T490
     - [x86] platform/x86: touchscreen_dmi: Add info for the Dexp Ursus KX210i
     - [x86] platform/x86: thinkpad_acpi: Add profile force ability
     - inotify: Avoid reporting event with invalid wd
     - smb3: fix problem remounting a share after shutdown
     - SMB3: force unmount was failing to close deferred close files
     - [armhf] remoteproc: stm32: Call of_node_put() on iteration error
     - sysctl: clarify register_sysctl_init() base directory order
     - [armhf] ARM: dts: aspeed: asrock: Correct firmware flash SPI clocks
     - [armhf] ARM: dts: exynos: fix WM8960 clock name in Itop Elite
     - [armhf] ARM: dts: aspeed: romed8hm3: Fix GPIO polarity of system-fault LED
     - [arm64] drm/msm/adreno: fix runtime PM imbalance at gpu load
     - [x86] drm/i915/color: Fix typo for Plane CSC indexes
     - [arm64] drm/msm: fix NULL-deref on snapshot tear down
     - [arm64] drm/msm: fix NULL-deref on irq uninstall
     - [arm64] drm/msm: fix drm device leak on bind errors
     - [arm64] drm/msm: fix vram leak on bind errors
     - [arm64] drm/msm: fix workqueue leak on bind errors
     - [x86] drm/i915/dsi: Use unconditional msleep() instead of
       intel_dsi_msleep()
     - f2fs: fix null pointer panic in tracepoint in __replace_atomic_write_block
     - f2fs: fix potential corruption when moving a directory
     - [armhf] drm/panel: otm8009a: Set backlight parent to panel device
     - drm/amd/display: Add NULL plane_state check for cursor disable logic
     - drm/amd/display: Fix 4to1 MPC black screen with DPP RCO
     - drm/amd/display: filter out invalid bits in pipe_fuses
     - drm/amd/display: fix flickering caused by S/G mode
     - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v10_0_hw_fini
     - drm/amdgpu: fix an amdgpu_irq_put() issue in gmc_v9_0_hw_fini()
     - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v11_0_hw_fini
     - drm/amdgpu/gfx: disable gfx9 cp_ecc_error_irq only when enabling legacy
       gfx ras
     - drm/amdgpu/jpeg: Remove harvest checking for JPEG3
     - drm/amdgpu: change gfx 11.0.4 external_id range
     - drm/amdgpu: Fix vram recover doesn't work after whole GPU reset (v2)
     - drm/amd/display: Enforce 60us prefetch for 200Mhz DCFCLK modes
     - drm/amd/pm: parse pp_handle under appropriate conditions
     - drm/amdgpu: disable sdma ecc irq only when sdma RAS is enabled in suspend
     - drm/amd/pm: avoid potential UBSAN issue on legacy asics
     - drm/amdgpu: remove deprecated MES version vars
     - drm/amd: Load MES microcode during early_init
     - drm/amd: Add a new helper for loading/validating microcode
     - drm/amd: Use `amdgpu_ucode_*` helpers for MES
     - HID: wacom: Set a default resolution for older tablets
     - HID: wacom: insert timestamp to packed Bluetooth (BT) events
     - [arm64] drm/msm/adreno: adreno_gpu: Use suspend() instead of idle() on
       load error
     - f2fs: specify extent cache for read explicitly
     - f2fs: move internal functions into extent_cache.c
     - f2fs: remove unnecessary __init_extent_tree
     - f2fs: refactor extent_cache to support for read and more
     - f2fs: allocate the extent_cache by default
     - f2fs: factor out victim_entry usage from general rb_tree use
     - [arm64] drm/msm/adreno: Simplify read64/write64 helpers
     - [arm64] drm/msm: Hangcheck progress detection
     - [arm64] drm/msm: fix missing wq allocation error handling
     - wifi: rtw88: rtw8821c: Fix rfe_option field width
     - [x86] drm/i915/mtl: update scaler source and destination limits for MTL
     - [x86] drm/i915: Check pipe source size when using skl+ scalers
     - drm/amd/display: Refactor eDP PSR codes
     - drm/amd/display: Add Z8 allow states to z-state support list
     - drm/amd/display: Add debug option to skip PSR CRTC disable
     - drm/amd/display: Fix Z8 support configurations
     - drm/amd/display: Add minimum Z8 residency debug option
     - drm/amd/display: Update minimum stutter residency for DCN314 Z8
     - drm/amd/display: Lowering min Z8 residency time
     - [x86] ASoC: codecs: constify static sdw_slave_ops struct
     - drm/amd/display: Update Z8 watermarks for DCN314
     - drm/amd/display: Update Z8 SR exit/enter latencies
     - drm/amd/display: Change default Z8 watermark values
     - ksmbd: Implements sess->ksmbd_chann_list as xarray
     - ksmbd: fix racy issue from session setup and logoff (CVE-2023-32250)
     - ksmbd: destroy expired sessions
     - ksmbd: block asynchronous requests when making a delay on session setup
     - ksmbd: fix racy issue from smb2 close and logoff with multichannel
     - drm: Add missing DP DSC extended capability definitions.
     - drm/dsc: fix drm_edp_dsc_sink_output_bpp() DPCD high byte usage
     - locking/rwsem: Add __always_inline annotation to __down_read_common() and
       inlined callers
     - ext4: fix WARNING in mb_find_extent
     - ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum
       (CVE-2023-34256)
     - ext4: fix data races when using cached status extents
     - ext4: check iomap type only if ext4_iomap_begin() does not fail
     - ext4: improve error recovery code paths in __ext4_remount()
     - ext4: improve error handling from ext4_dirhash()
     - ext4: fix deadlock when converting an inline directory in nojournal mode
     - ext4: add bounds checking in get_max_inline_xattr_value_size()
     - ext4: bail out of ext4_xattr_ibody_get() fails for any reason
     - ext4: fix lockdep warning when enabling MMP
     - ext4: remove a BUG_ON in ext4_mb_release_group_pa()
     - ext4: fix invalid free tracking in ext4_xattr_move_to_block()
     - drm/dsc: fix DP_DSC_MAX_BPP_DELTA_* macro values
     - f2fs: fix to do sanity check on extent cache correctly
     - f2fs: inode: fix to do sanity check on extent cache correctly
     - [x86] amd_nb: Add PCI ID for family 19h model 78h
     - [x86] fix clear_user_rep_good() exception handling annotation
     - drm/amd/display: Fix hang when skipping modeset
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.30
     - drm/fbdev-generic: prohibit potential out-of-bounds access
     - drm/mipi-dsi: Set the fwnode for mipi_dsi_device
     - net: skb_partial_csum_set() fix against transport header magic value
     - scsi: ufs: core: Fix I/O hang that occurs when BKOPS fails in W-LUN
       suspend
     - tick/broadcast: Make broadcast device replacement work correctly
     - linux/dim: Do nothing if no time delta between samples
     - net: stmmac: Initialize MAC_ONEUS_TIC_COUNTER register
     - net: Fix load-tearing on sk->sk_stamp in sock_recv_cmsgs().
     - [arm64,armhf] net: phy: bcm7xx: Correct read from expansion register
     - netfilter: nf_tables: always release netdev hooks from notifier
     - netfilter: conntrack: fix possible bug_on with enable_hooks=1
     - bonding: fix send_peer_notif overflow
     - netlink: annotate accesses to nlk->cb_running
     - net: annotate sk->sk_err write from do_recvmmsg()
     - net: deal with most data-races in sk_wait_event()
     - net: add vlan_get_protocol_and_depth() helper
     - tcp: add annotations around sk->sk_shutdown accesses
     - [amd64,arm64] gve: Remove the code of clearing PBA bit
     - ipvlan:Fix out-of-bounds caused by unclear skb->cb (CVE-2023-3090)
     - [arm64] net: mscc: ocelot: fix stat counter register values
     - net: datagram: fix data-races in datagram_poll()
     - af_unix: Fix a data race of sk->sk_receive_queue->qlen.
     - af_unix: Fix data races around sk->sk_shutdown.
     - [x86] drm/i915/guc: Don't capture Gen8 regs on Xe devices
     - [x86] drm/i915: Fix NULL ptr deref by checking new_crtc_state
     - [x86] drm/i915/dp: prevent potential div-by-zero
     - [x86] drm/i915: Expand force_probe to block probe of devices as well.
     - [x86] drm/i915: taint kernel when force probing unsupported devices
     - [x86] fbdev: arcfb: Fix error handling in arcfb_probe()
     - ext4: reflect error codes from ext4_multi_mount_protect() to its callers
     - ext4: allow to find by goal if EXT4_MB_HINT_GOAL_ONLY is set
     - ext4: allow ext4_get_group_info() to fail
     - rcu: Protect rcu_print_task_exp_stall() ->exp_tasks access
     - open: return EINVAL for O_DIRECTORY | O_CREAT
     - fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
     - drm/displayid: add displayid_get_header() and check bounds better
     - drm/amd/display: populate subvp cmd info only for the top pipe
     - drm/amd/display: Correct DML calculation to align HW formula
     - [x86] platform/x86: x86-android-tablets: Add Acer Iconia One 7 B1-750 data
     - drm/amd/display: Enable HostVM based on rIOMMU active
     - drm/amd/display: Use DC_LOG_DC in the trasform pixel function
     - regmap: cache: Return error in cache sync operations for REGCACHE_NONE
     - [arm64] dts: qcom: msm8996: Add missing DWC3 quirks
     - media: cx23885: Fix a null-ptr-deref bug in buffer_prepare() and
       buffer_finish()
     - media: pci: tw68: Fix null-ptr-deref bug in buf prepare and finish
     - ACPI: processor: Check for null return of devm_kzalloc() in
       fch_misc_setup()
     - [arm64,armhf] drm/rockchip: dw_hdmi: cleanup drm encoder during unbind
     - memstick: r592: Fix UAF bug in r592_remove due to race condition
       (CVE-2023-3141)
     - ACPI: EC: Fix oops when removing custom query handlers
     - drm/amd/display: fixed dcn30+ underflow issue
     - [armhf] remoteproc: stm32_rproc: Add mutex protection for workqueue
     - [arm64,armhf] drm/tegra: Avoid potential 32-bit integer overflow
     - [arm64] drm/msm/dp: Clean up handling of DP AUX interrupts
     - ACPICA: Avoid undefined behavior: applying zero offset to null pointer
     - ACPICA: ACPICA: check null return of ACPI_ALLOCATE_ZEROED in
       acpi_db_display_objects
     - [arm64] dts: qcom: sdm845-polaris: Drop inexistent properties
     - [arm64,armhf] irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4
     - ACPI: video: Remove desktops without backlight DMI quirks
     - drm/amd/display: Correct DML calculation to follow HW SPEC
     - drm/amd: Fix an out of bounds error in BIOS parser
     - drm/amdgpu: Fix sdma v4 sw fini error
     - [armhf] media: Prefer designated initializers over memset for subdev pad
       ops
     - wifi: ath: Silence memcpy run-time false positive warning
     - bpf: Annotate data races in bpf_local_storage
     - wifi: brcmfmac: pcie: Provide a buffer of random bytes to the device
     - wifi: brcmfmac: cfg80211: Pass the PMK in binary instead of hex
     - scsi: lpfc: Prevent lpfc_debugfs_lockstat_write() buffer overflow
     - scsi: lpfc: Correct used_rpi count when devloss tmo fires with no recovery
     - bnxt: avoid overflow in bnxt_get_nvram_directory()
     - net: Catch invalid index in XPS mapping
     - netdev: Enforce index cap in netdev_get_tx_queue
     - scsi: target: iscsit: Free cmds before session free
     - lib: cpu_rmap: Avoid use after free on rmap->obj array entries
     - scsi: message: mptlan: Fix use after free bug in mptlan_remove() due to
       race condition
     - gfs2: Fix inode height consistency check
     - [x86] scsi: ufs: ufs-pci: Add support for Intel Lunar Lake
     - ext4: set goal start correctly in ext4_mb_normalize_request
     - ext4: Fix best extent lstart adjustment logic in ext4_mb_new_inode_pa()
     - crypto: jitter - permanent and intermittent health errors
     - f2fs: Fix system crash due to lack of free space in LFS
     - f2fs: fix to drop all dirty pages during umount() if cp_error is set
     - f2fs: fix to check readonly condition correctly
     - bpf: Add preempt_count_{sub,add} into btf id deny list
     - md: fix soft lockup in status_resync
     - wifi: iwlwifi: pcie: fix possible NULL pointer dereference
     - wifi: iwlwifi: add a new PCI device ID for BZ device
     - wifi: iwlwifi: pcie: Fix integer overflow in iwl_write_to_user_buf
     - wifi: iwlwifi: mvm: fix ptk_pn memory leak
     - block, bfq: Fix division by zero error on zero wsum
     - wifi: ath11k: Ignore frags from uninitialized peer in dp.
     - wifi: iwlwifi: fix iwl_mvm_max_amsdu_size() for MLO
     - null_blk: Always check queue mode setting from configfs
     - wifi: iwlwifi: dvm: Fix memcpy: detected field-spanning write backtrace
     - wifi: ath11k: Fix SKB corruption in REO destination ring
     - nbd: fix incomplete validation of ioctl arg
     - ipvs: Update width of source for ip_vs_sync_conn_options
     - Bluetooth: btusb: Add new PID/VID 04ca:3801 for MT7663
     - Bluetooth: Add new quirk for broken local ext features page 2
     - Bluetooth: btrtl: add support for the RTL8723CS
     - Bluetooth: Improve support for Actions Semi ATS2851 based devices
     - Bluetooth: btrtl: check for NULL in btrtl_set_quirks()
     - Bluetooth: btintel: Add LE States quirk support
     - Bluetooth: hci_bcm: Fall back to getting bdaddr from EFI if not set
     - Bluetooth: Add new quirk for broken set random RPA timeout for ATS2851
     - Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
     - Bluetooth: btrtl: Add the support for RTL8851B
     - HID: apple: Set the tilde quirk flag on the Geyser 4 and later
     - [x86] ASoC: amd: yc: Add DMI entries to support HP OMEN 16-n0xxx (8A42)
     - HID: logitech-hidpp: Don't use the USB serial for USB devices
     - HID: logitech-hidpp: Reconcile USB and Unifying serials
     - [arm64,armhf] spi: spi-imx: fix MX51_ECSPI_* macros when cs > 3
     - [x86] usb: typec: ucsi: acpi: add quirk for ASUS Zenbook UM325
     - ALSA: hda: LNL: add HD Audio PCI ID
     - [x86] ASoC: amd: Add Dell G15 5525 to quirks list
     - [x86] ASoC: amd: yc: Add ThinkBook 14 G5+ ARP to quirks list for acp6x
     - [x86] HID: apple: Set the tilde quirk flag on the Geyser 3
     - [x86] HID: Ignore battery for ELAN touchscreen on ROG Flow X13 GV301RA
     - HID: wacom: generic: Set battery quirk only when we see battery data
     - usb: typec: tcpm: fix multiple times discover svids error
     - serial: 8250: Reinit port->pm on port specific driver unbind
     - [x86] soundwire: dmi-quirks: add remapping for Intel 'Rooks County' NUC
       M15
     - soundwire: qcom: gracefully handle too many ports in DT
     - soundwire: bus: Fix unbalanced pm_runtime_put() causing usage count
       underflow
     - [x86] mfd: intel_soc_pmic_chtwc: Add Lenovo Yoga Book X90F to
       intel_cht_wc_models
     - [x86] mfd: intel-lpss: Add Intel Meteor Lake PCH-S LPSS PCI IDs
     - [x86] platform/x86: Move existing HP drivers to a new hp subdir
     - [x86] hp-wmi: add micmute to hp_wmi_keymap struct
     - drm/amdgpu: drop gfx_v11_0_cp_ecc_error_irq_funcs
     - xfrm: don't check the default policy if the policy allows the packet
     - Revert "Fix XFRM-I support for nested ESP tunnels"
     - [arm64] drm/msm/dp: unregister audio driver during unbind
     - [arm64] drm/msm/dpu: Assign missing writeback log_mask
     - [arm64] drm/msm/dpu: Move non-MDP_TOP INTF_INTR offsets out of hwio header
     - [arm64] drm/msm/dpu: Remove duplicate register defines from INTF
     - platform: Provide a remove callback that returns no value
     - [arm64] ASoC: fsl_micfil: Fix error handler with pm_runtime_enable
     - cpupower: Make TSC read per CPU for Mperf monitor
     - xfrm: Reject optional tunnel/BEET mode templates in outbound policies
     - af_key: Reject optional tunnel/BEET mode templates in outbound policies
     - [arm64] drm/msm: Fix submit error-path leaks
     - [arm64,armhf] net: fec: Better handle pm_runtime_get() failing in
       .remove()
     - net: phy: dp83867: add w/a for packet errors seen with short cables
     - ALSA: firewire-digi00x: prevent potential use after free
     - wifi: mt76: connac: fix stats->tx_bytes calculation
     - [x86] ALSA: hda/realtek: Apply HP B&O top speaker profile to Pavilion 15
     - sfc: disable RXFCS and RXALL features by default
     - vsock: avoid to close connected socket after the timeout
     - tcp: fix possible sk_priority leak in tcp_v4_send_reset()
     - [armhf] serial: arc_uart: fix of_iomap leak in `arc_serial_probe`
     - erspan: get the proto with the md version for collect_md
     - [arm64] net: hns3: fix output information incomplete for dumping tx queue
       info with debugfs
     - [arm64] net: hns3: fix sending pfc frames after reset issue
     - [arm64] net: hns3: fix reset delay time to avoid configuration timeout
     - [arm64] net: hns3: fix reset timeout when enable full VF
     - media: netup_unidvb: fix use-after-free at del_timer()
     - SUNRPC: double free xprt_ctxt while still in use
     - SUNRPC: always free ctxt when freeing deferred request
     - SUNRPC: Fix trace_svc_register() call site
     - [x86] ASoC: SOF: topology: Fix logic for copying tuples
     - net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment()
     - virtio-net: Maintain reverse cleanup order
     - virtio_net: Fix error unwinding of XDP initialization
     - tipc: add tipc_bearer_min_mtu to calculate min mtu
     - tipc: do not update mtu if msg_max is too small in mtu negotiation
     - tipc: check the bearer min mtu properly when setting it by netlink
     - [s390x] cio: include subchannels without devices also for evaluation
     - can: dev: fix missing CAN XL support in can_put_echo_skb()
     - [arm64] net: bcmgenet: Remove phy_stop() from bcmgenet_netif_stop()
     - [arm64] net: bcmgenet: Restore phy_stop() depending upon suspend/close
     - ice: introduce clear_reset_state operation
     - ice: Fix ice VF reset during iavf initialization
     - wifi: cfg80211: Drop entries with invalid BSSIDs in RNR
     - wifi: mac80211: fortify the spinlock against deadlock by interrupt
     - wifi: mac80211: fix min center freq offset tracing
     - wifi: mac80211: Abort running color change when stopping the AP
     - wifi: iwlwifi: mvm: fix cancel_delayed_work_sync() deadlock
     - wifi: iwlwifi: fw: fix DBGI dump
     - wifi: iwlwifi: fix OEM's name in the ppag approved list
     - wifi: iwlwifi: mvm: fix OEM's name in the tas approved list
     - wifi: iwlwifi: mvm: don't trust firmware n_channels
     - scsi: storvsc: Don't pass unused PFNs to Hyper-V host
     - net: tun: rebuild error handling in tun_get_user
     - tun: Fix memory leak for detached NAPI queue.
     - cassini: Fix a memory leak in the error handling path of cas_init_one()
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix mv88e6393x EPC write command offset
     - igb: fix bit_shift to be in [1..8] range
     - vlan: fix a potential uninit-value in vlan_dev_hard_start_xmit()
     - net: wwan: iosm: fix NULL pointer dereference when removing device
     - net: pcs: xpcs: fix C73 AN not getting enabled
     - netfilter: nf_tables: fix nft_trans type confusion
     - netfilter: nft_set_rbtree: fix null deref on element insertion
     - ALSA: usb-audio: Add a sample rate workaround for Line6 Pod Go
     - USB: usbtmc: Fix direction for 0-length ioctl control messages
     - usb-storage: fix deadlock when a scsi command timeouts more than once
     - USB: UHCI: adjust zhaoxin UHCI controllers OverCurrent bit value
     - [arm64,armhf] usb: dwc3: gadget: Improve dwc3_gadget_suspend() and
       dwc3_gadget_resume()
     - [arm64,armhf] usb: dwc3: debugfs: Resume dwc3 before accessing registers
     - usb: gadget: u_ether: Fix host MAC address case
     - usb: typec: altmodes/displayport: fix pin_assignment_show
     - xhci-pci: Only run d3cold avoidance quirk for s2idle
     - xhci: Fix incorrect tracking of free space on transfer rings
     - ALSA: hda: Fix Oops by 9.1 surround channel names
     - ALSA: hda: Add NVIDIA codec IDs a3 through a7 to patch table
     - [x86] ALSA: hda/realtek: Add quirk for Clevo L140AU
     - [x86] ALSA: hda/realtek: Add a quirk for HP EliteDesk 805
     - [x86] ALSA: hda/realtek: Add quirk for 2nd ASUS GU603
     - [x86] ALSA: hda/realtek: Add quirk for HP EliteBook G10 laptops
     - ALSA: hda/realtek: Fix mute and micmute LEDs for yet another HP laptop
     - can: j1939: recvmsg(): allow MSG_CMSG_COMPAT flag
     - can: isotp: recvmsg(): allow MSG_CMSG_COMPAT flag
     - wifi: rtw88: use work to update rate to avoid RCU warning
     - SMB3: Close all deferred handles of inode in case of handle lease break
     - SMB3: drop reference to cfile before sending oplock break
     - ksmbd: smb2: Allow messages padded to 8byte boundary
     - ksmbd: allocate one more byte for implied bcc[0]
     - ksmbd: fix wrong UserName check in session_user
     - ksmbd: fix global-out-of-bounds in smb2_find_context_vals
     - KVM: Fix vcpu_array[0] races
     - statfs: enforce statfs[64] structure initialization
     - maple_tree: make maple state reusable after mas_empty_area()
       (Closes: #1036755)
     - mm: fix zswap writeback race condition
     - serial: Add support for Advantech PCI-1611U card
     - serial: 8250_exar: Add support for USR298x PCI Modems
     - [arm64] serial: qcom-geni: fix enabling deactivated interrupt
     - [x86] thunderbolt: Clear registers properly when auto clear isn't in use
     - vc_screen: reload load of struct vc_data pointer in vcs_write() to avoid
       UAF
     - ceph: force updating the msg pointer in non-split case
     - drm/amd/pm: fix possible power mode mismatch between driver and PMFW
     - drm/amdgpu/gmc11: implement get_vbios_fb_size()
     - drm/amdgpu/gfx10: Disable gfxoff before disabling powergating.
     - drm/amdgpu/gfx11: Adjust gfxoff before powergating on gfx11 as well
     - drm/amdgpu: refine get gpu clock counter method
     - drm/amdgpu/gfx11: update gpu_clock_counter logic
     - [powerpc*] iommu: DMA address offset is incorrectly calculated with 2MB
       TCEs
     - [powerpc*] iommu: Incorrect DDW Table is referenced for SR-IOV device
     - tpm/tpm_tis: Disable interrupts for more Lenovo devices
     - [powerpc*] 64s/radix: Fix soft dirty tracking
     - nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode()
     - [s390x] dasd: fix command reject error on ESE devices
     - [s390x] crypto: use vector instructions only if available for ChaCha20
     - [s390x] qdio: fix do_sqbs() inline assembly constraint
     - [arm64] mte: Do not set PG_mte_tagged if tags were not initialized
     - [x86] rethook: use preempt_{disable, enable}_notrace in
       rethook_trampoline_handler
     - [x86] rethook, fprobe: do not trace rethook related functions
     - crypto: testmgr - fix RNG performance in fuzz tests
     - drm/amdgpu: declare firmware for new MES 11.0.4
     - drm/amd/amdgpu: introduce gc_*_mes_2.bin v2
     - drm/amdgpu: reserve the old gc_11_0_*_mes.bin
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.31
     - [arm64,armhf] usb: dwc3: fix gadget mode suspend interrupt handler issue
     - tpm, tpm_tis: Avoid cache incoherency in test for interrupts
     - tpm, tpm_tis: Only handle supported interrupts
     - tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume
     - tpm, tpm_tis: startup chip before testing for interrupts
     - tpm: Re-enable TPM chip boostrapping non-tpm_tis TPM drivers
     - tpm: Prevent hwrng from activating during resume
     - [x86] watchdog: sp5100_tco: Immediately trigger upon starting.
     - drm/amd/amdgpu: update mes11 api def
     - drm/amdgpu/mes11: enable reg active poll
     - skbuff: Proactively round up to kmalloc bucket size
     - [arm64,armhf] net: dsa: mv88e6xxx: Add RGMII delay to 88E6320
     - drm/amd/display: hpd rx irq not working with eDP interface
     - ocfs2: Switch to security_inode_init_security()
     - [x86] mm: Avoid incomplete Global INVLPG flushes
     - [x86] ALSA: hda/ca0132: add quirk for EVGA X299 DARK
     - ALSA: hda: Fix unhandled register update during auto-suspend period
     - [x86] ALSA: hda/realtek: Enable headset onLenovo M70/M90
     - SUNRPC: Don't change task->tk_status after the call to rpc_exit_task
     - [arm64,armhf] imc: sdhci-esdhc-imx: make "no-mmc-hs400" works
     - mmc: block: ensure error propagation for non-blk
     - [x86] power: supply: axp288_fuel_gauge: Fix external_power_changed race
     - [arm64] power: supply: bq25890: Fix external_power_changed race
     - ASoC: rt5682: Disable jack detection interrupt during suspend
     - net: cdc_ncm: Deal with too low values of dwNtbOutMaxSize
     - btrfs: use nofs when cleaning up aborted transactions
     - [x86] drm/mgag200: Fix gamma lut not initialized.
     - drm/radeon: reintroduce radeon_dp_work_func content
     - drm/amd/pm: add missing NotifyPowerSource message mapping for SMU13.0.7
     - drm/amd/pm: Fix output of pp_od_clk_voltage
     - Revert "binder_alloc: add missing mmap_lock calls when using the VMA"
     - Revert "android: binder: stop saving a pointer to the VMA"
     - binder: add lockless binder_alloc_(set|get)_vma()
     - binder: fix UAF caused by faulty buffer cleanup
     - binder: fix UAF of alloc->vma in race with munmap()
     - drm/amd/amdgpu: limit one queue per gang
     - [x86] perf/x86/uncore: Correct the number of CHAs on SPR
     - [x86] topology: Fix erroneous smp_num_siblings on Intel Hybrid platforms
     - [mips*] irqchip/mips-gic: Don't touch vl_map if a local interrupt is not
       routable
     - [mips*] irqchip/mips-gic: Use raw spinlock for gic_lock
     - debugobjects: Don't wake up kswapd from fill_pool()
     - fbdev: udlfb: Fix endpoint check
     - net: fix stack overflow when LRO is disabled for virtual interfaces
     - udplite: Fix NULL pointer dereference in __sk_mem_raise_allocated().
     - USB: core: Add routines for endpoint checks in old drivers
     - USB: sisusbvga: Add endpoint checks
     - media: radio-shark: Add endpoint checks
     - net: fix skb leak in __skb_tstamp_tx()
     - drm: fix drmm_mutex_init()
     - bpf: Fix mask generation for 32-bit narrow loads of 64-bit fields
     - bpf: fix a memory leak in the LRU and LRU_PERCPU hash maps
     - ipv6: Fix out-of-bounds access in ipv6_find_tlv()
     - cifs: mapchars mount option ignored
     - power: supply: leds: Fix blink to LED on transition
     - power: supply: bq27xxx: Fix bq27xxx_battery_update() race condition
     - power: supply: bq27xxx: Fix I2C IRQ race on remove
     - power: supply: bq27xxx: Fix poll_interval handling and races on remove
     - power: supply: bq27xxx: Add cache parameter to
       bq27xxx_battery_current_and_status()
     - power: supply: bq27xxx: Move bq27xxx_battery_update() down
     - power: supply: bq27xxx: Ensure power_supply_changed() is called on current
       sign changes
     - power: supply: bq27xxx: After charger plug in/out wait 0.5s for things to
       stabilize
     - [arm64] power: supply: bq25890: Call power_supply_changed() after updating
       input current or voltage
     - [x86] power: supply: bq24190: Call power_supply_changed() after updating
       input current
     - [arm64] optee: fix uninited async notif value
     - fs: fix undefined behavior in bit shift for SB_NOUSER
     - [arm64] regulator: pca9450: Fix BUCK2 enable_mask
     - [x86] platform/x86: ISST: Remove 8 socket limit
     - [armhf] dts: imx6qdl-mba6: Add missing pvcie-supply regulator
     - [x86] pci/xen: populate MSI sysfs entries
     - [x86] show_trace_log_lvl: Ensure stack pointer is aligned, again
     - [x86] ASoC: Intel: Skylake: Fix declaration of enum skl_ch_cfg
     - cxl: Wait Memory_Info_Valid before access memory related info
     - sctp: fix an issue that plpmtu can never go to complete state
     - [x86] forcedeth: Fix an error handling path in nv_probe()
     - net/mlx5e: Fix SQ wake logic in ptp napi_poll context
     - net/mlx5e: Fix deadlock in tc route query code
     - net/mlx5e: Use correct encap attribute during invalidation
     - net/mlx5e: do as little as possible in napi poll when budget is 0
     - [s390x] net/mlx5: DR, Fix crc32 calculation to work on big-endian (BE)
       CPUs
     - net/mlx5: Handle pairing of E-switch via uplink un/load APIs
     - net/mlx5: DR, Check force-loopback RC QP capability independently from
       RoCE
     - net/mlx5: Fix error message when failing to allocate device memory
     - net/mlx5: Collect command failures data only for known commands
     - net/mlx5: Devcom, fix error flow in mlx5_devcom_register_device
     - net/mlx5: Devcom, serialize devcom registration
     - [arm64] dts: imx8mn-var-som: fix PHY detection bug by adding deassert
       delay
     - net/smc: Reset connection when trying to use SMCRv2 fails.
     - [x86] 3c589_cs: Fix an error handling path in tc589_probe()
     - net: phy: mscc: add VSC8502 to MODULE_DEVICE_TABLE
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.32
     - inet: Add IP_LOCAL_PORT_RANGE socket option
     - ipv{4,6}/raw: fix output xfrm lookup wrt protocol
     - tls: rx: device: fix checking decryption status
     - tls: rx: strp: set the skb->len of detached / CoW'ed skbs
     - tls: rx: strp: fix determining record length in copy mode
     - tls: rx: strp: force mixed decrypted records into copy mode
     - tls: rx: strp: factor out copying skb data
     - tls: rx: strp: preserve decryption status of skbs when needed
     - net/mlx5: E-switch, Devcom, sync devcom events and devcom comp register
     - [x86] gpio-f7188x: fix chip name and pin count on Nuvoton chip
     - bpf, sockmap: Pass skb ownership through read_skb
     - bpf, sockmap: Convert schedule_work into delayed_work
     - bpf, sockmap: Reschedule is now done through backlog
     - bpf, sockmap: Improved check for empty queue
     - bpf, sockmap: Handle fin correctly
     - bpf, sockmap: TCP data stall on recv before accept
     - bpf, sockmap: Wake up polling after data copy
     - bpf, sockmap: Incorrectly handling copied_seq
     - blk-mq: fix race condition in active queue accounting
     - vfio/type1: check pfn valid before converting to struct page
     - net: page_pool: use in_softirq() instead
     - page_pool: fix inconsistency for page_pool_ring_[un]lock()
     - net: phy: mscc: enable VSC8501/2 RGMII RX clock
     - wifi: iwlwifi: mvm: support wowlan info notification version 2
     - wifi: iwlwifi: mvm: fix potential memory leak
     - RDMA/rxe: Fix the error "trying to register non-static key in
       rxe_cleanup_task"
     - drm/amd: Don't allow s0ix on APUs older than Raven
     - bluetooth: Add cmd validity checks at the start of hci_sock_ioctl()
     - block: fix bio-cache for passthru IO
     - [x86] cpufreq: amd-pstate: Update policy->cur in amd_pstate_adjust_perf()
     - [x86] cpufreq: amd-pstate: Add ->fast_switch() callback
     - netfilter: ctnetlink: Support offloaded conntrack entry deletion
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.33
     - [arm64,armhf] phy: amlogic: phy-meson-g12a-mipi-dphy-analog: fix
       CNTL2_DIF_TX_CTL0 value
     - [arm64] RDMA/hns: Fix timeout attr in query qp for HIP08
     - [arm64] RDMA/hns: Fix base address table allocation
     - [arm64] RDMA/hns: Modify the value of long message loopback slice
     - [arm64,armhf] iommu/rockchip: Fix unwind goto issue
     - [amd64] iommu/amd: Don't block updates to GATag if guest mode is on
     - [amd64] iommu/amd: Handle GALog overflows
     - [amd64] iommu/amd: Fix up merge conflict resolution
     - nfsd: make a copy of struct iattr before calling notify_change
     - net/mlx5: Drain health before unregistering devlink
     - net/mlx5: SF, Drain health before removing device
     - net/mlx5: fw_tracer, Fix event handling
     - net/mlx5e: Don't attach netdev profile while handling internal error
     - netrom: fix info-leak in nr_write_internal()
     - af_packet: Fix data-races of pkt_sk(sk)->num.
     - tls: improve lockless access safety of tls_err_abort()
     - [amd64,arm64] amd-xgbe: fix the false linkup in xgbe_phy_status
     - perf ftrace latency: Remove unnecessary "--" from --use-nsec option
     - RDMA/irdma: Prevent QP use after free
     - RDMA/irdma: Fix Local Invalidate fencing
     - af_packet: do not use READ_ONCE() in packet_bind()
     - tcp: deny tcp_disconnect() when threads are waiting
     - tcp: Return user_mss for TCP_MAXSEG in CLOSE/LISTEN state if user_mss set
     - net/smc: Scan from current RMB list when no position specified
     - net/smc: Don't use RMBs not mapped to new link in SMCRv2 ADD LINK
     - net/sched: sch_ingress: Only create under TC_H_INGRESS
     - net/sched: sch_clsact: Only create under TC_H_CLSACT
     - net/sched: Reserve TC_H_INGRESS (TC_H_CLSACT) for ingress (clsact) Qdiscs
     - net/sched: Prohibit regrafting ingress or clsact Qdiscs
     - net: sched: fix NULL pointer dereference in mq_attach
     - net/netlink: fix NETLINK_LIST_MEMBERSHIPS length report
     - udp6: Fix race condition in udp6_sendmsg & connect
     - nfsd: fix double fget() bug in __write_ports_addfd()
     - nvme: fix the name of Zone Append for verbose logging
     - net/mlx5e: Fix error handling in mlx5e_refresh_tirs
     - net/mlx5: Read embedded cpu after init bit cleared
     - net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
       (CVE-2023-35788)
     - tcp: fix mishandling when the sack compression is deferred.
     - [arm64,armhf] net: dsa: mv88e6xxx: Increase wait after reset deactivation
     - [armhf] mtd: rawnand: marvell: ensure timing values are written
     - [armhf] mtd: rawnand: marvell: don't set the NAND frequency select
     - rtnetlink: call validate_linkmsg in rtnl_create_link
     - mptcp: avoid unneeded __mptcp_nmpc_socket() usage
     - mptcp: add annotations around msk->subflow accesses
     - mptcp: avoid unneeded address copy
     - mptcp: simplify subflow_syn_recv_sock()
     - mptcp: consolidate passive msk socket initialization
     - mptcp: fix data race around msk->first access
     - mptcp: add annotations around sk->sk_shutdown accesses
     - drm/amdgpu: release gpu full access after "amdgpu_device_ip_late_init"
     - ALSA: hda: Glenfly: add HD Audio PCI IDs and HDMI Codec Vendor IDs.
     - [x86] ASoC: Intel: soc-acpi-cht: Add quirk for Nextbook Ares 8A tablet
     - drm/amdgpu: Use the default reset when loading or reloading the driver
     - [arm64] drm/ast: Fix ARM compatibility
     - btrfs: abort transaction when sibling keys check fails for leaves
     - [armel,armhf] ARM: 9295/1: unwind:fix unwind abort for uleb128 case
     - [x86] hwmon: (k10temp) Add PCI ID for family 19, model 78h
     - gfs2: Don't deref jdesc in evict (CVE-2023-3212)
     - drm/amdgpu: set gfx9 onwards APU atomics support to be true
     - fbdev: modedb: Add 1920x1080 at 60 Hz video mode
     - nbd: Fix debugfs_create_dir error checking
     - nvme-pci: add NVME_QUIRK_BOGUS_NID for HS-SSD-FUTURE 2048G
     - nvme-pci: add quirk for missing secondary temperature thresholds
     - [x86] ASoC: amd: yc: Add DMI entry to support System76 Pangolin 12
     - xfrm: Check if_id in inbound policy/secpath match
     - [x86] ALSA: hda/realtek: Add quirks for ASUS GU604V and GU603V
     - media: dvb_demux: fix a bug for the continuity counter
     - media: dvb-usb: az6027: fix three null-ptr-deref in az6027_i2c_xfer()
     - media: dvb-usb-v2: ec168: fix null-ptr-deref in ec168_i2c_xfer()
     - media: dvb-usb-v2: ce6230: fix null-ptr-deref in ce6230_i2c_master_xfer()
     - media: dvb-usb-v2: rtl28xxu: fix null-ptr-deref in rtl28xxu_i2c_xfer
     - media: dvb-usb: digitv: fix null-ptr-deref in digitv_i2c_xfer()
     - media: dvb-usb: dw2102: fix uninit-value in su3000_read_mac_address
     - media: netup_unidvb: fix irq init by register it at the end of probe
     - media: dvb_ca_en50221: fix a size write bug
     - media: ttusb-dec: fix memory leak in ttusb_dec_exit_dvb()
     - media: dvb-core: Fix use-after-free due on race condition at dvb_net
     - media: dvb-core: Fix use-after-free due to race at dvb_register_device()
     - media: dvb-core: Fix kernel WARNING for blocking operation in
       wait_event*() (CVE-2023-31084)
     - media: dvb-core: Fix use-after-free due to race condition at
       dvb_ca_en50221
     - [x86] ASoC: SOF: debug: conditionally bump runtime_pm counter on
       exceptions
     - [x86] ASoC: SOF: pcm: fix pm_runtime imbalance in error handling
     - [x86] ASoC: SOF: sof-client-probes: fix pm_runtime imbalance in error
       handling
     - [x86] ASoC: SOF: pm: save io region state in case of errors in resume
     - [s390x] topology: honour nr_cpu_ids when adding CPUs
     - ACPI: resource: Add IRQ override quirk for LG UltraPC 17U70P
     - wifi: rtl8xxxu: fix authentication timeout due to incorrect RCR value
     - [arm64] mm: mark private VM_FAULT_X defines as vm_fault_t
     - [arm64] vdso: Pass (void *) to virt_to_page()
     - wifi: mac80211: simplify chanctx allocation
     - wifi: mac80211: consider reserved chanctx for mindef
     - wifi: mac80211: recalc chanctx mindef before assigning
     - wifi: iwlwifi: mvm: Add locking to the rate read flow
     - scsi: core: Decrease scsi_device's iorequest_cnt if dispatch failed
     - nvme-multipath: don't call blk_mark_disk_dead in nvme_mpath_remove_disk
     - nvme: do not let the user delete a ctrl before a complete initialization
     - [arm64] drm/msm: Be more shouty if per-process pgtables aren't working
     - ceph: silence smatch warning in reconnect_caps_cb()
     - drm/amdgpu: skip disabling fence driver src_irqs when device is unplugged
     - nvme-pci: Add quirk for Teamgroup MP33 SSD
     - block: Deny writable memory mapping if block is read-only
     - [arm64] KVM: arm64: vgic: Fix a circular locking issue
     - [arm64] KVM: arm64: vgic: Wrap vgic_its_create() with config_lock
     - [arm64] KVM: arm64: vgic: Fix locking comment
     - drivers: base: cacheinfo: Fix shared_cpu_map changes in event of CPU
       hotplug
     - media: uvcvideo: Don't expose unsupported formats to userspace
     - iio: accel: st_accel: Fix invalid mount_matrix on devices without ACPI
       _ONT method
     - HID: google: add jewel USB id
     - HID: wacom: avoid integer overflow in wacom_intuos_inout()
     - iio: imu: inv_icm42600: fix timestamp reset
     - iio: light: vcnl4035: fixed chip ID check
     - iio: adc: ad_sigma_delta: Fix IRQ issue by setting IRQ_DISABLE_UNLAZY flag
     - iio: dac: mcp4725: Fix i2c_master_send() return value handling
     - iio: adc: ad7192: Change "shorted" channels to differential
     - net: usb: qmi_wwan: Set DTR quirk for BroadMobi BM818
     - usb: gadget: f_fs: Add unbind event before functionfs_unbind
     - md/raid5: fix miscalculation of 'end_sector' in raid5_read_one_chunk()
     - ata: libata-scsi: Use correct device no in ata_find_dev()
     - drm/amdgpu: enable tmz by default for GC 11.0.1
     - drm/amd/pm: reverse mclk and fclk clocks levels for SMU v13.0.4
     - drm/amd/pm: reverse mclk and fclk clocks levels for vangogh
     - drm/amd/pm: resolve reboot exception for si oland
     - drm/amd/pm: reverse mclk clocks levels for SMU v13.0.5
     - drm/amd/pm: reverse mclk and fclk clocks levels for yellow carp
     - drm/amd/pm: reverse mclk and fclk clocks levels for renoir
     - [x86] mtrr: Revert 90b926e68f50 ("x86/pat: Fix pat_x_mtrr_type() for MTRR
       disabled case")
     - mmc: vub300: fix invalid response handling
     - [armhf] mmc: pwrseq: sd8787: Fix WILC CHIP_EN and RESETN toggling order
     - [arm64] tty: serial: fsl_lpuart: use UARTCTRL_TXINV to send break instead
       of UARTCTRL_SBK
     - btrfs: fix csum_tree_block page iteration to avoid tripping on
       -Werror=array-bounds
     - [arm64] phy: qcom-qmp-combo: fix init-count imbalance
     - [arm64] phy: qcom-qmp-pcie-msm8996: fix init-count imbalance
     - block: fix revalidate performance regression
     - [powerpc*] iommu: Limit number of TCEs to 512 for H_STUFF_TCE hcall
     - [amd64] iommu/amd: Fix domain flush size when syncing iotlb
     - tpm, tpm_tis: correct tpm_tis_flags enumeration values
     - io_uring: undeprecate epoll_ctl support
     - mtdchar: mark bits of ioctl handler noinline
     - [rt] tracing/timerlat: Always wakeup the timerlat thread
     - tracing/histograms: Allow variables to have some modifiers
     - tracing/probe: trace_probe_primary_from_call(): checked list_first_entry
     - mptcp: fix connect timeout handling
     - mptcp: fix active subflow finalization
     - ext4: add EA_INODE checking to ext4_iget()
     - ext4: disallow ea_inodes with extended attributes
     - fbcon: Fix null-ptr-deref in soft_cursor
     - [arm64,armhf] serial: 8250_tegra: Fix an error handling path in
       tegra_uart_probe()
     - [powerpc*] xmon: Use KSYM_NAME_LEN in array size
     - [arm64] KVM: arm64: Populate fault info for watchpoint
     - [x86] KVM: x86: Account fastpath-only VM-Exits in vCPU stats
     - ksmbd: fix credit count leakage
     - ksmbd: fix UAF issue from opinfo->conn
     - ksmbd: fix incorrect AllocationSize set in smb2_get_info
     - ksmbd: fix slab-out-of-bounds read in smb2_handle_negotiate
     - ksmbd: fix multiple out-of-bounds read during context decoding
     - KEYS: asymmetric: Copy sig and digest in public_key_verify_signature()
     - fs/ntfs3: Validate MFT flags before replaying logs (CVE-2022-48425)
     - regmap: Account for register length when chunking
     - tpm, tpm_tis: Request threaded interrupt handler
     - [amd64] iommu/amd/pgtbl_v2: Fix domain max address
     - drm/amd/display: Have Payload Properly Created After Resume
     - xfs: verify buffer contents when we skip log replay (CVE-2023-2124)
     - tls: rx: strp: don't use GFP_KERNEL in softirq context
     - [arm64] efi: Use SMBIOS processor version to key off Ampere quirk
     - ext4: enable the lazy init thread when remounting read/write
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.34
     - scsi: megaraid_sas: Add flexible array member for SGLs
     - net: sfp: fix state loss when updating state_hw_mask
     - [x86] platform/surface: aggregator: Allow completion work-items to be
       executed in parallel
     - [x86] platform/surface: aggregator_tabletsw: Add support for book mode in
       KIP subsystem
     - [arm64] spi: qup: Request DMA before enabling clocks
     - afs: Fix setting of mtime when creating a file/dir/symlink
     - wifi: mt76: mt7615: fix possible race in mt7615_mac_sta_poll
     - bpf, sockmap: Avoid potential NULL dereference in
       sk_psock_verdict_data_ready()
     - neighbour: fix unaligned access to pneigh_entry
     - net/ipv4: ping_group_range: allow GID from 2147483648 to 4294967294
     - bpf: Fix UAF in task local storage
     - bpf: Fix elem_size not being set for inner maps
     - net/ipv6: fix bool/int mismatch for skip_notify_on_dev_down
     - net/smc: Avoid to access invalid RMBs' MRs in SMCRv1 ADD LINK CONT
     - [arm64] net: enetc: correct the statistics of rx bytes
     - [arm64] net: enetc: correct rx_bytes statistics of XDP
     - net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
     - [x86] drm/i915: Explain the magic numbers for AUX SYNC/precharge length
     - [x86] drm/i915: Use 18 fast wake AUX sync len
     - Bluetooth: hci_sync: add lock to protect HCI_UNREGISTER
     - Bluetooth: Fix l2cap_disconnect_req deadlock
     - Bluetooth: ISO: don't try to remove CIG if there are bound CIS left
     - Bluetooth: L2CAP: Add missing checks for invalid DCID
     - wifi: mac80211: use correct iftype HE cap
     - wifi: cfg80211: reject bad AP MLD address
     - wifi: mac80211: mlme: fix non-inheritence element
     - wifi: mac80211: don't translate beacon/presp addrs
     - qed/qede: Fix scheduling while atomic
     - wifi: cfg80211: fix locking in sched scan stop work
     - netfilter: nft_bitwise: fix register tracking
     - netfilter: conntrack: fix NULL pointer dereference in nf_confirm_cthelper
     - netfilter: ipset: Add schedule point in call_ad().
     - netfilter: nf_tables: out-of-bound check in chain blob
     - ipv6: rpl: Fix Route of Death. (CVE-2023-2156)
     - tcp: gso: really support BIG TCP
     - rfs: annotate lockless accesses to sk->sk_rxhash
     - rfs: annotate lockless accesses to RFS sock flow table
     - net: sched: add rcu annotations around qdisc->qdisc_sleeping
     - net: sched: move rtm_tca_policy declaration to include file
     - net: sched: act_police: fix sparse errors in tcf_police_dump()
     - net: sched: fix possible refcount leak in tc_chain_tmplt_add()
     - bpf: Add extra path pointer check to d_path helper
     - drm/amdgpu: fix Null pointer dereference error in
       amdgpu_device_recover_vram
     - lib: cpu_rmap: Fix potential use-after-free in irq_cpu_rmap_release()
     - [arm64] net: bcmgenet: Fix EEE implementation
     - bnxt_en: Don't issue AP reset during ethtool's reset operation
     - bnxt_en: Query default VLAN before VNIC setup on a VF
     - bnxt_en: Skip firmware fatal error recovery if chip is not accessible
     - bnxt_en: Prevent kernel panic when receiving unexpected PHC_UPDATE event
     - bnxt_en: Implement .set_port / .unset_port UDP tunnel callbacks
     - batman-adv: Broken sync while rescheduling delayed work
     - Input: xpad - delete a Razer DeathAdder mouse VID/PID entry
     - Input: psmouse - fix OOB access in Elantech protocol
     - Input: fix open count when closing inhibited device
     - ALSA: hda: Fix kctl->id initialization
     - ALSA: ymfpci: Fix kctl->id initialization
     - [i386] ALSA: gus: Fix kctl->id initialization
     - ALSA: cmipci: Fix kctl->id initialization
     - [x86] ALSA: hda/realtek: Add quirk for Clevo NS50AU
     - ALSA: ice1712,ice1724: fix the kcontrol->id initialization
     - [x86] ALSA: hda/realtek: Add a quirk for HP Slim Desktop S01
     - [x86] ALSA: hda/realtek: Add Lenovo P3 Tower platform
     - [x86] ALSA: hda/realtek: Add quirks for Asus ROG 2024 laptops using
       CS35L41
     - [x86] drm/i915/gt: Use the correct error value when kernel_context() fails
     - drm/amd/pm: conditionally disable pcie lane switching for some
       sienna_cichlid SKUs
     - drm/amdgpu: fix xclk freq on CHIP_STONEY
     - drm/amdgpu: change reserved vram info print
     - drm/amd/pm: Fix power context allocation in SMU13
     - drm/amd/display: Reduce sdp bw after urgent to 90%
     - wifi: iwlwifi: mvm: Fix -Warray-bounds bug in iwl_mvm_wait_d3_notif()
     - can: j1939: j1939_sk_send_loop_abort(): improved error queue handling in
       J1939 Socket
     - can: j1939: change j1939_netdev_lock type to mutex
     - can: j1939: avoid possible use-after-free when j1939_can_rx_register fails
     - mptcp: only send RM_ADDR in nl_cmd_remove
     - mptcp: add address into userspace pm list
     - mptcp: update userspace pm infos
     - ceph: fix use-after-free bug for inodes when flushing capsnaps
     - [s390x] dasd: Use correct lock while counting channel queue length
     - Bluetooth: Fix use-after-free in hci_remove_ltk/hci_remove_irk
     - Bluetooth: fix debugfs registration
     - Bluetooth: hci_qca: fix debugfs registration
     - rbd: move RBD_OBJ_FLAG_COPYUP_ENABLED flag setting
     - rbd: get snapshot context after exclusive lock is ensured to be held
     - virtio_net: use control_buf for coalesce params
     - [arm64] pinctrl: meson-axg: add missing GPIOA_18 gpio group
     - usb: usbfs: Enforce page requirements for mmap
     - usb: usbfs: Use consistent mmap functions
     - [arm64] dts: imx8qm-mek: correct GPIOs for USDHC2 CD and WP signals
     - [arm*] ASoC: simple-card-utils: fix PCM constraint error check
     - blk-mq: fix blk_mq_hw_ctx active request accounting
     - [arm64] dts: imx8mn-beacon: Fix SPI CS pinmux
     - [arm*] i2c: mv64xxx: Fix reading invalid status value in atomic mode
     - soundwire: stream: Add missing clear of alloc_slave_rt
     - vhost: support PACKED when setting-getting vring_base
     - ksmbd: fix out-of-bound read in deassemble_neg_contexts()
     - ksmbd: fix out-of-bound read in parse_lease_state()
     - ksmbd: check the validation of pdu_size in ksmbd_conn_handler_loop
     - ext4: only check dquot_initialize_needed() when debugging
     - wifi: rtw89: correct PS calculation for SUPPORTS_DYNAMIC_PS
     - wifi: rtw88: correct PS calculation for SUPPORTS_DYNAMIC_PS
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.35
     - [amd64] x86/head/64: Switch to KERNEL_CS as soon as new GDT is installed
     - cgroup: bpf: use cgroup_lock()/cgroup_unlock() wrappers
     - cgroup: always put cset in cgroup_css_set_put_fork
     - cgroup: fix missing cpus_read_{lock,unlock}() in cgroup_transfer_tasks()
     - EDAC/qcom: Get rid of hardcoded register offsets
     - ksmbd: validate smb request protocol id
     - of: overlay: Fix missing of_node_put() in error case of
       init_overlay_changeset()
     - power: supply: bq27xxx: Use mod_delayed_work() instead of cancel() +
       schedule()
     - [armhf] dts: vexpress: add missing cache properties
     - power: supply: Ratelimit no data debug output
     - PCI/DPC: Quirk PIO log size for Intel Ice Lake Root Ports
     - [x86] platform/x86: asus-wmi: Ignore WMI events with codes 0x7B, 0xC0
     - regulator: Fix error checking for debugfs_create_dir
     - [arm64,armhf] irqchip/gic-v3: Disable pseudo NMIs on Mediatek devices w/
       firmware issues
     - [arm64,armhf] irqchip/meson-gpio: Mark OF related data as maybe unused
     - power: supply: Fix logic checking if system is running from battery
     - drm: panel-orientation-quirks: Change Air's quirk to support Air Plus
     - btrfs: scrub: try harder to mark RAID56 block groups read-only
     - btrfs: handle memory allocation failure in btrfs_csum_one_bio
     - ASoC: soc-pcm: test if a BE can be prepared
     - [mips*] unhide PATA_PLATFORM
     - [mips*] Restore Au1300 support
     - [mips*] Move initrd_start check after initrd address sanitisation.
     - ASoC: cs35l41: Fix default regmap values for some registers
     - ASoC: dwc: move DMA init to snd_soc_dai_driver probe()
     - xen/blkfront: Only check REQ_FUA for writes
     - drm:amd:amdgpu: Fix missing buffer object unlock in failure path
     - io_uring: unlock sqd->lock before sq thread release CPU
     - NVMe: Add MAXIO 1602 to bogus nid list.
     - [arm64,armhf] irqchip/gic: Correctly validate OF quirk descriptors
     - wifi: cfg80211: fix locking in regulatory disconnect
     - wifi: cfg80211: fix double lock bug in reg_wdev_chan_valid()
     - epoll: ep_autoremove_wake_function should use list_del_init_careful
     - ocfs2: fix use-after-free when unmounting read-only filesystem
     - ocfs2: check new file size on fallocate call
     - zswap: do not shrink if cgroup may not zswap
     - nilfs2: fix incomplete buffer cleanup in nilfs_btnode_abort_change_key()
     - nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
     - nilfs2: reject devices with insufficient block count
     - io_uring/net: save msghdr->msg_control for retries
     - kexec: support purgatories with .text.hot sections
     - [x86] purgatory: remove PGO flags
     - [powerpc*] purgatory: remove PGO flags
     - btrfs: do not ASSERT() on duplicated global roots
     - btrfs: fix iomap_begin length for nocow writes
     - btrfs: can_nocow_file_extent should pass down args->strict from callers
     - ALSA: usb-audio: Fix broken resume due to UAC3 power state
     - ALSA: usb-audio: Add quirk flag for HEM devices to enable native DSD
       playback
     - dm thin metadata: check fail_io before using data_sm
     - dm thin: fix issue_discard to pass GFP_NOIO to __blkdev_issue_discard
     - net: ethernet: stmicro: stmmac: fix possible memory leak in __stmmac_open
     - nouveau: fix client work fence deletion race
     - RDMA/uverbs: Restrict usage of privileged QKEYs
     - drm/amdgpu: vcn_4_0 set instance 0 init sched score to 1
     - net: usb: qmi_wwan: add support for Compal RXM-G1
     - drm/amd/display: edp do not add non-edid timings
     - drm/amd: Make sure image is written to trigger VBIOS image update flow
     - drm/amd: Tighten permissions on VBIOS flashing attributes
     - drm/amd/pm: workaround for compute workload type on some skus
     - drm/amdgpu: add missing radeon secondary PCI ID
     - ALSA: hda/realtek: Add a quirk for Compaq N14JP6
     - [x86] thunderbolt: Do not touch CL state configuration during discovery
     - [x86] thunderbolt: dma_test: Use correct value for absent rings when
       creating paths
     - [x86] thunderbolt: Mask ring interrupt on Intel hardware as well
     - USB: serial: option: add Quectel EM061KGL series
     - usb: typec: ucsi: Fix command cancellation
     - usb: typec: Fix fast_role_swap_current show function
     - usb: gadget: udc: core: Offload usb_udc_vbus_handler processing
     - usb: gadget: udc: core: Prevent soft_connect_store() race
     - [arm64] USB: dwc3: qcom: fix NULL-deref on suspend
     - [arm64,armhf] USB: dwc3: fix use-after-free on core driver unbind
     - [arm64,armhf] usb: dwc3: gadget: Reset num TRBs before giving back the
       request
     - RDMA/rxe: Fix packet length checks
     - RDMA/rxe: Fix ref count error in check_rkey()
     - spi: cadence-quadspi: Add missing check for dma_set_mask
     - [arm64] spi: fsl-dspi: avoid SCK glitches with continuous transfers
     - netfilter: nf_tables: integrate pipapo into commit protocol
     - netfilter: nfnetlink: skip error delivery on batch in case of ENOMEM
     - ice: Fix XDP memory leak when NIC is brought up and down
     - netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
       (CVE-2023-3390)
     - [arm64] net: enetc: correct the indexes of highest and 2nd highest TCs
     - ping6: Fix send to link-local addresses with VRF.
     - igb: Fix extts capture value format for 82580/i354/i350
     - net/sched: simplify tcf_pedit_act
     - net/sched: act_pedit: remove extra check for key type
     - net/sched: act_pedit: Parse L3 Header for L4 offset
     - net/sched: cls_u32: Fix reference counter leak leading to overflow
     - wifi: mac80211: fix link activation settings order
     - wifi: cfg80211: fix link del callback to call correct handler
     - wifi: mac80211: take lock before setting vif links
     - RDMA/rxe: Removed unused name from rxe_task struct
     - RDMA/rxe: Fix the use-before-initialization error of resp_pkts
     - iavf: remove mask from iavf_irq_enable_queues()
     - RDMA/mlx5: Initiate dropless RQ for RAW Ethernet functions
     - RDMA/mlx5: Create an indirect flow table for steering anchor
     - RDMA/cma: Always set static rate to 0 for RoCE
     - IB/uverbs: Fix to consider event queue closing also upon non-blocking mode
     - RDMA/mlx5: Fix affinity assignment
     - IB/isert: Fix dead lock in ib_isert
     - IB/isert: Fix possible list corruption in CMA handler
     - IB/isert: Fix incorrect release of isert connection
     - net: ethtool: correct MAX attribute value for stats
     - ipvlan: fix bound dev checking for IPv6 l3s mode
     - sctp: fix an error code in sctp_sf_eat_auth()
     - igc: Clean the TX buffer and TX descriptor ring
     - igc: Fix possible system crash when loading module
     - igb: fix nvm.ops.read() error handling
     - net: phylink: report correct max speed for QUSGMII
     - net: phylink: use a dedicated helper to parse usgmii control word
     - drm/nouveau: don't detect DSM for non-NVIDIA device
     - [arm64] drm/bridge: ti-sn65dsi86: Avoid possible buffer overflow
     - drm/nouveau/dp: check for NULL nv_connector->native_mode
     - drm/nouveau: add nv_encoder pointer check for NULL
     - sched: add new attr TCA_EXT_WARN_MSG to report tc extact message
     - net/sched: Refactor qdisc_graft() for ingress and clsact Qdiscs
     - net/sched: qdisc_destroy() old ingress and clsact Qdiscs before grafting
     - cifs: fix lease break oops in xfstest generic/098
     - ext4: drop the call to ext4_error() from ext4_get_group_info()
     - net/sched: cls_api: Fix lockup on flushing explicitly created chain
     - [arm64] net: dsa: felix: fix taprio guard band overflow at 10Mbps with
       jumbo frames
     - net: macsec: fix double free of percpu stats
     - sfc: fix XDP queues mode with legacy IRQ
     - dm: don't lock fs when the map is NULL during suspend or resume
     - net: tipc: resize nlattr array to correct size
     - afs: Fix vlserver probe RTT handling
     - rcu/kvfree: Avoid freeing new kfree_rcu() memory after old grace period
     - drm/amdgpu: Don't set struct drm_driver.output_poll_changed
     - net/sched: act_api: move TCA_EXT_WARN_MSG to the correct hierarchy
     - Revert "net/sched: act_api: move TCA_EXT_WARN_MSG to the correct
       hierarchy"
     - net/sched: act_api: add specific EXT_WARN_MSG for tc action
     - neighbour: delete neigh_lookup_nodev as not used
     - scsi: target: core: Fix error path in target_setup_session()
     - [mips*] Move '-Wa,-msoft-float' check from as-option to cc-option
     - [mips*] Prefer cc-option for additions to cflags
     - kbuild: Update assembler calls to use proper flags and language target
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.36
     - drm/amd/display: Use dc_update_planes_and_stream
     - drm/amd/display: Add wrapper to call planes and stream update
     - drm/amd/display: fix the system hang while disable PSR
     - [arm64] tty: serial: fsl_lpuart: make rx_watermark configurable for
       different platforms
     - [arm64] tty: serial: fsl_lpuart: reduce RX watermark to 0 on LS1028A
     - ata: libata-scsi: Avoid deadlock on rescan after device resume
     - mm: Fix copy_from_user_nofault(). (Closes: #1033398)
     - tpm, tpm_tis: Claim locality in interrupt handler
     - tpm_crb: Add support for CRB devices based on Pluton
     - ksmbd: validate command payload size
     - ksmbd: fix out-of-bound read in smb2_write
     - ksmbd: validate session id and tree id in the compound request
     - tick/common: Align tick period during sched_timer setup (Closes: #1038754)
     - writeback: fix dereferencing NULL mapping->host on writeback_page_template
     - nilfs2: fix buffer corruption due to concurrent device reads
     - [x86] ACPI: sleep: Avoid breaking S3 wakeup due to might_sleep()
     - KVM: Avoid illegal stage2 mapping on invalid memory slot
     - Drivers: hv: vmbus: Call hv_synic_free() if hv_synic_alloc() fails
     - Drivers: hv: vmbus: Fix vmbus_wait_for_unload() to scan present CPUs
     - PCI: hv: Fix a race condition bug in hv_pci_query_relations()
     - Revert "PCI: hv: Fix a timing issue which causes kdump to fail
       occasionally"
     - PCI: hv: Remove the useless hv_pcichild_state from struct hv_pci_dev
     - PCI: hv: Fix a race condition in hv_irq_unmask() that can cause panic
     - PCI: hv: Add a per-bus mutex state_lock
     - io_uring/net: clear msg_controllen on partial sendmsg retry
     - io_uring/net: disable partial retries for recvmsg with cmsg
     - mptcp: handle correctly disconnect() failures
     - mptcp: fix possible divide by zero in recvmsg()
     - mptcp: fix possible list corruption on passive MPJ
     - mptcp: consolidate fallback and non fallback state machine
     - cgroup: Do not corrupt task iteration when rebinding subsystem
     - cgroup,freezer: hold cpu_hotplug_lock before freezer_mutex in
       freezer_css_{online,offline}()
     - [arm64] mmc: sdhci-msm: Disable broken 64-bit DMA on MSM8916
     - [arm64] mmc: meson-gx: remove redundant mmc_request_done() call from irq
       context
     - [arm64,armhf] mmc: mmci: stm32: fix max busy timeout calculation
     - [arm64,armhf] mmc: bcm2835: fix deferred probing
     - [arm64,armhf] mmc: sunxi: fix deferred probing
     - bpf: ensure main program has an extable
     - wifi: iwlwifi: pcie: Handle SO-F device for PCI id 0x7AF0
     - io_uring/poll: serialize poll linked timer start with poll removal
     - nilfs2: prevent general protection fault in nilfs_clear_dirty_page()
     - [x86] mm: Avoid using set_pgd() outside of real PGD pages
     - memfd: check for non-NULL file_seals in memfd_create() syscall
     - [arm64] mmc: meson-gx: fix deferred probing
     - ieee802154: hwsim: Fix possible memory leaks
     - xfrm: Treat already-verified secpath entries as optional
     - xfrm: interface: rename xfrm_interface.c to xfrm_interface_core.c
     - xfrm: Ensure policies always checked on XFRM-I input path
     - [arm64] KVM: arm64: PMU: Restore the host's PMUSERENR_EL0
     - bpf: track immediate values written to stack by BPF_ST instruction
     - bpf: Fix verifier id tracking of scalars on spill
     - xfrm: fix inbound ipv4/udp/esp packets to UDPv6 dualstack sockets
     - bpf: Fix a bpf_jit_dump issue for x86_64 with sysctl bpf_jit_enable.
     - xfrm: Linearize the skb after offloading if needed.
     - net/mlx5: DR, Fix wrong action data allocation in decap action
     - sfc: use budget for TX completions
     - [armel,armhf] mmc: mvsdio: fix deferred probing
     - [armhf] mmc: omap: fix deferred probing
     - [armhf] mmc: omap_hsmmc: fix deferred probing
     - mmc: sdhci-acpi: fix deferred probing
     - ipvs: align inner_mac_header for encapsulation
     - be2net: Extend xmit workaround to BE3 chip
     - netfilter: nf_tables: fix chain binding transaction logic
     - netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound
       set/chain
     - netfilter: nf_tables: drop map element references from preparation phase
     - netfilter: nft_set_pipapo: .walk does not deal with generations
     - netfilter: nf_tables: disallow element updates of bound anonymous sets
     - netfilter: nf_tables: reject unbound anonymous set before commit phase
     - netfilter: nf_tables: reject unbound chain set before commit phase
     - netfilter: nf_tables: disallow updates of anonymous sets
     - netfilter: nfnetlink_osf: fix module autoload
     - Revert "net: phy: dp83867: perform soft reset and retain established link"
     - bpf/btf: Accept function names that contain dots
     - bpf: Force kprobe multi expected_attach_type for kprobe_multi link
     - io_uring/net: use the correct msghdr union member in io_sendmsg_copy_hdr
     - sch_netem: acquire qdisc lock in netem_change()
     - revert "net: align SO_RCVMARK required privileges with SO_MARK"
     - [arm64] dts: rockchip: fix nEXTRST on SOQuartz
     - gpiolib: Fix GPIO chip IRQ initialization restriction
     - gpiolib: Fix irq_domain resource tracking for
       gpiochip_irqchip_add_domain()
     - scsi: target: iscsi: Prevent login threads from racing between each other
     - HID: wacom: Add error check to wacom_parse_and_register()
     - smb3: missing null check in SMB2_change_notify
     - media: cec: core: disable adapter in cec_devnode_unregister
     - media: cec: core: don't set last_initiator if tx in progress
     - nfcsim.c: Fix error checking for debugfs_create_dir
     - btrfs: fix an uninitialized variable warning in btrfs_log_inode
     - [i386] usb: gadget: udc: fix NULL dereference in remove()
     - nvme: double KA polling frequency to avoid KATO with TBKAS on
     - nvme: check IO start time when deciding to defer KA
     - nvme: improve handling of long keep alives
     - [x86] Input: soc_button_array - add invalid acpi_index DMI quirk handling
     - [s390x] cio: unregister device when the only path is gone
     - [arm*] ASoC: simple-card: Add missing of_node_put() in case of error
     - soundwire: dmi-quirks: add new mapping for HP Spectre x360
     - soundwire: qcom: add proper error paths in qcom_swrm_startup()
     - [x86] ASoC: nau8824: Add quirk to active-high jack-detect
     - [x86] ASoC: amd: yc: Add Thinkpad Neo14 to quirks list for acp6x
     - gfs2: Don't get stuck writing page onto itself under direct I/O
     - [arm64] ASoC: fsl_sai: Enable BCI bit if SAI works on synchronous mode
       with BYP asserted
     - ALSA: hda/realtek: Add "Intel Reference board" and "NUC 13" SSID in the
       ALC256
     - i2c: mchp-pci1xxxx: Avoid cast to incompatible function type
     - null_blk: Fix: memory release when memory_backed=1
     - drm/radeon: fix race condition UAF in radeon_gem_set_domain_ioctl
     - vhost_net: revert upend_idx only on retriable error
     - [arm64] KVM: arm64: Restore GICv2-on-GICv3 functionality
     - [x86] apic: Fix kernel panic when booting with intremap=off and
       x2apic_phys
     - [arm64] i2c: imx-lpi2c: fix type char overflow issue when calculating the
       clock cycle
     - smb: move client and server files to common directory fs/smb
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.37
     - mm/mmap: Fix error path in do_vmi_align_munmap()
     - mm/mmap: Fix error return in do_vmi_align_munmap()
     - mptcp: ensure listener is unhashed before updating the sk status
     - mm, hwpoison: try to recover from copy-on write faults
     - mm, hwpoison: when copy-on-write hits poison, take page offline
     - [x86] microcode/AMD: Load late on both threads too
     - [x86] smp: Make stop_other_cpus() more robust
     - [x86] smp: Dont access non-existing CPUID leaf
     - [x86] smp: Remove pointless wmb()s from native_stop_other_cpus()
     - [x86] smp: Use dedicated cache-line for mwait_play_dead()
     - [x86] smp: Cure kexec() vs. mwait_play_dead() breakage
     - can: isotp: isotp_sendmsg(): fix return error fix on TX path
     - maple_tree: fix potential out-of-bounds access in mas_wr_end_piv()
     - mm: introduce new 'lock_mm_and_find_vma()' page fault helper
     - mm: make the page fault mmap locking killable
     - [arm64] mm: Convert to using lock_mm_and_find_vma()
     - [powerpc*] mm: Convert to using lock_mm_and_find_vma()
     - [mips*] mm: Convert to using lock_mm_and_find_vma()
     - [armhf] mm: Convert to using lock_mm_and_find_vma()
     - mm/fault: convert remaining simple cases to lock_mm_and_find_vma()
     - [powerpc*] mm: convert coprocessor fault to lock_mm_and_find_vma()
     - mm: make find_extend_vma() fail if write lock not held
     - execve: expand new process stack manually ahead of time
     - mm: always expand the stack with the mmap write lock held
     - fbdev: fix potential OOB read in fast_imageblit()
     - HID: hidraw: fix data race on device refcount
     - HID: wacom: Use ktime_t rather than int when dealing with timestamps
     - HID: logitech-hidpp: add HIDPP_QUIRK_DELAYED_INIT for the T651.
       (Closes: #1038271)
 .
   [ Salvatore Bonaccorso ]
   * d/salsa-ci.yml: Update for bookworm: Set RELEASE to bookworm
   * d/rules.real: Fix typo in setup_image target.
   * [amd64,arm64] drivers/virtio: Enable VIRTIO_MEM as module (Closes: #1038665)
   * Bump ABI to 10
   * [rt] Update to 6.1.33-rt11
   * Revert "drm/amd/display: edp do not add non-edid timings"
 .
   [ Cyril Brulebois ]
   * udeb: Add r8188eu to nic-wireless-modules (Closes: #1035824)
 .
   [ Ben Hutchings ]
   * Add pkg.linux.mintools profile for building minimal userland tools
   * d/b/test-patches: Build linux-{kbuild,bootwrapper} packages
     (Closes: #871216, #1035359)

linux-signed-amd64 (6.1.55+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.55-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.53
     - Revert "bridge: Add extack warning when enabling STP in netns."
     - Partially revert "drm/amd/display: Fix possible underflow for displays
       with large vblank"
     - scsi: ufs: Try harder to change the power mode
     - Revert "Revert drm/amd/display: Enable Freesync Video Mode by default"
     - ALSA: hda/realtek: Enable 4 amplifiers instead of 2 on a HP platform
     - [powerpc*] boot: Disable power10 features after BOOTAFLAGS assignment
     - media: uapi: HEVC: Add num_delta_pocs_of_ref_rps_idx field
     - 9p: virtio: fix unlikely null pointer deref in handle_rerror
     - 9p: virtio: make sure 'offs' is initialized in zc_request
     - ksmbd: fix out of bounds in smb3_decrypt_req()
     - ksmbd: validate session id and tree id in compound request
     - ksmbd: no response from compound read
     - ksmbd: fix out of bounds in init_smb2_rsp_hdr()
     - ASoC: da7219: Flush pending AAD IRQ when suspending
     - ASoC: da7219: Check for failure reading AAD IRQ events
     - [x86] ASoC: nau8821: Add DMI quirk mechanism for active-high jack-detect
     - ethernet: atheros: fix return value check in atl1c_tso_csum()
     - [s390x] dasd: use correct number of retries for ERP requests
     - [s390x] dasd: fix hanging device after request requeue
     - fs/nls: make load_nls() take a const parameter
     - ASoC: rt5682-sdw: fix for JD event handling in ClockStop Mode0
     - ASoc: codecs: ES8316: Fix DMIC config
     - ASoC: rt711: fix for JD event handling in ClockStop Mode0
     - ASoC: rt711-sdca: fix for JD event handling in ClockStop Mode0
     - ASoC: atmel: Fix the 8K sample parameter in I2SC master
     - ALSA: usb-audio: Add quirk for Microsoft Modern Wireless Headset
     - [x86] platform/x86: intel: hid: Always call BTNL ACPI method
     - [x86] platform/x86/intel/hid: Add HP Dragonfly G2 to VGBS DMI quirks
     - [x86] platform/x86: think-lmi: Use kfree_sensitive instead of kfree
     - [x86] platform/x86: asus-wmi: Fix setting RGB mode on some TUF laptops
     - [x86] platform/x86: huawei-wmi: Silence ambient light sensor
     - drm/amd/smu: use AverageGfxclkFrequency* to replace previous GFX Curr
       Clock
     - drm/amd/display: Guard DCN31 PHYD32CLK logic against chip family
     - drm/amd/display: Exit idle optimizations before attempt to access PHY
     - ovl: Always reevaluate the file signature for IMA
     - ALSA: usb-audio: Update for native DSD support quirks
     - security: keys: perform capable check only on privileged operations
     - kprobes: Prohibit probing on CFI preamble symbol
     - clk: fixed-mmio: make COMMON_CLK_FIXED_MMIO depend on HAS_IOMEM
     - Revert "wifi: ath6k: silence false positive -Wno-dangling-pointer warning
       on GCC 12"
     - net: dsa: microchip: KSZ9477 register regmap alignment to 32 bit
       boundaries
     - net: annotate data-races around sk->sk_{rcv|snd}timeo
     - net: usb: qmi_wwan: add Quectel EM05GV2
     - wifi: brcmfmac: Fix field-spanning write in brcmf_scan_params_v2_to_v1()
     - [powerpc*] powermac: Use early_* IO variants in via_calibrate_decr()
     - [x86] platform/x86/amd/pmf: Fix unsigned comparison with less than zero
     - scsi: lpfc: Remove reftag check in DIF paths
     - scsi: qedi: Fix potential deadlock on &qedi_percpu->p_work_lock
     - [arm64] net: hns3: restore user pause configure when disable autoneg
     - drm/amdgpu: Match against exact bootloader status
     - wifi: cfg80211: remove links only on AP
     - wifi: mac80211: Use active_links instead of valid_links in Tx
     - netlabel: fix shift wrapping bug in netlbl_catmap_setlong()
     - bnx2x: fix page fault following EEH recovery
     - cifs: fix sockaddr comparison in iface_cmp
     - cifs: fix max_credits implementation
     - sctp: handle invalid error codes without calling BUG()
     - scsi: aacraid: Reply queue mapping to CPUs based on IRQ affinity
     - scsi: storvsc: Always set no_report_opcodes
     - scsi: lpfc: Fix incorrect big endian type assignment in bsg loopback path
     - ALSA: seq: oss: Fix racy open/close of MIDI devices
     - net: sfp: handle 100G/25G active optical cables in sfp_parse_support
     - tracing: Introduce pipe_cpumask to avoid race on trace_pipes
     - of: property: Simplify of_link_to_phandle()
     - [x86] cpufreq: intel_pstate: set stale CPU frequency to minimum
     - crypto: rsa-pkcs1pad - Use helper to set reqsize
     - [x86] KVM: x86/mmu: Use kstrtobool() instead of strtobool()
     - [x86] KVM: x86/mmu: Add "never" option to allow sticky disabling of
       nx_huge_pages
     - net: Avoid address overwrite in kernel_connect
     - drm/amd/display: ensure async flips are only accepted for fast updates
     - udf: Check consistency of Space Bitmap Descriptor
     - udf: Handle error when adding extent to a file
     - Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN
     - Revert "net: macsec: preserve ingress frame ordering"
     - reiserfs: Check the return value from __getblk()
     - eventfd: prevent underflow for eventfd semaphores
     - fs: Fix error checking for d_hash_and_lookup()
     - iomap: Remove large folio handling in iomap_invalidate_folio()
     - tmpfs: verify {g,u}id mount options correctly
     - vfs, security: Fix automount superblock LSM init problem, preventing NFS
       sb sharing
     - [armel,armhf] ptrace: Restore syscall restart tracing
     - [armel,armhf] ptrace: Restore syscall skipping for tracers
     - OPP: Fix passing 0 to PTR_ERR in _opp_attach_genpd()
     - [arm64] ptrace: Clean up error handling path in sve_set_common()
     - sched/psi: Select KERNFS as needed
     - [x86] decompressor: Don't rely on upper 32 bits of GPRs being preserved
     - [arm64] sme: Don't use streaming mode to probe the maximum SME VL
     - [arm64] fpsimd: Only provide the length to cpufeature for xCR registers
     - sched/rt: Fix sysctl_sched_rr_timeslice intial value
     - perf/imx_ddr: don't enable counter0 if none of 4 counters are used
     - [s390x] pkey: fix/harmonize internal keyblob headers
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling in PKEY_GENSECK2 IOCTL
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling for sysfs attributes
     - [s390x] paes: fix PKEY_TYPE_EP11_AES handling for secure keyblobs
     - [x86] ACPI: x86: s2idle: Post-increment variables when getting constraints
     - [x86] ACPI: x86: s2idle: Fix a logic error parsing AMD constraints table
     - thermal/of: Fix potential uninitialized value access
     - cpufreq: amd-pstate-ut: Remove module parameter access
     - cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver
     - [x86] efistub: Fix PCI ROM preservation in mixed mode
     - [x86] cpufreq: powernow-k8: Use related_cpus instead of cpus in
       driver.exit()
     - bpftool: use a local copy of perf_event to fix accessing :: Bpf_cookie
     - bpftool: Define a local bpf_perf_link to fix accessing its fields
     - bpftool: Use a local copy of BPF_LINK_TYPE_PERF_EVENT in pid_iter.bpf.c
     - bpftool: Use a local bpf_perf_event_value to fix accessing its fields
     - bpf: Clear the probe_addr for uprobe
     - bpf: Fix an error in verifying a field in a union
     - tcp: tcp_enter_quickack_mode() should be static
     - regmap: rbtree: Use alloc_flags for memory allocations
     - wifi: rtw89: debug: Fix error handling in
       rtw89_debug_priv_btc_manual_set()
     - wifi: mt76: mt7921: fix non-PSC channel scan fail
     - udp: re-score reuseport groups when connected sockets are present
     - bpf: reject unhashed sockets in bpf_sk_assign
     - wifi: mt76: testmode: add nla_policy for MT76_TM_ATTR_TX_LENGTH
     - [arm64,armhf] spi: tegra20-sflash: fix to check return value of
       platform_get_irq() in tegra_sflash_probe()
     - can: gs_usb: gs_usb_receive_bulk_callback(): count RX overflow errors also
       in case of OOM
     - wifi: mt76: mt7915: fix power-limits while chan_switch
     - wifi: mwifiex: Fix OOB and integer underflow when rx packets
     - wifi: mwifiex: fix error recovery in PCIE buffer descriptor management
     - crypto: api - Use work queue in crypto_destroy_instance
     - Bluetooth: nokia: fix value check in nokia_bluetooth_serdev_probe()
     - Bluetooth: Fix potential use-after-free when clear keys
     - Bluetooth: hci_sync: Don't double print name in add/remove adv_monitor
     - Bluetooth: hci_sync: Avoid use-after-free in dbg for hci_add_adv_monitor()
     - net: tcp: fix unexcepted socket die when snd_wnd is 0
     - net-memcg: Fix scope of sockmem pressure indicators
     - ice: ice_aq_check_events: fix off-by-one check when filling buffer
     - [arm64,armhf] crypto: caam - fix unchecked return value error
     - [arm64,armhf] hwrng: iproc-rng200 - Implement suspend and resume calls
     - lwt: Fix return values of BPF xmit ops
     - lwt: Check LWTUNNEL_XMIT_CONTINUE strictly
     - fs: ocfs2: namei: check return value of ocfs2_add_entry()
     - net: annotate data-races around sk->sk_lingertime
     - wifi: mwifiex: fix memory leak in mwifiex_histogram_read()
     - wifi: mwifiex: Fix missed return in oob checks failed path
     - wifi: ath9k: fix races between ath9k_wmi_cmd and ath9k_wmi_ctrl_rx
     - wifi: ath9k: protect WMI command response buffer replacement with a lock
     - wifi: nl80211/cfg80211: add forgotten nla_policy for BSS color attribute
     - mac80211: make ieee80211_tx_info padding explicit
     - wifi: mwifiex: avoid possible NULL skb pointer dereference
     - Bluetooth: btusb: Do not call kfree_skb() under spin_lock_irqsave()
     - [arm64] mm: use ptep_clear() instead of pte_clear() in clear_flush()
     - wifi: ath9k: use IS_ERR() with debugfs_create_dir()
     - ice: avoid executing commands on other ports when driving sync
     - net: arcnet: Do not call kfree_skb() under local_irq_disable()
     - mlxsw: i2c: Fix chunk size setting in output mailbox buffer
     - mlxsw: i2c: Limit single transaction buffer size
     - mlxsw: core_hwmon: Adjust module label names based on MTCAP sensor counter
     - sfc: Check firmware supports Ethernet PTP filter
     - net/sched: sch_hfsc: Ensure inner classes have fsc curve (CVE-2023-4623)
     - netrom: Deny concurrent connect().
     - quota: factor out dquot_write_dquot()
     - quota: rename dquot_active() to inode_quota_active()
     - quota: add new helper dquot_active()
     - quota: fix dqput() to follow the guarantees dquot_srcu should provide
     - drm/amd/display: Do not set drr on pipe commit
     - [arm64] dts: qcom: sm6350: Fix ZAP region
     - [arm64] dts: qcom: sm8250: correct dynamic power coefficients
     - [arm64] dts: qcom: msm8916-l8150: correct light sensor VDDIO supply
     - [arm64] dts: qcom: sm8250-edo: Add gpio line names for TLMM
     - [arm64] dts: qcom: sm8250-edo: Add GPIO line names for PMIC GPIOs
     - [arm64] dts: qcom: sm8250-edo: Rectify gpio-keys
     - [arm64] dts: qcom: sc8280xp-crd: Correct vreg_misc_3p3 GPIO
     - [arm64] dts: qcom: sc8280xp: Add missing SCM interconnect
     - [arm64] dts: qcom: msm8996: Add missing interrupt to the USB2 controller
     - [arm64] dts: qcom: sdm845-tama: Set serial indices and stdout-path
     - [arm64] dts: qcom: sm8350: Fix CPU idle state residency times
     - [arm64] dts: qcom: sm8350: Add missing LMH interrupts to cpufreq
     - [arm64] dts: qcom: sm8350: Use proper CPU compatibles
     - [arm64] dts: qcom: pm8350: fix thermal zone name
     - [arm64] dts: qcom: pm8350b: fix thermal zone name
     - [arm64] dts: qcom: pmr735b: fix thermal zone name
     - [arm64] dts: qcom: pmk8350: fix ADC-TM compatible string
     - [arm64] dts: qcom: sm8250: Mark PCIe hosts as DMA coherent
     - [armhf] dts: stm32: Rename mdio0 to mdio
     - [armhf] dts: stm32: YAML validation fails for Argon Boards
     - [armhf] dts: stm32: adopt generic iio bindings for adc channels on
       emstamp-argon
     - [armhf] dts: stm32: Add missing detach mailbox for emtrion emSBC-Argon
     - [armhf] dts: stm32: YAML validation fails for Odyssey Boards
     - [armhf] dts: stm32: Add missing detach mailbox for Odyssey SoM
     - [armhf] dts: stm32: Update to generic ADC channel binding on DHSOM systems
     - [armhf] dts: stm32: Add missing detach mailbox for DHCOM SoM
     - [arm64] firmware: ti_sci: Use system_state to determine polling
     - drm/amdgpu: avoid integer overflow warning in
       amdgpu_device_resize_fb_bar()
     - [arm64] tegra: Fix HSUART for Jetson AGX Orin
     - [arm64] dts: qcom: sm8250-sony-xperia: correct GPIO keys wakeup again
     - [arm64] dts: qcom: pm6150l: Add missing short interrupt
     - [arm64] dts: qcom: pm660l: Add missing short interrupt
     - [arm64] dts: qcom: pmi8994: Add missing OVP interrupt
     - [arm64] tegra: Fix HSUART for Smaug
     - [arm64,armhf] drm/etnaviv: fix dumping of active MMU context
     - block: cleanup queue_wc_store
     - block: don't allow enabling a cache on devices that don't support it
     - [x86] mm: Fix PAT bit missing from page protection modify mask
     - [arm64] drm: adv7511: Fix low refresh rate register for ADV7533/5
     - drm/amdgpu: Update min() to min_t() in 'amdgpu_info_ioctl'
     - md: Factor out is_md_suspended helper
     - md: Change active_io to percpu
     - md: restore 'noio_flag' for the last mddev_resume()
     - md/raid10: factor out dereference_rdev_and_rrdev()
     - md/raid10: use dereference_rdev_and_rrdev() to get devices
     - md/md-bitmap: remove unnecessary local variable in backlog_store()
     - md/md-bitmap: hold 'reconfig_mutex' in backlog_store()
     - [arm64] drm/msm: Update dev core dump to not print backwards
     - [arm64,armhf] drm/tegra: dpaux: Fix incorrect return value of
       platform_get_irq
     - [arm64] dts: qcom: sm8150: Fix the I2C7 interrupt
     - [armhf] drm/armada: Fix off-by-one error in armada_overlay_get_property()
     - drm/repaper: Reduce temporary buffer size in repaper_fb_dirty()
     - drm/panel: simple: Add missing connector type and pixel format for AUO
       T215HVN01
     - ima: Remove deprecated IMA_TRUSTED_KEYRING Kconfig
     - [arm64] drm/msm/mdp5: Don't leak some plane state
     - [arm64] firmware: meson_sm: fix to avoid potential NULL pointer
       dereference
     - [arm64] drm/msm/dpu: fix the irq index in
       dpu_encoder_phys_wb_wait_for_commit_done
     - smackfs: Prevent underflow in smk_set_cipso()
     - drm/amd/pm: fix variable dereferenced issue in amdgpu_device_attr_create()
     - [arm64] drm/msm/a2xx: Call adreno_gpu_init() earlier
     - audit: fix possible soft lockup in __audit_inode_child()
     - block/mq-deadline: use correct way to throttling write requests
     - io_uring: fix drain stalls by invalid SQE
     - [armhf] bus: ti-sysc: Fix cast to enum warning
     - md/raid5-cache: fix a deadlock in r5l_exit_log()
     - md/raid5-cache: fix null-ptr-deref for r5l_flush_stripe_to_raid()
     - firmware: cs_dsp: Fix new control name check
     - md: add error_handlers for raid0 and linear
     - md/raid0: Factor out helper for mapping and submitting a bio
     - md/raid0: Fix performance regression for large sequential writes
     - md: raid0: account for split bio in iostat accounting
     - of: overlay: Call of_changeset_init() early
     - ALSA: ac97: Fix possible error value of *rac97
     - ipmi:ssif: Add check for kstrdup
     - ipmi:ssif: Fix a memory leak when scanning for an adapter
     - PCI/DOE: Fix destroy_work_on_stack() race
     - [arm64,armhf] clk: sunxi-ng: Modify mismatched function name
     - [amd64] EDAC/igen6: Fix the issue of no error events
     - ext4: correct grp validation in ext4_mb_good_group
     - ext4: avoid potential data overflow in next_linear_group
     - kvm/vfio: Prepare for accepting vfio device fd
     - kvm/vfio: ensure kvg instance stays around in kvm_vfio_group_add()
     - PCI: microchip: Correct the DED and SEC interrupt bit offsets
     - PCI: Mark NVIDIA T4 GPUs to avoid bus reset
     - [armhf] pinctrl: mcp23s08: check return value of devm_kasprintf()
     - PCI: Allow drivers to request exclusive config regions
     - PCI: Add locking to RMW PCI Express Capability Register accessors
     - PCI: pciehp: Use RMW accessors for changing LNKCTL
     - PCI/ASPM: Use RMW accessors for changing LNKCTL
     - [powerpc*] radix: Move some functions into #ifdef
       CONFIG_KVM_BOOK3S_HV_POSSIBLE
     - vfio/type1: fix cap_migration information leak
     - [amd64,arm64] nvdimm: Fix memleak of pmu attr_groups in
       unregister_nvdimm_pmu()
     - [arm64,arm64] nvdimm: Fix dereference after free in register_nvdimm_pmu()
     - [powerpc*] fadump: reset dump area size if fadump memory reserve fails
     - [powerpc*] perf: Convert fsl_emb notifier to state machine callbacks
     - drm/amdgpu: Use RMW accessors for changing LNKCTL
     - drm/radeon: Use RMW accessors for changing LNKCTL
     - net/mlx5: Use RMW accessors for changing LNKCTL
     - wifi: ath11k: Use RMW accessors for changing LNKCTL
     - wifi: ath10k: Use RMW accessors for changing LNKCTL
     - NFSv4.2: Rework scratch handling for READ_PLUS
     - NFSv4.2: Fix READ_PLUS smatch warnings
     - NFSv4.2: Fix up READ_PLUS alignment
     - NFSv4.2: Fix READ_PLUS size calculations
     - [powerpc*] Don't include lppaca.h in paca.h
     - [powerpc*] pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT
     - nfs/blocklayout: Use the passed in gfp flags
     - [powerpc*] pseries: Fix hcall tracepoints with JUMP_LABEL=n
     - [powerpc*] mpc5xxx: Add missing fwnode_handle_put()
     - [powerpc*] iommu: Fix notifiers being shared by PCI and VIO buses
     - ext4: fix unttached inode after power cut with orphan file feature enabled
     - jfs: validate max amount of blocks before allocation.
     - fs: lockd: avoid possible wrong NULL parameter
     - NFSD: da_addr_body field missing in some GETDEVICEINFO replies
     - NFS: Guard against READDIR loop when entry names exceed MAXNAMELEN
     - NFSv4.2: fix handling of COPY ERR_OFFLOAD_NO_REQ
     - pNFS: Fix assignment of xprtdata.cred
     - cgroup/cpuset: Inherit parent's load balance state in v2
     - RDMA/qedr: Remove a duplicate assignment in irdma_query_ah()
     - media: ov5640: fix low resolution image abnormal issue
     - media: ad5820: Drop unsupported ad5823 from i2c_ and of_device_id tables
     - media: i2c: tvp5150: check return value of devm_kasprintf()
     - media: v4l2-core: Fix a potential resource leak in
       v4l2_fwnode_parse_link()
     - [amd64] iommu/amd/iommu_v2: Fix pasid_state refcount dec hit 0 warning on
       pasid unbind
     - [arm64,armhf] iommu: rockchip: Fix directory table address encoding
     - drivers: usb: smsusb: fix error handling code in smsusb_init_device
     - media: dib7000p: Fix potential division by zero
     - media: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer()
     - media: cx24120: Add retval check for cx24120_message_send()
     - RDMA/siw: Fabricate a GID on tun and loopback devices
     - [arm64] scsi: hisi_sas: Fix warnings detected by sparse
     - [arm64] scsi: hisi_sas: Fix normally completed I/O analysed as failed
     - dt-bindings: extcon: maxim,max77843: restrict connector properties
     - media: rkvdec: increase max supported height for H.264
     - usb: phy: mxs: fix getting wrong state with mxs_phy_is_otg_host()
     - scsi: RDMA/srp: Fix residual handling
     - scsi: iscsi: Rename iscsi_set_param() to iscsi_if_set_param()
     - scsi: iscsi: Add length check for nlattr payload
     - scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param()
     - scsi: be2iscsi: Add length check when parsing nlattrs
     - scsi: qla4xxx: Add length check when parsing nlattrs
     - serial: sprd: Assign sprd_port after initialized to avoid wrong access
     - serial: sprd: Fix DMA buffer leak issue
     - [x86] APM: drop the duplicate APM_MINOR_DEV macro
     - RDMA/rxe: Split rxe_run_task() into two subroutines
     - RDMA/rxe: Fix incomplete state save in rxe_requester
     - scsi: qedf: Do not touch __user pointer in
       qedf_dbg_stop_io_on_error_cmd_read() directly
     - scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read()
       directly
     - scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read()
       directly
     - RDMA/irdma: Replace one-element array with flexible-array member
     - [arm64] coresight: tmc: Explicit type conversions to prevent integer
       overflow
     - interconnect: qcom: qcm2290: Enable sync state
     - dma-buf/sync_file: Fix docs syntax
     - driver core: test_async: fix an error code
     - driver core: Call dma_cleanup() on the test_remove path
     - kernfs: add stub helper for kernfs_generic_poll()
     - extcon: cht_wc: add POWER_SUPPLY dependency
     - iommu/sprd: Add missing force_aperture
     - [arm64] RDMA/hns: Fix port active speed
     - [arm64] RDMA/hns: Fix incorrect post-send with direct wqe of wr-list
     - [arm64] RDMA/hns: Fix inaccurate error label name in init instance
     - [arm64] RDMA/hns: Fix CQ and QP cache affinity
     - IB/uverbs: Fix an potential error pointer dereference
     - fsi: aspeed: Reset master errors after CFAM reset
     - [amd64] iommu/vt-d: Fix to flush cache of PASID directory table
     - [x86] platform/x86: dell-sysman: Fix reference leak
     - media: cec: core: add adap_nb_transmit_canceled() callback
     - media: cec: core: add adap_unconfigured() callback
     - media: go7007: Remove redundant if statement
     - media: venus: hfi_venus: Only consider sys_idle_indicator on V1
     - docs: ABI: fix spelling/grammar in SBEFIFO timeout interface
     - USB: gadget: core: Add missing kerneldoc for vbus_work
     - USB: gadget: f_mass_storage: Fix unused variable warning
     - drivers: base: Free devm resources when unregistering a device
     - HID: input: Support devices sending Eraser without Invert
     - media: ov5640: Enable MIPI interface in ov5640_set_power_mipi()
     - media: ov5640: Fix initial RESETB state and annotate timings
     - media: i2c: ov2680: Set V4L2_CTRL_FLAG_MODIFY_LAYOUT on flips
     - media: ov2680: Remove auto-gain and auto-exposure controls
     - media: ov2680: Fix ov2680_bayer_order()
     - media: ov2680: Fix vflip / hflip set functions
     - media: ov2680: Remove VIDEO_V4L2_SUBDEV_API ifdef-s
     - media: ov2680: Don't take the lock for try_fmt calls
     - media: ov2680: Add ov2680_fill_format() helper function
     - media: ov2680: Fix ov2680_set_fmt() which == V4L2_SUBDEV_FORMAT_TRY not
       working
     - media: ov2680: Fix regulators being left enabled on ov2680_power_on()
       errors
     - media: i2c: rdacm21: Fix uninitialized value
     - f2fs: fix to avoid mmap vs set_compress_option case
     - f2fs: judge whether discard_unit is section only when have
       CONFIG_BLK_DEV_ZONED
     - f2fs: Only lfs mode is allowed with zoned block device feature
     - Revert "f2fs: fix to do sanity check on extent cache correctly"
     - cgroup:namespace: Remove unused cgroup_namespaces_init()
     - [arm64] coresight: trbe: Fix TRBE potential sleep in atomic context
     - RDMA/irdma: Prevent zero-length STAG registration (CVE-2023-25775)
     - scsi: core: Use 32-bit hostnum in scsi_host_lookup()
     - scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock
     - [arm64,armhf] serial: tegra: handle clk prepare error in
       tegra_uart_hw_init()
     - [arm64,armhf] amba: bus: fix refcount leak
     - Revert "IB/isert: Fix incorrect release of isert connection"
     - RDMA/siw: Balance the reference of cep->kref in the error path
     - RDMA/siw: Correct wrong debug message
     - RDMA/efa: Fix wrong resources deallocation order
     - HID: logitech-dj: Fix error handling in logi_dj_recv_switch_to_dj_mode()
     - HID: uclogic: Correct devm device reference for hidinput input_dev name
     - HID: multitouch: Correct devm device reference for hidinput input_dev name
     - [x86] platform/x86/amd/pmf: Fix a missing cleanup path
     - tick/rcu: Fix false positive "softirq work is pending" messages
     - [x86] speculation: Mark all Skylake CPUs as vulnerable to GDS
     - tracing: Remove extra space at the end of hwlat_detector/mode
     - tracing: Fix race issue between cpu buffer write and swap
     - mtd: rawnand: brcmnand: Fix mtd oobsize
     - dmaengine: idxd: Modify the dependence of attribute pasid_enabled
     - [arm64,armhf] phy/rockchip: inno-hdmi: use correct vco_div_5 macro on
       rk3328
     - [arm64,armhf] phy/rockchip: inno-hdmi: round fractal pixclock in rk3328
       recalc_rate
     - [arm64,armhf] phy/rockchip: inno-hdmi: do not power on rk3328 post pll on
       reg write
     - rpmsg: glink: Add check for kstrdup
     - leds: pwm: Fix error code in led_pwm_create_fwnode()
     - leds: multicolor: Use rounded division when calculating color components
     - leds: Fix BUG_ON check for LED_COLOR_ID_MULTI that is always false
     - leds: trigger: tty: Do not use LED_ON/OFF constants, use
       led_blink_set_oneshot instead
     - mtd: spi-nor: Check bus width while setting QE bit
     - mtd: rawnand: fsmc: handle clk prepare error in fsmc_nand_resume()
     - dmaengine: ste_dma40: Add missing IRQ check in d40_probe
     - Drivers: hv: vmbus: Don't dereference ACPI root object handle
     - cpufreq: Fix the race condition while updating the transition_task of
       policy
     - virtio_ring: fix avail_wrap_counter in virtqueue_add_packed
     - igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU (CVE-2023-42752)
     - netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for
       ip_set_hash_netportnet.c (CVE-2023-42753)
     - netfilter: nft_exthdr: Fix non-linear header modification
     - netfilter: xt_u32: validate user space input
     - netfilter: xt_sctp: validate the flag_info count
     - skbuff: skb_segment, Call zero copy functions before using skbuff frags
     - igb: set max size RX buffer when store bad packet is enabled
     - PM / devfreq: Fix leak in devfreq_dev_release()
     - ALSA: pcm: Fix missing fixup call in compat hw_refine ioctl
     - rcu: dump vmalloc memory info safely
     - printk: ringbuffer: Fix truncating buffer size min_t cast
     - scsi: core: Fix the scsi_set_resid() documentation
     - mm/vmalloc: add a safer version of find_vm_area() for debug
     - cpu/hotplug: Prevent self deadlock on CPU hot-unplug
     - media: i2c: ccs: Check rules is non-NULL
     - media: i2c: Add a camera sensor top level menu
     - PCI: rockchip: Use 64-bit mask on MSI 64-bit PCI address
     - ipmi_si: fix a memleak in try_smi_init()
     - [armhf] OMAP2+: Fix -Warray-bounds warning in _pwrdm_state_switch()
     - XArray: Do not return sibling entries from xa_load() (Closes: #1053120)
     - io_uring: break iopolling on signal
     - backlight/gpio_backlight: Compare against struct fb_info.device
     - backlight/bd6107: Compare against struct fb_info.device
     - backlight/lv5207lp: Compare against struct fb_info.device
     - drm/amd/display: register edp_backlight_control() for DCN301
     - i3c: master: svc: fix probe failure when no i3c device exist
     - [arm64] csum: Fix OoB access in IP checksum code for negative lengths
     - ALSA: hda/cirrus: Fix broken audio on hardware with two CS42L42 codecs.
     - media: dvb: symbol fixup for dvb_attach() (Closes: #1051613)
     - media: venus: hfi_venus: Write to VIDC_CTRL_INIT after unmasking
       interrupts
     - Revert "scsi: qla2xxx: Fix buffer overrun"
     - scsi: mpt3sas: Perform additional retries if doorbell read returns 0
     - PCI: Free released resource after coalescing
     - PCI: hv: Fix a crash in hv_pci_restore_msi_msg() during hibernation
     - PCI/PM: Only read PCI_PM_CTRL register when available
     - Revert "PCI: Mark NVIDIA T4 GPUs to avoid bus reset"
     - block: don't add or resize partition on the disk with GENHD_FL_NO_PART
     - procfs: block chmod on /proc/thread-self/comm
     - drm/amd/display: Add smu write msg id fail retry process
     - bpf: Fix issue in verifying allow_ptr_leaks
     - dlm: fix plock lookup when using multiple lockspaces
     - dccp: Fix out of bounds access in DCCP error handler
     - [x86] sev: Make enc_dec_hypercall() accept a size instead of npages
     - r8169: fix ASPM-related issues on a number of systems with NIC version
       from RTL8168h
     - X.509: if signature is unsupported skip validation
     - net: handle ARPHRD_PPP in dev_is_mac_header_xmit()
     - fsverity: skip PKCS#7 parser when keyring is empty
     - [x86] MCE: Always save CS register on AMD Zen IF Poison errors
     - platform/chrome: chromeos_acpi: print hex string for ACPI_TYPE_BUFFER
     - [arm64] mmc: renesas_sdhi: register irqs before registering controller
     - pstore/ram: Check start of empty przs during init
     - [arm64] sdei: abort running SDEI handlers during crash
     - [s390x] dcssblk: fix kernel crash with list_add corruption
     - [s390x] ipl: add missing secure/has_secure file to ipl type 'unknown'
     - [s390x] dasd: fix string length handling
     - [armhf] crypto: stm32 - fix loop iterating through scatterlist for DMA
     - cpufreq: brcmstb-avs-cpufreq: Fix -Warray-bounds bug
     - of: property: fw_devlink: Add a devlink for panel followers
     - usb: typec: tcpm: set initial svdm version based on pd revision
     - usb: typec: bus: verify partner exists in typec_altmode_attention
     - USB: core: Unite old scheme and new scheme descriptor reads
     - USB: core: Change usb_get_device_descriptor() API
     - USB: core: Fix race by not overwriting udev->descriptor in hub_port_init()
     - USB: core: Fix oversight in SuperSpeed initialization
     - [x86] sgx: Break up long non-preemptible delays in sgx_vepc_release()
     - [x86] perf/x86/uncore: Correct the number of CHAs on EMR
     - tracing: Zero the pipe cpumask on alloc to avoid spurious -EBUSY
     - Revert "drm/amd/display: Do not set drr on pipe commit"
     - md: Free resources in __md_stop
     - NFSv4.2: Fix a potential double free with READ_PLUS
     - NFSv4.2: Rework scratch handling for READ_PLUS (again)
     - md: fix regression for null-ptr-deference in __md_stop()
     - clk: Mark a fwnode as initialized when using CLK_OF_DECLARE() macro
     - treewide: Fix probing of devices in DT overlays
     - clk: Avoid invalid function names in CLK_OF_DECLARE()
     - udf: initialize newblock to 0
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.54
     - net/ipv6: SKB symmetric hash should incorporate transport ports
     - mm: multi-gen LRU: rename lrugen->lists[] to lrugen->folios[]
     - Multi-gen LRU: fix per-zone reclaim
     - io_uring: always lock in io_apoll_task_func
     - io_uring: revert "io_uring fix multishot accept ordering"
     - io_uring/net: don't overflow multishot accept
     - io_uring: break out of iowq iopoll on teardown
     - io_uring/sqpoll: fix io-wq affinity when IORING_SETUP_SQPOLL is used
     - io_uring: Don't set affinity on a dying sqpoll thread
     - drm/virtio: Conditionally allocate virtio_gpu_fence
     - scsi: qla2xxx: Adjust IOCB resource on qpair create
     - scsi: qla2xxx: Limit TMF to 8 per function
     - scsi: qla2xxx: Fix deletion race condition
     - scsi: qla2xxx: fix inconsistent TMF timeout
     - scsi: qla2xxx: Fix command flush during TMF
     - scsi: qla2xxx: Fix erroneous link up failure
     - scsi: qla2xxx: Turn off noisy message log
     - scsi: qla2xxx: Fix session hang in gnl
     - scsi: qla2xxx: Fix TMF leak through
     - scsi: qla2xxx: Remove unsupported ql2xenabledif option
     - scsi: qla2xxx: Flush mailbox commands on chip reset
     - scsi: qla2xxx: Fix smatch warn for qla_init_iocb_limit()
     - scsi: qla2xxx: Error code did not return to upper layer
     - scsi: qla2xxx: Fix firmware resource tracking
     - null_blk: fix poll request timeout handling
     - drm/ast: Fix DRAM init on AST2200
     - send channel sequence number in SMB3 requests after reconnects
     - memcg: drop kmem.limit_in_bytes
     - mm: hugetlb_vmemmap: fix a race between vmemmap pmd split
     - cifs: update desired access while requesting for directory lease
     - [x86] pinctrl: cherryview: fix address_space_handler() argument
     - dt-bindings: clock: xlnx,versal-clk: drop select:false
     - [arm64,armhf] clk: imx: pll14xx: dynamically configure PLL for
       393216000/361267200Hz
     - [arm64,armhf] clk: imx: pll14xx: align pdiv with reference manual
     - NFS: Fix a potential data corruption
     - NFSv4/pnfs: minor fix for cleanup path in nfs4_get_device_info
     - bus: mhi: host: Skip MHI reset if device is in RDDM
     - net: add SKB_HEAD_ALIGN() helper
     - net: remove osize variable in __alloc_skb()
     - net: factorize code in kmalloc_reserve()
     - net: deal with integer overflows in kmalloc_reserve() (CVE-2023-42752)
     - tpm_crb: Fix an error handling path in crb_acpi_add()
     - gfs2: Switch to wait_event in gfs2_logd
     - gfs2: low-memory forced flush fixes
     - kconfig: fix possible buffer overflow
     - Input: iqs7222 - configure power mode before triggering ATI
     - perf trace: Use zfree() to reduce chances of use after free
     - perf trace: Really free the evsel->priv area
     - backlight: gpio_backlight: Drop output GPIO direction check for initial
       power state
     - Input: tca6416-keypad - always expect proper IRQ number in i2c client
     - Input: tca6416-keypad - fix interrupt enable disbalance
     - perf annotate bpf: Don't enclose non-debug code with an assert()
     - [x86] virt: Drop unnecessary check on extended CPUID level in
       cpu_has_svm()
     - perf vendor events: Update the JSON/events descriptions for power10
       platform
     - perf vendor events: Drop some of the JSON/events for power10 platform
     - perf vendor events: Drop STORES_PER_INST metric event for power10 platform
     - perf top: Don't pass an ERR_PTR() directly to perf_session__delete()
     - watchdog: intel-mid_wdt: add MODULE_ALIAS() to allow auto-load
     - pwm: lpc32xx: Remove handling of PWM channels
     - [x86] drm/i915: mark requests for GuC virtual engines to avoid
       use-after-free
     - blk-throttle: use calculate_io/bytes_allowed() for throtl_trim_slice()
     - blk-throttle: consider 'carryover_ios/bytes' in throtl_trim_slice()
     - cifs: use fs_context for automounts
     - smb: propagate error code of extract_sharename()
     - net/sched: fq_pie: avoid stalls in fq_pie_timer()
     - sctp: annotate data-races around sk->sk_wmem_queued
     - ipv4: annotate data-races around fi->fib_dead
     - net: read sk->sk_family once in sk_mc_loop()
     - net: fib: avoid warn splat in flow dissector
     - xsk: Fix xsk_diag use-after-free error during socket cleanup
     - [x86] drm/i915/gvt: Verify pfn is "valid" before dereferencing "struct
       page"
     - [x86] drm/i915/gvt: Put the page reference obtained by KVM's gfn_to_pfn()
     - [x86] drm/i915/gvt: Drop unused helper intel_vgpu_reset_gtt()
     - net: use sk_forward_alloc_get() in sk_get_meminfo()
     - net: annotate data-races around sk->sk_forward_alloc
     - mptcp: annotate data-races around msk->rmem_fwd_alloc
     - ipv4: ignore dst hint for multipath routes
     - ipv6: ignore dst hint for multipath routes
     - igb: disable virtualization features on 82580
     - gve: fix frag_list chaining
     - veth: Fixing transmit return status for dropped packets
     - net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr
     - net: phy: micrel: Correct bit assignments for phy_device flags
     - bpf, sockmap: Fix skb refcnt race after locking changes
     - af_unix: Fix data-races around user->unix_inflight.
     - af_unix: Fix data-race around unix_tot_inflight.
     - af_unix: Fix data-races around sk->sk_shutdown.
     - af_unix: Fix data race around sk->sk_err.
     - net: sched: sch_qfq: Fix UAF in qfq_dequeue() (CVE-2023-4921)
     - kcm: Destroy mutex in kcm_exit_net()
     - igc: Change IGC_MIN to allow set rx/tx value between 64 and 80
     - igbvf: Change IGBVF_MIN to allow set rx/tx value between 64 and 80
     - igb: Change IGB_MIN to allow set rx/tx value between 64 and 80
     - [s390x] zcrypt: don't leak memory if dev_set_name() fails
     - idr: fix param name in idr_alloc_cyclic() doc
     - ip_tunnels: use DEV_STATS_INC()
     - bpf: Remove prog->active check for bpf_lsm and bpf_iter
     - bpf: Invoke __bpf_prog_exit_sleepable_recur() on recursion in
       kern_sys_bpf().
     - bpf: Assign bpf_tramp_run_ctx::saved_run_ctx before recursion check.
     - netfilter: nftables: exthdr: fix 4-byte stack OOB write
     - netfilter: nfnetlink_osf: avoid OOB read
     - [arm64] net: hns3: fix tx timeout issue
     - [arm64] net: hns3: fix byte order conversion issue in
       hclge_dbg_fd_tcam_read()
     - [arm64] net: hns3: fix debugfs concurrency issue between kfree buffer and
       read
     - [arm64] net: hns3: fix invalid mutex between tc qdisc and dcb ets command
       issue
     - [arm64] net: hns3: fix the port information display when sfp is absent
     - [arm64] net: hns3: remove GSO partial feature bit
     - sh: boards: Fix CEU buffer size passed to dma_declare_coherent_memory()
     - Multi-gen LRU: avoid race in inc_min_seq()
     - net/mlx5: Free IRQ rmap and notifier on kernel shutdown
     - clocksource/drivers/arm_arch_timer: Disable timer before programming CVAL
     - jbd2: fix checkpoint cleanup performance regression
     - jbd2: check 'jh->b_transaction' before removing it from checkpoint
     - jbd2: correct the end of the journal recovery scan range
     - ext4: add correct group descriptors and reserved GDT blocks to system zone
     - ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup}
     - f2fs: flush inode if atomic file is aborted
     - f2fs: avoid false alarm of circular locking
     - hwspinlock: qcom: add missing regmap config for SFPB MMIO implementation
     - ata: ahci: Add Elkhart Lake AHCI controller
     - ata: pata_falcon: fix IO base selection for Q40
     - ata: sata_gemini: Add missing MODULE_DESCRIPTION
     - ata: pata_ftide010: Add missing MODULE_DESCRIPTION
     - fuse: nlookup missing decrement in fuse_direntplus_link
     - btrfs: zoned: do not zone finish data relocation block group
     - btrfs: fix start transaction qgroup rsv double free
     - btrfs: free qgroup rsv on io failure
     - btrfs: don't start transaction when joining with TRANS_JOIN_NOSTART
     - btrfs: set page extent mapped after read_folio in relocate_one_page
     - btrfs: zoned: re-enable metadata over-commit for zoned mode
     - btrfs: use the correct superblock to compare fsid in btrfs_validate_super
     - [arm64] drm/mxsfb: Disable overlay plane in
       mxsfb_plane_overlay_atomic_disable()
     - drm/amd/display: enable cursor degamma for DCN3+ DRM legacy gamma
     - drm/amd/display: prevent potential division by zero errors
     - [x86] KVM: SVM: Take and hold ir_list_lock when updating vCPU's Physical
       ID entry
     - [x86] KVM: SVM: Don't inject #UD if KVM attempts to skip SEV guest insn
     - [x86] KVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost
       migration
     - [x86] KVM: nSVM: Check instead of asserting on nested TSC scaling support
     - [x86] KVM: nSVM: Load L1's TSC multiplier based on L1 state, not L2 state
     - [x86] KVM: SVM: Set target pCPU during IRTE update if target vCPU is
       running
     - [x86] KVM: SVM: Skip VMSA init in sev_es_init_vmcb() if pointer is NULL
     - perf hists browser: Fix hierarchy mode header
     - perf test shell stat_bpf_counters: Fix test on Intel
     - perf tools: Handle old data in PERF_RECORD_ATTR
     - perf hists browser: Fix the number of entries for 'e' key
     - drm/amd/display: always switch off ODM before committing more streams
     - drm/amd/display: Remove wait while locked
     - drm/amdgpu: register a dirty framebuffer callback for fbcon
       (Closes: #1037142)
     - net: ipv4: fix one memleak in __inet_del_ifa()
     - net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in
       smcr_port_add
     - net: stmmac: fix handling of zero coalescing tx-usecs
     - net: ethernet: mvpp2_main: fix possible OOB write in
       mvpp2_ethtool_get_rxnfc()
     - net: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in
       mtk_hwlro_get_fdir_all()
     - hsr: Fix uninit-value access in fill_frame_info()
     - net: ethernet: adi: adin1110: use eth_broadcast_addr() to assign broadcast
       address
     - net:ethernet:adi:adin1110: Fix forwarding offload
     - r8152: check budget for r8152_poll()
     - kcm: Fix memory leak in error path of kcm_sendmsg()
     - net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict()
     - net: macb: Enable PTP unicast
     - net: macb: fix sleep inside spinlock
     - ipv6: fix ip6_sock_set_addr_preferences() typo
     - ipv6: Remove in6addr_any alternatives.
     - tcp: Factorise sk_family-independent comparison in
       inet_bind2_bucket_match(_addr_any).
     - tcp: Fix bind() regression for v4-mapped-v6 wildcard address.
     - tcp: Fix bind() regression for v4-mapped-v6 non-wildcard address.
     - ixgbe: fix timestamp configuration code
     - kcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg().
     - drm/amd/display: Fix a bug when searching for insert_above_mpcc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.55
     - autofs: fix memory leak of waitqueues in autofs_catatonic_mode
     - btrfs: output extra debug info if we failed to find an inline backref
     - ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer
     - kernel/fork: beware of __put_task_struct() calling context
     - rcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to
       _idle()
     - [x86] ACPI: video: Add backlight=native DMI quirk for Lenovo Ideapad Z470
     - [arm64] perf/smmuv3: Enable HiSilicon Erratum 162001900 quirk for HIP08/09
     - [amr64] perf/imx_ddr: speed up overflow frequency of cycle
     - hw_breakpoint: fix single-stepping when using bpf_overflow_handler
     - [x86] ACPI: x86: s2idle: Catch multiple ACPI_TYPE_PACKAGE objects
     - devlink: remove reload failed checks in params get/set callbacks
     - crypto: lrw,xts - Replace strlcpy with strscpy
     - ice: Don't tx before switchdev is fully configured
     - wifi: ath9k: fix fortify warnings
     - wifi: ath9k: fix printk specifier
     - wifi: mwifiex: fix fortify warning
     - mt76: mt7921: don't assume adequate headroom for SDIO headers
     - wifi: wil6210: fix fortify warnings
     - [armhf] can: sun4i_can: Add acceptance register quirk
     - [armhf] can: sun4i_can: Add support for the Allwinner D1
     - net: Use sockaddr_storage for getsockopt(SO_PEERNAME).
     - net/ipv4: return the real errno instead of -EINVAL
     - crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui()
     - Bluetooth: Fix hci_suspend_sync crash
     - netlink: convert nlk->flags to atomic flags
     - tpm_tis: Resend command to recover from data transfer errors
     - [arm64,armhf] mmc: sdhci-esdhc-imx: improve ESDHC_FLAG_ERR010450
     - alx: fix OOB-read compiler warning
     - wifi: mac80211: check S1G action frame size
     - netfilter: ebtables: fix fortify warnings in size_entry_mwt()
     - wifi: cfg80211: reject auth/assoc to AP with our address
     - wifi: cfg80211: ocb: don't leave if not joined
     - wifi: mac80211: check for station first in client probe
     - wifi: mac80211_hwsim: drop short frames
     - drm/bridge: tc358762: Instruct DSI host to generate HSE packets
     - drm/edid: Add quirk for OSVR HDK 2.0
     - [arm64] dts: qcom: sm6125-pdx201: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm6350: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm8150-kumano: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm8250-edo: correct ramoops pmsg-size
     - drm/amd/display: Fix underflow issue on 175hz timing
     - [x86] ASoC: SOF: topology: simplify code to prevent static analysis
       warnings
     - [x86] ASoC: Intel: sof_sdw: Update BT offload config for soundwire config
     - [x86] ALSA: hda: intel-dsp-cfg: add LunarLake support
     - drm/amd/display: Use DTBCLK as refclk instead of DPREFCLK
     - drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN31
     - drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN314
     - [armhf] drm/exynos: fix a possible null-pointer dereference due to data
       race in exynos_drm_crtc_atomic_disable()
     - [armhf] bus: ti-sysc: Configure uart quirks for k3 SoC
     - md: raid1: fix potential OOB in raid1_remove_disk()
     - fs/jfs: prevent double-free in dbUnmount() after failed jfs_remount()
     - jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount
     - [arm64,armhf] PCI: dwc: Provide deinit callback for i.MX
     - [armel,armhf] 9317/1: kexec: Make smp stop calls asynchronous
     - [powerpc*] pseries: fix possible memory leak in ibmebus_bus_init()
     - PCI: vmd: Disable bridge window for domain reset
     - PCI: fu740: Set the number of MSI vectors
     - media: mdp3: Fix resource leaks in of_find_device_by_node
     - media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer
     - media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer()
     - media: af9005: Fix null-ptr-deref in af9005_i2c_xfer
     - media: anysee: fix null-ptr-deref in anysee_master_xfer
     - media: az6007: Fix null-ptr-deref in az6007_i2c_xfer()
     - media: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer
     - scsi: lpfc: Abort outstanding ELS cmds when mailbox timeout error is
       detected
     - media: tuners: qt1010: replace BUG_ON with a regular error
     - media: pci: cx23885: replace BUG with error return
     - usb: cdns3: Put the cdns set active part outside the spin lock
     - usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc
     - scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()
     - serial: cpm_uart: Avoid suspicious locking
     - misc: open-dice: make OPEN_DICE depend on HAS_IOMEM
     - usb: ehci: add workaround for chipidea PORTSC.PEC bug
     - usb: chipidea: add workaround for chipidea PEC bug
     - media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler
       warning
     - kobject: Add sanity check for kset->kobj.ktype in kset_register()
     - [armhf] interconnect: Fix locking for runpm vs reclaim
     - printk: Keep non-panic-CPUs out of console lock
     - printk: Consolidate console deferred printing
     - dma-buf: Add unlocked variant of attachment-mapping functions
     - misc: fastrpc: Prepare to dynamic dma-buf locking specification
     - misc: fastrpc: Fix incorrect DMA mapping unmap request
     - btrfs: add a helper to read the superblock metadata_uuid
     - btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super
     - block: factor out a bvec_set_page helper
     - nvmet: use bvec_set_page to initialize bvecs
     - nvmet-tcp: pass iov_len instead of sg->length to bvec_set_page()
     - drm: gm12u320: Fix the timeout usage for usb_bulk_msg()
     - scsi: qla2xxx: Fix NULL vs IS_ERR() bug for debugfs_create_dir()
     - [x86] ibt: Suppress spurious ENDBR
     - scsi: target: core: Fix target_cmd_counter leak
     - scsi: lpfc: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
     - panic: Reenable preemption in WARN slowpath
     - [x86] boot/compressed: Reserve more memory for page tables
     - [x86] purgatory: Remove LTO flags
     - md/raid1: fix error: ISO C90 forbids mixed declarations
     - Revert "SUNRPC: Fail faster on bad verifier"
     - attr: block mode changes of symlinks
     - ovl: fix failed copyup of fileattr on a symlink
     - ovl: fix incorrect fdput() on aio completion
     - io_uring/net: fix iter retargeting for selected buf
     - nvme: avoid bogus CRTO values
     - md: Put the right device in md_seq_next
     - Revert "drm/amd: Disable S/G for APUs when 64GB or more host memory"
     - dm: don't attempt to queue IO under RCU protection
     - btrfs: fix lockdep splat and potential deadlock after failure running
       delayed items
     - btrfs: fix a compilation error if DEBUG is defined in btree_dirty_folio
     - btrfs: release path before inode lookup during the ino lookup ioctl
     - btrfs: check for BTRFS_FS_ERROR in pending ordered assert
     - tracing: Have tracing_max_latency inc the trace array ref count
     - tracing: Have event inject files inc the trace array ref count
     - tracing: Increase trace array ref count on enable and filter files
     - tracing: Have current_trace inc the trace array ref count
     - tracing: Have option files inc the trace array ref count
     - selinux: fix handling of empty opts in selinux_fs_context_submount()
     - nfsd: fix change_info in NFSv4 RENAME replies
     - tracefs: Add missing lockdown check to tracefs_create_dir()
     - [armhf] i2c: aspeed: Reset the i2c controller when timeout occurs
     - ata: libata: disallow dev-initiated LPM transitions to unsupported states
     - ata: libahci: clear pending interrupt status
     - scsi: megaraid_sas: Fix deadlock on firmware crashdump
     - scsi: pm8001: Setup IRQs on resume
     - ext4: fix rec_len verify error
     - drm/amd/display: fix the white screen issue when >= 64GB DRAM
     - Revert "memcg: drop kmem.limit_in_bytes"
     - drm/amdgpu: fix amdgpu_cs_p1_user_fence
     - net/sched: Retire rsvp classifier (CVE-2023-42755)
     - [arm64,armhf] interconnect: Teach lockdep about icc_bw_lock order
 .
   [ Bastian Blank ]
   * Backport changes in Microsoft Azure Network Adapter up to 6.6.
     (closes: #1035378)
 .
   [ Salvatore Bonaccorso ]
   * [armel/marvell] Disable features to shrink kernel image (fixes FTBFS):
     - tcp: Disable MPTCP
     - tracing: Disable FUNCTION_TRACER
   * Bump ABI to 13
   * [rt] Update to 6.1.54-rt15
   * Drop now unknown config options for IPv4 and IPv6 Resource Reservation
     Protocol (RSVP, RSVP6)
   * [rt] Refresh "printk: Bring back the RT bits."
   * [rt] Refresh "printk: avoid preempt_disable() for PREEMPT_RT"
   * [rt] Drop "kernel/fork: beware of __put_task_struct() calling context"
     (applied upstream)
   * netfilter: nf_tables: don't skip expired elements during walk
     (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction API to avoid race with control plane
     (CVE-2023-4244)
   * netfilter: nf_tables: adapt set backend to use GC transaction API
     (CVE-2023-4244)
   * netfilter: nft_set_hash: mark set element as dead when deleting from packet
     path (CVE-2023-4244)
   * netfilter: nf_tables: remove busy mark and gc batch API (CVE-2023-4244)
   * netfilter: nf_tables: don't fail inserts if duplicate has expired
   * netfilter: nf_tables: fix GC transaction races with netns and netlink event
     exit path (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction race with netns dismantle
     (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction race with abort path
   * netfilter: nf_tables: use correct lock to protect gc_list
   * netfilter: nf_tables: defer gc run if previous batch is still pending
   * netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
   * netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention
   * netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync() in catchall GC
   * netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation
     fails
   * netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration
   * netfilter: nf_tables: fix memleak when more than 255 elements expired
   * netfilter: nf_tables: disallow element removal on anonymous sets
   * netfilter: conntrack: fix extension size table
   * netfilter, bpf: Adjust timeouts of non-confirmed CTs in
     bpf_ct_insert_entry()
   * netfilter: nf_tables: disable toggling dormant table state more than once
   * netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP
     (CVE-2023-42756)
   * misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to
     probe (Closes: #1052063)
   * ipv4: fix null-deref in ipv4_link_failure
 .
   [ Vincent Blut ]
   * drivers/char/hw_random: Change HW_RANDOM from module to built-in
     (Closes: #1041007)
   * drivers/char/tpm: Do not explicitly set HW_RANDOM_TPM
   * [arm64, cloud, x86] drivers/char/tpm: Do not explicitly enable TCG_TPM
   * [arm*,ppc64*,sparc64,s390x] drivers/char/hw_random: Prevent some HW Random
     Number Generator drivers from being built-in
linux-signed-amd64 (6.1.52+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.52-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.39
     - fs: pipe: reveal missing function protoypes
     - block: Fix the type of the second bdev_op_is_zoned_write() argument
     - erofs: clean up cached I/O strategies
     - erofs: avoid tagged pointers to mark sync decompression
     - erofs: remove tagged pointer helpers
     - erofs: move zdata.h into zdata.c
     - erofs: kill hooked chains to avoid loops on deduplicated compressed images
     - [x86] resctrl: Only show tasks' pid in current pid namespace
     - blk-iocost: use spin_lock_irqsave in adjust_inuse_and_calc_cost
     - [x86] sev: Fix calculation of end address based on number of pages
     - virt: sevguest: Add CONFIG_CRYPTO dependency
     - blk-mq: fix potential io hang by wrong 'wake_batch'
     - lockd: drop inappropriate svc_get() from locked_get()
     - nvme-core: fix memory leak in dhchap_secret_store
     - nvme-core: fix memory leak in dhchap_ctrl_secret
     - nvme-core: add missing fault-injection cleanup
     - nvme-core: fix dev_pm_qos memleak
     - md/raid10: check slab-out-of-bounds in md_bitmap_get_counter
     - md/raid10: fix overflow of md/safe_mode_delay
     - md/raid10: fix wrong setting of max_corr_read_errors
     - md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request
     - md/raid10: fix io loss while replacement replace rdev
     - md/raid1-10: factor out a helper to add bio to plug
     - md/raid1-10: factor out a helper to submit normal write
     - md/raid1-10: submit write io directly if bitmap is not enabled
     - block: fix blktrace debugfs entries leakage
     - irqchip/stm32-exti: Fix warning on initialized field overwritten
     - irqchip/jcore-aic: Fix missing allocation of IRQ descriptors
     - svcrdma: Prevent page release when nothing was received
     - erofs: simplify iloc()
     - erofs: fix compact 4B support for 16k block size
     - posix-timers: Prevent RT livelock in itimer_delete()
     - tick/rcu: Fix bogus ratelimit condition
     - tracing/timer: Add missing hrtimer modes to decode_hrtimer_mode().
     - clocksource/drivers/cadence-ttc: Fix memory leak in ttc_timer_probe
     - PM: domains: fix integer overflow issues in genpd_parse_state()
     - perf/arm-cmn: Fix DTC reset
     - [x86] mm: Allow guest.enc_status_change_prepare() to fail
     - [x86] tdx: Fix race between set_memory_encrypted() and
       load_unaligned_zeropad()
     - drivers/perf: hisi: Don't migrate perf to the CPU going to teardown
     - powercap: RAPL: Fix CONFIG_IOSF_MBI dependency
     - PM: domains: Move the verification of in-params from genpd_add_device()
     - cpufreq: intel_pstate: Fix energy_performance_preference for passive
     - thermal/drivers/sun8i: Fix some error handling paths in sun8i_ths_probe()
     - rcu: Make rcu_cpu_starting() rely on interrupts being disabled
     - rcu-tasks: Stop rcu_tasks_invoke_cbs() from using never-onlined CPUs
     - rcutorture: Correct name of use_softirq module parameter
     - rcuscale: Move shutdown from wait_event() to wait_event_idle()
     - rcu/rcuscale: Move rcu_scale_*() after kfree_scale_cleanup()
     - rcu/rcuscale: Stop kfree_scale_thread thread(s) after unloading rcuscale
     - perf/ibs: Fix interface via core pmu events
     - [x86] mm: Fix __swp_entry_to_pte() for Xen PV guests
     - locking/atomic: arm: fix sync ops
     - evm: Complete description of evm_inode_setattr()
     - pstore/ram: Add check for kstrdup
     - igc: Enable and fix RX hash usage by netstack
     - wifi: ath9k: fix AR9003 mac hardware hang check register offset
       calculation
     - wifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx
     - spi: spi-geni-qcom: Correct CS_TOGGLE bit in SPI_TRANS_CFG
     - wifi: wilc1000: fix for absent RSN capabilities WFA testcase
     - wifi: mwifiex: Fix the size of a memory allocation in
       mwifiex_ret_802_11_scan()
     - sctp: add bpf_bypass_getsockopt proto callback
     - bpf: Don't EFAULT for {g,s}setsockopt with wrong optlen
     - spi: dw: Round of n_bytes to power of 2
     - nfc: llcp: fix possible use of uninitialized variable in
       nfc_llcp_send_connect()
     - bpftool: JIT limited misreported as negative value on aarch64
     - bpf: Remove bpf trampoline selector
     - bpf: Fix memleak due to fentry attach failure
     - regulator: core: Fix more error checking for debugfs_create_dir()
     - regulator: core: Streamline debugfs operations
     - wifi: orinoco: Fix an error handling path in spectrum_cs_probe()
     - wifi: orinoco: Fix an error handling path in orinoco_cs_probe()
     - wifi: atmel: Fix an error handling path in atmel_probe()
     - wifi: wl3501_cs: Fix an error handling path in wl3501_probe()
     - wifi: ray_cs: Fix an error handling path in ray_probe()
     - wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes
     - wifi: ath10k: Trigger STA disconnect after reconfig complete on hardware
       restart
     - wifi: mac80211: recalc min chandef for new STA links
     - wifi: rsi: Do not configure WoWlan in shutdown hook if not enabled
     - wifi: rsi: Do not set MMC_PM_KEEP_POWER in shutdown
     - ice: handle extts in the miscellaneous interrupt thread
     - watchdog/perf: define dummy watchdog_update_hrtimer_threshold() on correct
       config
     - watchdog/perf: more properly prevent false positives with turbo modes
     - kexec: fix a memory leak in crash_shrink_memory()
     - mmc: mediatek: Avoid ugly error message when SDIO wakeup IRQ isn't used
     - memstick r592: make memstick_debug_get_tpc_name() static
     - wifi: ath9k: Fix possible stall on ath9k_txq_list_has_key()
     - wifi: mac80211: Fix permissions for valid_links debugfs entry
     - rtnetlink: extend RTEXT_FILTER_SKIP_STATS to IFLA_VF_INFO
     - wifi: ath11k: Add missing check for ioremap
     - wifi: iwlwifi: pull from TXQs with softirqs disabled
     - wifi: iwlwifi: pcie: fix NULL pointer dereference in
       iwl_pcie_irq_rx_msix_handler()
     - wifi: mac80211: Remove "Missing iftype sband data/EHT cap" spam
     - wifi: cfg80211: rewrite merging of inherited elements
     - wifi: cfg80211: drop incorrect nontransmitted BSS update code
     - wifi: cfg80211: fix regulatory disconnect with OCB/NAN
     - wifi: cfg80211/mac80211: Fix ML element common size calculation
     - wifi: ieee80211: Fix the common size calculation for reconfiguration ML
     - mmc: Add MMC_QUIRK_BROKEN_SD_CACHE for Kingston Canvas Go Plus from
       11/2019
     - wifi: iwlwifi: mvm: indicate HW decrypt for beacon protection
     - wifi: ath9k: convert msecs to jiffies where needed
     - bpf: Factor out socket lookup functions for the TC hookpoint.
     - bpf: Call __bpf_sk_lookup()/__bpf_skc_lookup() directly via TC hookpoint
     - bpf: Fix bpf socket lookup from tc/xdp to respect socket VRF bindings
     - can: length: fix bitstuffing count
     - net: stmmac: fix double serdes powerdown
     - netlink: fix potential deadlock in netlink_set_err()
     - netlink: do not hard code device address lenth in fdb dumps
     - bonding: do not assume skb mac_header is set
     - gtp: Fix use-after-free in __gtp_encap_destroy().
     - net: axienet: Move reset before 64-bit DMA detection
     - ocfs2: Fix use of slab data with sendpage
     - sfc: fix crash when reading stats while NIC is resetting
     - net: nfc: Fix use-after-free caused by nfc_llcp_find_local (CVE-2023-3863)
     - lib/ts_bm: reset initial match offset for every block of text
     - netfilter: conntrack: dccp: copy entire header to stack buffer, not just
       basic one
     - netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return
       value.
     - ipvlan: Fix return value of ipvlan_queue_xmit()
     - netlink: Add __sock_i_ino() for __netlink_diag_dump().
     - drm/amd/display: Add logging for display MALL refresh setting
     - radeon: avoid double free in ci_dpm_init()
     - drm/amd/display: Explicitly specify update type per plane info change
     - drm/bridge: it6505: Move a variable assignment behind a null pointer check
       in receive_timing_debugfs_show()
     - Input: drv260x - sleep between polling GO bit
     - drm/bridge: ti-sn65dsi83: Fix enable error path
     - drm/bridge: tc358768: always enable HS video mode
     - drm/bridge: tc358768: fix PLL parameters computation
     - drm/bridge: tc358768: fix PLL target frequency
     - drm/bridge: tc358768: fix TCLK_ZEROCNT computation
     - drm/bridge: tc358768: Add atomic_get_input_bus_fmts() implementation
     - drm/bridge: tc358768: fix TCLK_TRAILCNT computation
     - drm/bridge: tc358768: fix THS_ZEROCNT computation
     - drm/bridge: tc358768: fix TXTAGOCNT computation
     - drm/bridge: tc358768: fix THS_TRAILCNT computation
     - drm/vram-helper: fix function names in vram helper doc
     - mm: call arch_swap_restore() from do_swap_page()
     - clk: vc5: Use `clamp()` to restrict PLL range
     - bootmem: remove the vmemmap pages from kmemleak in free_bootmem_page
     - clk: vc5: Fix .driver_data content in i2c_device_id
     - clk: vc7: Fix .driver_data content in i2c_device_id
     - clk: rs9: Fix .driver_data content in i2c_device_id
     - Input: adxl34x - do not hardcode interrupt trigger type
     - drm: sun4i_tcon: use devm_clk_get_enabled in `sun4i_tcon_init_clocks`
     - drm/panel: sharp-ls043t1le01: adjust mode settings
     - driver: soc: xilinx: use _safe loop iterator to avoid a use after free
     - ASoC: Intel: sof_sdw: remove SOF_SDW_TGL_HDMI for MeteorLake devices
     - drm/vkms: isolate pixel conversion functionality
     - drm: Add fixed-point helper to get rounded integer values
     - drm/vkms: Fix RGB565 pixel conversion
     - ARM: dts: stm32: Move ethernet MAC EEPROM from SoM to carrier boards
     - bus: ti-sysc: Fix dispc quirk masking bool variables
     - [arm64:]dts: microchip: sparx5: do not use PSCI on reference boards
     - drm/bridge: tc358767: Switch to devm MIPI-DSI helpers
     - clk: imx: scu: use _safe list iterator to avoid a use after free
     - hwmon: (f71882fg) prevent possible division by zero
     - RDMA/bnxt_re: Disable/kill tasklet only if it is enabled
     - RDMA/bnxt_re: Fix to remove unnecessary return labels
     - RDMA/bnxt_re: Use unique names while registering interrupts
     - RDMA/bnxt_re: Remove a redundant check inside bnxt_re_update_gid
     - RDMA/bnxt_re: Fix to remove an unnecessary log
     - drm/msm/dsi: don't allow enabling 14nm VCO with unprogrammed rate
     - drm/msm/disp/dpu: get timing engine status from intf status register
     - drm/msm/dpu: Set DPU_DATA_HCTL_EN for in INTF_SC7180_MASK
     - iommu/virtio: Detach domain on endpoint release
     - iommu/virtio: Return size mapped for a detached domain
     - clk: renesas: rzg2l: Fix CPG_SIPLL5_CLK1 register write
     - ARM: dts: gta04: Move model property out of pinctrl node
     - drm/bridge: anx7625: Convert to i2c's .probe_new()
     - drm/bridge: anx7625: Prevent endless probe loop
     - ARM: dts: qcom: msm8974: do not use underscore in node name (again)
     - [arm64] dts: qcom: msm8916: correct camss unit address
     - [arm64] dts: qcom: msm8916: correct MMC unit address
     - [arm64] dts: qcom: msm8994: correct SPMI unit address
     - [arm64] dts: qcom: msm8996: correct camss unit address
     - [arm64] dts: qcom: sdm630: correct camss unit address
     - [arm64] dts: qcom: sdm845: correct camss unit address
     - [arm64] dts: qcom: sm8350: Add GPI DMA compatible fallback
     - [arm64] dts: qcom: sm8350: correct DMA controller unit address
     - [arm64] dts: qcom: sdm845-polaris: add missing touchscreen child node reg
     - [arm64] dts: qcom: apq8016-sbc: Fix regulator constraints
     - [arm64] dts: qcom: apq8016-sbc: Fix 1.8V power rail on LS expansion
     - drm/bridge: Introduce pre_enable_prev_first to alter bridge init order
     - drm/bridge: ti-sn65dsi83: Fix enable/disable flow to meet spec
     - drm/panel: simple: fix active size for Ampire AM-480272H3TMQW-T01H
     - ARM: ep93xx: fix missing-prototype warnings
     - ARM: omap2: fix missing tick_broadcast() prototype
     - [arm64] dts: qcom: pm7250b: add missing spmi-vadc include
     - [arm64] dts: qcom: apq8096: fix fixed regulator name property
     - [arm64] dts: mediatek: mt8183: Add mediatek,broken-save-restore-fw to
       kukui
     - ARM: dts: stm32: Shorten the AV96 HDMI sound card name
     - memory: brcmstb_dpfe: fix testing array offset after use
     - ARM: dts: qcom: apq8074-dragonboard: Set DMA as remotely controlled
     - ASoC: es8316: Increment max value for ALC Capture Target Volume control
     - ASoC: es8316: Do not set rate constraints for unsupported MCLKs
     - ARM: dts: meson8: correct uart_B and uart_C clock references
     - soc/fsl/qe: fix usb.c build errors
     - RDMA/irdma: avoid fortify-string warning in irdma_clr_wqes
     - IB/hfi1: Fix wrong mmu_node used for user SDMA packet after invalidate
     - RDMA/hns: Fix hns_roce_table_get return value
     - ARM: dts: iwg20d-q7-common: Fix backlight pwm specifier
     - drm/msm/dpu: set DSC flush bit correctly at MDP CTL flush register
     - fbdev: omapfb: lcd_mipid: Fix an error handling path in mipid_spi_probe()
     - [arm64] dts: ti: k3-j7200: Fix physical address of pin
     - Input: pm8941-powerkey - fix debounce on gen2+ PMICs
     - ARM: dts: stm32: Fix audio routing on STM32MP15xx DHCOM PDK2
     - ARM: dts: stm32: fix i2s endpoint format property for stm32mp15xx-dkx
     - hwmon: (gsc-hwmon) fix fan pwm temperature scaling
     - hwmon: (pmbus/adm1275) Fix problems with temperature monitoring on ADM1272
     - ARM: dts: BCM5301X: fix duplex-full => full-duplex
     - clk: Export clk_hw_forward_rate_request()
     - drm/amd/display: Fix a test CalculatePrefetchSchedule()
     - drm/amd/display: Fix a test dml32_rq_dlg_get_rq_reg()
     - drm/amdkfd: Fix potential deallocation of previously deallocated memory.
     - soc: mediatek: SVS: Fix MT8192 GPU node name
     - drm/amd/display: Fix artifacting on eDP panels when engaging freesync
       video mode
     - drm/radeon: fix possible division-by-zero errors
     - HID: uclogic: Modular KUnit tests should not depend on KUNIT=y
     - RDMA/rxe: Add ibdev_dbg macros for rxe
     - RDMA/rxe: Replace pr_xxx by rxe_dbg_xxx in rxe_mw.c
     - RDMA/rxe: Fix access checks in rxe_check_bind_mw
     - amdgpu: validate offset_in_bo of drm_amdgpu_gem_va
     - drm/msm/a5xx: really check for A510 in a5xx_gpu_init
     - RDMA/bnxt_re: wraparound mbox producer index
     - RDMA/bnxt_re: Avoid calling wake_up threads from spin_lock context
     - clk: imx: clk-imxrt1050: fix memory leak in imxrt1050_clocks_probe
     - clk: imx: clk-imx8mn: fix memory leak in imx8mn_clocks_probe
     - clk: imx93: fix memory leak and missing unwind goto in imx93_clocks_probe
     - clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe()
     - [arm64] dts: qcom: sdm845: Flush RSC sleep & wake votes
     - [arm64] dts: qcom: sm8250-edo: Panel framebuffer is 2.5k instead of 4k
     - clk: bcm: rpi: Fix off by one in raspberrypi_discover_clocks()
     - clk: clocking-wizard: Fix Oops in clk_wzrd_register_divider()
     - clk: tegra: tegra124-emc: Fix potential memory leak
     - ALSA: ac97: Fix possible NULL dereference in snd_ac97_mixer
     - drm/msm/dpu: do not enable color-management if DSPPs are not available
     - drm/msm/dpu: Fix slice_last_group_size calculation
     - drm/msm/dsi: Use DSC slice(s) packet size to compute word count
     - drm/msm/dsi: Flip greater-than check for slice_count and slice_per_intf
     - drm/msm/dsi: Remove incorrect references to slice_count
     - drm/msm/dp: Free resources after unregistering them
     - [arm64] dts: mediatek: Add cpufreq nodes for MT8192
     - [arm64] dts: mediatek: mt8192: Fix CPUs capacity-dmips-mhz
     - drm/amdgpu: Fix memcpy() in sienna_cichlid_append_powerplay_table
       function.
     - drm/amdgpu: Fix usage of UMC fill record in RAS
     - drm/msm/dpu: correct MERGE_3D length
     - clk: vc5: check memory returned by kasprintf()
     - clk: cdce925: check return value of kasprintf()
     - clk: si5341: return error if one synth clock registration fails
     - clk: si5341: check return value of {devm_}kasprintf()
     - clk: si5341: free unused memory on probe failure
     - clk: keystone: sci-clk: check return value of kasprintf()
     - clk: ti: clkctrl: check return value of kasprintf()
     - drivers: meson: secure-pwrc: always enable DMA domain
     - ovl: update of dentry revalidate flags after copy up
     - ASoC: imx-audmix: check return value of devm_kasprintf()
     - clk: Fix memory leak in devm_clk_notifier_register()
     - ARM: dts: lan966x: kontron-d10: fix board reset
     - ARM: dts: lan966x: kontron-d10: fix SPI CS
     - ASoC: amd: acp: clear pdm dma interrupt mask
     - PCI: cadence: Fix Gen2 Link Retraining process
     - PCI: vmd: Reset VMD config register between soft reboots
     - scsi: qedf: Fix NULL dereference in error handling
     - pinctrl: bcm2835: Handle gpiochip_add_pin_range() errors
     - [x86] platform/x86: lenovo-yogabook: Fix work race on remove()
     - [x86] platform/x86: lenovo-yogabook: Reprobe devices on remove()
     - [x86] platform/x86: lenovo-yogabook: Set default keyboard backligh
       brightness on probe()
     - PCI/ASPM: Disable ASPM on MFD function removal to avoid use-after-free
     - scsi: 3w-xxxx: Add error handling for initialization failure in tw_probe()
     - PCI: pciehp: Cancel bringup sequence if card is not present
     - PCI: ftpci100: Release the clock resources
     - pinctrl: sunplus: Add check for kmalloc
     - PCI: Add pci_clear_master() stub for non-CONFIG_PCI
     - scsi: lpfc: Revise NPIV ELS unsol rcv cmpl logic to drop ndlp based on
       nlp_state
     - perf bench: Add missing setlocale() call to allow usage of %'d style
       formatting
     - pinctrl: cherryview: Return correct value if pin in push-pull mode
     - [x86] platform/x86: think-lmi: mutex protection around multiple WMI calls
     - [x86] platform/x86: think-lmi: Correct System password interface
     - [x86] platform/x86: think-lmi: Correct NVME password handling
     - pinctrl:sunplus: Add check for kmalloc
     - pinctrl: npcm7xx: Add missing check for ioremap
     - kcsan: Don't expect 64 bits atomic builtins from 32 bits architectures
     - powerpc/interrupt: Don't read MSR from interrupt_exit_kernel_prepare()
     - [powerpc*] signal32: Force inlining of __unsafe_save_user_regs() and
       save_tm_user_regs_unsafe()
     - perf script: Fix allocation of evsel->priv related to per-event dump files
     - [x86] platform/x86: thinkpad_acpi: Fix lkp-tests warnings for platform
       profiles
     - perf dwarf-aux: Fix off-by-one in die_get_varname()
     - [x86] platform/x86/dell/dell-rbtn: Fix resources leaking on error path
     - [x86] perf tool x86: Consolidate is_amd check into single function
     - [x86] perf tool x86: Fix perf_env memory leak
     - [powerpc*] 64s: Fix VAS mm use after free
     - pinctrl: microchip-sgpio: check return value of devm_kasprintf()
     - pinctrl: at91-pio4: check return value of devm_kasprintf()
     - [powerpc*] powernv/sriov: perform null check on iov before dereferencing
       iov
     - [powerpc*] simplify ppc_save_regs
     - [powerpc*] update ppc_save_regs to save current r1 in pt_regs
     - PCI: qcom: Remove PCIE20_ prefix from register definitions
     - PCI: qcom: Sort and group registers and bitfield definitions
     - PCI: qcom: Use lower case for hex
     - PCI: qcom: Use DWC helpers for modifying the read-only DBI registers
     - PCI: qcom: Disable write access to read only registers for IP v2.9.0
     - [powerpc*] book3s64/mm: Fix DirectMap stats in /proc/meminfo
     - [powerpc*] mm/dax: Fix the condition when checking if altmap vmemap can
       cross-boundary
     - PCI: endpoint: Fix Kconfig indent style
     - PCI: endpoint: Fix a Kconfig prompt of vNTB driver
     - PCI: endpoint: functions/pci-epf-test: Fix dma_chan direction
     - PCI: vmd: Fix uninitialized variable usage in vmd_enable_domain()
     - vfio/mdev: Move the compat_class initialization to module init
     - hwrng: virtio - Fix race on data_avail and actual data
     - modpost: remove broken calculation of exception_table_entry size
     - crypto: nx - fix build warnings when DEBUG_FS is not enabled
     - modpost: fix section mismatch message for R_ARM_ABS32
     - modpost: fix section mismatch message for R_ARM_{PC24,CALL,JUMP24}
     - crypto: marvell/cesa - Fix type mismatch warning
     - crypto: jitter - correct health test during initialization
     - modpost: fix off by one in is_executable_section()
     - crypto: kpp - Add helper to set reqsize
     - crypto: qat - Use helper to set reqsize
     - crypto: qat - unmap buffer before free for DH
     - crypto: qat - unmap buffers before free for RSA
     - NFSv4.2: fix wrong shrinker_id
     - NFSv4.1: freeze the session table upon receiving NFS4ERR_BADSESSION
     - SMB3: Do not send lease break acknowledgment if all file handles have been
       closed
     - dax: Fix dax_mapping_release() use after free
     - dax: Introduce alloc_dev_dax_id()
     - dax/kmem: Pass valid argument to memory_group_register_static
     - hwrng: st - keep clock enabled while hwrng is registered
     - kbuild: Disable GCOV for *.mod.o
     - efi/libstub: Disable PCI DMA before grabbing the EFI memory map
     - cifs: prevent use-after-free by freeing the cfile later
     - cifs: do all necessary checks for credits within or before locking
     - smb: client: fix broken file attrs with nodfs mounts
     - ksmbd: avoid field overflow warning
     - [arm64] sme: Use STR P to clear FFR context field in streaming SVE mode
     - [x86] efi: Make efi_set_virtual_address_map IBT safe
     - md/raid1-10: fix casting from randomized structure in raid1_submit_write()
     - USB: serial: option: add LARA-R6 01B PIDs
     - usb: dwc3: gadget: Propagate core init errors to UDC during pullup
     - phy: tegra: xusb: Clear the driver reference in usb-phy dev
     - iio: adc: ad7192: Fix null ad7192_state pointer access
     - iio: adc: ad7192: Fix internal/external clock selection
     - iio: accel: fxls8962af: errata bug only applicable for FXLS8962AF
     - iio: accel: fxls8962af: fixup buffer scan element type
     - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on
       EliteBook
     - ALSA: hda/realtek: Add quirk for Clevo NPx0SNx
     - ALSA: jack: Fix mutex call in snd_jack_report()
     - ALSA: pcm: Fix potential data race at PCM memory allocation helpers
     - block: fix signed int overflow in Amiga partition support
     - block: add overflow checks for Amiga partition support
     - block: change all __u32 annotations to __be32 in affs_hardblocks.h
     - block: increment diskseq on all media change events
     - btrfs: fix race when deleting free space root from the dirty cow roots
       list
     - SUNRPC: Fix UAF in svc_tcp_listen_data_ready()
     - w1: w1_therm: fix locking behavior in convert_t
     - w1: fix loop in w1_fini()
     - dt-bindings: power: reset: qcom-pon: Only allow reboot-mode pre-pmk8350
     - f2fs: do not allow to defragment files have FI_COMPRESS_RELEASED
     - usb: dwc2: platform: Improve error reporting for problems during .remove()
     - usb: dwc2: Fix some error handling paths
     - serial: 8250: omap: Fix freeing of resources on failed register
     - clk: qcom: mmcc-msm8974: remove oxili_ocmemgx_clk
     - clk: qcom: camcc-sc7180: Add parent dependency to all camera GDSCs
     - clk: qcom: gcc-ipq6018: Use floor ops for sdcc clocks
     - clk: qcom: gcc-qcm2290: Mark RCGs shared where applicable
     - media: usb: Check az6007_read() return value
     - media: amphion: drop repeated codec data for vc1l format
     - media: amphion: drop repeated codec data for vc1g format
     - media: amphion: initiate a drain of the capture queue in dynamic
       resolution change
     - media: videodev2.h: Fix struct v4l2_input tuner index comment
     - media: usb: siano: Fix warning due to null work_func_t function pointer
       (CVE-2023-4132)
     - media: i2c: Correct format propagation for st-mipid02
     - media: hi846: fix usage of pm_runtime_get_if_in_use()
     - media: mediatek: vcodec: using decoder status instead of core work count
     - clk: qcom: reset: support resetting multiple bits
     - clk: qcom: ipq6018: fix networking resets
     - clk: qcom: dispcc-qcm2290: Fix BI_TCXO_AO handling
     - clk: qcom: dispcc-qcm2290: Fix GPLL0_OUT_DIV handling
     - clk: qcom: mmcc-msm8974: use clk_rcg2_shared_ops for mdp_clk_src clock
     - staging: vchiq_arm: mark vchiq_platform_init() static
     - usb: dwc3: qcom: Fix potential memory leak
     - usb: gadget: u_serial: Add null pointer check in gserial_suspend
     - extcon: Fix kernel doc of property fields to avoid warnings
     - extcon: Fix kernel doc of property capability fields to avoid warnings
     - usb: phy: phy-tahvo: fix memory leak in tahvo_usb_probe()
     - usb: hide unused usbfs_notify_suspend/resume functions
     - usb: misc: eud: Fix eud sysfs path (use 'qcom_eud')
     - serial: core: lock port for stop_rx() in uart_suspend_port()
     - serial: 8250: lock port for stop_rx() in omap8250_irq()
     - serial: core: lock port for start_rx() in uart_resume_port()
     - serial: 8250: lock port for UART_IER access in omap8250_irq()
     - kernfs: fix missing kernfs_idr_lock to remove an ID from the IDR
     - lkdtm: replace ll_rw_block with submit_bh
     - i3c: master: svc: fix cpu schedule in spin lock
     - coresight: Fix loss of connection info when a module is unloaded
     - mfd: rt5033: Drop rt5033-battery sub-device
     - media: venus: helpers: Fix ALIGN() of non power of two
     - media: atomisp: gmin_platform: fix out_len in gmin_get_config_dsm_var()
     - gfs2: Fix duplicate should_fault_in_pages() call
     - f2fs: fix potential deadlock due to unpaired node_write lock use
     - f2fs: fix to avoid NULL pointer dereference f2fs_write_end_io()
       (CVE-2023-2898)
     - [s390x] KVM: s390: fix KVM_S390_GET_CMMA_BITS for GFNs in memslot holes
     - usb: dwc3: qcom: Release the correct resources in dwc3_qcom_remove()
     - usb: dwc3: qcom: Fix an error handling path in dwc3_qcom_probe()
     - usb: common: usb-conn-gpio: Set last role to unknown before initial
       detection
     - usb: dwc3-meson-g12a: Fix an error handling path in
       dwc3_meson_g12a_probe()
     - mfd: wcd934x: Fix an error handling path in wcd934x_slim_probe()
     - mfd: intel-lpss: Add missing check for platform_get_resource
     - Revert "usb: common: usb-conn-gpio: Set last role to unknown before
       initial detection"
     - serial: 8250_omap: Use force_suspend and resume for system suspend
     - device property: Fix documentation for fwnode_get_next_parent()
     - device property: Clarify description of returned value in some functions
     - drivers: fwnode: fix fwnode_irq_get[_byname]()
     - nvmem: sunplus-ocotp: release otp->clk before return
     - nvmem: rmem: Use NVMEM_DEVID_AUTO
     - bus: fsl-mc: don't assume child devices are all fsl-mc devices
     - mfd: stmfx: Fix error path in stmfx_chip_init
     - mfd: stmfx: Nullify stmfx->vdd in case of error
     - [s390x] KVM: s390: vsie: fix the length of APCB bitmap
     - [s390x] KVM: s390/diag: fix racy access of physical cpu number in diag 9c
       handler
     - cpufreq: mediatek: correct voltages for MT7622 and MT7623
     - misc: fastrpc: check return value of devm_kasprintf()
     - clk: qcom: mmcc-msm8974: fix MDSS_GDSC power flags
     - hwtracing: hisi_ptt: Fix potential sleep in atomic context
     - mfd: stmpe: Only disable the regulators if they are enabled
     - phy: tegra: xusb: check return value of devm_kzalloc()
     - lib/bitmap: drop optimization of bitmap_{from,to}_arr64
     - pwm: imx-tpm: force 'real_period' to be zero in suspend
     - pwm: sysfs: Do not apply state to already disabled PWMs
     - pwm: ab8500: Fix error code in probe()
     - pwm: mtk_disp: Fix the disable flow of disp_pwm
     - md/raid10: fix the condition to call bio_end_io_acct()
     - rtc: st-lpc: Release some resources in st_rtc_probe() in case of error
     - [x86] drm/i915/psr: Use hw.adjusted mode when calculating io/fast wake
       times
     - [x86] drm/i915/guc/slpc: Apply min softlimit correctly
     - f2fs: check return value of freeze_super()
     - media: cec: i2c: ch7322: also select REGMAP
     - sctp: fix potential deadlock on &net->sctp.addr_wq_lock
     - net/sched: act_ipt: add sanity checks on table name and hook locations
     - net: add a couple of helpers for iph tot_len
     - net/sched: act_ipt: add sanity checks on skb before calling target
     - spi: spi-geni-qcom: enable SPI_CONTROLLER_MUST_TX for GPI DMA mode
     - net: mscc: ocelot: don't report that RX timestamping is enabled by default
     - net: mscc: ocelot: don't keep PTP configuration of all ports in single
       structure
     - net: dsa: felix: don't drop PTP frames with tag_8021q when RX timestamping
       is disabled
     - net: dsa: sja1105: always enable the INCL_SRCPT option
     - net: dsa: tag_sja1105: always prefer source port information from
       INCL_SRCPT
     - Add MODULE_FIRMWARE() for FIRMWARE_TG357766.
     - Bluetooth: fix invalid-bdaddr quirk for non-persistent setup
     - Bluetooth: ISO: use hci_sync for setting CIG parameters
     - Bluetooth: MGMT: add CIS feature bits to controller information
     - Bluetooth: MGMT: Use BIT macro when defining bitfields
     - Bluetooth: MGMT: Fix marking SCAN_RSP as not connectable
     - ibmvnic: Do not reset dql stats on NON_FATAL err
     - net: dsa: vsc73xx: fix MTU configuration
     - mlxsw: minimal: fix potential memory leak in mlxsw_m_linecards_init
     - spi: bcm-qspi: return error if neither hif_mspi nor mspi is available
     - drm/amdgpu: fix number of fence calculations
     - drm/amd: Don't try to enable secure display TA multiple times
     - mailbox: ti-msgmgr: Fill non-message tx data fields with 0x0
     - f2fs: fix error path handling in truncate_dnode()
     - octeontx2-af: Fix mapping for NIX block from CGX connection
     - octeontx2-af: Add validation before accessing cgx and lmac
     - ntfs: Fix panic about slab-out-of-bounds caused by ntfs_listxattr()
     - [powerpc*] allow PPC_EARLY_DEBUG_CPM only when SERIAL_CPM=y
     - [powerpc*] dts: turris1x.dts: Fix PCIe MEM size for pci2 node
     - net: bridge: keep ports without IFF_UNICAST_FLT in BR_PROMISC mode
     - net: dsa: tag_sja1105: fix source port decoding in vlan_filtering=0 bridge
       mode
     - net: fix net_dev_start_xmit trace event vs skb_transport_offset()
     - tcp: annotate data races in __tcp_oow_rate_limited()
     - bpf, btf: Warn but return no error for NULL btf from
       __register_btf_kfunc_id_set()
     - xsk: Honor SO_BINDTODEVICE on bind
     - net/sched: act_pedit: Add size check for TCA_PEDIT_PARMS_EX
     - fanotify: disallow mount/sb marks on kernel internal pseudo fs
     - pptp: Fix fib lookup calls.
     - net: dsa: tag_sja1105: fix MAC DA patching from meta frames
     - net: dsa: sja1105: always enable the send_meta options
     - octeontx-af: fix hardware timestamp configuration
     - afs: Fix accidental truncation when storing data
     - [s390x] qeth: Fix vipa deletion
     - apparmor: fix missing error check for rhashtable_insert_fast
     - i2c: xiic: Don't try to handle more interrupt events after error
     - dm: fix undue/missing spaces
     - dm: avoid split of quoted strings where possible
     - dm ioctl: have constant on the right side of the test
     - dm ioctl: Avoid double-fetch of version
     - extcon: usbc-tusb320: Convert to i2c's .probe_new()
     - extcon: usbc-tusb320: Unregister typec port on driver removal
     - btrfs: do not BUG_ON() on tree mod log failure at balance_level()
     - i2c: qup: Add missing unwind goto in qup_i2c_probe()
     - irqchip/loongson-pch-pic: Fix potential incorrect hwirq assignment
     - NFSD: add encoding of op_recall flag for write delegation
     - irqchip/loongson-pch-pic: Fix initialization of HT vector register
     - io_uring: wait interruptibly for request completions on exit
     - mmc: core: disable TRIM on Kingston EMMC04G-M627
     - mmc: core: disable TRIM on Micron MTFC4GACAJCN-1M
     - mmc: mmci: Set PROBE_PREFER_ASYNCHRONOUS
     - mmc: sdhci: fix DMA configure compatibility issue when 64bit DMA mode is
       used.
     - wifi: cfg80211: fix regulatory disconnect for non-MLO
     - wifi: ath10k: Serialize wake_tx_queue ops
     - wifi: mt76: mt7921e: fix init command fail with enabled device
     - bcache: fixup btree_cache_wait list damage
     - bcache: Remove unnecessary NULL point check in node allocations
     - bcache: Fix __bch_btree_node_alloc to make the failure behavior consistent
     - watch_queue: prevent dangling pipe pointer
     - integrity: Fix possible multiple allocation in integrity_inode_get()
     - autofs: use flexible array in ioctl structure
     - mm/damon/ops-common: atomically test and clear young on ptes and pmds
     - shmem: use ramfs_kill_sb() for kill_sb method of ramfs-based tmpfs
     - jffs2: reduce stack usage in jffs2_build_xattr_subsystem()
     - fs: avoid empty option when generating legacy mount string
     - ext4: Remove ext4 locking of moved directory
     - Revert "f2fs: fix potential corruption when moving a directory"
     - fs: Establish locking order for unrelated directories
     - fs: Lock moved directories
     - i2c: nvidia-gpu: Add ACPI property to align with device-tree
     - i2c: nvidia-gpu: Remove ccgx,firmware-build property
     - usb: typec: ucsi: Mark dGPUs as DEVICE scope
     - ipvs: increase ip_vs_conn_tab_bits range for 64BIT
     - btrfs: add handling for RAID1C23/DUP to btrfs_reduce_alloc_profile
     - btrfs: delete unused BGs while reclaiming BGs
     - btrfs: bail out reclaim process if filesystem is read-only
     - btrfs: add block-group tree to lockdep classes
     - btrfs: reinsert BGs failed to reclaim
     - btrfs: fix race when deleting quota root from the dirty cow roots list
     - btrfs: fix extent buffer leak after tree mod log failure at split_node()
     - btrfs: do not BUG_ON() on tree mod log failure at __btrfs_cow_block()
     - ASoC: mediatek: mt8173: Fix irq error path
     - ASoC: mediatek: mt8173: Fix snd_soc_component_initialize error path
     - regulator: tps65219: Fix matching interrupts for their regulators
     - ARM: dts: qcom: ipq4019: fix broken NAND controller properties override
     - ARM: orion5x: fix d2net gpio initialization
     - leds: trigger: netdev: Recheck NETDEV_LED_MODE_LINKUP on dev rename
     - blktrace: use inline function for blk_trace_remove() while blktrace is
       disabled
     - fs: no need to check source
     - xfs: explicitly specify cpu when forcing inodegc delayed work to run
       immediately
     - xfs: check that per-cpu inodegc workers actually run on that cpu
     - xfs: disable reaping in fscounters scrub
     - xfs: fix xfs_inodegc_stop racing with mod_delayed_work
     - mm/mmap: Fix extra maple tree write
     - [x86] drm/i915: Fix TypeC mode initialization during system resume
     - [x86] drm/i915/tc: Fix TC port link ref init for DP MST during HW readout
     - [x86] drm/i915/tc: Fix system resume MST mode restore for DP-alt sinks
     - mtd: parsers: refer to ARCH_BCMBCA instead of ARCH_BCM4908
     - netfilter: nf_tables: unbind non-anonymous set if rule construction fails
     - netfilter: conntrack: Avoid nf_ct_helper_hash uses after free
     - wireguard: queueing: use saner cpu selection wrapping
     - wireguard: netlink: send staged packets when setting initial private key
     - tty: serial: fsl_lpuart: add earlycon for imx8ulp platform
     - block/partition: fix signedness issue for Amiga partitions
     - io_uring: Use io_schedule* in cqring wait
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.40
     - HID: amd_sfh: Rename the float32 variable
     - HID: amd_sfh: Fix for shift-out-of-bounds
     - net: lan743x: Don't sleep in atomic context
     - workqueue: clean up WORK_* constant types, clarify masking
     - ksmbd: add missing compound request handing in some commands
     - ksmbd: fix out of bounds read in smb2_sess_setup
     - drm/panel: simple: Add connector_type for innolux_at043tn24
     - drm/bridge: ti-sn65dsi86: Fix auxiliary bus lifetime
     - swiotlb: always set the number of areas before allocating the pool
     - swiotlb: reduce the swiotlb buffer size on allocation failure
     - swiotlb: reduce the number of areas to match actual memory pool size
     - drm/panel: simple: Add Powertip PH800480T013 drm_display_mode flags
     - ice: Fix max_rate check while configuring TX rate limits
     - igc: Remove delay during TX ring configuration
     - net/mlx5e: fix double free in mlx5e_destroy_flow_table
     - net/mlx5e: fix memory leak in mlx5e_fs_tt_redirect_any_create
     - net/mlx5e: fix memory leak in mlx5e_ptp_open
     - net/mlx5e: Check for NOT_READY flag state after locking
     - igc: set TP bit in 'supported' and 'advertising' fields of
       ethtool_link_ksettings
     - igc: Handle PPS start time programming for past time values
     - blk-crypto: use dynamic lock class for blk_crypto_profile::lock
     - scsi: qla2xxx: Fix error code in qla2x00_start_sp()
     - scsi: ufs: ufs-mediatek: Add dependency for RESET_CONTROLLER
     - bpf: Fix max stack depth check for async callbacks
     - net: mvneta: fix txq_map in case of txq_number==1
     - net/sched: cls_fw: Fix improper refcount update leads to use-after-free
       (CVE-2023-3776)
     - gve: Set default duplex configuration to full
     - octeontx2-af: Promisc enable/disable through mbox
     - octeontx2-af: Move validation of ptp pointer before its usage
     - ionic: remove WARN_ON to prevent panic_on_warn
     - net: bgmac: postpone turning IRQs off to avoid SoC hangs
     - net: prevent skb corruption on frag list segmentation
     - icmp6: Fix null-ptr-deref of ip6_null_entry->rt6i_idev in icmp6_dev().
     - udp6: fix udp6_ehashfn() typo
     - ntb: idt: Fix error handling in idt_pci_driver_init()
     - NTB: amd: Fix error handling in amd_ntb_pci_driver_init()
     - ntb: intel: Fix error handling in intel_ntb_pci_driver_init()
     - NTB: ntb_transport: fix possible memory leak while device_register() fails
     - NTB: ntb_tool: Add check for devm_kcalloc
     - ipv6/addrconf: fix a potential refcount underflow for idev
     - net: dsa: qca8k: Add check for skb_copy
     - [x86] platform/x86: wmi: Break possible infinite loop when parsing GUID
     - kernel/trace: Fix cleanup logic of enable_trace_eprobe
     - igc: Fix launchtime before start of cycle
     - igc: Fix inserting of empty frame for launchtime
     - nvme: fix the NVME_ID_NS_NVM_STS_MASK definition
     - [x86] drm/i915: Don't preserve dpll_hw_state for slave crtc in Bigjoiner
     - [x86] drm/i915: Fix one wrong caching mode enum usage
     - octeontx2-pf: Add additional check for MCAM rules
     - erofs: avoid useless loops in z_erofs_pcluster_readmore() when reading
       beyond EOF
     - erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond
       EOF
     - erofs: fix fsdax unavailability for chunk-based regular files
     - wifi: airo: avoid uninitialized warning in airo_get_rate()
     - bpf: cpumap: Fix memory leak in cpu_map_update_elem
     - net/sched: flower: Ensure both minimum and maximum ports are specified
     - riscv: mm: fix truncation warning on RV32
     - netdevsim: fix uninitialized data in nsim_dev_trap_fa_cookie_write()
     - net/sched: make psched_mtu() RTNL-less safe
     - wifi: rtw89: debug: fix error code in rtw89_debug_priv_send_h2c_set()
     - net/sched: sch_qfq: refactor parsing of netlink parameters
     - net/sched: sch_qfq: account for stab overhead in qfq_enqueue
       (CVE-2023-3611)
     - nvme-pci: fix DMA direction of unmapping integrity data
     - fs/ntfs3: Check fields while reading (CVE-2022-48502)
     - ovl: let helper ovl_i_path_real() return the realinode
     - ovl: fix null pointer dereference in ovl_get_acl_rcu()
     - cifs: fix session state check in smb2_find_smb_ses
     - drm/client: Send hotplug event after registering a client
     - drm/amdgpu/sdma4: set align mask to 255
     - drm/amd/pm: revise the ASPM settings for thunderbolt attached scenario
     - drm/amdgpu: add the fan abnormal detection feature
     - drm/amdgpu: Fix minmax warning
     - drm/amd/pm: add abnormal fan detection for smu 13.0.0
     - f2fs: fix the wrong condition to determine atomic context
     - f2fs: fix deadlock in i_xattr_sem and inode page lock
     - pinctrl: amd: Add Z-state wake control bits
     - pinctrl: amd: Adjust debugfs output
     - pinctrl: amd: Add fields for interrupt status and wake status
     - pinctrl: amd: Detect internal GPIO0 debounce handling
     - pinctrl: amd: Fix mistake in handling clearing pins at startup
     - pinctrl: amd: Detect and mask spurious interrupts
     - pinctrl: amd: Revert "pinctrl: amd: disable and mask interrupts on probe"
     - pinctrl: amd: Only use special debounce behavior for GPIO 0
     - pinctrl: amd: Use amd_pinconf_set() for all config options
     - pinctrl: amd: Drop pull up select configuration
     - pinctrl: amd: Unify debounce handling into amd_pinconf_set()
     - tpm: Do not remap from ACPI resources again for Pluton TPM
     - tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation
     - tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
     - tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
     - tpm: return false from tpm_amd_is_rng_defective on non-x86 platforms
     - mtd: rawnand: meson: fix unaligned DMA buffers handling
     - net: bcmgenet: Ensure MDIO unregistration has clocks enabled
     - net: phy: dp83td510: fix kernel stall during netboot in DP83TD510E PHY
       driver
     - tracing/user_events: Fix incorrect return value for writing operation when
       events are disabled
     - [powerpc*] Fail build if using recordmcount with binutils v2.37
     - misc: fastrpc: Create fastrpc scalar with correct buffer count
     - [powerpc*] security: Fix Speculation_Store_Bypass reporting on Power10
     - [powerpc*] 64s: Fix native_hpte_remove() to be irq-safe
     - [mips*] Loongson: Fix cpu_probe_loongson() again
     - [mips*] KVM: Fix NULL pointer dereference
     - ext4: Fix reusing stale buffer heads from last failed mounting
     - ext4: fix wrong unit use in ext4_mb_clear_bb
     - ext4: get block from bh in ext4_free_blocks for fast commit replay
     - ext4: fix wrong unit use in ext4_mb_new_blocks
     - ext4: fix to check return value of freeze_bdev() in ext4_shutdown()
     - ext4: turn quotas off if mount failed after enabling quotas
     - ext4: only update i_reserved_data_blocks on successful block allocation
     - fs: dlm: revert check required context while close
     - soc: qcom: mdt_loader: Fix unconditional call to scm_pas_mem_setup
     - ext2/dax: Fix ext2_setsize when len is page aligned
     - jfs: jfs_dmap: Validate db_l2nbperpage while mounting
     - hwrng: imx-rngc - fix the timeout for init and self check
     - dm integrity: reduce vmalloc space footprint on 32-bit architectures
     - scsi: mpi3mr: Propagate sense data for admin queue SCSI I/O
     - [s390x] zcrypt: do not retry administrative requests
     - PCI/PM: Avoid putting EloPOS E2/S2/H2 PCIe Ports in D3cold
     - PCI: Release resource invalidated by coalescing
     - PCI: Add function 1 DMA alias quirk for Marvell 88SE9235
     - PCI: qcom: Disable write access to read only registers for IP v2.3.3
     - PCI: epf-test: Fix DMA transfer completion initialization
     - PCI: epf-test: Fix DMA transfer completion detection
     - PCI: rockchip: Assert PCI Configuration Enable bit after probe
     - PCI: rockchip: Write PCI Device ID to correct register
     - PCI: rockchip: Add poll and timeout to wait for PHY PLLs to be locked
     - PCI: rockchip: Fix legacy IRQ generation for RK3399 PCIe endpoint core
     - PCI: rockchip: Use u32 variable to access 32-bit registers
     - PCI: rockchip: Set address alignment for endpoint mode
     - misc: pci_endpoint_test: Free IRQs before removing the device
     - misc: pci_endpoint_test: Re-init completion for every test
     - mfd: pm8008: Fix module autoloading
     - md/raid0: add discard support for the 'original' layout
     - dm init: add dm-mod.waitfor to wait for asynchronously probed block
       devices
     - fs: dlm: return positive pid value for F_GETLK
     - fs: dlm: fix cleanup pending ops when interrupted
     - fs: dlm: interrupt posix locks only when process is killed
     - fs: dlm: make F_SETLK use unkillable wait_event
     - fs: dlm: fix mismatch of plock results from userspace
     - scsi: lpfc: Fix double free in lpfc_cmpl_els_logo_acc() caused by
       lpfc_nlp_not_used()
     - drm/atomic: Allow vblank-enabled + self-refresh "disable"
     - drm/rockchip: vop: Leave vblank enabled in self-refresh
     - drm/amd/display: fix seamless odm transitions
     - drm/amd/display: edp do not add non-edid timings
     - drm/amd/display: Remove Phantom Pipe Check When Calculating K1 and K2
     - drm/amd/display: disable seamless boot if force_odm_combine is enabled
     - drm/amdgpu: fix clearing mappings for BOs that are always valid in VM
     - drm/amd: Disable PSR-SU on Parade 0803 TCON
     - drm/amd/display: add a NULL pointer check
     - drm/amd/display: Correct `DMUB_FW_VERSION` macro
     - drm/amd/display: Add monitor specific edid quirk
     - drm/amdgpu: avoid restore process run into dead loop.
     - drm/ttm: Don't leak a resource on swapout move error
     - serial: atmel: don't enable IRQs prematurely
     - tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() in
       case of error
     - tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk()
       when iterating clk
     - tty: serial: imx: fix rs485 rx after tx
     - firmware: stratix10-svc: Fix a potential resource leak in
       svc_create_memory_pool()
     - libceph: harden msgr2.1 frame segment length checks
     - ceph: add a dedicated private data for netfs rreq
     - ceph: fix blindly expanding the readahead windows
     - ceph: don't let check_caps skip sending responses for revoke msgs
     - xhci: Fix resume issue of some ZHAOXIN hosts
     - xhci: Fix TRB prefetch issue of ZHAOXIN hosts
     - xhci: Show ZHAOXIN xHCI root hub speed correctly
     - meson saradc: fix clock divider mask length
     - opp: Fix use-after-free in lazy_opp_tables after probe deferral
     - soundwire: qcom: fix storing port config out-of-bounds
     - Revert "8250: add support for ASIX devices with a FIFO bug"
     - bus: ixp4xx: fix IXP4XX_EXP_T1_MASK
     - [s390x] decompressor: fix misaligned symbol build error
     - dm: verity-loadpin: Add NULL pointer check for 'bdev' parameter
     - tracing/histograms: Add histograms to hist_vars if they have referenced
       variables
     - tracing: Fix memory leak of iter->temp when reading trace_pipe
     - nvme: don't reject probe due to duplicate IDs for single-ported PCIe
       devices
     - perf: RISC-V: Remove PERF_HES_STOPPED flag checking in riscv_pmu_start()
     - regmap-irq: Fix out-of-bounds access when allocating config buffers
     - net: ena: fix shift-out-of-bounds in exponential backoff
     - ring-buffer: Fix deadloop issue on reading trace_pipe
     - ftrace: Fix possible warning on checking all pages used in
       ftrace_process_locs()
     - drm/amd/pm: share the code around SMU13 pcie parameters update
     - drm/amd/pm: conditionally disable pcie lane/speed switching for SMU13
     - cifs: if deferred close is disabled then close files immediately
     - [x86] perf/x86: Fix lockdep warning in for_each_sibling_event() on SPR
     - PM: QoS: Restore support for default value on frequency QoS
     - pwm: meson: modify and simplify calculation in meson_pwm_get_state
     - pwm: meson: fix handling of period/duty if greater than UINT_MAX
     - fprobe: Release rethook after the ftrace_ops is unregistered
     - fprobe: Ensure running fprobe_exit_handler() finished before calling
       rethook_free()
     - tracing: Fix null pointer dereference in tracing_err_log_open()
     - tracing/probes: Fix not to count error code to total length
     - tracing/probes: Fix to update dynamic data counter if fetcharg uses it
     - tracing/user_events: Fix struct arg size match check
     - scsi: qla2xxx: Multi-que support for TMF
     - scsi: qla2xxx: Fix task management cmd failure
     - scsi: qla2xxx: Fix task management cmd fail due to unavailable resource
     - scsi: qla2xxx: Fix hang in task management
     - scsi: qla2xxx: Wait for io return on terminate rport
     - scsi: qla2xxx: Fix mem access after free
     - scsi: qla2xxx: Array index may go out of bound
     - scsi: qla2xxx: Avoid fcport pointer dereference
     - scsi: qla2xxx: Fix buffer overrun
     - scsi: qla2xxx: Fix potential NULL pointer dereference
     - scsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport()
     - scsi: qla2xxx: Correct the index of array
     - scsi: qla2xxx: Pointer may be dereferenced
     - scsi: qla2xxx: Remove unused nvme_ls_waitq wait queue
     - scsi: qla2xxx: Fix end of loop test
     - [mips*] kvm: Fix build error with KVM_MIPS_DEBUG_COP0_COUNTERS enabled
     - Revert "drm/amd: Disable PSR-SU on Parade 0803 TCON"
     - swiotlb: mark swiotlb_memblock_alloc() as __init
     - net/sched: sch_qfq: reintroduce lmax bound check for MTU
     - drm/atomic: Fix potential use-after-free in nonblocking commits
     - net/ncsi: make one oem_gma function for all mfr id
     - net/ncsi: change from ndo_set_mac_address to dev_set_mac_address
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.41
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.42
     - io_uring: treat -EAGAIN for REQ_F_NOWAIT as final for io-wq
     - ALSA: hda/realtek - remove 3k pull low procedure
     - ALSA: hda/realtek: Add quirk for Clevo NS70AU
     - ALSA: hda/realtek: Enable Mute LED on HP Laptop 15s-eq2xxx
     - maple_tree: set the node limit when creating a new root node
     - maple_tree: fix node allocation testing on 32 bit
     - keys: Fix linking a duplicate key to a keyring's assoc_array
     - perf probe: Add test for regression introduced by switch to
       die_get_decl_file()
     - btrfs: fix warning when putting transaction with qgroups enabled after
       abort
     - fuse: revalidate: don't invalidate if interrupted
     - fuse: Apply flags2 only when userspace set the FUSE_INIT_EXT
     - btrfs: set_page_extent_mapped after read_folio in btrfs_cont_expand
     - btrfs: zoned: fix memory leak after finding block group with super blocks
     - fuse: ioctl: translate ENOSYS in outarg
     - btrfs: fix race between balance and cancel/pause
     - regmap: Drop initial version of maximum transfer length fixes
     - of: Preserve "of-display" device name for compatibility
     - regmap: Account for register length in SMBus I/O limits
     - [arm64] fpsimd: Ensure SME storage is allocated after SVE VL changes
     - can: mcp251xfd: __mcp251xfd_chip_set_mode(): increase poll timeout
     - can: bcm: Fix UAF in bcm_proc_show()
     - can: gs_usb: gs_can_open(): improve error handling
     - dma-buf/dma-resv: Stop leaking on krealloc() failure
     - drm/amdgpu/vkms: relax timer deactivation by hrtimer_try_to_cancel
     - drm/amdgpu/pm: make gfxclock consistent for sienna cichlid
     - drm/amdgpu/pm: make mclk consistent for smu 13.0.7
     - drm/client: Fix memory leak in drm_client_target_cloned
     - drm/client: Fix memory leak in drm_client_modeset_probe
     - drm/amd/display: only accept async flips for fast updates
     - drm/amd/display: Disable MPC split by default on special asic
     - drm/amd/display: check TG is non-null before checking if enabled
     - drm/amd/display: Keep PHY active for DP displays on DCN31
     - ASoC: fsl_sai: Disable bit clock with transmitter
     - ASoC: fsl_sai: Revert "ASoC: fsl_sai: Enable MCTL_MCLK_EN bit for master
       mode"
     - ASoC: tegra: Fix ADX byte map
     - ASoC: rt5640: Fix sleep in atomic context
     - ASoC: cs42l51: fix driver to properly autoload with automatic module
       loading
     - ASoC: codecs: wcd938x: fix missing clsh ctrl error handling
     - ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove
     - ASoC: qdsp6: audioreach: fix topology probe deferral
     - ASoC: tegra: Fix AMX byte map
     - ASoC: codecs: wcd938x: fix resource leaks on component remove
     - ASoC: codecs: wcd938x: fix missing mbhc init error handling
     - ASoC: codecs: wcd934x: fix resource leaks on component remove
     - ASoC: codecs: wcd938x: fix codec initialisation race
     - ASoC: codecs: wcd938x: fix soundwire initialisation race
     - ext4: correct inline offset when handling xattrs in inode body
     - drm/radeon: Fix integer overflow in radeon_cs_parser_init
     - ALSA: emu10k1: roll up loops in DSP setup code for Audigy
     - quota: Properly disable quotas when add_dquot_ref() fails
     - quota: fix warning in dqgrab()
     - HID: add quirk for 03f0:464a HP Elite Presenter Mouse
     - ovl: check type and offset of struct vfsmount in ovl_entry
     - udf: Fix uninitialized array access for some pathnames
     - fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev
     - [mips*] dec: prom: Address -Warray-bounds warning
     - FS: JFS: Fix null-ptr-deref Read in txBegin
     - FS: JFS: Check for read-only mounted filesystem in txBegin
     - ACPI: video: Add backlight=native DMI quirk for Dell Studio 1569
     - rcu-tasks: Avoid pr_info() with spin lock in cblist_init_generic()
     - rcu: Mark additional concurrent load from ->cpu_no_qs.b.exp
     - sched/fair: Don't balance task to its current running CPU
     - wifi: ath11k: fix registration of 6Ghz-only phy without the full channel
       range
     - bpf: Print a warning only if writing to unprivileged_bpf_disabled.
     - bpf: Address KCSAN report on bpf_lru_list
     - bpf: tcp: Avoid taking fast sock lock in iterator
     - wifi: ath11k: add support default regdb while searching board-2.bin for
       WCN6855
     - wifi: mac80211_hwsim: Fix possible NULL dereference
     - spi: dw: Add compatible for Intel Mount Evans SoC
     - wifi: ath11k: fix memory leak in WMI firmware stats
     - net: ethernet: litex: add support for 64 bit stats
     - devlink: report devlink_port_type_warn source device
     - wifi: wext-core: Fix -Wstringop-overflow warning in
       ioctl_standard_iw_point()
     - wifi: iwlwifi: Add support for new PCI Id
     - wifi: iwlwifi: mvm: avoid baid size integer overflow
     - wifi: iwlwifi: pcie: add device id 51F1 for killer 1675
     - igb: Fix igb_down hung on surprise removal
     - net: hns3: fix strncpy() not using dest-buf length as length issue
     - ASoC: amd: acp: fix for invalid dai id handling in acp_get_byte_count()
     - ASoC: codecs: wcd938x: fix mbhc impedance loglevel
     - ASoC: codecs: wcd938x: fix dB range for HPHL and HPHR
     - ASoC: qcom: q6apm: do not close GPR port before closing graph
     - sched/fair: Use recent_used_cpu to test p->cpus_ptr
     - sched/psi: Fix avgs_work re-arm in psi_avgs_work()
     - sched/psi: Rearrange polling code in preparation
     - sched/psi: Rename existing poll members in preparation
     - sched/psi: Extract update_triggers side effect
     - sched/psi: Allow unprivileged polling of N*2s period
     - sched/psi: use kernfs polling functions for PSI trigger polling
     - pinctrl: renesas: rzv2m: Handle non-unique subnode names
     - pinctrl: renesas: rzg2l: Handle non-unique subnode names
     - spi: bcm63xx: fix max prepend length
     - fbdev: imxfb: warn about invalid left/right margin
     - fbdev: imxfb: Removed unneeded release_mem_region
     - perf build: Fix library not found error when using CSLIBS
     - btrfs: be a bit more careful when setting mirror_num_ret in
       btrfs_map_block
     - spi: s3c64xx: clear loopback bit after loopback test
     - kallsyms: Improve the performance of kallsyms_lookup_name()
     - kallsyms: Correctly sequence symbols when CONFIG_LTO_CLANG=y
     - kallsyms: strip LTO-only suffixes from promoted global functions
     - dsa: mv88e6xxx: Do a final check before timing out
     - net: ethernet: ti: cpsw_ale: Fix cpsw_ale_get_field()/cpsw_ale_set_field()
     - bridge: Add extack warning when enabling STP in netns.
     - net: ethernet: mtk_eth_soc: handle probe deferral
     - cifs: fix mid leak during reconnection after timeout threshold
     - ASoC: SOF: ipc3-dtrace: uninitialized data in
       dfsentry_trace_filter_write()
     - net: sched: cls_matchall: Undo tcf_bind_filter in case of failure after
       mall_set_parms
     - net: sched: cls_u32: Undo tcf_bind_filter if u32_replace_hw_knode
     - net: sched: cls_u32: Undo refcount decrement in case update failed
     - net: sched: cls_bpf: Undo tcf_bind_filter in case of an error
     - net: dsa: microchip: ksz8: Separate static MAC table operations for code
       reuse
     - net: dsa: microchip: ksz8: Make ksz8_r_sta_mac_table() static
     - net: dsa: microchip: ksz8_r_sta_mac_table(): Avoid using error code for
       empty entries
     - net: dsa: microchip: correct KSZ8795 static MAC table access
     - iavf: Fix use-after-free in free_netdev
     - iavf: Fix out-of-bounds when setting channels on remove
     - iavf: use internal state to free traffic IRQs
     - iavf: Move netdev_update_features() into watchdog task
     - iavf: send VLAN offloading caps once after VFR
     - iavf: make functions static where possible
     - iavf: Wait for reset in callbacks which trigger it
     - iavf: fix a deadlock caused by rtnl and driver's lock circular
       dependencies
     - iavf: fix reset task race with iavf_remove()
     - security: keys: Modify mismatched function name
     - octeontx2-pf: Dont allocate BPIDs for LBK interfaces
     - bpf: Fix subprog idx logic in check_max_stack_depth
     - bpf: Repeat check_max_stack_depth for async callbacks
     - bpf, arm64: Fix BTI type used for freplace attached functions
     - igc: Avoid transmit queue timeout for XDP
     - igc: Prevent garbled TX queue with XDP ZEROCOPY
     - net: ipv4: use consistent txhash in TIME_WAIT and SYN_RECV
     - tcp: annotate data-races around tcp_rsk(req)->txhash
     - tcp: annotate data-races around tcp_rsk(req)->ts_recent
     - net: ipv4: Use kfree_sensitive instead of kfree
     - net:ipv6: check return value of pskb_trim()
     - Revert "tcp: avoid the lookup process failing to get sk in ehash table"
     - fbdev: au1200fb: Fix missing IRQ check in au1200fb_drv_probe
     - llc: Don't drop packet from non-root netns.
     - ALSA: hda/realtek: Fix generic fixup definition for cs35l41 amp
     - netfilter: nf_tables: fix spurious set element insertion failure
     - netfilter: nf_tables: can't schedule in nft_chain_validate
     - netfilter: nft_set_pipapo: fix improper element removal (CVE-2023-4004)
     - netfilter: nf_tables: skip bound chain in netns release path
     - netfilter: nf_tables: skip bound chain on rule flush (CVE-2023-3777)
     - Bluetooth: use RCU for hci_conn_params and iterate safely in hci_sync
     - Bluetooth: hci_event: call disconnect callback before deleting conn
     - Bluetooth: ISO: fix iso_conn related locking and validity issues
     - Bluetooth: hci_sync: Avoid use-after-free in dbg for
       hci_remove_adv_monitor()
     - tcp: annotate data-races around tp->tcp_tx_delay
     - tcp: annotate data-races around tp->tsoffset
     - tcp: annotate data-races around tp->keepalive_time
     - tcp: annotate data-races around tp->keepalive_intvl
     - tcp: annotate data-races around tp->keepalive_probes
     - tcp: annotate data-races around icsk->icsk_syn_retries
     - tcp: annotate data-races around tp->linger2
     - tcp: annotate data-races around rskq_defer_accept
     - tcp: annotate data-races around tp->notsent_lowat
     - tcp: annotate data-races around icsk->icsk_user_timeout
     - tcp: annotate data-races around fastopenq.max_qlen
     - net: phy: prevent stale pointer dereference in phy_init()
     - jbd2: recheck chechpointing non-dirty buffer
     - tracing/histograms: Return an error if we fail to add histogram to
       hist_vars list
     - drm/ttm: fix bulk_move corruption when adding a entry
     - spi: dw: Remove misleading comment for Mount Evans SoC
     - kallsyms: add kallsyms_seqs_of_names to list of special symbols
     - scripts/kallsyms.c Make the comment up-to-date with current implementation
     - scripts/kallsyms: update the usage in the comment block
     - bpf: allow precision tracking for programs with subprogs
     - bpf: stop setting precise in current state
     - bpf: aggressively forget precise markings during state checkpointing
     - drm/amd/display: use max_dsc_bpp in amdgpu_dm
     - drm/amd/display: fix some coding style issues
     - drm/dp_mst: Clear MSG_RDY flag before sending new message
     - drm/amd/display: force connector state when bpc changes during compliance
     - drm/amd/display: Clean up errors & warnings in amdgpu_dm.c
     - drm/amd/display: fix linux dp link lost handled only one time
     - drm/amd/display: Add polling method to handle MST reply packet
     - Revert "drm/amd/display: edp do not add non-edid timings"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.43
     - netfilter: nf_tables: fix underflow in object reference counter
     - netfilter: nf_tables: fix underflow in chain reference counter
     - [x86] platform/x86/amd/pmf: Notify OS power slider update
     - [x86] platform/x86/amd/pmf: reduce verbosity of apmf_get_system_params
     - drm/amd/display: Keep PHY active for dp config
     - ovl: fix null pointer dereference in ovl_permission()
     - drm/amd: Move helper for dynamic speed switch check out of smu13
     - drm/amd: Align SMU11 SMU_MSG_OverridePcieParameters implementation with
       SMU13
     - jbd2: Fix wrongly judgement for buffer head removing while doing
       checkpoint
     - blk-mq: Fix stall due to recursive flush plug
     - [powerpc*] pseries/vas: Hold mmap_mutex after mmap lock during window
       close
     - [s390x] KVM: s390: pv: fix index value of replaced ASCE
     - io_uring: don't audit the capability check in io_uring_create()
     - gpio: tps68470: Make tps68470_gpio_output() always set the initial value
     - pwm: Add a stub for devm_pwmchip_add()
     - gpio: mvebu: Make use of devm_pwmchip_add
     - gpio: mvebu: fix irq domain leak
     - btrfs: fix race between quota disable and relocation
     - i2c: Delete error messages for failed memory allocations
     - i2c: Improve size determinations
     - i2c: nomadik: Remove unnecessary goto label
     - i2c: nomadik: Use devm_clk_get_enabled()
     - i2c: nomadik: Remove a useless call in the remove function
     - [mips*] Loongson: Move arch cflags to MIPS top level Makefile
     - [mips*] Loongson: Fix build error when make modules_install
     - PCI/ASPM: Return 0 or -ETIMEDOUT from pcie_retrain_link()
     - PCI/ASPM: Factor out pcie_wait_for_retrain()
     - PCI/ASPM: Avoid link retraining race
     - PCI: rockchip: Remove writes to unused registers
     - PCI: rockchip: Fix window mapping and address translation for endpoint
     - PCI: rockchip: Don't advertise MSI-X in PCIe capabilities
     - drm/amd/display: add FB_DAMAGE_CLIPS support
     - drm/amd/display: Check if link state is valid
     - drm/amd/display: Rework context change check
     - drm/amd/display: Enable new commit sequence only for DCN32x
     - drm/amd/display: Copy DC context in the commit streams
     - drm/amd/display: Include surface of unaffected streams
     - drm/amd/display: Use min transition for all SubVP plane add/remove
     - drm/amd/display: add ODM case when looking for first split pipe
     - drm/amd/display: use low clocks for no plane configs
     - drm/amd/display: fix unbounded requesting for high pixel rate modes on
       dcn315
     - drm/amd/display: add pixel rate based CRB allocation support
     - drm/amd/display: fix dcn315 single stream crb allocation
     - drm/amd/display: Update correct DCN314 register header
     - drm/amd/display: Set minimum requirement for using PSR-SU on Rembrandt
     - drm/amd/display: Set minimum requirement for using PSR-SU on Phoenix
     - drm/ttm: Don't print error message if eviction was interrupted
     - drm/ttm: Don't leak a resource on eviction error
     - n_tty: Rename tail to old_tail in n_tty_read()
     - tty: fix hang on tty device with no_room set
     - drm/ttm: never consider pinned BOs for eviction&swap
     - [arm64] KVM: arm64: Condition HW AF updates on config option
     - [arm64] errata: Mitigate Ampere1 erratum AC03_CPU_38 at stage-2
     - mptcp: introduce 'sk' to replace 'sock->sk' in mptcp_listen()
     - mptcp: do not rely on implicit state check in mptcp_listen()
     - tracing/probes: Add symstr type for dynamic events
     - tracing/probes: Fix to avoid double count of the string length on the
       array
     - tracing: Allow synthetic events to pass around stacktraces
     - Revert "tracing: Add "(fault)" name injection to kernel probes"
     - tracing/probes: Fix to record 0-length data_loc in fetch_store_string*()
       if fails
     - maple_tree: add __init and __exit to test module
     - maple_tree: fix 32 bit mas_next testing
     - drm/amd/display: Rework comments on dc file
     - drm/amd/display: fix dc/core/dc.c kernel-doc
     - drm/amd/display: Add FAMS validation before trying to use it
     - drm/amd/display: update extended blank for dcn314 onwards
     - drm/amd/display: Fix possible underflow for displays with large vblank
     - drm/amd/display: Prevent vtotal from being set to 0
     - phy: phy-mtk-dp: Fix an error code in probe()
     - phy: qcom-snps: correct struct qcom_snps_hsphy kerneldoc
     - phy: qcom-snps-femto-v2: keep cfg_ahb_clk enabled during runtime suspend
     - phy: qcom-snps-femto-v2: properly enable ref clock
     - soundwire: qcom: update status correctly with mask
     - media: staging: atomisp: select V4L2_FWNODE
     - media: amphion: Fix firmware path to match linux-firmware
     - i40e: Fix an NULL vs IS_ERR() bug for debugfs_create_dir()
     - iavf: fix potential deadlock on allocation failure
     - iavf: check for removal state before IAVF_FLAG_PF_COMMS_FAILED
     - net: phy: marvell10g: fix 88x3310 power up
     - net: hns3: fix the imp capability bit cannot exceed 32 bits issue
     - net: hns3: fix wrong tc bandwidth weight data issue
     - net: hns3: fix wrong bw weight of disabled tc issue
     - vxlan: calculate correct header length for GPE
     - vxlan: generalize vxlan_parse_gpe_hdr and remove unused args
     - vxlan: fix GRO with VXLAN-GPE
     - phy: hisilicon: Fix an out of bounds check in hisi_inno_phy_probe()
     - atheros: fix return value check in atl1_tso()
     - ethernet: atheros: fix return value check in atl1e_tso_csum()
     - ipv6 addrconf: fix bug where deleting a mngtmpaddr can create a new
       temporary address
     - tcp: Reduce chance of collisions in inet6_hashfn(). (CVE-2023-1206)
     - ice: Fix memory management in ice_ethtool_fdir.c
     - bonding: reset bond's flags when down link is P2P device
     - team: reset team's flags when down link is P2P device
     - octeontx2-af: Removed unnecessary debug messages.
     - octeontx2-af: Fix hash extraction enable configuration
     - net: stmmac: Apply redundant write work around on 4.xx too
     - [x86] platform/x86: msi-laptop: Fix rfkill out-of-sync on MSI Wind U100
     - [x86] traps: Fix load_unaligned_zeropad() handling for shared TDX memory
     - igc: Fix Kernel Panic during ndo_tx_timeout callback
     - netfilter: nft_set_rbtree: fix overlap expiration walk
     - netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR
       (CVE-2023-4015)
     - netfilter: nf_tables: disallow rule addition to bound chain via
       NFTA_RULE_CHAIN_ID (CVE-2023-4147)
     - mm: suppress mm fault logging if fatal signal already pending
     - net/sched: mqprio: refactor nlattr parsing to a separate function
     - net/sched: mqprio: add extack to mqprio_parse_nlattr()
     - net/sched: mqprio: Add length check for TCA_MQPRIO_{MAX/MIN}_RATE64
     - benet: fix return value check in be_lancer_xmit_workarounds()
     - tipc: check return value of pskb_trim()
     - tipc: stop tipc crypto on failure in tipc_node_create
     - RDMA/mlx4: Make check for invalid flags stricter
     - drm/msm/dpu: drop enum dpu_core_perf_data_bus_id
     - drm/msm/adreno: Fix snapshot BINDLESS_DATA size
     - RDMA/irdma: Add missing read barriers
     - RDMA/irdma: Fix data race on CQP completion stats
     - RDMA/irdma: Fix data race on CQP request done
     - RDMA/mthca: Fix crash when polling CQ for shared QPs
     - RDMA/bnxt_re: Prevent handling any completions after qp destroy
     - drm/msm: Fix IS_ERR_OR_NULL() vs NULL check in a5xx_submit_in_rb()
     - cxl/acpi: Fix a use-after-free in cxl_parse_cfmws()
     - cxl/acpi: Return 'rc' instead of '0' in cxl_parse_cfmws()
     - ASoC: fsl_spdif: Silence output on stop
     - block: Fix a source code comment in include/uapi/linux/blkzoned.h
     - smb3: do not set NTLMSSP_VERSION flag for negotiate not auth request
     - [x86] drm/i915: Fix an error handling path in igt_write_huge()
     - xenbus: check xen_domain in xenbus_probe_initcall
     - dm raid: fix missing reconfig_mutex unlock in raid_ctr() error paths
     - dm raid: clean up four equivalent goto tags in raid_ctr()
     - dm raid: protect md_stop() with 'reconfig_mutex'
     - drm/amd: Fix an error handling mistake in psp_sw_init()
     - drm/amd/display: Unlock on error path in
       dm_handle_mst_sideband_msg_ready_event()
     - RDMA/irdma: Fix op_type reporting in CQEs
     - RDMA/irdma: Report correct WC error
     - drm/msm: Switch idr_lock to spinlock
     - drm/msm: Disallow submit with fence id 0
     - ublk_drv: move ublk_get_device_from_id into ublk_ctrl_uring_cmd
     - ublk: fail to start device if queue setup is interrupted
     - ublk: fail to recover device if queue setup is interrupted
     - ata: pata_ns87415: mark ns87560_tf_read static
     - ring-buffer: Fix wrong stat of cpu_buffer->read
     - tracing: Fix warning in trace_buffered_event_disable()
     - Revert "usb: gadget: tegra-xudc: Fix error check in
       tegra_xudc_powerdomain_init()"
     - usb: gadget: call usb_gadget_check_config() to verify UDC capability
     - USB: gadget: Fix the memory leak in raw_gadget driver
     - usb: gadget: core: remove unbalanced mutex_unlock in usb_gadget_activate
     - KVM: Grab a reference to KVM for VM and vCPU stats file descriptors
     - KVM: VMX: Don't fudge CR0 and CR4 for restricted L2 guest
     - KVM: x86: Disallow KVM_SET_SREGS{2} if incoming CR0 is invalid
     - serial: qcom-geni: drop bogus runtime pm state update
     - serial: 8250_dw: Preserve original value of DLF register
     - serial: sifive: Fix sifive_serial_console_setup() section
     - USB: serial: option: support Quectel EM060K_128
     - USB: serial: option: add Quectel EC200A module support
     - USB: serial: simple: add Kaufmann RKS+CAN VCP
     - USB: serial: simple: sort driver entries
     - can: gs_usb: gs_can_close(): add missing set of CAN state to
       CAN_STATE_STOPPED
     - usb: typec: Set port->pd before adding device for typec_port
     - usb: typec: Iterate pds array when showing the pd list
     - usb: typec: Use sysfs_emit_at when concatenating the string
     - Revert "usb: dwc3: core: Enable AutoRetry feature in the controller"
     - usb: dwc3: pci: skip BYT GPIO lookup table for hardwired phy
     - usb: dwc3: don't reset device side if dwc3 was configured as host-only
     - usb: misc: ehset: fix wrong if condition
     - usb: ohci-at91: Fix the unhandle interrupt when resume
     - USB: quirks: add quirk for Focusrite Scarlett
     - usb: cdns3: fix incorrect calculation of ep_buf_size when more than one
       config
     - usb: xhci-mtk: set the dma max_seg_size
     - Revert "usb: xhci: tegra: Fix error check"
     - Documentation: security-bugs.rst: update preferences when dealing with the
       linux-distros group
     - Documentation: security-bugs.rst: clarify CVE handling
     - staging: r8712: Fix memory leak in _r8712_init_xmit_priv()
     - staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
     - tty: n_gsm: fix UAF in gsm_cleanup_mux
     - Revert "xhci: add quirk for host controllers that don't update endpoint
       DCS"
     - ALSA: hda/realtek: Support ASUS G713PV laptop
     - ALSA: hda/relatek: Enable Mute LED on HP 250 G8
     - hwmon: (k10temp) Enable AMD3255 Proc to show negative temperature
     - hwmon: (nct7802) Fix for temp6 (PECI1) processed even if PECI1 disabled
     - btrfs: account block group tree when calculating global reserve size
     - btrfs: check if the transaction was aborted at btrfs_wait_for_commit()
     - btrfs: check for commit error at btrfs_attach_transaction_barrier()
     - [x86] MCE/AMD: Decrement threshold_bank refcount when removing threshold
       blocks
     - file: always lock position for FMODE_ATOMIC_POS
     - nfsd: Remove incorrect check in nfsd4_validate_stateid
     - ACPI/IORT: Remove erroneous id_count check in iort_node_get_rmr_info()
     - tpm_tis: Explicitly check for error code
     - irq-bcm6345-l1: Do not assume a fixed block to cpu mapping
     - irqchip/gic-v4.1: Properly lock VPEs when doing a directLPI invalidation
     - locking/rtmutex: Fix task->pi_waiters integrity
     - proc/vmcore: fix signedness bug in read_from_oldmem()
     - xen: speed up grant-table reclaim
     - virtio-net: fix race between set queues and probe
     - net: dsa: qca8k: fix search_and_insert wrong handling of new rule
     - net: dsa: qca8k: fix broken search_and_del
     - net: dsa: qca8k: fix mdb add/del case with 0 VID
     - soundwire: fix enumeration completion
     - [s390x] dasd: fix hanging device after quiesce/resume
     - [s390x] dasd: print copy pair message only for the correct error
     - ASoC: wm8904: Fill the cache for WM8904_ADC_TEST_0 register
     - [arm64] sme: Set new vector length before reallocating
     - PM: sleep: wakeirq: fix wake irq arming
     - ceph: never send metrics if disable_send_metrics is set
     - [x86] drm/i915/dpt: Use shmem for dpt objects
     - dm cache policy smq: ensure IO doesn't prevent cleaner policy progress
     - rbd: make get_lock_owner_info() return a single locker or NULL
     - rbd: harden get_lock_owner_info() a bit
     - rbd: retrieve and check lock owner twice before blocklisting
     - drm/amd/display: set per pipe dppclk to 0 when dpp is off
     - tracing: Fix trace_event_raw_event_synth() if else statement
     - drm/amd/display: perform a bounds check before filling dirty rectangles
     - drm/amd/display: Write to correct dirty_rect
     - ACPI: processor: perflib: Use the "no limit" frequency QoS
     - ACPI: processor: perflib: Avoid updating frequency QoS unnecessarily
     - cpufreq: intel_pstate: Drop ACPI _PSS states table patching
     - mptcp: ensure subflow is unhashed before cleaning the backlog
     - dma-buf: keep the signaling time of merged fences v3
     - dma-buf: fix an error pointer vs NULL bug
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.44
     - xen/netback: Fix buffer overrun triggered by unusual packet
       (CVE-2023-34319)
     - [x86] fix backwards merge of GDS/SRSO bit
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.45
     - io_uring: gate iowait schedule on having pending requests
     - perf: Fix function pointer case
     - net/mlx5: Free irqs only on shutdown callback
     - [arm64] iommu/arm-smmu-v3: Work around MMU-600 erratum 1076982
     - [arm64] iommu/arm-smmu-v3: Document MMU-700 erratum 2812531
     - [arm64] iommu/arm-smmu-v3: Add explicit feature for nesting
     - [arm64] iommu/arm-smmu-v3: Document nesting-related errata
     - [arm64] dts: imx8mm-venice-gw7903: disable disp_blk_ctrl
     - [arm64] dts: imx8mm-venice-gw7904: disable disp_blk_ctrl
     - [arm64] dts: phycore-imx8mm: Label typo-fix of VPU
     - [arm64] dts: phycore-imx8mm: Correction in gpio-line-names
     - [arm64] dts: imx8mn-var-som: add missing pull-up for onboard PHY reset
       pinmux
     - [arm64] dts: freescale: Fix VPU G2 clock
     - [arm64,armhf] firmware: smccc: Fix use of uninitialised results structure
     - lib/bitmap: workaround const_eval test build failure
     - [arm64] firmware: arm_scmi: Fix chan_free cleanup on SMC
     - word-at-a-time: use the same return type for has_zero regardless of
       endianness
     - [s390x] KVM: s390: fix sthyi error handling
     - erofs: fix wrong primary bvec selection on deduplicated extents
     - wifi: cfg80211: Fix return value in scan logic
     - net/mlx5e: fix double free in macsec_fs_tx_create_crypto_table_groups
     - net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx
     - net/mlx5: fix potential memory leak in mlx5e_init_rep_rx
     - net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer()
     - net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set
     - net/mlx5e: Move representor neigh cleanup to profile cleanup_tx
     - bpf: Add length check for SK_DIAG_BPF_STORAGE_REQ_MAP_FD parsing
     - rtnetlink: let rtnl_bridge_setlink checks IFLA_BRIDGE_MODE length
     - [armhf] net: dsa: fix value check in bcm_sf2_sw_probe()
     - perf test uprobe_from_different_cu: Skip if there is no gcc
     - net: sched: cls_u32: Fix match key mis-addressing
     - mISDN: hfcpci: Fix potential deadlock on &hc->lock
     - qed: Fix scheduling in a tasklet while getting stats
     - net: annotate data-races around sk->sk_reserved_mem
     - net: annotate data-race around sk->sk_txrehash
     - net: annotate data-races around sk->sk_max_pacing_rate
     - net: add missing READ_ONCE(sk->sk_rcvlowat) annotation
     - net: add missing READ_ONCE(sk->sk_sndbuf) annotation
     - net: add missing READ_ONCE(sk->sk_rcvbuf) annotation
     - net: annotate data-races around sk->sk_mark
     - net: add missing data-race annotations around sk->sk_peek_off
     - net: add missing data-race annotation for sk_ll_usec
     - net: annotate data-races around sk->sk_priority
     - net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX.
     - ice: Fix RDMA VSI removal during queue rebuild
     - bpf, cpumap: Handle skb as well when clean up ptr_ring
     - net/sched: cls_u32: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4208)
     - net/sched: cls_fw: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4207)
     - net/sched: cls_route: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4206)
     - bpf: sockmap: Remove preempt_disable in sock_map_sk_acquire
     - net: netsec: Ignore 'phy-mode' on SynQuacer in DT mode
     - bnxt_en: Fix page pool logic for page size >= 64K
     - bnxt_en: Fix max_mtu setting for multi-buf XDP
     - net: dcb: choose correct policy to parse DCB_ATTR_BCN
     - [s390x] qeth: Don't call dev_close/dev_open (DOWN/UP)
     - ip6mr: Fix skb_under_panic in ip6mr_cache_report()
     - vxlan: Fix nexthop hash size
     - net/mlx5: fs_core: Make find_closest_ft more generic
     - net/mlx5: fs_core: Skip the FTs in the same FS_TYPE_PRIO_CHAINS fs_prio
     - tcp_metrics: fix addr_same() helper
     - tcp_metrics: annotate data-races around tm->tcpm_stamp
     - tcp_metrics: annotate data-races around tm->tcpm_lock
     - tcp_metrics: annotate data-races around tm->tcpm_vals[]
     - tcp_metrics: annotate data-races around tm->tcpm_net
     - tcp_metrics: fix data-race in tcpm_suck_dst() vs fastopen
     - scsi: zfcp: Defer fc_rport blocking until after ADISC response
     - scsi: storvsc: Limit max_sectors for virtual Fibre Channel devices
     - libceph: fix potential hang in ceph_osdc_notify()
     - USB: zaurus: Add ID for A-300/B-500/C-700
     - ceph: defer stopping mdsc delayed_work
     - [arm64] firmware: arm_scmi: Drop OF node reference in the transport
       channel setup
     - exfat: use kvmalloc_array/kvfree instead of kmalloc_array/kfree
     - exfat: release s_lock before calling dir_emit()
     - bpf: Disable preemption in bpf_perf_event_output
     - [arm64] dts: stratix10: fix incorrect I2C property for SCL signal
     - net: tun_chr_open(): set sk_uid from current_fsuid() (CVE-2023-4194)
     - net: tap_open(): set sk_uid from current_fsuid() (CVE-2023-4194)
     - wifi: mt76: mt7615: do not advertise 5 GHz on first phy of MT7615D (DBDC)
     - [x86] hyperv: Disable IBT when hypercall page lacks ENDBR instruction
     - rbd: prevent busy loop when requesting exclusive lock
     - bpf: Disable preemption in bpf_event_output
     - [powerpc*] ftrace: Create a dummy stackframe to fix stack unwind
     - [arm64] fpsimd: Sync and zero pad FPSIMD state for streaming SVE
     - [arm64] fpsimd: Clear SME state in the target task when setting the VL
     - [arm64] fpsimd: Sync FPSIMD state with SVE for SME only systems
     - open: make RESOLVE_CACHED correctly test for O_TMPFILE
     - drm/ttm: check null pointer before accessing when swapping
     - [x86] drm/i915: Fix premature release of request's reusable memory
     - [x86] drm/i915/gt: Cleanup aux invalidation registers
     - bpf, cpumap: Make sure kthread is running before map update returns
     - file: reinstate f_pos locking optimization for regular files
     - mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required()
     - fs/sysv: Null check to prevent null-ptr-deref bug
     - Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
       (CVE-2023-40283)
     - debugobjects: Recheck debug_objects_enabled before reporting
     - net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
     - fs: Protect reconfiguration of sb read-write from racing writes
     - btrfs: remove BUG_ON()'s in add_new_free_space()
     - f2fs: fix to do sanity check on direct node in truncate_dnode()
     - io_uring: annotate offset timeout races
     - [powerpc*] mm/altmap: Fix altmap boundary check
     - [armhf] drm/imx/ipuv3: Fix front porch adjustment upon hactive aligning
     - drm/amd/display: Ensure that planes are in the same order
     - drm/amd/display: skip CLEAR_PAYLOAD_ID_TABLE if device mst_en is 0
     - f2fs: fix to set flush_merge opt and show noflush_merge
     - f2fs: don't reset unchangable mount option in f2fs_remount()
     - exfat: check if filename entries exceeds max filename length
       (CVE-2023-4273)
     - [arm64] ptrace: Don't enable SVE when setting streaming SVE
     - drm/amdgpu: add vram reservation based on vram_usagebyfirmware_v2_2
     - drm/amdgpu: Remove unnecessary domain argument
     - drm/amdgpu: Use apt name for FW reserved region
     - [x86] Revert "drm/i915: Disable DC states for all commits"
       (Closes: #1043564)
     - [x86] CPU/AMD: Do not leak quotient data after a division by 0
       (CVE-2023-20588)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.46
     - Revert "loongarch/cpu: Switch to arch_cpu_finalize_init()"
     - tpm: Disable RNG for all AMD fTPMs
     - tpm: Add a helper for checking hwrng enabled
     - ksmbd: validate command request size
     - ksmbd: fix wrong next length validation of ea buffer in smb2_set_ea()
     - [x86] KVM: SEV: snapshot the GHCB before accessing it
     - [x86] KVM: SEV: only access GHCB fields once (CVE-2023-4155)
     - wifi: nl80211: fix integer overflow in nl80211_parse_mbssid_elems()
     - wifi: rtw89: fix 8852AE disconnection caused by RX full flags
     - wireguard: allowedips: expand maximum node depth
     - ipv6: adjust ndisc_is_useropt() to also return true for PIO
     - mptcp: avoid bogus reset on fallback close
     - mptcp: fix disconnect vs accept race
     - [arm64,armhf] dmaengine: pl330: Return DMA_PAUSED when transaction is
       paused
     - [amd64] net: mana: Fix MANA VF unload when hardware is unresponsive
     - nvme-pci: add NVME_QUIRK_BOGUS_NID for Samsung PM9B1 256G and 512G
     - drm/nouveau/gr: enable memory loads on helper invocation on all channels
     - drm/nouveau/nvkm/dp: Add workaround to fix DP 1.3+ DPCD issues
     - drm/shmem-helper: Reset vma->vm_ops before calling dma_buf_mmap()
     - drm/amdgpu: fix possible UAF in amdgpu_cs_pass1()
     - drm/amd/display: check attr flag before set cursor degamma on DCN3+
     - drm/amdgpu: add S/G display parameter
     - drm/amd: Disable S/G for APUs when 64GB or more host memory
     - drm/amd/display: limit DPIA link rate to HBR3
     - cpuidle: dt_idle_genpd: Add helper function to remove genpd topology
     - hwmon: (pmbus/bel-pfe) Enable PMBUS_SKIP_STATUS_CHECK for pfe1100
     - nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput
     - drm/amd/pm: fulfill swsmu peak profiling mode shader/memory clock settings
     - drm/amd/pm: expose swctf threshold setting for legacy powerplay
     - drm/amd/pm: fulfill powerplay peak profiling mode shader/memory clock
       settings
     - drm/amd/pm: avoid unintentional shutdown due to temperature momentary
       fluctuation
     - drm/amd/display: Handle virtual hardware detect
     - drm/amd/display: Add function for validate and update new stream
     - drm/amd/display: Handle seamless boot stream
     - drm/amd/display: Update OTG instance in the commit stream
     - drm/amd/display: Avoid ABM when ODM combine is enabled for eDP
     - drm/amd/display: Use update plane and stream routine for DCN32x
     - drm/amd/display: Disable phantom OTG after enable for plane disable
     - drm/amd/display: Retain phantom plane/stream if validation fails
     - drm/amd/display: fix the build when DRM_AMD_DC_DCN is not set
     - drm/amd/display: trigger timing sync only if TG is running
     - io_uring: correct check for O_TMPFILE
     - [arm64] iio: cros_ec: Fix the allocation size for cros_ec_command
     - iio: adc: ad7192: Fix ac excitation feature
     - iio: adc: ina2xx: avoid NULL pointer dereference on OF device match
     - [arm*] binder: fix memory leak in binder_init()
     - misc: rtsx: judge ASPM Mode to set PETXCFG Reg
     - usb-storage: alauda: Fix uninit-value in alauda_check_media()
     - [arm64,armhf] usb: dwc3: Properly handle processing of pending events
     - USB: Gadget: core: Help prevent panic during UVC unconfigure
     - usb: common: usb-conn-gpio: Prevent bailing out if initial role is none
     - usb: typec: tcpm: Fix response to vsafe0V event
     - usb: typec: altmodes/displayport: Signal hpd when configuring pin
       assignment
     - [x86] cpu/amd: Enable Zenbleed fix for AMD Custom APU 0405
     - [x86] mm: Fix VDSO and VVAR placement on 5-level paging machines
     - [x86] sev: Do not try to parse for the CC blob on non-AMD hardware
     - [x86] speculation: Add cpu_show_gds() prototype
     - [x86] Move gds_ucode_mitigated() declaration to header
     - drm/nouveau/disp: Revert a NULL check inside nouveau_connector_get_modes
       (Closes: #1042753)
     - iio: core: Prevent invalid memory access when there is no parent
     - interconnect: qcom: Add support for mask-based BCMs
     - interconnect: qcom: sm8450: add enable_mask for bcm nodes
     - net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()
     - bpf, sockmap: Fix map type error in sock_map_del_link
     - bpf, sockmap: Fix bug that strp_done cannot be called
     - mISDN: Update parameter type of dsp_cmx_send()
     - macsec: use DEV_STATS_INC()
     - mptcp: fix the incorrect judgment for msk->cb_flags
     - net/packet: annotate data-races around tp->status
     - net/smc: Use correct buffer sizes when switching between TCP and SMC
     - tcp: add missing family to tcp_set_ca_state() tracepoint
     - tunnels: fix kasan splat when generating ipv4 pmtu error
     - xsk: fix refcount underflow in error path
     - bonding: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
     - dccp: fix data-race around dp->dccps_mss_cache
     - drivers: net: prevent tun_build_skb() to exceed the packet size limit
     - drivers: vxlan: vnifilter: free percpu vni stats on error path
     - iavf: fix potential races for FDIR filters
     - [amd64] IB/hfi1: Fix possible panic during hotplug remove
     - drm/rockchip: Don't spam logs in atomic check
     - wifi: cfg80211: fix sband iftype data lookup for AP_VLAN
     - RDMA/umem: Set iova in ODP flow
     - net: tls: avoid discarding data on record close
     - net: phy: at803x: remove set/get wol callbacks for AR8032
     - [arm64] net: dsa: ocelot: call dsa_tag_8021q_unregister() under
       rtnl_lock() on driver remove
     - [arm64] net: hns3: refactor hclge_mac_link_status_wait for interface reuse
     - [arm64] net: hns3: add wait until mac link down
     - [arm64] net: hns3: fix deadlock issue when externel_lb and reset are
       executed together
     - nexthop: Fix infinite nexthop dump when using maximum nexthop ID
     - nexthop: Make nexthop bucket dump more efficient
     - nexthop: Fix infinite nexthop bucket dump when using maximum nexthop ID
     - [arm64] net: hns3: fix strscpy causing content truncation issue
     - dmaengine: owl-dma: Modify mismatched function name
     - net/mlx5: Allow 0 for total host VFs
     - net/mlx5: LAG, Check correct bucket when modifying LAG
     - net/mlx5: Skip clock update work when device is in error state
     - net/mlx5: Reload auxiliary devices in pci error handlers
     - ibmvnic: Enforce stronger sanity checks on login response
     - ibmvnic: Unmap DMA login rsp buffer on send login fail
     - ibmvnic: Handle DMA unmapping of login buffs in release functions
     - ibmvnic: Do partial reset on login failure
     - ibmvnic: Ensure login failure recovery is safe from other resets
     - gpio: ws16c48: Fix off-by-one error in WS16C48 resource region extent
     - gpio: sim: mark the GPIO chip as a one that can sleep
     - btrfs: wait for actual caching progress during allocation
     - btrfs: don't stop integrity writeback too early
     - btrfs: properly clear end of the unreserved range in cow_file_range
     - btrfs: exit gracefully if reloc roots don't match
     - btrfs: reject invalid reloc tree root keys with stack dump
     - btrfs: set cache_block_group_error if we find an error
     - nvme-tcp: fix potential unbalanced freeze & unfreeze
     - nvme-rdma: fix potential unbalanced freeze & unfreeze
     - netfilter: nf_tables: report use refcount overflow
     - scsi: core: Fix legacy /proc parsing buffer overflow
     - [x86] scsi: storvsc: Fix handling of virtual Fibre Channel timeouts
     - scsi: ufs: renesas: Fix private allocation
     - scsi: 53c700: Check that command slot is not NULL
     - scsi: snic: Fix possible memory leak if device_add() fails
     - scsi: core: Fix possible memory leak if device_add() fails
     - scsi: fnic: Replace return codes in fnic_clean_pending_aborts()
     - scsi: qedi: Fix firmware halt over suspend and resume
     - scsi: qedf: Fix firmware halt over suspend and resume
     - [x86] platform/x86: serial-multi-instantiate: Auto detect IRQ resource for
       CSC3551
     - ACPI: scan: Create platform device for CS35L56
     - sch_netem: fix issues in netem_change() vs get_dist_table()
     - drm/amd/pm/smu7: move variables to where they are used
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.47
     - [arm64] mmc: sdhci-f-sdh30: Replace with sdhci_pltfm
     - [arm64] cpuidle: psci: Extend information in log about OSI/PC mode
     - [arm64] cpuidle: psci: Move enabling OSI mode after power domains creation
     - zsmalloc: consolidate zs_pool's migrate_lock and size_class's locks
     - zsmalloc: fix races between modifications of fullness and isolated
     - net/smc: replace mutex rmbs_lock and sndbufs_lock with rw_semaphore
     - net/smc: Fix setsockopt and sysctl to specify same buffer size again
     - net: phy: at803x: Use devm_regulator_get_enable_optional()
     - net: phy: at803x: fix the wol setting functions
     - drm/amdgpu: fix calltrace warning in amddrm_buddy_fini
     - drm/amdgpu: Fix integer overflow in amdgpu_cs_pass1
     - drm/amdgpu: fix memory leak in mes self test
     - [x86] ASoC: Intel: sof_sdw: add quirk for MTL RVP
     - [x86] ASoC: Intel: sof_sdw: add quirk for LNL RVP
     - ASoC: SOF: amd: Add pci revision id check
     - drm/stm: ltdc: fix late dereference check
     - drm: rcar-du: remove R-Car H3 ES1.* workarounds
     - [x86] ASoC: amd: vangogh: Add check for acp config flags in vangogh
       platform
     - [x86] ASoC: Intel: sof_sdw_rt_sdca_jack_common: test SOF_JACK_JDSRC in
       _exit
     - [x86] ASoC: Intel: sof_sdw: Add support for Rex soundwire
     - iopoll: Call cpu_relax() in busy loops
     - [x86] ASoC: SOF: Intel: fix SoundWire/HDaudio mutual exclusion
     - dma-remap: use kvmalloc_array/kvfree for larger dma memory remap
     - accel/habanalabs: add pci health check during heartbeat
     - HID: logitech-hidpp: Add USB and Bluetooth IDs for the Logitech G915 TKL
       Keyboard
     - [amd64] iommu/amd: Introduce Disable IRTE Caching Support
     - drm/amdgpu: install stub fence into potential unused fence pointers
     - drm/amd/display: Apply 60us prefetch for DCFCLK <= 300Mhz
     - RDMA/mlx5: Return the firmware result upon destroying QP/RQ
     - drm/amd/display: Skip DPP DTO update if root clock is gated
     - drm/amd/display: Enable dcn314 DPP RCO
     - ASoC: SOF: core: Free the firmware trace before calling snd_sof_shutdown()
     - HID: intel-ish-hid: ipc: Add Arrow Lake PCI device ID
     - ALSA: hda/realtek: Add quirks for ROG ALLY CS35l41 audio
     - smb: client: fix warning in cifs_smb3_do_mount()
     - cifs: fix session state check in reconnect to avoid use-after-free issue
     - serial: stm32: Ignore return value of uart_remove_one_port() in .remove()
     - led: qcom-lpg: Fix resource leaks in for_each_available_child_of_node()
       loops
     - media: v4l2-mem2mem: add lock to protect parameter num_rdy
     - media: camss: set VFE bpl_alignment to 16 for sdm845 and sm8250
     - usb: gadget: u_serial: Avoid spinlock recursion in __gs_console_push
     - usb: gadget: uvc: queue empty isoc requests if no video buffer is
       available
     - media: platform: mediatek: vpu: fix NULL ptr dereference
     - [x86] thunderbolt: Read retimer NVM authentication status prior
       tb_retimer_set_inbound_sbtx()
     - usb: chipidea: imx: don't request QoS for imx8ulp
     - usb: chipidea: imx: add missing USB PHY DPDM wakeup setting
     - gfs2: Fix possible data races in gfs2_show_options()
     - pcmcia: rsrc_nonstatic: Fix memory leak in nonstatic_release_resource_db()
     - [x86] thunderbolt: Add Intel Barlow Ridge PCI ID
     - [x86] thunderbolt: Limit Intel Barlow Ridge USB3 bandwidth
     - firewire: net: fix use after free in fwnet_finish_incoming_packet()
     - watchdog: sp5100_tco: support Hygon FCH/SCH (Server Controller Hub)
     - Bluetooth: L2CAP: Fix use-after-free
     - Bluetooth: btusb: Add MT7922 bluetooth ID for the Asus Ally
     - ceph: try to dump the msgs when decoding fails
     - drm/amdgpu: Fix potential fence use-after-free v2
     - fs/ntfs3: Enhance sanity check while generating attr_list
     - fs: ntfs3: Fix possible null-pointer dereferences in mi_read()
     - fs/ntfs3: Mark ntfs dirty when on-disk struct is corrupted
     - ALSA: hda/realtek: Add quirks for Unis H3C Desktop B760 & Q760
     - ALSA: hda: fix a possible null-pointer dereference due to data race in
       snd_hdac_regmap_sync()
     - ALSA: hda/realtek: Add quirk for ASUS ROG GX650P
     - ALSA: hda/realtek: Add quirk for ASUS ROG GA402X
     - ALSA: hda/realtek: Add quirk for ASUS ROG GZ301V
     - Bluetooth: MGMT: Use correct address for memcpy()
     - ring-buffer: Do not swap cpu_buffer during resize process
     - igc: read before write to SRRCTL register
     - drm/amd/display: save restore hdcp state when display is unplugged from
       mst hub
     - drm/amd/display: phase3 mst hdcp for multiple displays
     - drm/amd/display: fix access hdcp_workqueue assert
     - [arm64] KVM: arm64: vgic-v4: Make the doorbell request robust w.r.t
       preemption
     - fbdev/hyperv-fb: Do not set struct fb_info.apertures
     - video/aperture: Only remove sysfb on the default vga pci device
       (Closes: #1051163)
     - btrfs: move out now unused BG from the reclaim list
     - btrfs: convert btrfs_block_group::needs_free_space to runtime flag
     - btrfs: convert btrfs_block_group::seq_zone to runtime flag
     - btrfs: fix use-after-free of new block group that became unused
     - virtio-mmio: don't break lifecycle of vm_dev
     - cifs: fix potential oops in cifs_oplock_break
     - i2c: bcm-iproc: Fix bcm_iproc_i2c_isr deadlock issue
     - i2c: hisi: Only handle the interrupt of the driver's transfer
     - i2c: tegra: Fix i2c-tegra DMA config option processing
     - fbdev: mmp: fix value check in mmphw_probe()
     - [powerpc*] rtas_flash: allow user copy to flash block cache objects
     - tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux
     - tty: serial: fsl_lpuart: Clear the error flags by writing 1 for lpuart32
       platforms
     - btrfs: fix incorrect splitting in btrfs_drop_extent_map_range
     - btrfs: fix BUG_ON condition in btrfs_cancel_balance
     - i2c: designware: Correct length byte validation logic
     - i2c: designware: Handle invalid SMBus block data response length value
     - net: xfrm: Fix xfrm_address_filter OOB read
     - net: af_key: fix sadb_x_filter validation
     - net: xfrm: Amend XFRMA_SEC_CTX nla_policy structure
     - xfrm: fix slab-use-after-free in decode_session6
     - ip6_vti: fix slab-use-after-free in decode_session6
     - ip_vti: fix potential slab-use-after-free in decode_session6
     - xfrm: add NULL check in xfrm_update_ae_params (CVE-2023-3772)
     - xfrm: add forgotten nla_policy for XFRMA_MTIMER_THRESH (CVE-2023-3773)
     - virtio_net: notify MAC address change on device initialization
     - virtio-net: set queues after driver_ok
     - net: pcs: Add missing put_device call in miic_create
     - net: phy: fix IRQ-based wake-on-lan over hibernate / power off
     - drm/panel: simple: Fix AUO G121EAN01 panel timings according to the docs
     - net: macb: In ZynqMP resume always configure PS GTR for non-wakeup source
     - octeon_ep: cancel tx_timeout_task later in remove sequence
     - netfilter: nf_tables: fix false-positive lockdep splat
     - netfilter: nf_tables: deactivate catchall elements in next generation
       (CVE-2023-4569)
     - ipvs: fix racy memcpy in proc_do_sync_threshold
     - netfilter: nft_dynset: disallow object maps
     - net: phy: broadcom: stub c45 read/write for 54810
     - team: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
     - net: openvswitch: reject negative ifindex
     - iavf: fix FDIR rule fields masks validation
     - i40e: fix misleading debug logs
     - net: dsa: mv88e6xxx: Wait for EEPROM done before HW reset
     - sfc: don't unregister flow_indr if it was never registered
     - sock: Fix misuse of sk_under_memory_pressure()
     - net: do not allow gso_size to be set to GSO_BY_FRAGS
     - qede: fix firmware halt over suspend and resume
     - ice: Block switchdev mode when ADQ is active and vice versa
     - bus: ti-sysc: Flush posted write on enable before reset
     - [arm64] dts: qcom: qrb5165-rb5: fix thermal zone conflict
     - [arm64] dts: rockchip: Disable HS400 for eMMC on ROCK Pi 4
     - [arm64] dts: rockchip: Disable HS400 for eMMC on ROCK 4C+
     - [armhf] dts: imx: align LED node names with dtschema
     - [arm64] dts: imx8mm: Drop CSI1 PHY reference clock configuration
     - [armhf] dts: imx: Set default tuning step for imx6sx usdhc
     - [arm64] dts: imx93: Fix anatop node size
     - ASoC: rt5665: add missed regulator_bulk_disable
     - ASoC: meson: axg-tdm-formatter: fix channel slot allocation
     - ALSA: hda/realtek: Add quirks for HP G11 Laptops
     - soc: aspeed: uart-routing: Use __sysfs_match_string
     - soc: aspeed: socinfo: Add kfree for kstrdup
     - ALSA: hda/realtek - Remodified 3k pull low procedure
     - serial: 8250: Fix oops for port->pm on uart_change_pm()
     - ALSA: usb-audio: Add support for Mythware XA001AU capture and playback
       interfaces.
     - cifs: Release folio lock on fscache read hit.
     - virtio-net: Zero max_tx_vq field for VIRTIO_NET_CTRL_MQ_HASH_CONFIG case
     - [arm64] dts: rockchip: Fix Wifi/Bluetooth on ROCK Pi 4 boards
     - blk-crypto: dynamically allocate fallback profile
     - mmc: wbsd: fix double mmc_free_host() in wbsd_init()
     - mmc: block: Fix in_flight[issue_type] value error
     - drm/qxl: fix UAF on handle creation
     - [x86] drm/i915/sdvo: fix panel_type initialization
     - drm/amd: flush any delayed gfxoff on suspend entry
     - drm/amdgpu: skip fence GFX interrupts disable/enable for S0ix
     - drm/amdgpu/pm: fix throttle_status for other than MP1 11.0.7
     - drm/amd/display: disable RCO for DCN314
     - zsmalloc: allow only one active pool compaction context
     - sched/fair: unlink misfit task from cpu overutilized
     - sched/fair: Remove capacity inversion detection
     - drm/amd/display: Implement workaround for writing to OTG_PIXEL_RATE_DIV
       register
     - hugetlb: do not clear hugetlb dtor until allocating vmemmap
     - netfilter: set default timeout to 3 secs for sctp shutdown send and recv
       state
     - [arm64] ptrace: Ensure that SME is set up for target when writing SSVE
       state
     - drm/amd/pm: skip the RLC stop when S0i3 suspend for SMU v13.0.4/11
     - drm/amdgpu: keep irq count in amdgpu_irq_disable_all
     - af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (CVE-2023-4622)
     - drm/nouveau/disp: fix use-after-free in error handling of
       nouveau_connector_create
     - net: fix the RTO timer retransmitting skb every 1ms if linear option is
       enabled
     - [arm64] mmc: f-sdh30: fix order of function calls in sdhci_f_sdh30_remove
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.48
     - [x86] cpu: Fix __x86_return_thunk symbol type
     - [x86] cpu: Fix up srso_safe_ret() and __x86_return_thunk()
     - [x86] alternative: Make custom return thunk unconditional
     - [x86] cpu: Clean up SRSO return thunk mess
     - [x86] cpu: Rename original retbleed methods
     - [x86] cpu: Rename srso_(.*)_alias to srso_alias_\1
     - [x86] cpu: Cleanup the untrain mess
     - [x86] srso: Explain the untraining sequences a bit more
     - [x86] static_call: Fix __static_call_fixup()
     - [x86] retpoline: Don't clobber RFLAGS during srso_safe_ret()
       (Closes: #1043585)
     - [x86] CPU/AMD: Fix the DIV(0) initial fix attempt (CVE-2023-20588)
     - [x86] srso: Disable the mitigation on unaffected configurations
     - [x86] retpoline,kprobes: Fix position of thunk sections with
       CONFIG_LTO_CLANG
     - [x86] objtool/x86: Fixup frame-pointer vs rethunk
     - [x86] srso: Correct the mitigation status when SMT is disabled
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.49
     - [x86] objtool/x86: Fix SRSO mess
     - Revert "f2fs: don't reset unchangable mount option in f2fs_remount()"
     - Revert "f2fs: fix to set flush_merge opt and show noflush_merge"
     - Revert "f2fs: fix to do sanity check on direct node in truncate_dnode()"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.50
     - NFSv4.2: fix error handling in nfs42_proc_getxattr
     - NFSv4: fix out path in __nfs4_get_acl_uncached
     - xprtrdma: Remap Receive buffers after a reconnect
     - drm/ast: Use drm_aperture_remove_conflicting_pci_framebuffers
     - fbdev/radeon: use pci aperture helpers
     - [x86] drm/gma500: Use drm_aperture_remove_conflicting_pci_framebuffers
     - drm/aperture: Remove primary argument
     - video/aperture: Only kick vgacon when the pdev is decoding vga
     - video/aperture: Move vga handling to pci function
     - PCI: acpiphp: Reassign resources on bridge if necessary
     - [mips*]: cpu-features: Enable octeon_cache by cpu_type
     - [mips*] cpu-features: Use boot_cpu_type for CPU type based features
     - jbd2: remove t_checkpoint_io_list
     - jbd2: remove journal_clean_one_cp_list()
     - jbd2: fix a race when checking checkpoint buffer busy
     - can: raw: fix receiver memory leak
     - can: raw: fix lockdep issue in raw_release()
     - [s390x] zcrypt: remove unnecessary (void *) conversions
     - [s390x] zcrypt: fix reply buffer calculations for CCA replies
     - [x86] drm/i915: Add the gen12_needs_ccs_aux_inv helper
     - [x86] drm/i915/gt: Ensure memory quiesced before invalidation
     - [x86] drm/i915/gt: Poll aux invalidation register bit on invalidation
     - [x86] drm/i915/gt: Support aux invalidation on all engines
     - tracing: Fix cpu buffers unavailable due to 'record_disabled' missed
     - tracing: Fix memleak due to race between current_tracer and trace
     - devlink: move code to a dedicated directory
     - devlink: add missing unregister linecard notification
     - [arm64] net: dsa: felix: fix oversize frame dropping for always closed
       tc-taprio gates
     - sock: annotate data-races around prot->memory_pressure
     - dccp: annotate data-races in dccp_poll()
     - ipvlan: Fix a reference count leak warning in ipvlan_ns_exit()
     - mlxsw: pci: Set time stamp fields also when its type is MIRROR_UTC
     - mlxsw: reg: Fix SSPR register layout
     - mlxsw: Fix the size of 'VIRT_ROUTER_MSB'
     - net: bgmac: Fix return value check for fixed_phy_register()
     - net: bcmgenet: Fix return value check for fixed_phy_register()
     - net: validate veth and vxcan peer ifindexes
     - ipv4: fix data-races around inet->inet_id
     - ice: fix receive buffer size miscalculation
     - Revert "ice: Fix ice VF reset during iavf initialization"
     - ice: Fix NULL pointer deref during VF reset
     - can: isotp: fix support for transmission of SF without flow control
     - igb: Avoid starting unnecessary workqueues
     - igc: Fix the typo in the PTM Control macro
     - net/sched: fix a qdisc modification with ambiguous command request
     - i40e: fix potential NULL pointer dereferencing of pf->vf
       i40e_sync_vsi_filters()
     - netfilter: nf_tables: flush pending destroy work before netlink notifier
     - netfilter: nf_tables: fix out of memory error handling
     - rtnetlink: Reject negative ifindexes in RTM_NEWLINK
     - bonding: fix macvlan over alb bond support
     - [x86] KVM: x86: Preserve TDP MMU roots until they are explicitly
       invalidated
     - [x86] KVM: x86/mmu: Fix an sign-extension bug with mmu_seq that hangs
       vCPUs
     - io_uring: get rid of double locking
     - io_uring: extract a io_msg_install_complete helper
     - io_uring/msg_ring: move double lock/unlock helpers higher up
     - io_uring/msg_ring: fix missing lock on overflow for IOPOLL (CVE-2023-2430)
     - [x86] ASoC: amd: yc: Add VivoBook Pro 15 to quirks list for acp6x
     - [x86] ASoC: cs35l41: Correct amp_gain_tlv values
     - ibmveth: Use dcbf rather than dcbfl
     - wifi: mac80211: limit reorder_buf_filtered to avoid UBSAN warning
     - [x86] platform/x86: ideapad-laptop: Add support for new hotkeys found on
       ThinkBook 14s Yoga ITL
     - NFSv4: Fix dropped lock for racing OPEN and delegation return
     - clk: Fix slab-out-of-bounds error in devm_clk_release()
     - mm,ima,kexec,of: use memblock_free_late from ima_free_kexec_buffer
     - shmem: fix smaps BUG sleeping while atomic
     - ALSA: ymfpci: Fix the missing snd_card_free() call at probe error
     - mm/gup: handle cont-PTE hugetlb pages correctly in gup_must_unshare() via
       GUP-fast
     - mm: add a call to flush_cache_vmap() in vmap_pfn()
     - mm: memory-failure: fix unexpected return value in soft_offline_page()
     - NFS: Fix a use after free in nfs_direct_join_group()
     - nfsd: Fix race to FREE_STATEID and cl_revoked
     - selinux: set next pointer before attaching to list
     - batman-adv: Trigger events for auto adjusted MTU
     - batman-adv: Don't increase MTU when set by user
     - batman-adv: Do not get eth header before batadv_check_management_packet
     - batman-adv: Fix TT global entry leak when client roamed back
     - batman-adv: Fix batadv_v_ogm_aggr_send memory leak
     - batman-adv: Hold rtnl lock during MTU update via netlink
     - lib/clz_ctz.c: Fix __clzdi2() and __ctzdi2() for 32-bit kernels
     - of: dynamic: Refactor action prints to not use "%pOF" inside devtree_lock
     - pinctrl: amd: Mask wake bits on probe again
     - media: vcodec: Fix potential array out-of-bounds in encoder queue_setup
     - PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for
       non-root bus
     - drm/vmwgfx: Fix shader stage validation
     - [x86] drm/i915/dgfx: Enable d3cold at s2idle
     - drm/display/dp: Fix the DP DSC Receiver cap size
     - [x86] fpu: Invalidate FPU state correctly on exec()
     - [x86] fpu: Set X86_FEATURE_OSXSAVE feature after enabling OSXSAVE in CR4
       (Closes: #1050622)
     - hwmon: (aquacomputer_d5next) Add selective 200ms delay after sending ctrl
       report
     - nfs: use vfs setgid helper
     - nfsd: use vfs setgid helper
     - cgroup/cpuset: Rename functions dealing with DEADLINE accounting
     - sched/cpuset: Bring back cpuset_mutex
     - sched/cpuset: Keep track of SCHED_DEADLINE task in cpusets
     - cgroup/cpuset: Iterate only if DEADLINE tasks are present
     - sched/deadline: Create DL BW alloc, free & check overflow interface
     - cgroup/cpuset: Free DL BW in case can_attach() fails
     - [x86] thunderbolt: Fix Thunderbolt 3 display flickering issue on 2nd hot
       plug onwards
     - can: raw: add missing refcount for memory leak fix
     - madvise:madvise_free_pte_range(): don't use mapcount() against large folio
       for sharing check
     - scsi: snic: Fix double free in snic_tgt_create()
     - scsi: core: raid_class: Remove raid_component_add()
     - clk: Fix undefined reference to `clk_rate_exclusive_{get,put}'
     - dma-buf/sw_sync: Avoid recursive lock during fence signal
     - gpio: sim: dispose of irq mappings before destroying the irq_sim domain
     - gpio: sim: pass the GPIO device's software node to irq domain
     - [x86] ASoC: amd: yc: Fix a non-functional mic on Lenovo 82SJ
     - maple_tree: disable mas_wr_append() when other readers are possible
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.51
     - ACPI: thermal: Drop nocrt parameter
     - module: Expose module_init_layout_section()
     - [arm64] module-plts: inline linux/moduleloader.h
     - [arm64] module: Use module_init_layout_section() to spot init sections
     - [armel,armhf] module: Use module_init_layout_section() to spot init
       sections
     - [x86] thunderbolt: Fix a backport error for display flickering issue
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.52
     - erofs: ensure that the post-EOF tails are all zeroed
     - ksmbd: fix wrong DataOffset validation of create context
     - ksmbd: fix slub overflow in ksmbd_decode_ntlmssp_auth_blob()
     - ksmbd: replace one-element array with flex-array member in struct
       smb2_ea_info
     - ksmbd: reduce descriptor size if remaining bytes is less than request size
     - [arm64] net: enetc: use EXPORT_SYMBOL_GPL for enetc_phc_index
     - modules: only allow symbol_get of EXPORT_SYMBOL_GPL modules
     - USB: serial: option: add Quectel EM05G variant (0x030e)
     - USB: serial: option: add FOXCONN T99W368/T99W373 product
     - ALSA: usb-audio: Fix init call orders for UAC1
     - [arm64,armhf] usb: dwc3: meson-g12a: do post init to fix broken usb after
       resumption
     - [arm64,armhf] usb: chipidea: imx: improve logic if samsung,picophy-*
       parameter is 0
     - HID: wacom: remove the battery when the EKR is off
     - staging: rtl8712: fix race condition
     - Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race
       condition (CVE-2023-1989)
     - wifi: mt76: mt7921: do not support one stream on secondary antenna only
     - wifi: mt76: mt7921: fix skb leak by txs missing in AMSDU
     - [arm64] serial: qcom-geni: fix opp vote on shutdown
     - firmware: stratix10-svc: Fix an NULL vs IS_ERR() bug in probe
     - tcpm: Avoid soft reset when partner does not support get_status
     - dt-bindings: sc16is7xx: Add property to change GPIO function
     - nilfs2: fix general protection fault in nilfs_lookup_dirty_data_buffers()
     - nilfs2: fix WARNING in mark_buffer_dirty due to discarded buffer reuse
     - [arm64] usb: typec: tcpci: clear the fault status bit
     - pinctrl: amd: Don't show `Invalid config param` errors
 .
   [ Salvatore Bonaccorso ]
   * drivers/ptp: Make PTP_1588_CLOCK builtin (except armel/marvell)
     (Closes: #1036744)
   * [rt] Refresh "serial: 8250: implement write_atomic"
   * Bump ABI to 12
   * [rt] Update to 6.1.46-rt13
   * [rt] Refresh "net: Remove the obsolte u64_stats_fetch_*_irq() users (net)."
   * [x86] tpm: Enable hwrng only for Pluton on AMD CPUs
linux-signed-amd64 (6.1.38+4) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.38-4
 .
   * Fix "init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()"
     backport
linux-signed-amd64 (6.1.38+4~bpo11+1) bullseye-backports; urgency=medium
 .
   * Sign kernel from linux 6.1.38-4~bpo11+1
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.11
linux-signed-amd64 (6.1.38+3) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.38-3
 .
   [ Salvatore Bonaccorso ]
   * [x86] Add mitigations for Gather Data Sampling (GDS) (CVE-2022-40982)
     - init: Provide arch_cpu_finalize_init()
     - x86/cpu: Switch to arch_cpu_finalize_init()
     - ARM: cpu: Switch to arch_cpu_finalize_init()
     - ia64/cpu: Switch to arch_cpu_finalize_init()
     - loongarch/cpu: Switch to arch_cpu_finalize_init()
     - m68k/cpu: Switch to arch_cpu_finalize_init()
     - mips/cpu: Switch to arch_cpu_finalize_init()
     - sh/cpu: Switch to arch_cpu_finalize_init()
     - sparc/cpu: Switch to arch_cpu_finalize_init()
     - um/cpu: Switch to arch_cpu_finalize_init()
     - init: Remove check_bugs() leftovers
     - init: Invoke arch_cpu_finalize_init() earlier
     - init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()
     - x86/init: Initialize signal frame size late
     - x86/fpu: Remove cpuinfo argument from init functions
     - x86/fpu: Mark init functions __init
     - x86/fpu: Move FPU initialization into arch_cpu_finalize_init()
     - x86/speculation: Add Gather Data Sampling mitigation
     - x86/speculation: Add force option to GDS mitigation
     - x86/speculation: Add Kconfig option for GDS
     - KVM: Add GDS_NO support to KVM
     - x86/mem_encrypt: Unbreak the AMD_MEM_ENCRYPT=n build
     - x86/xen: Fix secondary processors' FPU initialization
     - x86/mm: fix poking_init() for Xen PV guests
     - x86/mm: Use mm_alloc() in poking_init()
     - mm: Move mm_cachep initialization to mm_init()
     - x86/mm: Initialize text poking earlier
     - Documentation/x86: Fix backwards on/off logic about YMM support
   * [x86] Add a Speculative RAS Overflow (SRSO) mitigation (CVE-2023-20569)
     - x86/bugs: Increase the x86 bugs vector size to two u32s
     - x86/srso: Add a Speculative RAS Overflow mitigation
     - x86/srso: Add IBPB_BRTYPE support
     - x86/srso: Add SRSO_NO support
     - x86/srso: Add IBPB
     - x86/srso: Add IBPB on VMEXIT
     - x86/srso: Fix return thunks in generated code
     - x86/srso: Add a forgotten NOENDBR annotation
   * Bump ABI to 11
 .
   [ Ben Hutchings ]
   * [x86] Add missing pieces of SRSO mitigation:
     - x86/cpu, kvm: Add support for CPUID_80000021_EAX
     - x86/srso: Tie SBPB bit setting to microcode patch detection
linux-signed-amd64 (6.1.38+2) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.38-2
 .
   * [x86] cpu/amd: Move the errata checking functionality up
   * [x86] cpu/amd: Add a Zenbleed fix (CVE-2023-20593)

linux-signed-arm64 (6.1.55+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.55-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.53
     - Revert "bridge: Add extack warning when enabling STP in netns."
     - Partially revert "drm/amd/display: Fix possible underflow for displays
       with large vblank"
     - scsi: ufs: Try harder to change the power mode
     - Revert "Revert drm/amd/display: Enable Freesync Video Mode by default"
     - ALSA: hda/realtek: Enable 4 amplifiers instead of 2 on a HP platform
     - [powerpc*] boot: Disable power10 features after BOOTAFLAGS assignment
     - media: uapi: HEVC: Add num_delta_pocs_of_ref_rps_idx field
     - 9p: virtio: fix unlikely null pointer deref in handle_rerror
     - 9p: virtio: make sure 'offs' is initialized in zc_request
     - ksmbd: fix out of bounds in smb3_decrypt_req()
     - ksmbd: validate session id and tree id in compound request
     - ksmbd: no response from compound read
     - ksmbd: fix out of bounds in init_smb2_rsp_hdr()
     - ASoC: da7219: Flush pending AAD IRQ when suspending
     - ASoC: da7219: Check for failure reading AAD IRQ events
     - [x86] ASoC: nau8821: Add DMI quirk mechanism for active-high jack-detect
     - ethernet: atheros: fix return value check in atl1c_tso_csum()
     - [s390x] dasd: use correct number of retries for ERP requests
     - [s390x] dasd: fix hanging device after request requeue
     - fs/nls: make load_nls() take a const parameter
     - ASoC: rt5682-sdw: fix for JD event handling in ClockStop Mode0
     - ASoc: codecs: ES8316: Fix DMIC config
     - ASoC: rt711: fix for JD event handling in ClockStop Mode0
     - ASoC: rt711-sdca: fix for JD event handling in ClockStop Mode0
     - ASoC: atmel: Fix the 8K sample parameter in I2SC master
     - ALSA: usb-audio: Add quirk for Microsoft Modern Wireless Headset
     - [x86] platform/x86: intel: hid: Always call BTNL ACPI method
     - [x86] platform/x86/intel/hid: Add HP Dragonfly G2 to VGBS DMI quirks
     - [x86] platform/x86: think-lmi: Use kfree_sensitive instead of kfree
     - [x86] platform/x86: asus-wmi: Fix setting RGB mode on some TUF laptops
     - [x86] platform/x86: huawei-wmi: Silence ambient light sensor
     - drm/amd/smu: use AverageGfxclkFrequency* to replace previous GFX Curr
       Clock
     - drm/amd/display: Guard DCN31 PHYD32CLK logic against chip family
     - drm/amd/display: Exit idle optimizations before attempt to access PHY
     - ovl: Always reevaluate the file signature for IMA
     - ALSA: usb-audio: Update for native DSD support quirks
     - security: keys: perform capable check only on privileged operations
     - kprobes: Prohibit probing on CFI preamble symbol
     - clk: fixed-mmio: make COMMON_CLK_FIXED_MMIO depend on HAS_IOMEM
     - Revert "wifi: ath6k: silence false positive -Wno-dangling-pointer warning
       on GCC 12"
     - net: dsa: microchip: KSZ9477 register regmap alignment to 32 bit
       boundaries
     - net: annotate data-races around sk->sk_{rcv|snd}timeo
     - net: usb: qmi_wwan: add Quectel EM05GV2
     - wifi: brcmfmac: Fix field-spanning write in brcmf_scan_params_v2_to_v1()
     - [powerpc*] powermac: Use early_* IO variants in via_calibrate_decr()
     - [x86] platform/x86/amd/pmf: Fix unsigned comparison with less than zero
     - scsi: lpfc: Remove reftag check in DIF paths
     - scsi: qedi: Fix potential deadlock on &qedi_percpu->p_work_lock
     - [arm64] net: hns3: restore user pause configure when disable autoneg
     - drm/amdgpu: Match against exact bootloader status
     - wifi: cfg80211: remove links only on AP
     - wifi: mac80211: Use active_links instead of valid_links in Tx
     - netlabel: fix shift wrapping bug in netlbl_catmap_setlong()
     - bnx2x: fix page fault following EEH recovery
     - cifs: fix sockaddr comparison in iface_cmp
     - cifs: fix max_credits implementation
     - sctp: handle invalid error codes without calling BUG()
     - scsi: aacraid: Reply queue mapping to CPUs based on IRQ affinity
     - scsi: storvsc: Always set no_report_opcodes
     - scsi: lpfc: Fix incorrect big endian type assignment in bsg loopback path
     - ALSA: seq: oss: Fix racy open/close of MIDI devices
     - net: sfp: handle 100G/25G active optical cables in sfp_parse_support
     - tracing: Introduce pipe_cpumask to avoid race on trace_pipes
     - of: property: Simplify of_link_to_phandle()
     - [x86] cpufreq: intel_pstate: set stale CPU frequency to minimum
     - crypto: rsa-pkcs1pad - Use helper to set reqsize
     - [x86] KVM: x86/mmu: Use kstrtobool() instead of strtobool()
     - [x86] KVM: x86/mmu: Add "never" option to allow sticky disabling of
       nx_huge_pages
     - net: Avoid address overwrite in kernel_connect
     - drm/amd/display: ensure async flips are only accepted for fast updates
     - udf: Check consistency of Space Bitmap Descriptor
     - udf: Handle error when adding extent to a file
     - Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN
     - Revert "net: macsec: preserve ingress frame ordering"
     - reiserfs: Check the return value from __getblk()
     - eventfd: prevent underflow for eventfd semaphores
     - fs: Fix error checking for d_hash_and_lookup()
     - iomap: Remove large folio handling in iomap_invalidate_folio()
     - tmpfs: verify {g,u}id mount options correctly
     - vfs, security: Fix automount superblock LSM init problem, preventing NFS
       sb sharing
     - [armel,armhf] ptrace: Restore syscall restart tracing
     - [armel,armhf] ptrace: Restore syscall skipping for tracers
     - OPP: Fix passing 0 to PTR_ERR in _opp_attach_genpd()
     - [arm64] ptrace: Clean up error handling path in sve_set_common()
     - sched/psi: Select KERNFS as needed
     - [x86] decompressor: Don't rely on upper 32 bits of GPRs being preserved
     - [arm64] sme: Don't use streaming mode to probe the maximum SME VL
     - [arm64] fpsimd: Only provide the length to cpufeature for xCR registers
     - sched/rt: Fix sysctl_sched_rr_timeslice intial value
     - perf/imx_ddr: don't enable counter0 if none of 4 counters are used
     - [s390x] pkey: fix/harmonize internal keyblob headers
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling in PKEY_GENSECK2 IOCTL
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling for sysfs attributes
     - [s390x] paes: fix PKEY_TYPE_EP11_AES handling for secure keyblobs
     - [x86] ACPI: x86: s2idle: Post-increment variables when getting constraints
     - [x86] ACPI: x86: s2idle: Fix a logic error parsing AMD constraints table
     - thermal/of: Fix potential uninitialized value access
     - cpufreq: amd-pstate-ut: Remove module parameter access
     - cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver
     - [x86] efistub: Fix PCI ROM preservation in mixed mode
     - [x86] cpufreq: powernow-k8: Use related_cpus instead of cpus in
       driver.exit()
     - bpftool: use a local copy of perf_event to fix accessing :: Bpf_cookie
     - bpftool: Define a local bpf_perf_link to fix accessing its fields
     - bpftool: Use a local copy of BPF_LINK_TYPE_PERF_EVENT in pid_iter.bpf.c
     - bpftool: Use a local bpf_perf_event_value to fix accessing its fields
     - bpf: Clear the probe_addr for uprobe
     - bpf: Fix an error in verifying a field in a union
     - tcp: tcp_enter_quickack_mode() should be static
     - regmap: rbtree: Use alloc_flags for memory allocations
     - wifi: rtw89: debug: Fix error handling in
       rtw89_debug_priv_btc_manual_set()
     - wifi: mt76: mt7921: fix non-PSC channel scan fail
     - udp: re-score reuseport groups when connected sockets are present
     - bpf: reject unhashed sockets in bpf_sk_assign
     - wifi: mt76: testmode: add nla_policy for MT76_TM_ATTR_TX_LENGTH
     - [arm64,armhf] spi: tegra20-sflash: fix to check return value of
       platform_get_irq() in tegra_sflash_probe()
     - can: gs_usb: gs_usb_receive_bulk_callback(): count RX overflow errors also
       in case of OOM
     - wifi: mt76: mt7915: fix power-limits while chan_switch
     - wifi: mwifiex: Fix OOB and integer underflow when rx packets
     - wifi: mwifiex: fix error recovery in PCIE buffer descriptor management
     - crypto: api - Use work queue in crypto_destroy_instance
     - Bluetooth: nokia: fix value check in nokia_bluetooth_serdev_probe()
     - Bluetooth: Fix potential use-after-free when clear keys
     - Bluetooth: hci_sync: Don't double print name in add/remove adv_monitor
     - Bluetooth: hci_sync: Avoid use-after-free in dbg for hci_add_adv_monitor()
     - net: tcp: fix unexcepted socket die when snd_wnd is 0
     - net-memcg: Fix scope of sockmem pressure indicators
     - ice: ice_aq_check_events: fix off-by-one check when filling buffer
     - [arm64,armhf] crypto: caam - fix unchecked return value error
     - [arm64,armhf] hwrng: iproc-rng200 - Implement suspend and resume calls
     - lwt: Fix return values of BPF xmit ops
     - lwt: Check LWTUNNEL_XMIT_CONTINUE strictly
     - fs: ocfs2: namei: check return value of ocfs2_add_entry()
     - net: annotate data-races around sk->sk_lingertime
     - wifi: mwifiex: fix memory leak in mwifiex_histogram_read()
     - wifi: mwifiex: Fix missed return in oob checks failed path
     - wifi: ath9k: fix races between ath9k_wmi_cmd and ath9k_wmi_ctrl_rx
     - wifi: ath9k: protect WMI command response buffer replacement with a lock
     - wifi: nl80211/cfg80211: add forgotten nla_policy for BSS color attribute
     - mac80211: make ieee80211_tx_info padding explicit
     - wifi: mwifiex: avoid possible NULL skb pointer dereference
     - Bluetooth: btusb: Do not call kfree_skb() under spin_lock_irqsave()
     - [arm64] mm: use ptep_clear() instead of pte_clear() in clear_flush()
     - wifi: ath9k: use IS_ERR() with debugfs_create_dir()
     - ice: avoid executing commands on other ports when driving sync
     - net: arcnet: Do not call kfree_skb() under local_irq_disable()
     - mlxsw: i2c: Fix chunk size setting in output mailbox buffer
     - mlxsw: i2c: Limit single transaction buffer size
     - mlxsw: core_hwmon: Adjust module label names based on MTCAP sensor counter
     - sfc: Check firmware supports Ethernet PTP filter
     - net/sched: sch_hfsc: Ensure inner classes have fsc curve (CVE-2023-4623)
     - netrom: Deny concurrent connect().
     - quota: factor out dquot_write_dquot()
     - quota: rename dquot_active() to inode_quota_active()
     - quota: add new helper dquot_active()
     - quota: fix dqput() to follow the guarantees dquot_srcu should provide
     - drm/amd/display: Do not set drr on pipe commit
     - [arm64] dts: qcom: sm6350: Fix ZAP region
     - [arm64] dts: qcom: sm8250: correct dynamic power coefficients
     - [arm64] dts: qcom: msm8916-l8150: correct light sensor VDDIO supply
     - [arm64] dts: qcom: sm8250-edo: Add gpio line names for TLMM
     - [arm64] dts: qcom: sm8250-edo: Add GPIO line names for PMIC GPIOs
     - [arm64] dts: qcom: sm8250-edo: Rectify gpio-keys
     - [arm64] dts: qcom: sc8280xp-crd: Correct vreg_misc_3p3 GPIO
     - [arm64] dts: qcom: sc8280xp: Add missing SCM interconnect
     - [arm64] dts: qcom: msm8996: Add missing interrupt to the USB2 controller
     - [arm64] dts: qcom: sdm845-tama: Set serial indices and stdout-path
     - [arm64] dts: qcom: sm8350: Fix CPU idle state residency times
     - [arm64] dts: qcom: sm8350: Add missing LMH interrupts to cpufreq
     - [arm64] dts: qcom: sm8350: Use proper CPU compatibles
     - [arm64] dts: qcom: pm8350: fix thermal zone name
     - [arm64] dts: qcom: pm8350b: fix thermal zone name
     - [arm64] dts: qcom: pmr735b: fix thermal zone name
     - [arm64] dts: qcom: pmk8350: fix ADC-TM compatible string
     - [arm64] dts: qcom: sm8250: Mark PCIe hosts as DMA coherent
     - [armhf] dts: stm32: Rename mdio0 to mdio
     - [armhf] dts: stm32: YAML validation fails for Argon Boards
     - [armhf] dts: stm32: adopt generic iio bindings for adc channels on
       emstamp-argon
     - [armhf] dts: stm32: Add missing detach mailbox for emtrion emSBC-Argon
     - [armhf] dts: stm32: YAML validation fails for Odyssey Boards
     - [armhf] dts: stm32: Add missing detach mailbox for Odyssey SoM
     - [armhf] dts: stm32: Update to generic ADC channel binding on DHSOM systems
     - [armhf] dts: stm32: Add missing detach mailbox for DHCOM SoM
     - [arm64] firmware: ti_sci: Use system_state to determine polling
     - drm/amdgpu: avoid integer overflow warning in
       amdgpu_device_resize_fb_bar()
     - [arm64] tegra: Fix HSUART for Jetson AGX Orin
     - [arm64] dts: qcom: sm8250-sony-xperia: correct GPIO keys wakeup again
     - [arm64] dts: qcom: pm6150l: Add missing short interrupt
     - [arm64] dts: qcom: pm660l: Add missing short interrupt
     - [arm64] dts: qcom: pmi8994: Add missing OVP interrupt
     - [arm64] tegra: Fix HSUART for Smaug
     - [arm64,armhf] drm/etnaviv: fix dumping of active MMU context
     - block: cleanup queue_wc_store
     - block: don't allow enabling a cache on devices that don't support it
     - [x86] mm: Fix PAT bit missing from page protection modify mask
     - [arm64] drm: adv7511: Fix low refresh rate register for ADV7533/5
     - drm/amdgpu: Update min() to min_t() in 'amdgpu_info_ioctl'
     - md: Factor out is_md_suspended helper
     - md: Change active_io to percpu
     - md: restore 'noio_flag' for the last mddev_resume()
     - md/raid10: factor out dereference_rdev_and_rrdev()
     - md/raid10: use dereference_rdev_and_rrdev() to get devices
     - md/md-bitmap: remove unnecessary local variable in backlog_store()
     - md/md-bitmap: hold 'reconfig_mutex' in backlog_store()
     - [arm64] drm/msm: Update dev core dump to not print backwards
     - [arm64,armhf] drm/tegra: dpaux: Fix incorrect return value of
       platform_get_irq
     - [arm64] dts: qcom: sm8150: Fix the I2C7 interrupt
     - [armhf] drm/armada: Fix off-by-one error in armada_overlay_get_property()
     - drm/repaper: Reduce temporary buffer size in repaper_fb_dirty()
     - drm/panel: simple: Add missing connector type and pixel format for AUO
       T215HVN01
     - ima: Remove deprecated IMA_TRUSTED_KEYRING Kconfig
     - [arm64] drm/msm/mdp5: Don't leak some plane state
     - [arm64] firmware: meson_sm: fix to avoid potential NULL pointer
       dereference
     - [arm64] drm/msm/dpu: fix the irq index in
       dpu_encoder_phys_wb_wait_for_commit_done
     - smackfs: Prevent underflow in smk_set_cipso()
     - drm/amd/pm: fix variable dereferenced issue in amdgpu_device_attr_create()
     - [arm64] drm/msm/a2xx: Call adreno_gpu_init() earlier
     - audit: fix possible soft lockup in __audit_inode_child()
     - block/mq-deadline: use correct way to throttling write requests
     - io_uring: fix drain stalls by invalid SQE
     - [armhf] bus: ti-sysc: Fix cast to enum warning
     - md/raid5-cache: fix a deadlock in r5l_exit_log()
     - md/raid5-cache: fix null-ptr-deref for r5l_flush_stripe_to_raid()
     - firmware: cs_dsp: Fix new control name check
     - md: add error_handlers for raid0 and linear
     - md/raid0: Factor out helper for mapping and submitting a bio
     - md/raid0: Fix performance regression for large sequential writes
     - md: raid0: account for split bio in iostat accounting
     - of: overlay: Call of_changeset_init() early
     - ALSA: ac97: Fix possible error value of *rac97
     - ipmi:ssif: Add check for kstrdup
     - ipmi:ssif: Fix a memory leak when scanning for an adapter
     - PCI/DOE: Fix destroy_work_on_stack() race
     - [arm64,armhf] clk: sunxi-ng: Modify mismatched function name
     - [amd64] EDAC/igen6: Fix the issue of no error events
     - ext4: correct grp validation in ext4_mb_good_group
     - ext4: avoid potential data overflow in next_linear_group
     - kvm/vfio: Prepare for accepting vfio device fd
     - kvm/vfio: ensure kvg instance stays around in kvm_vfio_group_add()
     - PCI: microchip: Correct the DED and SEC interrupt bit offsets
     - PCI: Mark NVIDIA T4 GPUs to avoid bus reset
     - [armhf] pinctrl: mcp23s08: check return value of devm_kasprintf()
     - PCI: Allow drivers to request exclusive config regions
     - PCI: Add locking to RMW PCI Express Capability Register accessors
     - PCI: pciehp: Use RMW accessors for changing LNKCTL
     - PCI/ASPM: Use RMW accessors for changing LNKCTL
     - [powerpc*] radix: Move some functions into #ifdef
       CONFIG_KVM_BOOK3S_HV_POSSIBLE
     - vfio/type1: fix cap_migration information leak
     - [amd64,arm64] nvdimm: Fix memleak of pmu attr_groups in
       unregister_nvdimm_pmu()
     - [arm64,arm64] nvdimm: Fix dereference after free in register_nvdimm_pmu()
     - [powerpc*] fadump: reset dump area size if fadump memory reserve fails
     - [powerpc*] perf: Convert fsl_emb notifier to state machine callbacks
     - drm/amdgpu: Use RMW accessors for changing LNKCTL
     - drm/radeon: Use RMW accessors for changing LNKCTL
     - net/mlx5: Use RMW accessors for changing LNKCTL
     - wifi: ath11k: Use RMW accessors for changing LNKCTL
     - wifi: ath10k: Use RMW accessors for changing LNKCTL
     - NFSv4.2: Rework scratch handling for READ_PLUS
     - NFSv4.2: Fix READ_PLUS smatch warnings
     - NFSv4.2: Fix up READ_PLUS alignment
     - NFSv4.2: Fix READ_PLUS size calculations
     - [powerpc*] Don't include lppaca.h in paca.h
     - [powerpc*] pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT
     - nfs/blocklayout: Use the passed in gfp flags
     - [powerpc*] pseries: Fix hcall tracepoints with JUMP_LABEL=n
     - [powerpc*] mpc5xxx: Add missing fwnode_handle_put()
     - [powerpc*] iommu: Fix notifiers being shared by PCI and VIO buses
     - ext4: fix unttached inode after power cut with orphan file feature enabled
     - jfs: validate max amount of blocks before allocation.
     - fs: lockd: avoid possible wrong NULL parameter
     - NFSD: da_addr_body field missing in some GETDEVICEINFO replies
     - NFS: Guard against READDIR loop when entry names exceed MAXNAMELEN
     - NFSv4.2: fix handling of COPY ERR_OFFLOAD_NO_REQ
     - pNFS: Fix assignment of xprtdata.cred
     - cgroup/cpuset: Inherit parent's load balance state in v2
     - RDMA/qedr: Remove a duplicate assignment in irdma_query_ah()
     - media: ov5640: fix low resolution image abnormal issue
     - media: ad5820: Drop unsupported ad5823 from i2c_ and of_device_id tables
     - media: i2c: tvp5150: check return value of devm_kasprintf()
     - media: v4l2-core: Fix a potential resource leak in
       v4l2_fwnode_parse_link()
     - [amd64] iommu/amd/iommu_v2: Fix pasid_state refcount dec hit 0 warning on
       pasid unbind
     - [arm64,armhf] iommu: rockchip: Fix directory table address encoding
     - drivers: usb: smsusb: fix error handling code in smsusb_init_device
     - media: dib7000p: Fix potential division by zero
     - media: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer()
     - media: cx24120: Add retval check for cx24120_message_send()
     - RDMA/siw: Fabricate a GID on tun and loopback devices
     - [arm64] scsi: hisi_sas: Fix warnings detected by sparse
     - [arm64] scsi: hisi_sas: Fix normally completed I/O analysed as failed
     - dt-bindings: extcon: maxim,max77843: restrict connector properties
     - media: rkvdec: increase max supported height for H.264
     - usb: phy: mxs: fix getting wrong state with mxs_phy_is_otg_host()
     - scsi: RDMA/srp: Fix residual handling
     - scsi: iscsi: Rename iscsi_set_param() to iscsi_if_set_param()
     - scsi: iscsi: Add length check for nlattr payload
     - scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param()
     - scsi: be2iscsi: Add length check when parsing nlattrs
     - scsi: qla4xxx: Add length check when parsing nlattrs
     - serial: sprd: Assign sprd_port after initialized to avoid wrong access
     - serial: sprd: Fix DMA buffer leak issue
     - [x86] APM: drop the duplicate APM_MINOR_DEV macro
     - RDMA/rxe: Split rxe_run_task() into two subroutines
     - RDMA/rxe: Fix incomplete state save in rxe_requester
     - scsi: qedf: Do not touch __user pointer in
       qedf_dbg_stop_io_on_error_cmd_read() directly
     - scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read()
       directly
     - scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read()
       directly
     - RDMA/irdma: Replace one-element array with flexible-array member
     - [arm64] coresight: tmc: Explicit type conversions to prevent integer
       overflow
     - interconnect: qcom: qcm2290: Enable sync state
     - dma-buf/sync_file: Fix docs syntax
     - driver core: test_async: fix an error code
     - driver core: Call dma_cleanup() on the test_remove path
     - kernfs: add stub helper for kernfs_generic_poll()
     - extcon: cht_wc: add POWER_SUPPLY dependency
     - iommu/sprd: Add missing force_aperture
     - [arm64] RDMA/hns: Fix port active speed
     - [arm64] RDMA/hns: Fix incorrect post-send with direct wqe of wr-list
     - [arm64] RDMA/hns: Fix inaccurate error label name in init instance
     - [arm64] RDMA/hns: Fix CQ and QP cache affinity
     - IB/uverbs: Fix an potential error pointer dereference
     - fsi: aspeed: Reset master errors after CFAM reset
     - [amd64] iommu/vt-d: Fix to flush cache of PASID directory table
     - [x86] platform/x86: dell-sysman: Fix reference leak
     - media: cec: core: add adap_nb_transmit_canceled() callback
     - media: cec: core: add adap_unconfigured() callback
     - media: go7007: Remove redundant if statement
     - media: venus: hfi_venus: Only consider sys_idle_indicator on V1
     - docs: ABI: fix spelling/grammar in SBEFIFO timeout interface
     - USB: gadget: core: Add missing kerneldoc for vbus_work
     - USB: gadget: f_mass_storage: Fix unused variable warning
     - drivers: base: Free devm resources when unregistering a device
     - HID: input: Support devices sending Eraser without Invert
     - media: ov5640: Enable MIPI interface in ov5640_set_power_mipi()
     - media: ov5640: Fix initial RESETB state and annotate timings
     - media: i2c: ov2680: Set V4L2_CTRL_FLAG_MODIFY_LAYOUT on flips
     - media: ov2680: Remove auto-gain and auto-exposure controls
     - media: ov2680: Fix ov2680_bayer_order()
     - media: ov2680: Fix vflip / hflip set functions
     - media: ov2680: Remove VIDEO_V4L2_SUBDEV_API ifdef-s
     - media: ov2680: Don't take the lock for try_fmt calls
     - media: ov2680: Add ov2680_fill_format() helper function
     - media: ov2680: Fix ov2680_set_fmt() which == V4L2_SUBDEV_FORMAT_TRY not
       working
     - media: ov2680: Fix regulators being left enabled on ov2680_power_on()
       errors
     - media: i2c: rdacm21: Fix uninitialized value
     - f2fs: fix to avoid mmap vs set_compress_option case
     - f2fs: judge whether discard_unit is section only when have
       CONFIG_BLK_DEV_ZONED
     - f2fs: Only lfs mode is allowed with zoned block device feature
     - Revert "f2fs: fix to do sanity check on extent cache correctly"
     - cgroup:namespace: Remove unused cgroup_namespaces_init()
     - [arm64] coresight: trbe: Fix TRBE potential sleep in atomic context
     - RDMA/irdma: Prevent zero-length STAG registration (CVE-2023-25775)
     - scsi: core: Use 32-bit hostnum in scsi_host_lookup()
     - scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock
     - [arm64,armhf] serial: tegra: handle clk prepare error in
       tegra_uart_hw_init()
     - [arm64,armhf] amba: bus: fix refcount leak
     - Revert "IB/isert: Fix incorrect release of isert connection"
     - RDMA/siw: Balance the reference of cep->kref in the error path
     - RDMA/siw: Correct wrong debug message
     - RDMA/efa: Fix wrong resources deallocation order
     - HID: logitech-dj: Fix error handling in logi_dj_recv_switch_to_dj_mode()
     - HID: uclogic: Correct devm device reference for hidinput input_dev name
     - HID: multitouch: Correct devm device reference for hidinput input_dev name
     - [x86] platform/x86/amd/pmf: Fix a missing cleanup path
     - tick/rcu: Fix false positive "softirq work is pending" messages
     - [x86] speculation: Mark all Skylake CPUs as vulnerable to GDS
     - tracing: Remove extra space at the end of hwlat_detector/mode
     - tracing: Fix race issue between cpu buffer write and swap
     - mtd: rawnand: brcmnand: Fix mtd oobsize
     - dmaengine: idxd: Modify the dependence of attribute pasid_enabled
     - [arm64,armhf] phy/rockchip: inno-hdmi: use correct vco_div_5 macro on
       rk3328
     - [arm64,armhf] phy/rockchip: inno-hdmi: round fractal pixclock in rk3328
       recalc_rate
     - [arm64,armhf] phy/rockchip: inno-hdmi: do not power on rk3328 post pll on
       reg write
     - rpmsg: glink: Add check for kstrdup
     - leds: pwm: Fix error code in led_pwm_create_fwnode()
     - leds: multicolor: Use rounded division when calculating color components
     - leds: Fix BUG_ON check for LED_COLOR_ID_MULTI that is always false
     - leds: trigger: tty: Do not use LED_ON/OFF constants, use
       led_blink_set_oneshot instead
     - mtd: spi-nor: Check bus width while setting QE bit
     - mtd: rawnand: fsmc: handle clk prepare error in fsmc_nand_resume()
     - dmaengine: ste_dma40: Add missing IRQ check in d40_probe
     - Drivers: hv: vmbus: Don't dereference ACPI root object handle
     - cpufreq: Fix the race condition while updating the transition_task of
       policy
     - virtio_ring: fix avail_wrap_counter in virtqueue_add_packed
     - igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU (CVE-2023-42752)
     - netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for
       ip_set_hash_netportnet.c (CVE-2023-42753)
     - netfilter: nft_exthdr: Fix non-linear header modification
     - netfilter: xt_u32: validate user space input
     - netfilter: xt_sctp: validate the flag_info count
     - skbuff: skb_segment, Call zero copy functions before using skbuff frags
     - igb: set max size RX buffer when store bad packet is enabled
     - PM / devfreq: Fix leak in devfreq_dev_release()
     - ALSA: pcm: Fix missing fixup call in compat hw_refine ioctl
     - rcu: dump vmalloc memory info safely
     - printk: ringbuffer: Fix truncating buffer size min_t cast
     - scsi: core: Fix the scsi_set_resid() documentation
     - mm/vmalloc: add a safer version of find_vm_area() for debug
     - cpu/hotplug: Prevent self deadlock on CPU hot-unplug
     - media: i2c: ccs: Check rules is non-NULL
     - media: i2c: Add a camera sensor top level menu
     - PCI: rockchip: Use 64-bit mask on MSI 64-bit PCI address
     - ipmi_si: fix a memleak in try_smi_init()
     - [armhf] OMAP2+: Fix -Warray-bounds warning in _pwrdm_state_switch()
     - XArray: Do not return sibling entries from xa_load() (Closes: #1053120)
     - io_uring: break iopolling on signal
     - backlight/gpio_backlight: Compare against struct fb_info.device
     - backlight/bd6107: Compare against struct fb_info.device
     - backlight/lv5207lp: Compare against struct fb_info.device
     - drm/amd/display: register edp_backlight_control() for DCN301
     - i3c: master: svc: fix probe failure when no i3c device exist
     - [arm64] csum: Fix OoB access in IP checksum code for negative lengths
     - ALSA: hda/cirrus: Fix broken audio on hardware with two CS42L42 codecs.
     - media: dvb: symbol fixup for dvb_attach() (Closes: #1051613)
     - media: venus: hfi_venus: Write to VIDC_CTRL_INIT after unmasking
       interrupts
     - Revert "scsi: qla2xxx: Fix buffer overrun"
     - scsi: mpt3sas: Perform additional retries if doorbell read returns 0
     - PCI: Free released resource after coalescing
     - PCI: hv: Fix a crash in hv_pci_restore_msi_msg() during hibernation
     - PCI/PM: Only read PCI_PM_CTRL register when available
     - Revert "PCI: Mark NVIDIA T4 GPUs to avoid bus reset"
     - block: don't add or resize partition on the disk with GENHD_FL_NO_PART
     - procfs: block chmod on /proc/thread-self/comm
     - drm/amd/display: Add smu write msg id fail retry process
     - bpf: Fix issue in verifying allow_ptr_leaks
     - dlm: fix plock lookup when using multiple lockspaces
     - dccp: Fix out of bounds access in DCCP error handler
     - [x86] sev: Make enc_dec_hypercall() accept a size instead of npages
     - r8169: fix ASPM-related issues on a number of systems with NIC version
       from RTL8168h
     - X.509: if signature is unsupported skip validation
     - net: handle ARPHRD_PPP in dev_is_mac_header_xmit()
     - fsverity: skip PKCS#7 parser when keyring is empty
     - [x86] MCE: Always save CS register on AMD Zen IF Poison errors
     - platform/chrome: chromeos_acpi: print hex string for ACPI_TYPE_BUFFER
     - [arm64] mmc: renesas_sdhi: register irqs before registering controller
     - pstore/ram: Check start of empty przs during init
     - [arm64] sdei: abort running SDEI handlers during crash
     - [s390x] dcssblk: fix kernel crash with list_add corruption
     - [s390x] ipl: add missing secure/has_secure file to ipl type 'unknown'
     - [s390x] dasd: fix string length handling
     - [armhf] crypto: stm32 - fix loop iterating through scatterlist for DMA
     - cpufreq: brcmstb-avs-cpufreq: Fix -Warray-bounds bug
     - of: property: fw_devlink: Add a devlink for panel followers
     - usb: typec: tcpm: set initial svdm version based on pd revision
     - usb: typec: bus: verify partner exists in typec_altmode_attention
     - USB: core: Unite old scheme and new scheme descriptor reads
     - USB: core: Change usb_get_device_descriptor() API
     - USB: core: Fix race by not overwriting udev->descriptor in hub_port_init()
     - USB: core: Fix oversight in SuperSpeed initialization
     - [x86] sgx: Break up long non-preemptible delays in sgx_vepc_release()
     - [x86] perf/x86/uncore: Correct the number of CHAs on EMR
     - tracing: Zero the pipe cpumask on alloc to avoid spurious -EBUSY
     - Revert "drm/amd/display: Do not set drr on pipe commit"
     - md: Free resources in __md_stop
     - NFSv4.2: Fix a potential double free with READ_PLUS
     - NFSv4.2: Rework scratch handling for READ_PLUS (again)
     - md: fix regression for null-ptr-deference in __md_stop()
     - clk: Mark a fwnode as initialized when using CLK_OF_DECLARE() macro
     - treewide: Fix probing of devices in DT overlays
     - clk: Avoid invalid function names in CLK_OF_DECLARE()
     - udf: initialize newblock to 0
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.54
     - net/ipv6: SKB symmetric hash should incorporate transport ports
     - mm: multi-gen LRU: rename lrugen->lists[] to lrugen->folios[]
     - Multi-gen LRU: fix per-zone reclaim
     - io_uring: always lock in io_apoll_task_func
     - io_uring: revert "io_uring fix multishot accept ordering"
     - io_uring/net: don't overflow multishot accept
     - io_uring: break out of iowq iopoll on teardown
     - io_uring/sqpoll: fix io-wq affinity when IORING_SETUP_SQPOLL is used
     - io_uring: Don't set affinity on a dying sqpoll thread
     - drm/virtio: Conditionally allocate virtio_gpu_fence
     - scsi: qla2xxx: Adjust IOCB resource on qpair create
     - scsi: qla2xxx: Limit TMF to 8 per function
     - scsi: qla2xxx: Fix deletion race condition
     - scsi: qla2xxx: fix inconsistent TMF timeout
     - scsi: qla2xxx: Fix command flush during TMF
     - scsi: qla2xxx: Fix erroneous link up failure
     - scsi: qla2xxx: Turn off noisy message log
     - scsi: qla2xxx: Fix session hang in gnl
     - scsi: qla2xxx: Fix TMF leak through
     - scsi: qla2xxx: Remove unsupported ql2xenabledif option
     - scsi: qla2xxx: Flush mailbox commands on chip reset
     - scsi: qla2xxx: Fix smatch warn for qla_init_iocb_limit()
     - scsi: qla2xxx: Error code did not return to upper layer
     - scsi: qla2xxx: Fix firmware resource tracking
     - null_blk: fix poll request timeout handling
     - drm/ast: Fix DRAM init on AST2200
     - send channel sequence number in SMB3 requests after reconnects
     - memcg: drop kmem.limit_in_bytes
     - mm: hugetlb_vmemmap: fix a race between vmemmap pmd split
     - cifs: update desired access while requesting for directory lease
     - [x86] pinctrl: cherryview: fix address_space_handler() argument
     - dt-bindings: clock: xlnx,versal-clk: drop select:false
     - [arm64,armhf] clk: imx: pll14xx: dynamically configure PLL for
       393216000/361267200Hz
     - [arm64,armhf] clk: imx: pll14xx: align pdiv with reference manual
     - NFS: Fix a potential data corruption
     - NFSv4/pnfs: minor fix for cleanup path in nfs4_get_device_info
     - bus: mhi: host: Skip MHI reset if device is in RDDM
     - net: add SKB_HEAD_ALIGN() helper
     - net: remove osize variable in __alloc_skb()
     - net: factorize code in kmalloc_reserve()
     - net: deal with integer overflows in kmalloc_reserve() (CVE-2023-42752)
     - tpm_crb: Fix an error handling path in crb_acpi_add()
     - gfs2: Switch to wait_event in gfs2_logd
     - gfs2: low-memory forced flush fixes
     - kconfig: fix possible buffer overflow
     - Input: iqs7222 - configure power mode before triggering ATI
     - perf trace: Use zfree() to reduce chances of use after free
     - perf trace: Really free the evsel->priv area
     - backlight: gpio_backlight: Drop output GPIO direction check for initial
       power state
     - Input: tca6416-keypad - always expect proper IRQ number in i2c client
     - Input: tca6416-keypad - fix interrupt enable disbalance
     - perf annotate bpf: Don't enclose non-debug code with an assert()
     - [x86] virt: Drop unnecessary check on extended CPUID level in
       cpu_has_svm()
     - perf vendor events: Update the JSON/events descriptions for power10
       platform
     - perf vendor events: Drop some of the JSON/events for power10 platform
     - perf vendor events: Drop STORES_PER_INST metric event for power10 platform
     - perf top: Don't pass an ERR_PTR() directly to perf_session__delete()
     - watchdog: intel-mid_wdt: add MODULE_ALIAS() to allow auto-load
     - pwm: lpc32xx: Remove handling of PWM channels
     - [x86] drm/i915: mark requests for GuC virtual engines to avoid
       use-after-free
     - blk-throttle: use calculate_io/bytes_allowed() for throtl_trim_slice()
     - blk-throttle: consider 'carryover_ios/bytes' in throtl_trim_slice()
     - cifs: use fs_context for automounts
     - smb: propagate error code of extract_sharename()
     - net/sched: fq_pie: avoid stalls in fq_pie_timer()
     - sctp: annotate data-races around sk->sk_wmem_queued
     - ipv4: annotate data-races around fi->fib_dead
     - net: read sk->sk_family once in sk_mc_loop()
     - net: fib: avoid warn splat in flow dissector
     - xsk: Fix xsk_diag use-after-free error during socket cleanup
     - [x86] drm/i915/gvt: Verify pfn is "valid" before dereferencing "struct
       page"
     - [x86] drm/i915/gvt: Put the page reference obtained by KVM's gfn_to_pfn()
     - [x86] drm/i915/gvt: Drop unused helper intel_vgpu_reset_gtt()
     - net: use sk_forward_alloc_get() in sk_get_meminfo()
     - net: annotate data-races around sk->sk_forward_alloc
     - mptcp: annotate data-races around msk->rmem_fwd_alloc
     - ipv4: ignore dst hint for multipath routes
     - ipv6: ignore dst hint for multipath routes
     - igb: disable virtualization features on 82580
     - gve: fix frag_list chaining
     - veth: Fixing transmit return status for dropped packets
     - net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr
     - net: phy: micrel: Correct bit assignments for phy_device flags
     - bpf, sockmap: Fix skb refcnt race after locking changes
     - af_unix: Fix data-races around user->unix_inflight.
     - af_unix: Fix data-race around unix_tot_inflight.
     - af_unix: Fix data-races around sk->sk_shutdown.
     - af_unix: Fix data race around sk->sk_err.
     - net: sched: sch_qfq: Fix UAF in qfq_dequeue() (CVE-2023-4921)
     - kcm: Destroy mutex in kcm_exit_net()
     - igc: Change IGC_MIN to allow set rx/tx value between 64 and 80
     - igbvf: Change IGBVF_MIN to allow set rx/tx value between 64 and 80
     - igb: Change IGB_MIN to allow set rx/tx value between 64 and 80
     - [s390x] zcrypt: don't leak memory if dev_set_name() fails
     - idr: fix param name in idr_alloc_cyclic() doc
     - ip_tunnels: use DEV_STATS_INC()
     - bpf: Remove prog->active check for bpf_lsm and bpf_iter
     - bpf: Invoke __bpf_prog_exit_sleepable_recur() on recursion in
       kern_sys_bpf().
     - bpf: Assign bpf_tramp_run_ctx::saved_run_ctx before recursion check.
     - netfilter: nftables: exthdr: fix 4-byte stack OOB write
     - netfilter: nfnetlink_osf: avoid OOB read
     - [arm64] net: hns3: fix tx timeout issue
     - [arm64] net: hns3: fix byte order conversion issue in
       hclge_dbg_fd_tcam_read()
     - [arm64] net: hns3: fix debugfs concurrency issue between kfree buffer and
       read
     - [arm64] net: hns3: fix invalid mutex between tc qdisc and dcb ets command
       issue
     - [arm64] net: hns3: fix the port information display when sfp is absent
     - [arm64] net: hns3: remove GSO partial feature bit
     - sh: boards: Fix CEU buffer size passed to dma_declare_coherent_memory()
     - Multi-gen LRU: avoid race in inc_min_seq()
     - net/mlx5: Free IRQ rmap and notifier on kernel shutdown
     - clocksource/drivers/arm_arch_timer: Disable timer before programming CVAL
     - jbd2: fix checkpoint cleanup performance regression
     - jbd2: check 'jh->b_transaction' before removing it from checkpoint
     - jbd2: correct the end of the journal recovery scan range
     - ext4: add correct group descriptors and reserved GDT blocks to system zone
     - ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup}
     - f2fs: flush inode if atomic file is aborted
     - f2fs: avoid false alarm of circular locking
     - hwspinlock: qcom: add missing regmap config for SFPB MMIO implementation
     - ata: ahci: Add Elkhart Lake AHCI controller
     - ata: pata_falcon: fix IO base selection for Q40
     - ata: sata_gemini: Add missing MODULE_DESCRIPTION
     - ata: pata_ftide010: Add missing MODULE_DESCRIPTION
     - fuse: nlookup missing decrement in fuse_direntplus_link
     - btrfs: zoned: do not zone finish data relocation block group
     - btrfs: fix start transaction qgroup rsv double free
     - btrfs: free qgroup rsv on io failure
     - btrfs: don't start transaction when joining with TRANS_JOIN_NOSTART
     - btrfs: set page extent mapped after read_folio in relocate_one_page
     - btrfs: zoned: re-enable metadata over-commit for zoned mode
     - btrfs: use the correct superblock to compare fsid in btrfs_validate_super
     - [arm64] drm/mxsfb: Disable overlay plane in
       mxsfb_plane_overlay_atomic_disable()
     - drm/amd/display: enable cursor degamma for DCN3+ DRM legacy gamma
     - drm/amd/display: prevent potential division by zero errors
     - [x86] KVM: SVM: Take and hold ir_list_lock when updating vCPU's Physical
       ID entry
     - [x86] KVM: SVM: Don't inject #UD if KVM attempts to skip SEV guest insn
     - [x86] KVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost
       migration
     - [x86] KVM: nSVM: Check instead of asserting on nested TSC scaling support
     - [x86] KVM: nSVM: Load L1's TSC multiplier based on L1 state, not L2 state
     - [x86] KVM: SVM: Set target pCPU during IRTE update if target vCPU is
       running
     - [x86] KVM: SVM: Skip VMSA init in sev_es_init_vmcb() if pointer is NULL
     - perf hists browser: Fix hierarchy mode header
     - perf test shell stat_bpf_counters: Fix test on Intel
     - perf tools: Handle old data in PERF_RECORD_ATTR
     - perf hists browser: Fix the number of entries for 'e' key
     - drm/amd/display: always switch off ODM before committing more streams
     - drm/amd/display: Remove wait while locked
     - drm/amdgpu: register a dirty framebuffer callback for fbcon
       (Closes: #1037142)
     - net: ipv4: fix one memleak in __inet_del_ifa()
     - net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in
       smcr_port_add
     - net: stmmac: fix handling of zero coalescing tx-usecs
     - net: ethernet: mvpp2_main: fix possible OOB write in
       mvpp2_ethtool_get_rxnfc()
     - net: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in
       mtk_hwlro_get_fdir_all()
     - hsr: Fix uninit-value access in fill_frame_info()
     - net: ethernet: adi: adin1110: use eth_broadcast_addr() to assign broadcast
       address
     - net:ethernet:adi:adin1110: Fix forwarding offload
     - r8152: check budget for r8152_poll()
     - kcm: Fix memory leak in error path of kcm_sendmsg()
     - net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict()
     - net: macb: Enable PTP unicast
     - net: macb: fix sleep inside spinlock
     - ipv6: fix ip6_sock_set_addr_preferences() typo
     - ipv6: Remove in6addr_any alternatives.
     - tcp: Factorise sk_family-independent comparison in
       inet_bind2_bucket_match(_addr_any).
     - tcp: Fix bind() regression for v4-mapped-v6 wildcard address.
     - tcp: Fix bind() regression for v4-mapped-v6 non-wildcard address.
     - ixgbe: fix timestamp configuration code
     - kcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg().
     - drm/amd/display: Fix a bug when searching for insert_above_mpcc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.55
     - autofs: fix memory leak of waitqueues in autofs_catatonic_mode
     - btrfs: output extra debug info if we failed to find an inline backref
     - ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer
     - kernel/fork: beware of __put_task_struct() calling context
     - rcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to
       _idle()
     - [x86] ACPI: video: Add backlight=native DMI quirk for Lenovo Ideapad Z470
     - [arm64] perf/smmuv3: Enable HiSilicon Erratum 162001900 quirk for HIP08/09
     - [amr64] perf/imx_ddr: speed up overflow frequency of cycle
     - hw_breakpoint: fix single-stepping when using bpf_overflow_handler
     - [x86] ACPI: x86: s2idle: Catch multiple ACPI_TYPE_PACKAGE objects
     - devlink: remove reload failed checks in params get/set callbacks
     - crypto: lrw,xts - Replace strlcpy with strscpy
     - ice: Don't tx before switchdev is fully configured
     - wifi: ath9k: fix fortify warnings
     - wifi: ath9k: fix printk specifier
     - wifi: mwifiex: fix fortify warning
     - mt76: mt7921: don't assume adequate headroom for SDIO headers
     - wifi: wil6210: fix fortify warnings
     - [armhf] can: sun4i_can: Add acceptance register quirk
     - [armhf] can: sun4i_can: Add support for the Allwinner D1
     - net: Use sockaddr_storage for getsockopt(SO_PEERNAME).
     - net/ipv4: return the real errno instead of -EINVAL
     - crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui()
     - Bluetooth: Fix hci_suspend_sync crash
     - netlink: convert nlk->flags to atomic flags
     - tpm_tis: Resend command to recover from data transfer errors
     - [arm64,armhf] mmc: sdhci-esdhc-imx: improve ESDHC_FLAG_ERR010450
     - alx: fix OOB-read compiler warning
     - wifi: mac80211: check S1G action frame size
     - netfilter: ebtables: fix fortify warnings in size_entry_mwt()
     - wifi: cfg80211: reject auth/assoc to AP with our address
     - wifi: cfg80211: ocb: don't leave if not joined
     - wifi: mac80211: check for station first in client probe
     - wifi: mac80211_hwsim: drop short frames
     - drm/bridge: tc358762: Instruct DSI host to generate HSE packets
     - drm/edid: Add quirk for OSVR HDK 2.0
     - [arm64] dts: qcom: sm6125-pdx201: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm6350: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm8150-kumano: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm8250-edo: correct ramoops pmsg-size
     - drm/amd/display: Fix underflow issue on 175hz timing
     - [x86] ASoC: SOF: topology: simplify code to prevent static analysis
       warnings
     - [x86] ASoC: Intel: sof_sdw: Update BT offload config for soundwire config
     - [x86] ALSA: hda: intel-dsp-cfg: add LunarLake support
     - drm/amd/display: Use DTBCLK as refclk instead of DPREFCLK
     - drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN31
     - drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN314
     - [armhf] drm/exynos: fix a possible null-pointer dereference due to data
       race in exynos_drm_crtc_atomic_disable()
     - [armhf] bus: ti-sysc: Configure uart quirks for k3 SoC
     - md: raid1: fix potential OOB in raid1_remove_disk()
     - fs/jfs: prevent double-free in dbUnmount() after failed jfs_remount()
     - jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount
     - [arm64,armhf] PCI: dwc: Provide deinit callback for i.MX
     - [armel,armhf] 9317/1: kexec: Make smp stop calls asynchronous
     - [powerpc*] pseries: fix possible memory leak in ibmebus_bus_init()
     - PCI: vmd: Disable bridge window for domain reset
     - PCI: fu740: Set the number of MSI vectors
     - media: mdp3: Fix resource leaks in of_find_device_by_node
     - media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer
     - media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer()
     - media: af9005: Fix null-ptr-deref in af9005_i2c_xfer
     - media: anysee: fix null-ptr-deref in anysee_master_xfer
     - media: az6007: Fix null-ptr-deref in az6007_i2c_xfer()
     - media: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer
     - scsi: lpfc: Abort outstanding ELS cmds when mailbox timeout error is
       detected
     - media: tuners: qt1010: replace BUG_ON with a regular error
     - media: pci: cx23885: replace BUG with error return
     - usb: cdns3: Put the cdns set active part outside the spin lock
     - usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc
     - scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()
     - serial: cpm_uart: Avoid suspicious locking
     - misc: open-dice: make OPEN_DICE depend on HAS_IOMEM
     - usb: ehci: add workaround for chipidea PORTSC.PEC bug
     - usb: chipidea: add workaround for chipidea PEC bug
     - media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler
       warning
     - kobject: Add sanity check for kset->kobj.ktype in kset_register()
     - [armhf] interconnect: Fix locking for runpm vs reclaim
     - printk: Keep non-panic-CPUs out of console lock
     - printk: Consolidate console deferred printing
     - dma-buf: Add unlocked variant of attachment-mapping functions
     - misc: fastrpc: Prepare to dynamic dma-buf locking specification
     - misc: fastrpc: Fix incorrect DMA mapping unmap request
     - btrfs: add a helper to read the superblock metadata_uuid
     - btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super
     - block: factor out a bvec_set_page helper
     - nvmet: use bvec_set_page to initialize bvecs
     - nvmet-tcp: pass iov_len instead of sg->length to bvec_set_page()
     - drm: gm12u320: Fix the timeout usage for usb_bulk_msg()
     - scsi: qla2xxx: Fix NULL vs IS_ERR() bug for debugfs_create_dir()
     - [x86] ibt: Suppress spurious ENDBR
     - scsi: target: core: Fix target_cmd_counter leak
     - scsi: lpfc: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
     - panic: Reenable preemption in WARN slowpath
     - [x86] boot/compressed: Reserve more memory for page tables
     - [x86] purgatory: Remove LTO flags
     - md/raid1: fix error: ISO C90 forbids mixed declarations
     - Revert "SUNRPC: Fail faster on bad verifier"
     - attr: block mode changes of symlinks
     - ovl: fix failed copyup of fileattr on a symlink
     - ovl: fix incorrect fdput() on aio completion
     - io_uring/net: fix iter retargeting for selected buf
     - nvme: avoid bogus CRTO values
     - md: Put the right device in md_seq_next
     - Revert "drm/amd: Disable S/G for APUs when 64GB or more host memory"
     - dm: don't attempt to queue IO under RCU protection
     - btrfs: fix lockdep splat and potential deadlock after failure running
       delayed items
     - btrfs: fix a compilation error if DEBUG is defined in btree_dirty_folio
     - btrfs: release path before inode lookup during the ino lookup ioctl
     - btrfs: check for BTRFS_FS_ERROR in pending ordered assert
     - tracing: Have tracing_max_latency inc the trace array ref count
     - tracing: Have event inject files inc the trace array ref count
     - tracing: Increase trace array ref count on enable and filter files
     - tracing: Have current_trace inc the trace array ref count
     - tracing: Have option files inc the trace array ref count
     - selinux: fix handling of empty opts in selinux_fs_context_submount()
     - nfsd: fix change_info in NFSv4 RENAME replies
     - tracefs: Add missing lockdown check to tracefs_create_dir()
     - [armhf] i2c: aspeed: Reset the i2c controller when timeout occurs
     - ata: libata: disallow dev-initiated LPM transitions to unsupported states
     - ata: libahci: clear pending interrupt status
     - scsi: megaraid_sas: Fix deadlock on firmware crashdump
     - scsi: pm8001: Setup IRQs on resume
     - ext4: fix rec_len verify error
     - drm/amd/display: fix the white screen issue when >= 64GB DRAM
     - Revert "memcg: drop kmem.limit_in_bytes"
     - drm/amdgpu: fix amdgpu_cs_p1_user_fence
     - net/sched: Retire rsvp classifier (CVE-2023-42755)
     - [arm64,armhf] interconnect: Teach lockdep about icc_bw_lock order
 .
   [ Bastian Blank ]
   * Backport changes in Microsoft Azure Network Adapter up to 6.6.
     (closes: #1035378)
 .
   [ Salvatore Bonaccorso ]
   * [armel/marvell] Disable features to shrink kernel image (fixes FTBFS):
     - tcp: Disable MPTCP
     - tracing: Disable FUNCTION_TRACER
   * Bump ABI to 13
   * [rt] Update to 6.1.54-rt15
   * Drop now unknown config options for IPv4 and IPv6 Resource Reservation
     Protocol (RSVP, RSVP6)
   * [rt] Refresh "printk: Bring back the RT bits."
   * [rt] Refresh "printk: avoid preempt_disable() for PREEMPT_RT"
   * [rt] Drop "kernel/fork: beware of __put_task_struct() calling context"
     (applied upstream)
   * netfilter: nf_tables: don't skip expired elements during walk
     (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction API to avoid race with control plane
     (CVE-2023-4244)
   * netfilter: nf_tables: adapt set backend to use GC transaction API
     (CVE-2023-4244)
   * netfilter: nft_set_hash: mark set element as dead when deleting from packet
     path (CVE-2023-4244)
   * netfilter: nf_tables: remove busy mark and gc batch API (CVE-2023-4244)
   * netfilter: nf_tables: don't fail inserts if duplicate has expired
   * netfilter: nf_tables: fix GC transaction races with netns and netlink event
     exit path (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction race with netns dismantle
     (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction race with abort path
   * netfilter: nf_tables: use correct lock to protect gc_list
   * netfilter: nf_tables: defer gc run if previous batch is still pending
   * netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
   * netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention
   * netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync() in catchall GC
   * netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation
     fails
   * netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration
   * netfilter: nf_tables: fix memleak when more than 255 elements expired
   * netfilter: nf_tables: disallow element removal on anonymous sets
   * netfilter: conntrack: fix extension size table
   * netfilter, bpf: Adjust timeouts of non-confirmed CTs in
     bpf_ct_insert_entry()
   * netfilter: nf_tables: disable toggling dormant table state more than once
   * netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP
     (CVE-2023-42756)
   * misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to
     probe (Closes: #1052063)
   * ipv4: fix null-deref in ipv4_link_failure
 .
   [ Vincent Blut ]
   * drivers/char/hw_random: Change HW_RANDOM from module to built-in
     (Closes: #1041007)
   * drivers/char/tpm: Do not explicitly set HW_RANDOM_TPM
   * [arm64, cloud, x86] drivers/char/tpm: Do not explicitly enable TCG_TPM
   * [arm*,ppc64*,sparc64,s390x] drivers/char/hw_random: Prevent some HW Random
     Number Generator drivers from being built-in
linux-signed-arm64 (6.1.52+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.52-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.39
     - fs: pipe: reveal missing function protoypes
     - block: Fix the type of the second bdev_op_is_zoned_write() argument
     - erofs: clean up cached I/O strategies
     - erofs: avoid tagged pointers to mark sync decompression
     - erofs: remove tagged pointer helpers
     - erofs: move zdata.h into zdata.c
     - erofs: kill hooked chains to avoid loops on deduplicated compressed images
     - [x86] resctrl: Only show tasks' pid in current pid namespace
     - blk-iocost: use spin_lock_irqsave in adjust_inuse_and_calc_cost
     - [x86] sev: Fix calculation of end address based on number of pages
     - virt: sevguest: Add CONFIG_CRYPTO dependency
     - blk-mq: fix potential io hang by wrong 'wake_batch'
     - lockd: drop inappropriate svc_get() from locked_get()
     - nvme-core: fix memory leak in dhchap_secret_store
     - nvme-core: fix memory leak in dhchap_ctrl_secret
     - nvme-core: add missing fault-injection cleanup
     - nvme-core: fix dev_pm_qos memleak
     - md/raid10: check slab-out-of-bounds in md_bitmap_get_counter
     - md/raid10: fix overflow of md/safe_mode_delay
     - md/raid10: fix wrong setting of max_corr_read_errors
     - md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request
     - md/raid10: fix io loss while replacement replace rdev
     - md/raid1-10: factor out a helper to add bio to plug
     - md/raid1-10: factor out a helper to submit normal write
     - md/raid1-10: submit write io directly if bitmap is not enabled
     - block: fix blktrace debugfs entries leakage
     - irqchip/stm32-exti: Fix warning on initialized field overwritten
     - irqchip/jcore-aic: Fix missing allocation of IRQ descriptors
     - svcrdma: Prevent page release when nothing was received
     - erofs: simplify iloc()
     - erofs: fix compact 4B support for 16k block size
     - posix-timers: Prevent RT livelock in itimer_delete()
     - tick/rcu: Fix bogus ratelimit condition
     - tracing/timer: Add missing hrtimer modes to decode_hrtimer_mode().
     - clocksource/drivers/cadence-ttc: Fix memory leak in ttc_timer_probe
     - PM: domains: fix integer overflow issues in genpd_parse_state()
     - perf/arm-cmn: Fix DTC reset
     - [x86] mm: Allow guest.enc_status_change_prepare() to fail
     - [x86] tdx: Fix race between set_memory_encrypted() and
       load_unaligned_zeropad()
     - drivers/perf: hisi: Don't migrate perf to the CPU going to teardown
     - powercap: RAPL: Fix CONFIG_IOSF_MBI dependency
     - PM: domains: Move the verification of in-params from genpd_add_device()
     - cpufreq: intel_pstate: Fix energy_performance_preference for passive
     - thermal/drivers/sun8i: Fix some error handling paths in sun8i_ths_probe()
     - rcu: Make rcu_cpu_starting() rely on interrupts being disabled
     - rcu-tasks: Stop rcu_tasks_invoke_cbs() from using never-onlined CPUs
     - rcutorture: Correct name of use_softirq module parameter
     - rcuscale: Move shutdown from wait_event() to wait_event_idle()
     - rcu/rcuscale: Move rcu_scale_*() after kfree_scale_cleanup()
     - rcu/rcuscale: Stop kfree_scale_thread thread(s) after unloading rcuscale
     - perf/ibs: Fix interface via core pmu events
     - [x86] mm: Fix __swp_entry_to_pte() for Xen PV guests
     - locking/atomic: arm: fix sync ops
     - evm: Complete description of evm_inode_setattr()
     - pstore/ram: Add check for kstrdup
     - igc: Enable and fix RX hash usage by netstack
     - wifi: ath9k: fix AR9003 mac hardware hang check register offset
       calculation
     - wifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx
     - spi: spi-geni-qcom: Correct CS_TOGGLE bit in SPI_TRANS_CFG
     - wifi: wilc1000: fix for absent RSN capabilities WFA testcase
     - wifi: mwifiex: Fix the size of a memory allocation in
       mwifiex_ret_802_11_scan()
     - sctp: add bpf_bypass_getsockopt proto callback
     - bpf: Don't EFAULT for {g,s}setsockopt with wrong optlen
     - spi: dw: Round of n_bytes to power of 2
     - nfc: llcp: fix possible use of uninitialized variable in
       nfc_llcp_send_connect()
     - bpftool: JIT limited misreported as negative value on aarch64
     - bpf: Remove bpf trampoline selector
     - bpf: Fix memleak due to fentry attach failure
     - regulator: core: Fix more error checking for debugfs_create_dir()
     - regulator: core: Streamline debugfs operations
     - wifi: orinoco: Fix an error handling path in spectrum_cs_probe()
     - wifi: orinoco: Fix an error handling path in orinoco_cs_probe()
     - wifi: atmel: Fix an error handling path in atmel_probe()
     - wifi: wl3501_cs: Fix an error handling path in wl3501_probe()
     - wifi: ray_cs: Fix an error handling path in ray_probe()
     - wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes
     - wifi: ath10k: Trigger STA disconnect after reconfig complete on hardware
       restart
     - wifi: mac80211: recalc min chandef for new STA links
     - wifi: rsi: Do not configure WoWlan in shutdown hook if not enabled
     - wifi: rsi: Do not set MMC_PM_KEEP_POWER in shutdown
     - ice: handle extts in the miscellaneous interrupt thread
     - watchdog/perf: define dummy watchdog_update_hrtimer_threshold() on correct
       config
     - watchdog/perf: more properly prevent false positives with turbo modes
     - kexec: fix a memory leak in crash_shrink_memory()
     - mmc: mediatek: Avoid ugly error message when SDIO wakeup IRQ isn't used
     - memstick r592: make memstick_debug_get_tpc_name() static
     - wifi: ath9k: Fix possible stall on ath9k_txq_list_has_key()
     - wifi: mac80211: Fix permissions for valid_links debugfs entry
     - rtnetlink: extend RTEXT_FILTER_SKIP_STATS to IFLA_VF_INFO
     - wifi: ath11k: Add missing check for ioremap
     - wifi: iwlwifi: pull from TXQs with softirqs disabled
     - wifi: iwlwifi: pcie: fix NULL pointer dereference in
       iwl_pcie_irq_rx_msix_handler()
     - wifi: mac80211: Remove "Missing iftype sband data/EHT cap" spam
     - wifi: cfg80211: rewrite merging of inherited elements
     - wifi: cfg80211: drop incorrect nontransmitted BSS update code
     - wifi: cfg80211: fix regulatory disconnect with OCB/NAN
     - wifi: cfg80211/mac80211: Fix ML element common size calculation
     - wifi: ieee80211: Fix the common size calculation for reconfiguration ML
     - mmc: Add MMC_QUIRK_BROKEN_SD_CACHE for Kingston Canvas Go Plus from
       11/2019
     - wifi: iwlwifi: mvm: indicate HW decrypt for beacon protection
     - wifi: ath9k: convert msecs to jiffies where needed
     - bpf: Factor out socket lookup functions for the TC hookpoint.
     - bpf: Call __bpf_sk_lookup()/__bpf_skc_lookup() directly via TC hookpoint
     - bpf: Fix bpf socket lookup from tc/xdp to respect socket VRF bindings
     - can: length: fix bitstuffing count
     - net: stmmac: fix double serdes powerdown
     - netlink: fix potential deadlock in netlink_set_err()
     - netlink: do not hard code device address lenth in fdb dumps
     - bonding: do not assume skb mac_header is set
     - gtp: Fix use-after-free in __gtp_encap_destroy().
     - net: axienet: Move reset before 64-bit DMA detection
     - ocfs2: Fix use of slab data with sendpage
     - sfc: fix crash when reading stats while NIC is resetting
     - net: nfc: Fix use-after-free caused by nfc_llcp_find_local (CVE-2023-3863)
     - lib/ts_bm: reset initial match offset for every block of text
     - netfilter: conntrack: dccp: copy entire header to stack buffer, not just
       basic one
     - netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return
       value.
     - ipvlan: Fix return value of ipvlan_queue_xmit()
     - netlink: Add __sock_i_ino() for __netlink_diag_dump().
     - drm/amd/display: Add logging for display MALL refresh setting
     - radeon: avoid double free in ci_dpm_init()
     - drm/amd/display: Explicitly specify update type per plane info change
     - drm/bridge: it6505: Move a variable assignment behind a null pointer check
       in receive_timing_debugfs_show()
     - Input: drv260x - sleep between polling GO bit
     - drm/bridge: ti-sn65dsi83: Fix enable error path
     - drm/bridge: tc358768: always enable HS video mode
     - drm/bridge: tc358768: fix PLL parameters computation
     - drm/bridge: tc358768: fix PLL target frequency
     - drm/bridge: tc358768: fix TCLK_ZEROCNT computation
     - drm/bridge: tc358768: Add atomic_get_input_bus_fmts() implementation
     - drm/bridge: tc358768: fix TCLK_TRAILCNT computation
     - drm/bridge: tc358768: fix THS_ZEROCNT computation
     - drm/bridge: tc358768: fix TXTAGOCNT computation
     - drm/bridge: tc358768: fix THS_TRAILCNT computation
     - drm/vram-helper: fix function names in vram helper doc
     - mm: call arch_swap_restore() from do_swap_page()
     - clk: vc5: Use `clamp()` to restrict PLL range
     - bootmem: remove the vmemmap pages from kmemleak in free_bootmem_page
     - clk: vc5: Fix .driver_data content in i2c_device_id
     - clk: vc7: Fix .driver_data content in i2c_device_id
     - clk: rs9: Fix .driver_data content in i2c_device_id
     - Input: adxl34x - do not hardcode interrupt trigger type
     - drm: sun4i_tcon: use devm_clk_get_enabled in `sun4i_tcon_init_clocks`
     - drm/panel: sharp-ls043t1le01: adjust mode settings
     - driver: soc: xilinx: use _safe loop iterator to avoid a use after free
     - ASoC: Intel: sof_sdw: remove SOF_SDW_TGL_HDMI for MeteorLake devices
     - drm/vkms: isolate pixel conversion functionality
     - drm: Add fixed-point helper to get rounded integer values
     - drm/vkms: Fix RGB565 pixel conversion
     - ARM: dts: stm32: Move ethernet MAC EEPROM from SoM to carrier boards
     - bus: ti-sysc: Fix dispc quirk masking bool variables
     - [arm64:]dts: microchip: sparx5: do not use PSCI on reference boards
     - drm/bridge: tc358767: Switch to devm MIPI-DSI helpers
     - clk: imx: scu: use _safe list iterator to avoid a use after free
     - hwmon: (f71882fg) prevent possible division by zero
     - RDMA/bnxt_re: Disable/kill tasklet only if it is enabled
     - RDMA/bnxt_re: Fix to remove unnecessary return labels
     - RDMA/bnxt_re: Use unique names while registering interrupts
     - RDMA/bnxt_re: Remove a redundant check inside bnxt_re_update_gid
     - RDMA/bnxt_re: Fix to remove an unnecessary log
     - drm/msm/dsi: don't allow enabling 14nm VCO with unprogrammed rate
     - drm/msm/disp/dpu: get timing engine status from intf status register
     - drm/msm/dpu: Set DPU_DATA_HCTL_EN for in INTF_SC7180_MASK
     - iommu/virtio: Detach domain on endpoint release
     - iommu/virtio: Return size mapped for a detached domain
     - clk: renesas: rzg2l: Fix CPG_SIPLL5_CLK1 register write
     - ARM: dts: gta04: Move model property out of pinctrl node
     - drm/bridge: anx7625: Convert to i2c's .probe_new()
     - drm/bridge: anx7625: Prevent endless probe loop
     - ARM: dts: qcom: msm8974: do not use underscore in node name (again)
     - [arm64] dts: qcom: msm8916: correct camss unit address
     - [arm64] dts: qcom: msm8916: correct MMC unit address
     - [arm64] dts: qcom: msm8994: correct SPMI unit address
     - [arm64] dts: qcom: msm8996: correct camss unit address
     - [arm64] dts: qcom: sdm630: correct camss unit address
     - [arm64] dts: qcom: sdm845: correct camss unit address
     - [arm64] dts: qcom: sm8350: Add GPI DMA compatible fallback
     - [arm64] dts: qcom: sm8350: correct DMA controller unit address
     - [arm64] dts: qcom: sdm845-polaris: add missing touchscreen child node reg
     - [arm64] dts: qcom: apq8016-sbc: Fix regulator constraints
     - [arm64] dts: qcom: apq8016-sbc: Fix 1.8V power rail on LS expansion
     - drm/bridge: Introduce pre_enable_prev_first to alter bridge init order
     - drm/bridge: ti-sn65dsi83: Fix enable/disable flow to meet spec
     - drm/panel: simple: fix active size for Ampire AM-480272H3TMQW-T01H
     - ARM: ep93xx: fix missing-prototype warnings
     - ARM: omap2: fix missing tick_broadcast() prototype
     - [arm64] dts: qcom: pm7250b: add missing spmi-vadc include
     - [arm64] dts: qcom: apq8096: fix fixed regulator name property
     - [arm64] dts: mediatek: mt8183: Add mediatek,broken-save-restore-fw to
       kukui
     - ARM: dts: stm32: Shorten the AV96 HDMI sound card name
     - memory: brcmstb_dpfe: fix testing array offset after use
     - ARM: dts: qcom: apq8074-dragonboard: Set DMA as remotely controlled
     - ASoC: es8316: Increment max value for ALC Capture Target Volume control
     - ASoC: es8316: Do not set rate constraints for unsupported MCLKs
     - ARM: dts: meson8: correct uart_B and uart_C clock references
     - soc/fsl/qe: fix usb.c build errors
     - RDMA/irdma: avoid fortify-string warning in irdma_clr_wqes
     - IB/hfi1: Fix wrong mmu_node used for user SDMA packet after invalidate
     - RDMA/hns: Fix hns_roce_table_get return value
     - ARM: dts: iwg20d-q7-common: Fix backlight pwm specifier
     - drm/msm/dpu: set DSC flush bit correctly at MDP CTL flush register
     - fbdev: omapfb: lcd_mipid: Fix an error handling path in mipid_spi_probe()
     - [arm64] dts: ti: k3-j7200: Fix physical address of pin
     - Input: pm8941-powerkey - fix debounce on gen2+ PMICs
     - ARM: dts: stm32: Fix audio routing on STM32MP15xx DHCOM PDK2
     - ARM: dts: stm32: fix i2s endpoint format property for stm32mp15xx-dkx
     - hwmon: (gsc-hwmon) fix fan pwm temperature scaling
     - hwmon: (pmbus/adm1275) Fix problems with temperature monitoring on ADM1272
     - ARM: dts: BCM5301X: fix duplex-full => full-duplex
     - clk: Export clk_hw_forward_rate_request()
     - drm/amd/display: Fix a test CalculatePrefetchSchedule()
     - drm/amd/display: Fix a test dml32_rq_dlg_get_rq_reg()
     - drm/amdkfd: Fix potential deallocation of previously deallocated memory.
     - soc: mediatek: SVS: Fix MT8192 GPU node name
     - drm/amd/display: Fix artifacting on eDP panels when engaging freesync
       video mode
     - drm/radeon: fix possible division-by-zero errors
     - HID: uclogic: Modular KUnit tests should not depend on KUNIT=y
     - RDMA/rxe: Add ibdev_dbg macros for rxe
     - RDMA/rxe: Replace pr_xxx by rxe_dbg_xxx in rxe_mw.c
     - RDMA/rxe: Fix access checks in rxe_check_bind_mw
     - amdgpu: validate offset_in_bo of drm_amdgpu_gem_va
     - drm/msm/a5xx: really check for A510 in a5xx_gpu_init
     - RDMA/bnxt_re: wraparound mbox producer index
     - RDMA/bnxt_re: Avoid calling wake_up threads from spin_lock context
     - clk: imx: clk-imxrt1050: fix memory leak in imxrt1050_clocks_probe
     - clk: imx: clk-imx8mn: fix memory leak in imx8mn_clocks_probe
     - clk: imx93: fix memory leak and missing unwind goto in imx93_clocks_probe
     - clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe()
     - [arm64] dts: qcom: sdm845: Flush RSC sleep & wake votes
     - [arm64] dts: qcom: sm8250-edo: Panel framebuffer is 2.5k instead of 4k
     - clk: bcm: rpi: Fix off by one in raspberrypi_discover_clocks()
     - clk: clocking-wizard: Fix Oops in clk_wzrd_register_divider()
     - clk: tegra: tegra124-emc: Fix potential memory leak
     - ALSA: ac97: Fix possible NULL dereference in snd_ac97_mixer
     - drm/msm/dpu: do not enable color-management if DSPPs are not available
     - drm/msm/dpu: Fix slice_last_group_size calculation
     - drm/msm/dsi: Use DSC slice(s) packet size to compute word count
     - drm/msm/dsi: Flip greater-than check for slice_count and slice_per_intf
     - drm/msm/dsi: Remove incorrect references to slice_count
     - drm/msm/dp: Free resources after unregistering them
     - [arm64] dts: mediatek: Add cpufreq nodes for MT8192
     - [arm64] dts: mediatek: mt8192: Fix CPUs capacity-dmips-mhz
     - drm/amdgpu: Fix memcpy() in sienna_cichlid_append_powerplay_table
       function.
     - drm/amdgpu: Fix usage of UMC fill record in RAS
     - drm/msm/dpu: correct MERGE_3D length
     - clk: vc5: check memory returned by kasprintf()
     - clk: cdce925: check return value of kasprintf()
     - clk: si5341: return error if one synth clock registration fails
     - clk: si5341: check return value of {devm_}kasprintf()
     - clk: si5341: free unused memory on probe failure
     - clk: keystone: sci-clk: check return value of kasprintf()
     - clk: ti: clkctrl: check return value of kasprintf()
     - drivers: meson: secure-pwrc: always enable DMA domain
     - ovl: update of dentry revalidate flags after copy up
     - ASoC: imx-audmix: check return value of devm_kasprintf()
     - clk: Fix memory leak in devm_clk_notifier_register()
     - ARM: dts: lan966x: kontron-d10: fix board reset
     - ARM: dts: lan966x: kontron-d10: fix SPI CS
     - ASoC: amd: acp: clear pdm dma interrupt mask
     - PCI: cadence: Fix Gen2 Link Retraining process
     - PCI: vmd: Reset VMD config register between soft reboots
     - scsi: qedf: Fix NULL dereference in error handling
     - pinctrl: bcm2835: Handle gpiochip_add_pin_range() errors
     - [x86] platform/x86: lenovo-yogabook: Fix work race on remove()
     - [x86] platform/x86: lenovo-yogabook: Reprobe devices on remove()
     - [x86] platform/x86: lenovo-yogabook: Set default keyboard backligh
       brightness on probe()
     - PCI/ASPM: Disable ASPM on MFD function removal to avoid use-after-free
     - scsi: 3w-xxxx: Add error handling for initialization failure in tw_probe()
     - PCI: pciehp: Cancel bringup sequence if card is not present
     - PCI: ftpci100: Release the clock resources
     - pinctrl: sunplus: Add check for kmalloc
     - PCI: Add pci_clear_master() stub for non-CONFIG_PCI
     - scsi: lpfc: Revise NPIV ELS unsol rcv cmpl logic to drop ndlp based on
       nlp_state
     - perf bench: Add missing setlocale() call to allow usage of %'d style
       formatting
     - pinctrl: cherryview: Return correct value if pin in push-pull mode
     - [x86] platform/x86: think-lmi: mutex protection around multiple WMI calls
     - [x86] platform/x86: think-lmi: Correct System password interface
     - [x86] platform/x86: think-lmi: Correct NVME password handling
     - pinctrl:sunplus: Add check for kmalloc
     - pinctrl: npcm7xx: Add missing check for ioremap
     - kcsan: Don't expect 64 bits atomic builtins from 32 bits architectures
     - powerpc/interrupt: Don't read MSR from interrupt_exit_kernel_prepare()
     - [powerpc*] signal32: Force inlining of __unsafe_save_user_regs() and
       save_tm_user_regs_unsafe()
     - perf script: Fix allocation of evsel->priv related to per-event dump files
     - [x86] platform/x86: thinkpad_acpi: Fix lkp-tests warnings for platform
       profiles
     - perf dwarf-aux: Fix off-by-one in die_get_varname()
     - [x86] platform/x86/dell/dell-rbtn: Fix resources leaking on error path
     - [x86] perf tool x86: Consolidate is_amd check into single function
     - [x86] perf tool x86: Fix perf_env memory leak
     - [powerpc*] 64s: Fix VAS mm use after free
     - pinctrl: microchip-sgpio: check return value of devm_kasprintf()
     - pinctrl: at91-pio4: check return value of devm_kasprintf()
     - [powerpc*] powernv/sriov: perform null check on iov before dereferencing
       iov
     - [powerpc*] simplify ppc_save_regs
     - [powerpc*] update ppc_save_regs to save current r1 in pt_regs
     - PCI: qcom: Remove PCIE20_ prefix from register definitions
     - PCI: qcom: Sort and group registers and bitfield definitions
     - PCI: qcom: Use lower case for hex
     - PCI: qcom: Use DWC helpers for modifying the read-only DBI registers
     - PCI: qcom: Disable write access to read only registers for IP v2.9.0
     - [powerpc*] book3s64/mm: Fix DirectMap stats in /proc/meminfo
     - [powerpc*] mm/dax: Fix the condition when checking if altmap vmemap can
       cross-boundary
     - PCI: endpoint: Fix Kconfig indent style
     - PCI: endpoint: Fix a Kconfig prompt of vNTB driver
     - PCI: endpoint: functions/pci-epf-test: Fix dma_chan direction
     - PCI: vmd: Fix uninitialized variable usage in vmd_enable_domain()
     - vfio/mdev: Move the compat_class initialization to module init
     - hwrng: virtio - Fix race on data_avail and actual data
     - modpost: remove broken calculation of exception_table_entry size
     - crypto: nx - fix build warnings when DEBUG_FS is not enabled
     - modpost: fix section mismatch message for R_ARM_ABS32
     - modpost: fix section mismatch message for R_ARM_{PC24,CALL,JUMP24}
     - crypto: marvell/cesa - Fix type mismatch warning
     - crypto: jitter - correct health test during initialization
     - modpost: fix off by one in is_executable_section()
     - crypto: kpp - Add helper to set reqsize
     - crypto: qat - Use helper to set reqsize
     - crypto: qat - unmap buffer before free for DH
     - crypto: qat - unmap buffers before free for RSA
     - NFSv4.2: fix wrong shrinker_id
     - NFSv4.1: freeze the session table upon receiving NFS4ERR_BADSESSION
     - SMB3: Do not send lease break acknowledgment if all file handles have been
       closed
     - dax: Fix dax_mapping_release() use after free
     - dax: Introduce alloc_dev_dax_id()
     - dax/kmem: Pass valid argument to memory_group_register_static
     - hwrng: st - keep clock enabled while hwrng is registered
     - kbuild: Disable GCOV for *.mod.o
     - efi/libstub: Disable PCI DMA before grabbing the EFI memory map
     - cifs: prevent use-after-free by freeing the cfile later
     - cifs: do all necessary checks for credits within or before locking
     - smb: client: fix broken file attrs with nodfs mounts
     - ksmbd: avoid field overflow warning
     - [arm64] sme: Use STR P to clear FFR context field in streaming SVE mode
     - [x86] efi: Make efi_set_virtual_address_map IBT safe
     - md/raid1-10: fix casting from randomized structure in raid1_submit_write()
     - USB: serial: option: add LARA-R6 01B PIDs
     - usb: dwc3: gadget: Propagate core init errors to UDC during pullup
     - phy: tegra: xusb: Clear the driver reference in usb-phy dev
     - iio: adc: ad7192: Fix null ad7192_state pointer access
     - iio: adc: ad7192: Fix internal/external clock selection
     - iio: accel: fxls8962af: errata bug only applicable for FXLS8962AF
     - iio: accel: fxls8962af: fixup buffer scan element type
     - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on
       EliteBook
     - ALSA: hda/realtek: Add quirk for Clevo NPx0SNx
     - ALSA: jack: Fix mutex call in snd_jack_report()
     - ALSA: pcm: Fix potential data race at PCM memory allocation helpers
     - block: fix signed int overflow in Amiga partition support
     - block: add overflow checks for Amiga partition support
     - block: change all __u32 annotations to __be32 in affs_hardblocks.h
     - block: increment diskseq on all media change events
     - btrfs: fix race when deleting free space root from the dirty cow roots
       list
     - SUNRPC: Fix UAF in svc_tcp_listen_data_ready()
     - w1: w1_therm: fix locking behavior in convert_t
     - w1: fix loop in w1_fini()
     - dt-bindings: power: reset: qcom-pon: Only allow reboot-mode pre-pmk8350
     - f2fs: do not allow to defragment files have FI_COMPRESS_RELEASED
     - usb: dwc2: platform: Improve error reporting for problems during .remove()
     - usb: dwc2: Fix some error handling paths
     - serial: 8250: omap: Fix freeing of resources on failed register
     - clk: qcom: mmcc-msm8974: remove oxili_ocmemgx_clk
     - clk: qcom: camcc-sc7180: Add parent dependency to all camera GDSCs
     - clk: qcom: gcc-ipq6018: Use floor ops for sdcc clocks
     - clk: qcom: gcc-qcm2290: Mark RCGs shared where applicable
     - media: usb: Check az6007_read() return value
     - media: amphion: drop repeated codec data for vc1l format
     - media: amphion: drop repeated codec data for vc1g format
     - media: amphion: initiate a drain of the capture queue in dynamic
       resolution change
     - media: videodev2.h: Fix struct v4l2_input tuner index comment
     - media: usb: siano: Fix warning due to null work_func_t function pointer
       (CVE-2023-4132)
     - media: i2c: Correct format propagation for st-mipid02
     - media: hi846: fix usage of pm_runtime_get_if_in_use()
     - media: mediatek: vcodec: using decoder status instead of core work count
     - clk: qcom: reset: support resetting multiple bits
     - clk: qcom: ipq6018: fix networking resets
     - clk: qcom: dispcc-qcm2290: Fix BI_TCXO_AO handling
     - clk: qcom: dispcc-qcm2290: Fix GPLL0_OUT_DIV handling
     - clk: qcom: mmcc-msm8974: use clk_rcg2_shared_ops for mdp_clk_src clock
     - staging: vchiq_arm: mark vchiq_platform_init() static
     - usb: dwc3: qcom: Fix potential memory leak
     - usb: gadget: u_serial: Add null pointer check in gserial_suspend
     - extcon: Fix kernel doc of property fields to avoid warnings
     - extcon: Fix kernel doc of property capability fields to avoid warnings
     - usb: phy: phy-tahvo: fix memory leak in tahvo_usb_probe()
     - usb: hide unused usbfs_notify_suspend/resume functions
     - usb: misc: eud: Fix eud sysfs path (use 'qcom_eud')
     - serial: core: lock port for stop_rx() in uart_suspend_port()
     - serial: 8250: lock port for stop_rx() in omap8250_irq()
     - serial: core: lock port for start_rx() in uart_resume_port()
     - serial: 8250: lock port for UART_IER access in omap8250_irq()
     - kernfs: fix missing kernfs_idr_lock to remove an ID from the IDR
     - lkdtm: replace ll_rw_block with submit_bh
     - i3c: master: svc: fix cpu schedule in spin lock
     - coresight: Fix loss of connection info when a module is unloaded
     - mfd: rt5033: Drop rt5033-battery sub-device
     - media: venus: helpers: Fix ALIGN() of non power of two
     - media: atomisp: gmin_platform: fix out_len in gmin_get_config_dsm_var()
     - gfs2: Fix duplicate should_fault_in_pages() call
     - f2fs: fix potential deadlock due to unpaired node_write lock use
     - f2fs: fix to avoid NULL pointer dereference f2fs_write_end_io()
       (CVE-2023-2898)
     - [s390x] KVM: s390: fix KVM_S390_GET_CMMA_BITS for GFNs in memslot holes
     - usb: dwc3: qcom: Release the correct resources in dwc3_qcom_remove()
     - usb: dwc3: qcom: Fix an error handling path in dwc3_qcom_probe()
     - usb: common: usb-conn-gpio: Set last role to unknown before initial
       detection
     - usb: dwc3-meson-g12a: Fix an error handling path in
       dwc3_meson_g12a_probe()
     - mfd: wcd934x: Fix an error handling path in wcd934x_slim_probe()
     - mfd: intel-lpss: Add missing check for platform_get_resource
     - Revert "usb: common: usb-conn-gpio: Set last role to unknown before
       initial detection"
     - serial: 8250_omap: Use force_suspend and resume for system suspend
     - device property: Fix documentation for fwnode_get_next_parent()
     - device property: Clarify description of returned value in some functions
     - drivers: fwnode: fix fwnode_irq_get[_byname]()
     - nvmem: sunplus-ocotp: release otp->clk before return
     - nvmem: rmem: Use NVMEM_DEVID_AUTO
     - bus: fsl-mc: don't assume child devices are all fsl-mc devices
     - mfd: stmfx: Fix error path in stmfx_chip_init
     - mfd: stmfx: Nullify stmfx->vdd in case of error
     - [s390x] KVM: s390: vsie: fix the length of APCB bitmap
     - [s390x] KVM: s390/diag: fix racy access of physical cpu number in diag 9c
       handler
     - cpufreq: mediatek: correct voltages for MT7622 and MT7623
     - misc: fastrpc: check return value of devm_kasprintf()
     - clk: qcom: mmcc-msm8974: fix MDSS_GDSC power flags
     - hwtracing: hisi_ptt: Fix potential sleep in atomic context
     - mfd: stmpe: Only disable the regulators if they are enabled
     - phy: tegra: xusb: check return value of devm_kzalloc()
     - lib/bitmap: drop optimization of bitmap_{from,to}_arr64
     - pwm: imx-tpm: force 'real_period' to be zero in suspend
     - pwm: sysfs: Do not apply state to already disabled PWMs
     - pwm: ab8500: Fix error code in probe()
     - pwm: mtk_disp: Fix the disable flow of disp_pwm
     - md/raid10: fix the condition to call bio_end_io_acct()
     - rtc: st-lpc: Release some resources in st_rtc_probe() in case of error
     - [x86] drm/i915/psr: Use hw.adjusted mode when calculating io/fast wake
       times
     - [x86] drm/i915/guc/slpc: Apply min softlimit correctly
     - f2fs: check return value of freeze_super()
     - media: cec: i2c: ch7322: also select REGMAP
     - sctp: fix potential deadlock on &net->sctp.addr_wq_lock
     - net/sched: act_ipt: add sanity checks on table name and hook locations
     - net: add a couple of helpers for iph tot_len
     - net/sched: act_ipt: add sanity checks on skb before calling target
     - spi: spi-geni-qcom: enable SPI_CONTROLLER_MUST_TX for GPI DMA mode
     - net: mscc: ocelot: don't report that RX timestamping is enabled by default
     - net: mscc: ocelot: don't keep PTP configuration of all ports in single
       structure
     - net: dsa: felix: don't drop PTP frames with tag_8021q when RX timestamping
       is disabled
     - net: dsa: sja1105: always enable the INCL_SRCPT option
     - net: dsa: tag_sja1105: always prefer source port information from
       INCL_SRCPT
     - Add MODULE_FIRMWARE() for FIRMWARE_TG357766.
     - Bluetooth: fix invalid-bdaddr quirk for non-persistent setup
     - Bluetooth: ISO: use hci_sync for setting CIG parameters
     - Bluetooth: MGMT: add CIS feature bits to controller information
     - Bluetooth: MGMT: Use BIT macro when defining bitfields
     - Bluetooth: MGMT: Fix marking SCAN_RSP as not connectable
     - ibmvnic: Do not reset dql stats on NON_FATAL err
     - net: dsa: vsc73xx: fix MTU configuration
     - mlxsw: minimal: fix potential memory leak in mlxsw_m_linecards_init
     - spi: bcm-qspi: return error if neither hif_mspi nor mspi is available
     - drm/amdgpu: fix number of fence calculations
     - drm/amd: Don't try to enable secure display TA multiple times
     - mailbox: ti-msgmgr: Fill non-message tx data fields with 0x0
     - f2fs: fix error path handling in truncate_dnode()
     - octeontx2-af: Fix mapping for NIX block from CGX connection
     - octeontx2-af: Add validation before accessing cgx and lmac
     - ntfs: Fix panic about slab-out-of-bounds caused by ntfs_listxattr()
     - [powerpc*] allow PPC_EARLY_DEBUG_CPM only when SERIAL_CPM=y
     - [powerpc*] dts: turris1x.dts: Fix PCIe MEM size for pci2 node
     - net: bridge: keep ports without IFF_UNICAST_FLT in BR_PROMISC mode
     - net: dsa: tag_sja1105: fix source port decoding in vlan_filtering=0 bridge
       mode
     - net: fix net_dev_start_xmit trace event vs skb_transport_offset()
     - tcp: annotate data races in __tcp_oow_rate_limited()
     - bpf, btf: Warn but return no error for NULL btf from
       __register_btf_kfunc_id_set()
     - xsk: Honor SO_BINDTODEVICE on bind
     - net/sched: act_pedit: Add size check for TCA_PEDIT_PARMS_EX
     - fanotify: disallow mount/sb marks on kernel internal pseudo fs
     - pptp: Fix fib lookup calls.
     - net: dsa: tag_sja1105: fix MAC DA patching from meta frames
     - net: dsa: sja1105: always enable the send_meta options
     - octeontx-af: fix hardware timestamp configuration
     - afs: Fix accidental truncation when storing data
     - [s390x] qeth: Fix vipa deletion
     - apparmor: fix missing error check for rhashtable_insert_fast
     - i2c: xiic: Don't try to handle more interrupt events after error
     - dm: fix undue/missing spaces
     - dm: avoid split of quoted strings where possible
     - dm ioctl: have constant on the right side of the test
     - dm ioctl: Avoid double-fetch of version
     - extcon: usbc-tusb320: Convert to i2c's .probe_new()
     - extcon: usbc-tusb320: Unregister typec port on driver removal
     - btrfs: do not BUG_ON() on tree mod log failure at balance_level()
     - i2c: qup: Add missing unwind goto in qup_i2c_probe()
     - irqchip/loongson-pch-pic: Fix potential incorrect hwirq assignment
     - NFSD: add encoding of op_recall flag for write delegation
     - irqchip/loongson-pch-pic: Fix initialization of HT vector register
     - io_uring: wait interruptibly for request completions on exit
     - mmc: core: disable TRIM on Kingston EMMC04G-M627
     - mmc: core: disable TRIM on Micron MTFC4GACAJCN-1M
     - mmc: mmci: Set PROBE_PREFER_ASYNCHRONOUS
     - mmc: sdhci: fix DMA configure compatibility issue when 64bit DMA mode is
       used.
     - wifi: cfg80211: fix regulatory disconnect for non-MLO
     - wifi: ath10k: Serialize wake_tx_queue ops
     - wifi: mt76: mt7921e: fix init command fail with enabled device
     - bcache: fixup btree_cache_wait list damage
     - bcache: Remove unnecessary NULL point check in node allocations
     - bcache: Fix __bch_btree_node_alloc to make the failure behavior consistent
     - watch_queue: prevent dangling pipe pointer
     - integrity: Fix possible multiple allocation in integrity_inode_get()
     - autofs: use flexible array in ioctl structure
     - mm/damon/ops-common: atomically test and clear young on ptes and pmds
     - shmem: use ramfs_kill_sb() for kill_sb method of ramfs-based tmpfs
     - jffs2: reduce stack usage in jffs2_build_xattr_subsystem()
     - fs: avoid empty option when generating legacy mount string
     - ext4: Remove ext4 locking of moved directory
     - Revert "f2fs: fix potential corruption when moving a directory"
     - fs: Establish locking order for unrelated directories
     - fs: Lock moved directories
     - i2c: nvidia-gpu: Add ACPI property to align with device-tree
     - i2c: nvidia-gpu: Remove ccgx,firmware-build property
     - usb: typec: ucsi: Mark dGPUs as DEVICE scope
     - ipvs: increase ip_vs_conn_tab_bits range for 64BIT
     - btrfs: add handling for RAID1C23/DUP to btrfs_reduce_alloc_profile
     - btrfs: delete unused BGs while reclaiming BGs
     - btrfs: bail out reclaim process if filesystem is read-only
     - btrfs: add block-group tree to lockdep classes
     - btrfs: reinsert BGs failed to reclaim
     - btrfs: fix race when deleting quota root from the dirty cow roots list
     - btrfs: fix extent buffer leak after tree mod log failure at split_node()
     - btrfs: do not BUG_ON() on tree mod log failure at __btrfs_cow_block()
     - ASoC: mediatek: mt8173: Fix irq error path
     - ASoC: mediatek: mt8173: Fix snd_soc_component_initialize error path
     - regulator: tps65219: Fix matching interrupts for their regulators
     - ARM: dts: qcom: ipq4019: fix broken NAND controller properties override
     - ARM: orion5x: fix d2net gpio initialization
     - leds: trigger: netdev: Recheck NETDEV_LED_MODE_LINKUP on dev rename
     - blktrace: use inline function for blk_trace_remove() while blktrace is
       disabled
     - fs: no need to check source
     - xfs: explicitly specify cpu when forcing inodegc delayed work to run
       immediately
     - xfs: check that per-cpu inodegc workers actually run on that cpu
     - xfs: disable reaping in fscounters scrub
     - xfs: fix xfs_inodegc_stop racing with mod_delayed_work
     - mm/mmap: Fix extra maple tree write
     - [x86] drm/i915: Fix TypeC mode initialization during system resume
     - [x86] drm/i915/tc: Fix TC port link ref init for DP MST during HW readout
     - [x86] drm/i915/tc: Fix system resume MST mode restore for DP-alt sinks
     - mtd: parsers: refer to ARCH_BCMBCA instead of ARCH_BCM4908
     - netfilter: nf_tables: unbind non-anonymous set if rule construction fails
     - netfilter: conntrack: Avoid nf_ct_helper_hash uses after free
     - wireguard: queueing: use saner cpu selection wrapping
     - wireguard: netlink: send staged packets when setting initial private key
     - tty: serial: fsl_lpuart: add earlycon for imx8ulp platform
     - block/partition: fix signedness issue for Amiga partitions
     - io_uring: Use io_schedule* in cqring wait
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.40
     - HID: amd_sfh: Rename the float32 variable
     - HID: amd_sfh: Fix for shift-out-of-bounds
     - net: lan743x: Don't sleep in atomic context
     - workqueue: clean up WORK_* constant types, clarify masking
     - ksmbd: add missing compound request handing in some commands
     - ksmbd: fix out of bounds read in smb2_sess_setup
     - drm/panel: simple: Add connector_type for innolux_at043tn24
     - drm/bridge: ti-sn65dsi86: Fix auxiliary bus lifetime
     - swiotlb: always set the number of areas before allocating the pool
     - swiotlb: reduce the swiotlb buffer size on allocation failure
     - swiotlb: reduce the number of areas to match actual memory pool size
     - drm/panel: simple: Add Powertip PH800480T013 drm_display_mode flags
     - ice: Fix max_rate check while configuring TX rate limits
     - igc: Remove delay during TX ring configuration
     - net/mlx5e: fix double free in mlx5e_destroy_flow_table
     - net/mlx5e: fix memory leak in mlx5e_fs_tt_redirect_any_create
     - net/mlx5e: fix memory leak in mlx5e_ptp_open
     - net/mlx5e: Check for NOT_READY flag state after locking
     - igc: set TP bit in 'supported' and 'advertising' fields of
       ethtool_link_ksettings
     - igc: Handle PPS start time programming for past time values
     - blk-crypto: use dynamic lock class for blk_crypto_profile::lock
     - scsi: qla2xxx: Fix error code in qla2x00_start_sp()
     - scsi: ufs: ufs-mediatek: Add dependency for RESET_CONTROLLER
     - bpf: Fix max stack depth check for async callbacks
     - net: mvneta: fix txq_map in case of txq_number==1
     - net/sched: cls_fw: Fix improper refcount update leads to use-after-free
       (CVE-2023-3776)
     - gve: Set default duplex configuration to full
     - octeontx2-af: Promisc enable/disable through mbox
     - octeontx2-af: Move validation of ptp pointer before its usage
     - ionic: remove WARN_ON to prevent panic_on_warn
     - net: bgmac: postpone turning IRQs off to avoid SoC hangs
     - net: prevent skb corruption on frag list segmentation
     - icmp6: Fix null-ptr-deref of ip6_null_entry->rt6i_idev in icmp6_dev().
     - udp6: fix udp6_ehashfn() typo
     - ntb: idt: Fix error handling in idt_pci_driver_init()
     - NTB: amd: Fix error handling in amd_ntb_pci_driver_init()
     - ntb: intel: Fix error handling in intel_ntb_pci_driver_init()
     - NTB: ntb_transport: fix possible memory leak while device_register() fails
     - NTB: ntb_tool: Add check for devm_kcalloc
     - ipv6/addrconf: fix a potential refcount underflow for idev
     - net: dsa: qca8k: Add check for skb_copy
     - [x86] platform/x86: wmi: Break possible infinite loop when parsing GUID
     - kernel/trace: Fix cleanup logic of enable_trace_eprobe
     - igc: Fix launchtime before start of cycle
     - igc: Fix inserting of empty frame for launchtime
     - nvme: fix the NVME_ID_NS_NVM_STS_MASK definition
     - [x86] drm/i915: Don't preserve dpll_hw_state for slave crtc in Bigjoiner
     - [x86] drm/i915: Fix one wrong caching mode enum usage
     - octeontx2-pf: Add additional check for MCAM rules
     - erofs: avoid useless loops in z_erofs_pcluster_readmore() when reading
       beyond EOF
     - erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond
       EOF
     - erofs: fix fsdax unavailability for chunk-based regular files
     - wifi: airo: avoid uninitialized warning in airo_get_rate()
     - bpf: cpumap: Fix memory leak in cpu_map_update_elem
     - net/sched: flower: Ensure both minimum and maximum ports are specified
     - riscv: mm: fix truncation warning on RV32
     - netdevsim: fix uninitialized data in nsim_dev_trap_fa_cookie_write()
     - net/sched: make psched_mtu() RTNL-less safe
     - wifi: rtw89: debug: fix error code in rtw89_debug_priv_send_h2c_set()
     - net/sched: sch_qfq: refactor parsing of netlink parameters
     - net/sched: sch_qfq: account for stab overhead in qfq_enqueue
       (CVE-2023-3611)
     - nvme-pci: fix DMA direction of unmapping integrity data
     - fs/ntfs3: Check fields while reading (CVE-2022-48502)
     - ovl: let helper ovl_i_path_real() return the realinode
     - ovl: fix null pointer dereference in ovl_get_acl_rcu()
     - cifs: fix session state check in smb2_find_smb_ses
     - drm/client: Send hotplug event after registering a client
     - drm/amdgpu/sdma4: set align mask to 255
     - drm/amd/pm: revise the ASPM settings for thunderbolt attached scenario
     - drm/amdgpu: add the fan abnormal detection feature
     - drm/amdgpu: Fix minmax warning
     - drm/amd/pm: add abnormal fan detection for smu 13.0.0
     - f2fs: fix the wrong condition to determine atomic context
     - f2fs: fix deadlock in i_xattr_sem and inode page lock
     - pinctrl: amd: Add Z-state wake control bits
     - pinctrl: amd: Adjust debugfs output
     - pinctrl: amd: Add fields for interrupt status and wake status
     - pinctrl: amd: Detect internal GPIO0 debounce handling
     - pinctrl: amd: Fix mistake in handling clearing pins at startup
     - pinctrl: amd: Detect and mask spurious interrupts
     - pinctrl: amd: Revert "pinctrl: amd: disable and mask interrupts on probe"
     - pinctrl: amd: Only use special debounce behavior for GPIO 0
     - pinctrl: amd: Use amd_pinconf_set() for all config options
     - pinctrl: amd: Drop pull up select configuration
     - pinctrl: amd: Unify debounce handling into amd_pinconf_set()
     - tpm: Do not remap from ACPI resources again for Pluton TPM
     - tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation
     - tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
     - tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
     - tpm: return false from tpm_amd_is_rng_defective on non-x86 platforms
     - mtd: rawnand: meson: fix unaligned DMA buffers handling
     - net: bcmgenet: Ensure MDIO unregistration has clocks enabled
     - net: phy: dp83td510: fix kernel stall during netboot in DP83TD510E PHY
       driver
     - tracing/user_events: Fix incorrect return value for writing operation when
       events are disabled
     - [powerpc*] Fail build if using recordmcount with binutils v2.37
     - misc: fastrpc: Create fastrpc scalar with correct buffer count
     - [powerpc*] security: Fix Speculation_Store_Bypass reporting on Power10
     - [powerpc*] 64s: Fix native_hpte_remove() to be irq-safe
     - [mips*] Loongson: Fix cpu_probe_loongson() again
     - [mips*] KVM: Fix NULL pointer dereference
     - ext4: Fix reusing stale buffer heads from last failed mounting
     - ext4: fix wrong unit use in ext4_mb_clear_bb
     - ext4: get block from bh in ext4_free_blocks for fast commit replay
     - ext4: fix wrong unit use in ext4_mb_new_blocks
     - ext4: fix to check return value of freeze_bdev() in ext4_shutdown()
     - ext4: turn quotas off if mount failed after enabling quotas
     - ext4: only update i_reserved_data_blocks on successful block allocation
     - fs: dlm: revert check required context while close
     - soc: qcom: mdt_loader: Fix unconditional call to scm_pas_mem_setup
     - ext2/dax: Fix ext2_setsize when len is page aligned
     - jfs: jfs_dmap: Validate db_l2nbperpage while mounting
     - hwrng: imx-rngc - fix the timeout for init and self check
     - dm integrity: reduce vmalloc space footprint on 32-bit architectures
     - scsi: mpi3mr: Propagate sense data for admin queue SCSI I/O
     - [s390x] zcrypt: do not retry administrative requests
     - PCI/PM: Avoid putting EloPOS E2/S2/H2 PCIe Ports in D3cold
     - PCI: Release resource invalidated by coalescing
     - PCI: Add function 1 DMA alias quirk for Marvell 88SE9235
     - PCI: qcom: Disable write access to read only registers for IP v2.3.3
     - PCI: epf-test: Fix DMA transfer completion initialization
     - PCI: epf-test: Fix DMA transfer completion detection
     - PCI: rockchip: Assert PCI Configuration Enable bit after probe
     - PCI: rockchip: Write PCI Device ID to correct register
     - PCI: rockchip: Add poll and timeout to wait for PHY PLLs to be locked
     - PCI: rockchip: Fix legacy IRQ generation for RK3399 PCIe endpoint core
     - PCI: rockchip: Use u32 variable to access 32-bit registers
     - PCI: rockchip: Set address alignment for endpoint mode
     - misc: pci_endpoint_test: Free IRQs before removing the device
     - misc: pci_endpoint_test: Re-init completion for every test
     - mfd: pm8008: Fix module autoloading
     - md/raid0: add discard support for the 'original' layout
     - dm init: add dm-mod.waitfor to wait for asynchronously probed block
       devices
     - fs: dlm: return positive pid value for F_GETLK
     - fs: dlm: fix cleanup pending ops when interrupted
     - fs: dlm: interrupt posix locks only when process is killed
     - fs: dlm: make F_SETLK use unkillable wait_event
     - fs: dlm: fix mismatch of plock results from userspace
     - scsi: lpfc: Fix double free in lpfc_cmpl_els_logo_acc() caused by
       lpfc_nlp_not_used()
     - drm/atomic: Allow vblank-enabled + self-refresh "disable"
     - drm/rockchip: vop: Leave vblank enabled in self-refresh
     - drm/amd/display: fix seamless odm transitions
     - drm/amd/display: edp do not add non-edid timings
     - drm/amd/display: Remove Phantom Pipe Check When Calculating K1 and K2
     - drm/amd/display: disable seamless boot if force_odm_combine is enabled
     - drm/amdgpu: fix clearing mappings for BOs that are always valid in VM
     - drm/amd: Disable PSR-SU on Parade 0803 TCON
     - drm/amd/display: add a NULL pointer check
     - drm/amd/display: Correct `DMUB_FW_VERSION` macro
     - drm/amd/display: Add monitor specific edid quirk
     - drm/amdgpu: avoid restore process run into dead loop.
     - drm/ttm: Don't leak a resource on swapout move error
     - serial: atmel: don't enable IRQs prematurely
     - tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() in
       case of error
     - tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk()
       when iterating clk
     - tty: serial: imx: fix rs485 rx after tx
     - firmware: stratix10-svc: Fix a potential resource leak in
       svc_create_memory_pool()
     - libceph: harden msgr2.1 frame segment length checks
     - ceph: add a dedicated private data for netfs rreq
     - ceph: fix blindly expanding the readahead windows
     - ceph: don't let check_caps skip sending responses for revoke msgs
     - xhci: Fix resume issue of some ZHAOXIN hosts
     - xhci: Fix TRB prefetch issue of ZHAOXIN hosts
     - xhci: Show ZHAOXIN xHCI root hub speed correctly
     - meson saradc: fix clock divider mask length
     - opp: Fix use-after-free in lazy_opp_tables after probe deferral
     - soundwire: qcom: fix storing port config out-of-bounds
     - Revert "8250: add support for ASIX devices with a FIFO bug"
     - bus: ixp4xx: fix IXP4XX_EXP_T1_MASK
     - [s390x] decompressor: fix misaligned symbol build error
     - dm: verity-loadpin: Add NULL pointer check for 'bdev' parameter
     - tracing/histograms: Add histograms to hist_vars if they have referenced
       variables
     - tracing: Fix memory leak of iter->temp when reading trace_pipe
     - nvme: don't reject probe due to duplicate IDs for single-ported PCIe
       devices
     - perf: RISC-V: Remove PERF_HES_STOPPED flag checking in riscv_pmu_start()
     - regmap-irq: Fix out-of-bounds access when allocating config buffers
     - net: ena: fix shift-out-of-bounds in exponential backoff
     - ring-buffer: Fix deadloop issue on reading trace_pipe
     - ftrace: Fix possible warning on checking all pages used in
       ftrace_process_locs()
     - drm/amd/pm: share the code around SMU13 pcie parameters update
     - drm/amd/pm: conditionally disable pcie lane/speed switching for SMU13
     - cifs: if deferred close is disabled then close files immediately
     - [x86] perf/x86: Fix lockdep warning in for_each_sibling_event() on SPR
     - PM: QoS: Restore support for default value on frequency QoS
     - pwm: meson: modify and simplify calculation in meson_pwm_get_state
     - pwm: meson: fix handling of period/duty if greater than UINT_MAX
     - fprobe: Release rethook after the ftrace_ops is unregistered
     - fprobe: Ensure running fprobe_exit_handler() finished before calling
       rethook_free()
     - tracing: Fix null pointer dereference in tracing_err_log_open()
     - tracing/probes: Fix not to count error code to total length
     - tracing/probes: Fix to update dynamic data counter if fetcharg uses it
     - tracing/user_events: Fix struct arg size match check
     - scsi: qla2xxx: Multi-que support for TMF
     - scsi: qla2xxx: Fix task management cmd failure
     - scsi: qla2xxx: Fix task management cmd fail due to unavailable resource
     - scsi: qla2xxx: Fix hang in task management
     - scsi: qla2xxx: Wait for io return on terminate rport
     - scsi: qla2xxx: Fix mem access after free
     - scsi: qla2xxx: Array index may go out of bound
     - scsi: qla2xxx: Avoid fcport pointer dereference
     - scsi: qla2xxx: Fix buffer overrun
     - scsi: qla2xxx: Fix potential NULL pointer dereference
     - scsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport()
     - scsi: qla2xxx: Correct the index of array
     - scsi: qla2xxx: Pointer may be dereferenced
     - scsi: qla2xxx: Remove unused nvme_ls_waitq wait queue
     - scsi: qla2xxx: Fix end of loop test
     - [mips*] kvm: Fix build error with KVM_MIPS_DEBUG_COP0_COUNTERS enabled
     - Revert "drm/amd: Disable PSR-SU on Parade 0803 TCON"
     - swiotlb: mark swiotlb_memblock_alloc() as __init
     - net/sched: sch_qfq: reintroduce lmax bound check for MTU
     - drm/atomic: Fix potential use-after-free in nonblocking commits
     - net/ncsi: make one oem_gma function for all mfr id
     - net/ncsi: change from ndo_set_mac_address to dev_set_mac_address
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.41
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.42
     - io_uring: treat -EAGAIN for REQ_F_NOWAIT as final for io-wq
     - ALSA: hda/realtek - remove 3k pull low procedure
     - ALSA: hda/realtek: Add quirk for Clevo NS70AU
     - ALSA: hda/realtek: Enable Mute LED on HP Laptop 15s-eq2xxx
     - maple_tree: set the node limit when creating a new root node
     - maple_tree: fix node allocation testing on 32 bit
     - keys: Fix linking a duplicate key to a keyring's assoc_array
     - perf probe: Add test for regression introduced by switch to
       die_get_decl_file()
     - btrfs: fix warning when putting transaction with qgroups enabled after
       abort
     - fuse: revalidate: don't invalidate if interrupted
     - fuse: Apply flags2 only when userspace set the FUSE_INIT_EXT
     - btrfs: set_page_extent_mapped after read_folio in btrfs_cont_expand
     - btrfs: zoned: fix memory leak after finding block group with super blocks
     - fuse: ioctl: translate ENOSYS in outarg
     - btrfs: fix race between balance and cancel/pause
     - regmap: Drop initial version of maximum transfer length fixes
     - of: Preserve "of-display" device name for compatibility
     - regmap: Account for register length in SMBus I/O limits
     - [arm64] fpsimd: Ensure SME storage is allocated after SVE VL changes
     - can: mcp251xfd: __mcp251xfd_chip_set_mode(): increase poll timeout
     - can: bcm: Fix UAF in bcm_proc_show()
     - can: gs_usb: gs_can_open(): improve error handling
     - dma-buf/dma-resv: Stop leaking on krealloc() failure
     - drm/amdgpu/vkms: relax timer deactivation by hrtimer_try_to_cancel
     - drm/amdgpu/pm: make gfxclock consistent for sienna cichlid
     - drm/amdgpu/pm: make mclk consistent for smu 13.0.7
     - drm/client: Fix memory leak in drm_client_target_cloned
     - drm/client: Fix memory leak in drm_client_modeset_probe
     - drm/amd/display: only accept async flips for fast updates
     - drm/amd/display: Disable MPC split by default on special asic
     - drm/amd/display: check TG is non-null before checking if enabled
     - drm/amd/display: Keep PHY active for DP displays on DCN31
     - ASoC: fsl_sai: Disable bit clock with transmitter
     - ASoC: fsl_sai: Revert "ASoC: fsl_sai: Enable MCTL_MCLK_EN bit for master
       mode"
     - ASoC: tegra: Fix ADX byte map
     - ASoC: rt5640: Fix sleep in atomic context
     - ASoC: cs42l51: fix driver to properly autoload with automatic module
       loading
     - ASoC: codecs: wcd938x: fix missing clsh ctrl error handling
     - ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove
     - ASoC: qdsp6: audioreach: fix topology probe deferral
     - ASoC: tegra: Fix AMX byte map
     - ASoC: codecs: wcd938x: fix resource leaks on component remove
     - ASoC: codecs: wcd938x: fix missing mbhc init error handling
     - ASoC: codecs: wcd934x: fix resource leaks on component remove
     - ASoC: codecs: wcd938x: fix codec initialisation race
     - ASoC: codecs: wcd938x: fix soundwire initialisation race
     - ext4: correct inline offset when handling xattrs in inode body
     - drm/radeon: Fix integer overflow in radeon_cs_parser_init
     - ALSA: emu10k1: roll up loops in DSP setup code for Audigy
     - quota: Properly disable quotas when add_dquot_ref() fails
     - quota: fix warning in dqgrab()
     - HID: add quirk for 03f0:464a HP Elite Presenter Mouse
     - ovl: check type and offset of struct vfsmount in ovl_entry
     - udf: Fix uninitialized array access for some pathnames
     - fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev
     - [mips*] dec: prom: Address -Warray-bounds warning
     - FS: JFS: Fix null-ptr-deref Read in txBegin
     - FS: JFS: Check for read-only mounted filesystem in txBegin
     - ACPI: video: Add backlight=native DMI quirk for Dell Studio 1569
     - rcu-tasks: Avoid pr_info() with spin lock in cblist_init_generic()
     - rcu: Mark additional concurrent load from ->cpu_no_qs.b.exp
     - sched/fair: Don't balance task to its current running CPU
     - wifi: ath11k: fix registration of 6Ghz-only phy without the full channel
       range
     - bpf: Print a warning only if writing to unprivileged_bpf_disabled.
     - bpf: Address KCSAN report on bpf_lru_list
     - bpf: tcp: Avoid taking fast sock lock in iterator
     - wifi: ath11k: add support default regdb while searching board-2.bin for
       WCN6855
     - wifi: mac80211_hwsim: Fix possible NULL dereference
     - spi: dw: Add compatible for Intel Mount Evans SoC
     - wifi: ath11k: fix memory leak in WMI firmware stats
     - net: ethernet: litex: add support for 64 bit stats
     - devlink: report devlink_port_type_warn source device
     - wifi: wext-core: Fix -Wstringop-overflow warning in
       ioctl_standard_iw_point()
     - wifi: iwlwifi: Add support for new PCI Id
     - wifi: iwlwifi: mvm: avoid baid size integer overflow
     - wifi: iwlwifi: pcie: add device id 51F1 for killer 1675
     - igb: Fix igb_down hung on surprise removal
     - net: hns3: fix strncpy() not using dest-buf length as length issue
     - ASoC: amd: acp: fix for invalid dai id handling in acp_get_byte_count()
     - ASoC: codecs: wcd938x: fix mbhc impedance loglevel
     - ASoC: codecs: wcd938x: fix dB range for HPHL and HPHR
     - ASoC: qcom: q6apm: do not close GPR port before closing graph
     - sched/fair: Use recent_used_cpu to test p->cpus_ptr
     - sched/psi: Fix avgs_work re-arm in psi_avgs_work()
     - sched/psi: Rearrange polling code in preparation
     - sched/psi: Rename existing poll members in preparation
     - sched/psi: Extract update_triggers side effect
     - sched/psi: Allow unprivileged polling of N*2s period
     - sched/psi: use kernfs polling functions for PSI trigger polling
     - pinctrl: renesas: rzv2m: Handle non-unique subnode names
     - pinctrl: renesas: rzg2l: Handle non-unique subnode names
     - spi: bcm63xx: fix max prepend length
     - fbdev: imxfb: warn about invalid left/right margin
     - fbdev: imxfb: Removed unneeded release_mem_region
     - perf build: Fix library not found error when using CSLIBS
     - btrfs: be a bit more careful when setting mirror_num_ret in
       btrfs_map_block
     - spi: s3c64xx: clear loopback bit after loopback test
     - kallsyms: Improve the performance of kallsyms_lookup_name()
     - kallsyms: Correctly sequence symbols when CONFIG_LTO_CLANG=y
     - kallsyms: strip LTO-only suffixes from promoted global functions
     - dsa: mv88e6xxx: Do a final check before timing out
     - net: ethernet: ti: cpsw_ale: Fix cpsw_ale_get_field()/cpsw_ale_set_field()
     - bridge: Add extack warning when enabling STP in netns.
     - net: ethernet: mtk_eth_soc: handle probe deferral
     - cifs: fix mid leak during reconnection after timeout threshold
     - ASoC: SOF: ipc3-dtrace: uninitialized data in
       dfsentry_trace_filter_write()
     - net: sched: cls_matchall: Undo tcf_bind_filter in case of failure after
       mall_set_parms
     - net: sched: cls_u32: Undo tcf_bind_filter if u32_replace_hw_knode
     - net: sched: cls_u32: Undo refcount decrement in case update failed
     - net: sched: cls_bpf: Undo tcf_bind_filter in case of an error
     - net: dsa: microchip: ksz8: Separate static MAC table operations for code
       reuse
     - net: dsa: microchip: ksz8: Make ksz8_r_sta_mac_table() static
     - net: dsa: microchip: ksz8_r_sta_mac_table(): Avoid using error code for
       empty entries
     - net: dsa: microchip: correct KSZ8795 static MAC table access
     - iavf: Fix use-after-free in free_netdev
     - iavf: Fix out-of-bounds when setting channels on remove
     - iavf: use internal state to free traffic IRQs
     - iavf: Move netdev_update_features() into watchdog task
     - iavf: send VLAN offloading caps once after VFR
     - iavf: make functions static where possible
     - iavf: Wait for reset in callbacks which trigger it
     - iavf: fix a deadlock caused by rtnl and driver's lock circular
       dependencies
     - iavf: fix reset task race with iavf_remove()
     - security: keys: Modify mismatched function name
     - octeontx2-pf: Dont allocate BPIDs for LBK interfaces
     - bpf: Fix subprog idx logic in check_max_stack_depth
     - bpf: Repeat check_max_stack_depth for async callbacks
     - bpf, arm64: Fix BTI type used for freplace attached functions
     - igc: Avoid transmit queue timeout for XDP
     - igc: Prevent garbled TX queue with XDP ZEROCOPY
     - net: ipv4: use consistent txhash in TIME_WAIT and SYN_RECV
     - tcp: annotate data-races around tcp_rsk(req)->txhash
     - tcp: annotate data-races around tcp_rsk(req)->ts_recent
     - net: ipv4: Use kfree_sensitive instead of kfree
     - net:ipv6: check return value of pskb_trim()
     - Revert "tcp: avoid the lookup process failing to get sk in ehash table"
     - fbdev: au1200fb: Fix missing IRQ check in au1200fb_drv_probe
     - llc: Don't drop packet from non-root netns.
     - ALSA: hda/realtek: Fix generic fixup definition for cs35l41 amp
     - netfilter: nf_tables: fix spurious set element insertion failure
     - netfilter: nf_tables: can't schedule in nft_chain_validate
     - netfilter: nft_set_pipapo: fix improper element removal (CVE-2023-4004)
     - netfilter: nf_tables: skip bound chain in netns release path
     - netfilter: nf_tables: skip bound chain on rule flush (CVE-2023-3777)
     - Bluetooth: use RCU for hci_conn_params and iterate safely in hci_sync
     - Bluetooth: hci_event: call disconnect callback before deleting conn
     - Bluetooth: ISO: fix iso_conn related locking and validity issues
     - Bluetooth: hci_sync: Avoid use-after-free in dbg for
       hci_remove_adv_monitor()
     - tcp: annotate data-races around tp->tcp_tx_delay
     - tcp: annotate data-races around tp->tsoffset
     - tcp: annotate data-races around tp->keepalive_time
     - tcp: annotate data-races around tp->keepalive_intvl
     - tcp: annotate data-races around tp->keepalive_probes
     - tcp: annotate data-races around icsk->icsk_syn_retries
     - tcp: annotate data-races around tp->linger2
     - tcp: annotate data-races around rskq_defer_accept
     - tcp: annotate data-races around tp->notsent_lowat
     - tcp: annotate data-races around icsk->icsk_user_timeout
     - tcp: annotate data-races around fastopenq.max_qlen
     - net: phy: prevent stale pointer dereference in phy_init()
     - jbd2: recheck chechpointing non-dirty buffer
     - tracing/histograms: Return an error if we fail to add histogram to
       hist_vars list
     - drm/ttm: fix bulk_move corruption when adding a entry
     - spi: dw: Remove misleading comment for Mount Evans SoC
     - kallsyms: add kallsyms_seqs_of_names to list of special symbols
     - scripts/kallsyms.c Make the comment up-to-date with current implementation
     - scripts/kallsyms: update the usage in the comment block
     - bpf: allow precision tracking for programs with subprogs
     - bpf: stop setting precise in current state
     - bpf: aggressively forget precise markings during state checkpointing
     - drm/amd/display: use max_dsc_bpp in amdgpu_dm
     - drm/amd/display: fix some coding style issues
     - drm/dp_mst: Clear MSG_RDY flag before sending new message
     - drm/amd/display: force connector state when bpc changes during compliance
     - drm/amd/display: Clean up errors & warnings in amdgpu_dm.c
     - drm/amd/display: fix linux dp link lost handled only one time
     - drm/amd/display: Add polling method to handle MST reply packet
     - Revert "drm/amd/display: edp do not add non-edid timings"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.43
     - netfilter: nf_tables: fix underflow in object reference counter
     - netfilter: nf_tables: fix underflow in chain reference counter
     - [x86] platform/x86/amd/pmf: Notify OS power slider update
     - [x86] platform/x86/amd/pmf: reduce verbosity of apmf_get_system_params
     - drm/amd/display: Keep PHY active for dp config
     - ovl: fix null pointer dereference in ovl_permission()
     - drm/amd: Move helper for dynamic speed switch check out of smu13
     - drm/amd: Align SMU11 SMU_MSG_OverridePcieParameters implementation with
       SMU13
     - jbd2: Fix wrongly judgement for buffer head removing while doing
       checkpoint
     - blk-mq: Fix stall due to recursive flush plug
     - [powerpc*] pseries/vas: Hold mmap_mutex after mmap lock during window
       close
     - [s390x] KVM: s390: pv: fix index value of replaced ASCE
     - io_uring: don't audit the capability check in io_uring_create()
     - gpio: tps68470: Make tps68470_gpio_output() always set the initial value
     - pwm: Add a stub for devm_pwmchip_add()
     - gpio: mvebu: Make use of devm_pwmchip_add
     - gpio: mvebu: fix irq domain leak
     - btrfs: fix race between quota disable and relocation
     - i2c: Delete error messages for failed memory allocations
     - i2c: Improve size determinations
     - i2c: nomadik: Remove unnecessary goto label
     - i2c: nomadik: Use devm_clk_get_enabled()
     - i2c: nomadik: Remove a useless call in the remove function
     - [mips*] Loongson: Move arch cflags to MIPS top level Makefile
     - [mips*] Loongson: Fix build error when make modules_install
     - PCI/ASPM: Return 0 or -ETIMEDOUT from pcie_retrain_link()
     - PCI/ASPM: Factor out pcie_wait_for_retrain()
     - PCI/ASPM: Avoid link retraining race
     - PCI: rockchip: Remove writes to unused registers
     - PCI: rockchip: Fix window mapping and address translation for endpoint
     - PCI: rockchip: Don't advertise MSI-X in PCIe capabilities
     - drm/amd/display: add FB_DAMAGE_CLIPS support
     - drm/amd/display: Check if link state is valid
     - drm/amd/display: Rework context change check
     - drm/amd/display: Enable new commit sequence only for DCN32x
     - drm/amd/display: Copy DC context in the commit streams
     - drm/amd/display: Include surface of unaffected streams
     - drm/amd/display: Use min transition for all SubVP plane add/remove
     - drm/amd/display: add ODM case when looking for first split pipe
     - drm/amd/display: use low clocks for no plane configs
     - drm/amd/display: fix unbounded requesting for high pixel rate modes on
       dcn315
     - drm/amd/display: add pixel rate based CRB allocation support
     - drm/amd/display: fix dcn315 single stream crb allocation
     - drm/amd/display: Update correct DCN314 register header
     - drm/amd/display: Set minimum requirement for using PSR-SU on Rembrandt
     - drm/amd/display: Set minimum requirement for using PSR-SU on Phoenix
     - drm/ttm: Don't print error message if eviction was interrupted
     - drm/ttm: Don't leak a resource on eviction error
     - n_tty: Rename tail to old_tail in n_tty_read()
     - tty: fix hang on tty device with no_room set
     - drm/ttm: never consider pinned BOs for eviction&swap
     - [arm64] KVM: arm64: Condition HW AF updates on config option
     - [arm64] errata: Mitigate Ampere1 erratum AC03_CPU_38 at stage-2
     - mptcp: introduce 'sk' to replace 'sock->sk' in mptcp_listen()
     - mptcp: do not rely on implicit state check in mptcp_listen()
     - tracing/probes: Add symstr type for dynamic events
     - tracing/probes: Fix to avoid double count of the string length on the
       array
     - tracing: Allow synthetic events to pass around stacktraces
     - Revert "tracing: Add "(fault)" name injection to kernel probes"
     - tracing/probes: Fix to record 0-length data_loc in fetch_store_string*()
       if fails
     - maple_tree: add __init and __exit to test module
     - maple_tree: fix 32 bit mas_next testing
     - drm/amd/display: Rework comments on dc file
     - drm/amd/display: fix dc/core/dc.c kernel-doc
     - drm/amd/display: Add FAMS validation before trying to use it
     - drm/amd/display: update extended blank for dcn314 onwards
     - drm/amd/display: Fix possible underflow for displays with large vblank
     - drm/amd/display: Prevent vtotal from being set to 0
     - phy: phy-mtk-dp: Fix an error code in probe()
     - phy: qcom-snps: correct struct qcom_snps_hsphy kerneldoc
     - phy: qcom-snps-femto-v2: keep cfg_ahb_clk enabled during runtime suspend
     - phy: qcom-snps-femto-v2: properly enable ref clock
     - soundwire: qcom: update status correctly with mask
     - media: staging: atomisp: select V4L2_FWNODE
     - media: amphion: Fix firmware path to match linux-firmware
     - i40e: Fix an NULL vs IS_ERR() bug for debugfs_create_dir()
     - iavf: fix potential deadlock on allocation failure
     - iavf: check for removal state before IAVF_FLAG_PF_COMMS_FAILED
     - net: phy: marvell10g: fix 88x3310 power up
     - net: hns3: fix the imp capability bit cannot exceed 32 bits issue
     - net: hns3: fix wrong tc bandwidth weight data issue
     - net: hns3: fix wrong bw weight of disabled tc issue
     - vxlan: calculate correct header length for GPE
     - vxlan: generalize vxlan_parse_gpe_hdr and remove unused args
     - vxlan: fix GRO with VXLAN-GPE
     - phy: hisilicon: Fix an out of bounds check in hisi_inno_phy_probe()
     - atheros: fix return value check in atl1_tso()
     - ethernet: atheros: fix return value check in atl1e_tso_csum()
     - ipv6 addrconf: fix bug where deleting a mngtmpaddr can create a new
       temporary address
     - tcp: Reduce chance of collisions in inet6_hashfn(). (CVE-2023-1206)
     - ice: Fix memory management in ice_ethtool_fdir.c
     - bonding: reset bond's flags when down link is P2P device
     - team: reset team's flags when down link is P2P device
     - octeontx2-af: Removed unnecessary debug messages.
     - octeontx2-af: Fix hash extraction enable configuration
     - net: stmmac: Apply redundant write work around on 4.xx too
     - [x86] platform/x86: msi-laptop: Fix rfkill out-of-sync on MSI Wind U100
     - [x86] traps: Fix load_unaligned_zeropad() handling for shared TDX memory
     - igc: Fix Kernel Panic during ndo_tx_timeout callback
     - netfilter: nft_set_rbtree: fix overlap expiration walk
     - netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR
       (CVE-2023-4015)
     - netfilter: nf_tables: disallow rule addition to bound chain via
       NFTA_RULE_CHAIN_ID (CVE-2023-4147)
     - mm: suppress mm fault logging if fatal signal already pending
     - net/sched: mqprio: refactor nlattr parsing to a separate function
     - net/sched: mqprio: add extack to mqprio_parse_nlattr()
     - net/sched: mqprio: Add length check for TCA_MQPRIO_{MAX/MIN}_RATE64
     - benet: fix return value check in be_lancer_xmit_workarounds()
     - tipc: check return value of pskb_trim()
     - tipc: stop tipc crypto on failure in tipc_node_create
     - RDMA/mlx4: Make check for invalid flags stricter
     - drm/msm/dpu: drop enum dpu_core_perf_data_bus_id
     - drm/msm/adreno: Fix snapshot BINDLESS_DATA size
     - RDMA/irdma: Add missing read barriers
     - RDMA/irdma: Fix data race on CQP completion stats
     - RDMA/irdma: Fix data race on CQP request done
     - RDMA/mthca: Fix crash when polling CQ for shared QPs
     - RDMA/bnxt_re: Prevent handling any completions after qp destroy
     - drm/msm: Fix IS_ERR_OR_NULL() vs NULL check in a5xx_submit_in_rb()
     - cxl/acpi: Fix a use-after-free in cxl_parse_cfmws()
     - cxl/acpi: Return 'rc' instead of '0' in cxl_parse_cfmws()
     - ASoC: fsl_spdif: Silence output on stop
     - block: Fix a source code comment in include/uapi/linux/blkzoned.h
     - smb3: do not set NTLMSSP_VERSION flag for negotiate not auth request
     - [x86] drm/i915: Fix an error handling path in igt_write_huge()
     - xenbus: check xen_domain in xenbus_probe_initcall
     - dm raid: fix missing reconfig_mutex unlock in raid_ctr() error paths
     - dm raid: clean up four equivalent goto tags in raid_ctr()
     - dm raid: protect md_stop() with 'reconfig_mutex'
     - drm/amd: Fix an error handling mistake in psp_sw_init()
     - drm/amd/display: Unlock on error path in
       dm_handle_mst_sideband_msg_ready_event()
     - RDMA/irdma: Fix op_type reporting in CQEs
     - RDMA/irdma: Report correct WC error
     - drm/msm: Switch idr_lock to spinlock
     - drm/msm: Disallow submit with fence id 0
     - ublk_drv: move ublk_get_device_from_id into ublk_ctrl_uring_cmd
     - ublk: fail to start device if queue setup is interrupted
     - ublk: fail to recover device if queue setup is interrupted
     - ata: pata_ns87415: mark ns87560_tf_read static
     - ring-buffer: Fix wrong stat of cpu_buffer->read
     - tracing: Fix warning in trace_buffered_event_disable()
     - Revert "usb: gadget: tegra-xudc: Fix error check in
       tegra_xudc_powerdomain_init()"
     - usb: gadget: call usb_gadget_check_config() to verify UDC capability
     - USB: gadget: Fix the memory leak in raw_gadget driver
     - usb: gadget: core: remove unbalanced mutex_unlock in usb_gadget_activate
     - KVM: Grab a reference to KVM for VM and vCPU stats file descriptors
     - KVM: VMX: Don't fudge CR0 and CR4 for restricted L2 guest
     - KVM: x86: Disallow KVM_SET_SREGS{2} if incoming CR0 is invalid
     - serial: qcom-geni: drop bogus runtime pm state update
     - serial: 8250_dw: Preserve original value of DLF register
     - serial: sifive: Fix sifive_serial_console_setup() section
     - USB: serial: option: support Quectel EM060K_128
     - USB: serial: option: add Quectel EC200A module support
     - USB: serial: simple: add Kaufmann RKS+CAN VCP
     - USB: serial: simple: sort driver entries
     - can: gs_usb: gs_can_close(): add missing set of CAN state to
       CAN_STATE_STOPPED
     - usb: typec: Set port->pd before adding device for typec_port
     - usb: typec: Iterate pds array when showing the pd list
     - usb: typec: Use sysfs_emit_at when concatenating the string
     - Revert "usb: dwc3: core: Enable AutoRetry feature in the controller"
     - usb: dwc3: pci: skip BYT GPIO lookup table for hardwired phy
     - usb: dwc3: don't reset device side if dwc3 was configured as host-only
     - usb: misc: ehset: fix wrong if condition
     - usb: ohci-at91: Fix the unhandle interrupt when resume
     - USB: quirks: add quirk for Focusrite Scarlett
     - usb: cdns3: fix incorrect calculation of ep_buf_size when more than one
       config
     - usb: xhci-mtk: set the dma max_seg_size
     - Revert "usb: xhci: tegra: Fix error check"
     - Documentation: security-bugs.rst: update preferences when dealing with the
       linux-distros group
     - Documentation: security-bugs.rst: clarify CVE handling
     - staging: r8712: Fix memory leak in _r8712_init_xmit_priv()
     - staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
     - tty: n_gsm: fix UAF in gsm_cleanup_mux
     - Revert "xhci: add quirk for host controllers that don't update endpoint
       DCS"
     - ALSA: hda/realtek: Support ASUS G713PV laptop
     - ALSA: hda/relatek: Enable Mute LED on HP 250 G8
     - hwmon: (k10temp) Enable AMD3255 Proc to show negative temperature
     - hwmon: (nct7802) Fix for temp6 (PECI1) processed even if PECI1 disabled
     - btrfs: account block group tree when calculating global reserve size
     - btrfs: check if the transaction was aborted at btrfs_wait_for_commit()
     - btrfs: check for commit error at btrfs_attach_transaction_barrier()
     - [x86] MCE/AMD: Decrement threshold_bank refcount when removing threshold
       blocks
     - file: always lock position for FMODE_ATOMIC_POS
     - nfsd: Remove incorrect check in nfsd4_validate_stateid
     - ACPI/IORT: Remove erroneous id_count check in iort_node_get_rmr_info()
     - tpm_tis: Explicitly check for error code
     - irq-bcm6345-l1: Do not assume a fixed block to cpu mapping
     - irqchip/gic-v4.1: Properly lock VPEs when doing a directLPI invalidation
     - locking/rtmutex: Fix task->pi_waiters integrity
     - proc/vmcore: fix signedness bug in read_from_oldmem()
     - xen: speed up grant-table reclaim
     - virtio-net: fix race between set queues and probe
     - net: dsa: qca8k: fix search_and_insert wrong handling of new rule
     - net: dsa: qca8k: fix broken search_and_del
     - net: dsa: qca8k: fix mdb add/del case with 0 VID
     - soundwire: fix enumeration completion
     - [s390x] dasd: fix hanging device after quiesce/resume
     - [s390x] dasd: print copy pair message only for the correct error
     - ASoC: wm8904: Fill the cache for WM8904_ADC_TEST_0 register
     - [arm64] sme: Set new vector length before reallocating
     - PM: sleep: wakeirq: fix wake irq arming
     - ceph: never send metrics if disable_send_metrics is set
     - [x86] drm/i915/dpt: Use shmem for dpt objects
     - dm cache policy smq: ensure IO doesn't prevent cleaner policy progress
     - rbd: make get_lock_owner_info() return a single locker or NULL
     - rbd: harden get_lock_owner_info() a bit
     - rbd: retrieve and check lock owner twice before blocklisting
     - drm/amd/display: set per pipe dppclk to 0 when dpp is off
     - tracing: Fix trace_event_raw_event_synth() if else statement
     - drm/amd/display: perform a bounds check before filling dirty rectangles
     - drm/amd/display: Write to correct dirty_rect
     - ACPI: processor: perflib: Use the "no limit" frequency QoS
     - ACPI: processor: perflib: Avoid updating frequency QoS unnecessarily
     - cpufreq: intel_pstate: Drop ACPI _PSS states table patching
     - mptcp: ensure subflow is unhashed before cleaning the backlog
     - dma-buf: keep the signaling time of merged fences v3
     - dma-buf: fix an error pointer vs NULL bug
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.44
     - xen/netback: Fix buffer overrun triggered by unusual packet
       (CVE-2023-34319)
     - [x86] fix backwards merge of GDS/SRSO bit
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.45
     - io_uring: gate iowait schedule on having pending requests
     - perf: Fix function pointer case
     - net/mlx5: Free irqs only on shutdown callback
     - [arm64] iommu/arm-smmu-v3: Work around MMU-600 erratum 1076982
     - [arm64] iommu/arm-smmu-v3: Document MMU-700 erratum 2812531
     - [arm64] iommu/arm-smmu-v3: Add explicit feature for nesting
     - [arm64] iommu/arm-smmu-v3: Document nesting-related errata
     - [arm64] dts: imx8mm-venice-gw7903: disable disp_blk_ctrl
     - [arm64] dts: imx8mm-venice-gw7904: disable disp_blk_ctrl
     - [arm64] dts: phycore-imx8mm: Label typo-fix of VPU
     - [arm64] dts: phycore-imx8mm: Correction in gpio-line-names
     - [arm64] dts: imx8mn-var-som: add missing pull-up for onboard PHY reset
       pinmux
     - [arm64] dts: freescale: Fix VPU G2 clock
     - [arm64,armhf] firmware: smccc: Fix use of uninitialised results structure
     - lib/bitmap: workaround const_eval test build failure
     - [arm64] firmware: arm_scmi: Fix chan_free cleanup on SMC
     - word-at-a-time: use the same return type for has_zero regardless of
       endianness
     - [s390x] KVM: s390: fix sthyi error handling
     - erofs: fix wrong primary bvec selection on deduplicated extents
     - wifi: cfg80211: Fix return value in scan logic
     - net/mlx5e: fix double free in macsec_fs_tx_create_crypto_table_groups
     - net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx
     - net/mlx5: fix potential memory leak in mlx5e_init_rep_rx
     - net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer()
     - net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set
     - net/mlx5e: Move representor neigh cleanup to profile cleanup_tx
     - bpf: Add length check for SK_DIAG_BPF_STORAGE_REQ_MAP_FD parsing
     - rtnetlink: let rtnl_bridge_setlink checks IFLA_BRIDGE_MODE length
     - [armhf] net: dsa: fix value check in bcm_sf2_sw_probe()
     - perf test uprobe_from_different_cu: Skip if there is no gcc
     - net: sched: cls_u32: Fix match key mis-addressing
     - mISDN: hfcpci: Fix potential deadlock on &hc->lock
     - qed: Fix scheduling in a tasklet while getting stats
     - net: annotate data-races around sk->sk_reserved_mem
     - net: annotate data-race around sk->sk_txrehash
     - net: annotate data-races around sk->sk_max_pacing_rate
     - net: add missing READ_ONCE(sk->sk_rcvlowat) annotation
     - net: add missing READ_ONCE(sk->sk_sndbuf) annotation
     - net: add missing READ_ONCE(sk->sk_rcvbuf) annotation
     - net: annotate data-races around sk->sk_mark
     - net: add missing data-race annotations around sk->sk_peek_off
     - net: add missing data-race annotation for sk_ll_usec
     - net: annotate data-races around sk->sk_priority
     - net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX.
     - ice: Fix RDMA VSI removal during queue rebuild
     - bpf, cpumap: Handle skb as well when clean up ptr_ring
     - net/sched: cls_u32: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4208)
     - net/sched: cls_fw: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4207)
     - net/sched: cls_route: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4206)
     - bpf: sockmap: Remove preempt_disable in sock_map_sk_acquire
     - net: netsec: Ignore 'phy-mode' on SynQuacer in DT mode
     - bnxt_en: Fix page pool logic for page size >= 64K
     - bnxt_en: Fix max_mtu setting for multi-buf XDP
     - net: dcb: choose correct policy to parse DCB_ATTR_BCN
     - [s390x] qeth: Don't call dev_close/dev_open (DOWN/UP)
     - ip6mr: Fix skb_under_panic in ip6mr_cache_report()
     - vxlan: Fix nexthop hash size
     - net/mlx5: fs_core: Make find_closest_ft more generic
     - net/mlx5: fs_core: Skip the FTs in the same FS_TYPE_PRIO_CHAINS fs_prio
     - tcp_metrics: fix addr_same() helper
     - tcp_metrics: annotate data-races around tm->tcpm_stamp
     - tcp_metrics: annotate data-races around tm->tcpm_lock
     - tcp_metrics: annotate data-races around tm->tcpm_vals[]
     - tcp_metrics: annotate data-races around tm->tcpm_net
     - tcp_metrics: fix data-race in tcpm_suck_dst() vs fastopen
     - scsi: zfcp: Defer fc_rport blocking until after ADISC response
     - scsi: storvsc: Limit max_sectors for virtual Fibre Channel devices
     - libceph: fix potential hang in ceph_osdc_notify()
     - USB: zaurus: Add ID for A-300/B-500/C-700
     - ceph: defer stopping mdsc delayed_work
     - [arm64] firmware: arm_scmi: Drop OF node reference in the transport
       channel setup
     - exfat: use kvmalloc_array/kvfree instead of kmalloc_array/kfree
     - exfat: release s_lock before calling dir_emit()
     - bpf: Disable preemption in bpf_perf_event_output
     - [arm64] dts: stratix10: fix incorrect I2C property for SCL signal
     - net: tun_chr_open(): set sk_uid from current_fsuid() (CVE-2023-4194)
     - net: tap_open(): set sk_uid from current_fsuid() (CVE-2023-4194)
     - wifi: mt76: mt7615: do not advertise 5 GHz on first phy of MT7615D (DBDC)
     - [x86] hyperv: Disable IBT when hypercall page lacks ENDBR instruction
     - rbd: prevent busy loop when requesting exclusive lock
     - bpf: Disable preemption in bpf_event_output
     - [powerpc*] ftrace: Create a dummy stackframe to fix stack unwind
     - [arm64] fpsimd: Sync and zero pad FPSIMD state for streaming SVE
     - [arm64] fpsimd: Clear SME state in the target task when setting the VL
     - [arm64] fpsimd: Sync FPSIMD state with SVE for SME only systems
     - open: make RESOLVE_CACHED correctly test for O_TMPFILE
     - drm/ttm: check null pointer before accessing when swapping
     - [x86] drm/i915: Fix premature release of request's reusable memory
     - [x86] drm/i915/gt: Cleanup aux invalidation registers
     - bpf, cpumap: Make sure kthread is running before map update returns
     - file: reinstate f_pos locking optimization for regular files
     - mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required()
     - fs/sysv: Null check to prevent null-ptr-deref bug
     - Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
       (CVE-2023-40283)
     - debugobjects: Recheck debug_objects_enabled before reporting
     - net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
     - fs: Protect reconfiguration of sb read-write from racing writes
     - btrfs: remove BUG_ON()'s in add_new_free_space()
     - f2fs: fix to do sanity check on direct node in truncate_dnode()
     - io_uring: annotate offset timeout races
     - [powerpc*] mm/altmap: Fix altmap boundary check
     - [armhf] drm/imx/ipuv3: Fix front porch adjustment upon hactive aligning
     - drm/amd/display: Ensure that planes are in the same order
     - drm/amd/display: skip CLEAR_PAYLOAD_ID_TABLE if device mst_en is 0
     - f2fs: fix to set flush_merge opt and show noflush_merge
     - f2fs: don't reset unchangable mount option in f2fs_remount()
     - exfat: check if filename entries exceeds max filename length
       (CVE-2023-4273)
     - [arm64] ptrace: Don't enable SVE when setting streaming SVE
     - drm/amdgpu: add vram reservation based on vram_usagebyfirmware_v2_2
     - drm/amdgpu: Remove unnecessary domain argument
     - drm/amdgpu: Use apt name for FW reserved region
     - [x86] Revert "drm/i915: Disable DC states for all commits"
       (Closes: #1043564)
     - [x86] CPU/AMD: Do not leak quotient data after a division by 0
       (CVE-2023-20588)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.46
     - Revert "loongarch/cpu: Switch to arch_cpu_finalize_init()"
     - tpm: Disable RNG for all AMD fTPMs
     - tpm: Add a helper for checking hwrng enabled
     - ksmbd: validate command request size
     - ksmbd: fix wrong next length validation of ea buffer in smb2_set_ea()
     - [x86] KVM: SEV: snapshot the GHCB before accessing it
     - [x86] KVM: SEV: only access GHCB fields once (CVE-2023-4155)
     - wifi: nl80211: fix integer overflow in nl80211_parse_mbssid_elems()
     - wifi: rtw89: fix 8852AE disconnection caused by RX full flags
     - wireguard: allowedips: expand maximum node depth
     - ipv6: adjust ndisc_is_useropt() to also return true for PIO
     - mptcp: avoid bogus reset on fallback close
     - mptcp: fix disconnect vs accept race
     - [arm64,armhf] dmaengine: pl330: Return DMA_PAUSED when transaction is
       paused
     - [amd64] net: mana: Fix MANA VF unload when hardware is unresponsive
     - nvme-pci: add NVME_QUIRK_BOGUS_NID for Samsung PM9B1 256G and 512G
     - drm/nouveau/gr: enable memory loads on helper invocation on all channels
     - drm/nouveau/nvkm/dp: Add workaround to fix DP 1.3+ DPCD issues
     - drm/shmem-helper: Reset vma->vm_ops before calling dma_buf_mmap()
     - drm/amdgpu: fix possible UAF in amdgpu_cs_pass1()
     - drm/amd/display: check attr flag before set cursor degamma on DCN3+
     - drm/amdgpu: add S/G display parameter
     - drm/amd: Disable S/G for APUs when 64GB or more host memory
     - drm/amd/display: limit DPIA link rate to HBR3
     - cpuidle: dt_idle_genpd: Add helper function to remove genpd topology
     - hwmon: (pmbus/bel-pfe) Enable PMBUS_SKIP_STATUS_CHECK for pfe1100
     - nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput
     - drm/amd/pm: fulfill swsmu peak profiling mode shader/memory clock settings
     - drm/amd/pm: expose swctf threshold setting for legacy powerplay
     - drm/amd/pm: fulfill powerplay peak profiling mode shader/memory clock
       settings
     - drm/amd/pm: avoid unintentional shutdown due to temperature momentary
       fluctuation
     - drm/amd/display: Handle virtual hardware detect
     - drm/amd/display: Add function for validate and update new stream
     - drm/amd/display: Handle seamless boot stream
     - drm/amd/display: Update OTG instance in the commit stream
     - drm/amd/display: Avoid ABM when ODM combine is enabled for eDP
     - drm/amd/display: Use update plane and stream routine for DCN32x
     - drm/amd/display: Disable phantom OTG after enable for plane disable
     - drm/amd/display: Retain phantom plane/stream if validation fails
     - drm/amd/display: fix the build when DRM_AMD_DC_DCN is not set
     - drm/amd/display: trigger timing sync only if TG is running
     - io_uring: correct check for O_TMPFILE
     - [arm64] iio: cros_ec: Fix the allocation size for cros_ec_command
     - iio: adc: ad7192: Fix ac excitation feature
     - iio: adc: ina2xx: avoid NULL pointer dereference on OF device match
     - [arm*] binder: fix memory leak in binder_init()
     - misc: rtsx: judge ASPM Mode to set PETXCFG Reg
     - usb-storage: alauda: Fix uninit-value in alauda_check_media()
     - [arm64,armhf] usb: dwc3: Properly handle processing of pending events
     - USB: Gadget: core: Help prevent panic during UVC unconfigure
     - usb: common: usb-conn-gpio: Prevent bailing out if initial role is none
     - usb: typec: tcpm: Fix response to vsafe0V event
     - usb: typec: altmodes/displayport: Signal hpd when configuring pin
       assignment
     - [x86] cpu/amd: Enable Zenbleed fix for AMD Custom APU 0405
     - [x86] mm: Fix VDSO and VVAR placement on 5-level paging machines
     - [x86] sev: Do not try to parse for the CC blob on non-AMD hardware
     - [x86] speculation: Add cpu_show_gds() prototype
     - [x86] Move gds_ucode_mitigated() declaration to header
     - drm/nouveau/disp: Revert a NULL check inside nouveau_connector_get_modes
       (Closes: #1042753)
     - iio: core: Prevent invalid memory access when there is no parent
     - interconnect: qcom: Add support for mask-based BCMs
     - interconnect: qcom: sm8450: add enable_mask for bcm nodes
     - net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()
     - bpf, sockmap: Fix map type error in sock_map_del_link
     - bpf, sockmap: Fix bug that strp_done cannot be called
     - mISDN: Update parameter type of dsp_cmx_send()
     - macsec: use DEV_STATS_INC()
     - mptcp: fix the incorrect judgment for msk->cb_flags
     - net/packet: annotate data-races around tp->status
     - net/smc: Use correct buffer sizes when switching between TCP and SMC
     - tcp: add missing family to tcp_set_ca_state() tracepoint
     - tunnels: fix kasan splat when generating ipv4 pmtu error
     - xsk: fix refcount underflow in error path
     - bonding: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
     - dccp: fix data-race around dp->dccps_mss_cache
     - drivers: net: prevent tun_build_skb() to exceed the packet size limit
     - drivers: vxlan: vnifilter: free percpu vni stats on error path
     - iavf: fix potential races for FDIR filters
     - [amd64] IB/hfi1: Fix possible panic during hotplug remove
     - drm/rockchip: Don't spam logs in atomic check
     - wifi: cfg80211: fix sband iftype data lookup for AP_VLAN
     - RDMA/umem: Set iova in ODP flow
     - net: tls: avoid discarding data on record close
     - net: phy: at803x: remove set/get wol callbacks for AR8032
     - [arm64] net: dsa: ocelot: call dsa_tag_8021q_unregister() under
       rtnl_lock() on driver remove
     - [arm64] net: hns3: refactor hclge_mac_link_status_wait for interface reuse
     - [arm64] net: hns3: add wait until mac link down
     - [arm64] net: hns3: fix deadlock issue when externel_lb and reset are
       executed together
     - nexthop: Fix infinite nexthop dump when using maximum nexthop ID
     - nexthop: Make nexthop bucket dump more efficient
     - nexthop: Fix infinite nexthop bucket dump when using maximum nexthop ID
     - [arm64] net: hns3: fix strscpy causing content truncation issue
     - dmaengine: owl-dma: Modify mismatched function name
     - net/mlx5: Allow 0 for total host VFs
     - net/mlx5: LAG, Check correct bucket when modifying LAG
     - net/mlx5: Skip clock update work when device is in error state
     - net/mlx5: Reload auxiliary devices in pci error handlers
     - ibmvnic: Enforce stronger sanity checks on login response
     - ibmvnic: Unmap DMA login rsp buffer on send login fail
     - ibmvnic: Handle DMA unmapping of login buffs in release functions
     - ibmvnic: Do partial reset on login failure
     - ibmvnic: Ensure login failure recovery is safe from other resets
     - gpio: ws16c48: Fix off-by-one error in WS16C48 resource region extent
     - gpio: sim: mark the GPIO chip as a one that can sleep
     - btrfs: wait for actual caching progress during allocation
     - btrfs: don't stop integrity writeback too early
     - btrfs: properly clear end of the unreserved range in cow_file_range
     - btrfs: exit gracefully if reloc roots don't match
     - btrfs: reject invalid reloc tree root keys with stack dump
     - btrfs: set cache_block_group_error if we find an error
     - nvme-tcp: fix potential unbalanced freeze & unfreeze
     - nvme-rdma: fix potential unbalanced freeze & unfreeze
     - netfilter: nf_tables: report use refcount overflow
     - scsi: core: Fix legacy /proc parsing buffer overflow
     - [x86] scsi: storvsc: Fix handling of virtual Fibre Channel timeouts
     - scsi: ufs: renesas: Fix private allocation
     - scsi: 53c700: Check that command slot is not NULL
     - scsi: snic: Fix possible memory leak if device_add() fails
     - scsi: core: Fix possible memory leak if device_add() fails
     - scsi: fnic: Replace return codes in fnic_clean_pending_aborts()
     - scsi: qedi: Fix firmware halt over suspend and resume
     - scsi: qedf: Fix firmware halt over suspend and resume
     - [x86] platform/x86: serial-multi-instantiate: Auto detect IRQ resource for
       CSC3551
     - ACPI: scan: Create platform device for CS35L56
     - sch_netem: fix issues in netem_change() vs get_dist_table()
     - drm/amd/pm/smu7: move variables to where they are used
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.47
     - [arm64] mmc: sdhci-f-sdh30: Replace with sdhci_pltfm
     - [arm64] cpuidle: psci: Extend information in log about OSI/PC mode
     - [arm64] cpuidle: psci: Move enabling OSI mode after power domains creation
     - zsmalloc: consolidate zs_pool's migrate_lock and size_class's locks
     - zsmalloc: fix races between modifications of fullness and isolated
     - net/smc: replace mutex rmbs_lock and sndbufs_lock with rw_semaphore
     - net/smc: Fix setsockopt and sysctl to specify same buffer size again
     - net: phy: at803x: Use devm_regulator_get_enable_optional()
     - net: phy: at803x: fix the wol setting functions
     - drm/amdgpu: fix calltrace warning in amddrm_buddy_fini
     - drm/amdgpu: Fix integer overflow in amdgpu_cs_pass1
     - drm/amdgpu: fix memory leak in mes self test
     - [x86] ASoC: Intel: sof_sdw: add quirk for MTL RVP
     - [x86] ASoC: Intel: sof_sdw: add quirk for LNL RVP
     - ASoC: SOF: amd: Add pci revision id check
     - drm/stm: ltdc: fix late dereference check
     - drm: rcar-du: remove R-Car H3 ES1.* workarounds
     - [x86] ASoC: amd: vangogh: Add check for acp config flags in vangogh
       platform
     - [x86] ASoC: Intel: sof_sdw_rt_sdca_jack_common: test SOF_JACK_JDSRC in
       _exit
     - [x86] ASoC: Intel: sof_sdw: Add support for Rex soundwire
     - iopoll: Call cpu_relax() in busy loops
     - [x86] ASoC: SOF: Intel: fix SoundWire/HDaudio mutual exclusion
     - dma-remap: use kvmalloc_array/kvfree for larger dma memory remap
     - accel/habanalabs: add pci health check during heartbeat
     - HID: logitech-hidpp: Add USB and Bluetooth IDs for the Logitech G915 TKL
       Keyboard
     - [amd64] iommu/amd: Introduce Disable IRTE Caching Support
     - drm/amdgpu: install stub fence into potential unused fence pointers
     - drm/amd/display: Apply 60us prefetch for DCFCLK <= 300Mhz
     - RDMA/mlx5: Return the firmware result upon destroying QP/RQ
     - drm/amd/display: Skip DPP DTO update if root clock is gated
     - drm/amd/display: Enable dcn314 DPP RCO
     - ASoC: SOF: core: Free the firmware trace before calling snd_sof_shutdown()
     - HID: intel-ish-hid: ipc: Add Arrow Lake PCI device ID
     - ALSA: hda/realtek: Add quirks for ROG ALLY CS35l41 audio
     - smb: client: fix warning in cifs_smb3_do_mount()
     - cifs: fix session state check in reconnect to avoid use-after-free issue
     - serial: stm32: Ignore return value of uart_remove_one_port() in .remove()
     - led: qcom-lpg: Fix resource leaks in for_each_available_child_of_node()
       loops
     - media: v4l2-mem2mem: add lock to protect parameter num_rdy
     - media: camss: set VFE bpl_alignment to 16 for sdm845 and sm8250
     - usb: gadget: u_serial: Avoid spinlock recursion in __gs_console_push
     - usb: gadget: uvc: queue empty isoc requests if no video buffer is
       available
     - media: platform: mediatek: vpu: fix NULL ptr dereference
     - [x86] thunderbolt: Read retimer NVM authentication status prior
       tb_retimer_set_inbound_sbtx()
     - usb: chipidea: imx: don't request QoS for imx8ulp
     - usb: chipidea: imx: add missing USB PHY DPDM wakeup setting
     - gfs2: Fix possible data races in gfs2_show_options()
     - pcmcia: rsrc_nonstatic: Fix memory leak in nonstatic_release_resource_db()
     - [x86] thunderbolt: Add Intel Barlow Ridge PCI ID
     - [x86] thunderbolt: Limit Intel Barlow Ridge USB3 bandwidth
     - firewire: net: fix use after free in fwnet_finish_incoming_packet()
     - watchdog: sp5100_tco: support Hygon FCH/SCH (Server Controller Hub)
     - Bluetooth: L2CAP: Fix use-after-free
     - Bluetooth: btusb: Add MT7922 bluetooth ID for the Asus Ally
     - ceph: try to dump the msgs when decoding fails
     - drm/amdgpu: Fix potential fence use-after-free v2
     - fs/ntfs3: Enhance sanity check while generating attr_list
     - fs: ntfs3: Fix possible null-pointer dereferences in mi_read()
     - fs/ntfs3: Mark ntfs dirty when on-disk struct is corrupted
     - ALSA: hda/realtek: Add quirks for Unis H3C Desktop B760 & Q760
     - ALSA: hda: fix a possible null-pointer dereference due to data race in
       snd_hdac_regmap_sync()
     - ALSA: hda/realtek: Add quirk for ASUS ROG GX650P
     - ALSA: hda/realtek: Add quirk for ASUS ROG GA402X
     - ALSA: hda/realtek: Add quirk for ASUS ROG GZ301V
     - Bluetooth: MGMT: Use correct address for memcpy()
     - ring-buffer: Do not swap cpu_buffer during resize process
     - igc: read before write to SRRCTL register
     - drm/amd/display: save restore hdcp state when display is unplugged from
       mst hub
     - drm/amd/display: phase3 mst hdcp for multiple displays
     - drm/amd/display: fix access hdcp_workqueue assert
     - [arm64] KVM: arm64: vgic-v4: Make the doorbell request robust w.r.t
       preemption
     - fbdev/hyperv-fb: Do not set struct fb_info.apertures
     - video/aperture: Only remove sysfb on the default vga pci device
       (Closes: #1051163)
     - btrfs: move out now unused BG from the reclaim list
     - btrfs: convert btrfs_block_group::needs_free_space to runtime flag
     - btrfs: convert btrfs_block_group::seq_zone to runtime flag
     - btrfs: fix use-after-free of new block group that became unused
     - virtio-mmio: don't break lifecycle of vm_dev
     - cifs: fix potential oops in cifs_oplock_break
     - i2c: bcm-iproc: Fix bcm_iproc_i2c_isr deadlock issue
     - i2c: hisi: Only handle the interrupt of the driver's transfer
     - i2c: tegra: Fix i2c-tegra DMA config option processing
     - fbdev: mmp: fix value check in mmphw_probe()
     - [powerpc*] rtas_flash: allow user copy to flash block cache objects
     - tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux
     - tty: serial: fsl_lpuart: Clear the error flags by writing 1 for lpuart32
       platforms
     - btrfs: fix incorrect splitting in btrfs_drop_extent_map_range
     - btrfs: fix BUG_ON condition in btrfs_cancel_balance
     - i2c: designware: Correct length byte validation logic
     - i2c: designware: Handle invalid SMBus block data response length value
     - net: xfrm: Fix xfrm_address_filter OOB read
     - net: af_key: fix sadb_x_filter validation
     - net: xfrm: Amend XFRMA_SEC_CTX nla_policy structure
     - xfrm: fix slab-use-after-free in decode_session6
     - ip6_vti: fix slab-use-after-free in decode_session6
     - ip_vti: fix potential slab-use-after-free in decode_session6
     - xfrm: add NULL check in xfrm_update_ae_params (CVE-2023-3772)
     - xfrm: add forgotten nla_policy for XFRMA_MTIMER_THRESH (CVE-2023-3773)
     - virtio_net: notify MAC address change on device initialization
     - virtio-net: set queues after driver_ok
     - net: pcs: Add missing put_device call in miic_create
     - net: phy: fix IRQ-based wake-on-lan over hibernate / power off
     - drm/panel: simple: Fix AUO G121EAN01 panel timings according to the docs
     - net: macb: In ZynqMP resume always configure PS GTR for non-wakeup source
     - octeon_ep: cancel tx_timeout_task later in remove sequence
     - netfilter: nf_tables: fix false-positive lockdep splat
     - netfilter: nf_tables: deactivate catchall elements in next generation
       (CVE-2023-4569)
     - ipvs: fix racy memcpy in proc_do_sync_threshold
     - netfilter: nft_dynset: disallow object maps
     - net: phy: broadcom: stub c45 read/write for 54810
     - team: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
     - net: openvswitch: reject negative ifindex
     - iavf: fix FDIR rule fields masks validation
     - i40e: fix misleading debug logs
     - net: dsa: mv88e6xxx: Wait for EEPROM done before HW reset
     - sfc: don't unregister flow_indr if it was never registered
     - sock: Fix misuse of sk_under_memory_pressure()
     - net: do not allow gso_size to be set to GSO_BY_FRAGS
     - qede: fix firmware halt over suspend and resume
     - ice: Block switchdev mode when ADQ is active and vice versa
     - bus: ti-sysc: Flush posted write on enable before reset
     - [arm64] dts: qcom: qrb5165-rb5: fix thermal zone conflict
     - [arm64] dts: rockchip: Disable HS400 for eMMC on ROCK Pi 4
     - [arm64] dts: rockchip: Disable HS400 for eMMC on ROCK 4C+
     - [armhf] dts: imx: align LED node names with dtschema
     - [arm64] dts: imx8mm: Drop CSI1 PHY reference clock configuration
     - [armhf] dts: imx: Set default tuning step for imx6sx usdhc
     - [arm64] dts: imx93: Fix anatop node size
     - ASoC: rt5665: add missed regulator_bulk_disable
     - ASoC: meson: axg-tdm-formatter: fix channel slot allocation
     - ALSA: hda/realtek: Add quirks for HP G11 Laptops
     - soc: aspeed: uart-routing: Use __sysfs_match_string
     - soc: aspeed: socinfo: Add kfree for kstrdup
     - ALSA: hda/realtek - Remodified 3k pull low procedure
     - serial: 8250: Fix oops for port->pm on uart_change_pm()
     - ALSA: usb-audio: Add support for Mythware XA001AU capture and playback
       interfaces.
     - cifs: Release folio lock on fscache read hit.
     - virtio-net: Zero max_tx_vq field for VIRTIO_NET_CTRL_MQ_HASH_CONFIG case
     - [arm64] dts: rockchip: Fix Wifi/Bluetooth on ROCK Pi 4 boards
     - blk-crypto: dynamically allocate fallback profile
     - mmc: wbsd: fix double mmc_free_host() in wbsd_init()
     - mmc: block: Fix in_flight[issue_type] value error
     - drm/qxl: fix UAF on handle creation
     - [x86] drm/i915/sdvo: fix panel_type initialization
     - drm/amd: flush any delayed gfxoff on suspend entry
     - drm/amdgpu: skip fence GFX interrupts disable/enable for S0ix
     - drm/amdgpu/pm: fix throttle_status for other than MP1 11.0.7
     - drm/amd/display: disable RCO for DCN314
     - zsmalloc: allow only one active pool compaction context
     - sched/fair: unlink misfit task from cpu overutilized
     - sched/fair: Remove capacity inversion detection
     - drm/amd/display: Implement workaround for writing to OTG_PIXEL_RATE_DIV
       register
     - hugetlb: do not clear hugetlb dtor until allocating vmemmap
     - netfilter: set default timeout to 3 secs for sctp shutdown send and recv
       state
     - [arm64] ptrace: Ensure that SME is set up for target when writing SSVE
       state
     - drm/amd/pm: skip the RLC stop when S0i3 suspend for SMU v13.0.4/11
     - drm/amdgpu: keep irq count in amdgpu_irq_disable_all
     - af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (CVE-2023-4622)
     - drm/nouveau/disp: fix use-after-free in error handling of
       nouveau_connector_create
     - net: fix the RTO timer retransmitting skb every 1ms if linear option is
       enabled
     - [arm64] mmc: f-sdh30: fix order of function calls in sdhci_f_sdh30_remove
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.48
     - [x86] cpu: Fix __x86_return_thunk symbol type
     - [x86] cpu: Fix up srso_safe_ret() and __x86_return_thunk()
     - [x86] alternative: Make custom return thunk unconditional
     - [x86] cpu: Clean up SRSO return thunk mess
     - [x86] cpu: Rename original retbleed methods
     - [x86] cpu: Rename srso_(.*)_alias to srso_alias_\1
     - [x86] cpu: Cleanup the untrain mess
     - [x86] srso: Explain the untraining sequences a bit more
     - [x86] static_call: Fix __static_call_fixup()
     - [x86] retpoline: Don't clobber RFLAGS during srso_safe_ret()
       (Closes: #1043585)
     - [x86] CPU/AMD: Fix the DIV(0) initial fix attempt (CVE-2023-20588)
     - [x86] srso: Disable the mitigation on unaffected configurations
     - [x86] retpoline,kprobes: Fix position of thunk sections with
       CONFIG_LTO_CLANG
     - [x86] objtool/x86: Fixup frame-pointer vs rethunk
     - [x86] srso: Correct the mitigation status when SMT is disabled
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.49
     - [x86] objtool/x86: Fix SRSO mess
     - Revert "f2fs: don't reset unchangable mount option in f2fs_remount()"
     - Revert "f2fs: fix to set flush_merge opt and show noflush_merge"
     - Revert "f2fs: fix to do sanity check on direct node in truncate_dnode()"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.50
     - NFSv4.2: fix error handling in nfs42_proc_getxattr
     - NFSv4: fix out path in __nfs4_get_acl_uncached
     - xprtrdma: Remap Receive buffers after a reconnect
     - drm/ast: Use drm_aperture_remove_conflicting_pci_framebuffers
     - fbdev/radeon: use pci aperture helpers
     - [x86] drm/gma500: Use drm_aperture_remove_conflicting_pci_framebuffers
     - drm/aperture: Remove primary argument
     - video/aperture: Only kick vgacon when the pdev is decoding vga
     - video/aperture: Move vga handling to pci function
     - PCI: acpiphp: Reassign resources on bridge if necessary
     - [mips*]: cpu-features: Enable octeon_cache by cpu_type
     - [mips*] cpu-features: Use boot_cpu_type for CPU type based features
     - jbd2: remove t_checkpoint_io_list
     - jbd2: remove journal_clean_one_cp_list()
     - jbd2: fix a race when checking checkpoint buffer busy
     - can: raw: fix receiver memory leak
     - can: raw: fix lockdep issue in raw_release()
     - [s390x] zcrypt: remove unnecessary (void *) conversions
     - [s390x] zcrypt: fix reply buffer calculations for CCA replies
     - [x86] drm/i915: Add the gen12_needs_ccs_aux_inv helper
     - [x86] drm/i915/gt: Ensure memory quiesced before invalidation
     - [x86] drm/i915/gt: Poll aux invalidation register bit on invalidation
     - [x86] drm/i915/gt: Support aux invalidation on all engines
     - tracing: Fix cpu buffers unavailable due to 'record_disabled' missed
     - tracing: Fix memleak due to race between current_tracer and trace
     - devlink: move code to a dedicated directory
     - devlink: add missing unregister linecard notification
     - [arm64] net: dsa: felix: fix oversize frame dropping for always closed
       tc-taprio gates
     - sock: annotate data-races around prot->memory_pressure
     - dccp: annotate data-races in dccp_poll()
     - ipvlan: Fix a reference count leak warning in ipvlan_ns_exit()
     - mlxsw: pci: Set time stamp fields also when its type is MIRROR_UTC
     - mlxsw: reg: Fix SSPR register layout
     - mlxsw: Fix the size of 'VIRT_ROUTER_MSB'
     - net: bgmac: Fix return value check for fixed_phy_register()
     - net: bcmgenet: Fix return value check for fixed_phy_register()
     - net: validate veth and vxcan peer ifindexes
     - ipv4: fix data-races around inet->inet_id
     - ice: fix receive buffer size miscalculation
     - Revert "ice: Fix ice VF reset during iavf initialization"
     - ice: Fix NULL pointer deref during VF reset
     - can: isotp: fix support for transmission of SF without flow control
     - igb: Avoid starting unnecessary workqueues
     - igc: Fix the typo in the PTM Control macro
     - net/sched: fix a qdisc modification with ambiguous command request
     - i40e: fix potential NULL pointer dereferencing of pf->vf
       i40e_sync_vsi_filters()
     - netfilter: nf_tables: flush pending destroy work before netlink notifier
     - netfilter: nf_tables: fix out of memory error handling
     - rtnetlink: Reject negative ifindexes in RTM_NEWLINK
     - bonding: fix macvlan over alb bond support
     - [x86] KVM: x86: Preserve TDP MMU roots until they are explicitly
       invalidated
     - [x86] KVM: x86/mmu: Fix an sign-extension bug with mmu_seq that hangs
       vCPUs
     - io_uring: get rid of double locking
     - io_uring: extract a io_msg_install_complete helper
     - io_uring/msg_ring: move double lock/unlock helpers higher up
     - io_uring/msg_ring: fix missing lock on overflow for IOPOLL (CVE-2023-2430)
     - [x86] ASoC: amd: yc: Add VivoBook Pro 15 to quirks list for acp6x
     - [x86] ASoC: cs35l41: Correct amp_gain_tlv values
     - ibmveth: Use dcbf rather than dcbfl
     - wifi: mac80211: limit reorder_buf_filtered to avoid UBSAN warning
     - [x86] platform/x86: ideapad-laptop: Add support for new hotkeys found on
       ThinkBook 14s Yoga ITL
     - NFSv4: Fix dropped lock for racing OPEN and delegation return
     - clk: Fix slab-out-of-bounds error in devm_clk_release()
     - mm,ima,kexec,of: use memblock_free_late from ima_free_kexec_buffer
     - shmem: fix smaps BUG sleeping while atomic
     - ALSA: ymfpci: Fix the missing snd_card_free() call at probe error
     - mm/gup: handle cont-PTE hugetlb pages correctly in gup_must_unshare() via
       GUP-fast
     - mm: add a call to flush_cache_vmap() in vmap_pfn()
     - mm: memory-failure: fix unexpected return value in soft_offline_page()
     - NFS: Fix a use after free in nfs_direct_join_group()
     - nfsd: Fix race to FREE_STATEID and cl_revoked
     - selinux: set next pointer before attaching to list
     - batman-adv: Trigger events for auto adjusted MTU
     - batman-adv: Don't increase MTU when set by user
     - batman-adv: Do not get eth header before batadv_check_management_packet
     - batman-adv: Fix TT global entry leak when client roamed back
     - batman-adv: Fix batadv_v_ogm_aggr_send memory leak
     - batman-adv: Hold rtnl lock during MTU update via netlink
     - lib/clz_ctz.c: Fix __clzdi2() and __ctzdi2() for 32-bit kernels
     - of: dynamic: Refactor action prints to not use "%pOF" inside devtree_lock
     - pinctrl: amd: Mask wake bits on probe again
     - media: vcodec: Fix potential array out-of-bounds in encoder queue_setup
     - PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for
       non-root bus
     - drm/vmwgfx: Fix shader stage validation
     - [x86] drm/i915/dgfx: Enable d3cold at s2idle
     - drm/display/dp: Fix the DP DSC Receiver cap size
     - [x86] fpu: Invalidate FPU state correctly on exec()
     - [x86] fpu: Set X86_FEATURE_OSXSAVE feature after enabling OSXSAVE in CR4
       (Closes: #1050622)
     - hwmon: (aquacomputer_d5next) Add selective 200ms delay after sending ctrl
       report
     - nfs: use vfs setgid helper
     - nfsd: use vfs setgid helper
     - cgroup/cpuset: Rename functions dealing with DEADLINE accounting
     - sched/cpuset: Bring back cpuset_mutex
     - sched/cpuset: Keep track of SCHED_DEADLINE task in cpusets
     - cgroup/cpuset: Iterate only if DEADLINE tasks are present
     - sched/deadline: Create DL BW alloc, free & check overflow interface
     - cgroup/cpuset: Free DL BW in case can_attach() fails
     - [x86] thunderbolt: Fix Thunderbolt 3 display flickering issue on 2nd hot
       plug onwards
     - can: raw: add missing refcount for memory leak fix
     - madvise:madvise_free_pte_range(): don't use mapcount() against large folio
       for sharing check
     - scsi: snic: Fix double free in snic_tgt_create()
     - scsi: core: raid_class: Remove raid_component_add()
     - clk: Fix undefined reference to `clk_rate_exclusive_{get,put}'
     - dma-buf/sw_sync: Avoid recursive lock during fence signal
     - gpio: sim: dispose of irq mappings before destroying the irq_sim domain
     - gpio: sim: pass the GPIO device's software node to irq domain
     - [x86] ASoC: amd: yc: Fix a non-functional mic on Lenovo 82SJ
     - maple_tree: disable mas_wr_append() when other readers are possible
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.51
     - ACPI: thermal: Drop nocrt parameter
     - module: Expose module_init_layout_section()
     - [arm64] module-plts: inline linux/moduleloader.h
     - [arm64] module: Use module_init_layout_section() to spot init sections
     - [armel,armhf] module: Use module_init_layout_section() to spot init
       sections
     - [x86] thunderbolt: Fix a backport error for display flickering issue
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.52
     - erofs: ensure that the post-EOF tails are all zeroed
     - ksmbd: fix wrong DataOffset validation of create context
     - ksmbd: fix slub overflow in ksmbd_decode_ntlmssp_auth_blob()
     - ksmbd: replace one-element array with flex-array member in struct
       smb2_ea_info
     - ksmbd: reduce descriptor size if remaining bytes is less than request size
     - [arm64] net: enetc: use EXPORT_SYMBOL_GPL for enetc_phc_index
     - modules: only allow symbol_get of EXPORT_SYMBOL_GPL modules
     - USB: serial: option: add Quectel EM05G variant (0x030e)
     - USB: serial: option: add FOXCONN T99W368/T99W373 product
     - ALSA: usb-audio: Fix init call orders for UAC1
     - [arm64,armhf] usb: dwc3: meson-g12a: do post init to fix broken usb after
       resumption
     - [arm64,armhf] usb: chipidea: imx: improve logic if samsung,picophy-*
       parameter is 0
     - HID: wacom: remove the battery when the EKR is off
     - staging: rtl8712: fix race condition
     - Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race
       condition (CVE-2023-1989)
     - wifi: mt76: mt7921: do not support one stream on secondary antenna only
     - wifi: mt76: mt7921: fix skb leak by txs missing in AMSDU
     - [arm64] serial: qcom-geni: fix opp vote on shutdown
     - firmware: stratix10-svc: Fix an NULL vs IS_ERR() bug in probe
     - tcpm: Avoid soft reset when partner does not support get_status
     - dt-bindings: sc16is7xx: Add property to change GPIO function
     - nilfs2: fix general protection fault in nilfs_lookup_dirty_data_buffers()
     - nilfs2: fix WARNING in mark_buffer_dirty due to discarded buffer reuse
     - [arm64] usb: typec: tcpci: clear the fault status bit
     - pinctrl: amd: Don't show `Invalid config param` errors
 .
   [ Salvatore Bonaccorso ]
   * drivers/ptp: Make PTP_1588_CLOCK builtin (except armel/marvell)
     (Closes: #1036744)
   * [rt] Refresh "serial: 8250: implement write_atomic"
   * Bump ABI to 12
   * [rt] Update to 6.1.46-rt13
   * [rt] Refresh "net: Remove the obsolte u64_stats_fetch_*_irq() users (net)."
   * [x86] tpm: Enable hwrng only for Pluton on AMD CPUs
linux-signed-arm64 (6.1.38+4) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.38-4
 .
   * Fix "init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()"
     backport
linux-signed-arm64 (6.1.38+4~bpo11+1) bullseye-backports; urgency=medium
 .
   * Sign kernel from linux 6.1.38-4~bpo11+1
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.11
linux-signed-arm64 (6.1.38+2) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.38-2
 .
   * [x86] cpu/amd: Move the errata checking functionality up
   * [x86] cpu/amd: Add a Zenbleed fix (CVE-2023-20593)

linux-signed-i386 (6.1.55+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.55-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.53
     - Revert "bridge: Add extack warning when enabling STP in netns."
     - Partially revert "drm/amd/display: Fix possible underflow for displays
       with large vblank"
     - scsi: ufs: Try harder to change the power mode
     - Revert "Revert drm/amd/display: Enable Freesync Video Mode by default"
     - ALSA: hda/realtek: Enable 4 amplifiers instead of 2 on a HP platform
     - [powerpc*] boot: Disable power10 features after BOOTAFLAGS assignment
     - media: uapi: HEVC: Add num_delta_pocs_of_ref_rps_idx field
     - 9p: virtio: fix unlikely null pointer deref in handle_rerror
     - 9p: virtio: make sure 'offs' is initialized in zc_request
     - ksmbd: fix out of bounds in smb3_decrypt_req()
     - ksmbd: validate session id and tree id in compound request
     - ksmbd: no response from compound read
     - ksmbd: fix out of bounds in init_smb2_rsp_hdr()
     - ASoC: da7219: Flush pending AAD IRQ when suspending
     - ASoC: da7219: Check for failure reading AAD IRQ events
     - [x86] ASoC: nau8821: Add DMI quirk mechanism for active-high jack-detect
     - ethernet: atheros: fix return value check in atl1c_tso_csum()
     - [s390x] dasd: use correct number of retries for ERP requests
     - [s390x] dasd: fix hanging device after request requeue
     - fs/nls: make load_nls() take a const parameter
     - ASoC: rt5682-sdw: fix for JD event handling in ClockStop Mode0
     - ASoc: codecs: ES8316: Fix DMIC config
     - ASoC: rt711: fix for JD event handling in ClockStop Mode0
     - ASoC: rt711-sdca: fix for JD event handling in ClockStop Mode0
     - ASoC: atmel: Fix the 8K sample parameter in I2SC master
     - ALSA: usb-audio: Add quirk for Microsoft Modern Wireless Headset
     - [x86] platform/x86: intel: hid: Always call BTNL ACPI method
     - [x86] platform/x86/intel/hid: Add HP Dragonfly G2 to VGBS DMI quirks
     - [x86] platform/x86: think-lmi: Use kfree_sensitive instead of kfree
     - [x86] platform/x86: asus-wmi: Fix setting RGB mode on some TUF laptops
     - [x86] platform/x86: huawei-wmi: Silence ambient light sensor
     - drm/amd/smu: use AverageGfxclkFrequency* to replace previous GFX Curr
       Clock
     - drm/amd/display: Guard DCN31 PHYD32CLK logic against chip family
     - drm/amd/display: Exit idle optimizations before attempt to access PHY
     - ovl: Always reevaluate the file signature for IMA
     - ALSA: usb-audio: Update for native DSD support quirks
     - security: keys: perform capable check only on privileged operations
     - kprobes: Prohibit probing on CFI preamble symbol
     - clk: fixed-mmio: make COMMON_CLK_FIXED_MMIO depend on HAS_IOMEM
     - Revert "wifi: ath6k: silence false positive -Wno-dangling-pointer warning
       on GCC 12"
     - net: dsa: microchip: KSZ9477 register regmap alignment to 32 bit
       boundaries
     - net: annotate data-races around sk->sk_{rcv|snd}timeo
     - net: usb: qmi_wwan: add Quectel EM05GV2
     - wifi: brcmfmac: Fix field-spanning write in brcmf_scan_params_v2_to_v1()
     - [powerpc*] powermac: Use early_* IO variants in via_calibrate_decr()
     - [x86] platform/x86/amd/pmf: Fix unsigned comparison with less than zero
     - scsi: lpfc: Remove reftag check in DIF paths
     - scsi: qedi: Fix potential deadlock on &qedi_percpu->p_work_lock
     - [arm64] net: hns3: restore user pause configure when disable autoneg
     - drm/amdgpu: Match against exact bootloader status
     - wifi: cfg80211: remove links only on AP
     - wifi: mac80211: Use active_links instead of valid_links in Tx
     - netlabel: fix shift wrapping bug in netlbl_catmap_setlong()
     - bnx2x: fix page fault following EEH recovery
     - cifs: fix sockaddr comparison in iface_cmp
     - cifs: fix max_credits implementation
     - sctp: handle invalid error codes without calling BUG()
     - scsi: aacraid: Reply queue mapping to CPUs based on IRQ affinity
     - scsi: storvsc: Always set no_report_opcodes
     - scsi: lpfc: Fix incorrect big endian type assignment in bsg loopback path
     - ALSA: seq: oss: Fix racy open/close of MIDI devices
     - net: sfp: handle 100G/25G active optical cables in sfp_parse_support
     - tracing: Introduce pipe_cpumask to avoid race on trace_pipes
     - of: property: Simplify of_link_to_phandle()
     - [x86] cpufreq: intel_pstate: set stale CPU frequency to minimum
     - crypto: rsa-pkcs1pad - Use helper to set reqsize
     - [x86] KVM: x86/mmu: Use kstrtobool() instead of strtobool()
     - [x86] KVM: x86/mmu: Add "never" option to allow sticky disabling of
       nx_huge_pages
     - net: Avoid address overwrite in kernel_connect
     - drm/amd/display: ensure async flips are only accepted for fast updates
     - udf: Check consistency of Space Bitmap Descriptor
     - udf: Handle error when adding extent to a file
     - Input: i8042 - add quirk for TUXEDO Gemini 17 Gen1/Clevo PD70PN
     - Revert "net: macsec: preserve ingress frame ordering"
     - reiserfs: Check the return value from __getblk()
     - eventfd: prevent underflow for eventfd semaphores
     - fs: Fix error checking for d_hash_and_lookup()
     - iomap: Remove large folio handling in iomap_invalidate_folio()
     - tmpfs: verify {g,u}id mount options correctly
     - vfs, security: Fix automount superblock LSM init problem, preventing NFS
       sb sharing
     - [armel,armhf] ptrace: Restore syscall restart tracing
     - [armel,armhf] ptrace: Restore syscall skipping for tracers
     - OPP: Fix passing 0 to PTR_ERR in _opp_attach_genpd()
     - [arm64] ptrace: Clean up error handling path in sve_set_common()
     - sched/psi: Select KERNFS as needed
     - [x86] decompressor: Don't rely on upper 32 bits of GPRs being preserved
     - [arm64] sme: Don't use streaming mode to probe the maximum SME VL
     - [arm64] fpsimd: Only provide the length to cpufeature for xCR registers
     - sched/rt: Fix sysctl_sched_rr_timeslice intial value
     - perf/imx_ddr: don't enable counter0 if none of 4 counters are used
     - [s390x] pkey: fix/harmonize internal keyblob headers
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling in PKEY_GENSECK2 IOCTL
     - [s390x] pkey: fix PKEY_TYPE_EP11_AES handling for sysfs attributes
     - [s390x] paes: fix PKEY_TYPE_EP11_AES handling for secure keyblobs
     - [x86] ACPI: x86: s2idle: Post-increment variables when getting constraints
     - [x86] ACPI: x86: s2idle: Fix a logic error parsing AMD constraints table
     - thermal/of: Fix potential uninitialized value access
     - cpufreq: amd-pstate-ut: Remove module parameter access
     - cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver
     - [x86] efistub: Fix PCI ROM preservation in mixed mode
     - [x86] cpufreq: powernow-k8: Use related_cpus instead of cpus in
       driver.exit()
     - bpftool: use a local copy of perf_event to fix accessing :: Bpf_cookie
     - bpftool: Define a local bpf_perf_link to fix accessing its fields
     - bpftool: Use a local copy of BPF_LINK_TYPE_PERF_EVENT in pid_iter.bpf.c
     - bpftool: Use a local bpf_perf_event_value to fix accessing its fields
     - bpf: Clear the probe_addr for uprobe
     - bpf: Fix an error in verifying a field in a union
     - tcp: tcp_enter_quickack_mode() should be static
     - regmap: rbtree: Use alloc_flags for memory allocations
     - wifi: rtw89: debug: Fix error handling in
       rtw89_debug_priv_btc_manual_set()
     - wifi: mt76: mt7921: fix non-PSC channel scan fail
     - udp: re-score reuseport groups when connected sockets are present
     - bpf: reject unhashed sockets in bpf_sk_assign
     - wifi: mt76: testmode: add nla_policy for MT76_TM_ATTR_TX_LENGTH
     - [arm64,armhf] spi: tegra20-sflash: fix to check return value of
       platform_get_irq() in tegra_sflash_probe()
     - can: gs_usb: gs_usb_receive_bulk_callback(): count RX overflow errors also
       in case of OOM
     - wifi: mt76: mt7915: fix power-limits while chan_switch
     - wifi: mwifiex: Fix OOB and integer underflow when rx packets
     - wifi: mwifiex: fix error recovery in PCIE buffer descriptor management
     - crypto: api - Use work queue in crypto_destroy_instance
     - Bluetooth: nokia: fix value check in nokia_bluetooth_serdev_probe()
     - Bluetooth: Fix potential use-after-free when clear keys
     - Bluetooth: hci_sync: Don't double print name in add/remove adv_monitor
     - Bluetooth: hci_sync: Avoid use-after-free in dbg for hci_add_adv_monitor()
     - net: tcp: fix unexcepted socket die when snd_wnd is 0
     - net-memcg: Fix scope of sockmem pressure indicators
     - ice: ice_aq_check_events: fix off-by-one check when filling buffer
     - [arm64,armhf] crypto: caam - fix unchecked return value error
     - [arm64,armhf] hwrng: iproc-rng200 - Implement suspend and resume calls
     - lwt: Fix return values of BPF xmit ops
     - lwt: Check LWTUNNEL_XMIT_CONTINUE strictly
     - fs: ocfs2: namei: check return value of ocfs2_add_entry()
     - net: annotate data-races around sk->sk_lingertime
     - wifi: mwifiex: fix memory leak in mwifiex_histogram_read()
     - wifi: mwifiex: Fix missed return in oob checks failed path
     - wifi: ath9k: fix races between ath9k_wmi_cmd and ath9k_wmi_ctrl_rx
     - wifi: ath9k: protect WMI command response buffer replacement with a lock
     - wifi: nl80211/cfg80211: add forgotten nla_policy for BSS color attribute
     - mac80211: make ieee80211_tx_info padding explicit
     - wifi: mwifiex: avoid possible NULL skb pointer dereference
     - Bluetooth: btusb: Do not call kfree_skb() under spin_lock_irqsave()
     - [arm64] mm: use ptep_clear() instead of pte_clear() in clear_flush()
     - wifi: ath9k: use IS_ERR() with debugfs_create_dir()
     - ice: avoid executing commands on other ports when driving sync
     - net: arcnet: Do not call kfree_skb() under local_irq_disable()
     - mlxsw: i2c: Fix chunk size setting in output mailbox buffer
     - mlxsw: i2c: Limit single transaction buffer size
     - mlxsw: core_hwmon: Adjust module label names based on MTCAP sensor counter
     - sfc: Check firmware supports Ethernet PTP filter
     - net/sched: sch_hfsc: Ensure inner classes have fsc curve (CVE-2023-4623)
     - netrom: Deny concurrent connect().
     - quota: factor out dquot_write_dquot()
     - quota: rename dquot_active() to inode_quota_active()
     - quota: add new helper dquot_active()
     - quota: fix dqput() to follow the guarantees dquot_srcu should provide
     - drm/amd/display: Do not set drr on pipe commit
     - [arm64] dts: qcom: sm6350: Fix ZAP region
     - [arm64] dts: qcom: sm8250: correct dynamic power coefficients
     - [arm64] dts: qcom: msm8916-l8150: correct light sensor VDDIO supply
     - [arm64] dts: qcom: sm8250-edo: Add gpio line names for TLMM
     - [arm64] dts: qcom: sm8250-edo: Add GPIO line names for PMIC GPIOs
     - [arm64] dts: qcom: sm8250-edo: Rectify gpio-keys
     - [arm64] dts: qcom: sc8280xp-crd: Correct vreg_misc_3p3 GPIO
     - [arm64] dts: qcom: sc8280xp: Add missing SCM interconnect
     - [arm64] dts: qcom: msm8996: Add missing interrupt to the USB2 controller
     - [arm64] dts: qcom: sdm845-tama: Set serial indices and stdout-path
     - [arm64] dts: qcom: sm8350: Fix CPU idle state residency times
     - [arm64] dts: qcom: sm8350: Add missing LMH interrupts to cpufreq
     - [arm64] dts: qcom: sm8350: Use proper CPU compatibles
     - [arm64] dts: qcom: pm8350: fix thermal zone name
     - [arm64] dts: qcom: pm8350b: fix thermal zone name
     - [arm64] dts: qcom: pmr735b: fix thermal zone name
     - [arm64] dts: qcom: pmk8350: fix ADC-TM compatible string
     - [arm64] dts: qcom: sm8250: Mark PCIe hosts as DMA coherent
     - [armhf] dts: stm32: Rename mdio0 to mdio
     - [armhf] dts: stm32: YAML validation fails for Argon Boards
     - [armhf] dts: stm32: adopt generic iio bindings for adc channels on
       emstamp-argon
     - [armhf] dts: stm32: Add missing detach mailbox for emtrion emSBC-Argon
     - [armhf] dts: stm32: YAML validation fails for Odyssey Boards
     - [armhf] dts: stm32: Add missing detach mailbox for Odyssey SoM
     - [armhf] dts: stm32: Update to generic ADC channel binding on DHSOM systems
     - [armhf] dts: stm32: Add missing detach mailbox for DHCOM SoM
     - [arm64] firmware: ti_sci: Use system_state to determine polling
     - drm/amdgpu: avoid integer overflow warning in
       amdgpu_device_resize_fb_bar()
     - [arm64] tegra: Fix HSUART for Jetson AGX Orin
     - [arm64] dts: qcom: sm8250-sony-xperia: correct GPIO keys wakeup again
     - [arm64] dts: qcom: pm6150l: Add missing short interrupt
     - [arm64] dts: qcom: pm660l: Add missing short interrupt
     - [arm64] dts: qcom: pmi8994: Add missing OVP interrupt
     - [arm64] tegra: Fix HSUART for Smaug
     - [arm64,armhf] drm/etnaviv: fix dumping of active MMU context
     - block: cleanup queue_wc_store
     - block: don't allow enabling a cache on devices that don't support it
     - [x86] mm: Fix PAT bit missing from page protection modify mask
     - [arm64] drm: adv7511: Fix low refresh rate register for ADV7533/5
     - drm/amdgpu: Update min() to min_t() in 'amdgpu_info_ioctl'
     - md: Factor out is_md_suspended helper
     - md: Change active_io to percpu
     - md: restore 'noio_flag' for the last mddev_resume()
     - md/raid10: factor out dereference_rdev_and_rrdev()
     - md/raid10: use dereference_rdev_and_rrdev() to get devices
     - md/md-bitmap: remove unnecessary local variable in backlog_store()
     - md/md-bitmap: hold 'reconfig_mutex' in backlog_store()
     - [arm64] drm/msm: Update dev core dump to not print backwards
     - [arm64,armhf] drm/tegra: dpaux: Fix incorrect return value of
       platform_get_irq
     - [arm64] dts: qcom: sm8150: Fix the I2C7 interrupt
     - [armhf] drm/armada: Fix off-by-one error in armada_overlay_get_property()
     - drm/repaper: Reduce temporary buffer size in repaper_fb_dirty()
     - drm/panel: simple: Add missing connector type and pixel format for AUO
       T215HVN01
     - ima: Remove deprecated IMA_TRUSTED_KEYRING Kconfig
     - [arm64] drm/msm/mdp5: Don't leak some plane state
     - [arm64] firmware: meson_sm: fix to avoid potential NULL pointer
       dereference
     - [arm64] drm/msm/dpu: fix the irq index in
       dpu_encoder_phys_wb_wait_for_commit_done
     - smackfs: Prevent underflow in smk_set_cipso()
     - drm/amd/pm: fix variable dereferenced issue in amdgpu_device_attr_create()
     - [arm64] drm/msm/a2xx: Call adreno_gpu_init() earlier
     - audit: fix possible soft lockup in __audit_inode_child()
     - block/mq-deadline: use correct way to throttling write requests
     - io_uring: fix drain stalls by invalid SQE
     - [armhf] bus: ti-sysc: Fix cast to enum warning
     - md/raid5-cache: fix a deadlock in r5l_exit_log()
     - md/raid5-cache: fix null-ptr-deref for r5l_flush_stripe_to_raid()
     - firmware: cs_dsp: Fix new control name check
     - md: add error_handlers for raid0 and linear
     - md/raid0: Factor out helper for mapping and submitting a bio
     - md/raid0: Fix performance regression for large sequential writes
     - md: raid0: account for split bio in iostat accounting
     - of: overlay: Call of_changeset_init() early
     - ALSA: ac97: Fix possible error value of *rac97
     - ipmi:ssif: Add check for kstrdup
     - ipmi:ssif: Fix a memory leak when scanning for an adapter
     - PCI/DOE: Fix destroy_work_on_stack() race
     - [arm64,armhf] clk: sunxi-ng: Modify mismatched function name
     - [amd64] EDAC/igen6: Fix the issue of no error events
     - ext4: correct grp validation in ext4_mb_good_group
     - ext4: avoid potential data overflow in next_linear_group
     - kvm/vfio: Prepare for accepting vfio device fd
     - kvm/vfio: ensure kvg instance stays around in kvm_vfio_group_add()
     - PCI: microchip: Correct the DED and SEC interrupt bit offsets
     - PCI: Mark NVIDIA T4 GPUs to avoid bus reset
     - [armhf] pinctrl: mcp23s08: check return value of devm_kasprintf()
     - PCI: Allow drivers to request exclusive config regions
     - PCI: Add locking to RMW PCI Express Capability Register accessors
     - PCI: pciehp: Use RMW accessors for changing LNKCTL
     - PCI/ASPM: Use RMW accessors for changing LNKCTL
     - [powerpc*] radix: Move some functions into #ifdef
       CONFIG_KVM_BOOK3S_HV_POSSIBLE
     - vfio/type1: fix cap_migration information leak
     - [amd64,arm64] nvdimm: Fix memleak of pmu attr_groups in
       unregister_nvdimm_pmu()
     - [arm64,arm64] nvdimm: Fix dereference after free in register_nvdimm_pmu()
     - [powerpc*] fadump: reset dump area size if fadump memory reserve fails
     - [powerpc*] perf: Convert fsl_emb notifier to state machine callbacks
     - drm/amdgpu: Use RMW accessors for changing LNKCTL
     - drm/radeon: Use RMW accessors for changing LNKCTL
     - net/mlx5: Use RMW accessors for changing LNKCTL
     - wifi: ath11k: Use RMW accessors for changing LNKCTL
     - wifi: ath10k: Use RMW accessors for changing LNKCTL
     - NFSv4.2: Rework scratch handling for READ_PLUS
     - NFSv4.2: Fix READ_PLUS smatch warnings
     - NFSv4.2: Fix up READ_PLUS alignment
     - NFSv4.2: Fix READ_PLUS size calculations
     - [powerpc*] Don't include lppaca.h in paca.h
     - [powerpc*] pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT
     - nfs/blocklayout: Use the passed in gfp flags
     - [powerpc*] pseries: Fix hcall tracepoints with JUMP_LABEL=n
     - [powerpc*] mpc5xxx: Add missing fwnode_handle_put()
     - [powerpc*] iommu: Fix notifiers being shared by PCI and VIO buses
     - ext4: fix unttached inode after power cut with orphan file feature enabled
     - jfs: validate max amount of blocks before allocation.
     - fs: lockd: avoid possible wrong NULL parameter
     - NFSD: da_addr_body field missing in some GETDEVICEINFO replies
     - NFS: Guard against READDIR loop when entry names exceed MAXNAMELEN
     - NFSv4.2: fix handling of COPY ERR_OFFLOAD_NO_REQ
     - pNFS: Fix assignment of xprtdata.cred
     - cgroup/cpuset: Inherit parent's load balance state in v2
     - RDMA/qedr: Remove a duplicate assignment in irdma_query_ah()
     - media: ov5640: fix low resolution image abnormal issue
     - media: ad5820: Drop unsupported ad5823 from i2c_ and of_device_id tables
     - media: i2c: tvp5150: check return value of devm_kasprintf()
     - media: v4l2-core: Fix a potential resource leak in
       v4l2_fwnode_parse_link()
     - [amd64] iommu/amd/iommu_v2: Fix pasid_state refcount dec hit 0 warning on
       pasid unbind
     - [arm64,armhf] iommu: rockchip: Fix directory table address encoding
     - drivers: usb: smsusb: fix error handling code in smsusb_init_device
     - media: dib7000p: Fix potential division by zero
     - media: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer()
     - media: cx24120: Add retval check for cx24120_message_send()
     - RDMA/siw: Fabricate a GID on tun and loopback devices
     - [arm64] scsi: hisi_sas: Fix warnings detected by sparse
     - [arm64] scsi: hisi_sas: Fix normally completed I/O analysed as failed
     - dt-bindings: extcon: maxim,max77843: restrict connector properties
     - media: rkvdec: increase max supported height for H.264
     - usb: phy: mxs: fix getting wrong state with mxs_phy_is_otg_host()
     - scsi: RDMA/srp: Fix residual handling
     - scsi: iscsi: Rename iscsi_set_param() to iscsi_if_set_param()
     - scsi: iscsi: Add length check for nlattr payload
     - scsi: iscsi: Add strlen() check in iscsi_if_set{_host}_param()
     - scsi: be2iscsi: Add length check when parsing nlattrs
     - scsi: qla4xxx: Add length check when parsing nlattrs
     - serial: sprd: Assign sprd_port after initialized to avoid wrong access
     - serial: sprd: Fix DMA buffer leak issue
     - [x86] APM: drop the duplicate APM_MINOR_DEV macro
     - RDMA/rxe: Split rxe_run_task() into two subroutines
     - RDMA/rxe: Fix incomplete state save in rxe_requester
     - scsi: qedf: Do not touch __user pointer in
       qedf_dbg_stop_io_on_error_cmd_read() directly
     - scsi: qedf: Do not touch __user pointer in qedf_dbg_debug_cmd_read()
       directly
     - scsi: qedf: Do not touch __user pointer in qedf_dbg_fp_int_cmd_read()
       directly
     - RDMA/irdma: Replace one-element array with flexible-array member
     - [arm64] coresight: tmc: Explicit type conversions to prevent integer
       overflow
     - interconnect: qcom: qcm2290: Enable sync state
     - dma-buf/sync_file: Fix docs syntax
     - driver core: test_async: fix an error code
     - driver core: Call dma_cleanup() on the test_remove path
     - kernfs: add stub helper for kernfs_generic_poll()
     - extcon: cht_wc: add POWER_SUPPLY dependency
     - iommu/sprd: Add missing force_aperture
     - [arm64] RDMA/hns: Fix port active speed
     - [arm64] RDMA/hns: Fix incorrect post-send with direct wqe of wr-list
     - [arm64] RDMA/hns: Fix inaccurate error label name in init instance
     - [arm64] RDMA/hns: Fix CQ and QP cache affinity
     - IB/uverbs: Fix an potential error pointer dereference
     - fsi: aspeed: Reset master errors after CFAM reset
     - [amd64] iommu/vt-d: Fix to flush cache of PASID directory table
     - [x86] platform/x86: dell-sysman: Fix reference leak
     - media: cec: core: add adap_nb_transmit_canceled() callback
     - media: cec: core: add adap_unconfigured() callback
     - media: go7007: Remove redundant if statement
     - media: venus: hfi_venus: Only consider sys_idle_indicator on V1
     - docs: ABI: fix spelling/grammar in SBEFIFO timeout interface
     - USB: gadget: core: Add missing kerneldoc for vbus_work
     - USB: gadget: f_mass_storage: Fix unused variable warning
     - drivers: base: Free devm resources when unregistering a device
     - HID: input: Support devices sending Eraser without Invert
     - media: ov5640: Enable MIPI interface in ov5640_set_power_mipi()
     - media: ov5640: Fix initial RESETB state and annotate timings
     - media: i2c: ov2680: Set V4L2_CTRL_FLAG_MODIFY_LAYOUT on flips
     - media: ov2680: Remove auto-gain and auto-exposure controls
     - media: ov2680: Fix ov2680_bayer_order()
     - media: ov2680: Fix vflip / hflip set functions
     - media: ov2680: Remove VIDEO_V4L2_SUBDEV_API ifdef-s
     - media: ov2680: Don't take the lock for try_fmt calls
     - media: ov2680: Add ov2680_fill_format() helper function
     - media: ov2680: Fix ov2680_set_fmt() which == V4L2_SUBDEV_FORMAT_TRY not
       working
     - media: ov2680: Fix regulators being left enabled on ov2680_power_on()
       errors
     - media: i2c: rdacm21: Fix uninitialized value
     - f2fs: fix to avoid mmap vs set_compress_option case
     - f2fs: judge whether discard_unit is section only when have
       CONFIG_BLK_DEV_ZONED
     - f2fs: Only lfs mode is allowed with zoned block device feature
     - Revert "f2fs: fix to do sanity check on extent cache correctly"
     - cgroup:namespace: Remove unused cgroup_namespaces_init()
     - [arm64] coresight: trbe: Fix TRBE potential sleep in atomic context
     - RDMA/irdma: Prevent zero-length STAG registration (CVE-2023-25775)
     - scsi: core: Use 32-bit hostnum in scsi_host_lookup()
     - scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock
     - [arm64,armhf] serial: tegra: handle clk prepare error in
       tegra_uart_hw_init()
     - [arm64,armhf] amba: bus: fix refcount leak
     - Revert "IB/isert: Fix incorrect release of isert connection"
     - RDMA/siw: Balance the reference of cep->kref in the error path
     - RDMA/siw: Correct wrong debug message
     - RDMA/efa: Fix wrong resources deallocation order
     - HID: logitech-dj: Fix error handling in logi_dj_recv_switch_to_dj_mode()
     - HID: uclogic: Correct devm device reference for hidinput input_dev name
     - HID: multitouch: Correct devm device reference for hidinput input_dev name
     - [x86] platform/x86/amd/pmf: Fix a missing cleanup path
     - tick/rcu: Fix false positive "softirq work is pending" messages
     - [x86] speculation: Mark all Skylake CPUs as vulnerable to GDS
     - tracing: Remove extra space at the end of hwlat_detector/mode
     - tracing: Fix race issue between cpu buffer write and swap
     - mtd: rawnand: brcmnand: Fix mtd oobsize
     - dmaengine: idxd: Modify the dependence of attribute pasid_enabled
     - [arm64,armhf] phy/rockchip: inno-hdmi: use correct vco_div_5 macro on
       rk3328
     - [arm64,armhf] phy/rockchip: inno-hdmi: round fractal pixclock in rk3328
       recalc_rate
     - [arm64,armhf] phy/rockchip: inno-hdmi: do not power on rk3328 post pll on
       reg write
     - rpmsg: glink: Add check for kstrdup
     - leds: pwm: Fix error code in led_pwm_create_fwnode()
     - leds: multicolor: Use rounded division when calculating color components
     - leds: Fix BUG_ON check for LED_COLOR_ID_MULTI that is always false
     - leds: trigger: tty: Do not use LED_ON/OFF constants, use
       led_blink_set_oneshot instead
     - mtd: spi-nor: Check bus width while setting QE bit
     - mtd: rawnand: fsmc: handle clk prepare error in fsmc_nand_resume()
     - dmaengine: ste_dma40: Add missing IRQ check in d40_probe
     - Drivers: hv: vmbus: Don't dereference ACPI root object handle
     - cpufreq: Fix the race condition while updating the transition_task of
       policy
     - virtio_ring: fix avail_wrap_counter in virtqueue_add_packed
     - igmp: limit igmpv3_newpack() packet size to IP_MAX_MTU (CVE-2023-42752)
     - netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for
       ip_set_hash_netportnet.c (CVE-2023-42753)
     - netfilter: nft_exthdr: Fix non-linear header modification
     - netfilter: xt_u32: validate user space input
     - netfilter: xt_sctp: validate the flag_info count
     - skbuff: skb_segment, Call zero copy functions before using skbuff frags
     - igb: set max size RX buffer when store bad packet is enabled
     - PM / devfreq: Fix leak in devfreq_dev_release()
     - ALSA: pcm: Fix missing fixup call in compat hw_refine ioctl
     - rcu: dump vmalloc memory info safely
     - printk: ringbuffer: Fix truncating buffer size min_t cast
     - scsi: core: Fix the scsi_set_resid() documentation
     - mm/vmalloc: add a safer version of find_vm_area() for debug
     - cpu/hotplug: Prevent self deadlock on CPU hot-unplug
     - media: i2c: ccs: Check rules is non-NULL
     - media: i2c: Add a camera sensor top level menu
     - PCI: rockchip: Use 64-bit mask on MSI 64-bit PCI address
     - ipmi_si: fix a memleak in try_smi_init()
     - [armhf] OMAP2+: Fix -Warray-bounds warning in _pwrdm_state_switch()
     - XArray: Do not return sibling entries from xa_load() (Closes: #1053120)
     - io_uring: break iopolling on signal
     - backlight/gpio_backlight: Compare against struct fb_info.device
     - backlight/bd6107: Compare against struct fb_info.device
     - backlight/lv5207lp: Compare against struct fb_info.device
     - drm/amd/display: register edp_backlight_control() for DCN301
     - i3c: master: svc: fix probe failure when no i3c device exist
     - [arm64] csum: Fix OoB access in IP checksum code for negative lengths
     - ALSA: hda/cirrus: Fix broken audio on hardware with two CS42L42 codecs.
     - media: dvb: symbol fixup for dvb_attach() (Closes: #1051613)
     - media: venus: hfi_venus: Write to VIDC_CTRL_INIT after unmasking
       interrupts
     - Revert "scsi: qla2xxx: Fix buffer overrun"
     - scsi: mpt3sas: Perform additional retries if doorbell read returns 0
     - PCI: Free released resource after coalescing
     - PCI: hv: Fix a crash in hv_pci_restore_msi_msg() during hibernation
     - PCI/PM: Only read PCI_PM_CTRL register when available
     - Revert "PCI: Mark NVIDIA T4 GPUs to avoid bus reset"
     - block: don't add or resize partition on the disk with GENHD_FL_NO_PART
     - procfs: block chmod on /proc/thread-self/comm
     - drm/amd/display: Add smu write msg id fail retry process
     - bpf: Fix issue in verifying allow_ptr_leaks
     - dlm: fix plock lookup when using multiple lockspaces
     - dccp: Fix out of bounds access in DCCP error handler
     - [x86] sev: Make enc_dec_hypercall() accept a size instead of npages
     - r8169: fix ASPM-related issues on a number of systems with NIC version
       from RTL8168h
     - X.509: if signature is unsupported skip validation
     - net: handle ARPHRD_PPP in dev_is_mac_header_xmit()
     - fsverity: skip PKCS#7 parser when keyring is empty
     - [x86] MCE: Always save CS register on AMD Zen IF Poison errors
     - platform/chrome: chromeos_acpi: print hex string for ACPI_TYPE_BUFFER
     - [arm64] mmc: renesas_sdhi: register irqs before registering controller
     - pstore/ram: Check start of empty przs during init
     - [arm64] sdei: abort running SDEI handlers during crash
     - [s390x] dcssblk: fix kernel crash with list_add corruption
     - [s390x] ipl: add missing secure/has_secure file to ipl type 'unknown'
     - [s390x] dasd: fix string length handling
     - [armhf] crypto: stm32 - fix loop iterating through scatterlist for DMA
     - cpufreq: brcmstb-avs-cpufreq: Fix -Warray-bounds bug
     - of: property: fw_devlink: Add a devlink for panel followers
     - usb: typec: tcpm: set initial svdm version based on pd revision
     - usb: typec: bus: verify partner exists in typec_altmode_attention
     - USB: core: Unite old scheme and new scheme descriptor reads
     - USB: core: Change usb_get_device_descriptor() API
     - USB: core: Fix race by not overwriting udev->descriptor in hub_port_init()
     - USB: core: Fix oversight in SuperSpeed initialization
     - [x86] sgx: Break up long non-preemptible delays in sgx_vepc_release()
     - [x86] perf/x86/uncore: Correct the number of CHAs on EMR
     - tracing: Zero the pipe cpumask on alloc to avoid spurious -EBUSY
     - Revert "drm/amd/display: Do not set drr on pipe commit"
     - md: Free resources in __md_stop
     - NFSv4.2: Fix a potential double free with READ_PLUS
     - NFSv4.2: Rework scratch handling for READ_PLUS (again)
     - md: fix regression for null-ptr-deference in __md_stop()
     - clk: Mark a fwnode as initialized when using CLK_OF_DECLARE() macro
     - treewide: Fix probing of devices in DT overlays
     - clk: Avoid invalid function names in CLK_OF_DECLARE()
     - udf: initialize newblock to 0
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.54
     - net/ipv6: SKB symmetric hash should incorporate transport ports
     - mm: multi-gen LRU: rename lrugen->lists[] to lrugen->folios[]
     - Multi-gen LRU: fix per-zone reclaim
     - io_uring: always lock in io_apoll_task_func
     - io_uring: revert "io_uring fix multishot accept ordering"
     - io_uring/net: don't overflow multishot accept
     - io_uring: break out of iowq iopoll on teardown
     - io_uring/sqpoll: fix io-wq affinity when IORING_SETUP_SQPOLL is used
     - io_uring: Don't set affinity on a dying sqpoll thread
     - drm/virtio: Conditionally allocate virtio_gpu_fence
     - scsi: qla2xxx: Adjust IOCB resource on qpair create
     - scsi: qla2xxx: Limit TMF to 8 per function
     - scsi: qla2xxx: Fix deletion race condition
     - scsi: qla2xxx: fix inconsistent TMF timeout
     - scsi: qla2xxx: Fix command flush during TMF
     - scsi: qla2xxx: Fix erroneous link up failure
     - scsi: qla2xxx: Turn off noisy message log
     - scsi: qla2xxx: Fix session hang in gnl
     - scsi: qla2xxx: Fix TMF leak through
     - scsi: qla2xxx: Remove unsupported ql2xenabledif option
     - scsi: qla2xxx: Flush mailbox commands on chip reset
     - scsi: qla2xxx: Fix smatch warn for qla_init_iocb_limit()
     - scsi: qla2xxx: Error code did not return to upper layer
     - scsi: qla2xxx: Fix firmware resource tracking
     - null_blk: fix poll request timeout handling
     - drm/ast: Fix DRAM init on AST2200
     - send channel sequence number in SMB3 requests after reconnects
     - memcg: drop kmem.limit_in_bytes
     - mm: hugetlb_vmemmap: fix a race between vmemmap pmd split
     - cifs: update desired access while requesting for directory lease
     - [x86] pinctrl: cherryview: fix address_space_handler() argument
     - dt-bindings: clock: xlnx,versal-clk: drop select:false
     - [arm64,armhf] clk: imx: pll14xx: dynamically configure PLL for
       393216000/361267200Hz
     - [arm64,armhf] clk: imx: pll14xx: align pdiv with reference manual
     - NFS: Fix a potential data corruption
     - NFSv4/pnfs: minor fix for cleanup path in nfs4_get_device_info
     - bus: mhi: host: Skip MHI reset if device is in RDDM
     - net: add SKB_HEAD_ALIGN() helper
     - net: remove osize variable in __alloc_skb()
     - net: factorize code in kmalloc_reserve()
     - net: deal with integer overflows in kmalloc_reserve() (CVE-2023-42752)
     - tpm_crb: Fix an error handling path in crb_acpi_add()
     - gfs2: Switch to wait_event in gfs2_logd
     - gfs2: low-memory forced flush fixes
     - kconfig: fix possible buffer overflow
     - Input: iqs7222 - configure power mode before triggering ATI
     - perf trace: Use zfree() to reduce chances of use after free
     - perf trace: Really free the evsel->priv area
     - backlight: gpio_backlight: Drop output GPIO direction check for initial
       power state
     - Input: tca6416-keypad - always expect proper IRQ number in i2c client
     - Input: tca6416-keypad - fix interrupt enable disbalance
     - perf annotate bpf: Don't enclose non-debug code with an assert()
     - [x86] virt: Drop unnecessary check on extended CPUID level in
       cpu_has_svm()
     - perf vendor events: Update the JSON/events descriptions for power10
       platform
     - perf vendor events: Drop some of the JSON/events for power10 platform
     - perf vendor events: Drop STORES_PER_INST metric event for power10 platform
     - perf top: Don't pass an ERR_PTR() directly to perf_session__delete()
     - watchdog: intel-mid_wdt: add MODULE_ALIAS() to allow auto-load
     - pwm: lpc32xx: Remove handling of PWM channels
     - [x86] drm/i915: mark requests for GuC virtual engines to avoid
       use-after-free
     - blk-throttle: use calculate_io/bytes_allowed() for throtl_trim_slice()
     - blk-throttle: consider 'carryover_ios/bytes' in throtl_trim_slice()
     - cifs: use fs_context for automounts
     - smb: propagate error code of extract_sharename()
     - net/sched: fq_pie: avoid stalls in fq_pie_timer()
     - sctp: annotate data-races around sk->sk_wmem_queued
     - ipv4: annotate data-races around fi->fib_dead
     - net: read sk->sk_family once in sk_mc_loop()
     - net: fib: avoid warn splat in flow dissector
     - xsk: Fix xsk_diag use-after-free error during socket cleanup
     - [x86] drm/i915/gvt: Verify pfn is "valid" before dereferencing "struct
       page"
     - [x86] drm/i915/gvt: Put the page reference obtained by KVM's gfn_to_pfn()
     - [x86] drm/i915/gvt: Drop unused helper intel_vgpu_reset_gtt()
     - net: use sk_forward_alloc_get() in sk_get_meminfo()
     - net: annotate data-races around sk->sk_forward_alloc
     - mptcp: annotate data-races around msk->rmem_fwd_alloc
     - ipv4: ignore dst hint for multipath routes
     - ipv6: ignore dst hint for multipath routes
     - igb: disable virtualization features on 82580
     - gve: fix frag_list chaining
     - veth: Fixing transmit return status for dropped packets
     - net: ipv6/addrconf: avoid integer underflow in ipv6_create_tempaddr
     - net: phy: micrel: Correct bit assignments for phy_device flags
     - bpf, sockmap: Fix skb refcnt race after locking changes
     - af_unix: Fix data-races around user->unix_inflight.
     - af_unix: Fix data-race around unix_tot_inflight.
     - af_unix: Fix data-races around sk->sk_shutdown.
     - af_unix: Fix data race around sk->sk_err.
     - net: sched: sch_qfq: Fix UAF in qfq_dequeue() (CVE-2023-4921)
     - kcm: Destroy mutex in kcm_exit_net()
     - igc: Change IGC_MIN to allow set rx/tx value between 64 and 80
     - igbvf: Change IGBVF_MIN to allow set rx/tx value between 64 and 80
     - igb: Change IGB_MIN to allow set rx/tx value between 64 and 80
     - [s390x] zcrypt: don't leak memory if dev_set_name() fails
     - idr: fix param name in idr_alloc_cyclic() doc
     - ip_tunnels: use DEV_STATS_INC()
     - bpf: Remove prog->active check for bpf_lsm and bpf_iter
     - bpf: Invoke __bpf_prog_exit_sleepable_recur() on recursion in
       kern_sys_bpf().
     - bpf: Assign bpf_tramp_run_ctx::saved_run_ctx before recursion check.
     - netfilter: nftables: exthdr: fix 4-byte stack OOB write
     - netfilter: nfnetlink_osf: avoid OOB read
     - [arm64] net: hns3: fix tx timeout issue
     - [arm64] net: hns3: fix byte order conversion issue in
       hclge_dbg_fd_tcam_read()
     - [arm64] net: hns3: fix debugfs concurrency issue between kfree buffer and
       read
     - [arm64] net: hns3: fix invalid mutex between tc qdisc and dcb ets command
       issue
     - [arm64] net: hns3: fix the port information display when sfp is absent
     - [arm64] net: hns3: remove GSO partial feature bit
     - sh: boards: Fix CEU buffer size passed to dma_declare_coherent_memory()
     - Multi-gen LRU: avoid race in inc_min_seq()
     - net/mlx5: Free IRQ rmap and notifier on kernel shutdown
     - clocksource/drivers/arm_arch_timer: Disable timer before programming CVAL
     - jbd2: fix checkpoint cleanup performance regression
     - jbd2: check 'jh->b_transaction' before removing it from checkpoint
     - jbd2: correct the end of the journal recovery scan range
     - ext4: add correct group descriptors and reserved GDT blocks to system zone
     - ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup}
     - f2fs: flush inode if atomic file is aborted
     - f2fs: avoid false alarm of circular locking
     - hwspinlock: qcom: add missing regmap config for SFPB MMIO implementation
     - ata: ahci: Add Elkhart Lake AHCI controller
     - ata: pata_falcon: fix IO base selection for Q40
     - ata: sata_gemini: Add missing MODULE_DESCRIPTION
     - ata: pata_ftide010: Add missing MODULE_DESCRIPTION
     - fuse: nlookup missing decrement in fuse_direntplus_link
     - btrfs: zoned: do not zone finish data relocation block group
     - btrfs: fix start transaction qgroup rsv double free
     - btrfs: free qgroup rsv on io failure
     - btrfs: don't start transaction when joining with TRANS_JOIN_NOSTART
     - btrfs: set page extent mapped after read_folio in relocate_one_page
     - btrfs: zoned: re-enable metadata over-commit for zoned mode
     - btrfs: use the correct superblock to compare fsid in btrfs_validate_super
     - [arm64] drm/mxsfb: Disable overlay plane in
       mxsfb_plane_overlay_atomic_disable()
     - drm/amd/display: enable cursor degamma for DCN3+ DRM legacy gamma
     - drm/amd/display: prevent potential division by zero errors
     - [x86] KVM: SVM: Take and hold ir_list_lock when updating vCPU's Physical
       ID entry
     - [x86] KVM: SVM: Don't inject #UD if KVM attempts to skip SEV guest insn
     - [x86] KVM: SVM: Get source vCPUs from source VM for SEV-ES intrahost
       migration
     - [x86] KVM: nSVM: Check instead of asserting on nested TSC scaling support
     - [x86] KVM: nSVM: Load L1's TSC multiplier based on L1 state, not L2 state
     - [x86] KVM: SVM: Set target pCPU during IRTE update if target vCPU is
       running
     - [x86] KVM: SVM: Skip VMSA init in sev_es_init_vmcb() if pointer is NULL
     - perf hists browser: Fix hierarchy mode header
     - perf test shell stat_bpf_counters: Fix test on Intel
     - perf tools: Handle old data in PERF_RECORD_ATTR
     - perf hists browser: Fix the number of entries for 'e' key
     - drm/amd/display: always switch off ODM before committing more streams
     - drm/amd/display: Remove wait while locked
     - drm/amdgpu: register a dirty framebuffer callback for fbcon
       (Closes: #1037142)
     - net: ipv4: fix one memleak in __inet_del_ifa()
     - net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in
       smcr_port_add
     - net: stmmac: fix handling of zero coalescing tx-usecs
     - net: ethernet: mvpp2_main: fix possible OOB write in
       mvpp2_ethtool_get_rxnfc()
     - net: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in
       mtk_hwlro_get_fdir_all()
     - hsr: Fix uninit-value access in fill_frame_info()
     - net: ethernet: adi: adin1110: use eth_broadcast_addr() to assign broadcast
       address
     - net:ethernet:adi:adin1110: Fix forwarding offload
     - r8152: check budget for r8152_poll()
     - kcm: Fix memory leak in error path of kcm_sendmsg()
     - net/tls: do not free tls_rec on async operation in bpf_exec_tx_verdict()
     - net: macb: Enable PTP unicast
     - net: macb: fix sleep inside spinlock
     - ipv6: fix ip6_sock_set_addr_preferences() typo
     - ipv6: Remove in6addr_any alternatives.
     - tcp: Factorise sk_family-independent comparison in
       inet_bind2_bucket_match(_addr_any).
     - tcp: Fix bind() regression for v4-mapped-v6 wildcard address.
     - tcp: Fix bind() regression for v4-mapped-v6 non-wildcard address.
     - ixgbe: fix timestamp configuration code
     - kcm: Fix error handling for SOCK_DGRAM in kcm_sendmsg().
     - drm/amd/display: Fix a bug when searching for insert_above_mpcc
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.55
     - autofs: fix memory leak of waitqueues in autofs_catatonic_mode
     - btrfs: output extra debug info if we failed to find an inline backref
     - ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer
     - kernel/fork: beware of __put_task_struct() calling context
     - rcuscale: Move rcu_scale_writer() schedule_timeout_uninterruptible() to
       _idle()
     - [x86] ACPI: video: Add backlight=native DMI quirk for Lenovo Ideapad Z470
     - [arm64] perf/smmuv3: Enable HiSilicon Erratum 162001900 quirk for HIP08/09
     - [amr64] perf/imx_ddr: speed up overflow frequency of cycle
     - hw_breakpoint: fix single-stepping when using bpf_overflow_handler
     - [x86] ACPI: x86: s2idle: Catch multiple ACPI_TYPE_PACKAGE objects
     - devlink: remove reload failed checks in params get/set callbacks
     - crypto: lrw,xts - Replace strlcpy with strscpy
     - ice: Don't tx before switchdev is fully configured
     - wifi: ath9k: fix fortify warnings
     - wifi: ath9k: fix printk specifier
     - wifi: mwifiex: fix fortify warning
     - mt76: mt7921: don't assume adequate headroom for SDIO headers
     - wifi: wil6210: fix fortify warnings
     - [armhf] can: sun4i_can: Add acceptance register quirk
     - [armhf] can: sun4i_can: Add support for the Allwinner D1
     - net: Use sockaddr_storage for getsockopt(SO_PEERNAME).
     - net/ipv4: return the real errno instead of -EINVAL
     - crypto: lib/mpi - avoid null pointer deref in mpi_cmp_ui()
     - Bluetooth: Fix hci_suspend_sync crash
     - netlink: convert nlk->flags to atomic flags
     - tpm_tis: Resend command to recover from data transfer errors
     - [arm64,armhf] mmc: sdhci-esdhc-imx: improve ESDHC_FLAG_ERR010450
     - alx: fix OOB-read compiler warning
     - wifi: mac80211: check S1G action frame size
     - netfilter: ebtables: fix fortify warnings in size_entry_mwt()
     - wifi: cfg80211: reject auth/assoc to AP with our address
     - wifi: cfg80211: ocb: don't leave if not joined
     - wifi: mac80211: check for station first in client probe
     - wifi: mac80211_hwsim: drop short frames
     - drm/bridge: tc358762: Instruct DSI host to generate HSE packets
     - drm/edid: Add quirk for OSVR HDK 2.0
     - [arm64] dts: qcom: sm6125-pdx201: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm6350: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm8150-kumano: correct ramoops pmsg-size
     - [arm64] dts: qcom: sm8250-edo: correct ramoops pmsg-size
     - drm/amd/display: Fix underflow issue on 175hz timing
     - [x86] ASoC: SOF: topology: simplify code to prevent static analysis
       warnings
     - [x86] ASoC: Intel: sof_sdw: Update BT offload config for soundwire config
     - [x86] ALSA: hda: intel-dsp-cfg: add LunarLake support
     - drm/amd/display: Use DTBCLK as refclk instead of DPREFCLK
     - drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN31
     - drm/amd/display: Blocking invalid 420 modes on HDMI TMDS for DCN314
     - [armhf] drm/exynos: fix a possible null-pointer dereference due to data
       race in exynos_drm_crtc_atomic_disable()
     - [armhf] bus: ti-sysc: Configure uart quirks for k3 SoC
     - md: raid1: fix potential OOB in raid1_remove_disk()
     - fs/jfs: prevent double-free in dbUnmount() after failed jfs_remount()
     - jfs: fix invalid free of JFS_IP(ipimap)->i_imap in diUnmount
     - [arm64,armhf] PCI: dwc: Provide deinit callback for i.MX
     - [armel,armhf] 9317/1: kexec: Make smp stop calls asynchronous
     - [powerpc*] pseries: fix possible memory leak in ibmebus_bus_init()
     - PCI: vmd: Disable bridge window for domain reset
     - PCI: fu740: Set the number of MSI vectors
     - media: mdp3: Fix resource leaks in of_find_device_by_node
     - media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer
     - media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer()
     - media: af9005: Fix null-ptr-deref in af9005_i2c_xfer
     - media: anysee: fix null-ptr-deref in anysee_master_xfer
     - media: az6007: Fix null-ptr-deref in az6007_i2c_xfer()
     - media: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer
     - scsi: lpfc: Abort outstanding ELS cmds when mailbox timeout error is
       detected
     - media: tuners: qt1010: replace BUG_ON with a regular error
     - media: pci: cx23885: replace BUG with error return
     - usb: cdns3: Put the cdns set active part outside the spin lock
     - usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc
     - scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()
     - serial: cpm_uart: Avoid suspicious locking
     - misc: open-dice: make OPEN_DICE depend on HAS_IOMEM
     - usb: ehci: add workaround for chipidea PORTSC.PEC bug
     - usb: chipidea: add workaround for chipidea PEC bug
     - media: pci: ipu3-cio2: Initialise timing struct to avoid a compiler
       warning
     - kobject: Add sanity check for kset->kobj.ktype in kset_register()
     - [armhf] interconnect: Fix locking for runpm vs reclaim
     - printk: Keep non-panic-CPUs out of console lock
     - printk: Consolidate console deferred printing
     - dma-buf: Add unlocked variant of attachment-mapping functions
     - misc: fastrpc: Prepare to dynamic dma-buf locking specification
     - misc: fastrpc: Fix incorrect DMA mapping unmap request
     - btrfs: add a helper to read the superblock metadata_uuid
     - btrfs: compare the correct fsid/metadata_uuid in btrfs_validate_super
     - block: factor out a bvec_set_page helper
     - nvmet: use bvec_set_page to initialize bvecs
     - nvmet-tcp: pass iov_len instead of sg->length to bvec_set_page()
     - drm: gm12u320: Fix the timeout usage for usb_bulk_msg()
     - scsi: qla2xxx: Fix NULL vs IS_ERR() bug for debugfs_create_dir()
     - [x86] ibt: Suppress spurious ENDBR
     - scsi: target: core: Fix target_cmd_counter leak
     - scsi: lpfc: Fix the NULL vs IS_ERR() bug for debugfs_create_file()
     - panic: Reenable preemption in WARN slowpath
     - [x86] boot/compressed: Reserve more memory for page tables
     - [x86] purgatory: Remove LTO flags
     - md/raid1: fix error: ISO C90 forbids mixed declarations
     - Revert "SUNRPC: Fail faster on bad verifier"
     - attr: block mode changes of symlinks
     - ovl: fix failed copyup of fileattr on a symlink
     - ovl: fix incorrect fdput() on aio completion
     - io_uring/net: fix iter retargeting for selected buf
     - nvme: avoid bogus CRTO values
     - md: Put the right device in md_seq_next
     - Revert "drm/amd: Disable S/G for APUs when 64GB or more host memory"
     - dm: don't attempt to queue IO under RCU protection
     - btrfs: fix lockdep splat and potential deadlock after failure running
       delayed items
     - btrfs: fix a compilation error if DEBUG is defined in btree_dirty_folio
     - btrfs: release path before inode lookup during the ino lookup ioctl
     - btrfs: check for BTRFS_FS_ERROR in pending ordered assert
     - tracing: Have tracing_max_latency inc the trace array ref count
     - tracing: Have event inject files inc the trace array ref count
     - tracing: Increase trace array ref count on enable and filter files
     - tracing: Have current_trace inc the trace array ref count
     - tracing: Have option files inc the trace array ref count
     - selinux: fix handling of empty opts in selinux_fs_context_submount()
     - nfsd: fix change_info in NFSv4 RENAME replies
     - tracefs: Add missing lockdown check to tracefs_create_dir()
     - [armhf] i2c: aspeed: Reset the i2c controller when timeout occurs
     - ata: libata: disallow dev-initiated LPM transitions to unsupported states
     - ata: libahci: clear pending interrupt status
     - scsi: megaraid_sas: Fix deadlock on firmware crashdump
     - scsi: pm8001: Setup IRQs on resume
     - ext4: fix rec_len verify error
     - drm/amd/display: fix the white screen issue when >= 64GB DRAM
     - Revert "memcg: drop kmem.limit_in_bytes"
     - drm/amdgpu: fix amdgpu_cs_p1_user_fence
     - net/sched: Retire rsvp classifier (CVE-2023-42755)
     - [arm64,armhf] interconnect: Teach lockdep about icc_bw_lock order
 .
   [ Bastian Blank ]
   * Backport changes in Microsoft Azure Network Adapter up to 6.6.
     (closes: #1035378)
 .
   [ Salvatore Bonaccorso ]
   * [armel/marvell] Disable features to shrink kernel image (fixes FTBFS):
     - tcp: Disable MPTCP
     - tracing: Disable FUNCTION_TRACER
   * Bump ABI to 13
   * [rt] Update to 6.1.54-rt15
   * Drop now unknown config options for IPv4 and IPv6 Resource Reservation
     Protocol (RSVP, RSVP6)
   * [rt] Refresh "printk: Bring back the RT bits."
   * [rt] Refresh "printk: avoid preempt_disable() for PREEMPT_RT"
   * [rt] Drop "kernel/fork: beware of __put_task_struct() calling context"
     (applied upstream)
   * netfilter: nf_tables: don't skip expired elements during walk
     (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction API to avoid race with control plane
     (CVE-2023-4244)
   * netfilter: nf_tables: adapt set backend to use GC transaction API
     (CVE-2023-4244)
   * netfilter: nft_set_hash: mark set element as dead when deleting from packet
     path (CVE-2023-4244)
   * netfilter: nf_tables: remove busy mark and gc batch API (CVE-2023-4244)
   * netfilter: nf_tables: don't fail inserts if duplicate has expired
   * netfilter: nf_tables: fix GC transaction races with netns and netlink event
     exit path (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction race with netns dismantle
     (CVE-2023-4244)
   * netfilter: nf_tables: GC transaction race with abort path
   * netfilter: nf_tables: use correct lock to protect gc_list
   * netfilter: nf_tables: defer gc run if previous batch is still pending
   * netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction
   * netfilter: nft_set_rbtree: use read spinlock to avoid datapath contention
   * netfilter: nft_set_pipapo: call nft_trans_gc_queue_sync() in catchall GC
   * netfilter: nft_set_pipapo: stop GC iteration if GC transaction allocation
     fails
   * netfilter: nft_set_hash: try later when GC hits EAGAIN on iteration
   * netfilter: nf_tables: fix memleak when more than 255 elements expired
   * netfilter: nf_tables: disallow element removal on anonymous sets
   * netfilter: conntrack: fix extension size table
   * netfilter, bpf: Adjust timeouts of non-confirmed CTs in
     bpf_ct_insert_entry()
   * netfilter: nf_tables: disable toggling dormant table state more than once
   * netfilter: ipset: Fix race between IPSET_CMD_CREATE and IPSET_CMD_SWAP
     (CVE-2023-42756)
   * misc: rtsx: Fix some platforms can not boot and move the l1ss judgment to
     probe (Closes: #1052063)
   * ipv4: fix null-deref in ipv4_link_failure
 .
   [ Vincent Blut ]
   * drivers/char/hw_random: Change HW_RANDOM from module to built-in
     (Closes: #1041007)
   * drivers/char/tpm: Do not explicitly set HW_RANDOM_TPM
   * [arm64, cloud, x86] drivers/char/tpm: Do not explicitly enable TCG_TPM
   * [arm*,ppc64*,sparc64,s390x] drivers/char/hw_random: Prevent some HW Random
     Number Generator drivers from being built-in
linux-signed-i386 (6.1.52+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.52-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.39
     - fs: pipe: reveal missing function protoypes
     - block: Fix the type of the second bdev_op_is_zoned_write() argument
     - erofs: clean up cached I/O strategies
     - erofs: avoid tagged pointers to mark sync decompression
     - erofs: remove tagged pointer helpers
     - erofs: move zdata.h into zdata.c
     - erofs: kill hooked chains to avoid loops on deduplicated compressed images
     - [x86] resctrl: Only show tasks' pid in current pid namespace
     - blk-iocost: use spin_lock_irqsave in adjust_inuse_and_calc_cost
     - [x86] sev: Fix calculation of end address based on number of pages
     - virt: sevguest: Add CONFIG_CRYPTO dependency
     - blk-mq: fix potential io hang by wrong 'wake_batch'
     - lockd: drop inappropriate svc_get() from locked_get()
     - nvme-core: fix memory leak in dhchap_secret_store
     - nvme-core: fix memory leak in dhchap_ctrl_secret
     - nvme-core: add missing fault-injection cleanup
     - nvme-core: fix dev_pm_qos memleak
     - md/raid10: check slab-out-of-bounds in md_bitmap_get_counter
     - md/raid10: fix overflow of md/safe_mode_delay
     - md/raid10: fix wrong setting of max_corr_read_errors
     - md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request
     - md/raid10: fix io loss while replacement replace rdev
     - md/raid1-10: factor out a helper to add bio to plug
     - md/raid1-10: factor out a helper to submit normal write
     - md/raid1-10: submit write io directly if bitmap is not enabled
     - block: fix blktrace debugfs entries leakage
     - irqchip/stm32-exti: Fix warning on initialized field overwritten
     - irqchip/jcore-aic: Fix missing allocation of IRQ descriptors
     - svcrdma: Prevent page release when nothing was received
     - erofs: simplify iloc()
     - erofs: fix compact 4B support for 16k block size
     - posix-timers: Prevent RT livelock in itimer_delete()
     - tick/rcu: Fix bogus ratelimit condition
     - tracing/timer: Add missing hrtimer modes to decode_hrtimer_mode().
     - clocksource/drivers/cadence-ttc: Fix memory leak in ttc_timer_probe
     - PM: domains: fix integer overflow issues in genpd_parse_state()
     - perf/arm-cmn: Fix DTC reset
     - [x86] mm: Allow guest.enc_status_change_prepare() to fail
     - [x86] tdx: Fix race between set_memory_encrypted() and
       load_unaligned_zeropad()
     - drivers/perf: hisi: Don't migrate perf to the CPU going to teardown
     - powercap: RAPL: Fix CONFIG_IOSF_MBI dependency
     - PM: domains: Move the verification of in-params from genpd_add_device()
     - cpufreq: intel_pstate: Fix energy_performance_preference for passive
     - thermal/drivers/sun8i: Fix some error handling paths in sun8i_ths_probe()
     - rcu: Make rcu_cpu_starting() rely on interrupts being disabled
     - rcu-tasks: Stop rcu_tasks_invoke_cbs() from using never-onlined CPUs
     - rcutorture: Correct name of use_softirq module parameter
     - rcuscale: Move shutdown from wait_event() to wait_event_idle()
     - rcu/rcuscale: Move rcu_scale_*() after kfree_scale_cleanup()
     - rcu/rcuscale: Stop kfree_scale_thread thread(s) after unloading rcuscale
     - perf/ibs: Fix interface via core pmu events
     - [x86] mm: Fix __swp_entry_to_pte() for Xen PV guests
     - locking/atomic: arm: fix sync ops
     - evm: Complete description of evm_inode_setattr()
     - pstore/ram: Add check for kstrdup
     - igc: Enable and fix RX hash usage by netstack
     - wifi: ath9k: fix AR9003 mac hardware hang check register offset
       calculation
     - wifi: ath9k: avoid referencing uninit memory in ath9k_wmi_ctrl_rx
     - spi: spi-geni-qcom: Correct CS_TOGGLE bit in SPI_TRANS_CFG
     - wifi: wilc1000: fix for absent RSN capabilities WFA testcase
     - wifi: mwifiex: Fix the size of a memory allocation in
       mwifiex_ret_802_11_scan()
     - sctp: add bpf_bypass_getsockopt proto callback
     - bpf: Don't EFAULT for {g,s}setsockopt with wrong optlen
     - spi: dw: Round of n_bytes to power of 2
     - nfc: llcp: fix possible use of uninitialized variable in
       nfc_llcp_send_connect()
     - bpftool: JIT limited misreported as negative value on aarch64
     - bpf: Remove bpf trampoline selector
     - bpf: Fix memleak due to fentry attach failure
     - regulator: core: Fix more error checking for debugfs_create_dir()
     - regulator: core: Streamline debugfs operations
     - wifi: orinoco: Fix an error handling path in spectrum_cs_probe()
     - wifi: orinoco: Fix an error handling path in orinoco_cs_probe()
     - wifi: atmel: Fix an error handling path in atmel_probe()
     - wifi: wl3501_cs: Fix an error handling path in wl3501_probe()
     - wifi: ray_cs: Fix an error handling path in ray_probe()
     - wifi: ath9k: don't allow to overwrite ENDPOINT0 attributes
     - wifi: ath10k: Trigger STA disconnect after reconfig complete on hardware
       restart
     - wifi: mac80211: recalc min chandef for new STA links
     - wifi: rsi: Do not configure WoWlan in shutdown hook if not enabled
     - wifi: rsi: Do not set MMC_PM_KEEP_POWER in shutdown
     - ice: handle extts in the miscellaneous interrupt thread
     - watchdog/perf: define dummy watchdog_update_hrtimer_threshold() on correct
       config
     - watchdog/perf: more properly prevent false positives with turbo modes
     - kexec: fix a memory leak in crash_shrink_memory()
     - mmc: mediatek: Avoid ugly error message when SDIO wakeup IRQ isn't used
     - memstick r592: make memstick_debug_get_tpc_name() static
     - wifi: ath9k: Fix possible stall on ath9k_txq_list_has_key()
     - wifi: mac80211: Fix permissions for valid_links debugfs entry
     - rtnetlink: extend RTEXT_FILTER_SKIP_STATS to IFLA_VF_INFO
     - wifi: ath11k: Add missing check for ioremap
     - wifi: iwlwifi: pull from TXQs with softirqs disabled
     - wifi: iwlwifi: pcie: fix NULL pointer dereference in
       iwl_pcie_irq_rx_msix_handler()
     - wifi: mac80211: Remove "Missing iftype sband data/EHT cap" spam
     - wifi: cfg80211: rewrite merging of inherited elements
     - wifi: cfg80211: drop incorrect nontransmitted BSS update code
     - wifi: cfg80211: fix regulatory disconnect with OCB/NAN
     - wifi: cfg80211/mac80211: Fix ML element common size calculation
     - wifi: ieee80211: Fix the common size calculation for reconfiguration ML
     - mmc: Add MMC_QUIRK_BROKEN_SD_CACHE for Kingston Canvas Go Plus from
       11/2019
     - wifi: iwlwifi: mvm: indicate HW decrypt for beacon protection
     - wifi: ath9k: convert msecs to jiffies where needed
     - bpf: Factor out socket lookup functions for the TC hookpoint.
     - bpf: Call __bpf_sk_lookup()/__bpf_skc_lookup() directly via TC hookpoint
     - bpf: Fix bpf socket lookup from tc/xdp to respect socket VRF bindings
     - can: length: fix bitstuffing count
     - net: stmmac: fix double serdes powerdown
     - netlink: fix potential deadlock in netlink_set_err()
     - netlink: do not hard code device address lenth in fdb dumps
     - bonding: do not assume skb mac_header is set
     - gtp: Fix use-after-free in __gtp_encap_destroy().
     - net: axienet: Move reset before 64-bit DMA detection
     - ocfs2: Fix use of slab data with sendpage
     - sfc: fix crash when reading stats while NIC is resetting
     - net: nfc: Fix use-after-free caused by nfc_llcp_find_local (CVE-2023-3863)
     - lib/ts_bm: reset initial match offset for every block of text
     - netfilter: conntrack: dccp: copy entire header to stack buffer, not just
       basic one
     - netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return
       value.
     - ipvlan: Fix return value of ipvlan_queue_xmit()
     - netlink: Add __sock_i_ino() for __netlink_diag_dump().
     - drm/amd/display: Add logging for display MALL refresh setting
     - radeon: avoid double free in ci_dpm_init()
     - drm/amd/display: Explicitly specify update type per plane info change
     - drm/bridge: it6505: Move a variable assignment behind a null pointer check
       in receive_timing_debugfs_show()
     - Input: drv260x - sleep between polling GO bit
     - drm/bridge: ti-sn65dsi83: Fix enable error path
     - drm/bridge: tc358768: always enable HS video mode
     - drm/bridge: tc358768: fix PLL parameters computation
     - drm/bridge: tc358768: fix PLL target frequency
     - drm/bridge: tc358768: fix TCLK_ZEROCNT computation
     - drm/bridge: tc358768: Add atomic_get_input_bus_fmts() implementation
     - drm/bridge: tc358768: fix TCLK_TRAILCNT computation
     - drm/bridge: tc358768: fix THS_ZEROCNT computation
     - drm/bridge: tc358768: fix TXTAGOCNT computation
     - drm/bridge: tc358768: fix THS_TRAILCNT computation
     - drm/vram-helper: fix function names in vram helper doc
     - mm: call arch_swap_restore() from do_swap_page()
     - clk: vc5: Use `clamp()` to restrict PLL range
     - bootmem: remove the vmemmap pages from kmemleak in free_bootmem_page
     - clk: vc5: Fix .driver_data content in i2c_device_id
     - clk: vc7: Fix .driver_data content in i2c_device_id
     - clk: rs9: Fix .driver_data content in i2c_device_id
     - Input: adxl34x - do not hardcode interrupt trigger type
     - drm: sun4i_tcon: use devm_clk_get_enabled in `sun4i_tcon_init_clocks`
     - drm/panel: sharp-ls043t1le01: adjust mode settings
     - driver: soc: xilinx: use _safe loop iterator to avoid a use after free
     - ASoC: Intel: sof_sdw: remove SOF_SDW_TGL_HDMI for MeteorLake devices
     - drm/vkms: isolate pixel conversion functionality
     - drm: Add fixed-point helper to get rounded integer values
     - drm/vkms: Fix RGB565 pixel conversion
     - ARM: dts: stm32: Move ethernet MAC EEPROM from SoM to carrier boards
     - bus: ti-sysc: Fix dispc quirk masking bool variables
     - [arm64:]dts: microchip: sparx5: do not use PSCI on reference boards
     - drm/bridge: tc358767: Switch to devm MIPI-DSI helpers
     - clk: imx: scu: use _safe list iterator to avoid a use after free
     - hwmon: (f71882fg) prevent possible division by zero
     - RDMA/bnxt_re: Disable/kill tasklet only if it is enabled
     - RDMA/bnxt_re: Fix to remove unnecessary return labels
     - RDMA/bnxt_re: Use unique names while registering interrupts
     - RDMA/bnxt_re: Remove a redundant check inside bnxt_re_update_gid
     - RDMA/bnxt_re: Fix to remove an unnecessary log
     - drm/msm/dsi: don't allow enabling 14nm VCO with unprogrammed rate
     - drm/msm/disp/dpu: get timing engine status from intf status register
     - drm/msm/dpu: Set DPU_DATA_HCTL_EN for in INTF_SC7180_MASK
     - iommu/virtio: Detach domain on endpoint release
     - iommu/virtio: Return size mapped for a detached domain
     - clk: renesas: rzg2l: Fix CPG_SIPLL5_CLK1 register write
     - ARM: dts: gta04: Move model property out of pinctrl node
     - drm/bridge: anx7625: Convert to i2c's .probe_new()
     - drm/bridge: anx7625: Prevent endless probe loop
     - ARM: dts: qcom: msm8974: do not use underscore in node name (again)
     - [arm64] dts: qcom: msm8916: correct camss unit address
     - [arm64] dts: qcom: msm8916: correct MMC unit address
     - [arm64] dts: qcom: msm8994: correct SPMI unit address
     - [arm64] dts: qcom: msm8996: correct camss unit address
     - [arm64] dts: qcom: sdm630: correct camss unit address
     - [arm64] dts: qcom: sdm845: correct camss unit address
     - [arm64] dts: qcom: sm8350: Add GPI DMA compatible fallback
     - [arm64] dts: qcom: sm8350: correct DMA controller unit address
     - [arm64] dts: qcom: sdm845-polaris: add missing touchscreen child node reg
     - [arm64] dts: qcom: apq8016-sbc: Fix regulator constraints
     - [arm64] dts: qcom: apq8016-sbc: Fix 1.8V power rail on LS expansion
     - drm/bridge: Introduce pre_enable_prev_first to alter bridge init order
     - drm/bridge: ti-sn65dsi83: Fix enable/disable flow to meet spec
     - drm/panel: simple: fix active size for Ampire AM-480272H3TMQW-T01H
     - ARM: ep93xx: fix missing-prototype warnings
     - ARM: omap2: fix missing tick_broadcast() prototype
     - [arm64] dts: qcom: pm7250b: add missing spmi-vadc include
     - [arm64] dts: qcom: apq8096: fix fixed regulator name property
     - [arm64] dts: mediatek: mt8183: Add mediatek,broken-save-restore-fw to
       kukui
     - ARM: dts: stm32: Shorten the AV96 HDMI sound card name
     - memory: brcmstb_dpfe: fix testing array offset after use
     - ARM: dts: qcom: apq8074-dragonboard: Set DMA as remotely controlled
     - ASoC: es8316: Increment max value for ALC Capture Target Volume control
     - ASoC: es8316: Do not set rate constraints for unsupported MCLKs
     - ARM: dts: meson8: correct uart_B and uart_C clock references
     - soc/fsl/qe: fix usb.c build errors
     - RDMA/irdma: avoid fortify-string warning in irdma_clr_wqes
     - IB/hfi1: Fix wrong mmu_node used for user SDMA packet after invalidate
     - RDMA/hns: Fix hns_roce_table_get return value
     - ARM: dts: iwg20d-q7-common: Fix backlight pwm specifier
     - drm/msm/dpu: set DSC flush bit correctly at MDP CTL flush register
     - fbdev: omapfb: lcd_mipid: Fix an error handling path in mipid_spi_probe()
     - [arm64] dts: ti: k3-j7200: Fix physical address of pin
     - Input: pm8941-powerkey - fix debounce on gen2+ PMICs
     - ARM: dts: stm32: Fix audio routing on STM32MP15xx DHCOM PDK2
     - ARM: dts: stm32: fix i2s endpoint format property for stm32mp15xx-dkx
     - hwmon: (gsc-hwmon) fix fan pwm temperature scaling
     - hwmon: (pmbus/adm1275) Fix problems with temperature monitoring on ADM1272
     - ARM: dts: BCM5301X: fix duplex-full => full-duplex
     - clk: Export clk_hw_forward_rate_request()
     - drm/amd/display: Fix a test CalculatePrefetchSchedule()
     - drm/amd/display: Fix a test dml32_rq_dlg_get_rq_reg()
     - drm/amdkfd: Fix potential deallocation of previously deallocated memory.
     - soc: mediatek: SVS: Fix MT8192 GPU node name
     - drm/amd/display: Fix artifacting on eDP panels when engaging freesync
       video mode
     - drm/radeon: fix possible division-by-zero errors
     - HID: uclogic: Modular KUnit tests should not depend on KUNIT=y
     - RDMA/rxe: Add ibdev_dbg macros for rxe
     - RDMA/rxe: Replace pr_xxx by rxe_dbg_xxx in rxe_mw.c
     - RDMA/rxe: Fix access checks in rxe_check_bind_mw
     - amdgpu: validate offset_in_bo of drm_amdgpu_gem_va
     - drm/msm/a5xx: really check for A510 in a5xx_gpu_init
     - RDMA/bnxt_re: wraparound mbox producer index
     - RDMA/bnxt_re: Avoid calling wake_up threads from spin_lock context
     - clk: imx: clk-imxrt1050: fix memory leak in imxrt1050_clocks_probe
     - clk: imx: clk-imx8mn: fix memory leak in imx8mn_clocks_probe
     - clk: imx93: fix memory leak and missing unwind goto in imx93_clocks_probe
     - clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe()
     - [arm64] dts: qcom: sdm845: Flush RSC sleep & wake votes
     - [arm64] dts: qcom: sm8250-edo: Panel framebuffer is 2.5k instead of 4k
     - clk: bcm: rpi: Fix off by one in raspberrypi_discover_clocks()
     - clk: clocking-wizard: Fix Oops in clk_wzrd_register_divider()
     - clk: tegra: tegra124-emc: Fix potential memory leak
     - ALSA: ac97: Fix possible NULL dereference in snd_ac97_mixer
     - drm/msm/dpu: do not enable color-management if DSPPs are not available
     - drm/msm/dpu: Fix slice_last_group_size calculation
     - drm/msm/dsi: Use DSC slice(s) packet size to compute word count
     - drm/msm/dsi: Flip greater-than check for slice_count and slice_per_intf
     - drm/msm/dsi: Remove incorrect references to slice_count
     - drm/msm/dp: Free resources after unregistering them
     - [arm64] dts: mediatek: Add cpufreq nodes for MT8192
     - [arm64] dts: mediatek: mt8192: Fix CPUs capacity-dmips-mhz
     - drm/amdgpu: Fix memcpy() in sienna_cichlid_append_powerplay_table
       function.
     - drm/amdgpu: Fix usage of UMC fill record in RAS
     - drm/msm/dpu: correct MERGE_3D length
     - clk: vc5: check memory returned by kasprintf()
     - clk: cdce925: check return value of kasprintf()
     - clk: si5341: return error if one synth clock registration fails
     - clk: si5341: check return value of {devm_}kasprintf()
     - clk: si5341: free unused memory on probe failure
     - clk: keystone: sci-clk: check return value of kasprintf()
     - clk: ti: clkctrl: check return value of kasprintf()
     - drivers: meson: secure-pwrc: always enable DMA domain
     - ovl: update of dentry revalidate flags after copy up
     - ASoC: imx-audmix: check return value of devm_kasprintf()
     - clk: Fix memory leak in devm_clk_notifier_register()
     - ARM: dts: lan966x: kontron-d10: fix board reset
     - ARM: dts: lan966x: kontron-d10: fix SPI CS
     - ASoC: amd: acp: clear pdm dma interrupt mask
     - PCI: cadence: Fix Gen2 Link Retraining process
     - PCI: vmd: Reset VMD config register between soft reboots
     - scsi: qedf: Fix NULL dereference in error handling
     - pinctrl: bcm2835: Handle gpiochip_add_pin_range() errors
     - [x86] platform/x86: lenovo-yogabook: Fix work race on remove()
     - [x86] platform/x86: lenovo-yogabook: Reprobe devices on remove()
     - [x86] platform/x86: lenovo-yogabook: Set default keyboard backligh
       brightness on probe()
     - PCI/ASPM: Disable ASPM on MFD function removal to avoid use-after-free
     - scsi: 3w-xxxx: Add error handling for initialization failure in tw_probe()
     - PCI: pciehp: Cancel bringup sequence if card is not present
     - PCI: ftpci100: Release the clock resources
     - pinctrl: sunplus: Add check for kmalloc
     - PCI: Add pci_clear_master() stub for non-CONFIG_PCI
     - scsi: lpfc: Revise NPIV ELS unsol rcv cmpl logic to drop ndlp based on
       nlp_state
     - perf bench: Add missing setlocale() call to allow usage of %'d style
       formatting
     - pinctrl: cherryview: Return correct value if pin in push-pull mode
     - [x86] platform/x86: think-lmi: mutex protection around multiple WMI calls
     - [x86] platform/x86: think-lmi: Correct System password interface
     - [x86] platform/x86: think-lmi: Correct NVME password handling
     - pinctrl:sunplus: Add check for kmalloc
     - pinctrl: npcm7xx: Add missing check for ioremap
     - kcsan: Don't expect 64 bits atomic builtins from 32 bits architectures
     - powerpc/interrupt: Don't read MSR from interrupt_exit_kernel_prepare()
     - [powerpc*] signal32: Force inlining of __unsafe_save_user_regs() and
       save_tm_user_regs_unsafe()
     - perf script: Fix allocation of evsel->priv related to per-event dump files
     - [x86] platform/x86: thinkpad_acpi: Fix lkp-tests warnings for platform
       profiles
     - perf dwarf-aux: Fix off-by-one in die_get_varname()
     - [x86] platform/x86/dell/dell-rbtn: Fix resources leaking on error path
     - [x86] perf tool x86: Consolidate is_amd check into single function
     - [x86] perf tool x86: Fix perf_env memory leak
     - [powerpc*] 64s: Fix VAS mm use after free
     - pinctrl: microchip-sgpio: check return value of devm_kasprintf()
     - pinctrl: at91-pio4: check return value of devm_kasprintf()
     - [powerpc*] powernv/sriov: perform null check on iov before dereferencing
       iov
     - [powerpc*] simplify ppc_save_regs
     - [powerpc*] update ppc_save_regs to save current r1 in pt_regs
     - PCI: qcom: Remove PCIE20_ prefix from register definitions
     - PCI: qcom: Sort and group registers and bitfield definitions
     - PCI: qcom: Use lower case for hex
     - PCI: qcom: Use DWC helpers for modifying the read-only DBI registers
     - PCI: qcom: Disable write access to read only registers for IP v2.9.0
     - [powerpc*] book3s64/mm: Fix DirectMap stats in /proc/meminfo
     - [powerpc*] mm/dax: Fix the condition when checking if altmap vmemap can
       cross-boundary
     - PCI: endpoint: Fix Kconfig indent style
     - PCI: endpoint: Fix a Kconfig prompt of vNTB driver
     - PCI: endpoint: functions/pci-epf-test: Fix dma_chan direction
     - PCI: vmd: Fix uninitialized variable usage in vmd_enable_domain()
     - vfio/mdev: Move the compat_class initialization to module init
     - hwrng: virtio - Fix race on data_avail and actual data
     - modpost: remove broken calculation of exception_table_entry size
     - crypto: nx - fix build warnings when DEBUG_FS is not enabled
     - modpost: fix section mismatch message for R_ARM_ABS32
     - modpost: fix section mismatch message for R_ARM_{PC24,CALL,JUMP24}
     - crypto: marvell/cesa - Fix type mismatch warning
     - crypto: jitter - correct health test during initialization
     - modpost: fix off by one in is_executable_section()
     - crypto: kpp - Add helper to set reqsize
     - crypto: qat - Use helper to set reqsize
     - crypto: qat - unmap buffer before free for DH
     - crypto: qat - unmap buffers before free for RSA
     - NFSv4.2: fix wrong shrinker_id
     - NFSv4.1: freeze the session table upon receiving NFS4ERR_BADSESSION
     - SMB3: Do not send lease break acknowledgment if all file handles have been
       closed
     - dax: Fix dax_mapping_release() use after free
     - dax: Introduce alloc_dev_dax_id()
     - dax/kmem: Pass valid argument to memory_group_register_static
     - hwrng: st - keep clock enabled while hwrng is registered
     - kbuild: Disable GCOV for *.mod.o
     - efi/libstub: Disable PCI DMA before grabbing the EFI memory map
     - cifs: prevent use-after-free by freeing the cfile later
     - cifs: do all necessary checks for credits within or before locking
     - smb: client: fix broken file attrs with nodfs mounts
     - ksmbd: avoid field overflow warning
     - [arm64] sme: Use STR P to clear FFR context field in streaming SVE mode
     - [x86] efi: Make efi_set_virtual_address_map IBT safe
     - md/raid1-10: fix casting from randomized structure in raid1_submit_write()
     - USB: serial: option: add LARA-R6 01B PIDs
     - usb: dwc3: gadget: Propagate core init errors to UDC during pullup
     - phy: tegra: xusb: Clear the driver reference in usb-phy dev
     - iio: adc: ad7192: Fix null ad7192_state pointer access
     - iio: adc: ad7192: Fix internal/external clock selection
     - iio: accel: fxls8962af: errata bug only applicable for FXLS8962AF
     - iio: accel: fxls8962af: fixup buffer scan element type
     - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on
       EliteBook
     - ALSA: hda/realtek: Add quirk for Clevo NPx0SNx
     - ALSA: jack: Fix mutex call in snd_jack_report()
     - ALSA: pcm: Fix potential data race at PCM memory allocation helpers
     - block: fix signed int overflow in Amiga partition support
     - block: add overflow checks for Amiga partition support
     - block: change all __u32 annotations to __be32 in affs_hardblocks.h
     - block: increment diskseq on all media change events
     - btrfs: fix race when deleting free space root from the dirty cow roots
       list
     - SUNRPC: Fix UAF in svc_tcp_listen_data_ready()
     - w1: w1_therm: fix locking behavior in convert_t
     - w1: fix loop in w1_fini()
     - dt-bindings: power: reset: qcom-pon: Only allow reboot-mode pre-pmk8350
     - f2fs: do not allow to defragment files have FI_COMPRESS_RELEASED
     - usb: dwc2: platform: Improve error reporting for problems during .remove()
     - usb: dwc2: Fix some error handling paths
     - serial: 8250: omap: Fix freeing of resources on failed register
     - clk: qcom: mmcc-msm8974: remove oxili_ocmemgx_clk
     - clk: qcom: camcc-sc7180: Add parent dependency to all camera GDSCs
     - clk: qcom: gcc-ipq6018: Use floor ops for sdcc clocks
     - clk: qcom: gcc-qcm2290: Mark RCGs shared where applicable
     - media: usb: Check az6007_read() return value
     - media: amphion: drop repeated codec data for vc1l format
     - media: amphion: drop repeated codec data for vc1g format
     - media: amphion: initiate a drain of the capture queue in dynamic
       resolution change
     - media: videodev2.h: Fix struct v4l2_input tuner index comment
     - media: usb: siano: Fix warning due to null work_func_t function pointer
       (CVE-2023-4132)
     - media: i2c: Correct format propagation for st-mipid02
     - media: hi846: fix usage of pm_runtime_get_if_in_use()
     - media: mediatek: vcodec: using decoder status instead of core work count
     - clk: qcom: reset: support resetting multiple bits
     - clk: qcom: ipq6018: fix networking resets
     - clk: qcom: dispcc-qcm2290: Fix BI_TCXO_AO handling
     - clk: qcom: dispcc-qcm2290: Fix GPLL0_OUT_DIV handling
     - clk: qcom: mmcc-msm8974: use clk_rcg2_shared_ops for mdp_clk_src clock
     - staging: vchiq_arm: mark vchiq_platform_init() static
     - usb: dwc3: qcom: Fix potential memory leak
     - usb: gadget: u_serial: Add null pointer check in gserial_suspend
     - extcon: Fix kernel doc of property fields to avoid warnings
     - extcon: Fix kernel doc of property capability fields to avoid warnings
     - usb: phy: phy-tahvo: fix memory leak in tahvo_usb_probe()
     - usb: hide unused usbfs_notify_suspend/resume functions
     - usb: misc: eud: Fix eud sysfs path (use 'qcom_eud')
     - serial: core: lock port for stop_rx() in uart_suspend_port()
     - serial: 8250: lock port for stop_rx() in omap8250_irq()
     - serial: core: lock port for start_rx() in uart_resume_port()
     - serial: 8250: lock port for UART_IER access in omap8250_irq()
     - kernfs: fix missing kernfs_idr_lock to remove an ID from the IDR
     - lkdtm: replace ll_rw_block with submit_bh
     - i3c: master: svc: fix cpu schedule in spin lock
     - coresight: Fix loss of connection info when a module is unloaded
     - mfd: rt5033: Drop rt5033-battery sub-device
     - media: venus: helpers: Fix ALIGN() of non power of two
     - media: atomisp: gmin_platform: fix out_len in gmin_get_config_dsm_var()
     - gfs2: Fix duplicate should_fault_in_pages() call
     - f2fs: fix potential deadlock due to unpaired node_write lock use
     - f2fs: fix to avoid NULL pointer dereference f2fs_write_end_io()
       (CVE-2023-2898)
     - [s390x] KVM: s390: fix KVM_S390_GET_CMMA_BITS for GFNs in memslot holes
     - usb: dwc3: qcom: Release the correct resources in dwc3_qcom_remove()
     - usb: dwc3: qcom: Fix an error handling path in dwc3_qcom_probe()
     - usb: common: usb-conn-gpio: Set last role to unknown before initial
       detection
     - usb: dwc3-meson-g12a: Fix an error handling path in
       dwc3_meson_g12a_probe()
     - mfd: wcd934x: Fix an error handling path in wcd934x_slim_probe()
     - mfd: intel-lpss: Add missing check for platform_get_resource
     - Revert "usb: common: usb-conn-gpio: Set last role to unknown before
       initial detection"
     - serial: 8250_omap: Use force_suspend and resume for system suspend
     - device property: Fix documentation for fwnode_get_next_parent()
     - device property: Clarify description of returned value in some functions
     - drivers: fwnode: fix fwnode_irq_get[_byname]()
     - nvmem: sunplus-ocotp: release otp->clk before return
     - nvmem: rmem: Use NVMEM_DEVID_AUTO
     - bus: fsl-mc: don't assume child devices are all fsl-mc devices
     - mfd: stmfx: Fix error path in stmfx_chip_init
     - mfd: stmfx: Nullify stmfx->vdd in case of error
     - [s390x] KVM: s390: vsie: fix the length of APCB bitmap
     - [s390x] KVM: s390/diag: fix racy access of physical cpu number in diag 9c
       handler
     - cpufreq: mediatek: correct voltages for MT7622 and MT7623
     - misc: fastrpc: check return value of devm_kasprintf()
     - clk: qcom: mmcc-msm8974: fix MDSS_GDSC power flags
     - hwtracing: hisi_ptt: Fix potential sleep in atomic context
     - mfd: stmpe: Only disable the regulators if they are enabled
     - phy: tegra: xusb: check return value of devm_kzalloc()
     - lib/bitmap: drop optimization of bitmap_{from,to}_arr64
     - pwm: imx-tpm: force 'real_period' to be zero in suspend
     - pwm: sysfs: Do not apply state to already disabled PWMs
     - pwm: ab8500: Fix error code in probe()
     - pwm: mtk_disp: Fix the disable flow of disp_pwm
     - md/raid10: fix the condition to call bio_end_io_acct()
     - rtc: st-lpc: Release some resources in st_rtc_probe() in case of error
     - [x86] drm/i915/psr: Use hw.adjusted mode when calculating io/fast wake
       times
     - [x86] drm/i915/guc/slpc: Apply min softlimit correctly
     - f2fs: check return value of freeze_super()
     - media: cec: i2c: ch7322: also select REGMAP
     - sctp: fix potential deadlock on &net->sctp.addr_wq_lock
     - net/sched: act_ipt: add sanity checks on table name and hook locations
     - net: add a couple of helpers for iph tot_len
     - net/sched: act_ipt: add sanity checks on skb before calling target
     - spi: spi-geni-qcom: enable SPI_CONTROLLER_MUST_TX for GPI DMA mode
     - net: mscc: ocelot: don't report that RX timestamping is enabled by default
     - net: mscc: ocelot: don't keep PTP configuration of all ports in single
       structure
     - net: dsa: felix: don't drop PTP frames with tag_8021q when RX timestamping
       is disabled
     - net: dsa: sja1105: always enable the INCL_SRCPT option
     - net: dsa: tag_sja1105: always prefer source port information from
       INCL_SRCPT
     - Add MODULE_FIRMWARE() for FIRMWARE_TG357766.
     - Bluetooth: fix invalid-bdaddr quirk for non-persistent setup
     - Bluetooth: ISO: use hci_sync for setting CIG parameters
     - Bluetooth: MGMT: add CIS feature bits to controller information
     - Bluetooth: MGMT: Use BIT macro when defining bitfields
     - Bluetooth: MGMT: Fix marking SCAN_RSP as not connectable
     - ibmvnic: Do not reset dql stats on NON_FATAL err
     - net: dsa: vsc73xx: fix MTU configuration
     - mlxsw: minimal: fix potential memory leak in mlxsw_m_linecards_init
     - spi: bcm-qspi: return error if neither hif_mspi nor mspi is available
     - drm/amdgpu: fix number of fence calculations
     - drm/amd: Don't try to enable secure display TA multiple times
     - mailbox: ti-msgmgr: Fill non-message tx data fields with 0x0
     - f2fs: fix error path handling in truncate_dnode()
     - octeontx2-af: Fix mapping for NIX block from CGX connection
     - octeontx2-af: Add validation before accessing cgx and lmac
     - ntfs: Fix panic about slab-out-of-bounds caused by ntfs_listxattr()
     - [powerpc*] allow PPC_EARLY_DEBUG_CPM only when SERIAL_CPM=y
     - [powerpc*] dts: turris1x.dts: Fix PCIe MEM size for pci2 node
     - net: bridge: keep ports without IFF_UNICAST_FLT in BR_PROMISC mode
     - net: dsa: tag_sja1105: fix source port decoding in vlan_filtering=0 bridge
       mode
     - net: fix net_dev_start_xmit trace event vs skb_transport_offset()
     - tcp: annotate data races in __tcp_oow_rate_limited()
     - bpf, btf: Warn but return no error for NULL btf from
       __register_btf_kfunc_id_set()
     - xsk: Honor SO_BINDTODEVICE on bind
     - net/sched: act_pedit: Add size check for TCA_PEDIT_PARMS_EX
     - fanotify: disallow mount/sb marks on kernel internal pseudo fs
     - pptp: Fix fib lookup calls.
     - net: dsa: tag_sja1105: fix MAC DA patching from meta frames
     - net: dsa: sja1105: always enable the send_meta options
     - octeontx-af: fix hardware timestamp configuration
     - afs: Fix accidental truncation when storing data
     - [s390x] qeth: Fix vipa deletion
     - apparmor: fix missing error check for rhashtable_insert_fast
     - i2c: xiic: Don't try to handle more interrupt events after error
     - dm: fix undue/missing spaces
     - dm: avoid split of quoted strings where possible
     - dm ioctl: have constant on the right side of the test
     - dm ioctl: Avoid double-fetch of version
     - extcon: usbc-tusb320: Convert to i2c's .probe_new()
     - extcon: usbc-tusb320: Unregister typec port on driver removal
     - btrfs: do not BUG_ON() on tree mod log failure at balance_level()
     - i2c: qup: Add missing unwind goto in qup_i2c_probe()
     - irqchip/loongson-pch-pic: Fix potential incorrect hwirq assignment
     - NFSD: add encoding of op_recall flag for write delegation
     - irqchip/loongson-pch-pic: Fix initialization of HT vector register
     - io_uring: wait interruptibly for request completions on exit
     - mmc: core: disable TRIM on Kingston EMMC04G-M627
     - mmc: core: disable TRIM on Micron MTFC4GACAJCN-1M
     - mmc: mmci: Set PROBE_PREFER_ASYNCHRONOUS
     - mmc: sdhci: fix DMA configure compatibility issue when 64bit DMA mode is
       used.
     - wifi: cfg80211: fix regulatory disconnect for non-MLO
     - wifi: ath10k: Serialize wake_tx_queue ops
     - wifi: mt76: mt7921e: fix init command fail with enabled device
     - bcache: fixup btree_cache_wait list damage
     - bcache: Remove unnecessary NULL point check in node allocations
     - bcache: Fix __bch_btree_node_alloc to make the failure behavior consistent
     - watch_queue: prevent dangling pipe pointer
     - integrity: Fix possible multiple allocation in integrity_inode_get()
     - autofs: use flexible array in ioctl structure
     - mm/damon/ops-common: atomically test and clear young on ptes and pmds
     - shmem: use ramfs_kill_sb() for kill_sb method of ramfs-based tmpfs
     - jffs2: reduce stack usage in jffs2_build_xattr_subsystem()
     - fs: avoid empty option when generating legacy mount string
     - ext4: Remove ext4 locking of moved directory
     - Revert "f2fs: fix potential corruption when moving a directory"
     - fs: Establish locking order for unrelated directories
     - fs: Lock moved directories
     - i2c: nvidia-gpu: Add ACPI property to align with device-tree
     - i2c: nvidia-gpu: Remove ccgx,firmware-build property
     - usb: typec: ucsi: Mark dGPUs as DEVICE scope
     - ipvs: increase ip_vs_conn_tab_bits range for 64BIT
     - btrfs: add handling for RAID1C23/DUP to btrfs_reduce_alloc_profile
     - btrfs: delete unused BGs while reclaiming BGs
     - btrfs: bail out reclaim process if filesystem is read-only
     - btrfs: add block-group tree to lockdep classes
     - btrfs: reinsert BGs failed to reclaim
     - btrfs: fix race when deleting quota root from the dirty cow roots list
     - btrfs: fix extent buffer leak after tree mod log failure at split_node()
     - btrfs: do not BUG_ON() on tree mod log failure at __btrfs_cow_block()
     - ASoC: mediatek: mt8173: Fix irq error path
     - ASoC: mediatek: mt8173: Fix snd_soc_component_initialize error path
     - regulator: tps65219: Fix matching interrupts for their regulators
     - ARM: dts: qcom: ipq4019: fix broken NAND controller properties override
     - ARM: orion5x: fix d2net gpio initialization
     - leds: trigger: netdev: Recheck NETDEV_LED_MODE_LINKUP on dev rename
     - blktrace: use inline function for blk_trace_remove() while blktrace is
       disabled
     - fs: no need to check source
     - xfs: explicitly specify cpu when forcing inodegc delayed work to run
       immediately
     - xfs: check that per-cpu inodegc workers actually run on that cpu
     - xfs: disable reaping in fscounters scrub
     - xfs: fix xfs_inodegc_stop racing with mod_delayed_work
     - mm/mmap: Fix extra maple tree write
     - [x86] drm/i915: Fix TypeC mode initialization during system resume
     - [x86] drm/i915/tc: Fix TC port link ref init for DP MST during HW readout
     - [x86] drm/i915/tc: Fix system resume MST mode restore for DP-alt sinks
     - mtd: parsers: refer to ARCH_BCMBCA instead of ARCH_BCM4908
     - netfilter: nf_tables: unbind non-anonymous set if rule construction fails
     - netfilter: conntrack: Avoid nf_ct_helper_hash uses after free
     - wireguard: queueing: use saner cpu selection wrapping
     - wireguard: netlink: send staged packets when setting initial private key
     - tty: serial: fsl_lpuart: add earlycon for imx8ulp platform
     - block/partition: fix signedness issue for Amiga partitions
     - io_uring: Use io_schedule* in cqring wait
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.40
     - HID: amd_sfh: Rename the float32 variable
     - HID: amd_sfh: Fix for shift-out-of-bounds
     - net: lan743x: Don't sleep in atomic context
     - workqueue: clean up WORK_* constant types, clarify masking
     - ksmbd: add missing compound request handing in some commands
     - ksmbd: fix out of bounds read in smb2_sess_setup
     - drm/panel: simple: Add connector_type for innolux_at043tn24
     - drm/bridge: ti-sn65dsi86: Fix auxiliary bus lifetime
     - swiotlb: always set the number of areas before allocating the pool
     - swiotlb: reduce the swiotlb buffer size on allocation failure
     - swiotlb: reduce the number of areas to match actual memory pool size
     - drm/panel: simple: Add Powertip PH800480T013 drm_display_mode flags
     - ice: Fix max_rate check while configuring TX rate limits
     - igc: Remove delay during TX ring configuration
     - net/mlx5e: fix double free in mlx5e_destroy_flow_table
     - net/mlx5e: fix memory leak in mlx5e_fs_tt_redirect_any_create
     - net/mlx5e: fix memory leak in mlx5e_ptp_open
     - net/mlx5e: Check for NOT_READY flag state after locking
     - igc: set TP bit in 'supported' and 'advertising' fields of
       ethtool_link_ksettings
     - igc: Handle PPS start time programming for past time values
     - blk-crypto: use dynamic lock class for blk_crypto_profile::lock
     - scsi: qla2xxx: Fix error code in qla2x00_start_sp()
     - scsi: ufs: ufs-mediatek: Add dependency for RESET_CONTROLLER
     - bpf: Fix max stack depth check for async callbacks
     - net: mvneta: fix txq_map in case of txq_number==1
     - net/sched: cls_fw: Fix improper refcount update leads to use-after-free
       (CVE-2023-3776)
     - gve: Set default duplex configuration to full
     - octeontx2-af: Promisc enable/disable through mbox
     - octeontx2-af: Move validation of ptp pointer before its usage
     - ionic: remove WARN_ON to prevent panic_on_warn
     - net: bgmac: postpone turning IRQs off to avoid SoC hangs
     - net: prevent skb corruption on frag list segmentation
     - icmp6: Fix null-ptr-deref of ip6_null_entry->rt6i_idev in icmp6_dev().
     - udp6: fix udp6_ehashfn() typo
     - ntb: idt: Fix error handling in idt_pci_driver_init()
     - NTB: amd: Fix error handling in amd_ntb_pci_driver_init()
     - ntb: intel: Fix error handling in intel_ntb_pci_driver_init()
     - NTB: ntb_transport: fix possible memory leak while device_register() fails
     - NTB: ntb_tool: Add check for devm_kcalloc
     - ipv6/addrconf: fix a potential refcount underflow for idev
     - net: dsa: qca8k: Add check for skb_copy
     - [x86] platform/x86: wmi: Break possible infinite loop when parsing GUID
     - kernel/trace: Fix cleanup logic of enable_trace_eprobe
     - igc: Fix launchtime before start of cycle
     - igc: Fix inserting of empty frame for launchtime
     - nvme: fix the NVME_ID_NS_NVM_STS_MASK definition
     - [x86] drm/i915: Don't preserve dpll_hw_state for slave crtc in Bigjoiner
     - [x86] drm/i915: Fix one wrong caching mode enum usage
     - octeontx2-pf: Add additional check for MCAM rules
     - erofs: avoid useless loops in z_erofs_pcluster_readmore() when reading
       beyond EOF
     - erofs: avoid infinite loop in z_erofs_do_read_page() when reading beyond
       EOF
     - erofs: fix fsdax unavailability for chunk-based regular files
     - wifi: airo: avoid uninitialized warning in airo_get_rate()
     - bpf: cpumap: Fix memory leak in cpu_map_update_elem
     - net/sched: flower: Ensure both minimum and maximum ports are specified
     - riscv: mm: fix truncation warning on RV32
     - netdevsim: fix uninitialized data in nsim_dev_trap_fa_cookie_write()
     - net/sched: make psched_mtu() RTNL-less safe
     - wifi: rtw89: debug: fix error code in rtw89_debug_priv_send_h2c_set()
     - net/sched: sch_qfq: refactor parsing of netlink parameters
     - net/sched: sch_qfq: account for stab overhead in qfq_enqueue
       (CVE-2023-3611)
     - nvme-pci: fix DMA direction of unmapping integrity data
     - fs/ntfs3: Check fields while reading (CVE-2022-48502)
     - ovl: let helper ovl_i_path_real() return the realinode
     - ovl: fix null pointer dereference in ovl_get_acl_rcu()
     - cifs: fix session state check in smb2_find_smb_ses
     - drm/client: Send hotplug event after registering a client
     - drm/amdgpu/sdma4: set align mask to 255
     - drm/amd/pm: revise the ASPM settings for thunderbolt attached scenario
     - drm/amdgpu: add the fan abnormal detection feature
     - drm/amdgpu: Fix minmax warning
     - drm/amd/pm: add abnormal fan detection for smu 13.0.0
     - f2fs: fix the wrong condition to determine atomic context
     - f2fs: fix deadlock in i_xattr_sem and inode page lock
     - pinctrl: amd: Add Z-state wake control bits
     - pinctrl: amd: Adjust debugfs output
     - pinctrl: amd: Add fields for interrupt status and wake status
     - pinctrl: amd: Detect internal GPIO0 debounce handling
     - pinctrl: amd: Fix mistake in handling clearing pins at startup
     - pinctrl: amd: Detect and mask spurious interrupts
     - pinctrl: amd: Revert "pinctrl: amd: disable and mask interrupts on probe"
     - pinctrl: amd: Only use special debounce behavior for GPIO 0
     - pinctrl: amd: Use amd_pinconf_set() for all config options
     - pinctrl: amd: Drop pull up select configuration
     - pinctrl: amd: Unify debounce handling into amd_pinconf_set()
     - tpm: Do not remap from ACPI resources again for Pluton TPM
     - tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation
     - tpm: tis_i2c: Limit read bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
     - tpm: tis_i2c: Limit write bursts to I2C_SMBUS_BLOCK_MAX (32) bytes
     - tpm: return false from tpm_amd_is_rng_defective on non-x86 platforms
     - mtd: rawnand: meson: fix unaligned DMA buffers handling
     - net: bcmgenet: Ensure MDIO unregistration has clocks enabled
     - net: phy: dp83td510: fix kernel stall during netboot in DP83TD510E PHY
       driver
     - tracing/user_events: Fix incorrect return value for writing operation when
       events are disabled
     - [powerpc*] Fail build if using recordmcount with binutils v2.37
     - misc: fastrpc: Create fastrpc scalar with correct buffer count
     - [powerpc*] security: Fix Speculation_Store_Bypass reporting on Power10
     - [powerpc*] 64s: Fix native_hpte_remove() to be irq-safe
     - [mips*] Loongson: Fix cpu_probe_loongson() again
     - [mips*] KVM: Fix NULL pointer dereference
     - ext4: Fix reusing stale buffer heads from last failed mounting
     - ext4: fix wrong unit use in ext4_mb_clear_bb
     - ext4: get block from bh in ext4_free_blocks for fast commit replay
     - ext4: fix wrong unit use in ext4_mb_new_blocks
     - ext4: fix to check return value of freeze_bdev() in ext4_shutdown()
     - ext4: turn quotas off if mount failed after enabling quotas
     - ext4: only update i_reserved_data_blocks on successful block allocation
     - fs: dlm: revert check required context while close
     - soc: qcom: mdt_loader: Fix unconditional call to scm_pas_mem_setup
     - ext2/dax: Fix ext2_setsize when len is page aligned
     - jfs: jfs_dmap: Validate db_l2nbperpage while mounting
     - hwrng: imx-rngc - fix the timeout for init and self check
     - dm integrity: reduce vmalloc space footprint on 32-bit architectures
     - scsi: mpi3mr: Propagate sense data for admin queue SCSI I/O
     - [s390x] zcrypt: do not retry administrative requests
     - PCI/PM: Avoid putting EloPOS E2/S2/H2 PCIe Ports in D3cold
     - PCI: Release resource invalidated by coalescing
     - PCI: Add function 1 DMA alias quirk for Marvell 88SE9235
     - PCI: qcom: Disable write access to read only registers for IP v2.3.3
     - PCI: epf-test: Fix DMA transfer completion initialization
     - PCI: epf-test: Fix DMA transfer completion detection
     - PCI: rockchip: Assert PCI Configuration Enable bit after probe
     - PCI: rockchip: Write PCI Device ID to correct register
     - PCI: rockchip: Add poll and timeout to wait for PHY PLLs to be locked
     - PCI: rockchip: Fix legacy IRQ generation for RK3399 PCIe endpoint core
     - PCI: rockchip: Use u32 variable to access 32-bit registers
     - PCI: rockchip: Set address alignment for endpoint mode
     - misc: pci_endpoint_test: Free IRQs before removing the device
     - misc: pci_endpoint_test: Re-init completion for every test
     - mfd: pm8008: Fix module autoloading
     - md/raid0: add discard support for the 'original' layout
     - dm init: add dm-mod.waitfor to wait for asynchronously probed block
       devices
     - fs: dlm: return positive pid value for F_GETLK
     - fs: dlm: fix cleanup pending ops when interrupted
     - fs: dlm: interrupt posix locks only when process is killed
     - fs: dlm: make F_SETLK use unkillable wait_event
     - fs: dlm: fix mismatch of plock results from userspace
     - scsi: lpfc: Fix double free in lpfc_cmpl_els_logo_acc() caused by
       lpfc_nlp_not_used()
     - drm/atomic: Allow vblank-enabled + self-refresh "disable"
     - drm/rockchip: vop: Leave vblank enabled in self-refresh
     - drm/amd/display: fix seamless odm transitions
     - drm/amd/display: edp do not add non-edid timings
     - drm/amd/display: Remove Phantom Pipe Check When Calculating K1 and K2
     - drm/amd/display: disable seamless boot if force_odm_combine is enabled
     - drm/amdgpu: fix clearing mappings for BOs that are always valid in VM
     - drm/amd: Disable PSR-SU on Parade 0803 TCON
     - drm/amd/display: add a NULL pointer check
     - drm/amd/display: Correct `DMUB_FW_VERSION` macro
     - drm/amd/display: Add monitor specific edid quirk
     - drm/amdgpu: avoid restore process run into dead loop.
     - drm/ttm: Don't leak a resource on swapout move error
     - serial: atmel: don't enable IRQs prematurely
     - tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() in
       case of error
     - tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk()
       when iterating clk
     - tty: serial: imx: fix rs485 rx after tx
     - firmware: stratix10-svc: Fix a potential resource leak in
       svc_create_memory_pool()
     - libceph: harden msgr2.1 frame segment length checks
     - ceph: add a dedicated private data for netfs rreq
     - ceph: fix blindly expanding the readahead windows
     - ceph: don't let check_caps skip sending responses for revoke msgs
     - xhci: Fix resume issue of some ZHAOXIN hosts
     - xhci: Fix TRB prefetch issue of ZHAOXIN hosts
     - xhci: Show ZHAOXIN xHCI root hub speed correctly
     - meson saradc: fix clock divider mask length
     - opp: Fix use-after-free in lazy_opp_tables after probe deferral
     - soundwire: qcom: fix storing port config out-of-bounds
     - Revert "8250: add support for ASIX devices with a FIFO bug"
     - bus: ixp4xx: fix IXP4XX_EXP_T1_MASK
     - [s390x] decompressor: fix misaligned symbol build error
     - dm: verity-loadpin: Add NULL pointer check for 'bdev' parameter
     - tracing/histograms: Add histograms to hist_vars if they have referenced
       variables
     - tracing: Fix memory leak of iter->temp when reading trace_pipe
     - nvme: don't reject probe due to duplicate IDs for single-ported PCIe
       devices
     - perf: RISC-V: Remove PERF_HES_STOPPED flag checking in riscv_pmu_start()
     - regmap-irq: Fix out-of-bounds access when allocating config buffers
     - net: ena: fix shift-out-of-bounds in exponential backoff
     - ring-buffer: Fix deadloop issue on reading trace_pipe
     - ftrace: Fix possible warning on checking all pages used in
       ftrace_process_locs()
     - drm/amd/pm: share the code around SMU13 pcie parameters update
     - drm/amd/pm: conditionally disable pcie lane/speed switching for SMU13
     - cifs: if deferred close is disabled then close files immediately
     - [x86] perf/x86: Fix lockdep warning in for_each_sibling_event() on SPR
     - PM: QoS: Restore support for default value on frequency QoS
     - pwm: meson: modify and simplify calculation in meson_pwm_get_state
     - pwm: meson: fix handling of period/duty if greater than UINT_MAX
     - fprobe: Release rethook after the ftrace_ops is unregistered
     - fprobe: Ensure running fprobe_exit_handler() finished before calling
       rethook_free()
     - tracing: Fix null pointer dereference in tracing_err_log_open()
     - tracing/probes: Fix not to count error code to total length
     - tracing/probes: Fix to update dynamic data counter if fetcharg uses it
     - tracing/user_events: Fix struct arg size match check
     - scsi: qla2xxx: Multi-que support for TMF
     - scsi: qla2xxx: Fix task management cmd failure
     - scsi: qla2xxx: Fix task management cmd fail due to unavailable resource
     - scsi: qla2xxx: Fix hang in task management
     - scsi: qla2xxx: Wait for io return on terminate rport
     - scsi: qla2xxx: Fix mem access after free
     - scsi: qla2xxx: Array index may go out of bound
     - scsi: qla2xxx: Avoid fcport pointer dereference
     - scsi: qla2xxx: Fix buffer overrun
     - scsi: qla2xxx: Fix potential NULL pointer dereference
     - scsi: qla2xxx: Check valid rport returned by fc_bsg_to_rport()
     - scsi: qla2xxx: Correct the index of array
     - scsi: qla2xxx: Pointer may be dereferenced
     - scsi: qla2xxx: Remove unused nvme_ls_waitq wait queue
     - scsi: qla2xxx: Fix end of loop test
     - [mips*] kvm: Fix build error with KVM_MIPS_DEBUG_COP0_COUNTERS enabled
     - Revert "drm/amd: Disable PSR-SU on Parade 0803 TCON"
     - swiotlb: mark swiotlb_memblock_alloc() as __init
     - net/sched: sch_qfq: reintroduce lmax bound check for MTU
     - drm/atomic: Fix potential use-after-free in nonblocking commits
     - net/ncsi: make one oem_gma function for all mfr id
     - net/ncsi: change from ndo_set_mac_address to dev_set_mac_address
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.41
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.42
     - io_uring: treat -EAGAIN for REQ_F_NOWAIT as final for io-wq
     - ALSA: hda/realtek - remove 3k pull low procedure
     - ALSA: hda/realtek: Add quirk for Clevo NS70AU
     - ALSA: hda/realtek: Enable Mute LED on HP Laptop 15s-eq2xxx
     - maple_tree: set the node limit when creating a new root node
     - maple_tree: fix node allocation testing on 32 bit
     - keys: Fix linking a duplicate key to a keyring's assoc_array
     - perf probe: Add test for regression introduced by switch to
       die_get_decl_file()
     - btrfs: fix warning when putting transaction with qgroups enabled after
       abort
     - fuse: revalidate: don't invalidate if interrupted
     - fuse: Apply flags2 only when userspace set the FUSE_INIT_EXT
     - btrfs: set_page_extent_mapped after read_folio in btrfs_cont_expand
     - btrfs: zoned: fix memory leak after finding block group with super blocks
     - fuse: ioctl: translate ENOSYS in outarg
     - btrfs: fix race between balance and cancel/pause
     - regmap: Drop initial version of maximum transfer length fixes
     - of: Preserve "of-display" device name for compatibility
     - regmap: Account for register length in SMBus I/O limits
     - [arm64] fpsimd: Ensure SME storage is allocated after SVE VL changes
     - can: mcp251xfd: __mcp251xfd_chip_set_mode(): increase poll timeout
     - can: bcm: Fix UAF in bcm_proc_show()
     - can: gs_usb: gs_can_open(): improve error handling
     - dma-buf/dma-resv: Stop leaking on krealloc() failure
     - drm/amdgpu/vkms: relax timer deactivation by hrtimer_try_to_cancel
     - drm/amdgpu/pm: make gfxclock consistent for sienna cichlid
     - drm/amdgpu/pm: make mclk consistent for smu 13.0.7
     - drm/client: Fix memory leak in drm_client_target_cloned
     - drm/client: Fix memory leak in drm_client_modeset_probe
     - drm/amd/display: only accept async flips for fast updates
     - drm/amd/display: Disable MPC split by default on special asic
     - drm/amd/display: check TG is non-null before checking if enabled
     - drm/amd/display: Keep PHY active for DP displays on DCN31
     - ASoC: fsl_sai: Disable bit clock with transmitter
     - ASoC: fsl_sai: Revert "ASoC: fsl_sai: Enable MCTL_MCLK_EN bit for master
       mode"
     - ASoC: tegra: Fix ADX byte map
     - ASoC: rt5640: Fix sleep in atomic context
     - ASoC: cs42l51: fix driver to properly autoload with automatic module
       loading
     - ASoC: codecs: wcd938x: fix missing clsh ctrl error handling
     - ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove
     - ASoC: qdsp6: audioreach: fix topology probe deferral
     - ASoC: tegra: Fix AMX byte map
     - ASoC: codecs: wcd938x: fix resource leaks on component remove
     - ASoC: codecs: wcd938x: fix missing mbhc init error handling
     - ASoC: codecs: wcd934x: fix resource leaks on component remove
     - ASoC: codecs: wcd938x: fix codec initialisation race
     - ASoC: codecs: wcd938x: fix soundwire initialisation race
     - ext4: correct inline offset when handling xattrs in inode body
     - drm/radeon: Fix integer overflow in radeon_cs_parser_init
     - ALSA: emu10k1: roll up loops in DSP setup code for Audigy
     - quota: Properly disable quotas when add_dquot_ref() fails
     - quota: fix warning in dqgrab()
     - HID: add quirk for 03f0:464a HP Elite Presenter Mouse
     - ovl: check type and offset of struct vfsmount in ovl_entry
     - udf: Fix uninitialized array access for some pathnames
     - fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev
     - [mips*] dec: prom: Address -Warray-bounds warning
     - FS: JFS: Fix null-ptr-deref Read in txBegin
     - FS: JFS: Check for read-only mounted filesystem in txBegin
     - ACPI: video: Add backlight=native DMI quirk for Dell Studio 1569
     - rcu-tasks: Avoid pr_info() with spin lock in cblist_init_generic()
     - rcu: Mark additional concurrent load from ->cpu_no_qs.b.exp
     - sched/fair: Don't balance task to its current running CPU
     - wifi: ath11k: fix registration of 6Ghz-only phy without the full channel
       range
     - bpf: Print a warning only if writing to unprivileged_bpf_disabled.
     - bpf: Address KCSAN report on bpf_lru_list
     - bpf: tcp: Avoid taking fast sock lock in iterator
     - wifi: ath11k: add support default regdb while searching board-2.bin for
       WCN6855
     - wifi: mac80211_hwsim: Fix possible NULL dereference
     - spi: dw: Add compatible for Intel Mount Evans SoC
     - wifi: ath11k: fix memory leak in WMI firmware stats
     - net: ethernet: litex: add support for 64 bit stats
     - devlink: report devlink_port_type_warn source device
     - wifi: wext-core: Fix -Wstringop-overflow warning in
       ioctl_standard_iw_point()
     - wifi: iwlwifi: Add support for new PCI Id
     - wifi: iwlwifi: mvm: avoid baid size integer overflow
     - wifi: iwlwifi: pcie: add device id 51F1 for killer 1675
     - igb: Fix igb_down hung on surprise removal
     - net: hns3: fix strncpy() not using dest-buf length as length issue
     - ASoC: amd: acp: fix for invalid dai id handling in acp_get_byte_count()
     - ASoC: codecs: wcd938x: fix mbhc impedance loglevel
     - ASoC: codecs: wcd938x: fix dB range for HPHL and HPHR
     - ASoC: qcom: q6apm: do not close GPR port before closing graph
     - sched/fair: Use recent_used_cpu to test p->cpus_ptr
     - sched/psi: Fix avgs_work re-arm in psi_avgs_work()
     - sched/psi: Rearrange polling code in preparation
     - sched/psi: Rename existing poll members in preparation
     - sched/psi: Extract update_triggers side effect
     - sched/psi: Allow unprivileged polling of N*2s period
     - sched/psi: use kernfs polling functions for PSI trigger polling
     - pinctrl: renesas: rzv2m: Handle non-unique subnode names
     - pinctrl: renesas: rzg2l: Handle non-unique subnode names
     - spi: bcm63xx: fix max prepend length
     - fbdev: imxfb: warn about invalid left/right margin
     - fbdev: imxfb: Removed unneeded release_mem_region
     - perf build: Fix library not found error when using CSLIBS
     - btrfs: be a bit more careful when setting mirror_num_ret in
       btrfs_map_block
     - spi: s3c64xx: clear loopback bit after loopback test
     - kallsyms: Improve the performance of kallsyms_lookup_name()
     - kallsyms: Correctly sequence symbols when CONFIG_LTO_CLANG=y
     - kallsyms: strip LTO-only suffixes from promoted global functions
     - dsa: mv88e6xxx: Do a final check before timing out
     - net: ethernet: ti: cpsw_ale: Fix cpsw_ale_get_field()/cpsw_ale_set_field()
     - bridge: Add extack warning when enabling STP in netns.
     - net: ethernet: mtk_eth_soc: handle probe deferral
     - cifs: fix mid leak during reconnection after timeout threshold
     - ASoC: SOF: ipc3-dtrace: uninitialized data in
       dfsentry_trace_filter_write()
     - net: sched: cls_matchall: Undo tcf_bind_filter in case of failure after
       mall_set_parms
     - net: sched: cls_u32: Undo tcf_bind_filter if u32_replace_hw_knode
     - net: sched: cls_u32: Undo refcount decrement in case update failed
     - net: sched: cls_bpf: Undo tcf_bind_filter in case of an error
     - net: dsa: microchip: ksz8: Separate static MAC table operations for code
       reuse
     - net: dsa: microchip: ksz8: Make ksz8_r_sta_mac_table() static
     - net: dsa: microchip: ksz8_r_sta_mac_table(): Avoid using error code for
       empty entries
     - net: dsa: microchip: correct KSZ8795 static MAC table access
     - iavf: Fix use-after-free in free_netdev
     - iavf: Fix out-of-bounds when setting channels on remove
     - iavf: use internal state to free traffic IRQs
     - iavf: Move netdev_update_features() into watchdog task
     - iavf: send VLAN offloading caps once after VFR
     - iavf: make functions static where possible
     - iavf: Wait for reset in callbacks which trigger it
     - iavf: fix a deadlock caused by rtnl and driver's lock circular
       dependencies
     - iavf: fix reset task race with iavf_remove()
     - security: keys: Modify mismatched function name
     - octeontx2-pf: Dont allocate BPIDs for LBK interfaces
     - bpf: Fix subprog idx logic in check_max_stack_depth
     - bpf: Repeat check_max_stack_depth for async callbacks
     - bpf, arm64: Fix BTI type used for freplace attached functions
     - igc: Avoid transmit queue timeout for XDP
     - igc: Prevent garbled TX queue with XDP ZEROCOPY
     - net: ipv4: use consistent txhash in TIME_WAIT and SYN_RECV
     - tcp: annotate data-races around tcp_rsk(req)->txhash
     - tcp: annotate data-races around tcp_rsk(req)->ts_recent
     - net: ipv4: Use kfree_sensitive instead of kfree
     - net:ipv6: check return value of pskb_trim()
     - Revert "tcp: avoid the lookup process failing to get sk in ehash table"
     - fbdev: au1200fb: Fix missing IRQ check in au1200fb_drv_probe
     - llc: Don't drop packet from non-root netns.
     - ALSA: hda/realtek: Fix generic fixup definition for cs35l41 amp
     - netfilter: nf_tables: fix spurious set element insertion failure
     - netfilter: nf_tables: can't schedule in nft_chain_validate
     - netfilter: nft_set_pipapo: fix improper element removal (CVE-2023-4004)
     - netfilter: nf_tables: skip bound chain in netns release path
     - netfilter: nf_tables: skip bound chain on rule flush (CVE-2023-3777)
     - Bluetooth: use RCU for hci_conn_params and iterate safely in hci_sync
     - Bluetooth: hci_event: call disconnect callback before deleting conn
     - Bluetooth: ISO: fix iso_conn related locking and validity issues
     - Bluetooth: hci_sync: Avoid use-after-free in dbg for
       hci_remove_adv_monitor()
     - tcp: annotate data-races around tp->tcp_tx_delay
     - tcp: annotate data-races around tp->tsoffset
     - tcp: annotate data-races around tp->keepalive_time
     - tcp: annotate data-races around tp->keepalive_intvl
     - tcp: annotate data-races around tp->keepalive_probes
     - tcp: annotate data-races around icsk->icsk_syn_retries
     - tcp: annotate data-races around tp->linger2
     - tcp: annotate data-races around rskq_defer_accept
     - tcp: annotate data-races around tp->notsent_lowat
     - tcp: annotate data-races around icsk->icsk_user_timeout
     - tcp: annotate data-races around fastopenq.max_qlen
     - net: phy: prevent stale pointer dereference in phy_init()
     - jbd2: recheck chechpointing non-dirty buffer
     - tracing/histograms: Return an error if we fail to add histogram to
       hist_vars list
     - drm/ttm: fix bulk_move corruption when adding a entry
     - spi: dw: Remove misleading comment for Mount Evans SoC
     - kallsyms: add kallsyms_seqs_of_names to list of special symbols
     - scripts/kallsyms.c Make the comment up-to-date with current implementation
     - scripts/kallsyms: update the usage in the comment block
     - bpf: allow precision tracking for programs with subprogs
     - bpf: stop setting precise in current state
     - bpf: aggressively forget precise markings during state checkpointing
     - drm/amd/display: use max_dsc_bpp in amdgpu_dm
     - drm/amd/display: fix some coding style issues
     - drm/dp_mst: Clear MSG_RDY flag before sending new message
     - drm/amd/display: force connector state when bpc changes during compliance
     - drm/amd/display: Clean up errors & warnings in amdgpu_dm.c
     - drm/amd/display: fix linux dp link lost handled only one time
     - drm/amd/display: Add polling method to handle MST reply packet
     - Revert "drm/amd/display: edp do not add non-edid timings"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.43
     - netfilter: nf_tables: fix underflow in object reference counter
     - netfilter: nf_tables: fix underflow in chain reference counter
     - [x86] platform/x86/amd/pmf: Notify OS power slider update
     - [x86] platform/x86/amd/pmf: reduce verbosity of apmf_get_system_params
     - drm/amd/display: Keep PHY active for dp config
     - ovl: fix null pointer dereference in ovl_permission()
     - drm/amd: Move helper for dynamic speed switch check out of smu13
     - drm/amd: Align SMU11 SMU_MSG_OverridePcieParameters implementation with
       SMU13
     - jbd2: Fix wrongly judgement for buffer head removing while doing
       checkpoint
     - blk-mq: Fix stall due to recursive flush plug
     - [powerpc*] pseries/vas: Hold mmap_mutex after mmap lock during window
       close
     - [s390x] KVM: s390: pv: fix index value of replaced ASCE
     - io_uring: don't audit the capability check in io_uring_create()
     - gpio: tps68470: Make tps68470_gpio_output() always set the initial value
     - pwm: Add a stub for devm_pwmchip_add()
     - gpio: mvebu: Make use of devm_pwmchip_add
     - gpio: mvebu: fix irq domain leak
     - btrfs: fix race between quota disable and relocation
     - i2c: Delete error messages for failed memory allocations
     - i2c: Improve size determinations
     - i2c: nomadik: Remove unnecessary goto label
     - i2c: nomadik: Use devm_clk_get_enabled()
     - i2c: nomadik: Remove a useless call in the remove function
     - [mips*] Loongson: Move arch cflags to MIPS top level Makefile
     - [mips*] Loongson: Fix build error when make modules_install
     - PCI/ASPM: Return 0 or -ETIMEDOUT from pcie_retrain_link()
     - PCI/ASPM: Factor out pcie_wait_for_retrain()
     - PCI/ASPM: Avoid link retraining race
     - PCI: rockchip: Remove writes to unused registers
     - PCI: rockchip: Fix window mapping and address translation for endpoint
     - PCI: rockchip: Don't advertise MSI-X in PCIe capabilities
     - drm/amd/display: add FB_DAMAGE_CLIPS support
     - drm/amd/display: Check if link state is valid
     - drm/amd/display: Rework context change check
     - drm/amd/display: Enable new commit sequence only for DCN32x
     - drm/amd/display: Copy DC context in the commit streams
     - drm/amd/display: Include surface of unaffected streams
     - drm/amd/display: Use min transition for all SubVP plane add/remove
     - drm/amd/display: add ODM case when looking for first split pipe
     - drm/amd/display: use low clocks for no plane configs
     - drm/amd/display: fix unbounded requesting for high pixel rate modes on
       dcn315
     - drm/amd/display: add pixel rate based CRB allocation support
     - drm/amd/display: fix dcn315 single stream crb allocation
     - drm/amd/display: Update correct DCN314 register header
     - drm/amd/display: Set minimum requirement for using PSR-SU on Rembrandt
     - drm/amd/display: Set minimum requirement for using PSR-SU on Phoenix
     - drm/ttm: Don't print error message if eviction was interrupted
     - drm/ttm: Don't leak a resource on eviction error
     - n_tty: Rename tail to old_tail in n_tty_read()
     - tty: fix hang on tty device with no_room set
     - drm/ttm: never consider pinned BOs for eviction&swap
     - [arm64] KVM: arm64: Condition HW AF updates on config option
     - [arm64] errata: Mitigate Ampere1 erratum AC03_CPU_38 at stage-2
     - mptcp: introduce 'sk' to replace 'sock->sk' in mptcp_listen()
     - mptcp: do not rely on implicit state check in mptcp_listen()
     - tracing/probes: Add symstr type for dynamic events
     - tracing/probes: Fix to avoid double count of the string length on the
       array
     - tracing: Allow synthetic events to pass around stacktraces
     - Revert "tracing: Add "(fault)" name injection to kernel probes"
     - tracing/probes: Fix to record 0-length data_loc in fetch_store_string*()
       if fails
     - maple_tree: add __init and __exit to test module
     - maple_tree: fix 32 bit mas_next testing
     - drm/amd/display: Rework comments on dc file
     - drm/amd/display: fix dc/core/dc.c kernel-doc
     - drm/amd/display: Add FAMS validation before trying to use it
     - drm/amd/display: update extended blank for dcn314 onwards
     - drm/amd/display: Fix possible underflow for displays with large vblank
     - drm/amd/display: Prevent vtotal from being set to 0
     - phy: phy-mtk-dp: Fix an error code in probe()
     - phy: qcom-snps: correct struct qcom_snps_hsphy kerneldoc
     - phy: qcom-snps-femto-v2: keep cfg_ahb_clk enabled during runtime suspend
     - phy: qcom-snps-femto-v2: properly enable ref clock
     - soundwire: qcom: update status correctly with mask
     - media: staging: atomisp: select V4L2_FWNODE
     - media: amphion: Fix firmware path to match linux-firmware
     - i40e: Fix an NULL vs IS_ERR() bug for debugfs_create_dir()
     - iavf: fix potential deadlock on allocation failure
     - iavf: check for removal state before IAVF_FLAG_PF_COMMS_FAILED
     - net: phy: marvell10g: fix 88x3310 power up
     - net: hns3: fix the imp capability bit cannot exceed 32 bits issue
     - net: hns3: fix wrong tc bandwidth weight data issue
     - net: hns3: fix wrong bw weight of disabled tc issue
     - vxlan: calculate correct header length for GPE
     - vxlan: generalize vxlan_parse_gpe_hdr and remove unused args
     - vxlan: fix GRO with VXLAN-GPE
     - phy: hisilicon: Fix an out of bounds check in hisi_inno_phy_probe()
     - atheros: fix return value check in atl1_tso()
     - ethernet: atheros: fix return value check in atl1e_tso_csum()
     - ipv6 addrconf: fix bug where deleting a mngtmpaddr can create a new
       temporary address
     - tcp: Reduce chance of collisions in inet6_hashfn(). (CVE-2023-1206)
     - ice: Fix memory management in ice_ethtool_fdir.c
     - bonding: reset bond's flags when down link is P2P device
     - team: reset team's flags when down link is P2P device
     - octeontx2-af: Removed unnecessary debug messages.
     - octeontx2-af: Fix hash extraction enable configuration
     - net: stmmac: Apply redundant write work around on 4.xx too
     - [x86] platform/x86: msi-laptop: Fix rfkill out-of-sync on MSI Wind U100
     - [x86] traps: Fix load_unaligned_zeropad() handling for shared TDX memory
     - igc: Fix Kernel Panic during ndo_tx_timeout callback
     - netfilter: nft_set_rbtree: fix overlap expiration walk
     - netfilter: nf_tables: skip immediate deactivate in _PREPARE_ERROR
       (CVE-2023-4015)
     - netfilter: nf_tables: disallow rule addition to bound chain via
       NFTA_RULE_CHAIN_ID (CVE-2023-4147)
     - mm: suppress mm fault logging if fatal signal already pending
     - net/sched: mqprio: refactor nlattr parsing to a separate function
     - net/sched: mqprio: add extack to mqprio_parse_nlattr()
     - net/sched: mqprio: Add length check for TCA_MQPRIO_{MAX/MIN}_RATE64
     - benet: fix return value check in be_lancer_xmit_workarounds()
     - tipc: check return value of pskb_trim()
     - tipc: stop tipc crypto on failure in tipc_node_create
     - RDMA/mlx4: Make check for invalid flags stricter
     - drm/msm/dpu: drop enum dpu_core_perf_data_bus_id
     - drm/msm/adreno: Fix snapshot BINDLESS_DATA size
     - RDMA/irdma: Add missing read barriers
     - RDMA/irdma: Fix data race on CQP completion stats
     - RDMA/irdma: Fix data race on CQP request done
     - RDMA/mthca: Fix crash when polling CQ for shared QPs
     - RDMA/bnxt_re: Prevent handling any completions after qp destroy
     - drm/msm: Fix IS_ERR_OR_NULL() vs NULL check in a5xx_submit_in_rb()
     - cxl/acpi: Fix a use-after-free in cxl_parse_cfmws()
     - cxl/acpi: Return 'rc' instead of '0' in cxl_parse_cfmws()
     - ASoC: fsl_spdif: Silence output on stop
     - block: Fix a source code comment in include/uapi/linux/blkzoned.h
     - smb3: do not set NTLMSSP_VERSION flag for negotiate not auth request
     - [x86] drm/i915: Fix an error handling path in igt_write_huge()
     - xenbus: check xen_domain in xenbus_probe_initcall
     - dm raid: fix missing reconfig_mutex unlock in raid_ctr() error paths
     - dm raid: clean up four equivalent goto tags in raid_ctr()
     - dm raid: protect md_stop() with 'reconfig_mutex'
     - drm/amd: Fix an error handling mistake in psp_sw_init()
     - drm/amd/display: Unlock on error path in
       dm_handle_mst_sideband_msg_ready_event()
     - RDMA/irdma: Fix op_type reporting in CQEs
     - RDMA/irdma: Report correct WC error
     - drm/msm: Switch idr_lock to spinlock
     - drm/msm: Disallow submit with fence id 0
     - ublk_drv: move ublk_get_device_from_id into ublk_ctrl_uring_cmd
     - ublk: fail to start device if queue setup is interrupted
     - ublk: fail to recover device if queue setup is interrupted
     - ata: pata_ns87415: mark ns87560_tf_read static
     - ring-buffer: Fix wrong stat of cpu_buffer->read
     - tracing: Fix warning in trace_buffered_event_disable()
     - Revert "usb: gadget: tegra-xudc: Fix error check in
       tegra_xudc_powerdomain_init()"
     - usb: gadget: call usb_gadget_check_config() to verify UDC capability
     - USB: gadget: Fix the memory leak in raw_gadget driver
     - usb: gadget: core: remove unbalanced mutex_unlock in usb_gadget_activate
     - KVM: Grab a reference to KVM for VM and vCPU stats file descriptors
     - KVM: VMX: Don't fudge CR0 and CR4 for restricted L2 guest
     - KVM: x86: Disallow KVM_SET_SREGS{2} if incoming CR0 is invalid
     - serial: qcom-geni: drop bogus runtime pm state update
     - serial: 8250_dw: Preserve original value of DLF register
     - serial: sifive: Fix sifive_serial_console_setup() section
     - USB: serial: option: support Quectel EM060K_128
     - USB: serial: option: add Quectel EC200A module support
     - USB: serial: simple: add Kaufmann RKS+CAN VCP
     - USB: serial: simple: sort driver entries
     - can: gs_usb: gs_can_close(): add missing set of CAN state to
       CAN_STATE_STOPPED
     - usb: typec: Set port->pd before adding device for typec_port
     - usb: typec: Iterate pds array when showing the pd list
     - usb: typec: Use sysfs_emit_at when concatenating the string
     - Revert "usb: dwc3: core: Enable AutoRetry feature in the controller"
     - usb: dwc3: pci: skip BYT GPIO lookup table for hardwired phy
     - usb: dwc3: don't reset device side if dwc3 was configured as host-only
     - usb: misc: ehset: fix wrong if condition
     - usb: ohci-at91: Fix the unhandle interrupt when resume
     - USB: quirks: add quirk for Focusrite Scarlett
     - usb: cdns3: fix incorrect calculation of ep_buf_size when more than one
       config
     - usb: xhci-mtk: set the dma max_seg_size
     - Revert "usb: xhci: tegra: Fix error check"
     - Documentation: security-bugs.rst: update preferences when dealing with the
       linux-distros group
     - Documentation: security-bugs.rst: clarify CVE handling
     - staging: r8712: Fix memory leak in _r8712_init_xmit_priv()
     - staging: ks7010: potential buffer overflow in ks_wlan_set_encode_ext()
     - tty: n_gsm: fix UAF in gsm_cleanup_mux
     - Revert "xhci: add quirk for host controllers that don't update endpoint
       DCS"
     - ALSA: hda/realtek: Support ASUS G713PV laptop
     - ALSA: hda/relatek: Enable Mute LED on HP 250 G8
     - hwmon: (k10temp) Enable AMD3255 Proc to show negative temperature
     - hwmon: (nct7802) Fix for temp6 (PECI1) processed even if PECI1 disabled
     - btrfs: account block group tree when calculating global reserve size
     - btrfs: check if the transaction was aborted at btrfs_wait_for_commit()
     - btrfs: check for commit error at btrfs_attach_transaction_barrier()
     - [x86] MCE/AMD: Decrement threshold_bank refcount when removing threshold
       blocks
     - file: always lock position for FMODE_ATOMIC_POS
     - nfsd: Remove incorrect check in nfsd4_validate_stateid
     - ACPI/IORT: Remove erroneous id_count check in iort_node_get_rmr_info()
     - tpm_tis: Explicitly check for error code
     - irq-bcm6345-l1: Do not assume a fixed block to cpu mapping
     - irqchip/gic-v4.1: Properly lock VPEs when doing a directLPI invalidation
     - locking/rtmutex: Fix task->pi_waiters integrity
     - proc/vmcore: fix signedness bug in read_from_oldmem()
     - xen: speed up grant-table reclaim
     - virtio-net: fix race between set queues and probe
     - net: dsa: qca8k: fix search_and_insert wrong handling of new rule
     - net: dsa: qca8k: fix broken search_and_del
     - net: dsa: qca8k: fix mdb add/del case with 0 VID
     - soundwire: fix enumeration completion
     - [s390x] dasd: fix hanging device after quiesce/resume
     - [s390x] dasd: print copy pair message only for the correct error
     - ASoC: wm8904: Fill the cache for WM8904_ADC_TEST_0 register
     - [arm64] sme: Set new vector length before reallocating
     - PM: sleep: wakeirq: fix wake irq arming
     - ceph: never send metrics if disable_send_metrics is set
     - [x86] drm/i915/dpt: Use shmem for dpt objects
     - dm cache policy smq: ensure IO doesn't prevent cleaner policy progress
     - rbd: make get_lock_owner_info() return a single locker or NULL
     - rbd: harden get_lock_owner_info() a bit
     - rbd: retrieve and check lock owner twice before blocklisting
     - drm/amd/display: set per pipe dppclk to 0 when dpp is off
     - tracing: Fix trace_event_raw_event_synth() if else statement
     - drm/amd/display: perform a bounds check before filling dirty rectangles
     - drm/amd/display: Write to correct dirty_rect
     - ACPI: processor: perflib: Use the "no limit" frequency QoS
     - ACPI: processor: perflib: Avoid updating frequency QoS unnecessarily
     - cpufreq: intel_pstate: Drop ACPI _PSS states table patching
     - mptcp: ensure subflow is unhashed before cleaning the backlog
     - dma-buf: keep the signaling time of merged fences v3
     - dma-buf: fix an error pointer vs NULL bug
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.44
     - xen/netback: Fix buffer overrun triggered by unusual packet
       (CVE-2023-34319)
     - [x86] fix backwards merge of GDS/SRSO bit
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.45
     - io_uring: gate iowait schedule on having pending requests
     - perf: Fix function pointer case
     - net/mlx5: Free irqs only on shutdown callback
     - [arm64] iommu/arm-smmu-v3: Work around MMU-600 erratum 1076982
     - [arm64] iommu/arm-smmu-v3: Document MMU-700 erratum 2812531
     - [arm64] iommu/arm-smmu-v3: Add explicit feature for nesting
     - [arm64] iommu/arm-smmu-v3: Document nesting-related errata
     - [arm64] dts: imx8mm-venice-gw7903: disable disp_blk_ctrl
     - [arm64] dts: imx8mm-venice-gw7904: disable disp_blk_ctrl
     - [arm64] dts: phycore-imx8mm: Label typo-fix of VPU
     - [arm64] dts: phycore-imx8mm: Correction in gpio-line-names
     - [arm64] dts: imx8mn-var-som: add missing pull-up for onboard PHY reset
       pinmux
     - [arm64] dts: freescale: Fix VPU G2 clock
     - [arm64,armhf] firmware: smccc: Fix use of uninitialised results structure
     - lib/bitmap: workaround const_eval test build failure
     - [arm64] firmware: arm_scmi: Fix chan_free cleanup on SMC
     - word-at-a-time: use the same return type for has_zero regardless of
       endianness
     - [s390x] KVM: s390: fix sthyi error handling
     - erofs: fix wrong primary bvec selection on deduplicated extents
     - wifi: cfg80211: Fix return value in scan logic
     - net/mlx5e: fix double free in macsec_fs_tx_create_crypto_table_groups
     - net/mlx5: DR, fix memory leak in mlx5dr_cmd_create_reformat_ctx
     - net/mlx5: fix potential memory leak in mlx5e_init_rep_rx
     - net/mlx5e: fix return value check in mlx5e_ipsec_remove_trailer()
     - net/mlx5e: Fix crash moving to switchdev mode when ntuple offload is set
     - net/mlx5e: Move representor neigh cleanup to profile cleanup_tx
     - bpf: Add length check for SK_DIAG_BPF_STORAGE_REQ_MAP_FD parsing
     - rtnetlink: let rtnl_bridge_setlink checks IFLA_BRIDGE_MODE length
     - [armhf] net: dsa: fix value check in bcm_sf2_sw_probe()
     - perf test uprobe_from_different_cu: Skip if there is no gcc
     - net: sched: cls_u32: Fix match key mis-addressing
     - mISDN: hfcpci: Fix potential deadlock on &hc->lock
     - qed: Fix scheduling in a tasklet while getting stats
     - net: annotate data-races around sk->sk_reserved_mem
     - net: annotate data-race around sk->sk_txrehash
     - net: annotate data-races around sk->sk_max_pacing_rate
     - net: add missing READ_ONCE(sk->sk_rcvlowat) annotation
     - net: add missing READ_ONCE(sk->sk_sndbuf) annotation
     - net: add missing READ_ONCE(sk->sk_rcvbuf) annotation
     - net: annotate data-races around sk->sk_mark
     - net: add missing data-race annotations around sk->sk_peek_off
     - net: add missing data-race annotation for sk_ll_usec
     - net: annotate data-races around sk->sk_priority
     - net/sched: taprio: Limit TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME to INT_MAX.
     - ice: Fix RDMA VSI removal during queue rebuild
     - bpf, cpumap: Handle skb as well when clean up ptr_ring
     - net/sched: cls_u32: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4208)
     - net/sched: cls_fw: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4207)
     - net/sched: cls_route: No longer copy tcf_result on update to avoid
       use-after-free (CVE-2023-4128, CVE-2023-4206)
     - bpf: sockmap: Remove preempt_disable in sock_map_sk_acquire
     - net: netsec: Ignore 'phy-mode' on SynQuacer in DT mode
     - bnxt_en: Fix page pool logic for page size >= 64K
     - bnxt_en: Fix max_mtu setting for multi-buf XDP
     - net: dcb: choose correct policy to parse DCB_ATTR_BCN
     - [s390x] qeth: Don't call dev_close/dev_open (DOWN/UP)
     - ip6mr: Fix skb_under_panic in ip6mr_cache_report()
     - vxlan: Fix nexthop hash size
     - net/mlx5: fs_core: Make find_closest_ft more generic
     - net/mlx5: fs_core: Skip the FTs in the same FS_TYPE_PRIO_CHAINS fs_prio
     - tcp_metrics: fix addr_same() helper
     - tcp_metrics: annotate data-races around tm->tcpm_stamp
     - tcp_metrics: annotate data-races around tm->tcpm_lock
     - tcp_metrics: annotate data-races around tm->tcpm_vals[]
     - tcp_metrics: annotate data-races around tm->tcpm_net
     - tcp_metrics: fix data-race in tcpm_suck_dst() vs fastopen
     - scsi: zfcp: Defer fc_rport blocking until after ADISC response
     - scsi: storvsc: Limit max_sectors for virtual Fibre Channel devices
     - libceph: fix potential hang in ceph_osdc_notify()
     - USB: zaurus: Add ID for A-300/B-500/C-700
     - ceph: defer stopping mdsc delayed_work
     - [arm64] firmware: arm_scmi: Drop OF node reference in the transport
       channel setup
     - exfat: use kvmalloc_array/kvfree instead of kmalloc_array/kfree
     - exfat: release s_lock before calling dir_emit()
     - bpf: Disable preemption in bpf_perf_event_output
     - [arm64] dts: stratix10: fix incorrect I2C property for SCL signal
     - net: tun_chr_open(): set sk_uid from current_fsuid() (CVE-2023-4194)
     - net: tap_open(): set sk_uid from current_fsuid() (CVE-2023-4194)
     - wifi: mt76: mt7615: do not advertise 5 GHz on first phy of MT7615D (DBDC)
     - [x86] hyperv: Disable IBT when hypercall page lacks ENDBR instruction
     - rbd: prevent busy loop when requesting exclusive lock
     - bpf: Disable preemption in bpf_event_output
     - [powerpc*] ftrace: Create a dummy stackframe to fix stack unwind
     - [arm64] fpsimd: Sync and zero pad FPSIMD state for streaming SVE
     - [arm64] fpsimd: Clear SME state in the target task when setting the VL
     - [arm64] fpsimd: Sync FPSIMD state with SVE for SME only systems
     - open: make RESOLVE_CACHED correctly test for O_TMPFILE
     - drm/ttm: check null pointer before accessing when swapping
     - [x86] drm/i915: Fix premature release of request's reusable memory
     - [x86] drm/i915/gt: Cleanup aux invalidation registers
     - bpf, cpumap: Make sure kthread is running before map update returns
     - file: reinstate f_pos locking optimization for regular files
     - mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required()
     - fs/sysv: Null check to prevent null-ptr-deref bug
     - Bluetooth: L2CAP: Fix use-after-free in l2cap_sock_ready_cb
       (CVE-2023-40283)
     - debugobjects: Recheck debug_objects_enabled before reporting
     - net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb
     - fs: Protect reconfiguration of sb read-write from racing writes
     - btrfs: remove BUG_ON()'s in add_new_free_space()
     - f2fs: fix to do sanity check on direct node in truncate_dnode()
     - io_uring: annotate offset timeout races
     - [powerpc*] mm/altmap: Fix altmap boundary check
     - [armhf] drm/imx/ipuv3: Fix front porch adjustment upon hactive aligning
     - drm/amd/display: Ensure that planes are in the same order
     - drm/amd/display: skip CLEAR_PAYLOAD_ID_TABLE if device mst_en is 0
     - f2fs: fix to set flush_merge opt and show noflush_merge
     - f2fs: don't reset unchangable mount option in f2fs_remount()
     - exfat: check if filename entries exceeds max filename length
       (CVE-2023-4273)
     - [arm64] ptrace: Don't enable SVE when setting streaming SVE
     - drm/amdgpu: add vram reservation based on vram_usagebyfirmware_v2_2
     - drm/amdgpu: Remove unnecessary domain argument
     - drm/amdgpu: Use apt name for FW reserved region
     - [x86] Revert "drm/i915: Disable DC states for all commits"
       (Closes: #1043564)
     - [x86] CPU/AMD: Do not leak quotient data after a division by 0
       (CVE-2023-20588)
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.46
     - Revert "loongarch/cpu: Switch to arch_cpu_finalize_init()"
     - tpm: Disable RNG for all AMD fTPMs
     - tpm: Add a helper for checking hwrng enabled
     - ksmbd: validate command request size
     - ksmbd: fix wrong next length validation of ea buffer in smb2_set_ea()
     - [x86] KVM: SEV: snapshot the GHCB before accessing it
     - [x86] KVM: SEV: only access GHCB fields once (CVE-2023-4155)
     - wifi: nl80211: fix integer overflow in nl80211_parse_mbssid_elems()
     - wifi: rtw89: fix 8852AE disconnection caused by RX full flags
     - wireguard: allowedips: expand maximum node depth
     - ipv6: adjust ndisc_is_useropt() to also return true for PIO
     - mptcp: avoid bogus reset on fallback close
     - mptcp: fix disconnect vs accept race
     - [arm64,armhf] dmaengine: pl330: Return DMA_PAUSED when transaction is
       paused
     - [amd64] net: mana: Fix MANA VF unload when hardware is unresponsive
     - nvme-pci: add NVME_QUIRK_BOGUS_NID for Samsung PM9B1 256G and 512G
     - drm/nouveau/gr: enable memory loads on helper invocation on all channels
     - drm/nouveau/nvkm/dp: Add workaround to fix DP 1.3+ DPCD issues
     - drm/shmem-helper: Reset vma->vm_ops before calling dma_buf_mmap()
     - drm/amdgpu: fix possible UAF in amdgpu_cs_pass1()
     - drm/amd/display: check attr flag before set cursor degamma on DCN3+
     - drm/amdgpu: add S/G display parameter
     - drm/amd: Disable S/G for APUs when 64GB or more host memory
     - drm/amd/display: limit DPIA link rate to HBR3
     - cpuidle: dt_idle_genpd: Add helper function to remove genpd topology
     - hwmon: (pmbus/bel-pfe) Enable PMBUS_SKIP_STATUS_CHECK for pfe1100
     - nilfs2: fix use-after-free of nilfs_root in dirtying inodes via iput
     - drm/amd/pm: fulfill swsmu peak profiling mode shader/memory clock settings
     - drm/amd/pm: expose swctf threshold setting for legacy powerplay
     - drm/amd/pm: fulfill powerplay peak profiling mode shader/memory clock
       settings
     - drm/amd/pm: avoid unintentional shutdown due to temperature momentary
       fluctuation
     - drm/amd/display: Handle virtual hardware detect
     - drm/amd/display: Add function for validate and update new stream
     - drm/amd/display: Handle seamless boot stream
     - drm/amd/display: Update OTG instance in the commit stream
     - drm/amd/display: Avoid ABM when ODM combine is enabled for eDP
     - drm/amd/display: Use update plane and stream routine for DCN32x
     - drm/amd/display: Disable phantom OTG after enable for plane disable
     - drm/amd/display: Retain phantom plane/stream if validation fails
     - drm/amd/display: fix the build when DRM_AMD_DC_DCN is not set
     - drm/amd/display: trigger timing sync only if TG is running
     - io_uring: correct check for O_TMPFILE
     - [arm64] iio: cros_ec: Fix the allocation size for cros_ec_command
     - iio: adc: ad7192: Fix ac excitation feature
     - iio: adc: ina2xx: avoid NULL pointer dereference on OF device match
     - [arm*] binder: fix memory leak in binder_init()
     - misc: rtsx: judge ASPM Mode to set PETXCFG Reg
     - usb-storage: alauda: Fix uninit-value in alauda_check_media()
     - [arm64,armhf] usb: dwc3: Properly handle processing of pending events
     - USB: Gadget: core: Help prevent panic during UVC unconfigure
     - usb: common: usb-conn-gpio: Prevent bailing out if initial role is none
     - usb: typec: tcpm: Fix response to vsafe0V event
     - usb: typec: altmodes/displayport: Signal hpd when configuring pin
       assignment
     - [x86] cpu/amd: Enable Zenbleed fix for AMD Custom APU 0405
     - [x86] mm: Fix VDSO and VVAR placement on 5-level paging machines
     - [x86] sev: Do not try to parse for the CC blob on non-AMD hardware
     - [x86] speculation: Add cpu_show_gds() prototype
     - [x86] Move gds_ucode_mitigated() declaration to header
     - drm/nouveau/disp: Revert a NULL check inside nouveau_connector_get_modes
       (Closes: #1042753)
     - iio: core: Prevent invalid memory access when there is no parent
     - interconnect: qcom: Add support for mask-based BCMs
     - interconnect: qcom: sm8450: add enable_mask for bcm nodes
     - net: core: remove unnecessary frame_sz check in bpf_xdp_adjust_tail()
     - bpf, sockmap: Fix map type error in sock_map_del_link
     - bpf, sockmap: Fix bug that strp_done cannot be called
     - mISDN: Update parameter type of dsp_cmx_send()
     - macsec: use DEV_STATS_INC()
     - mptcp: fix the incorrect judgment for msk->cb_flags
     - net/packet: annotate data-races around tp->status
     - net/smc: Use correct buffer sizes when switching between TCP and SMC
     - tcp: add missing family to tcp_set_ca_state() tracepoint
     - tunnels: fix kasan splat when generating ipv4 pmtu error
     - xsk: fix refcount underflow in error path
     - bonding: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
     - dccp: fix data-race around dp->dccps_mss_cache
     - drivers: net: prevent tun_build_skb() to exceed the packet size limit
     - drivers: vxlan: vnifilter: free percpu vni stats on error path
     - iavf: fix potential races for FDIR filters
     - [amd64] IB/hfi1: Fix possible panic during hotplug remove
     - drm/rockchip: Don't spam logs in atomic check
     - wifi: cfg80211: fix sband iftype data lookup for AP_VLAN
     - RDMA/umem: Set iova in ODP flow
     - net: tls: avoid discarding data on record close
     - net: phy: at803x: remove set/get wol callbacks for AR8032
     - [arm64] net: dsa: ocelot: call dsa_tag_8021q_unregister() under
       rtnl_lock() on driver remove
     - [arm64] net: hns3: refactor hclge_mac_link_status_wait for interface reuse
     - [arm64] net: hns3: add wait until mac link down
     - [arm64] net: hns3: fix deadlock issue when externel_lb and reset are
       executed together
     - nexthop: Fix infinite nexthop dump when using maximum nexthop ID
     - nexthop: Make nexthop bucket dump more efficient
     - nexthop: Fix infinite nexthop bucket dump when using maximum nexthop ID
     - [arm64] net: hns3: fix strscpy causing content truncation issue
     - dmaengine: owl-dma: Modify mismatched function name
     - net/mlx5: Allow 0 for total host VFs
     - net/mlx5: LAG, Check correct bucket when modifying LAG
     - net/mlx5: Skip clock update work when device is in error state
     - net/mlx5: Reload auxiliary devices in pci error handlers
     - ibmvnic: Enforce stronger sanity checks on login response
     - ibmvnic: Unmap DMA login rsp buffer on send login fail
     - ibmvnic: Handle DMA unmapping of login buffs in release functions
     - ibmvnic: Do partial reset on login failure
     - ibmvnic: Ensure login failure recovery is safe from other resets
     - gpio: ws16c48: Fix off-by-one error in WS16C48 resource region extent
     - gpio: sim: mark the GPIO chip as a one that can sleep
     - btrfs: wait for actual caching progress during allocation
     - btrfs: don't stop integrity writeback too early
     - btrfs: properly clear end of the unreserved range in cow_file_range
     - btrfs: exit gracefully if reloc roots don't match
     - btrfs: reject invalid reloc tree root keys with stack dump
     - btrfs: set cache_block_group_error if we find an error
     - nvme-tcp: fix potential unbalanced freeze & unfreeze
     - nvme-rdma: fix potential unbalanced freeze & unfreeze
     - netfilter: nf_tables: report use refcount overflow
     - scsi: core: Fix legacy /proc parsing buffer overflow
     - [x86] scsi: storvsc: Fix handling of virtual Fibre Channel timeouts
     - scsi: ufs: renesas: Fix private allocation
     - scsi: 53c700: Check that command slot is not NULL
     - scsi: snic: Fix possible memory leak if device_add() fails
     - scsi: core: Fix possible memory leak if device_add() fails
     - scsi: fnic: Replace return codes in fnic_clean_pending_aborts()
     - scsi: qedi: Fix firmware halt over suspend and resume
     - scsi: qedf: Fix firmware halt over suspend and resume
     - [x86] platform/x86: serial-multi-instantiate: Auto detect IRQ resource for
       CSC3551
     - ACPI: scan: Create platform device for CS35L56
     - sch_netem: fix issues in netem_change() vs get_dist_table()
     - drm/amd/pm/smu7: move variables to where they are used
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.47
     - [arm64] mmc: sdhci-f-sdh30: Replace with sdhci_pltfm
     - [arm64] cpuidle: psci: Extend information in log about OSI/PC mode
     - [arm64] cpuidle: psci: Move enabling OSI mode after power domains creation
     - zsmalloc: consolidate zs_pool's migrate_lock and size_class's locks
     - zsmalloc: fix races between modifications of fullness and isolated
     - net/smc: replace mutex rmbs_lock and sndbufs_lock with rw_semaphore
     - net/smc: Fix setsockopt and sysctl to specify same buffer size again
     - net: phy: at803x: Use devm_regulator_get_enable_optional()
     - net: phy: at803x: fix the wol setting functions
     - drm/amdgpu: fix calltrace warning in amddrm_buddy_fini
     - drm/amdgpu: Fix integer overflow in amdgpu_cs_pass1
     - drm/amdgpu: fix memory leak in mes self test
     - [x86] ASoC: Intel: sof_sdw: add quirk for MTL RVP
     - [x86] ASoC: Intel: sof_sdw: add quirk for LNL RVP
     - ASoC: SOF: amd: Add pci revision id check
     - drm/stm: ltdc: fix late dereference check
     - drm: rcar-du: remove R-Car H3 ES1.* workarounds
     - [x86] ASoC: amd: vangogh: Add check for acp config flags in vangogh
       platform
     - [x86] ASoC: Intel: sof_sdw_rt_sdca_jack_common: test SOF_JACK_JDSRC in
       _exit
     - [x86] ASoC: Intel: sof_sdw: Add support for Rex soundwire
     - iopoll: Call cpu_relax() in busy loops
     - [x86] ASoC: SOF: Intel: fix SoundWire/HDaudio mutual exclusion
     - dma-remap: use kvmalloc_array/kvfree for larger dma memory remap
     - accel/habanalabs: add pci health check during heartbeat
     - HID: logitech-hidpp: Add USB and Bluetooth IDs for the Logitech G915 TKL
       Keyboard
     - [amd64] iommu/amd: Introduce Disable IRTE Caching Support
     - drm/amdgpu: install stub fence into potential unused fence pointers
     - drm/amd/display: Apply 60us prefetch for DCFCLK <= 300Mhz
     - RDMA/mlx5: Return the firmware result upon destroying QP/RQ
     - drm/amd/display: Skip DPP DTO update if root clock is gated
     - drm/amd/display: Enable dcn314 DPP RCO
     - ASoC: SOF: core: Free the firmware trace before calling snd_sof_shutdown()
     - HID: intel-ish-hid: ipc: Add Arrow Lake PCI device ID
     - ALSA: hda/realtek: Add quirks for ROG ALLY CS35l41 audio
     - smb: client: fix warning in cifs_smb3_do_mount()
     - cifs: fix session state check in reconnect to avoid use-after-free issue
     - serial: stm32: Ignore return value of uart_remove_one_port() in .remove()
     - led: qcom-lpg: Fix resource leaks in for_each_available_child_of_node()
       loops
     - media: v4l2-mem2mem: add lock to protect parameter num_rdy
     - media: camss: set VFE bpl_alignment to 16 for sdm845 and sm8250
     - usb: gadget: u_serial: Avoid spinlock recursion in __gs_console_push
     - usb: gadget: uvc: queue empty isoc requests if no video buffer is
       available
     - media: platform: mediatek: vpu: fix NULL ptr dereference
     - [x86] thunderbolt: Read retimer NVM authentication status prior
       tb_retimer_set_inbound_sbtx()
     - usb: chipidea: imx: don't request QoS for imx8ulp
     - usb: chipidea: imx: add missing USB PHY DPDM wakeup setting
     - gfs2: Fix possible data races in gfs2_show_options()
     - pcmcia: rsrc_nonstatic: Fix memory leak in nonstatic_release_resource_db()
     - [x86] thunderbolt: Add Intel Barlow Ridge PCI ID
     - [x86] thunderbolt: Limit Intel Barlow Ridge USB3 bandwidth
     - firewire: net: fix use after free in fwnet_finish_incoming_packet()
     - watchdog: sp5100_tco: support Hygon FCH/SCH (Server Controller Hub)
     - Bluetooth: L2CAP: Fix use-after-free
     - Bluetooth: btusb: Add MT7922 bluetooth ID for the Asus Ally
     - ceph: try to dump the msgs when decoding fails
     - drm/amdgpu: Fix potential fence use-after-free v2
     - fs/ntfs3: Enhance sanity check while generating attr_list
     - fs: ntfs3: Fix possible null-pointer dereferences in mi_read()
     - fs/ntfs3: Mark ntfs dirty when on-disk struct is corrupted
     - ALSA: hda/realtek: Add quirks for Unis H3C Desktop B760 & Q760
     - ALSA: hda: fix a possible null-pointer dereference due to data race in
       snd_hdac_regmap_sync()
     - ALSA: hda/realtek: Add quirk for ASUS ROG GX650P
     - ALSA: hda/realtek: Add quirk for ASUS ROG GA402X
     - ALSA: hda/realtek: Add quirk for ASUS ROG GZ301V
     - Bluetooth: MGMT: Use correct address for memcpy()
     - ring-buffer: Do not swap cpu_buffer during resize process
     - igc: read before write to SRRCTL register
     - drm/amd/display: save restore hdcp state when display is unplugged from
       mst hub
     - drm/amd/display: phase3 mst hdcp for multiple displays
     - drm/amd/display: fix access hdcp_workqueue assert
     - [arm64] KVM: arm64: vgic-v4: Make the doorbell request robust w.r.t
       preemption
     - fbdev/hyperv-fb: Do not set struct fb_info.apertures
     - video/aperture: Only remove sysfb on the default vga pci device
       (Closes: #1051163)
     - btrfs: move out now unused BG from the reclaim list
     - btrfs: convert btrfs_block_group::needs_free_space to runtime flag
     - btrfs: convert btrfs_block_group::seq_zone to runtime flag
     - btrfs: fix use-after-free of new block group that became unused
     - virtio-mmio: don't break lifecycle of vm_dev
     - cifs: fix potential oops in cifs_oplock_break
     - i2c: bcm-iproc: Fix bcm_iproc_i2c_isr deadlock issue
     - i2c: hisi: Only handle the interrupt of the driver's transfer
     - i2c: tegra: Fix i2c-tegra DMA config option processing
     - fbdev: mmp: fix value check in mmphw_probe()
     - [powerpc*] rtas_flash: allow user copy to flash block cache objects
     - tty: n_gsm: fix the UAF caused by race condition in gsm_cleanup_mux
     - tty: serial: fsl_lpuart: Clear the error flags by writing 1 for lpuart32
       platforms
     - btrfs: fix incorrect splitting in btrfs_drop_extent_map_range
     - btrfs: fix BUG_ON condition in btrfs_cancel_balance
     - i2c: designware: Correct length byte validation logic
     - i2c: designware: Handle invalid SMBus block data response length value
     - net: xfrm: Fix xfrm_address_filter OOB read
     - net: af_key: fix sadb_x_filter validation
     - net: xfrm: Amend XFRMA_SEC_CTX nla_policy structure
     - xfrm: fix slab-use-after-free in decode_session6
     - ip6_vti: fix slab-use-after-free in decode_session6
     - ip_vti: fix potential slab-use-after-free in decode_session6
     - xfrm: add NULL check in xfrm_update_ae_params (CVE-2023-3772)
     - xfrm: add forgotten nla_policy for XFRMA_MTIMER_THRESH (CVE-2023-3773)
     - virtio_net: notify MAC address change on device initialization
     - virtio-net: set queues after driver_ok
     - net: pcs: Add missing put_device call in miic_create
     - net: phy: fix IRQ-based wake-on-lan over hibernate / power off
     - drm/panel: simple: Fix AUO G121EAN01 panel timings according to the docs
     - net: macb: In ZynqMP resume always configure PS GTR for non-wakeup source
     - octeon_ep: cancel tx_timeout_task later in remove sequence
     - netfilter: nf_tables: fix false-positive lockdep splat
     - netfilter: nf_tables: deactivate catchall elements in next generation
       (CVE-2023-4569)
     - ipvs: fix racy memcpy in proc_do_sync_threshold
     - netfilter: nft_dynset: disallow object maps
     - net: phy: broadcom: stub c45 read/write for 54810
     - team: Fix incorrect deletion of ETH_P_8021AD protocol vid from slaves
     - net: openvswitch: reject negative ifindex
     - iavf: fix FDIR rule fields masks validation
     - i40e: fix misleading debug logs
     - net: dsa: mv88e6xxx: Wait for EEPROM done before HW reset
     - sfc: don't unregister flow_indr if it was never registered
     - sock: Fix misuse of sk_under_memory_pressure()
     - net: do not allow gso_size to be set to GSO_BY_FRAGS
     - qede: fix firmware halt over suspend and resume
     - ice: Block switchdev mode when ADQ is active and vice versa
     - bus: ti-sysc: Flush posted write on enable before reset
     - [arm64] dts: qcom: qrb5165-rb5: fix thermal zone conflict
     - [arm64] dts: rockchip: Disable HS400 for eMMC on ROCK Pi 4
     - [arm64] dts: rockchip: Disable HS400 for eMMC on ROCK 4C+
     - [armhf] dts: imx: align LED node names with dtschema
     - [arm64] dts: imx8mm: Drop CSI1 PHY reference clock configuration
     - [armhf] dts: imx: Set default tuning step for imx6sx usdhc
     - [arm64] dts: imx93: Fix anatop node size
     - ASoC: rt5665: add missed regulator_bulk_disable
     - ASoC: meson: axg-tdm-formatter: fix channel slot allocation
     - ALSA: hda/realtek: Add quirks for HP G11 Laptops
     - soc: aspeed: uart-routing: Use __sysfs_match_string
     - soc: aspeed: socinfo: Add kfree for kstrdup
     - ALSA: hda/realtek - Remodified 3k pull low procedure
     - serial: 8250: Fix oops for port->pm on uart_change_pm()
     - ALSA: usb-audio: Add support for Mythware XA001AU capture and playback
       interfaces.
     - cifs: Release folio lock on fscache read hit.
     - virtio-net: Zero max_tx_vq field for VIRTIO_NET_CTRL_MQ_HASH_CONFIG case
     - [arm64] dts: rockchip: Fix Wifi/Bluetooth on ROCK Pi 4 boards
     - blk-crypto: dynamically allocate fallback profile
     - mmc: wbsd: fix double mmc_free_host() in wbsd_init()
     - mmc: block: Fix in_flight[issue_type] value error
     - drm/qxl: fix UAF on handle creation
     - [x86] drm/i915/sdvo: fix panel_type initialization
     - drm/amd: flush any delayed gfxoff on suspend entry
     - drm/amdgpu: skip fence GFX interrupts disable/enable for S0ix
     - drm/amdgpu/pm: fix throttle_status for other than MP1 11.0.7
     - drm/amd/display: disable RCO for DCN314
     - zsmalloc: allow only one active pool compaction context
     - sched/fair: unlink misfit task from cpu overutilized
     - sched/fair: Remove capacity inversion detection
     - drm/amd/display: Implement workaround for writing to OTG_PIXEL_RATE_DIV
       register
     - hugetlb: do not clear hugetlb dtor until allocating vmemmap
     - netfilter: set default timeout to 3 secs for sctp shutdown send and recv
       state
     - [arm64] ptrace: Ensure that SME is set up for target when writing SSVE
       state
     - drm/amd/pm: skip the RLC stop when S0i3 suspend for SMU v13.0.4/11
     - drm/amdgpu: keep irq count in amdgpu_irq_disable_all
     - af_unix: Fix null-ptr-deref in unix_stream_sendpage(). (CVE-2023-4622)
     - drm/nouveau/disp: fix use-after-free in error handling of
       nouveau_connector_create
     - net: fix the RTO timer retransmitting skb every 1ms if linear option is
       enabled
     - [arm64] mmc: f-sdh30: fix order of function calls in sdhci_f_sdh30_remove
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.48
     - [x86] cpu: Fix __x86_return_thunk symbol type
     - [x86] cpu: Fix up srso_safe_ret() and __x86_return_thunk()
     - [x86] alternative: Make custom return thunk unconditional
     - [x86] cpu: Clean up SRSO return thunk mess
     - [x86] cpu: Rename original retbleed methods
     - [x86] cpu: Rename srso_(.*)_alias to srso_alias_\1
     - [x86] cpu: Cleanup the untrain mess
     - [x86] srso: Explain the untraining sequences a bit more
     - [x86] static_call: Fix __static_call_fixup()
     - [x86] retpoline: Don't clobber RFLAGS during srso_safe_ret()
       (Closes: #1043585)
     - [x86] CPU/AMD: Fix the DIV(0) initial fix attempt (CVE-2023-20588)
     - [x86] srso: Disable the mitigation on unaffected configurations
     - [x86] retpoline,kprobes: Fix position of thunk sections with
       CONFIG_LTO_CLANG
     - [x86] objtool/x86: Fixup frame-pointer vs rethunk
     - [x86] srso: Correct the mitigation status when SMT is disabled
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.49
     - [x86] objtool/x86: Fix SRSO mess
     - Revert "f2fs: don't reset unchangable mount option in f2fs_remount()"
     - Revert "f2fs: fix to set flush_merge opt and show noflush_merge"
     - Revert "f2fs: fix to do sanity check on direct node in truncate_dnode()"
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.50
     - NFSv4.2: fix error handling in nfs42_proc_getxattr
     - NFSv4: fix out path in __nfs4_get_acl_uncached
     - xprtrdma: Remap Receive buffers after a reconnect
     - drm/ast: Use drm_aperture_remove_conflicting_pci_framebuffers
     - fbdev/radeon: use pci aperture helpers
     - [x86] drm/gma500: Use drm_aperture_remove_conflicting_pci_framebuffers
     - drm/aperture: Remove primary argument
     - video/aperture: Only kick vgacon when the pdev is decoding vga
     - video/aperture: Move vga handling to pci function
     - PCI: acpiphp: Reassign resources on bridge if necessary
     - [mips*]: cpu-features: Enable octeon_cache by cpu_type
     - [mips*] cpu-features: Use boot_cpu_type for CPU type based features
     - jbd2: remove t_checkpoint_io_list
     - jbd2: remove journal_clean_one_cp_list()
     - jbd2: fix a race when checking checkpoint buffer busy
     - can: raw: fix receiver memory leak
     - can: raw: fix lockdep issue in raw_release()
     - [s390x] zcrypt: remove unnecessary (void *) conversions
     - [s390x] zcrypt: fix reply buffer calculations for CCA replies
     - [x86] drm/i915: Add the gen12_needs_ccs_aux_inv helper
     - [x86] drm/i915/gt: Ensure memory quiesced before invalidation
     - [x86] drm/i915/gt: Poll aux invalidation register bit on invalidation
     - [x86] drm/i915/gt: Support aux invalidation on all engines
     - tracing: Fix cpu buffers unavailable due to 'record_disabled' missed
     - tracing: Fix memleak due to race between current_tracer and trace
     - devlink: move code to a dedicated directory
     - devlink: add missing unregister linecard notification
     - [arm64] net: dsa: felix: fix oversize frame dropping for always closed
       tc-taprio gates
     - sock: annotate data-races around prot->memory_pressure
     - dccp: annotate data-races in dccp_poll()
     - ipvlan: Fix a reference count leak warning in ipvlan_ns_exit()
     - mlxsw: pci: Set time stamp fields also when its type is MIRROR_UTC
     - mlxsw: reg: Fix SSPR register layout
     - mlxsw: Fix the size of 'VIRT_ROUTER_MSB'
     - net: bgmac: Fix return value check for fixed_phy_register()
     - net: bcmgenet: Fix return value check for fixed_phy_register()
     - net: validate veth and vxcan peer ifindexes
     - ipv4: fix data-races around inet->inet_id
     - ice: fix receive buffer size miscalculation
     - Revert "ice: Fix ice VF reset during iavf initialization"
     - ice: Fix NULL pointer deref during VF reset
     - can: isotp: fix support for transmission of SF without flow control
     - igb: Avoid starting unnecessary workqueues
     - igc: Fix the typo in the PTM Control macro
     - net/sched: fix a qdisc modification with ambiguous command request
     - i40e: fix potential NULL pointer dereferencing of pf->vf
       i40e_sync_vsi_filters()
     - netfilter: nf_tables: flush pending destroy work before netlink notifier
     - netfilter: nf_tables: fix out of memory error handling
     - rtnetlink: Reject negative ifindexes in RTM_NEWLINK
     - bonding: fix macvlan over alb bond support
     - [x86] KVM: x86: Preserve TDP MMU roots until they are explicitly
       invalidated
     - [x86] KVM: x86/mmu: Fix an sign-extension bug with mmu_seq that hangs
       vCPUs
     - io_uring: get rid of double locking
     - io_uring: extract a io_msg_install_complete helper
     - io_uring/msg_ring: move double lock/unlock helpers higher up
     - io_uring/msg_ring: fix missing lock on overflow for IOPOLL (CVE-2023-2430)
     - [x86] ASoC: amd: yc: Add VivoBook Pro 15 to quirks list for acp6x
     - [x86] ASoC: cs35l41: Correct amp_gain_tlv values
     - ibmveth: Use dcbf rather than dcbfl
     - wifi: mac80211: limit reorder_buf_filtered to avoid UBSAN warning
     - [x86] platform/x86: ideapad-laptop: Add support for new hotkeys found on
       ThinkBook 14s Yoga ITL
     - NFSv4: Fix dropped lock for racing OPEN and delegation return
     - clk: Fix slab-out-of-bounds error in devm_clk_release()
     - mm,ima,kexec,of: use memblock_free_late from ima_free_kexec_buffer
     - shmem: fix smaps BUG sleeping while atomic
     - ALSA: ymfpci: Fix the missing snd_card_free() call at probe error
     - mm/gup: handle cont-PTE hugetlb pages correctly in gup_must_unshare() via
       GUP-fast
     - mm: add a call to flush_cache_vmap() in vmap_pfn()
     - mm: memory-failure: fix unexpected return value in soft_offline_page()
     - NFS: Fix a use after free in nfs_direct_join_group()
     - nfsd: Fix race to FREE_STATEID and cl_revoked
     - selinux: set next pointer before attaching to list
     - batman-adv: Trigger events for auto adjusted MTU
     - batman-adv: Don't increase MTU when set by user
     - batman-adv: Do not get eth header before batadv_check_management_packet
     - batman-adv: Fix TT global entry leak when client roamed back
     - batman-adv: Fix batadv_v_ogm_aggr_send memory leak
     - batman-adv: Hold rtnl lock during MTU update via netlink
     - lib/clz_ctz.c: Fix __clzdi2() and __ctzdi2() for 32-bit kernels
     - of: dynamic: Refactor action prints to not use "%pOF" inside devtree_lock
     - pinctrl: amd: Mask wake bits on probe again
     - media: vcodec: Fix potential array out-of-bounds in encoder queue_setup
     - PCI: acpiphp: Use pci_assign_unassigned_bridge_resources() only for
       non-root bus
     - drm/vmwgfx: Fix shader stage validation
     - [x86] drm/i915/dgfx: Enable d3cold at s2idle
     - drm/display/dp: Fix the DP DSC Receiver cap size
     - [x86] fpu: Invalidate FPU state correctly on exec()
     - [x86] fpu: Set X86_FEATURE_OSXSAVE feature after enabling OSXSAVE in CR4
       (Closes: #1050622)
     - hwmon: (aquacomputer_d5next) Add selective 200ms delay after sending ctrl
       report
     - nfs: use vfs setgid helper
     - nfsd: use vfs setgid helper
     - cgroup/cpuset: Rename functions dealing with DEADLINE accounting
     - sched/cpuset: Bring back cpuset_mutex
     - sched/cpuset: Keep track of SCHED_DEADLINE task in cpusets
     - cgroup/cpuset: Iterate only if DEADLINE tasks are present
     - sched/deadline: Create DL BW alloc, free & check overflow interface
     - cgroup/cpuset: Free DL BW in case can_attach() fails
     - [x86] thunderbolt: Fix Thunderbolt 3 display flickering issue on 2nd hot
       plug onwards
     - can: raw: add missing refcount for memory leak fix
     - madvise:madvise_free_pte_range(): don't use mapcount() against large folio
       for sharing check
     - scsi: snic: Fix double free in snic_tgt_create()
     - scsi: core: raid_class: Remove raid_component_add()
     - clk: Fix undefined reference to `clk_rate_exclusive_{get,put}'
     - dma-buf/sw_sync: Avoid recursive lock during fence signal
     - gpio: sim: dispose of irq mappings before destroying the irq_sim domain
     - gpio: sim: pass the GPIO device's software node to irq domain
     - [x86] ASoC: amd: yc: Fix a non-functional mic on Lenovo 82SJ
     - maple_tree: disable mas_wr_append() when other readers are possible
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.51
     - ACPI: thermal: Drop nocrt parameter
     - module: Expose module_init_layout_section()
     - [arm64] module-plts: inline linux/moduleloader.h
     - [arm64] module: Use module_init_layout_section() to spot init sections
     - [armel,armhf] module: Use module_init_layout_section() to spot init
       sections
     - [x86] thunderbolt: Fix a backport error for display flickering issue
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.52
     - erofs: ensure that the post-EOF tails are all zeroed
     - ksmbd: fix wrong DataOffset validation of create context
     - ksmbd: fix slub overflow in ksmbd_decode_ntlmssp_auth_blob()
     - ksmbd: replace one-element array with flex-array member in struct
       smb2_ea_info
     - ksmbd: reduce descriptor size if remaining bytes is less than request size
     - [arm64] net: enetc: use EXPORT_SYMBOL_GPL for enetc_phc_index
     - modules: only allow symbol_get of EXPORT_SYMBOL_GPL modules
     - USB: serial: option: add Quectel EM05G variant (0x030e)
     - USB: serial: option: add FOXCONN T99W368/T99W373 product
     - ALSA: usb-audio: Fix init call orders for UAC1
     - [arm64,armhf] usb: dwc3: meson-g12a: do post init to fix broken usb after
       resumption
     - [arm64,armhf] usb: chipidea: imx: improve logic if samsung,picophy-*
       parameter is 0
     - HID: wacom: remove the battery when the EKR is off
     - staging: rtl8712: fix race condition
     - Bluetooth: btsdio: fix use after free bug in btsdio_remove due to race
       condition (CVE-2023-1989)
     - wifi: mt76: mt7921: do not support one stream on secondary antenna only
     - wifi: mt76: mt7921: fix skb leak by txs missing in AMSDU
     - [arm64] serial: qcom-geni: fix opp vote on shutdown
     - firmware: stratix10-svc: Fix an NULL vs IS_ERR() bug in probe
     - tcpm: Avoid soft reset when partner does not support get_status
     - dt-bindings: sc16is7xx: Add property to change GPIO function
     - nilfs2: fix general protection fault in nilfs_lookup_dirty_data_buffers()
     - nilfs2: fix WARNING in mark_buffer_dirty due to discarded buffer reuse
     - [arm64] usb: typec: tcpci: clear the fault status bit
     - pinctrl: amd: Don't show `Invalid config param` errors
 .
   [ Salvatore Bonaccorso ]
   * drivers/ptp: Make PTP_1588_CLOCK builtin (except armel/marvell)
     (Closes: #1036744)
   * [rt] Refresh "serial: 8250: implement write_atomic"
   * Bump ABI to 12
   * [rt] Update to 6.1.46-rt13
   * [rt] Refresh "net: Remove the obsolte u64_stats_fetch_*_irq() users (net)."
   * [x86] tpm: Enable hwrng only for Pluton on AMD CPUs
linux-signed-i386 (6.1.38+4) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.38-4
 .
   * Fix "init, x86: Move mem_encrypt_init() into arch_cpu_finalize_init()"
     backport
linux-signed-i386 (6.1.38+4~bpo11+1) bullseye-backports; urgency=medium
 .
   * Sign kernel from linux 6.1.38-4~bpo11+1
 .
   * Rebuild for bullseye-backports:
     - Set ABI to 0.deb11.11
linux-signed-i386 (6.1.38+2) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.38-2
 .
   * [x86] cpu/amd: Move the errata checking functionality up
   * [x86] cpu/amd: Add a Zenbleed fix (CVE-2023-20593)

lldpd (1.0.16-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * daemon: fix read overflow when parsing CDP addresses (CVE-2023-41910)

llvm-defaults (0.55.7~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.

ltsp (23.02-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0001_Avoid-mv-on-init-symlink-in-order-to-work-around-ove.patch
       (cherry-picked from upstream). Avoid mv on init symlink in order to
       work around overlayfs issue. (Closes: #1049397).

lxc (1:5.0.2-1+deb12u1) bookworm; urgency=medium
 .
   * Cherry-pick upstream "fix nftables syntax for IPv6 NAT" (Closes: #1049976)
   * Adjust branch in d/gbp.conf

lxcfs (5.0.3-1+deb12u1) bookworm; urgency=medium
 .
   * Cherry-pick upstream fix for /proc/cpuinfo being empty within an arm32
     container with large numbers of CPUs (See: #1036818)
   * Adjust branch in d/gbp.conf

marco (1.26.1-3+deb12u2) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0001_check-availability-of-compositing-1.patch and
       0002_check-availability-of-compositing-2.patch. Check that compositing
       is not only requested, but also available.
 .
       Enabling code that is supposed to be used in compositing conditions is
       harmful if compositing is not actually available. Just checking the
       preference is not enough to make sure that compositing is available -
       the X server might be missing crucial extensions for compositing to
       work, which in turn correctly disables the internal compositor.
 .
       The end result is graphical issues like black borders around windows in
       such situations.
 .
       Make sure that compositing is both requested AND available to fix this
       bug.
 .
       This resolves an annoying issue when running MATE desktop in X2Go
       sessions with the x2goagent (nx-libs) Xserver backend.
   * debian/:
     + Drop black-frame-in-X2Go-sessions-workaround, re-enable compositing by
       default again. This drops the gsettings override
       20_marco-debian.gschema.override.

mariadb (1:10.11.4-1~deb12u1) bookworm; urgency=medium
 .
   [ Otto Kekäläinen ]
   * New upstream version 10.11.4. Includes fixes for several severe regressions,
     see details at https://mariadb.com/kb/en/mariadb-10-11-4-release-notes/
   * Duplicate selected Lintian overrides in old Lintian syntax for NEW queue
     (this might strictly not be needed for bookworm but does not hurt either)
   * Extend the transitional package metadata referenced below
   * Bump revision to 'u2' to satisfy Debian FTP queue requirements
 .
   [ Andreas Beckmann ]
   * Introduce transitional mariadb-server-10.5 (Closes: #1035949)
mariadb (1:10.11.3-2~exp1) experimental; urgency=medium
 .
   [ Andreas Beckmann ]
   * Introduce transitional mariadb-server-10.5 (Closes: #1035949)

mate-notification-daemon (1.26.0-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 1001_daemon-fix-memory-leak.patch and 1002_mnd-daemon-fix-memory-leak.
       patch. Fix two memory leaks in src/daemon/daemon.c and src/daemon/
       mnd-daemon.c. (Closes: #1052565).

mgba (0.10.1+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * Import upstream patch to fix broken audio in libretro core.
     (Closes: #1036829)
   * Import upstream patch to fix crash on hardware incapable of OpenGL 3.2.
   * debian/gbp.conf: Set debian-branch to bookworm.

modsecurity (3.0.9-1+deb12u1) bookworm; urgency=medium
 .
   * Applied upstream patch to fix DoS.
     CVE-2023-38285 (Closes: #1042475)

monitoring-plugins (2.3.3-5+deb12u1) bookworm; urgency=medium
 .
   * [85eed74] Adding d/p/22_check_disk_avoid_mount from upstream
     (Closes: #1051768)

mozjs102 (102.15.1-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream release (Closes: #1037158)
     - CVE-2023-4046: Incorrect value used during WASM compilation
     - CVE-2023-37202: Potential use-after-free from compartment mismatch
       in SpiderMonkey
     - CVE-2023-37211: Memory safety bugs
     - CVE-2023-34416: Memory safety bugs
   * Update debian/upstream/signing-key.asc per upstream rotation
mozjs102 (102.15.0-1) unstable; urgency=medium
 .
   * New upstream release
     - This is the final upstream release in the 102 series.
       It's recommended to switch to mozjs115 instead.
mozjs102 (102.14.0-1) unstable; urgency=high
 .
   * New upstream release
     - CVE-2023-4046: Incorrect value used during WASM compilation
mozjs102 (102.13.0-1) unstable; urgency=high
 .
   * New upstream release (LP: #2026197)
     - CVE-2023-37202: Potential use-after-free from compartment mismatch
       in SpiderMonkey
     - CVE-2023-37211: Memory safety bugs
mozjs102 (102.12.0-1) unstable; urgency=high
 .
   * New upstream release (LP: #2023047) (Closes: #1037158)
     - CVE-2023-34416: Memory safety bugs
   * Update debian/upstream/signing-key.asc per upstream rotation

mutt (2.2.12-0.1~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * New upstream release.
mutt (2.2.9-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Fix rfc2047 base64 decoding to abort on illegal characters.
     (CVE-2023-4874, CVE-2023-4875) (Closes: #1051563)
   * Check for NULL userhdrs. (CVE-2023-4875) (Closes: #1051563)
   * Fix write_one_header() illegal header check. (CVE-2023-4874)
     (Closes: #1051563)

nco (5.1.4-1+deb12u1) bookworm; urgency=medium
 .
   * Update branch in gbp.conf & Vcs-Git URL.
   * Fix udunits2 support.
     (closes: #1043409)

nftables (1.0.6-2+deb12u2) bookworm; urgency=medium
 .
   * [136245a] Fix incorrect bytecode generation hit with new kernel check that
     rejects adding rules to bound chains (Closes: #1051592)
     - rule: add helper function to expand chain rules intoi commands
     - rule: expand standalone chain that contains rules
     - src: expand table command before evaluation

node-dottie (2.0.2-4+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Fix prototype pollution (Closes: #1040592, CVE-2023-26132)

ntpsec (1.2.2+dfsg1-1+deb12u1) bookworm-security; urgency=high
 .
   * Fix cookie crash.
     Thanks to Hal Murray (Closes: 1038422)

nvidia-settings (525.125.06-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-settings (525.125.06-1) unstable; urgency=medium
 .
   * New upstream release 525.125.06.
   * New upstream release 525.105.17.
     - Fixed a bug that could cause the nvidia-settings control panel to
       crash when resetting the display layout.
   * Upload to unstable.
 .
 nvidia-settings (525.85.05-2) experimental; urgency=medium
 .
   * Move source package back to contrib.
   * libxnvctrl0, libxnvctrl-dev are now built by src:libxnvctrl.
   * Upload to experimental.
nvidia-settings (525.85.05-2) experimental; urgency=medium
 .
   * Move source package back to contrib.
   * libxnvctrl0, libxnvctrl-dev are now built by src:libxnvctrl.
   * Upload to experimental.

nvidia-settings-tesla (525.125.06-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-settings-tesla (525.125.06-1) unstable; urgency=medium
 .
   * Rebuild as nvidia-settings-tesla.
 .
 nvidia-settings (525.125.06-1) unstable; urgency=medium
 .
   * New upstream release 525.125.06.
   * New upstream release 525.105.17.
     - Fixed a bug that could cause the nvidia-settings control panel to
       crash when resetting the display layout.
   * Upload to unstable.
 .
 nvidia-settings (525.85.05-2) experimental; urgency=medium
 .
   * Move source package back to contrib.
   * libxnvctrl0, libxnvctrl-dev are now built by src:libxnvctrl.
   * Upload to experimental.

nx-libs (2:3.5.99.26-5+deb12u1) bookworm; urgency=medium
 .
   * debian/nx-x11-common.{dir,links}:
     + Assure that a symlink from from /usr/share/nx/fonts to
       /usr/share/fonts/X11 gets provided by the nx-x11-common bin:pkg.
       (Closes: #1006662).
   * debian/patches:
     + Add 0008_nx-X11-programs-Xserver-hw-nxagent-man-nxagent.1-Fix.patch. Fix
       groff error in man page, properly show all text in the keystrokes.cfg
       passage. Thanks, lintian.

open-ath9k-htc-firmware (1.4.0-108-gd856466+dfsg1-1.3+deb12u1) bookworm; urgency=medium
 .
   * Prevent requesting dev firmware (Closes: #1038684)

open-vm-tools (2:12.2.0-1+deb12u1) bookworm-security; urgency=medium
 .
   * [3812674] Fixing CVE-2023-20867, CVE-2023-20900
     - Authentication Bypass vulnerability in VMware Tools (CVE-2023-20867)
       A fully compromised ESXi host can force VMware Tools to fail to
       authenticate host-to-guest operations, impacting the confidentiality
       and integrity of the guest virtual machine.
     - SAML token signature bypass vulnerability (CVE-2023-20900)
       A malicious actor with man-in-the-middle (MITM) network positioning
       between vCenter server and the virtual machine may be able to bypass
       SAML token signature verification, to perform VMware Tools Guest
       Operations. (Closes: #1050970)
   * [fb0ab84] Updating gitlab CI and GBP to build in bookworm
open-vm-tools (2:12.2.0-1+deb12u1~bpo11+1) bullseye-backports; urgency=high
 .
   * Rebuild for bullseye-backports.
   * debian/{gbp.conf,.gitlab-ci.yaml}: configure for bullseye-backports.

openbsd-inetd (0.20221205-2~deb12u1) bookworm; urgency=medium
 .
   * Rebuilt for bookworm. (Closes: #1050542)

openjdk-17 (17.0.8+7-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm
openjdk-17 (17.0.8~6-5) unstable; urgency=medium
 .
   * Revert back to the riscv64 hotspot patch to v7.
openjdk-17 (17.0.8~6-4) unstable; urgency=medium
 .
   [ Matthias Klose ]
   * Update the riscv64 hotspot patch to v9.
   * Run the hotspot tests on riscv64.
   * Link with --no-as-needed. Closes: #1031521.
   * d/rules: Remove EXTRA_.*FLAGS_JDK macros.
   * Fix FTCBFS: Add libffi-dev:native to B-D (Helmut Grohne).
 .
   [ Vladimir Petko ]
   * Disable runtime/jni/nativeStack/TestNativeStack.java for armhf pending
     upstream fix.
openjdk-17 (17.0.8~6-3) unstable; urgency=medium
 .
   [ Vladimir Petko ]
   * Use libtestng7-java as jtreg6 dependency as TestNG 7.x is required
     at runtime.
   * Regenerate the control file.
openjdk-17 (17.0.8~6-2) unstable; urgency=medium
 .
   * Provide versioned java-runtime, java-runtime-headless, java-sdk
     and java-sdk-headless virtual packages (Emmanuel Bourg). Closes: #1023869.
   * Install jhsb binary and man page on riscv64.
   * Bump standards version.
openjdk-17 (17.0.8~6-1) experimental; urgency=medium
 .
   * OpenJDK 17.0.8 early access, build 6.
   * Bump debhelper version to 11.
openjdk-17 (17.0.7+7-2) unstable; urgency=medium
 .
   [ Vladimir Petko ]
   * d/rules: backport testng selection logic.
 .
   [ Matthias Klose ]
   * Apply the backport patch for 8276799 (RISC-V Hotspot).
   * Build both JREs (hotspot and zero) on riscv64.
openjdk-17 (17.0.7+7-1) unstable; urgency=high
 .
   * OpenJDK 17.0.7 release, build 7.
     - CVE-2023-21930, CVE-2023-21937, CVE-2023-21938, CVE-2023-21939,
       CVE-2023-21954, CVE-2023-21967, CVE-2023-21968.
     - Release notes:
       https://mail.openjdk.org/pipermail/jdk-updates-dev/2023-April/021899.html
 .
   [ Vladimir Petko ]
   * Refresh patches.
   * debian/copyright: Convert to machine readable format.
   * Update watch file.
   * Update tag and version handling in the rules file.
   * debian/JB-jre-headless.postinst.in: trigger ca-certificates-java after
     the JRE is set up.
   * d/control: add jtreg6 dependencies, regenerate control.
   * d/rules: only compile google tests when with_check is enabled, disable them
     for bullseye and jammy.
   * d/rules: always use jtreg6.
   * d/p/exclude-broken-tests.patch: add OpenJDK 17 failures.
   * d/p/*: add patches for jtreg tests:
     - disable-thumb-assertion.patch: fix JDK-8305481.
     - update-assertion-for-armhf.patch: fix JDK-8305480.
     - misalign-pointer-for-armhf.patch: packaging-specific patch to fix test
     - failure introduced by d/p/m68k-support.diff.
     - log-generated-classes-test.patch: workaround JDK-8166162.
     - update-permission-test.patch: add security permissions for testng 7.
     - ldap-timeout-test-use-ip.patch, test-use-ip-address.patch: Ubuntu-specific
     - patches to workaround missing DNS resolver on the build machines.
     - exclude_broken_tests.patch: quarantine failing tests.
   * d/t/{jdk,hotspot,jaxp,lantools}: run tier1 and tier2 jtreg tests only,
   * add test options from OpenJDK Makefile, patch problem list to exclude
     architecture-specific failing tests.
   * d/t/*: fix test environment: add missing -nativepath (LP: #2001563).
   * d/t/jdk: provide dbus session for the window manager (LP: #2001576).
   * d/t/jtreg-autopkgtest.in: pass JTREG home to locate junit.jar, regenerate
   * d/t/jtreg-autopkgtest.sh (LP: #2016206).
   * d/rules: pack external debug symbols with build-id, do not strip JVM shared
     libraries (LP: #2012326, LP: #2016739).
   * drop d/p/{jaw-classpath.diff, jaw-optional.diff}: the atk wrapper is
     disabled and these patches cause class data sharing tests to fail.
     LP: #2016194.

openrefine (3.6.2-2+deb12u1) bookworm; urgency=medium
 .
   * Fix CVE-2023-37476:
     OpenRefine is a free, open source tool for data processing. A carefully
     crafted malicious OpenRefine project tar file can be used to trigger
     arbitrary code execution in the context of the OpenRefine process if a user
     can be convinced to import it. (Closes: #1041422)

openscap (1.3.7+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * Update dependencies for openscap-utils and python3-openscap
     Closes: #1040936

openssh (1:9.2p1-2+deb12u1) bookworm; urgency=medium
 .
   * Cherry-pick from OpenSSH 9.3p2:
     - [CVE-2023-38408] Fix a condition where specific libraries loaded via
       ssh-agent(1)'s PKCS#11 support could be abused to achieve remote code
       execution via a forwarded agent socket (closes: #1042460).

openssl (3.0.11-1~deb12u1) bookworm; urgency=medium
 .
   * Import 3.0.11
openssl (3.0.10-1) unstable; urgency=medium
 .
   * Import 3.0.10
    - CVE-2023-2975 (AES-SIV implementation ignores empty associated data
      entries) (Closes: #1041818).
    - CVE-2023-3446 (Excessive time spent checking DH keys and parameters).
      (Closes: #1041817).
    - CVE-2023-3817 (Excessive time spent checking DH q parameter value).
    - Drop bc and m4 from B-D.
openssl (3.0.10-1~deb12u1) bookworm; urgency=medium
 .
   * Import 3.0.10
    - CVE-2023-2975 (AES-SIV implementation ignores empty associated data
      entries) (Closes: #1041818).
    - CVE-2023-3446 (Excessive time spent checking DH keys and parameters).
      (Closes: #1041817).
    - CVE-2023-3817 (Excessive time spent checking DH q parameter value).

orthanc (1.10.1+dfsg-2+deb12u1) bookworm-security; urgency=high
 .
   * Team upload.
   * cve-2023-33466.patch: disable file system writes.
     This patch backports the option RestApiWriteToFileSystemEnabled to
     Orthanc in Debian bookworm.  This allows delivering Orthanc without
     being vulnerable to arbitrary writes to the file system by
     authenticated users, referenced as CVE-2023-33466.  The legacy and
     vulnerable behaviour can be restored by setting the variable
     RestApiWriteToFileSystemEnabled to true in /etc/orthanc/orthanc.json.
     (Closes: #1040597)

pam (1.5.2-6+deb12u1) bookworm; urgency=medium
 .
   * Fix pam-auth-update --disable logic error, Closes: #1039873
   * Set myself as maintainer; thanks Steve for past and future work.
   * Updated Turkish Debconf translations, Thanks Atila KOÇ, Closes: #1029002

pandoc (2.17.1.1-2~deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
   * Add d/salsa-ci.yml for Salsa CI.
 .
 pandoc (2.17.1.1-2) unstable; urgency=high
 .
   * add patches cherry-picked upstream
     to fix arbitrary file write vulnerability;
     closes: bug#1041976, thanks to Guilhem Moulin;
     CVE-2023-35936 CVE-2023-35936

plasma-framework (5.103.0-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Add patch to fix plasmashell crashes (Closes: #1050723).

plasma-workspace (4:5.27.5-2+deb12u1) bookworm; urgency=medium
 .
   * Backport patch to fix crash in krunner (Closes: #1037557).

python-django (3:3.2.19-1+deb12u1) bookworm-security; urgency=high
 .
   * CVE-2023-36053: Potential regular expression denial of service
     vulnerability in EmailValidator/URLValidator.
 .
     EmailValidator and URLValidator were subject to potential regular
     expression denial of service attack via a very large number of domain name
     labels of emails and URLs. (Closes: #1040225)
 .
   * Add/apply the URLValidator patch from sid.
python-django (3:3.2.19-1+deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
   * Revert bump on minimal version required for sphinx

python-git (3.1.30-1+deb12u2) stable; urgency=high
 .
   * Team upload.
   * Fix CVE-2023-41040: Blind local file inclusion.

pywinrm (0.3.0-4+deb12u1) bookworm; urgency=medium
 .
   * Team upload.
   * Add gbp.conf to use pristine-tar & --source-only-changes by default.
   * Update branch in Vcs-Git URL.
   * Add patch to fix compatibility with inspect in python3.11.
     (closes: #1050848)

qemu (1:7.2+dfsg-7+deb12u2) bookworm; urgency=medium
 .
   * d/rules: add the forgotten --enable-virtfs for the xen build.
     This makes 9pfs virtual filesystem available for xen hvm domUs.
     This adds no new runtime dependencies.  Closes: #1049925.
   * update to upstream 7.2.5 stable/bugfix release, v7.2.5.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.5 :
    - hw/ide/piix: properly initialize the BMIBA register
    - ui/vnc-clipboard: fix infinite loop in inflate_buffer (CVE-2023-3255)
    - qemu-nbd: pass structure into nbd_client_thread instead of plain char*
    - qemu-nbd: fix regression with qemu-nbd --fork run over ssh
    - qemu-nbd: regression with arguments passing into nbd_client_thread()
    - target/s390x: Make CKSM raise an exception if R2 is odd
    - target/s390x: Fix CLM with M3=0
    - target/s390x: Fix CONVERT TO LOGICAL/FIXED with out-of-range inputs
    - target/s390x: Fix ICM with M3=0
    - target/s390x: Make MC raise specification exception when class >= 16
    - target/s390x: Fix assertion failure in VFMIN/VFMAX with type 13
    - target/loongarch: Fix the CSRRD CPUID instruction on big endian hosts
    - virtio-pci: add handling of PCI ATS and Device-TLB enable/disable
    - vhost: register and change IOMMU flag depending on Device-TLB state
    - virtio-net: pass Device-TLB enable/disable events to vhost
    - hw/arm/smmu: Handle big-endian hosts correctly
    - target/arm: Avoid writing to constant TCGv in trans_CSEL()
    - target/ppc: Disable goto_tb with architectural singlestep
    - linux-user/armeb: Fix __kernel_cmpxchg() for armeb
    - qga/win32: Use rundll for VSS installation
    - thread-pool: signal "request_cond" while locked
    - xen-block: Avoid leaks on new error path
    - io: remove io watch if TLS channel is closed during handshake
    - target/nios2: Pass semihosting arg to exit
    - target/nios2: Fix semihost lseek offset computation
    - target/m68k: Fix semihost lseek offset computation
    - hw/virtio-iommu: Fix potential OOB access in virtio_iommu_handle_command()
    - virtio-crypto: verify src&dst buffer length for sym request
    - target/hppa: Move iaoq registers and thus reduce generated code size
    - pci: do not respond config requests after PCI device eject
    - hw/i386/intel_iommu: Fix trivial endianness problems
    - hw/i386/intel_iommu: Fix endianness problems related to VTD_IR_TableEntry
    - hw/i386/intel_iommu: Fix struct VTDInvDescIEC on big endian hosts
    - hw/i386/intel_iommu: Fix index calculation in vtd_interrupt_remap_msi()
    - hw/i386/x86-iommu: Fix endianness issue in x86_iommu_irq_to_msi_message()
    - include/hw/i386/x86-iommu: Fix struct X86IOMMU_MSIMessage for big endian hosts
    - vfio/pci: Disable INTx in vfio_realize error path
    - vdpa: Fix possible use-after-free for VirtQueueElement
    - vdpa: Return -EIO if device ack is VIRTIO_NET_ERR in _load_mac()
    - vdpa: Return -EIO if device ack is VIRTIO_NET_ERR in _load_mq()
    - target/ppc: Implement ASDR register for ISA v3.0 for HPT
    - target/ppc: Fix pending HDEC when entering PM state
    - target/ppc: Fix VRMA page size for ISA v3.0
    - target/i386: Check CR0.TS before enter_mmx
    - Update version for 7.2.5 release
     Closes: CVE-2023-3255, CVE-2023-3354, CVE-2023-3180

qtlocation-opensource-src (5.15.8+dfsg-3+deb12u1) bookworm; urgency=medium
 .
   * Backport upstream patch to fix condition for appendChildNode() call
     (closes: #1050240).

rar (2:6.23-1~deb12u1) bookworm; urgency=high
 .
   * Non-maintainer upload.
   * Fix CVE-2023-40477:
     A specific flaw within the processing of recovery volumes exists in RAR,
     an archive program for rar files. It allows remote attackers to execute
     arbitrary code on affected installations. User interaction is required to
     exploit this vulnerability. The target must visit a malicious page or open
     a malicious rar file.
rar (2:6.23-1~deb11u1) bullseye; urgency=high
 .
   * Non-maintainer upload.
   * Fix CVE-2023-40477:
     A specific flaw within the processing of recovery volumes exists in RAR,
     an archive program for rar files. It allows remote attackers to execute
     arbitrary code on affected installations. User interaction is required to
     exploit this vulnerability. The target must visit a malicious page or open
     a malicious rar file.

reprepro (5.3.1-1+deb12u1) bookworm; urgency=medium
 .
   * Upload to stable with ack from maintainer.
 .
   [ Simon Chopin ]
   * d/p/0001-uncompress-wait-until-the-child-as-exited-to-close-t.patch:
     Fix a race condition when using external decompressors
     (Closes: #1050321, LP: #2008508)

rmlint (2.9.0-2.5~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 rmlint (2.9.0-2.5) unstable; urgency=high
 .
   * Non-maintainer upload.
   * Add upstream fix for GUI startup failure with recent python3.11.
     (Closes: #1040940)
 .
 rmlint (2.9.0-2.4) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Fix error in other packages caused by invalid python package version
     number (cherry-picking upstream patch; closes: #1040179)
rmlint (2.9.0-2.4) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Fix error in other packages caused by invalid python package version
     number (cherry-picking upstream patch; closes: #1040179)
rmlint (2.9.0-2.3+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Fix error in other packages caused by invalid python package version
     number (cherry-picking upstream patch; closes: #1040179)

roundcube (1.6.3+dfsg-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
   * Salsa CI: Set RELEASE=bookworm.
   * d/gbp.conf: Set --debian-branch=debian/bookworm.
 .
 roundcube (1.6.3+dfsg-1) unstable; urgency=medium
 .
   * New upstream security and bugfix release:
     + Fix CVE-2023-43770: cross-site scripting (XSS) vulnerability in handling
       of linkrefs in plain text messages. (Closes: #1052059)
     + Fix regression that broke use_secure_urls feature hence OAuth2
       authentication. (Closes: #1050317)
     + Fix regression where LDAP addressbook 'filter' option was ignored.
     + Fix regression in decoding mail parts FETCHed from IMAP.
     + Fix PHP8 warnings.
   * roundcube-core.cron: Trigger gc twice every hour. (Closes: #1043395)
   * Fix GuzzleHttp autoload location. (Closes: #1040705)
   * d/p/fix-autoload-location.patch: Set ‘Forwarded: not-needed’ DEP-3 header.
   * Refresh d/patches.
 .
 roundcube (1.6.2+dfsg-1) unstable; urgency=medium
 .
   [ Amin Bandali ]
   * Test suite: Adjust short date test to make it work with all ICUs.
     (Closes: #1030161)
 .
   [ Remus-Gabriel Chelu ]
   * Add Romanian debconf templates translation. (Closes: #1033468)
 .
   [ Guilhem Moulin ]
   * New upstream bugfix release.
   * d/gbp.conf, d/README.source: Remove obsolete comment.
   * d/sql/mysql/1.3.0-1: Move inline comment.
   * d/p/fix-short-date-test-icu72.patch: Remove patch applied upstream.
   * Refresh patches.
roundcube (1.6.2+dfsg-1) unstable; urgency=medium
 .
   [ Amin Bandali ]
   * Test suite: Adjust short date test to make it work with all ICUs.
     (Closes: #1030161)
 .
   [ Remus-Gabriel Chelu ]
   * Add Romanian debconf templates translation. (Closes: #1033468)
 .
   [ Guilhem Moulin ]
   * New upstream bugfix release.
   * d/gbp.conf, d/README.source: Remove obsolete comment.
   * d/sql/mysql/1.3.0-1: Move inline comment.
   * d/p/fix-short-date-test-icu72.patch: Remove patch applied upstream.
   * Refresh patches.

runit-services (0.5.5~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.

samba (2:4.17.11+dfsg-0+deb12u1) bookworm; urgency=medium
 .
   * new upstream stable/bugfix release 4.17.11, including:
    o https://bugzilla.samba.org/show_bug.cgi?id=9959
      Windows client join fails if a second container CN=System exists somewhere
    o https://bugzilla.samba.org/show_bug.cgi?id=15342
      Spotlight sometimes returns no results on latest macOS
    o https://bugzilla.samba.org/show_bug.cgi?id=15346
      2-3min delays at reconnect with smb2_validate_sequence_number:
      bad message_id 2
    o https://bugzilla.samba.org/show_bug.cgi?id=15384
      net ads lookup (with unspecified realm) fails
    o https://bugzilla.samba.org/show_bug.cgi?id=15401
      Improve GetNChanges to address some (but not all "Azure AD Connect")
      syncronisation tool looping during the initial user sync phase
    o https://bugzilla.samba.org/show_bug.cgi?id=15407
      Samba replication logs show (null) DN
    o https://bugzilla.samba.org/show_bug.cgi?id=15417
      Renaming results in NT_STATUS_SHARING_VIOLATION
      if previously attempted to remove the destination
    o https://bugzilla.samba.org/show_bug.cgi?id=15419
      Weird filename can cause assert to fail in openat_pathref_fsp_nosymlink()
    o https://bugzilla.samba.org/show_bug.cgi?id=15420
      reply_sesssetup_and_X() can dereference uninitialized tmp pointer
    o https://bugzilla.samba.org/show_bug.cgi?id=15427
      Spotlight results return wrong date in result list
    o https://bugzilla.samba.org/show_bug.cgi?id=15430
      Missing return in reply_exit_done()
    o https://bugzilla.samba.org/show_bug.cgi?id=15432
      TREE_CONNECT without SETUP causes smbd to use uninitialized pointer
    o https://bugzilla.samba.org/show_bug.cgi?id=15435
      Regression DFS not working with widelinks = true
    o https://bugzilla.samba.org/show_bug.cgi?id=15441
      samba-tool ntacl get segfault if aio_pthread appended
    o https://bugzilla.samba.org/show_bug.cgi?id=15446
      DCERPC_PKT_CO_CANCEL and DCERPC_PKT_ORPHANED can't be parsed
    o https://bugzilla.samba.org/show_bug.cgi?id=15449
      mdssvc: Do an early talloc_free() in _mdssvc_open()
    o https://bugzilla.samba.org/show_bug.cgi?id=15451
      ctdb_killtcp fails to work with --enable-pcap and libpcap ≥ 1.9.1
    o https://bugzilla.samba.org/show_bug.cgi?id=15453
      File doesn't show when user doesn't have permission
      if aio_pthread is loaded
    o https://bugzilla.samba.org/show_bug.cgi?id=15463
      macOS mdfind returns only 50 results
   * d/control: indicate the git branch in Vcs-Git URL (-b bookworm)
   * d/control: fix description of samba-common-bin (samba-client)
   * d/salsa-ci.yml: set RELEASE to bookworm
samba (2:4.17.10+dfsg-0+deb12u1) bookworm-security; urgency=medium
 .
   * new upstream stable/security release 4.17.10, including:
    o CVE-2022-2127:  When winbind is used for NTLM authentication,
      a maliciously crafted request can trigger an out-of-bounds read
      in winbind and possibly crash it.
      https://www.samba.org/samba/security/CVE-2022-2127.html
    o CVE-2023-3347:  SMB2 packet signing is not enforced if an admin
      configured "server signing = required" or for SMB2 connections to
      Domain Controllers where SMB2 packet signing is mandatory.
      https://www.samba.org/samba/security/CVE-2023-3347.html
    o CVE-2023-34966: An infinite loop bug in Samba's mdssvc RPC service
      for Spotlight can be triggered by an unauthenticated attacker by
      issuing a malformed RPC request.
      https://www.samba.org/samba/security/CVE-2023-34966.html
    o CVE-2023-34967: Missing type validation in Samba's mdssvc RPC service
      for Spotlight can be used by an unauthenticated attacker to trigger
      a process crash in a shared RPC mdssvc worker process.
      https://www.samba.org/samba/security/CVE-2023-34967.html
    o CVE-2023-34968: As part of the Spotlight protocol Samba discloses
      the server-side absolute path of shares and files and directories
      in search results.
      https://www.samba.org/samba/security/CVE-2023-34968.html
    o BUG 15418: Secure channel faulty since Windows 10/11 update 07/2023.
      https://bugzilla.samba.org/show_bug.cgi?id=15418
      (this has been patched in the previous upload; Closes: #1041043)
samba (2:4.17.10+dfsg-0+deb12u1~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
 .
 samba (2:4.17.10+dfsg-0+deb12u1) bookworm-security; urgency=medium
 .
   * new upstream stable/security release 4.17.10, including:
    o CVE-2022-2127:  When winbind is used for NTLM authentication,
      a maliciously crafted request can trigger an out-of-bounds read
      in winbind and possibly crash it.
      https://www.samba.org/samba/security/CVE-2022-2127.html
    o CVE-2023-3347:  SMB2 packet signing is not enforced if an admin
      configured "server signing = required" or for SMB2 connections to
      Domain Controllers where SMB2 packet signing is mandatory.
      https://www.samba.org/samba/security/CVE-2023-3347.html
    o CVE-2023-34966: An infinite loop bug in Samba's mdssvc RPC service
      for Spotlight can be triggered by an unauthenticated attacker by
      issuing a malformed RPC request.
      https://www.samba.org/samba/security/CVE-2023-34966.html
    o CVE-2023-34967: Missing type validation in Samba's mdssvc RPC service
      for Spotlight can be used by an unauthenticated attacker to trigger
      a process crash in a shared RPC mdssvc worker process.
      https://www.samba.org/samba/security/CVE-2023-34967.html
    o CVE-2023-34968: As part of the Spotlight protocol Samba discloses
      the server-side absolute path of shares and files and directories
      in search results.
      https://www.samba.org/samba/security/CVE-2023-34968.html
    o BUG 15418: Secure channel faulty since Windows 10/11 update 07/2023.
      https://bugzilla.samba.org/show_bug.cgi?id=15418
      (this has been patched in the previous upload; Closes: #1041043)

sitesummary (0.1.56~deb12u1) bookworm; urgency=medium
 .
   * Release to bookworm as 0.1.56~deb12u1.
sitesummary (0.1.55) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * Fix insecure temporary file and directory creation, error checking.
     Seurely create a temporary directory using mktemp and check for errors both
     when creating the directory and wehn changing the current working directory.
     Place the tarball inside the temporary directory instead of using a predictable
     file name in /tmp which may lead to a symlink attack. Ensure the temporary
     directory is always removed. (Closes: #1050289).
   * Use quoting for fragments.
sitesummary (0.1.54) unstable; urgency=medium
 .
   [ Guido Berhoerster ]
   * Disable usage of lspci on clients by default
     This works around a bug that turns off the screen on certain Intel NUC
     models. It can be re-enabled by setting the environment variable
     ENABLE_LSPCI to an arbitrary value.
sitesummary (0.1.53) unstable; urgency=medium
 .
   [ Dominik George ]
   * Remove myself from Uploaders.
 .
   [ Guido Berhoerster ]
   * Place munin configuration in include file. (Closes: #762652).
   * Add systemd timer unit for sitesummary-client. (Closes: #1039369).
   * Add systemd timer for sitesummary maintenance.
 .
   [ Debian Janitor ]
   * Apply multi-arch hints. + libsitesummary-perl: Add Multi-Arch: foreign.
sitesummary (0.1.52) unstable; urgency=medium
 .
   * debian/control:
     + Update R: (sitesummary-client): 'cron' -> 'cron | cron-daemon'. (Closes:
       #1038956).

slbackup-php (0.4.5-4+deb12u1) bookworm; urgency=medium
 .
   [ Guido Berhörster ]
   * debian/patches:
     + Add 1007_log_remote_commands_to_stderr.patch in order to log to stderr.
     + Add 1006_disable-ssh-known-hosts.patch disabling SSH known hosts files.
     + Add 1005_fix-typo.patch fixing an exception on login. (Closes: #1042824).
     + Add 1004_fix-php-warnings.patch fixing PHP warnings.
     + Add 1003_php8-compat.patch fixing PHP 8 compatibility.
     + Fix string splitting in 1002_php7-compat.patch. Use explode() instead of
       preg_split(), the latter needs delimiters for the regex and returns false
       if there was no match which breaks the existing code.

spamprobe (1.4d-16+deb12u1) bookworm; urgency=medium
 .
   * QA Upload.
   * Patch: Add missing return statements, fixing crashes parsing JPEG
     attachments. (Closes: #1037422)

stunnel4 (3:5.68-2+deb12u1) bookworm; urgency=medium
 .
   * Add the 08-tls-eof patch to fix the handling of a peer closing
     a TLS connection without proper TLS shutdown messaging.
     Closes: #1041545

systemd (252.17-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.17. Fixes minor security issue in arm64
     and riscv64 systemd-boot (EFI) with device tree blobs loading:
     https://github.com/systemd/systemd/security/advisories/GHSA-6m6p-rjcq-334c
systemd (252.16-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.16
   * Refresh patches for v252.16
systemd (252.14-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.14
   * Refresh patches for 252.14

testng7 (7.5-2~deb12u1) bookworm; urgency=medium
 .
   * Build for Java, needed by latest OpenJDK 17 LTS releases
testng7 (7.5-2~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye. Needed by latest OpenJDK 17 LTS releases.
testng7 (7.5-1) unstable; urgency=medium
 .
   * New upstream release 7.5, packaged as a separate source and binary,
     required for jtreg version 6 and 7 (LP: #2012320). Closes: #990538.
   * d/p/build-with-gradle.patch: provide Groovy Gradle build.

thunderbird (1:102.15.1-1~deb12u1) bookworm-security; urgency=medium
 .
   * [55faec4] New upstream version 102.15.1
     Fixed CVE issues in upstream version 102.15.1 (MFSA 2023-40):
     CVE-2023-4863: Heap buffer overflow in libwebp
thunderbird (1:102.15.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * [6c701df] New upstream version 102.15.0
     Fixed CVE issues in upstream version 102.15 (MFSA 2023-35):
     CVE-2023-4573: Memory corruption in IPC CanvasTranslator
     CVE-2023-4574: Memory corruption in IPC ColorPickerShownCallback
     CVE-2023-4575: Memory corruption in IPC FilePickerShownCallback
     CVE-2023-4576: Integer Overflow in RecordedSourceSurfaceCreation
     CVE-2023-4581: XLL file extensions were downloadable without warnings
     CVE-2023-4584: Memory safety bugs fixed in Firefox 117, Firefox ESR
                    102.15, Firefox ESR 115.2, Thunderbird 102.15, and
                    Thunderbird 115.2
thunderbird (1:102.14.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * [bcc7c87] New upstream version 102.14.0
     Fixed CVE issues in upstream version 102.14 (MFSA 2023-32):
     CVE-2023-4045: Offscreen Canvas could have bypassed cross-origin restrictions
     CVE-2023-4046: Incorrect value used during WASM compilation
     CVE-2023-4047: Potential permissions request bypass via clickjacking
     CVE-2023-4048: Crash in DOMParser due to out-of-memory conditions
     CVE-2023-4049: Fix potential race conditions when releasing platform objects
     CVE-2023-4050: Stack buffer overflow in StorageManager
     CVE-2023-4055: Cookie jar overflow caused unexpected cookie jar state
     CVE-2023-4056: Memory safety bugs fixed in Firefox 116, Firefox ESR 115.1,
                    Firefox ESR 102.14, Thunderbird 115.1, and Thunderbird 102.14
   * Rebuild for bookworm-security
thunderbird (1:102.13.1-1) unstable; urgency=medium
 .
   * [e803b54] New upstream version 102.13.1
     Fixed CVE issues in upstream version 102.13.1 (MFSA 2023-28):
     CVE-2023-3417: File Extension Spoofing using the Text Direction
                    Override Character
   * [456ce20] Rebuild patch queue from patch-queue branch
     Added patch:
     fixes/gfx-Fix-inclusion-of-C-header.patch
     fixes/toolkit-Fix-inclusion-of-C-header.patch
     (Closes: #1037872)
thunderbird (1:102.13.1-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:102.13.1-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
thunderbird (1:102.13.0-1) unstable; urgency=medium
 .
   * [7168011] New upstream version 102.13.0
     Fixed CVE issues in upstream version 102.12 (MFSA 2023-24):
     CVE-2023-37201: Use-after-free in WebRTC certificate generation
     CVE-2023-37202: Potential use-after-free from compartment mismatch in
                     SpiderMonkey
     CVE-2023-37207: Fullscreen notification obscured
     CVE-2023-37208: Lack of warning when opening Diagcab files
     CVE-2023-37211: Memory safety bugs fixed in Firefox 115, Firefox ESR
                     102.13, and Thunderbird 102.13
     (Closes: #971790, #1006432)

timg (1.4.5-1+deb12u1) bookworm; urgency=medium
 .
   * Cherry-pick upstream fix for CVE-2023-40968 (Closes: #1051231)

transmission (3.00-2.1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches/: Replace openssl3 compat patch to fix memory leak.
     (Closes: #1015003)

tryton-server (6.0.29-2+deb12u1) bookworm-security; urgency=high
 .
   * Add 02_enforce_record_rules.patch.
     This patch fixes the information disclosure leak when reading from
     function fields with record rules
     https://discuss.tryton.org/t/security-release-for-issue-12428/6397

unbound (1.17.1-2+deb12u1) bookworm; urgency=medium
 .
   * fix-812-fix-846-by-using-the-SSL_OP_IGNORE_UNEXPECTE.patch from upstream
     to fix error log flooding when using DNS over TLS with openssl 3.0.
     Closes: #1038243

unrar-nonfree (1:6.2.6-1+deb12u1) bookworm; urgency=medium
 .
   * Fix CVE-2023-40477

vorta (0.8.10-1+deb12u1) bookworm; urgency=medium
 .
   * Add 0006-Handle-ctime-and-mtime-diff-changes-1675.patch, which is a
     cherry-picked fix from upstream that adapts Vorta 0.8.10 to Borg 1.2.4
     (Closes: #1042671).

vte2.91 (0.70.6-2~deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Rebuild for bookworm (Closes: #1040049)
 .
 vte2.91 (0.70.6-2) unstable; urgency=medium
 .
   * Team upload
   * d/p/widget-Invalidate-ringview-when-the-invalidating.patch:
     Add patch from upstream git to invalidate ring view more often when
     necessary, fixing various assertion failures during event handling
     (Closes: #1040049)
vte2.91 (0.70.6-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream release
     - Functionally equivalent to 0.70.5-2, but the fix for #1037919
       is incorporated upstream instead of as a patch
   * Add Debian and Ubuntu bug numbers to 0.70.5-2 changelog entry
   * Fix a typo in revised 0.70.5-1 changelog entry
   * d/gbp.conf, d/control.in: Use debian/trixie branch for packaging
 .
 vte2.91 (0.70.5-2) unstable; urgency=high
 .
   * Team upload
   * This version is functionally equivalent to 0.70.6 upstream, but 0.70.6
     tarballs are not yet available
   * d/p/emulation-Fix-infinite-loop-on-non-number-OSC-104-param.patch:
     Add patch from upstream to fix an infinite loop processing OSC 104.
     A malicious program accessed via ssh, telnet or similar protocols could
     use this as a denial of service.
     (Closes: #1037919, LP: #2022019; vte#2631 upstream)
   * Add more details of the bugs fixed in the previous changelog entry

webkit2gtk (2.40.5-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * The WebKitGTK security advisory WSA-2023-0007 lists the following
     security fixes in the latest versions of WebKitGTK:
     - CVE-2023-38133, CVE-2023-38572, CVE-2023-38592, CVE-2023-38594,
       CVE-2023-38595, CVE-2023-38597, CVE-2023-38599, CVE-2023-38600,
       CVE-2023-38611 (fixed in 2.40.5)
webkit2gtk (2.40.5-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
   * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
     clang instead. Keep using gcc in other architectures because clang has
     problems in at least i386, arm64 and mipsel (see #1010329 and
     #1016811).
     - debian/rules: Tell CMake to use clang.
     - debian/control.in: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and
       USE_PREBUILT_DOCS=YES.
     - debian/control.in: Remove build dependency on ccache.
   * debian/rules:
     - Disable USE_AVI, USE_GBM and USE_GSTREAMER_TRANSCODER due to missing
       or additional build dependencies.
   * debian/control:
     - Don't require version 1.20.0 of libgstreamer-plugins-bad1.0-dev.
webkit2gtk (2.40.4-1) unstable; urgency=high
 .
   * New upstream release.
   * debian/rules:
     - Set Build-Depends-Indep to jdupes when USE_PREBUILT_DOCS is set.
webkit2gtk (2.40.3-2) unstable; urgency=high
 .
   * debian/rules:
     - Use override_dh_install-indep when setting up the documentation
       (Closes: #1039877).
   * debian/control.in:
     - Move jdupes to Build-Depends-Indep.
webkit2gtk (2.40.3-2~deb12u2) bookworm-security; urgency=medium
 .
   * debian/patches/fix-CVE-2023-37450.patch:
     - Cherry pick fix for CVE-2023-37450.

x2goserver (4.1.0.3-7+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Cherry-pick upstream fixes between 4.1.0.3 and 4.1.0.6, i.e. add patches
       0004 - 0010. (Closes: #1050213).
     + Add 1003_support-startkde-from-old-x2goclients.patch. Translate startkde
       command coming from old X2Go Clients to startplasma-x11.
   * debian/po/fi.po:
     + Convert from iso8859 encoding to utf8. Thanks, lintian.
=======================================
Sat, 22 Jul 2023 - Debian 12.1 released
=======================================
=========================================================================
[Date: Sat, 22 Jul 2023 09:14:45 -0000] [ftpmaster: Archive Administrator]
Removed the following packages from stable:

libtexluajit-dev | 2022.20220321.62855-5.1 | i386
libtexluajit2 | 2022.20220321.62855-5.1 | i386

------------------- Reason -------------------
[auto-cruft] NBS
----------------------------------------------
=========================================================================

aide (0.18.3-1+deb12u2) bookworm; urgency=medium
 .
   * Upstream patch to fix child directory processing on equal match
     (Closes: #1039936)
aide (0.18.3-1+deb12u1) bookworm; urgency=medium
 .
   * call dh_installsysusers manually in debian/rules
     Thanks to Tomasz Ciolek (Closes: #1037171)
   * Fix handling of extended attributes on symlinks. (Closes: #1037436)

autofs (5.1.8-2+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add fix-missing-unlock-in-sasl-do-kinit-ext-cc.patch. Fix missing unlock
       in sasl_do_kinit_ext_cc(). (Closes: #1039967).

ayatana-indicator-datetime (22.9.1-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0001_engine-eds-fix-retrieving-custom-alarm-sound-path.patch. Fix
       playing of custom alarm sounds. (Closes: #1037330).

base-files (12.4+deb12u1) bookworm; urgency=medium
 .
   * Change /etc/debian_version to 12.1, for Debian 12.1 point release.

bepasty (1.0.0-1+deb12u1) bookworm; urgency=medium
 .
   * Backport upstream fix for Pygments-2.12.0. (Closes: #1038452)

bind9 (1:9.18.16-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream version 9.18.16
    - CVE-2023-2828: The overmem cleaning process has been improved,
      to prevent the cache from significantly exceeding the configured
      max-cache-size limit.
    - CVE-2023-2911: A query that prioritizes stale data over lookup
      triggers a fetch to refresh the stale data in cache. If the fetch
      is aborted for exceeding the recursion quota, it was possible for
      named to enter an infinite callback loop and crash due to stack
      overflow. This has been fixed.
bind9 (1:9.18.16-1~deb12u1~bpo11+1) bullseye-backports; urgency=high
 .
   * Rebuild for bullseye-backports.
bind9 (1:9.18.13-1) unstable; urgency=medium
 .
   * New upstream version 9.18.13

boost1.81 (1.81.0-5+deb12u1) bookworm; urgency=medium
 .
   * debian/control: Add dependency on libboost-json1.81.0 for
     libboost-json1.81-dev (Closes: #1036986)

bup (0.33.2-1~deb12u1) bookworm; urgency=medium
 .
   * Upstream version 0.33.2, with a fix for a problem that can cause POSIX.1e
     ACLs to be restored incorrectly.
bup (0.33.1-1) unstable; urgency=medium
 .
   [ Rob Browning ]
   * 0.33.1
     - conftest.py: switch to Path to support pytest 7+
     - conftest.py: restore support for pytest < 7
     - configure: handle relative MAKE paths
     - test_get: remove vestigial debug messages
     - configure: allow and prefer python3.11-config; ignore 3.6
     - buptest init: get quote from shlex not pipes
     - test-comparative-split-join: accommodate varying HEAD names
     - cirrus: move to freebsd 12.4 to fix rsync-related test failures
     - compare-trees: add --features and disallow args with it and -h
     - Restore posix1e default acls as default, not access; improve tests
     - Fix ACL metadata format; delimit short form entries with commas
     - Update docs for 0.33.1 release
     - Update base_version for 0.33.1 release
 .
   [ Robert Edmonds ]
   * New upstream version 0.33.1 (Closes: #1038609)
   * debian/docs: Include upstream release note '0.33.1-from-0.33.md'

chromium (114.0.5735.198-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-3420: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2023-3421: Use after free in Media.
       Reported by Piotr Bania of Cisco Talos.
     - CVE-2023-3422: Use after free in Guest View. Reported by asnine.
chromium (114.0.5735.198-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream security release.
     - CVE-2023-3420: Type Confusion in V8.
       Reported by Man Yue Mo of GitHub Security Lab.
     - CVE-2023-3421: Use after free in Media.
       Reported by Piotr Bania of Cisco Talos.
     - CVE-2023-3422: Use after free in Guest View. Reported by asnine.
chromium (114.0.5735.133-1) unstable; urgency=high
 .
     - CVE-2023-3214: Use after free in Autofill payments.
       Reported by Rong Jian of VRI.
     - CVE-2023-3215: Use after free in WebRTC. Reported by asnine.
     - CVE-2023-3216: Type Confusion in V8.
       Reported by 5n1p3r0010 from Topsec ChiXiao Lab.
     - CVE-2023-3217: Use after free in WebXR.
       Reported by Sergei Glazunov of Google Project Zero.
chromium (114.0.5735.133-1~deb12u1) bookworm-security; urgency=high
 .
     - CVE-2023-3214: Use after free in Autofill payments.
       Reported by Rong Jian of VRI.
     - CVE-2023-3215: Use after free in WebRTC. Reported by asnine.
     - CVE-2023-3216: Type Confusion in V8.
       Reported by 5n1p3r0010 from Topsec ChiXiao Lab.
     - CVE-2023-3217: Use after free in WebXR.
       Reported by Sergei Glazunov of Google Project Zero.
chromium (114.0.5735.133-1~deb11u1) bullseye-security; urgency=high
 .
     - CVE-2023-3214: Use after free in Autofill payments.
       Reported by Rong Jian of VRI.
     - CVE-2023-3215: Use after free in WebRTC. Reported by asnine.
     - CVE-2023-3216: Type Confusion in V8.
       Reported by 5n1p3r0010 from Topsec ChiXiao Lab.
     - CVE-2023-3217: Use after free in WebXR.
       Reported by Sergei Glazunov of Google Project Zero.
chromium (114.0.5735.106-1) unstable; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-3079: Type Confusion in V8.
       Reported by Clément Lecigne of Google's Threat Analysis Group.
   * d/patches:
     - ppc64le/third_party/skia-vsx-instructions.patch: rewrite for POWER8
       compatibility, fix graphics corruption, and enable in builds
chromium (114.0.5735.106-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-3079: Type Confusion in V8.
       Reported by Clément Lecigne of Google's Threat Analysis Group.
   * d/patches:
     - ppc64le/third_party/skia-vsx-instructions.patch: rewrite for POWER8
       compatibility, fix graphics corruption, and enable in builds
chromium (114.0.5735.106-1~deb11u1) bullseye-security; urgency=high
 .
   * New upstream stable release.
     - CVE-2023-3079: Type Confusion in V8.
       Reported by Clément Lecigne of Google's Threat Analysis Group.
   * d/patches:
     - ppc64le/third_party/skia-vsx-instructions.patch: rewrite for POWER8
       compatibility, fix graphics corruption, and enable in builds
chromium (114.0.5735.90-2) unstable; urgency=high
 .
   * d/patches:
     - Add upstream/feature-list-static.patch
       This patch fixes an out of scope array access that can lead to crashes at startup
chromium (114.0.5735.90-2~deb12u1) bookworm-security; urgency=high
 .
   * d/patches:
     - Add upstream/feature-list-static.patch
       This patch fixes an out of scope array access that can lead to crashes at startup
 .
 chromium (114.0.5735.90-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2023-2929: Out of bounds write in Swiftshader.
       Reported by Jaehun Jeong(@n3sk) of Theori.
     - CVE-2023-2930: Use after free in Extensions. Reported by asnine.
     - CVE-2023-2931: Use after free in PDF.
       Reported by Huyna at Viettel Cyber Security.
     - CVE-2023-2932: Use after free in PDF.
       Reported by Huyna at Viettel Cyber Security.
     - CVE-2023-2933: Use after free in PDF. Reported by
       Quang Nguyễn (@quangnh89) of Viettel Cyber Security and Nguyen Phuong.
     - CVE-2023-2934: Out of bounds memory access in Mojo.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-2935: Type Confusion in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-2936: Type Confusion in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-2937: Inappropriate implementation in Picture In Picture.
       Reported by NDevTK.
     - CVE-2023-2938: Inappropriate implementation in Picture In Picture.
       Reported by Alesandro Ortiz.
     - CVE-2023-2939: Insufficient data validation in Installer.
       Reported by ycdxsb from VARAS@IIE.
     - CVE-2023-2940: Inappropriate implementation in Downloads.
       Reported by Axel Chong.
     - CVE-2023-2941: Inappropriate implementation in Extensions API.
       Reported by Jasper Rebane.
   * d/copyright: properly delete some android & chromeos stuff.
   * d/patches:
     - fixes/clang-and-gcc11.patch: refresh.
     - upstream/webview-cstr.patch: drop, merged upstream.
     - upstream/monostate.patch: drop, merged upstream.
     - disable/unrar.patch: additional upstream changes required more reworking.
     - disable/android.patch: refresh, & add one more build fix.
     - disable/catapult.patch: refresh.
     - disable/swiftshader.patch: refresh.
     - disable/angle-perftest.patch: refresh.
     - system/jpeg.patch: refresh.
     - upstream/mojo.patch: regenerate from git.
     - upstream/sizet.patch: add an upstream build fix.
     - bookworm/typename.patch: include more build fixes.
     - bookworm/lambda-bug.patch -> bookworm/structured-binding-scope-bug.patch,
       and add another place it's happening (turns out it's not just lambdas).
   * Add build-dep on libevdev-dev - now required by upstream.
 .
   [ Timothy Pearson ]
    * d/patches:
      - Refresh ppc64le patches
chromium (114.0.5735.90-2~deb11u1) bullseye-security; urgency=high
 .
   [ Timothy Pearson ]
   * d/patches:
     - Add upstream/feature-list-static.patch
       This patch fixes an out of scope array access that can lead to crashes at startup
 .
   [ Andres Salomon ]
   * d/patches: add bullseye/av1-vaapi.patch to disable av1 encoding on bullseye;
     libav-dev is too old.
 .
 chromium (114.0.5735.90-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2023-2929: Out of bounds write in Swiftshader.
       Reported by Jaehun Jeong(@n3sk) of Theori.
     - CVE-2023-2930: Use after free in Extensions. Reported by asnine.
     - CVE-2023-2931: Use after free in PDF.
       Reported by Huyna at Viettel Cyber Security.
     - CVE-2023-2932: Use after free in PDF.
       Reported by Huyna at Viettel Cyber Security.
     - CVE-2023-2933: Use after free in PDF. Reported by
       Quang Nguyễn (@quangnh89) of Viettel Cyber Security and Nguyen Phuong.
     - CVE-2023-2934: Out of bounds memory access in Mojo.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-2935: Type Confusion in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-2936: Type Confusion in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-2937: Inappropriate implementation in Picture In Picture.
       Reported by NDevTK.
     - CVE-2023-2938: Inappropriate implementation in Picture In Picture.
       Reported by Alesandro Ortiz.
     - CVE-2023-2939: Insufficient data validation in Installer.
       Reported by ycdxsb from VARAS@IIE.
     - CVE-2023-2940: Inappropriate implementation in Downloads.
       Reported by Axel Chong.
     - CVE-2023-2941: Inappropriate implementation in Extensions API.
       Reported by Jasper Rebane.
   * d/copyright: properly delete some android & chromeos stuff.
   * d/patches:
     - fixes/clang-and-gcc11.patch: refresh.
     - upstream/webview-cstr.patch: drop, merged upstream.
     - upstream/monostate.patch: drop, merged upstream.
     - disable/unrar.patch: additional upstream changes required more reworking.
     - disable/android.patch: refresh, & add one more build fix.
     - disable/catapult.patch: refresh.
     - disable/swiftshader.patch: refresh.
     - disable/angle-perftest.patch: refresh.
     - system/jpeg.patch: refresh.
     - upstream/mojo.patch: regenerate from git.
     - upstream/sizet.patch: add an upstream build fix.
     - bookworm/typename.patch: include more build fixes.
     - bookworm/lambda-bug.patch -> bookworm/structured-binding-scope-bug.patch,
       and add another place it's happening (turns out it's not just lambdas).
   * Add build-dep on libevdev-dev - now required by upstream.
 .
   [ Timothy Pearson ]
    * d/patches:
      - Refresh ppc64le patches
chromium (114.0.5735.90-1) unstable; urgency=high
 .
   [ Andres Salomon ]
   * New upstream stable release.
     - CVE-2023-2929: Out of bounds write in Swiftshader.
       Reported by Jaehun Jeong(@n3sk) of Theori.
     - CVE-2023-2930: Use after free in Extensions. Reported by asnine.
     - CVE-2023-2931: Use after free in PDF.
       Reported by Huyna at Viettel Cyber Security.
     - CVE-2023-2932: Use after free in PDF.
       Reported by Huyna at Viettel Cyber Security.
     - CVE-2023-2933: Use after free in PDF. Reported by
       Quang Nguyễn (@quangnh89) of Viettel Cyber Security and Nguyen Phuong.
     - CVE-2023-2934: Out of bounds memory access in Mojo.
       Reported by Mark Brand of Google Project Zero.
     - CVE-2023-2935: Type Confusion in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-2936: Type Confusion in V8.
       Reported by Sergei Glazunov of Google Project Zero.
     - CVE-2023-2937: Inappropriate implementation in Picture In Picture.
       Reported by NDevTK.
     - CVE-2023-2938: Inappropriate implementation in Picture In Picture.
       Reported by Alesandro Ortiz.
     - CVE-2023-2939: Insufficient data validation in Installer.
       Reported by ycdxsb from VARAS@IIE.
     - CVE-2023-2940: Inappropriate implementation in Downloads.
       Reported by Axel Chong.
     - CVE-2023-2941: Inappropriate implementation in Extensions API.
       Reported by Jasper Rebane.
   * d/copyright: properly delete some android & chromeos stuff.
   * d/patches:
     - fixes/clang-and-gcc11.patch: refresh.
     - upstream/webview-cstr.patch: drop, merged upstream.
     - upstream/monostate.patch: drop, merged upstream.
     - disable/unrar.patch: additional upstream changes required more reworking.
     - disable/android.patch: refresh, & add one more build fix.
     - disable/catapult.patch: refresh.
     - disable/swiftshader.patch: refresh.
     - disable/angle-perftest.patch: refresh.
     - system/jpeg.patch: refresh.
     - upstream/mojo.patch: regenerate from git.
     - upstream/sizet.patch: add an upstream build fix.
     - bookworm/typename.patch: include more build fixes.
     - bookworm/lambda-bug.patch -> bookworm/structured-binding-scope-bug.patch,
       and add another place it's happening (turns out it's not just lambdas).
   * Add build-dep on libevdev-dev - now required by upstream.
 .
   [ Timothy Pearson ]
    * d/patches:
      - Refresh ppc64le patches

context (2021.03.05.20230120+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * Explicitely enable socket in ConTeXt mtxrun (see #1036470).

cpdb-libs (1.2.0-2+deb12u1) bookworm; urgency=medium
 .
   * CVE-2023-34095 (Closes: #1038253)
     buffer overflow via improper use of scanf()/fscanf()

cpp-httplib (0.11.4+ds-1+deb12u1) bookworm; urgency=medium
 .
   * d/gbp.conf: adjust branch names for bookworm
   * d/patches: fix fox CVE-2023-26130.
     Backport of the security fix for CVE-2023-26130, a CRLF Injection, from
     upstream commit 5b397d455d25a391ba346863830c1949627b4d08 included in
     upstream release 0.12.4 and newer. (Closes: #1037100)

crowdsec (1.4.6-6~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
   * Adjust gbp.conf accordingly.
crowdsec (1.4.6-5) unstable; urgency=medium
 .
   * Fix default acquis.yaml to also include the journalctl datasource,
     limited to the ssh.service unit, making sure acquisition works even
     without the traditional auth.log file (Closes: #1040976):
      - 0017-fix-default-acquisition.patch
   * Make sure an invalid datasource doesn't make the engine error out,
     making it possible to include the journalctl datasource in the default
     config file unconditionally, without having to worry whether
     journalctl is actually deployed and usable:
      - 0018-non-fatal-errors-for-invalid-datasources.patch

cups (2.4.2-3+deb12u1) bookworm; urgency=medium
 .
   * CVE-2023-34241 (Closes: #1038885)
     use-after-free in cupsdAcceptClient()
 .
   * CVE-2023-32324
     A heap buffer overflow vulnerability would allow a remote attacker to
     lauch a dos attack.

cvs (2:1.12.13+real-28+deb12u1) bookworm; urgency=high
 .
   * configure-time hardcode full path for ssh(1) (Closes: #1038926)

dbus (1.14.8-2~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm
dbus (1.14.8-1) unstable; urgency=medium
 .
   [ Simon McVittie ]
   * New upstream stable release
     - Fixes a denial of service issue if the root or messagebus user is
       monitoring messages on the system bus with the Monitoring interface
       (dbus-monitor, busctl monitor, gdbus monitor or similar)
       (Closes: #1037151)
 .
   [ Helmut Grohne ]
   * Mark dbus-daemon and dbus-bin Multi-Arch: foreign (Closes: #1033056)
dbus (1.14.8-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm
   * d/gbp.conf: Use debian/bookworm branch
   * d/watch: Only watch for 1.14.x releases
 .
 dbus (1.14.8-1) unstable; urgency=medium
 .
   [ Simon McVittie ]
   * New upstream stable release
     - Fixes a denial of service issue if the root or messagebus user is
       monitoring messages on the system bus with the Monitoring interface
       (dbus-monitor, busctl monitor, gdbus monitor or similar)
       (Closes: #1037151)
 .
   [ Helmut Grohne ]
   * Mark dbus-daemon and dbus-bin Multi-Arch: foreign (Closes: #1033056)

debian-installer (20230607+deb12u1) bookworm; urgency=medium
 .
   * Bootstrap bookworm stable branch:
      - Set USE_PROPOSED_UPDATES=1 in debian/rules
      - Set USE_UDEBS_FROM?=bookworm in build/config/common
   * Bump Linux kernel ABI to 6.1.0-10.
   * Adjust linux-image build-deps as well.

debian-installer-netboot-images (20230607+deb12u1) bookworm; urgency=medium
 .
   * Update to 20230607+deb12u1, from bookworm-proposed-updates.
   * Update DISTRIBUTION and DISTRIBUTION_FALLBACK for the bookworm
     branch.

desktop-base (12.0.6+nmu1~deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Rebuild for bookworm.
 .
 desktop-base (12.0.6+nmu1) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * prerm: Remove the emerald alternatives, too.  (Closes: #1035431)

dh-python (5.20230130+deb12u1) bookworm; urgency=medium
 .
   * Reintroduce Breaks+Replaces on python2 needed to help apt in some upgrade
     scenarios. (Closes: #1036943)

dkms (3.0.10-8+deb12u1) bookworm; urgency=medium
 .
   * Add Breaks against obsolete *-dkms packages that are incompatible with the
     Linux 6.1 kernel in bookworm.  (Closes: #1037425)

dnf (4.14.0-3+deb12u1) bookworm; urgency=medium
 .
   * Fix default DNF const PYTNON_INSTALL_DIR. Closes: #1034828.
 .
     It was build with default DNF value which is not the
     same path in Debian. In consequence, dnf-plugins-core
     were broken. Reported by Aron <aron@debian.org>.

dpdk (22.11.2-2~deb12u1) bookworm; urgency=medium
 .
   * Revert "Drop old init script"
   * Revert "Add package for new librte-net-mana PMD"
   * Revert "d/control, d/dpdk.init: stop using lsb-base functions"
   * Explicitly disable new mana PMD. This gets enabled implicitly when
     a new enough rdma-core is available, but we do not want to
     introduce new libraries via bookworm-pu.
   * Upload to bookworm.
 .
 dpdk (22.11.2-2) unstable; urgency=medium
 .
   * No changes source-only upload.
 .
 dpdk (22.11.2-1) unstable; urgency=medium
 .
   [ Christian Ehrhardt ]
   * d/t/test-fastsuite: test env before breaking tests for known issues
   * d/rules: avoid path length issues in build time test
   * d/control, d/dpdk.init: stop using lsb-base functions
 .
   [ Luca Boccassi ]
   * Update upstream source from tag 'upstream/22.11.2'
   * Add package for new librte-net-mana PMD
   * Bump Standards-Version to 4.6.2, no changes
   * Add new internal/experimental symbols
   * Drop old init script
dpdk (22.11.2-1) unstable; urgency=medium
 .
   [ Christian Ehrhardt ]
   * d/t/test-fastsuite: test env before breaking tests for known issues
   * d/rules: avoid path length issues in build time test
   * d/control, d/dpdk.init: stop using lsb-base functions
 .
   [ Luca Boccassi ]
   * Update upstream source from tag 'upstream/22.11.2'
   * Add package for new librte-net-mana PMD
   * Bump Standards-Version to 4.6.2, no changes
   * Add new internal/experimental symbols
   * Drop old init script

exim4 (4.96-15+deb12u1) bookworm; urgency=medium
 .
   * 75_42-Fix-run-arg-parsing.patch (From upstream GIT master, backported by
     Bryce Harrington for Ubuntu):  Fix argument parsing for ${run } expansion.
     Previously, when an argument included a close-brace character (eg. it
     itself used an expansion) an error occurred. Closes: #1025420
   * 75_68-Fix-srs_encode-.-for-mod-1024-day-zero.patch from upstream GIT
     master:  Fix ${srs_encode ..}. Previously it would give a bad result for
     one day every 1024 days.

fai (6.0.3+deb12u1) bookworm; urgency=low
 .
   * fai: set IP address lifetime to forever, Closes: #1037329

firefox-esr (102.13.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-23, also known as:
     CVE-2023-37201, CVE-2023-37202, CVE-2023-37207, CVE-2023-37208,
     CVE-2023-37211.
 .
   * debian/rules, media/ffvpx/config_unix64.h: Work around
     https://sourceware.org/bugzilla/show_bug.cgi?id=30578.
   * debian/upstream.mk: Unstable is trixie.
firefox-esr (102.13.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-23, also known as:
     CVE-2023-37201, CVE-2023-37202, CVE-2023-37207, CVE-2023-37208,
     CVE-2023-37211.
 .
   * debian/rules, media/ffvpx/config_unix64.h: Work around
     https://sourceware.org/bugzilla/show_bug.cgi?id=30578.
   * debian/upstream.mk: Unstable is trixie.
firefox-esr (102.12.0esr-1) unstable; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-19, also known as:
     CVE-2023-34414, CVE-2023-34416.
firefox-esr (102.12.0esr-1~deb12u1) bookworm-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-19, also known as:
     CVE-2023-34414, CVE-2023-34416.
firefox-esr (102.12.0esr-1~deb11u1) bullseye-security; urgency=medium
 .
   * New upstream release.
   * Fixes for mfsa2023-19, also known as:
     CVE-2023-34414, CVE-2023-34416.

ghostscript (10.0.0~dfsg-11+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * Don't "reduce" %pipe% file names for permission validation
     (CVE-2023-36664)
   * Revisit fix for upstream bug 706761 (CVE-2023-36664)

glibc (2.36-9+deb12u1) bookworm; urgency=medium
 .
   [ Aurelien Jarno ]
   * debian/patches/git-updates.diff: update from upstream stable branch:
     - Affecting bookworm release architectures:
       - Improve mcount overflow handling in gmon.
       - Fix a buffer overflow in gmon (CVE-2023-0687).
       - Fix a memory corruption when incorrectly calling gmon functions
         repeatedly on in wrong order.
       - Fix a deadlock in getaddrinfo (__check_pf) with deferred cancellation.
       - Fix y2038 support in strftime on 32-bit architectures.
       - Fix corner case parsing of /etc/gshadow which can return bad pointers
         causing segfaults in applications.
       - Fix a deadlock in system() when called concurrently from multiple
         threads.
       - cdefs: limit definition of fortification macros to __FORTIFY_LEVEL > 0
         to support old C90 compilers.
     - Not affecting bookworm release architectures:
       - Fix LFS POSIX lock constants for powerpc64.
       - Fix GL(dl_phdr) and GL(dl_phnum) for static builds.  Closes: #1028200.
     - Not affecting debian architectures:
       - Fix LFS POSIX lock constants on 32 bit arch with 64 bit default
         time_t.
     - No change in the generated code:
       - Fix asm constraints in amd64 version of feraiseexcept (bug not visible
         with GCC 12).
 .
   [ Andrej Shadura ]
   * debian/po/sk.po: Fix typos in the Slovak translation.

gnome-control-center (1:43.6-2~deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Rebuild for bookworm
 .
 gnome-control-center (1:43.6-2) unstable; urgency=medium
 .
   * Team upload
   * Expand previous changelog entry to include more details of the
     upstream changes
 .
 gnome-control-center (1:43.6-1) unstable; urgency=medium
 .
   * New upstream bugfix release 43.5
     - Populate list of previous WWAN (Mobile Network) connetions more
       reliably, avoiding creation of duplicate connections in
       NetworkManager (gnome-control-center#1468 upstream)
     - Stop listing displays in the reverse of the intended order
     - Add 32:9 as a well-known aspect ratio
       (gnome-control-center#2334 upstream)
     - Fix an assertion failure when activating the Users panel
       (gnome-control-center#2219 upstream)
     - Don't access User objects before they are fully loaded
       (gnome-control-center#2348, #2349 upstream)
     - Fix an assertion failure when cropping an avatar
     - Don't allow commas in users' "real name" field, because the GECOS
       encoding in /etc/passwd cannot represent those
       (gnome-control-center#888 upstream)
     - Automatically close user avatar chooser before showing file
       chooser (gnome-control-center#2315 upstream)
     - Restore the default cursor when leaving the dialog to crop an
       avatar (gnome-control-center#2359 upstream)
     - Fix a crash when cancelling authentication for Thunderbolt
     - Remove a duplicate property from the "add user" UI
     - Translation updates: ca, fr, hu
   * New upstream bugfix release 43.6
     - Fix a use-after-free crash when editing network connections
     - Translation updates: ab, hu; add fo
gnome-control-center (1:43.6-1) unstable; urgency=medium
 .
   * New upstream bugfix release

gnome-maps (43.5-2~deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Rebuild for Debian 12
   * d/control.in, d/gbp.conf: Use debian/bookworm packaging branch
 .
 gnome-maps (43.5-2) unstable; urgency=medium
 .
   * Team upload
   * d/p/transitArrivalRow-Disable-go-to-animation-when-clicked.patch,
     d/p/transitLegRow-Disable-go-to-animation-when-clicked.patch:
     Add patches from upstream 44.1 to disable more animations.
     Like the one in v43.5, these avoid animations that can trigger the tile
     server's rate limiting (gnome-maps#546 upstream).
   * Add some more detail to the previous changelog entry
   * d/control.in, d/gbp.conf: Use debian/trixie packaging branch
   * d/lintian-overrides: Update overrides syntax
 .
 gnome-maps (43.5-1) unstable; urgency=medium
 .
   * New upstream bugfix release
     - Disable an animation which caused too many tiles to be loaded from
       the remote server, resulting in rate-limiting and failure to redraw
       (gnome-maps#546 upstream)
     - Translation updates: en_GB
   * d/p/sendToDialog-Unbreak-OpenWithRows.patch:
     Add patch from upstream gnome-43 branch to fix "Send to" dialog when
     another geo: app is installed (Closes: #1036936)
   * d/watch, d/gbp.conf: Use appropriate branches for bookworm
gnome-maps (43.5-1) unstable; urgency=medium
 .
   * New upstream bugfix release
   * Fix Send to Dialog when another geo: app is installed
     - Cherry-pick patch from upstream 43 branch (Closes: #1036936)

gnome-shell (43.6-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm

gnome-software (43.5-1~deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Rebuild for Debian 12
 .
 gnome-software (43.5-1) unstable; urgency=medium
 .
   * d/gbp.conf: Use upstream/43.x branch to import new upstream versions
   * d/watch: Only watch for versions 43.x
   * New upstream release 43.5
     - Fix some memory leaks (Closes: #1036312)
   * Refresh patch series (no functional changes)

gosa (2.8~git20230203.10abe45+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   [ Mike Gabriel ]
   * debian/patches:
     + Add 1003_php-deprecations.patch. Silence various PHP 8.2 deprecation
       warnings. (Closes: #1038682).
 .
   [ Daniel Teichmann ]
   * debian/patches:
     + Add 1004_missing_templates.patch. (Closes: #1039697)
     + Update 1002_php82-allow-dynamic-properties.patch: Tolerate dyn. prop. for
       ALL PHP classes. (Closes: #1039894)
     + Add 1005_preg_replace_deprecation.patch.
     + Add 1006_fix-overflow-debug-print_a-func.patch. (Closes: #1040839)

groonga (13.0.0+dfsg-3~deb12u1) bookworm; urgency=medium
 .
   * Backport to bookworm
     - It fixes missing dependency to libjs-*. (#1036575)

gst-plugins-bad1.0 (1.22.0-4+deb12u1) bookworm-security; urgency=medium
 .
   * GST-2023-0003

gst-plugins-base1.0 (1.22.0-3+deb12u1) bookworm-security; urgency=medium
 .
   * GST-2023-0001 / GST-2023-0002

gst-plugins-good1.0 (1.22.0-5+deb12u1) bookworm-security; urgency=medium
 .
   * GST-2023-0001

guestfs-tools (1.48.2-1+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
 .
   [ Hilko Bengen ]
   * Add libguestfs-common patch, fixing CVE-2022-2211 (Closes: #1014764)

hsqldb (2.7.1-1+deb12u1) bookworm-security; urgency=medium
 .
   * Team upload.
 .
   * fix CVE-2023-1183

hsqldb1.8.0 (1.8.0.10+dfsg-11+deb12u1) bookworm-security; urgency=medium
 .
   * add patch from upstream to
     avoid execution of spurious command in script or log file
     (CVE-2023-1183)

indent (2.2.12-4+deb12u1) bookworm; urgency=medium
 .
   * Restore the ROUND_UP macro and adjust the initial buffer size.
     Patch from the author, backported from 2.2.13.
     Fix memory handling problem. Closes: #1036851.

installation-guide (20230508+deb12u1) bookworm; urgency=medium
 .
   [ Holger Wansing ]
   * Add Indonesian (as a recently added new translation) to langlist, to get
     this translation into the package.

kanboard (1.2.26+ds-2+deb12u1) bookworm; urgency=high
 .
   * Cherry-pick security fixes from kanboard_1.2.26+ds-[34] for bookworm.
   * backport fix for CVE-2023-32685 from kanboard v1.2.29
     https://github.com/kanboard/kanboard/security/advisories/GHSA-hjmw-gm82-r4gv
     Based on upstream commits 26b6eeb & c9c1872.
     (cherry picked from commit d9b8d854f2d35831b04b84cfdda41cc7b49e3a28)
     (Closes: #1036874)
   * backport security fixes from kanboard v1.2.30.
      > CVE-2023-33956: Parameter based Indirect Object Referencing leading
        to private file exposure
      > CVE-2023-33968: Missing access control allows user to move and
        duplicate tasks to any project in the software
      > CVE-2023-33969: Stored XSS in the Task External Link Functionality
      > CVE-2023-33970: Missing access control in internal task links feature
     (cherry picked from commit 4ad0ad220613bbf04bef559addba8c363fdf0dfa)
     (Closes: #1037167)
   * point gbp & salsa at bookworm

kf5-messagelib (4:22.12.3-2~deb12u1) bookworm; urgency=medium
 .
   * Rebuilt for bookworm.

libmatekbd (1.26.0-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0001_matekbd-keyboard-drawing-fix-memory-leak.patch and
       0002_matekbd-keyboard-drawing-fix-memory-leak.patch. Fix two memory
       leaks. Cherry-picked from recent upstream release v1.26.1.
       (Closes: #1038430).

libreoffice (4:7.4.7-1) bookworm; urgency=medium
 .
   * "New" upstream release
 .
   * debian/control.postgresql.in:
     - depend on libreoffice-core-nogui | libreoffice-core (like the other
       -sdbc-*) (closes: #1034792)
   * debian/rules:
     - don't remove tabviewbar.ui in -impress-nogui (closes: #1028290)

libreswan (4.10-2+deb12u1) bookworm; urgency=medium
 .
   * Fix CVE-2023-30570 (Closes: #1035542)

libx11 (2:1.8.4-2+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * InitExt.c: Add bounds checks for extension request, event, & error codes
     (CVE-2023-3138) (Closes: #1038133)

libxml2 (2.9.14+dfsg-1.3~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm
 .
 libxml2 (2.9.14+dfsg-1.3) unstable; urgency=medium
 .
   * Non-maintainer upload.
   * Reset nsNr in xmlCtxtReset (CVE-2022-2309) (Closes: #1039991)
   * Also reset nsNr in htmlCtxtReset (CVE-2022-2309) (Closes: #1039991)

linux (6.1.38-1) bookworm; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.38
     - drm/amd/display: Remove optimization for VRR updates
     - drm/amd/display: Do not update DRR while BW optimizations pending
     - PCI/ACPI: Validate acpi_pci_set_power_state() parameter
     - PCI/ACPI: Call _REG when transitioning D-states
     - execve: always mark stack as growing down during early stack setup
     - perf symbols: Symbol lookup with kcore can fail if multiple segments match
       stext
     - scripts/tags.sh: Resolve gtags empty index generation
     - drm/amdgpu: Validate VM ioctl flags.
     - drm/amd/display: Ensure vmin and vmax adjust for DCE
 .
   [ Salvatore Bonaccorso ]
   * drm: use mgr->dev in drm_dbg_kms in drm_dp_add_payload_part2
   * mm/mmap: Fix VM_LOCKED check in do_vmi_align_munmap()
   * netfilter: nf_tables: do not ignore genmask when looking up chain by id
     (CVE-2023-31248)
   * netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
     (CVE-2023-35001)
linux (6.1.37-1) bookworm-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.28
     - [x86] ASOC: Intel: sof_sdw: add quirk for Intel 'Rooks County' NUC M15
     - [x86] ASoC: Intel: soc-acpi: add table for Intel 'Rooks County' NUC M15
     - ASoC: soc-pcm: fix hw->formats cleared by soc_pcm_hw_init() for dpcm
     - [x86] hyperv: Block root partition functionality in a Confidential VM
     - [x86] ASoC: amd: yc: Add DMI entries to support Victus by HP Laptop
       16-e1xxx (8A22)
     - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for the Acer Iconia One 7
       B1-750
     - [x86] ASoC: da7213.c: add missing pm_runtime_disable()
     - scsi: mpi3mr: Handle soft reset in progress fault code (0xF002)
     - net: sfp: add quirk enabling 2500Base-x for HG MXPD-483II
     - [x86] platform/x86: thinkpad_acpi: Add missing T14s Gen1 type to s2idle
       quirk list
     - wifi: ath11k: reduce the MHI timeout to 20s
     - tracing: Error if a trace event has an array for a __field()
     - [x86] cpu: Add model number for Intel Arrow Lake processor
     - wireguard: timers: cast enum limits members to int in prints
     - wifi: mt76: mt7921e: Set memory space enable in PCI_COMMAND if unset
     - [arm64] Always load shadow stack pointer directly from the task struct
     - [arm64] Stash shadow stack pointer in the task struct on interrupt
     - PCI: pciehp: Fix AB-BA deadlock between reset_lock and device_lock
     - [arm64] PCI: qcom: Fix the incorrect register usage in v2.7.0 config
     - [arm64] phy: qcom-qmp-pcie: sc8180x PCIe PHY has 2 lanes
     - [arm64,armhf] usb: dwc3: gadget: Stall and restart EP0 if host is
       unresponsive
     - [arm64,armhf] USB: dwc3: fix runtime pm imbalance on probe errors
     - [arm64,armhf] USB: dwc3: fix runtime pm imbalance on unbind
     - [x86] hwmon: (k10temp) Check range scale when CUR_TEMP register is
       read-write
     - hwmon: (adt7475) Use device_property APIs when configuring polarity
     - tpm: Add !tpm_amd_is_rng_defective() to the hwrng_unregister() call site
     - posix-cpu-timers: Implement the missing timer_wait_running callback
     - blk-stat: fix QUEUE_FLAG_STATS clear
     - blk-crypto: don't use struct request_queue for public interfaces
     - blk-crypto: add a blk_crypto_config_supported_natively helper
     - blk-crypto: move internal only declarations to blk-crypto-internal.h
     - blk-crypto: Add a missing include directive
     - blk-mq: release crypto keyslot before reporting I/O complete
     - blk-crypto: make blk_crypto_evict_key() return void
     - blk-crypto: make blk_crypto_evict_key() more robust
     - tty: Prevent writing chars during tcsetattr TCSADRAIN/FLUSH
     - xhci: fix debugfs register accesses while suspended
     - serial: fix TIOCSRS485 locking
     - serial: 8250: Fix serial8250_tx_empty() race with DMA Tx
     - tick/nohz: Fix cpu_is_hotpluggable() by checking with nohz subsystem
     - fs: fix sysctls.c built
     - [mips*] fw: Allow firmware to pass a empty env
     - ipmi:ssif: Add send_retries increment
     - ipmi: fix SSIF not responding under certain cond.
     - wifi: mt76: add missing locking to protect against concurrent rx/status
       calls
     - [arm64,armhf] pwm: meson: Fix axg ao mux parents
     - [arm64,armhf] pwm: meson: Fix g12a ao clk81 name
     - soundwire: qcom: correct setting ignore bit on v1.5.1
     - ring-buffer: Ensure proper resetting of atomic variables in
       ring_buffer_reset_online_cpus
     - ring-buffer: Sync IRQ works before buffer destruction
     - crypto: api - Demote BUG_ON() in crypto_unregister_alg() to a WARN_ON()
     - [arm64] crypto: safexcel - Cleanup ring IRQ workqueues on load failure
     - [x86] crypto: ccp - Don't initialize CCP for PSP 0x1649
     - rcu: Avoid stack overflow due to __rcu_irq_enter_check_tick() being
       kprobe-ed
     - reiserfs: Add security prefix to xattr name in reiserfs_security_write()
     - [x86] KVM: nVMX: Emulate NOPs in L2, and PAUSE if it's not intercepted
     - [arm64] KVM: arm64: Avoid vcpu->mutex v. kvm->lock inversion in CPU_ON
     - [arm64] KVM: arm64: Avoid lock inversion when setting the VM register
       width
     - [arm64] KVM: arm64: Use config_lock to protect data ordered against
       KVM_RUN
     - [arm64] KVM: arm64: Use config_lock to protect vgic state
     - [arm64] KVM: arm64: vgic: Don't acquire its_lock before config_lock
     - relayfs: fix out-of-bounds access in relay_file_read (CVE-2023-3268)
     - drm/amd/display: Remove stutter only configurations
     - drm/amd/display: limit timing for single dimm memory
     - drm/amd/display: fix PSR-SU/DSC interoperability support
     - drm/amd/display: fix a divided-by-zero error
     - ksmbd: fix racy issue under cocurrent smb2 tree disconnect
       (CVE-2023-32254)
     - ksmbd: call rcu_barrier() in ksmbd_server_exit()
     - ksmbd: fix NULL pointer dereference in smb2_get_info_filesystem()
     - ksmbd: fix memleak in session setup
     - ksmbd: not allow guest user on multichannel
     - ksmbd: fix deadlock in ksmbd_find_crypto_ctx()
     - [x86] ACPI: video: Remove acpi_backlight=video quirk for Lenovo ThinkPad
       W530
     - [arm64,armhf] i2c: omap: Fix standard mode false ACK readings
     - tracing: Fix permissions for the buffer_percent file
     - swsmu/amdgpu_smu: Fix the wrong if-condition
     - drm/amd/pm: re-enable the gfx imu when smu resume
     - [amd64] iommu/amd: Fix "Guest Virtual APIC Table Root Pointer"
       configuration in IRTE
     - Revert "ubifs: dirty_cow_znode: Fix memleak in error handling path"
     - ubifs: Fix memleak when insert_old_idx() failed
     - ubi: Fix return value overwrite issue in try_write_vid_and_data()
     - ubifs: Free memory for tmpfile name
     - ubifs: Fix memory leak in do_rename
     - ceph: fix potential use-after-free bug when trimming caps
     - xfs: don't consider future format versions valid
     - cxl/hdm: Fail upon detecting 0-sized decoders
     - bus: mhi: host: Remove duplicate ee check for syserr
     - bus: mhi: host: Use mhi_tryset_pm_state() for setting fw error state
     - bus: mhi: host: Range check CHDBOFF and ERDBOFF
     - rcu: Fix missing TICK_DEP_MASK_RCU_EXP dependency check
     - tpm, tpm_tis: Do not skip reset of original interrupt vector
     - tpm, tpm_tis: Claim locality before writing TPM_INT_ENABLE register
     - tpm, tpm_tis: Disable interrupts if tpm_tis_probe_irq() failed
     - tpm, tpm_tis: Claim locality before writing interrupt registers
     - tpm, tpm: Implement usage counter for locality
     - tpm, tpm_tis: Claim locality when interrupts are reenabled on resume
     - erofs: stop parsing non-compact HEAD index if clusterofs is invalid
     - erofs: initialize packed inode after root inode is assigned
     - erofs: fix potential overflow calculating xattr_isize
     - [arm64,armhf] drm/rockchip: Drop unbalanced obj unref
     - [x86] drm/i915/dg2: Drop one PCI ID
     - drm/vgem: add missing mutex_destroy
     - drm/probe-helper: Cancel previous job before starting new one
     - drm/amdgpu: register a vga_switcheroo client for MacBooks with apple-gmux
     - [arm64] dts: ti: k3-am62-main: Fix GPIO numbers in DT
     - [arm64] drm/msm/disp/dpu: check for crtc enable rather than crtc active to
       release shared resources
     - [amd64] EDAC/skx: Fix overflows on the DRAM row address mapping arrays
     - regulator: core: Shorten off-on-delay-us for always-on/boot-on by time
       since booted
     - [arm64] dts: ti: k3-am62a7-sk: Fix DDR size to full 4GB
     - [arm64] dts: qcom: msm8998: Fix stm-stimulus-base reg name
     - [arm64] dts: qcom: sdm845: correct dynamic power coefficients
     - [x86] MCE/AMD: Use an u64 for bank_map
     - [arm64] firmware: qcom_scm: Clear download bit during reboot
     - [arm64] drm/bridge: adv7533: Fix adv7533_mode_valid for adv7533 and
       adv7535
     - [arm64] drm/msm/adreno: drop bogus pm_runtime_set_active()
     - [arm64] drm: msm: adreno: Disable preemption on Adreno 510
     - [amd64] virt/coco/sev-guest: Double-buffer messages
     - [arm64] dts: qcom: sm8350-microsoft-surface: fix USB dual-role mode
       property
     - [x86] ACPI: processor: Fix evaluating _PDC method when running as Xen dom0
     - [arm64] mmc: sdhci-of-esdhc: fix quirk to ignore command inhibit for data
     - [armhf] dts: gta04: fix excess dma channel usage
     - [arm64] firmware: arm_scmi: Fix xfers allocation on Rx channel
     - [arm64] perf/arm-cmn: Move overlapping wp_combine field
     - [armhf] dts: stm32: fix spi1 pin assignment on stm32mp15
     - [arm64] cpufreq: qcom-cpufreq-hw: Revert adding cpufreq qos
     - [arm64,armhf] drm/lima/lima_drv: Add missing unwind goto in
       lima_pdev_probe()
     - [arm64,armhf] gpu: host1x: Fix potential double free if IOMMU is disabled
     - [arm64,armhf] gpu: host1x: Fix memory leak of device names
     - drm/ttm: optimize pool allocations a bit v2
     - drm/ttm/pool: Fix ttm_pool_alloc error path
     - regulator: core: Consistently set mutex_owner when using
       ww_mutex_lock_slow()
     - regulator: core: Avoid lockdep reports when resolving supplies
     - [x86] apic: Fix atomic update of offset in reserve_eilvt_offset()
     - [arm64] dts: qcom: msm8994-angler: Fix cont_splash_mem mapping
     - [arm64] dts: qcom: msm8994-angler: removed clash with smem_region
     - [arm64,armhf] media: cedrus: fix use after free bug in cedrus_remove due
       to race condition (CVE-2023-35826)
     - [arm64] media: rkvdec: fix use after free bug in rkvdec_remove
       (CVE-2023-35829)
     - [amd64] platform/x86/amd: pmc: Don't try to read SMU version on Picasso
     - [amd64] platform/x86/amd: pmc: Hide SMU version and program attributes for
       Picasso
     - [amd64] platform/x86/amd: pmc: Don't dump data after resume from s0i3 on
       picasso
     - [amd64] platform/x86/amd: pmc: Move idlemask check into
       `amd_pmc_idlemask_read`
     - [amd64] platform/x86/amd: pmc: Utilize SMN index 0 for driver probe
     - [amd64] platform/x86/amd: pmc: Move out of BIOS SMN pair for STB init
     - media: dm1105: Fix use after free bug in dm1105_remove due to race
       condition (CVE-2023-35824)
     - media: saa7134: fix use after free bug in saa7134_finidev due to race
       condition (CVE-2023-35823)
     - media: v4l: async: Return async sub-devices to subnotifier list
     - drm/amd/display: Fix potential null dereference
     - [arm64,armhf] media: rc: gpio-ir-recv: Fix support for wake-up
     - [arm64] media: venus: dec: Fix handling of the start cmd
     - [arm64] media: venus: dec: Fix capture formats enumeration order
     - [armhf] regulator: stm32-pwr: fix of_iomap leak
     - [x86] ioapic: Don't return 0 from arch_dynirq_lower_bound()
     - [arm64] kgdb: Set PSTATE.SS to 1 to re-enable single-step
     - [arm64] perf/arm-cmn: Fix port detection for CMN-700
     - [x86] drm/i915: Make intel_get_crtc_new_encoder() less oopsy
     - tick/common: Align tick period with the HZ tick.
     - ACPI: bus: Ensure that notify handlers are not running after removal
     - cpufreq: use correct unit when verify cur freq
     - [arm64] rpmsg: glink: Propagate TX failures in intentless mode as well
     - platform/chrome: cros_typec_switch: Add missing fwnode_handle_put()
     - wifi: ath6kl: minor fix for allocation size
     - wifi: ath9k: hif_usb: fix memory leak of remain_skbs
     - wifi: ath11k: Use platform_get_irq() to get the interrupt
     - wifi: ath5k: Use platform_get_irq() to get the interrupt
     - wifi: ath5k: fix an off by one check in ath5k_eeprom_read_freq_list()
     - wifi: ath11k: fix SAC bug on peer addition with sta band migration
     - wifi: brcmfmac: support CQM RSSI notification with older firmware
     - wifi: ath6kl: reduce WARN to dev_dbg() in callback
     - tools: bpftool: Remove invalid \' json escape
     - wifi: rtw88: mac: Return the original error from rtw_pwr_seq_parser()
     - wifi: rtw88: mac: Return the original error from rtw_mac_power_switch()
     - bpf: take into account liveness when propagating precision
     - bpf: fix precision propagation verbose logging
     - [x86] crypto: qat - fix concurrency issue when device state changes
     - scm: fix MSG_CTRUNC setting condition for SO_PASSSEC
     - wifi: ath11k: fix deinitialization of firmware resources
     - bpf: Remove misleading spec_v1 check on var-offset stack read
     - net: pcs: xpcs: remove double-read of link state when using AN
     - vlan: partially enable SIOCSHWTSTAMP in container
     - net/packet: annotate accesses to po->xmit
     - net/packet: convert po->origdev to an atomic flag
     - net/packet: convert po->auxdata to an atomic flag
     - libbpf: Fix ld_imm64 copy logic for ksym in light skeleton.
     - netfilter: keep conntrack reference until IPsecv6 policy checks are done
     - bpf: Fix __reg_bound_offset 64->32 var_off subreg propagation
     - scsi: target: core: Change the way target_xcopy_do_work() sets restiction
       on max I/O
     - scsi: target: Move sess cmd counter to new struct
     - scsi: target: Move cmd counter allocation
     - scsi: target: Pass in cmd counter to use during cmd setup
     - scsi: target: iscsit: isert: Alloc per conn cmd counter
     - scsi: target: iscsit: Stop/wait on cmds during conn close
     - scsi: target: Fix multiple LUN_RESET handling
     - scsi: target: iscsit: Fix TAS handling during conn cleanup
     - scsi: megaraid: Fix mega_cmd_done() CMDID_INT_CMDS
     - net: sunhme: Fix uninitialized return code
     - f2fs: handle dqget error in f2fs_transfer_project_quota()
     - f2fs: fix uninitialized skipped_gc_rwsem
     - f2fs: apply zone capacity to all zone type
     - f2fs: compress: fix to call f2fs_wait_on_page_writeback() in
       f2fs_write_raw_pages()
     - f2fs: fix scheduling while atomic in decompression path
     - [arm64,armhf] crypto: caam - Clear some memory in instantiate_rng
     - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_rfreg()
     - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_reg()
     - scsi: libsas: Add sas_ata_device_link_abort()
     - [arm64] scsi: hisi_sas: Handle NCQ error when IPTT is valid
     - wifi: rt2x00: Fix memory leak when handling surveys
     - f2fs: fix iostat lock protection
     - net: qrtr: correct types of trace event parameters
     - bpftool: Fix bug for long instructions in program CFG dumps
     - crypto: drbg - Only fail when jent is unavailable in FIPS mode
     - xsk: Fix unaligned descriptor validation
     - f2fs: fix to avoid use-after-free for cached IPU bio
     - wifi: iwlwifi: fix duplicate entry in iwl_dev_info_table
     - bpf/btf: Fix is_int_ptr()
     - scsi: lpfc: Fix ioremap issues in lpfc_sli4_pci_mem_setup()
     - [arm64,armhf] net: ethernet: stmmac: dwmac-rk: rework optional clock
       handling
     - [arm64,armhf] net: ethernet: stmmac: dwmac-rk: fix optional phy regulator
       handling
     - wifi: ath11k: fix writing to unintended memory region
     - bpf, sockmap: fix deadlocks in the sockhash and sockmap
     - nvmet: fix error handling in nvmet_execute_identify_cns_cs_ns()
     - nvmet: fix Identify Namespace handling
     - nvmet: fix Identify Controller handling
     - nvmet: fix Identify Active Namespace ID list handling
     - nvmet: fix I/O Command Set specific Identify Controller
     - nvme: fix async event trace event
     - blk-mq: don't plug for head insertions in blk_execute_rq_nowait
     - wifi: iwlwifi: debug: fix crash in __iwl_err()
     - wifi: iwlwifi: trans: don't trigger d3 interrupt twice
     - wifi: iwlwifi: mvm: don't set CHECKSUM_COMPLETE for unsupported protocols
     - bpf, sockmap: Revert buggy deadlock fix in the sockhash and sockmap
     - f2fs: fix to check return value of f2fs_do_truncate_blocks()
     - f2fs: fix to check return value of inc_valid_block_count()
     - md/raid10: fix task hung in raid10d
     - md/raid10: fix leak of 'r10bio->remaining' for recovery
     - md/raid10: fix memleak for 'conf->bio_split'
     - md/raid10: fix memleak of md thread
     - md/raid10: don't call bio_start_io_acct twice for bio which experienced
       read error
     - wifi: iwlwifi: mvm: don't drop unencrypted MCAST frames
     - wifi: iwlwifi: yoyo: skip dump correctly on hw error
     - wifi: iwlwifi: yoyo: Fix possible division by zero
     - wifi: iwlwifi: mvm: initialize seq variable
     - wifi: iwlwifi: fw: move memset before early return
     - jdb2: Don't refuse invalidation of already invalidated buffers
     - io_uring/rsrc: use nospec'ed indexes
     - wifi: iwlwifi: make the loop for card preparation effective
     - wifi: mt76: handle failure of vzalloc in mt7615_coredump_work
     - wifi: mt76: add flexible polling wait-interval support
     - wifi: mt76: mt7921e: fix probe timeout after reboot
     - wifi: mt76: fix 6GHz high channel not be scanned
     - mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data
     - wifi: mt76: mt7921: fix missing unwind goto in `mt7921u_probe`
     - wifi: mt76: mt7921e: improve reliability of dma reset
     - wifi: mt76: mt7921e: stop chip reset worker in unregister hook
     - wifi: mt76: connac: fix txd multicast rate setting
     - wifi: iwlwifi: mvm: check firmware response size
     - netfilter: conntrack: restore IPS_CONFIRMED out of
       nf_conntrack_hash_check_insert()
     - netfilter: conntrack: fix wrong ct->timeout value
     - wifi: iwlwifi: fw: fix memory leak in debugfs
     - ixgbe: Allow flow hash to be set via ethtool
     - ixgbe: Enable setting RSS table to default values
     - net/mlx5e: Don't clone flow post action attributes second time
     - net/mlx5: E-switch, Create per vport table based on devlink encap mode
     - net/mlx5: E-switch, Don't destroy indirect table in split rule
     - net/mlx5e: Fix error flow in representor failing to add vport rx rule
     - net/mlx5: Suspend auxiliary devices only in case of PCI device suspend
     - net/mlx5: Use recovery timeout on sync reset flow
     - net/mlx5e: Nullify table pointer when failing to create
     - net: stmmac:fix system hang when setting up tag_8021q VLAN for DSA ports
     - bpf: Fix race between btf_put and btf_idr walk.
     - bpf: Don't EFAULT for getsockopt with optval=NULL
     - netfilter: nf_tables: don't write table validation state without mutex
     - net/sched: sch_fq: fix integer overflow of "credit"
     - ipv4: Fix potential uninit variable access bug in __ip_make_skb()
     - Revert "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to
       unfinished work"
     - netlink: Use copy_to_user() for optval in netlink_getsockopt().
     - [x86] net: amd: Fix link leak when verifying config failed
     - tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp.
     - [x86] ASoC: cs35l41: Only disable internal boost
     - drivers: staging: rtl8723bs: Fix locking in _rtw_join_timeout_handler()
     - drivers: staging: rtl8723bs: Fix locking in rtw_scan_timeout_handler()
     - [arm64] usb: host: xhci-rcar: remove leftover quirk handling
     - [arm64,armhf] usb: dwc3: gadget: Change condition for processing suspend
       event
     - [armhf] serial: stm32: Re-assert RTS/DE GPIO in RS485 mode only if more
       data are transmitted
     - iio: light: max44009: add missing OF device matching
     - [arm64,armhf] spi: imx: Don't skip cleanup in remove's error path
     - [x86] ASoC: soc-compress: Inherit atomicity from DAI link for Compress FE
     - [arm64,armhf] PCI: imx6: Install the fault handler only on compatible
       match
     - ASoC: es8316: Handle optional IRQ assignment
     - [arm64] spi: qup: Don't skip cleanup in remove's error path
     - [x86] vmci_host: fix a race condition in vmci_host_poll() causing GPF
     - of: Fix modalias string generation
     - [amd64] HID: amd_sfh: Correct the structure fields
     - [amd64] HID: amd_sfh: Correct the sensor enable and disable command
     - [amd64] HID: amd_sfh: Fix illuminance value
     - [amd64] HID: amd_sfh: Add support for shutdown operation
     - [amd64] HID: amd_sfh: Correct the stop all command
     - [amd64] HID: amd_sfh: Increase sensor command timeout for SFH1.1
     - [amd64] HID: amd_sfh: Handle "no sensors" enabled for SFH1.1
     - cacheinfo: Check sib_leaf in cache_leaves_are_shared()
     - [arm64] coresight: etm_pmu: Set the module field
     - PCI/PM: Extend D3hot delay for NVIDIA HDA controllers
     - spi: cadence-quadspi: fix suspend-resume implementations
     - [arm64,armhf] usb: chipidea: fix missing goto in `ci_hdrc_probe`
     - [arm64] tty: serial: fsl_lpuart: adjust buffer length to the intended size
     - serial: 8250: Add missing wakeup event reporting
     - spi: cadence-quadspi: use macro DEFINE_SIMPLE_DEV_PM_OPS
     - [x86] staging: rtl8192e: Fix W_DISABLE# does not work after stop/start
     - [arm64] spmi: Add a check for remove callback when removing a SPMI driver
     - virtio_ring: don't update event idx on get_buf
     - [powerpc*] rtas: use memmove for potentially overlapping buffer copy
     - sched/fair: Fix inaccurate tally of ttwu_move_affine
     - perf/core: Fix hardlockup failure caused by perf throttle
     - Revert "objtool: Support addition to set CFA base"
     - sched/rt: Fix bad task migration for rt tasks
     - tracing/user_events: Ensure write index cannot be negative
     - [amd64] IB/hifi1: add a null check of kzalloc_node in
       hfi1_ipoib_txreq_init
     - [amd64] RDMA/rdmavt: Delete unnecessary NULL check
     - workqueue: Fix hung time report of worker pools
     - [armhf] rtc: omap: include header for omap_rtc_power_off_program prototype
     - RDMA/mlx4: Prevent shift wrapping in set_user_sq_size()
     - [arm64,armhf] rtc: meson-vrtc: Use ktime_get_real_ts64() to get the
       current time
     - clk: add missing of_node_put() in "assigned-clocks" property parsing
     - [arm64] power: supply: rk817: Fix low SOC bugs
     - RDMA/cm: Trace icm_send_rej event before the cm state is reset
     - RDMA/srpt: Add a check for valid 'mad_agent' pointer
     - [amd64] IB/hfi1: Fix SDMA mmu_rb_node not being evicted in LRU order
     - [amd64] IB/hfi1: Fix bugs with non-PAGE_SIZE-end multi-iovec user SDMA
       requests
     - [arm64,armhf] clk: imx: fracn-gppll: fix the rate table
     - [arm64,armhf] clk: imx: fracn-gppll: disable hardware select control
     - NFSv4.1: Always send a RECLAIM_COMPLETE after establishing lease
     - [amd64] iommu/amd: Set page size bitmap during V2 domain allocation
     - [arm64] Input: raspberrypi-ts - fix refcount leak in rpi_ts_probe
     - swiotlb: relocate PageHighMem test away from rmem_swiotlb_setup
     - swiotlb: fix debugfs reporting of reserved memory pools
     - RDMA/mlx5: Check pcie_relaxed_ordering_enabled() in UMR
     - RDMA/mlx5: Fix flow counter query via DEVX
     - SUNRPC: remove the maximum number of retries in call_bind_status
     - RDMA/mlx5: Use correct device num_ports when modify DC
     - timekeeping: Fix references to nonexistent ktime_get_fast_ns()
     - SMB3: Add missing locks to protect deferred close file list
     - SMB3: Close deferred file handles in case of handle lease break
     - ext4: fix i_disksize exceeding i_size problem in paritally written case
     - ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline
     - [arm64] dmaengine: mv_xor_v2: Fix an error code.
     - [armhf] leds: tca6507: Fix error handling of using
       fwnode_property_read_string
     - soundwire: cadence: rename sdw_cdns_dai_dma_data as sdw_cdns_dai_runtime
     - [x86] soundwire: intel: don't save hw_params for use in prepare
     - [arm64,armhf] phy: tegra: xusb: Add missing tegra_xusb_port_unregister for
       usb2_port and ulpi_port
     - [arm64,armhf] pinctrl-bcm2835.c: fix race condition when setting gpio dir
     - [x86] ACPI: PM: Do not turn of unused power resources on the Toshiba Click
       Mini
     - PM: hibernate: Turn snapshot_test into global variable
     - PM: hibernate: Do not get block device exclusively in test_resume mode
     - afs: Fix updating of i_size with dv jump from server
     - afs: Fix getattr to report server i_size on dirs, not local size
     - afs: Avoid endless loop if file is larger than expected
     - ALSA: usb-audio: Add quirk for Pioneer DDJ-800
     - [x86] ALSA: hda/realtek: Add quirk for ThinkPad P1 Gen 6
     - [x86] ALSA: hda/realtek: Add quirk for ASUS UM3402YAR using CS35L41
     - [x86] ALSA: hda/realtek: support HP Pavilion Aero 13-be0xxx Mute LED
     - [x86] ALSA: hda/realtek: Fix mute and micmute LEDs for an HP laptop
     - nilfs2: do not write dirty data after degenerating to read-only
     - nilfs2: fix infinite loop in nilfs_mdt_get_block()
     - mm: do not reclaim private data from pinned page
     - drbd: correctly submit flush bio on barrier
     - md/raid10: fix null-ptr-deref in raid10_sync_request
     - md/raid5: Improve performance for sequential IO
     - mtd: core: provide unique name for nvmem device, take two
     - mtd: core: fix nvmem error reporting
     - mtd: core: fix error path for nvmem provider
     - mtd: spi-nor: core: Update flash's current address mode when changing
       address mode
     - [arm64] mailbox: zynqmp: Fix IPI isr handling
     - [arm64] mailbox: zynqmp: Fix typo in IPI documentation
     - wifi: rtl8xxxu: RTL8192EU always needs full init
     - wifi: rtw89: fix potential race condition between napi_init and
       napi_enable
     - [arm64] clk: rockchip: rk3399: allow clk_cifout to force clk_cifout_src to
       reparent
     - btrfs: scrub: reject unsupported scrub flags
     - [s390x] dasd: fix hanging blockdevice after request requeue
     - mm/mempolicy: correctly update prev when policy is equal on mbind
     - dm verity: fix error handling for check_at_most_once on FEC
     - dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path
     - dm flakey: fix a crash with invalid table line
     - dm ioctl: fix nested locking in table_clear() to remove deadlock concern
       (CVE-2023-2269)
     - dm: don't lock fs when the map is NULL in process of resume
     - blk-iocost: avoid 64-bit division in ioc_timer_fn
     - cifs: fix potential use-after-free bugs in TCP_Server_Info::hostname
     - cifs: protect session status check in smb2_reconnect()
     - [x86] thunderbolt: Use correct type in tb_port_is_clx_enabled() prototype
     - wifi: ath11k: synchronize ath11k_mac_he_gi_to_nl80211_he_gi()'s return
       type
     - [x86] perf auxtrace: Fix address filter entire kernel size
     - [x86] perf intel-pt: Fix CYC timestamps after standalone CBR
     - i40e: Remove unused i40e status codes
     - i40e: Remove string printing for i40e_status
     - i40e: use int for i40e_status
     - scsi: libsas: Grab the ATA port lock in sas_ata_device_link_abort()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.29
     - [arm64,armhf] USB: dwc3: gadget: drop dead hibernation code
     - [arm64,armhf] usb: dwc3: gadget: Execute gadget stop after halting the
       controller
     - drm/vmwgfx: Remove explicit and broken vblank handling
     - drm/vmwgfx: Fix Legacy Display Unit atomic drm support
     - [amd64] crypto: ccp - Clear PSP interrupt status register before calling
       handler
     - [x86] perf/x86/core: Zero @lbr instead of returning -1 in
       x86_perf_get_lbr() stub
     - [x86] KVM: x86: Track supported PERF_CAPABILITIES in kvm_caps
     - [x86] KVM: x86/pmu: Disallow legacy LBRs if architectural LBRs are
       available
     - mtd: spi-nor: spansion: Remove NO_SFDP_FLAGS from s28hs512t info
     - mtd: spi-nor: add SFDP fixups for Quad Page Program
     - mtd: spi-nor: Add a RWW flag
     - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s28hx
       SEMPER flash
     - [arm64] mailbox: zynq: Switch to flexible array to simplify code
     - [arm64] mailbox: zynqmp: Fix counts of child nodes
     - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s25hx
       SEMPER flash
     - drm/amd/display: Ext displays with dock can't recognized after resume
     - [x86] KVM: x86/mmu: Avoid indirect call for get_cr3
     - [x86] KVM: x86: Do not unload MMU roots when only toggling CR0.WP with TDP
       enabled
     - [x86] KVM: x86: Make use of kvm_read_cr*_bits() when testing bits
     - [x86] KVM: VMX: Make CR0.WP a guest owned bit
     - [x86] KVM: x86/mmu: Refresh CR0.WP prior to checking for emulated
       permission faults
     - [x86] ASoC: Intel: soc-acpi-byt: Fix "WM510205" match no longer working
     - scsi: qedi: Fix use after free bug in qedi_remove()
     - drm/amd/display: Remove FPU guards from the DML folder
     - drm/amd/display: Add missing WA and MCLK validation
     - drm/amd/display: Return error code on DSC atomic check failure
     - drm/amd/display: Fixes for dcn32_clk_mgr implementation
     - drm/amd/display: Reset OUTBOX0 r/w pointer on DMUB reset
     - drm/amd/display: Do not clear GPINT register when releasing DMUB from
       reset
     - drm/amd/display: Update bounding box values for DCN321
     - ixgbe: Fix panic during XDP_TX with > 64 CPUs
     - [armhf] net/ncsi: clear Tx enable mode when handling a Config required AEN
     - tcp: fix skb_copy_ubufs() vs BIG TCP
     - net/sched: cls_api: remove block_cb from driver_list before freeing
     - sit: update dev->needed_headroom in ipip6_tunnel_bind_dev()
     - net: ipv6: fix skb hash for some RST packets
     - [arm64,armhf] net: dsa: mv88e6xxx: add mv88e6321 rsvd2cpu
     - writeback: fix call of incorrect macro
     - block: Skip destroyed blkg when restart in blkg_destroy_all()
     - [arm64,armhf] watchdog: dw_wdt: Fix the error handling path of
       dw_wdt_drv_probe()
     - [arm64,armhf] i2c: tegra: Fix PEC support for SMBUS block read
     - net/sched: act_mirred: Add carrier check
     - r8152: fix flow control issue of RTL8156A
     - r8152: fix the poor throughput for 2.5G devices
     - r8152: move setting r8153b_rx_agg_chg_indicate()
     - sfc: Fix module EEPROM reporting for QSFP modules
     - rxrpc: Fix hard call timeout units
     - [x86] drm/i915/mtl: Add the missing CPU transcoder mask in
       intel_device_info
     - ethtool: Fix uninitialized number of lanes
     - af_packet: Don't send zero-byte data in packet_sendmsg_spkt().
     - drm/amdgpu: add a missing lock for AMDGPU_SCHED
     - ALSA: caiaq: input: Add error handling for unsupported input methods in
       `snd_usb_caiaq_input_init`
     - [s390x] KVM: s390: fix race in gmap_make_secure()
     - ice: block LAN in case of VF to VF offload
     - virtio_net: suppress cpu stall when free_unused_bufs
     - [arm64] net: enetc: check the index of the SFI rather than the handle
     - perf record: Fix "read LOST count failed" msg with sample read
     - perf scripts intel-pt-events.py: Fix IPC output for Python 2
     - perf vendor events s390: Remove UTF-8 characters from JSON file
     - perf tests record_offcpu.sh: Fix redirection of stderr to stdin
     - perf ftrace: Make system wide the default target for latency subcommand
     - perf vendor events power9: Remove UTF-8 characters from JSON files
     - perf pmu: zfree() expects a pointer to a pointer to zero it after freeing
       its contents
     - perf map: Delete two variable initialisations before null pointer checks
       in sort__sym_from_cmp()
     - perf cs-etm: Fix timeless decode mode detection
     - crypto: api - Add scaffolding to change completion function signature
     - crypto: engine - Use crypto_request_complete
     - crypto: engine - fix crypto_queue backlog handling
     - perf symbols: Fix return incorrect build_id size in elf_read_build_id()
     - perf tracepoint: Fix memory leak in is_valid_tracepoint()
     - perf stat: Separate bperf from bpf_profiler
     - [x86] retbleed: Fix return thunk alignment
     - btrfs: fix btrfs_prev_leaf() to not return the same key twice
     - btrfs: zoned: fix wrong use of bitops API in btrfs_ensure_empty_zones
     - btrfs: properly reject clear_cache and v1 cache for block-group-tree
     - btrfs: fix assertion of exclop condition when starting balance
     - btrfs: fix encoded write i_size corruption with no-holes
     - btrfs: don't free qgroup space unless specified
     - btrfs: zero the buffer before marking it dirty in btrfs_redirty_list_add
     - btrfs: make clear_cache mount option to rebuild FST without disabling it
     - btrfs: print-tree: parent bytenr must be aligned to sector size
     - btrfs: fix space cache inconsistency after error loading it from disk
     - btrfs: zoned: zone finish data relocation BG with last IO
     - btrfs: zoned: fix full zone super block reading on ZNS
     - cifs: fix pcchunk length type in smb2_copychunk_range
     - cifs: release leases for deferred close handles when freezing
     - [amd64] platform/x86/intel-uncore-freq: Return error on write frequency
     - [x86] platform/x86: touchscreen_dmi: Add upside-down quirk for GDIX1002 ts
       on the Juno Tablet
     - [x86] platform/x86: thinkpad_acpi: Fix platform profiles on T490
     - [x86] platform/x86: touchscreen_dmi: Add info for the Dexp Ursus KX210i
     - [x86] platform/x86: thinkpad_acpi: Add profile force ability
     - inotify: Avoid reporting event with invalid wd
     - smb3: fix problem remounting a share after shutdown
     - SMB3: force unmount was failing to close deferred close files
     - [armhf] remoteproc: stm32: Call of_node_put() on iteration error
     - sysctl: clarify register_sysctl_init() base directory order
     - [armhf] ARM: dts: aspeed: asrock: Correct firmware flash SPI clocks
     - [armhf] ARM: dts: exynos: fix WM8960 clock name in Itop Elite
     - [armhf] ARM: dts: aspeed: romed8hm3: Fix GPIO polarity of system-fault LED
     - [arm64] drm/msm/adreno: fix runtime PM imbalance at gpu load
     - [x86] drm/i915/color: Fix typo for Plane CSC indexes
     - [arm64] drm/msm: fix NULL-deref on snapshot tear down
     - [arm64] drm/msm: fix NULL-deref on irq uninstall
     - [arm64] drm/msm: fix drm device leak on bind errors
     - [arm64] drm/msm: fix vram leak on bind errors
     - [arm64] drm/msm: fix workqueue leak on bind errors
     - [x86] drm/i915/dsi: Use unconditional msleep() instead of
       intel_dsi_msleep()
     - f2fs: fix null pointer panic in tracepoint in __replace_atomic_write_block
     - f2fs: fix potential corruption when moving a directory
     - [armhf] drm/panel: otm8009a: Set backlight parent to panel device
     - drm/amd/display: Add NULL plane_state check for cursor disable logic
     - drm/amd/display: Fix 4to1 MPC black screen with DPP RCO
     - drm/amd/display: filter out invalid bits in pipe_fuses
     - drm/amd/display: fix flickering caused by S/G mode
     - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v10_0_hw_fini
     - drm/amdgpu: fix an amdgpu_irq_put() issue in gmc_v9_0_hw_fini()
     - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v11_0_hw_fini
     - drm/amdgpu/gfx: disable gfx9 cp_ecc_error_irq only when enabling legacy
       gfx ras
     - drm/amdgpu/jpeg: Remove harvest checking for JPEG3
     - drm/amdgpu: change gfx 11.0.4 external_id range
     - drm/amdgpu: Fix vram recover doesn't work after whole GPU reset (v2)
     - drm/amd/display: Enforce 60us prefetch for 200Mhz DCFCLK modes
     - drm/amd/pm: parse pp_handle under appropriate conditions
     - drm/amdgpu: disable sdma ecc irq only when sdma RAS is enabled in suspend
     - drm/amd/pm: avoid potential UBSAN issue on legacy asics
     - drm/amdgpu: remove deprecated MES version vars
     - drm/amd: Load MES microcode during early_init
     - drm/amd: Add a new helper for loading/validating microcode
     - drm/amd: Use `amdgpu_ucode_*` helpers for MES
     - HID: wacom: Set a default resolution for older tablets
     - HID: wacom: insert timestamp to packed Bluetooth (BT) events
     - [arm64] drm/msm/adreno: adreno_gpu: Use suspend() instead of idle() on
       load error
     - f2fs: specify extent cache for read explicitly
     - f2fs: move internal functions into extent_cache.c
     - f2fs: remove unnecessary __init_extent_tree
     - f2fs: refactor extent_cache to support for read and more
     - f2fs: allocate the extent_cache by default
     - f2fs: factor out victim_entry usage from general rb_tree use
     - [arm64] drm/msm/adreno: Simplify read64/write64 helpers
     - [arm64] drm/msm: Hangcheck progress detection
     - [arm64] drm/msm: fix missing wq allocation error handling
     - wifi: rtw88: rtw8821c: Fix rfe_option field width
     - [x86] drm/i915/mtl: update scaler source and destination limits for MTL
     - [x86] drm/i915: Check pipe source size when using skl+ scalers
     - drm/amd/display: Refactor eDP PSR codes
     - drm/amd/display: Add Z8 allow states to z-state support list
     - drm/amd/display: Add debug option to skip PSR CRTC disable
     - drm/amd/display: Fix Z8 support configurations
     - drm/amd/display: Add minimum Z8 residency debug option
     - drm/amd/display: Update minimum stutter residency for DCN314 Z8
     - drm/amd/display: Lowering min Z8 residency time
     - [x86] ASoC: codecs: constify static sdw_slave_ops struct
     - drm/amd/display: Update Z8 watermarks for DCN314
     - drm/amd/display: Update Z8 SR exit/enter latencies
     - drm/amd/display: Change default Z8 watermark values
     - ksmbd: Implements sess->ksmbd_chann_list as xarray
     - ksmbd: fix racy issue from session setup and logoff (CVE-2023-32250)
     - ksmbd: destroy expired sessions
     - ksmbd: block asynchronous requests when making a delay on session setup
     - ksmbd: fix racy issue from smb2 close and logoff with multichannel
     - drm: Add missing DP DSC extended capability definitions.
     - drm/dsc: fix drm_edp_dsc_sink_output_bpp() DPCD high byte usage
     - locking/rwsem: Add __always_inline annotation to __down_read_common() and
       inlined callers
     - ext4: fix WARNING in mb_find_extent
     - ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum
       (CVE-2023-34256)
     - ext4: fix data races when using cached status extents
     - ext4: check iomap type only if ext4_iomap_begin() does not fail
     - ext4: improve error recovery code paths in __ext4_remount()
     - ext4: improve error handling from ext4_dirhash()
     - ext4: fix deadlock when converting an inline directory in nojournal mode
     - ext4: add bounds checking in get_max_inline_xattr_value_size()
     - ext4: bail out of ext4_xattr_ibody_get() fails for any reason
     - ext4: fix lockdep warning when enabling MMP
     - ext4: remove a BUG_ON in ext4_mb_release_group_pa()
     - ext4: fix invalid free tracking in ext4_xattr_move_to_block()
     - drm/dsc: fix DP_DSC_MAX_BPP_DELTA_* macro values
     - f2fs: fix to do sanity check on extent cache correctly
     - f2fs: inode: fix to do sanity check on extent cache correctly
     - [x86] amd_nb: Add PCI ID for family 19h model 78h
     - [x86] fix clear_user_rep_good() exception handling annotation
     - drm/amd/display: Fix hang when skipping modeset
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.30
     - drm/fbdev-generic: prohibit potential out-of-bounds access
     - drm/mipi-dsi: Set the fwnode for mipi_dsi_device
     - net: skb_partial_csum_set() fix against transport header magic value
     - scsi: ufs: core: Fix I/O hang that occurs when BKOPS fails in W-LUN
       suspend
     - tick/broadcast: Make broadcast device replacement work correctly
     - linux/dim: Do nothing if no time delta between samples
     - net: stmmac: Initialize MAC_ONEUS_TIC_COUNTER register
     - net: Fix load-tearing on sk->sk_stamp in sock_recv_cmsgs().
     - [arm64,armhf] net: phy: bcm7xx: Correct read from expansion register
     - netfilter: nf_tables: always release netdev hooks from notifier
     - netfilter: conntrack: fix possible bug_on with enable_hooks=1
     - bonding: fix send_peer_notif overflow
     - netlink: annotate accesses to nlk->cb_running
     - net: annotate sk->sk_err write from do_recvmmsg()
     - net: deal with most data-races in sk_wait_event()
     - net: add vlan_get_protocol_and_depth() helper
     - tcp: add annotations around sk->sk_shutdown accesses
     - [amd64,arm64] gve: Remove the code of clearing PBA bit
     - ipvlan:Fix out-of-bounds caused by unclear skb->cb (CVE-2023-3090)
     - [arm64] net: mscc: ocelot: fix stat counter register values
     - net: datagram: fix data-races in datagram_poll()
     - af_unix: Fix a data race of sk->sk_receive_queue->qlen.
     - af_unix: Fix data races around sk->sk_shutdown.
     - [x86] drm/i915/guc: Don't capture Gen8 regs on Xe devices
     - [x86] drm/i915: Fix NULL ptr deref by checking new_crtc_state
     - [x86] drm/i915/dp: prevent potential div-by-zero
     - [x86] drm/i915: Expand force_probe to block probe of devices as well.
     - [x86] drm/i915: taint kernel when force probing unsupported devices
     - [x86] fbdev: arcfb: Fix error handling in arcfb_probe()
     - ext4: reflect error codes from ext4_multi_mount_protect() to its callers
     - ext4: allow to find by goal if EXT4_MB_HINT_GOAL_ONLY is set
     - ext4: allow ext4_get_group_info() to fail
     - rcu: Protect rcu_print_task_exp_stall() ->exp_tasks access
     - open: return EINVAL for O_DIRECTORY | O_CREAT
     - fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
     - drm/displayid: add displayid_get_header() and check bounds better
     - drm/amd/display: populate subvp cmd info only for the top pipe
     - drm/amd/display: Correct DML calculation to align HW formula
     - [x86] platform/x86: x86-android-tablets: Add Acer Iconia One 7 B1-750 data
     - drm/amd/display: Enable HostVM based on rIOMMU active
     - drm/amd/display: Use DC_LOG_DC in the trasform pixel function
     - regmap: cache: Return error in cache sync operations for REGCACHE_NONE
     - [arm64] dts: qcom: msm8996: Add missing DWC3 quirks
     - media: cx23885: Fix a null-ptr-deref bug in buffer_prepare() and
       buffer_finish()
     - media: pci: tw68: Fix null-ptr-deref bug in buf prepare and finish
     - ACPI: processor: Check for null return of devm_kzalloc() in
       fch_misc_setup()
     - [arm64,armhf] drm/rockchip: dw_hdmi: cleanup drm encoder during unbind
     - memstick: r592: Fix UAF bug in r592_remove due to race condition
       (CVE-2023-3141)
     - ACPI: EC: Fix oops when removing custom query handlers
     - drm/amd/display: fixed dcn30+ underflow issue
     - [armhf] remoteproc: stm32_rproc: Add mutex protection for workqueue
     - [arm64,armhf] drm/tegra: Avoid potential 32-bit integer overflow
     - [arm64] drm/msm/dp: Clean up handling of DP AUX interrupts
     - ACPICA: Avoid undefined behavior: applying zero offset to null pointer
     - ACPICA: ACPICA: check null return of ACPI_ALLOCATE_ZEROED in
       acpi_db_display_objects
     - [arm64] dts: qcom: sdm845-polaris: Drop inexistent properties
     - [arm64,armhf] irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4
     - ACPI: video: Remove desktops without backlight DMI quirks
     - drm/amd/display: Correct DML calculation to follow HW SPEC
     - drm/amd: Fix an out of bounds error in BIOS parser
     - drm/amdgpu: Fix sdma v4 sw fini error
     - [armhf] media: Prefer designated initializers over memset for subdev pad
       ops
     - wifi: ath: Silence memcpy run-time false positive warning
     - bpf: Annotate data races in bpf_local_storage
     - wifi: brcmfmac: pcie: Provide a buffer of random bytes to the device
     - wifi: brcmfmac: cfg80211: Pass the PMK in binary instead of hex
     - scsi: lpfc: Prevent lpfc_debugfs_lockstat_write() buffer overflow
     - scsi: lpfc: Correct used_rpi count when devloss tmo fires with no recovery
     - bnxt: avoid overflow in bnxt_get_nvram_directory()
     - net: Catch invalid index in XPS mapping
     - netdev: Enforce index cap in netdev_get_tx_queue
     - scsi: target: iscsit: Free cmds before session free
     - lib: cpu_rmap: Avoid use after free on rmap->obj array entries
     - scsi: message: mptlan: Fix use after free bug in mptlan_remove() due to
       race condition
     - gfs2: Fix inode height consistency check
     - [x86] scsi: ufs: ufs-pci: Add support for Intel Lunar Lake
     - ext4: set goal start correctly in ext4_mb_normalize_request
     - ext4: Fix best extent lstart adjustment logic in ext4_mb_new_inode_pa()
     - crypto: jitter - permanent and intermittent health errors
     - f2fs: Fix system crash due to lack of free space in LFS
     - f2fs: fix to drop all dirty pages during umount() if cp_error is set
     - f2fs: fix to check readonly condition correctly
     - bpf: Add preempt_count_{sub,add} into btf id deny list
     - md: fix soft lockup in status_resync
     - wifi: iwlwifi: pcie: fix possible NULL pointer dereference
     - wifi: iwlwifi: add a new PCI device ID for BZ device
     - wifi: iwlwifi: pcie: Fix integer overflow in iwl_write_to_user_buf
     - wifi: iwlwifi: mvm: fix ptk_pn memory leak
     - block, bfq: Fix division by zero error on zero wsum
     - wifi: ath11k: Ignore frags from uninitialized peer in dp.
     - wifi: iwlwifi: fix iwl_mvm_max_amsdu_size() for MLO
     - null_blk: Always check queue mode setting from configfs
     - wifi: iwlwifi: dvm: Fix memcpy: detected field-spanning write backtrace
     - wifi: ath11k: Fix SKB corruption in REO destination ring
     - nbd: fix incomplete validation of ioctl arg
     - ipvs: Update width of source for ip_vs_sync_conn_options
     - Bluetooth: btusb: Add new PID/VID 04ca:3801 for MT7663
     - Bluetooth: Add new quirk for broken local ext features page 2
     - Bluetooth: btrtl: add support for the RTL8723CS
     - Bluetooth: Improve support for Actions Semi ATS2851 based devices
     - Bluetooth: btrtl: check for NULL in btrtl_set_quirks()
     - Bluetooth: btintel: Add LE States quirk support
     - Bluetooth: hci_bcm: Fall back to getting bdaddr from EFI if not set
     - Bluetooth: Add new quirk for broken set random RPA timeout for ATS2851
     - Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
     - Bluetooth: btrtl: Add the support for RTL8851B
     - HID: apple: Set the tilde quirk flag on the Geyser 4 and later
     - [x86] ASoC: amd: yc: Add DMI entries to support HP OMEN 16-n0xxx (8A42)
     - HID: logitech-hidpp: Don't use the USB serial for USB devices
     - HID: logitech-hidpp: Reconcile USB and Unifying serials
     - [arm64,armhf] spi: spi-imx: fix MX51_ECSPI_* macros when cs > 3
     - [x86] usb: typec: ucsi: acpi: add quirk for ASUS Zenbook UM325
     - ALSA: hda: LNL: add HD Audio PCI ID
     - [x86] ASoC: amd: Add Dell G15 5525 to quirks list
     - [x86] ASoC: amd: yc: Add ThinkBook 14 G5+ ARP to quirks list for acp6x
     - [x86] HID: apple: Set the tilde quirk flag on the Geyser 3
     - [x86] HID: Ignore battery for ELAN touchscreen on ROG Flow X13 GV301RA
     - HID: wacom: generic: Set battery quirk only when we see battery data
     - usb: typec: tcpm: fix multiple times discover svids error
     - serial: 8250: Reinit port->pm on port specific driver unbind
     - [x86] soundwire: dmi-quirks: add remapping for Intel 'Rooks County' NUC
       M15
     - soundwire: qcom: gracefully handle too many ports in DT
     - soundwire: bus: Fix unbalanced pm_runtime_put() causing usage count
       underflow
     - [x86] mfd: intel_soc_pmic_chtwc: Add Lenovo Yoga Book X90F to
       intel_cht_wc_models
     - [x86] mfd: intel-lpss: Add Intel Meteor Lake PCH-S LPSS PCI IDs
     - [x86] platform/x86: Move existing HP drivers to a new hp subdir
     - [x86] hp-wmi: add micmute to hp_wmi_keymap struct
     - drm/amdgpu: drop gfx_v11_0_cp_ecc_error_irq_funcs
     - xfrm: don't check the default policy if the policy allows the packet
     - Revert "Fix XFRM-I support for nested ESP tunnels"
     - [arm64] drm/msm/dp: unregister audio driver during unbind
     - [arm64] drm/msm/dpu: Assign missing writeback log_mask
     - [arm64] drm/msm/dpu: Move non-MDP_TOP INTF_INTR offsets out of hwio header
     - [arm64] drm/msm/dpu: Remove duplicate register defines from INTF
     - platform: Provide a remove callback that returns no value
     - [arm64] ASoC: fsl_micfil: Fix error handler with pm_runtime_enable
     - cpupower: Make TSC read per CPU for Mperf monitor
     - xfrm: Reject optional tunnel/BEET mode templates in outbound policies
     - af_key: Reject optional tunnel/BEET mode templates in outbound policies
     - [arm64] drm/msm: Fix submit error-path leaks
     - [arm64,armhf] net: fec: Better handle pm_runtime_get() failing in
       .remove()
     - net: phy: dp83867: add w/a for packet errors seen with short cables
     - ALSA: firewire-digi00x: prevent potential use after free
     - wifi: mt76: connac: fix stats->tx_bytes calculation
     - [x86] ALSA: hda/realtek: Apply HP B&O top speaker profile to Pavilion 15
     - sfc: disable RXFCS and RXALL features by default
     - vsock: avoid to close connected socket after the timeout
     - tcp: fix possible sk_priority leak in tcp_v4_send_reset()
     - [armhf] serial: arc_uart: fix of_iomap leak in `arc_serial_probe`
     - erspan: get the proto with the md version for collect_md
     - [arm64] net: hns3: fix output information incomplete for dumping tx queue
       info with debugfs
     - [arm64] net: hns3: fix sending pfc frames after reset issue
     - [arm64] net: hns3: fix reset delay time to avoid configuration timeout
     - [arm64] net: hns3: fix reset timeout when enable full VF
     - media: netup_unidvb: fix use-after-free at del_timer()
     - SUNRPC: double free xprt_ctxt while still in use
     - SUNRPC: always free ctxt when freeing deferred request
     - SUNRPC: Fix trace_svc_register() call site
     - [x86] ASoC: SOF: topology: Fix logic for copying tuples
     - net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment()
     - virtio-net: Maintain reverse cleanup order
     - virtio_net: Fix error unwinding of XDP initialization
     - tipc: add tipc_bearer_min_mtu to calculate min mtu
     - tipc: do not update mtu if msg_max is too small in mtu negotiation
     - tipc: check the bearer min mtu properly when setting it by netlink
     - [s390x] cio: include subchannels without devices also for evaluation
     - can: dev: fix missing CAN XL support in can_put_echo_skb()
     - [arm64] net: bcmgenet: Remove phy_stop() from bcmgenet_netif_stop()
     - [arm64] net: bcmgenet: Restore phy_stop() depending upon suspend/close
     - ice: introduce clear_reset_state operation
     - ice: Fix ice VF reset during iavf initialization
     - wifi: cfg80211: Drop entries with invalid BSSIDs in RNR
     - wifi: mac80211: fortify the spinlock against deadlock by interrupt
     - wifi: mac80211: fix min center freq offset tracing
     - wifi: mac80211: Abort running color change when stopping the AP
     - wifi: iwlwifi: mvm: fix cancel_delayed_work_sync() deadlock
     - wifi: iwlwifi: fw: fix DBGI dump
     - wifi: iwlwifi: fix OEM's name in the ppag approved list
     - wifi: iwlwifi: mvm: fix OEM's name in the tas approved list
     - wifi: iwlwifi: mvm: don't trust firmware n_channels
     - scsi: storvsc: Don't pass unused PFNs to Hyper-V host
     - net: tun: rebuild error handling in tun_get_user
     - tun: Fix memory leak for detached NAPI queue.
     - cassini: Fix a memory leak in the error handling path of cas_init_one()
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix mv88e6393x EPC write command offset
     - igb: fix bit_shift to be in [1..8] range
     - vlan: fix a potential uninit-value in vlan_dev_hard_start_xmit()
     - net: wwan: iosm: fix NULL pointer dereference when removing device
     - net: pcs: xpcs: fix C73 AN not getting enabled
     - netfilter: nf_tables: fix nft_trans type confusion
     - netfilter: nft_set_rbtree: fix null deref on element insertion
     - ALSA: usb-audio: Add a sample rate workaround for Line6 Pod Go
     - USB: usbtmc: Fix direction for 0-length ioctl control messages
     - usb-storage: fix deadlock when a scsi command timeouts more than once
     - USB: UHCI: adjust zhaoxin UHCI controllers OverCurrent bit value
     - [arm64,armhf] usb: dwc3: gadget: Improve dwc3_gadget_suspend() and
       dwc3_gadget_resume()
     - [arm64,armhf] usb: dwc3: debugfs: Resume dwc3 before accessing registers
     - usb: gadget: u_ether: Fix host MAC address case
     - usb: typec: altmodes/displayport: fix pin_assignment_show
     - xhci-pci: Only run d3cold avoidance quirk for s2idle
     - xhci: Fix incorrect tracking of free space on transfer rings
     - ALSA: hda: Fix Oops by 9.1 surround channel names
     - ALSA: hda: Add NVIDIA codec IDs a3 through a7 to patch table
     - [x86] ALSA: hda/realtek: Add quirk for Clevo L140AU
     - [x86] ALSA: hda/realtek: Add a quirk for HP EliteDesk 805
     - [x86] ALSA: hda/realtek: Add quirk for 2nd ASUS GU603
     - [x86] ALSA: hda/realtek: Add quirk for HP EliteBook G10 laptops
     - ALSA: hda/realtek: Fix mute and micmute LEDs for yet another HP laptop
     - can: j1939: recvmsg(): allow MSG_CMSG_COMPAT flag
     - can: isotp: recvmsg(): allow MSG_CMSG_COMPAT flag
     - wifi: rtw88: use work to update rate to avoid RCU warning
     - SMB3: Close all deferred handles of inode in case of handle lease break
     - SMB3: drop reference to cfile before sending oplock break
     - ksmbd: smb2: Allow messages padded to 8byte boundary
     - ksmbd: allocate one more byte for implied bcc[0]
     - ksmbd: fix wrong UserName check in session_user
     - ksmbd: fix global-out-of-bounds in smb2_find_context_vals
     - KVM: Fix vcpu_array[0] races
     - statfs: enforce statfs[64] structure initialization
     - maple_tree: make maple state reusable after mas_empty_area()
       (Closes: #1036755)
     - mm: fix zswap writeback race condition
     - serial: Add support for Advantech PCI-1611U card
     - serial: 8250_exar: Add support for USR298x PCI Modems
     - [arm64] serial: qcom-geni: fix enabling deactivated interrupt
     - [x86] thunderbolt: Clear registers properly when auto clear isn't in use
     - vc_screen: reload load of struct vc_data pointer in vcs_write() to avoid
       UAF
     - ceph: force updating the msg pointer in non-split case
     - drm/amd/pm: fix possible power mode mismatch between driver and PMFW
     - drm/amdgpu/gmc11: implement get_vbios_fb_size()
     - drm/amdgpu/gfx10: Disable gfxoff before disabling powergating.
     - drm/amdgpu/gfx11: Adjust gfxoff before powergating on gfx11 as well
     - drm/amdgpu: refine get gpu clock counter method
     - drm/amdgpu/gfx11: update gpu_clock_counter logic
     - [powerpc*] iommu: DMA address offset is incorrectly calculated with 2MB
       TCEs
     - [powerpc*] iommu: Incorrect DDW Table is referenced for SR-IOV device
     - tpm/tpm_tis: Disable interrupts for more Lenovo devices
     - [powerpc*] 64s/radix: Fix soft dirty tracking
     - nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode()
     - [s390x] dasd: fix command reject error on ESE devices
     - [s390x] crypto: use vector instructions only if available for ChaCha20
     - [s390x] qdio: fix do_sqbs() inline assembly constraint
     - [arm64] mte: Do not set PG_mte_tagged if tags were not initialized
     - [x86] rethook: use preempt_{disable, enable}_notrace in
       rethook_trampoline_handler
     - [x86] rethook, fprobe: do not trace rethook related functions
     - crypto: testmgr - fix RNG performance in fuzz tests
     - drm/amdgpu: declare firmware for new MES 11.0.4
     - drm/amd/amdgpu: introduce gc_*_mes_2.bin v2
     - drm/amdgpu: reserve the old gc_11_0_*_mes.bin
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.31
     - [arm64,armhf] usb: dwc3: fix gadget mode suspend interrupt handler issue
     - tpm, tpm_tis: Avoid cache incoherency in test for interrupts
     - tpm, tpm_tis: Only handle supported interrupts
     - tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume
     - tpm, tpm_tis: startup chip before testing for interrupts
     - tpm: Re-enable TPM chip boostrapping non-tpm_tis TPM drivers
     - tpm: Prevent hwrng from activating during resume
     - [x86] watchdog: sp5100_tco: Immediately trigger upon starting.
     - drm/amd/amdgpu: update mes11 api def
     - drm/amdgpu/mes11: enable reg active poll
     - skbuff: Proactively round up to kmalloc bucket size
     - [arm64,armhf] net: dsa: mv88e6xxx: Add RGMII delay to 88E6320
     - drm/amd/display: hpd rx irq not working with eDP interface
     - ocfs2: Switch to security_inode_init_security()
     - [x86] mm: Avoid incomplete Global INVLPG flushes
     - [x86] ALSA: hda/ca0132: add quirk for EVGA X299 DARK
     - ALSA: hda: Fix unhandled register update during auto-suspend period
     - [x86] ALSA: hda/realtek: Enable headset onLenovo M70/M90
     - SUNRPC: Don't change task->tk_status after the call to rpc_exit_task
     - [arm64,armhf] imc: sdhci-esdhc-imx: make "no-mmc-hs400" works
     - mmc: block: ensure error propagation for non-blk
     - [x86] power: supply: axp288_fuel_gauge: Fix external_power_changed race
     - [arm64] power: supply: bq25890: Fix external_power_changed race
     - ASoC: rt5682: Disable jack detection interrupt during suspend
     - net: cdc_ncm: Deal with too low values of dwNtbOutMaxSize
     - btrfs: use nofs when cleaning up aborted transactions
     - [x86] drm/mgag200: Fix gamma lut not initialized.
     - drm/radeon: reintroduce radeon_dp_work_func content
     - drm/amd/pm: add missing NotifyPowerSource message mapping for SMU13.0.7
     - drm/amd/pm: Fix output of pp_od_clk_voltage
     - Revert "binder_alloc: add missing mmap_lock calls when using the VMA"
     - Revert "android: binder: stop saving a pointer to the VMA"
     - binder: add lockless binder_alloc_(set|get)_vma()
     - binder: fix UAF caused by faulty buffer cleanup
     - binder: fix UAF of alloc->vma in race with munmap()
     - drm/amd/amdgpu: limit one queue per gang
     - [x86] perf/x86/uncore: Correct the number of CHAs on SPR
     - [x86] topology: Fix erroneous smp_num_siblings on Intel Hybrid platforms
     - [mips*] irqchip/mips-gic: Don't touch vl_map if a local interrupt is not
       routable
     - [mips*] irqchip/mips-gic: Use raw spinlock for gic_lock
     - debugobjects: Don't wake up kswapd from fill_pool()
     - fbdev: udlfb: Fix endpoint check
     - net: fix stack overflow when LRO is disabled for virtual interfaces
     - udplite: Fix NULL pointer dereference in __sk_mem_raise_allocated().
     - USB: core: Add routines for endpoint checks in old drivers
     - USB: sisusbvga: Add endpoint checks
     - media: radio-shark: Add endpoint checks
     - net: fix skb leak in __skb_tstamp_tx()
     - drm: fix drmm_mutex_init()
     - bpf: Fix mask generation for 32-bit narrow loads of 64-bit fields
     - bpf: fix a memory leak in the LRU and LRU_PERCPU hash maps
     - ipv6: Fix out-of-bounds access in ipv6_find_tlv()
     - cifs: mapchars mount option ignored
     - power: supply: leds: Fix blink to LED on transition
     - power: supply: bq27xxx: Fix bq27xxx_battery_update() race condition
     - power: supply: bq27xxx: Fix I2C IRQ race on remove
     - power: supply: bq27xxx: Fix poll_interval handling and races on remove
     - power: supply: bq27xxx: Add cache parameter to
       bq27xxx_battery_current_and_status()
     - power: supply: bq27xxx: Move bq27xxx_battery_update() down
     - power: supply: bq27xxx: Ensure power_supply_changed() is called on current
       sign changes
     - power: supply: bq27xxx: After charger plug in/out wait 0.5s for things to
       stabilize
     - [arm64] power: supply: bq25890: Call power_supply_changed() after updating
       input current or voltage
     - [x86] power: supply: bq24190: Call power_supply_changed() after updating
       input current
     - [arm64] optee: fix uninited async notif value
     - fs: fix undefined behavior in bit shift for SB_NOUSER
     - [arm64] regulator: pca9450: Fix BUCK2 enable_mask
     - [x86] platform/x86: ISST: Remove 8 socket limit
     - [armhf] dts: imx6qdl-mba6: Add missing pvcie-supply regulator
     - [x86] pci/xen: populate MSI sysfs entries
     - [x86] show_trace_log_lvl: Ensure stack pointer is aligned, again
     - [x86] ASoC: Intel: Skylake: Fix declaration of enum skl_ch_cfg
     - cxl: Wait Memory_Info_Valid before access memory related info
     - sctp: fix an issue that plpmtu can never go to complete state
     - [x86] forcedeth: Fix an error handling path in nv_probe()
     - net/mlx5e: Fix SQ wake logic in ptp napi_poll context
     - net/mlx5e: Fix deadlock in tc route query code
     - net/mlx5e: Use correct encap attribute during invalidation
     - net/mlx5e: do as little as possible in napi poll when budget is 0
     - [s390x] net/mlx5: DR, Fix crc32 calculation to work on big-endian (BE)
       CPUs
     - net/mlx5: Handle pairing of E-switch via uplink un/load APIs
     - net/mlx5: DR, Check force-loopback RC QP capability independently from
       RoCE
     - net/mlx5: Fix error message when failing to allocate device memory
     - net/mlx5: Collect command failures data only for known commands
     - net/mlx5: Devcom, fix error flow in mlx5_devcom_register_device
     - net/mlx5: Devcom, serialize devcom registration
     - [arm64] dts: imx8mn-var-som: fix PHY detection bug by adding deassert
       delay
     - net/smc: Reset connection when trying to use SMCRv2 fails.
     - [x86] 3c589_cs: Fix an error handling path in tc589_probe()
     - net: phy: mscc: add VSC8502 to MODULE_DEVICE_TABLE
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.32
     - inet: Add IP_LOCAL_PORT_RANGE socket option
     - ipv{4,6}/raw: fix output xfrm lookup wrt protocol
     - tls: rx: device: fix checking decryption status
     - tls: rx: strp: set the skb->len of detached / CoW'ed skbs
     - tls: rx: strp: fix determining record length in copy mode
     - tls: rx: strp: force mixed decrypted records into copy mode
     - tls: rx: strp: factor out copying skb data
     - tls: rx: strp: preserve decryption status of skbs when needed
     - net/mlx5: E-switch, Devcom, sync devcom events and devcom comp register
     - [x86] gpio-f7188x: fix chip name and pin count on Nuvoton chip
     - bpf, sockmap: Pass skb ownership through read_skb
     - bpf, sockmap: Convert schedule_work into delayed_work
     - bpf, sockmap: Reschedule is now done through backlog
     - bpf, sockmap: Improved check for empty queue
     - bpf, sockmap: Handle fin correctly
     - bpf, sockmap: TCP data stall on recv before accept
     - bpf, sockmap: Wake up polling after data copy
     - bpf, sockmap: Incorrectly handling copied_seq
     - blk-mq: fix race condition in active queue accounting
     - vfio/type1: check pfn valid before converting to struct page
     - net: page_pool: use in_softirq() instead
     - page_pool: fix inconsistency for page_pool_ring_[un]lock()
     - net: phy: mscc: enable VSC8501/2 RGMII RX clock
     - wifi: iwlwifi: mvm: support wowlan info notification version 2
     - wifi: iwlwifi: mvm: fix potential memory leak
     - RDMA/rxe: Fix the error "trying to register non-static key in
       rxe_cleanup_task"
     - drm/amd: Don't allow s0ix on APUs older than Raven
     - bluetooth: Add cmd validity checks at the start of hci_sock_ioctl()
     - block: fix bio-cache for passthru IO
     - [x86] cpufreq: amd-pstate: Update policy->cur in amd_pstate_adjust_perf()
     - [x86] cpufreq: amd-pstate: Add ->fast_switch() callback
     - netfilter: ctnetlink: Support offloaded conntrack entry deletion
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.33
     - [arm64,armhf] phy: amlogic: phy-meson-g12a-mipi-dphy-analog: fix
       CNTL2_DIF_TX_CTL0 value
     - [arm64] RDMA/hns: Fix timeout attr in query qp for HIP08
     - [arm64] RDMA/hns: Fix base address table allocation
     - [arm64] RDMA/hns: Modify the value of long message loopback slice
     - [arm64,armhf] iommu/rockchip: Fix unwind goto issue
     - [amd64] iommu/amd: Don't block updates to GATag if guest mode is on
     - [amd64] iommu/amd: Handle GALog overflows
     - [amd64] iommu/amd: Fix up merge conflict resolution
     - nfsd: make a copy of struct iattr before calling notify_change
     - net/mlx5: Drain health before unregistering devlink
     - net/mlx5: SF, Drain health before removing device
     - net/mlx5: fw_tracer, Fix event handling
     - net/mlx5e: Don't attach netdev profile while handling internal error
     - netrom: fix info-leak in nr_write_internal()
     - af_packet: Fix data-races of pkt_sk(sk)->num.
     - tls: improve lockless access safety of tls_err_abort()
     - [amd64,arm64] amd-xgbe: fix the false linkup in xgbe_phy_status
     - perf ftrace latency: Remove unnecessary "--" from --use-nsec option
     - RDMA/irdma: Prevent QP use after free
     - RDMA/irdma: Fix Local Invalidate fencing
     - af_packet: do not use READ_ONCE() in packet_bind()
     - tcp: deny tcp_disconnect() when threads are waiting
     - tcp: Return user_mss for TCP_MAXSEG in CLOSE/LISTEN state if user_mss set
     - net/smc: Scan from current RMB list when no position specified
     - net/smc: Don't use RMBs not mapped to new link in SMCRv2 ADD LINK
     - net/sched: sch_ingress: Only create under TC_H_INGRESS
     - net/sched: sch_clsact: Only create under TC_H_CLSACT
     - net/sched: Reserve TC_H_INGRESS (TC_H_CLSACT) for ingress (clsact) Qdiscs
     - net/sched: Prohibit regrafting ingress or clsact Qdiscs
     - net: sched: fix NULL pointer dereference in mq_attach
     - net/netlink: fix NETLINK_LIST_MEMBERSHIPS length report
     - udp6: Fix race condition in udp6_sendmsg & connect
     - nfsd: fix double fget() bug in __write_ports_addfd()
     - nvme: fix the name of Zone Append for verbose logging
     - net/mlx5e: Fix error handling in mlx5e_refresh_tirs
     - net/mlx5: Read embedded cpu after init bit cleared
     - net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
       (CVE-2023-35788)
     - tcp: fix mishandling when the sack compression is deferred.
     - [arm64,armhf] net: dsa: mv88e6xxx: Increase wait after reset deactivation
     - [armhf] mtd: rawnand: marvell: ensure timing values are written
     - [armhf] mtd: rawnand: marvell: don't set the NAND frequency select
     - rtnetlink: call validate_linkmsg in rtnl_create_link
     - mptcp: avoid unneeded __mptcp_nmpc_socket() usage
     - mptcp: add annotations around msk->subflow accesses
     - mptcp: avoid unneeded address copy
     - mptcp: simplify subflow_syn_recv_sock()
     - mptcp: consolidate passive msk socket initialization
     - mptcp: fix data race around msk->first access
     - mptcp: add annotations around sk->sk_shutdown accesses
     - drm/amdgpu: release gpu full access after "amdgpu_device_ip_late_init"
     - ALSA: hda: Glenfly: add HD Audio PCI IDs and HDMI Codec Vendor IDs.
     - [x86] ASoC: Intel: soc-acpi-cht: Add quirk for Nextbook Ares 8A tablet
     - drm/amdgpu: Use the default reset when loading or reloading the driver
     - [arm64] drm/ast: Fix ARM compatibility
     - btrfs: abort transaction when sibling keys check fails for leaves
     - [armel,armhf] ARM: 9295/1: unwind:fix unwind abort for uleb128 case
     - [x86] hwmon: (k10temp) Add PCI ID for family 19, model 78h
     - gfs2: Don't deref jdesc in evict (CVE-2023-3212)
     - drm/amdgpu: set gfx9 onwards APU atomics support to be true
     - fbdev: modedb: Add 1920x1080 at 60 Hz video mode
     - nbd: Fix debugfs_create_dir error checking
     - nvme-pci: add NVME_QUIRK_BOGUS_NID for HS-SSD-FUTURE 2048G
     - nvme-pci: add quirk for missing secondary temperature thresholds
     - [x86] ASoC: amd: yc: Add DMI entry to support System76 Pangolin 12
     - xfrm: Check if_id in inbound policy/secpath match
     - [x86] ALSA: hda/realtek: Add quirks for ASUS GU604V and GU603V
     - media: dvb_demux: fix a bug for the continuity counter
     - media: dvb-usb: az6027: fix three null-ptr-deref in az6027_i2c_xfer()
     - media: dvb-usb-v2: ec168: fix null-ptr-deref in ec168_i2c_xfer()
     - media: dvb-usb-v2: ce6230: fix null-ptr-deref in ce6230_i2c_master_xfer()
     - media: dvb-usb-v2: rtl28xxu: fix null-ptr-deref in rtl28xxu_i2c_xfer
     - media: dvb-usb: digitv: fix null-ptr-deref in digitv_i2c_xfer()
     - media: dvb-usb: dw2102: fix uninit-value in su3000_read_mac_address
     - media: netup_unidvb: fix irq init by register it at the end of probe
     - media: dvb_ca_en50221: fix a size write bug
     - media: ttusb-dec: fix memory leak in ttusb_dec_exit_dvb()
     - media: dvb-core: Fix use-after-free due on race condition at dvb_net
     - media: dvb-core: Fix use-after-free due to race at dvb_register_device()
     - media: dvb-core: Fix kernel WARNING for blocking operation in
       wait_event*() (CVE-2023-31084)
     - media: dvb-core: Fix use-after-free due to race condition at
       dvb_ca_en50221
     - [x86] ASoC: SOF: debug: conditionally bump runtime_pm counter on
       exceptions
     - [x86] ASoC: SOF: pcm: fix pm_runtime imbalance in error handling
     - [x86] ASoC: SOF: sof-client-probes: fix pm_runtime imbalance in error
       handling
     - [x86] ASoC: SOF: pm: save io region state in case of errors in resume
     - [s390x] topology: honour nr_cpu_ids when adding CPUs
     - ACPI: resource: Add IRQ override quirk for LG UltraPC 17U70P
     - wifi: rtl8xxxu: fix authentication timeout due to incorrect RCR value
     - [arm64] mm: mark private VM_FAULT_X defines as vm_fault_t
     - [arm64] vdso: Pass (void *) to virt_to_page()
     - wifi: mac80211: simplify chanctx allocation
     - wifi: mac80211: consider reserved chanctx for mindef
     - wifi: mac80211: recalc chanctx mindef before assigning
     - wifi: iwlwifi: mvm: Add locking to the rate read flow
     - scsi: core: Decrease scsi_device's iorequest_cnt if dispatch failed
     - nvme-multipath: don't call blk_mark_disk_dead in nvme_mpath_remove_disk
     - nvme: do not let the user delete a ctrl before a complete initialization
     - [arm64] drm/msm: Be more shouty if per-process pgtables aren't working
     - ceph: silence smatch warning in reconnect_caps_cb()
     - drm/amdgpu: skip disabling fence driver src_irqs when device is unplugged
     - nvme-pci: Add quirk for Teamgroup MP33 SSD
     - block: Deny writable memory mapping if block is read-only
     - [arm64] KVM: arm64: vgic: Fix a circular locking issue
     - [arm64] KVM: arm64: vgic: Wrap vgic_its_create() with config_lock
     - [arm64] KVM: arm64: vgic: Fix locking comment
     - drivers: base: cacheinfo: Fix shared_cpu_map changes in event of CPU
       hotplug
     - media: uvcvideo: Don't expose unsupported formats to userspace
     - iio: accel: st_accel: Fix invalid mount_matrix on devices without ACPI
       _ONT method
     - HID: google: add jewel USB id
     - HID: wacom: avoid integer overflow in wacom_intuos_inout()
     - iio: imu: inv_icm42600: fix timestamp reset
     - iio: light: vcnl4035: fixed chip ID check
     - iio: adc: ad_sigma_delta: Fix IRQ issue by setting IRQ_DISABLE_UNLAZY flag
     - iio: dac: mcp4725: Fix i2c_master_send() return value handling
     - iio: adc: ad7192: Change "shorted" channels to differential
     - net: usb: qmi_wwan: Set DTR quirk for BroadMobi BM818
     - usb: gadget: f_fs: Add unbind event before functionfs_unbind
     - md/raid5: fix miscalculation of 'end_sector' in raid5_read_one_chunk()
     - ata: libata-scsi: Use correct device no in ata_find_dev()
     - drm/amdgpu: enable tmz by default for GC 11.0.1
     - drm/amd/pm: reverse mclk and fclk clocks levels for SMU v13.0.4
     - drm/amd/pm: reverse mclk and fclk clocks levels for vangogh
     - drm/amd/pm: resolve reboot exception for si oland
     - drm/amd/pm: reverse mclk clocks levels for SMU v13.0.5
     - drm/amd/pm: reverse mclk and fclk clocks levels for yellow carp
     - drm/amd/pm: reverse mclk and fclk clocks levels for renoir
     - [x86] mtrr: Revert 90b926e68f50 ("x86/pat: Fix pat_x_mtrr_type() for MTRR
       disabled case")
     - mmc: vub300: fix invalid response handling
     - [armhf] mmc: pwrseq: sd8787: Fix WILC CHIP_EN and RESETN toggling order
     - [arm64] tty: serial: fsl_lpuart: use UARTCTRL_TXINV to send break instead
       of UARTCTRL_SBK
     - btrfs: fix csum_tree_block page iteration to avoid tripping on
       -Werror=array-bounds
     - [arm64] phy: qcom-qmp-combo: fix init-count imbalance
     - [arm64] phy: qcom-qmp-pcie-msm8996: fix init-count imbalance
     - block: fix revalidate performance regression
     - [powerpc*] iommu: Limit number of TCEs to 512 for H_STUFF_TCE hcall
     - [amd64] iommu/amd: Fix domain flush size when syncing iotlb
     - tpm, tpm_tis: correct tpm_tis_flags enumeration values
     - io_uring: undeprecate epoll_ctl support
     - mtdchar: mark bits of ioctl handler noinline
     - [rt] tracing/timerlat: Always wakeup the timerlat thread
     - tracing/histograms: Allow variables to have some modifiers
     - tracing/probe: trace_probe_primary_from_call(): checked list_first_entry
     - mptcp: fix connect timeout handling
     - mptcp: fix active subflow finalization
     - ext4: add EA_INODE checking to ext4_iget()
     - ext4: disallow ea_inodes with extended attributes
     - fbcon: Fix null-ptr-deref in soft_cursor
     - [arm64,armhf] serial: 8250_tegra: Fix an error handling path in
       tegra_uart_probe()
     - [powerpc*] xmon: Use KSYM_NAME_LEN in array size
     - [arm64] KVM: arm64: Populate fault info for watchpoint
     - [x86] KVM: x86: Account fastpath-only VM-Exits in vCPU stats
     - ksmbd: fix credit count leakage
     - ksmbd: fix UAF issue from opinfo->conn
     - ksmbd: fix incorrect AllocationSize set in smb2_get_info
     - ksmbd: fix slab-out-of-bounds read in smb2_handle_negotiate
     - ksmbd: fix multiple out-of-bounds read during context decoding
     - KEYS: asymmetric: Copy sig and digest in public_key_verify_signature()
     - fs/ntfs3: Validate MFT flags before replaying logs (CVE-2022-48425)
     - regmap: Account for register length when chunking
     - tpm, tpm_tis: Request threaded interrupt handler
     - [amd64] iommu/amd/pgtbl_v2: Fix domain max address
     - drm/amd/display: Have Payload Properly Created After Resume
     - xfs: verify buffer contents when we skip log replay (CVE-2023-2124)
     - tls: rx: strp: don't use GFP_KERNEL in softirq context
     - [arm64] efi: Use SMBIOS processor version to key off Ampere quirk
     - ext4: enable the lazy init thread when remounting read/write
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.34
     - scsi: megaraid_sas: Add flexible array member for SGLs
     - net: sfp: fix state loss when updating state_hw_mask
     - [x86] platform/surface: aggregator: Allow completion work-items to be
       executed in parallel
     - [x86] platform/surface: aggregator_tabletsw: Add support for book mode in
       KIP subsystem
     - [arm64] spi: qup: Request DMA before enabling clocks
     - afs: Fix setting of mtime when creating a file/dir/symlink
     - wifi: mt76: mt7615: fix possible race in mt7615_mac_sta_poll
     - bpf, sockmap: Avoid potential NULL dereference in
       sk_psock_verdict_data_ready()
     - neighbour: fix unaligned access to pneigh_entry
     - net/ipv4: ping_group_range: allow GID from 2147483648 to 4294967294
     - bpf: Fix UAF in task local storage
     - bpf: Fix elem_size not being set for inner maps
     - net/ipv6: fix bool/int mismatch for skip_notify_on_dev_down
     - net/smc: Avoid to access invalid RMBs' MRs in SMCRv1 ADD LINK CONT
     - [arm64] net: enetc: correct the statistics of rx bytes
     - [arm64] net: enetc: correct rx_bytes statistics of XDP
     - net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
     - [x86] drm/i915: Explain the magic numbers for AUX SYNC/precharge length
     - [x86] drm/i915: Use 18 fast wake AUX sync len
     - Bluetooth: hci_sync: add lock to protect HCI_UNREGISTER
     - Bluetooth: Fix l2cap_disconnect_req deadlock
     - Bluetooth: ISO: don't try to remove CIG if there are bound CIS left
     - Bluetooth: L2CAP: Add missing checks for invalid DCID
     - wifi: mac80211: use correct iftype HE cap
     - wifi: cfg80211: reject bad AP MLD address
     - wifi: mac80211: mlme: fix non-inheritence element
     - wifi: mac80211: don't translate beacon/presp addrs
     - qed/qede: Fix scheduling while atomic
     - wifi: cfg80211: fix locking in sched scan stop work
     - netfilter: nft_bitwise: fix register tracking
     - netfilter: conntrack: fix NULL pointer dereference in nf_confirm_cthelper
     - netfilter: ipset: Add schedule point in call_ad().
     - netfilter: nf_tables: out-of-bound check in chain blob
     - ipv6: rpl: Fix Route of Death. (CVE-2023-2156)
     - tcp: gso: really support BIG TCP
     - rfs: annotate lockless accesses to sk->sk_rxhash
     - rfs: annotate lockless accesses to RFS sock flow table
     - net: sched: add rcu annotations around qdisc->qdisc_sleeping
     - net: sched: move rtm_tca_policy declaration to include file
     - net: sched: act_police: fix sparse errors in tcf_police_dump()
     - net: sched: fix possible refcount leak in tc_chain_tmplt_add()
     - bpf: Add extra path pointer check to d_path helper
     - drm/amdgpu: fix Null pointer dereference error in
       amdgpu_device_recover_vram
     - lib: cpu_rmap: Fix potential use-after-free in irq_cpu_rmap_release()
     - [arm64] net: bcmgenet: Fix EEE implementation
     - bnxt_en: Don't issue AP reset during ethtool's reset operation
     - bnxt_en: Query default VLAN before VNIC setup on a VF
     - bnxt_en: Skip firmware fatal error recovery if chip is not accessible
     - bnxt_en: Prevent kernel panic when receiving unexpected PHC_UPDATE event
     - bnxt_en: Implement .set_port / .unset_port UDP tunnel callbacks
     - batman-adv: Broken sync while rescheduling delayed work
     - Input: xpad - delete a Razer DeathAdder mouse VID/PID entry
     - Input: psmouse - fix OOB access in Elantech protocol
     - Input: fix open count when closing inhibited device
     - ALSA: hda: Fix kctl->id initialization
     - ALSA: ymfpci: Fix kctl->id initialization
     - [i386] ALSA: gus: Fix kctl->id initialization
     - ALSA: cmipci: Fix kctl->id initialization
     - [x86] ALSA: hda/realtek: Add quirk for Clevo NS50AU
     - ALSA: ice1712,ice1724: fix the kcontrol->id initialization
     - [x86] ALSA: hda/realtek: Add a quirk for HP Slim Desktop S01
     - [x86] ALSA: hda/realtek: Add Lenovo P3 Tower platform
     - [x86] ALSA: hda/realtek: Add quirks for Asus ROG 2024 laptops using
       CS35L41
     - [x86] drm/i915/gt: Use the correct error value when kernel_context() fails
     - drm/amd/pm: conditionally disable pcie lane switching for some
       sienna_cichlid SKUs
     - drm/amdgpu: fix xclk freq on CHIP_STONEY
     - drm/amdgpu: change reserved vram info print
     - drm/amd/pm: Fix power context allocation in SMU13
     - drm/amd/display: Reduce sdp bw after urgent to 90%
     - wifi: iwlwifi: mvm: Fix -Warray-bounds bug in iwl_mvm_wait_d3_notif()
     - can: j1939: j1939_sk_send_loop_abort(): improved error queue handling in
       J1939 Socket
     - can: j1939: change j1939_netdev_lock type to mutex
     - can: j1939: avoid possible use-after-free when j1939_can_rx_register fails
     - mptcp: only send RM_ADDR in nl_cmd_remove
     - mptcp: add address into userspace pm list
     - mptcp: update userspace pm infos
     - ceph: fix use-after-free bug for inodes when flushing capsnaps
     - [s390x] dasd: Use correct lock while counting channel queue length
     - Bluetooth: Fix use-after-free in hci_remove_ltk/hci_remove_irk
     - Bluetooth: fix debugfs registration
     - Bluetooth: hci_qca: fix debugfs registration
     - rbd: move RBD_OBJ_FLAG_COPYUP_ENABLED flag setting
     - rbd: get snapshot context after exclusive lock is ensured to be held
     - virtio_net: use control_buf for coalesce params
     - [arm64] pinctrl: meson-axg: add missing GPIOA_18 gpio group
     - usb: usbfs: Enforce page requirements for mmap
     - usb: usbfs: Use consistent mmap functions
     - [arm64] dts: imx8qm-mek: correct GPIOs for USDHC2 CD and WP signals
     - [arm*] ASoC: simple-card-utils: fix PCM constraint error check
     - blk-mq: fix blk_mq_hw_ctx active request accounting
     - [arm64] dts: imx8mn-beacon: Fix SPI CS pinmux
     - [arm*] i2c: mv64xxx: Fix reading invalid status value in atomic mode
     - soundwire: stream: Add missing clear of alloc_slave_rt
     - vhost: support PACKED when setting-getting vring_base
     - ksmbd: fix out-of-bound read in deassemble_neg_contexts()
     - ksmbd: fix out-of-bound read in parse_lease_state()
     - ksmbd: check the validation of pdu_size in ksmbd_conn_handler_loop
     - ext4: only check dquot_initialize_needed() when debugging
     - wifi: rtw89: correct PS calculation for SUPPORTS_DYNAMIC_PS
     - wifi: rtw88: correct PS calculation for SUPPORTS_DYNAMIC_PS
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.35
     - [amd64] x86/head/64: Switch to KERNEL_CS as soon as new GDT is installed
     - cgroup: bpf: use cgroup_lock()/cgroup_unlock() wrappers
     - cgroup: always put cset in cgroup_css_set_put_fork
     - cgroup: fix missing cpus_read_{lock,unlock}() in cgroup_transfer_tasks()
     - EDAC/qcom: Get rid of hardcoded register offsets
     - ksmbd: validate smb request protocol id
     - of: overlay: Fix missing of_node_put() in error case of
       init_overlay_changeset()
     - power: supply: bq27xxx: Use mod_delayed_work() instead of cancel() +
       schedule()
     - [armhf] dts: vexpress: add missing cache properties
     - power: supply: Ratelimit no data debug output
     - PCI/DPC: Quirk PIO log size for Intel Ice Lake Root Ports
     - [x86] platform/x86: asus-wmi: Ignore WMI events with codes 0x7B, 0xC0
     - regulator: Fix error checking for debugfs_create_dir
     - [arm64,armhf] irqchip/gic-v3: Disable pseudo NMIs on Mediatek devices w/
       firmware issues
     - [arm64,armhf] irqchip/meson-gpio: Mark OF related data as maybe unused
     - power: supply: Fix logic checking if system is running from battery
     - drm: panel-orientation-quirks: Change Air's quirk to support Air Plus
     - btrfs: scrub: try harder to mark RAID56 block groups read-only
     - btrfs: handle memory allocation failure in btrfs_csum_one_bio
     - ASoC: soc-pcm: test if a BE can be prepared
     - [mips*] unhide PATA_PLATFORM
     - [mips*] Restore Au1300 support
     - [mips*] Move initrd_start check after initrd address sanitisation.
     - ASoC: cs35l41: Fix default regmap values for some registers
     - ASoC: dwc: move DMA init to snd_soc_dai_driver probe()
     - xen/blkfront: Only check REQ_FUA for writes
     - drm:amd:amdgpu: Fix missing buffer object unlock in failure path
     - io_uring: unlock sqd->lock before sq thread release CPU
     - NVMe: Add MAXIO 1602 to bogus nid list.
     - [arm64,armhf] irqchip/gic: Correctly validate OF quirk descriptors
     - wifi: cfg80211: fix locking in regulatory disconnect
     - wifi: cfg80211: fix double lock bug in reg_wdev_chan_valid()
     - epoll: ep_autoremove_wake_function should use list_del_init_careful
     - ocfs2: fix use-after-free when unmounting read-only filesystem
     - ocfs2: check new file size on fallocate call
     - zswap: do not shrink if cgroup may not zswap
     - nilfs2: fix incomplete buffer cleanup in nilfs_btnode_abort_change_key()
     - nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
     - nilfs2: reject devices with insufficient block count
     - io_uring/net: save msghdr->msg_control for retries
     - kexec: support purgatories with .text.hot sections
     - [x86] purgatory: remove PGO flags
     - [powerpc*] purgatory: remove PGO flags
     - btrfs: do not ASSERT() on duplicated global roots
     - btrfs: fix iomap_begin length for nocow writes
     - btrfs: can_nocow_file_extent should pass down args->strict from callers
     - ALSA: usb-audio: Fix broken resume due to UAC3 power state
     - ALSA: usb-audio: Add quirk flag for HEM devices to enable native DSD
       playback
     - dm thin metadata: check fail_io before using data_sm
     - dm thin: fix issue_discard to pass GFP_NOIO to __blkdev_issue_discard
     - net: ethernet: stmicro: stmmac: fix possible memory leak in __stmmac_open
     - nouveau: fix client work fence deletion race
     - RDMA/uverbs: Restrict usage of privileged QKEYs
     - drm/amdgpu: vcn_4_0 set instance 0 init sched score to 1
     - net: usb: qmi_wwan: add support for Compal RXM-G1
     - drm/amd/display: edp do not add non-edid timings
     - drm/amd: Make sure image is written to trigger VBIOS image update flow
     - drm/amd: Tighten permissions on VBIOS flashing attributes
     - drm/amd/pm: workaround for compute workload type on some skus
     - drm/amdgpu: add missing radeon secondary PCI ID
     - ALSA: hda/realtek: Add a quirk for Compaq N14JP6
     - [x86] thunderbolt: Do not touch CL state configuration during discovery
     - [x86] thunderbolt: dma_test: Use correct value for absent rings when
       creating paths
     - [x86] thunderbolt: Mask ring interrupt on Intel hardware as well
     - USB: serial: option: add Quectel EM061KGL series
     - usb: typec: ucsi: Fix command cancellation
     - usb: typec: Fix fast_role_swap_current show function
     - usb: gadget: udc: core: Offload usb_udc_vbus_handler processing
     - usb: gadget: udc: core: Prevent soft_connect_store() race
     - [arm64] USB: dwc3: qcom: fix NULL-deref on suspend
     - [arm64,armhf] USB: dwc3: fix use-after-free on core driver unbind
     - [arm64,armhf] usb: dwc3: gadget: Reset num TRBs before giving back the
       request
     - RDMA/rxe: Fix packet length checks
     - RDMA/rxe: Fix ref count error in check_rkey()
     - spi: cadence-quadspi: Add missing check for dma_set_mask
     - [arm64] spi: fsl-dspi: avoid SCK glitches with continuous transfers
     - netfilter: nf_tables: integrate pipapo into commit protocol
     - netfilter: nfnetlink: skip error delivery on batch in case of ENOMEM
     - ice: Fix XDP memory leak when NIC is brought up and down
     - netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
       (CVE-2023-3390)
     - [arm64] net: enetc: correct the indexes of highest and 2nd highest TCs
     - ping6: Fix send to link-local addresses with VRF.
     - igb: Fix extts capture value format for 82580/i354/i350
     - net/sched: simplify tcf_pedit_act
     - net/sched: act_pedit: remove extra check for key type
     - net/sched: act_pedit: Parse L3 Header for L4 offset
     - net/sched: cls_u32: Fix reference counter leak leading to overflow
     - wifi: mac80211: fix link activation settings order
     - wifi: cfg80211: fix link del callback to call correct handler
     - wifi: mac80211: take lock before setting vif links
     - RDMA/rxe: Removed unused name from rxe_task struct
     - RDMA/rxe: Fix the use-before-initialization error of resp_pkts
     - iavf: remove mask from iavf_irq_enable_queues()
     - RDMA/mlx5: Initiate dropless RQ for RAW Ethernet functions
     - RDMA/mlx5: Create an indirect flow table for steering anchor
     - RDMA/cma: Always set static rate to 0 for RoCE
     - IB/uverbs: Fix to consider event queue closing also upon non-blocking mode
     - RDMA/mlx5: Fix affinity assignment
     - IB/isert: Fix dead lock in ib_isert
     - IB/isert: Fix possible list corruption in CMA handler
     - IB/isert: Fix incorrect release of isert connection
     - net: ethtool: correct MAX attribute value for stats
     - ipvlan: fix bound dev checking for IPv6 l3s mode
     - sctp: fix an error code in sctp_sf_eat_auth()
     - igc: Clean the TX buffer and TX descriptor ring
     - igc: Fix possible system crash when loading module
     - igb: fix nvm.ops.read() error handling
     - net: phylink: report correct max speed for QUSGMII
     - net: phylink: use a dedicated helper to parse usgmii control word
     - drm/nouveau: don't detect DSM for non-NVIDIA device
     - [arm64] drm/bridge: ti-sn65dsi86: Avoid possible buffer overflow
     - drm/nouveau/dp: check for NULL nv_connector->native_mode
     - drm/nouveau: add nv_encoder pointer check for NULL
     - sched: add new attr TCA_EXT_WARN_MSG to report tc extact message
     - net/sched: Refactor qdisc_graft() for ingress and clsact Qdiscs
     - net/sched: qdisc_destroy() old ingress and clsact Qdiscs before grafting
     - cifs: fix lease break oops in xfstest generic/098
     - ext4: drop the call to ext4_error() from ext4_get_group_info()
     - net/sched: cls_api: Fix lockup on flushing explicitly created chain
     - [arm64] net: dsa: felix: fix taprio guard band overflow at 10Mbps with
       jumbo frames
     - net: macsec: fix double free of percpu stats
     - sfc: fix XDP queues mode with legacy IRQ
     - dm: don't lock fs when the map is NULL during suspend or resume
     - net: tipc: resize nlattr array to correct size
     - afs: Fix vlserver probe RTT handling
     - rcu/kvfree: Avoid freeing new kfree_rcu() memory after old grace period
     - drm/amdgpu: Don't set struct drm_driver.output_poll_changed
     - net/sched: act_api: move TCA_EXT_WARN_MSG to the correct hierarchy
     - Revert "net/sched: act_api: move TCA_EXT_WARN_MSG to the correct
       hierarchy"
     - net/sched: act_api: add specific EXT_WARN_MSG for tc action
     - neighbour: delete neigh_lookup_nodev as not used
     - scsi: target: core: Fix error path in target_setup_session()
     - [mips*] Move '-Wa,-msoft-float' check from as-option to cc-option
     - [mips*] Prefer cc-option for additions to cflags
     - kbuild: Update assembler calls to use proper flags and language target
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.36
     - drm/amd/display: Use dc_update_planes_and_stream
     - drm/amd/display: Add wrapper to call planes and stream update
     - drm/amd/display: fix the system hang while disable PSR
     - [arm64] tty: serial: fsl_lpuart: make rx_watermark configurable for
       different platforms
     - [arm64] tty: serial: fsl_lpuart: reduce RX watermark to 0 on LS1028A
     - ata: libata-scsi: Avoid deadlock on rescan after device resume
     - mm: Fix copy_from_user_nofault(). (Closes: #1033398)
     - tpm, tpm_tis: Claim locality in interrupt handler
     - tpm_crb: Add support for CRB devices based on Pluton
     - ksmbd: validate command payload size
     - ksmbd: fix out-of-bound read in smb2_write
     - ksmbd: validate session id and tree id in the compound request
     - tick/common: Align tick period during sched_timer setup (Closes: #1038754)
     - writeback: fix dereferencing NULL mapping->host on writeback_page_template
     - nilfs2: fix buffer corruption due to concurrent device reads
     - [x86] ACPI: sleep: Avoid breaking S3 wakeup due to might_sleep()
     - KVM: Avoid illegal stage2 mapping on invalid memory slot
     - Drivers: hv: vmbus: Call hv_synic_free() if hv_synic_alloc() fails
     - Drivers: hv: vmbus: Fix vmbus_wait_for_unload() to scan present CPUs
     - PCI: hv: Fix a race condition bug in hv_pci_query_relations()
     - Revert "PCI: hv: Fix a timing issue which causes kdump to fail
       occasionally"
     - PCI: hv: Remove the useless hv_pcichild_state from struct hv_pci_dev
     - PCI: hv: Fix a race condition in hv_irq_unmask() that can cause panic
     - PCI: hv: Add a per-bus mutex state_lock
     - io_uring/net: clear msg_controllen on partial sendmsg retry
     - io_uring/net: disable partial retries for recvmsg with cmsg
     - mptcp: handle correctly disconnect() failures
     - mptcp: fix possible divide by zero in recvmsg()
     - mptcp: fix possible list corruption on passive MPJ
     - mptcp: consolidate fallback and non fallback state machine
     - cgroup: Do not corrupt task iteration when rebinding subsystem
     - cgroup,freezer: hold cpu_hotplug_lock before freezer_mutex in
       freezer_css_{online,offline}()
     - [arm64] mmc: sdhci-msm: Disable broken 64-bit DMA on MSM8916
     - [arm64] mmc: meson-gx: remove redundant mmc_request_done() call from irq
       context
     - [arm64,armhf] mmc: mmci: stm32: fix max busy timeout calculation
     - [arm64,armhf] mmc: bcm2835: fix deferred probing
     - [arm64,armhf] mmc: sunxi: fix deferred probing
     - bpf: ensure main program has an extable
     - wifi: iwlwifi: pcie: Handle SO-F device for PCI id 0x7AF0
     - io_uring/poll: serialize poll linked timer start with poll removal
     - nilfs2: prevent general protection fault in nilfs_clear_dirty_page()
     - [x86] mm: Avoid using set_pgd() outside of real PGD pages
     - memfd: check for non-NULL file_seals in memfd_create() syscall
     - [arm64] mmc: meson-gx: fix deferred probing
     - ieee802154: hwsim: Fix possible memory leaks
     - xfrm: Treat already-verified secpath entries as optional
     - xfrm: interface: rename xfrm_interface.c to xfrm_interface_core.c
     - xfrm: Ensure policies always checked on XFRM-I input path
     - [arm64] KVM: arm64: PMU: Restore the host's PMUSERENR_EL0
     - bpf: track immediate values written to stack by BPF_ST instruction
     - bpf: Fix verifier id tracking of scalars on spill
     - xfrm: fix inbound ipv4/udp/esp packets to UDPv6 dualstack sockets
     - bpf: Fix a bpf_jit_dump issue for x86_64 with sysctl bpf_jit_enable.
     - xfrm: Linearize the skb after offloading if needed.
     - net/mlx5: DR, Fix wrong action data allocation in decap action
     - sfc: use budget for TX completions
     - [armel,armhf] mmc: mvsdio: fix deferred probing
     - [armhf] mmc: omap: fix deferred probing
     - [armhf] mmc: omap_hsmmc: fix deferred probing
     - mmc: sdhci-acpi: fix deferred probing
     - ipvs: align inner_mac_header for encapsulation
     - be2net: Extend xmit workaround to BE3 chip
     - netfilter: nf_tables: fix chain binding transaction logic
     - netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound
       set/chain
     - netfilter: nf_tables: drop map element references from preparation phase
     - netfilter: nft_set_pipapo: .walk does not deal with generations
     - netfilter: nf_tables: disallow element updates of bound anonymous sets
     - netfilter: nf_tables: reject unbound anonymous set before commit phase
     - netfilter: nf_tables: reject unbound chain set before commit phase
     - netfilter: nf_tables: disallow updates of anonymous sets
     - netfilter: nfnetlink_osf: fix module autoload
     - Revert "net: phy: dp83867: perform soft reset and retain established link"
     - bpf/btf: Accept function names that contain dots
     - bpf: Force kprobe multi expected_attach_type for kprobe_multi link
     - io_uring/net: use the correct msghdr union member in io_sendmsg_copy_hdr
     - sch_netem: acquire qdisc lock in netem_change()
     - revert "net: align SO_RCVMARK required privileges with SO_MARK"
     - [arm64] dts: rockchip: fix nEXTRST on SOQuartz
     - gpiolib: Fix GPIO chip IRQ initialization restriction
     - gpiolib: Fix irq_domain resource tracking for
       gpiochip_irqchip_add_domain()
     - scsi: target: iscsi: Prevent login threads from racing between each other
     - HID: wacom: Add error check to wacom_parse_and_register()
     - smb3: missing null check in SMB2_change_notify
     - media: cec: core: disable adapter in cec_devnode_unregister
     - media: cec: core: don't set last_initiator if tx in progress
     - nfcsim.c: Fix error checking for debugfs_create_dir
     - btrfs: fix an uninitialized variable warning in btrfs_log_inode
     - [i386] usb: gadget: udc: fix NULL dereference in remove()
     - nvme: double KA polling frequency to avoid KATO with TBKAS on
     - nvme: check IO start time when deciding to defer KA
     - nvme: improve handling of long keep alives
     - [x86] Input: soc_button_array - add invalid acpi_index DMI quirk handling
     - [s390x] cio: unregister device when the only path is gone
     - [arm*] ASoC: simple-card: Add missing of_node_put() in case of error
     - soundwire: dmi-quirks: add new mapping for HP Spectre x360
     - soundwire: qcom: add proper error paths in qcom_swrm_startup()
     - [x86] ASoC: nau8824: Add quirk to active-high jack-detect
     - [x86] ASoC: amd: yc: Add Thinkpad Neo14 to quirks list for acp6x
     - gfs2: Don't get stuck writing page onto itself under direct I/O
     - [arm64] ASoC: fsl_sai: Enable BCI bit if SAI works on synchronous mode
       with BYP asserted
     - ALSA: hda/realtek: Add "Intel Reference board" and "NUC 13" SSID in the
       ALC256
     - i2c: mchp-pci1xxxx: Avoid cast to incompatible function type
     - null_blk: Fix: memory release when memory_backed=1
     - drm/radeon: fix race condition UAF in radeon_gem_set_domain_ioctl
     - vhost_net: revert upend_idx only on retriable error
     - [arm64] KVM: arm64: Restore GICv2-on-GICv3 functionality
     - [x86] apic: Fix kernel panic when booting with intremap=off and
       x2apic_phys
     - [arm64] i2c: imx-lpi2c: fix type char overflow issue when calculating the
       clock cycle
     - smb: move client and server files to common directory fs/smb
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.37
     - mm/mmap: Fix error path in do_vmi_align_munmap()
     - mm/mmap: Fix error return in do_vmi_align_munmap()
     - mptcp: ensure listener is unhashed before updating the sk status
     - mm, hwpoison: try to recover from copy-on write faults
     - mm, hwpoison: when copy-on-write hits poison, take page offline
     - [x86] microcode/AMD: Load late on both threads too
     - [x86] smp: Make stop_other_cpus() more robust
     - [x86] smp: Dont access non-existing CPUID leaf
     - [x86] smp: Remove pointless wmb()s from native_stop_other_cpus()
     - [x86] smp: Use dedicated cache-line for mwait_play_dead()
     - [x86] smp: Cure kexec() vs. mwait_play_dead() breakage
     - can: isotp: isotp_sendmsg(): fix return error fix on TX path
     - maple_tree: fix potential out-of-bounds access in mas_wr_end_piv()
     - mm: introduce new 'lock_mm_and_find_vma()' page fault helper
     - mm: make the page fault mmap locking killable
     - [arm64] mm: Convert to using lock_mm_and_find_vma()
     - [powerpc*] mm: Convert to using lock_mm_and_find_vma()
     - [mips*] mm: Convert to using lock_mm_and_find_vma()
     - [armhf] mm: Convert to using lock_mm_and_find_vma()
     - mm/fault: convert remaining simple cases to lock_mm_and_find_vma()
     - [powerpc*] mm: convert coprocessor fault to lock_mm_and_find_vma()
     - mm: make find_extend_vma() fail if write lock not held
     - execve: expand new process stack manually ahead of time
     - mm: always expand the stack with the mmap write lock held
     - fbdev: fix potential OOB read in fast_imageblit()
     - HID: hidraw: fix data race on device refcount
     - HID: wacom: Use ktime_t rather than int when dealing with timestamps
     - HID: logitech-hidpp: add HIDPP_QUIRK_DELAYED_INIT for the T651.
       (Closes: #1038271)
 .
   [ Salvatore Bonaccorso ]
   * d/salsa-ci.yml: Update for bookworm: Set RELEASE to bookworm
   * d/rules.real: Fix typo in setup_image target.
   * [amd64,arm64] drivers/virtio: Enable VIRTIO_MEM as module (Closes: #1038665)
   * Bump ABI to 10
   * [rt] Update to 6.1.33-rt11
   * Revert "drm/amd/display: edp do not add non-edid timings"
 .
   [ Cyril Brulebois ]
   * udeb: Add r8188eu to nic-wireless-modules (Closes: #1035824)
 .
   [ Ben Hutchings ]
   * Add pkg.linux.mintools profile for building minimal userland tools
   * d/b/test-patches: Build linux-{kbuild,bootwrapper} packages
     (Closes: #871216, #1035359)

linux-signed-amd64 (6.1.38+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.38-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.38
     - drm/amd/display: Remove optimization for VRR updates
     - drm/amd/display: Do not update DRR while BW optimizations pending
     - PCI/ACPI: Validate acpi_pci_set_power_state() parameter
     - PCI/ACPI: Call _REG when transitioning D-states
     - execve: always mark stack as growing down during early stack setup
     - perf symbols: Symbol lookup with kcore can fail if multiple segments match
       stext
     - scripts/tags.sh: Resolve gtags empty index generation
     - drm/amdgpu: Validate VM ioctl flags.
     - drm/amd/display: Ensure vmin and vmax adjust for DCE
 .
   [ Salvatore Bonaccorso ]
   * drm: use mgr->dev in drm_dbg_kms in drm_dp_add_payload_part2
   * mm/mmap: Fix VM_LOCKED check in do_vmi_align_munmap()
   * netfilter: nf_tables: do not ignore genmask when looking up chain by id
     (CVE-2023-31248)
   * netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
     (CVE-2023-35001)
linux-signed-amd64 (6.1.37+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.37-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.28
     - [x86] ASOC: Intel: sof_sdw: add quirk for Intel 'Rooks County' NUC M15
     - [x86] ASoC: Intel: soc-acpi: add table for Intel 'Rooks County' NUC M15
     - ASoC: soc-pcm: fix hw->formats cleared by soc_pcm_hw_init() for dpcm
     - [x86] hyperv: Block root partition functionality in a Confidential VM
     - [x86] ASoC: amd: yc: Add DMI entries to support Victus by HP Laptop
       16-e1xxx (8A22)
     - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for the Acer Iconia One 7
       B1-750
     - [x86] ASoC: da7213.c: add missing pm_runtime_disable()
     - scsi: mpi3mr: Handle soft reset in progress fault code (0xF002)
     - net: sfp: add quirk enabling 2500Base-x for HG MXPD-483II
     - [x86] platform/x86: thinkpad_acpi: Add missing T14s Gen1 type to s2idle
       quirk list
     - wifi: ath11k: reduce the MHI timeout to 20s
     - tracing: Error if a trace event has an array for a __field()
     - [x86] cpu: Add model number for Intel Arrow Lake processor
     - wireguard: timers: cast enum limits members to int in prints
     - wifi: mt76: mt7921e: Set memory space enable in PCI_COMMAND if unset
     - [arm64] Always load shadow stack pointer directly from the task struct
     - [arm64] Stash shadow stack pointer in the task struct on interrupt
     - PCI: pciehp: Fix AB-BA deadlock between reset_lock and device_lock
     - [arm64] PCI: qcom: Fix the incorrect register usage in v2.7.0 config
     - [arm64] phy: qcom-qmp-pcie: sc8180x PCIe PHY has 2 lanes
     - [arm64,armhf] usb: dwc3: gadget: Stall and restart EP0 if host is
       unresponsive
     - [arm64,armhf] USB: dwc3: fix runtime pm imbalance on probe errors
     - [arm64,armhf] USB: dwc3: fix runtime pm imbalance on unbind
     - [x86] hwmon: (k10temp) Check range scale when CUR_TEMP register is
       read-write
     - hwmon: (adt7475) Use device_property APIs when configuring polarity
     - tpm: Add !tpm_amd_is_rng_defective() to the hwrng_unregister() call site
     - posix-cpu-timers: Implement the missing timer_wait_running callback
     - blk-stat: fix QUEUE_FLAG_STATS clear
     - blk-crypto: don't use struct request_queue for public interfaces
     - blk-crypto: add a blk_crypto_config_supported_natively helper
     - blk-crypto: move internal only declarations to blk-crypto-internal.h
     - blk-crypto: Add a missing include directive
     - blk-mq: release crypto keyslot before reporting I/O complete
     - blk-crypto: make blk_crypto_evict_key() return void
     - blk-crypto: make blk_crypto_evict_key() more robust
     - tty: Prevent writing chars during tcsetattr TCSADRAIN/FLUSH
     - xhci: fix debugfs register accesses while suspended
     - serial: fix TIOCSRS485 locking
     - serial: 8250: Fix serial8250_tx_empty() race with DMA Tx
     - tick/nohz: Fix cpu_is_hotpluggable() by checking with nohz subsystem
     - fs: fix sysctls.c built
     - [mips*] fw: Allow firmware to pass a empty env
     - ipmi:ssif: Add send_retries increment
     - ipmi: fix SSIF not responding under certain cond.
     - wifi: mt76: add missing locking to protect against concurrent rx/status
       calls
     - [arm64,armhf] pwm: meson: Fix axg ao mux parents
     - [arm64,armhf] pwm: meson: Fix g12a ao clk81 name
     - soundwire: qcom: correct setting ignore bit on v1.5.1
     - ring-buffer: Ensure proper resetting of atomic variables in
       ring_buffer_reset_online_cpus
     - ring-buffer: Sync IRQ works before buffer destruction
     - crypto: api - Demote BUG_ON() in crypto_unregister_alg() to a WARN_ON()
     - [arm64] crypto: safexcel - Cleanup ring IRQ workqueues on load failure
     - [x86] crypto: ccp - Don't initialize CCP for PSP 0x1649
     - rcu: Avoid stack overflow due to __rcu_irq_enter_check_tick() being
       kprobe-ed
     - reiserfs: Add security prefix to xattr name in reiserfs_security_write()
     - [x86] KVM: nVMX: Emulate NOPs in L2, and PAUSE if it's not intercepted
     - [arm64] KVM: arm64: Avoid vcpu->mutex v. kvm->lock inversion in CPU_ON
     - [arm64] KVM: arm64: Avoid lock inversion when setting the VM register
       width
     - [arm64] KVM: arm64: Use config_lock to protect data ordered against
       KVM_RUN
     - [arm64] KVM: arm64: Use config_lock to protect vgic state
     - [arm64] KVM: arm64: vgic: Don't acquire its_lock before config_lock
     - relayfs: fix out-of-bounds access in relay_file_read (CVE-2023-3268)
     - drm/amd/display: Remove stutter only configurations
     - drm/amd/display: limit timing for single dimm memory
     - drm/amd/display: fix PSR-SU/DSC interoperability support
     - drm/amd/display: fix a divided-by-zero error
     - ksmbd: fix racy issue under cocurrent smb2 tree disconnect
       (CVE-2023-32254)
     - ksmbd: call rcu_barrier() in ksmbd_server_exit()
     - ksmbd: fix NULL pointer dereference in smb2_get_info_filesystem()
     - ksmbd: fix memleak in session setup
     - ksmbd: not allow guest user on multichannel
     - ksmbd: fix deadlock in ksmbd_find_crypto_ctx()
     - [x86] ACPI: video: Remove acpi_backlight=video quirk for Lenovo ThinkPad
       W530
     - [arm64,armhf] i2c: omap: Fix standard mode false ACK readings
     - tracing: Fix permissions for the buffer_percent file
     - swsmu/amdgpu_smu: Fix the wrong if-condition
     - drm/amd/pm: re-enable the gfx imu when smu resume
     - [amd64] iommu/amd: Fix "Guest Virtual APIC Table Root Pointer"
       configuration in IRTE
     - Revert "ubifs: dirty_cow_znode: Fix memleak in error handling path"
     - ubifs: Fix memleak when insert_old_idx() failed
     - ubi: Fix return value overwrite issue in try_write_vid_and_data()
     - ubifs: Free memory for tmpfile name
     - ubifs: Fix memory leak in do_rename
     - ceph: fix potential use-after-free bug when trimming caps
     - xfs: don't consider future format versions valid
     - cxl/hdm: Fail upon detecting 0-sized decoders
     - bus: mhi: host: Remove duplicate ee check for syserr
     - bus: mhi: host: Use mhi_tryset_pm_state() for setting fw error state
     - bus: mhi: host: Range check CHDBOFF and ERDBOFF
     - rcu: Fix missing TICK_DEP_MASK_RCU_EXP dependency check
     - tpm, tpm_tis: Do not skip reset of original interrupt vector
     - tpm, tpm_tis: Claim locality before writing TPM_INT_ENABLE register
     - tpm, tpm_tis: Disable interrupts if tpm_tis_probe_irq() failed
     - tpm, tpm_tis: Claim locality before writing interrupt registers
     - tpm, tpm: Implement usage counter for locality
     - tpm, tpm_tis: Claim locality when interrupts are reenabled on resume
     - erofs: stop parsing non-compact HEAD index if clusterofs is invalid
     - erofs: initialize packed inode after root inode is assigned
     - erofs: fix potential overflow calculating xattr_isize
     - [arm64,armhf] drm/rockchip: Drop unbalanced obj unref
     - [x86] drm/i915/dg2: Drop one PCI ID
     - drm/vgem: add missing mutex_destroy
     - drm/probe-helper: Cancel previous job before starting new one
     - drm/amdgpu: register a vga_switcheroo client for MacBooks with apple-gmux
     - [arm64] dts: ti: k3-am62-main: Fix GPIO numbers in DT
     - [arm64] drm/msm/disp/dpu: check for crtc enable rather than crtc active to
       release shared resources
     - [amd64] EDAC/skx: Fix overflows on the DRAM row address mapping arrays
     - regulator: core: Shorten off-on-delay-us for always-on/boot-on by time
       since booted
     - [arm64] dts: ti: k3-am62a7-sk: Fix DDR size to full 4GB
     - [arm64] dts: qcom: msm8998: Fix stm-stimulus-base reg name
     - [arm64] dts: qcom: sdm845: correct dynamic power coefficients
     - [x86] MCE/AMD: Use an u64 for bank_map
     - [arm64] firmware: qcom_scm: Clear download bit during reboot
     - [arm64] drm/bridge: adv7533: Fix adv7533_mode_valid for adv7533 and
       adv7535
     - [arm64] drm/msm/adreno: drop bogus pm_runtime_set_active()
     - [arm64] drm: msm: adreno: Disable preemption on Adreno 510
     - [amd64] virt/coco/sev-guest: Double-buffer messages
     - [arm64] dts: qcom: sm8350-microsoft-surface: fix USB dual-role mode
       property
     - [x86] ACPI: processor: Fix evaluating _PDC method when running as Xen dom0
     - [arm64] mmc: sdhci-of-esdhc: fix quirk to ignore command inhibit for data
     - [armhf] dts: gta04: fix excess dma channel usage
     - [arm64] firmware: arm_scmi: Fix xfers allocation on Rx channel
     - [arm64] perf/arm-cmn: Move overlapping wp_combine field
     - [armhf] dts: stm32: fix spi1 pin assignment on stm32mp15
     - [arm64] cpufreq: qcom-cpufreq-hw: Revert adding cpufreq qos
     - [arm64,armhf] drm/lima/lima_drv: Add missing unwind goto in
       lima_pdev_probe()
     - [arm64,armhf] gpu: host1x: Fix potential double free if IOMMU is disabled
     - [arm64,armhf] gpu: host1x: Fix memory leak of device names
     - drm/ttm: optimize pool allocations a bit v2
     - drm/ttm/pool: Fix ttm_pool_alloc error path
     - regulator: core: Consistently set mutex_owner when using
       ww_mutex_lock_slow()
     - regulator: core: Avoid lockdep reports when resolving supplies
     - [x86] apic: Fix atomic update of offset in reserve_eilvt_offset()
     - [arm64] dts: qcom: msm8994-angler: Fix cont_splash_mem mapping
     - [arm64] dts: qcom: msm8994-angler: removed clash with smem_region
     - [arm64,armhf] media: cedrus: fix use after free bug in cedrus_remove due
       to race condition (CVE-2023-35826)
     - [arm64] media: rkvdec: fix use after free bug in rkvdec_remove
       (CVE-2023-35829)
     - [amd64] platform/x86/amd: pmc: Don't try to read SMU version on Picasso
     - [amd64] platform/x86/amd: pmc: Hide SMU version and program attributes for
       Picasso
     - [amd64] platform/x86/amd: pmc: Don't dump data after resume from s0i3 on
       picasso
     - [amd64] platform/x86/amd: pmc: Move idlemask check into
       `amd_pmc_idlemask_read`
     - [amd64] platform/x86/amd: pmc: Utilize SMN index 0 for driver probe
     - [amd64] platform/x86/amd: pmc: Move out of BIOS SMN pair for STB init
     - media: dm1105: Fix use after free bug in dm1105_remove due to race
       condition (CVE-2023-35824)
     - media: saa7134: fix use after free bug in saa7134_finidev due to race
       condition (CVE-2023-35823)
     - media: v4l: async: Return async sub-devices to subnotifier list
     - drm/amd/display: Fix potential null dereference
     - [arm64,armhf] media: rc: gpio-ir-recv: Fix support for wake-up
     - [arm64] media: venus: dec: Fix handling of the start cmd
     - [arm64] media: venus: dec: Fix capture formats enumeration order
     - [armhf] regulator: stm32-pwr: fix of_iomap leak
     - [x86] ioapic: Don't return 0 from arch_dynirq_lower_bound()
     - [arm64] kgdb: Set PSTATE.SS to 1 to re-enable single-step
     - [arm64] perf/arm-cmn: Fix port detection for CMN-700
     - [x86] drm/i915: Make intel_get_crtc_new_encoder() less oopsy
     - tick/common: Align tick period with the HZ tick.
     - ACPI: bus: Ensure that notify handlers are not running after removal
     - cpufreq: use correct unit when verify cur freq
     - [arm64] rpmsg: glink: Propagate TX failures in intentless mode as well
     - platform/chrome: cros_typec_switch: Add missing fwnode_handle_put()
     - wifi: ath6kl: minor fix for allocation size
     - wifi: ath9k: hif_usb: fix memory leak of remain_skbs
     - wifi: ath11k: Use platform_get_irq() to get the interrupt
     - wifi: ath5k: Use platform_get_irq() to get the interrupt
     - wifi: ath5k: fix an off by one check in ath5k_eeprom_read_freq_list()
     - wifi: ath11k: fix SAC bug on peer addition with sta band migration
     - wifi: brcmfmac: support CQM RSSI notification with older firmware
     - wifi: ath6kl: reduce WARN to dev_dbg() in callback
     - tools: bpftool: Remove invalid \' json escape
     - wifi: rtw88: mac: Return the original error from rtw_pwr_seq_parser()
     - wifi: rtw88: mac: Return the original error from rtw_mac_power_switch()
     - bpf: take into account liveness when propagating precision
     - bpf: fix precision propagation verbose logging
     - [x86] crypto: qat - fix concurrency issue when device state changes
     - scm: fix MSG_CTRUNC setting condition for SO_PASSSEC
     - wifi: ath11k: fix deinitialization of firmware resources
     - bpf: Remove misleading spec_v1 check on var-offset stack read
     - net: pcs: xpcs: remove double-read of link state when using AN
     - vlan: partially enable SIOCSHWTSTAMP in container
     - net/packet: annotate accesses to po->xmit
     - net/packet: convert po->origdev to an atomic flag
     - net/packet: convert po->auxdata to an atomic flag
     - libbpf: Fix ld_imm64 copy logic for ksym in light skeleton.
     - netfilter: keep conntrack reference until IPsecv6 policy checks are done
     - bpf: Fix __reg_bound_offset 64->32 var_off subreg propagation
     - scsi: target: core: Change the way target_xcopy_do_work() sets restiction
       on max I/O
     - scsi: target: Move sess cmd counter to new struct
     - scsi: target: Move cmd counter allocation
     - scsi: target: Pass in cmd counter to use during cmd setup
     - scsi: target: iscsit: isert: Alloc per conn cmd counter
     - scsi: target: iscsit: Stop/wait on cmds during conn close
     - scsi: target: Fix multiple LUN_RESET handling
     - scsi: target: iscsit: Fix TAS handling during conn cleanup
     - scsi: megaraid: Fix mega_cmd_done() CMDID_INT_CMDS
     - net: sunhme: Fix uninitialized return code
     - f2fs: handle dqget error in f2fs_transfer_project_quota()
     - f2fs: fix uninitialized skipped_gc_rwsem
     - f2fs: apply zone capacity to all zone type
     - f2fs: compress: fix to call f2fs_wait_on_page_writeback() in
       f2fs_write_raw_pages()
     - f2fs: fix scheduling while atomic in decompression path
     - [arm64,armhf] crypto: caam - Clear some memory in instantiate_rng
     - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_rfreg()
     - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_reg()
     - scsi: libsas: Add sas_ata_device_link_abort()
     - [arm64] scsi: hisi_sas: Handle NCQ error when IPTT is valid
     - wifi: rt2x00: Fix memory leak when handling surveys
     - f2fs: fix iostat lock protection
     - net: qrtr: correct types of trace event parameters
     - bpftool: Fix bug for long instructions in program CFG dumps
     - crypto: drbg - Only fail when jent is unavailable in FIPS mode
     - xsk: Fix unaligned descriptor validation
     - f2fs: fix to avoid use-after-free for cached IPU bio
     - wifi: iwlwifi: fix duplicate entry in iwl_dev_info_table
     - bpf/btf: Fix is_int_ptr()
     - scsi: lpfc: Fix ioremap issues in lpfc_sli4_pci_mem_setup()
     - [arm64,armhf] net: ethernet: stmmac: dwmac-rk: rework optional clock
       handling
     - [arm64,armhf] net: ethernet: stmmac: dwmac-rk: fix optional phy regulator
       handling
     - wifi: ath11k: fix writing to unintended memory region
     - bpf, sockmap: fix deadlocks in the sockhash and sockmap
     - nvmet: fix error handling in nvmet_execute_identify_cns_cs_ns()
     - nvmet: fix Identify Namespace handling
     - nvmet: fix Identify Controller handling
     - nvmet: fix Identify Active Namespace ID list handling
     - nvmet: fix I/O Command Set specific Identify Controller
     - nvme: fix async event trace event
     - blk-mq: don't plug for head insertions in blk_execute_rq_nowait
     - wifi: iwlwifi: debug: fix crash in __iwl_err()
     - wifi: iwlwifi: trans: don't trigger d3 interrupt twice
     - wifi: iwlwifi: mvm: don't set CHECKSUM_COMPLETE for unsupported protocols
     - bpf, sockmap: Revert buggy deadlock fix in the sockhash and sockmap
     - f2fs: fix to check return value of f2fs_do_truncate_blocks()
     - f2fs: fix to check return value of inc_valid_block_count()
     - md/raid10: fix task hung in raid10d
     - md/raid10: fix leak of 'r10bio->remaining' for recovery
     - md/raid10: fix memleak for 'conf->bio_split'
     - md/raid10: fix memleak of md thread
     - md/raid10: don't call bio_start_io_acct twice for bio which experienced
       read error
     - wifi: iwlwifi: mvm: don't drop unencrypted MCAST frames
     - wifi: iwlwifi: yoyo: skip dump correctly on hw error
     - wifi: iwlwifi: yoyo: Fix possible division by zero
     - wifi: iwlwifi: mvm: initialize seq variable
     - wifi: iwlwifi: fw: move memset before early return
     - jdb2: Don't refuse invalidation of already invalidated buffers
     - io_uring/rsrc: use nospec'ed indexes
     - wifi: iwlwifi: make the loop for card preparation effective
     - wifi: mt76: handle failure of vzalloc in mt7615_coredump_work
     - wifi: mt76: add flexible polling wait-interval support
     - wifi: mt76: mt7921e: fix probe timeout after reboot
     - wifi: mt76: fix 6GHz high channel not be scanned
     - mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data
     - wifi: mt76: mt7921: fix missing unwind goto in `mt7921u_probe`
     - wifi: mt76: mt7921e: improve reliability of dma reset
     - wifi: mt76: mt7921e: stop chip reset worker in unregister hook
     - wifi: mt76: connac: fix txd multicast rate setting
     - wifi: iwlwifi: mvm: check firmware response size
     - netfilter: conntrack: restore IPS_CONFIRMED out of
       nf_conntrack_hash_check_insert()
     - netfilter: conntrack: fix wrong ct->timeout value
     - wifi: iwlwifi: fw: fix memory leak in debugfs
     - ixgbe: Allow flow hash to be set via ethtool
     - ixgbe: Enable setting RSS table to default values
     - net/mlx5e: Don't clone flow post action attributes second time
     - net/mlx5: E-switch, Create per vport table based on devlink encap mode
     - net/mlx5: E-switch, Don't destroy indirect table in split rule
     - net/mlx5e: Fix error flow in representor failing to add vport rx rule
     - net/mlx5: Suspend auxiliary devices only in case of PCI device suspend
     - net/mlx5: Use recovery timeout on sync reset flow
     - net/mlx5e: Nullify table pointer when failing to create
     - net: stmmac:fix system hang when setting up tag_8021q VLAN for DSA ports
     - bpf: Fix race between btf_put and btf_idr walk.
     - bpf: Don't EFAULT for getsockopt with optval=NULL
     - netfilter: nf_tables: don't write table validation state without mutex
     - net/sched: sch_fq: fix integer overflow of "credit"
     - ipv4: Fix potential uninit variable access bug in __ip_make_skb()
     - Revert "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to
       unfinished work"
     - netlink: Use copy_to_user() for optval in netlink_getsockopt().
     - [x86] net: amd: Fix link leak when verifying config failed
     - tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp.
     - [x86] ASoC: cs35l41: Only disable internal boost
     - drivers: staging: rtl8723bs: Fix locking in _rtw_join_timeout_handler()
     - drivers: staging: rtl8723bs: Fix locking in rtw_scan_timeout_handler()
     - [arm64] usb: host: xhci-rcar: remove leftover quirk handling
     - [arm64,armhf] usb: dwc3: gadget: Change condition for processing suspend
       event
     - [armhf] serial: stm32: Re-assert RTS/DE GPIO in RS485 mode only if more
       data are transmitted
     - iio: light: max44009: add missing OF device matching
     - [arm64,armhf] spi: imx: Don't skip cleanup in remove's error path
     - [x86] ASoC: soc-compress: Inherit atomicity from DAI link for Compress FE
     - [arm64,armhf] PCI: imx6: Install the fault handler only on compatible
       match
     - ASoC: es8316: Handle optional IRQ assignment
     - [arm64] spi: qup: Don't skip cleanup in remove's error path
     - [x86] vmci_host: fix a race condition in vmci_host_poll() causing GPF
     - of: Fix modalias string generation
     - [amd64] HID: amd_sfh: Correct the structure fields
     - [amd64] HID: amd_sfh: Correct the sensor enable and disable command
     - [amd64] HID: amd_sfh: Fix illuminance value
     - [amd64] HID: amd_sfh: Add support for shutdown operation
     - [amd64] HID: amd_sfh: Correct the stop all command
     - [amd64] HID: amd_sfh: Increase sensor command timeout for SFH1.1
     - [amd64] HID: amd_sfh: Handle "no sensors" enabled for SFH1.1
     - cacheinfo: Check sib_leaf in cache_leaves_are_shared()
     - [arm64] coresight: etm_pmu: Set the module field
     - PCI/PM: Extend D3hot delay for NVIDIA HDA controllers
     - spi: cadence-quadspi: fix suspend-resume implementations
     - [arm64,armhf] usb: chipidea: fix missing goto in `ci_hdrc_probe`
     - [arm64] tty: serial: fsl_lpuart: adjust buffer length to the intended size
     - serial: 8250: Add missing wakeup event reporting
     - spi: cadence-quadspi: use macro DEFINE_SIMPLE_DEV_PM_OPS
     - [x86] staging: rtl8192e: Fix W_DISABLE# does not work after stop/start
     - [arm64] spmi: Add a check for remove callback when removing a SPMI driver
     - virtio_ring: don't update event idx on get_buf
     - [powerpc*] rtas: use memmove for potentially overlapping buffer copy
     - sched/fair: Fix inaccurate tally of ttwu_move_affine
     - perf/core: Fix hardlockup failure caused by perf throttle
     - Revert "objtool: Support addition to set CFA base"
     - sched/rt: Fix bad task migration for rt tasks
     - tracing/user_events: Ensure write index cannot be negative
     - [amd64] IB/hifi1: add a null check of kzalloc_node in
       hfi1_ipoib_txreq_init
     - [amd64] RDMA/rdmavt: Delete unnecessary NULL check
     - workqueue: Fix hung time report of worker pools
     - [armhf] rtc: omap: include header for omap_rtc_power_off_program prototype
     - RDMA/mlx4: Prevent shift wrapping in set_user_sq_size()
     - [arm64,armhf] rtc: meson-vrtc: Use ktime_get_real_ts64() to get the
       current time
     - clk: add missing of_node_put() in "assigned-clocks" property parsing
     - [arm64] power: supply: rk817: Fix low SOC bugs
     - RDMA/cm: Trace icm_send_rej event before the cm state is reset
     - RDMA/srpt: Add a check for valid 'mad_agent' pointer
     - [amd64] IB/hfi1: Fix SDMA mmu_rb_node not being evicted in LRU order
     - [amd64] IB/hfi1: Fix bugs with non-PAGE_SIZE-end multi-iovec user SDMA
       requests
     - [arm64,armhf] clk: imx: fracn-gppll: fix the rate table
     - [arm64,armhf] clk: imx: fracn-gppll: disable hardware select control
     - NFSv4.1: Always send a RECLAIM_COMPLETE after establishing lease
     - [amd64] iommu/amd: Set page size bitmap during V2 domain allocation
     - [arm64] Input: raspberrypi-ts - fix refcount leak in rpi_ts_probe
     - swiotlb: relocate PageHighMem test away from rmem_swiotlb_setup
     - swiotlb: fix debugfs reporting of reserved memory pools
     - RDMA/mlx5: Check pcie_relaxed_ordering_enabled() in UMR
     - RDMA/mlx5: Fix flow counter query via DEVX
     - SUNRPC: remove the maximum number of retries in call_bind_status
     - RDMA/mlx5: Use correct device num_ports when modify DC
     - timekeeping: Fix references to nonexistent ktime_get_fast_ns()
     - SMB3: Add missing locks to protect deferred close file list
     - SMB3: Close deferred file handles in case of handle lease break
     - ext4: fix i_disksize exceeding i_size problem in paritally written case
     - ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline
     - [arm64] dmaengine: mv_xor_v2: Fix an error code.
     - [armhf] leds: tca6507: Fix error handling of using
       fwnode_property_read_string
     - soundwire: cadence: rename sdw_cdns_dai_dma_data as sdw_cdns_dai_runtime
     - [x86] soundwire: intel: don't save hw_params for use in prepare
     - [arm64,armhf] phy: tegra: xusb: Add missing tegra_xusb_port_unregister for
       usb2_port and ulpi_port
     - [arm64,armhf] pinctrl-bcm2835.c: fix race condition when setting gpio dir
     - [x86] ACPI: PM: Do not turn of unused power resources on the Toshiba Click
       Mini
     - PM: hibernate: Turn snapshot_test into global variable
     - PM: hibernate: Do not get block device exclusively in test_resume mode
     - afs: Fix updating of i_size with dv jump from server
     - afs: Fix getattr to report server i_size on dirs, not local size
     - afs: Avoid endless loop if file is larger than expected
     - ALSA: usb-audio: Add quirk for Pioneer DDJ-800
     - [x86] ALSA: hda/realtek: Add quirk for ThinkPad P1 Gen 6
     - [x86] ALSA: hda/realtek: Add quirk for ASUS UM3402YAR using CS35L41
     - [x86] ALSA: hda/realtek: support HP Pavilion Aero 13-be0xxx Mute LED
     - [x86] ALSA: hda/realtek: Fix mute and micmute LEDs for an HP laptop
     - nilfs2: do not write dirty data after degenerating to read-only
     - nilfs2: fix infinite loop in nilfs_mdt_get_block()
     - mm: do not reclaim private data from pinned page
     - drbd: correctly submit flush bio on barrier
     - md/raid10: fix null-ptr-deref in raid10_sync_request
     - md/raid5: Improve performance for sequential IO
     - mtd: core: provide unique name for nvmem device, take two
     - mtd: core: fix nvmem error reporting
     - mtd: core: fix error path for nvmem provider
     - mtd: spi-nor: core: Update flash's current address mode when changing
       address mode
     - [arm64] mailbox: zynqmp: Fix IPI isr handling
     - [arm64] mailbox: zynqmp: Fix typo in IPI documentation
     - wifi: rtl8xxxu: RTL8192EU always needs full init
     - wifi: rtw89: fix potential race condition between napi_init and
       napi_enable
     - [arm64] clk: rockchip: rk3399: allow clk_cifout to force clk_cifout_src to
       reparent
     - btrfs: scrub: reject unsupported scrub flags
     - [s390x] dasd: fix hanging blockdevice after request requeue
     - mm/mempolicy: correctly update prev when policy is equal on mbind
     - dm verity: fix error handling for check_at_most_once on FEC
     - dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path
     - dm flakey: fix a crash with invalid table line
     - dm ioctl: fix nested locking in table_clear() to remove deadlock concern
       (CVE-2023-2269)
     - dm: don't lock fs when the map is NULL in process of resume
     - blk-iocost: avoid 64-bit division in ioc_timer_fn
     - cifs: fix potential use-after-free bugs in TCP_Server_Info::hostname
     - cifs: protect session status check in smb2_reconnect()
     - [x86] thunderbolt: Use correct type in tb_port_is_clx_enabled() prototype
     - wifi: ath11k: synchronize ath11k_mac_he_gi_to_nl80211_he_gi()'s return
       type
     - [x86] perf auxtrace: Fix address filter entire kernel size
     - [x86] perf intel-pt: Fix CYC timestamps after standalone CBR
     - i40e: Remove unused i40e status codes
     - i40e: Remove string printing for i40e_status
     - i40e: use int for i40e_status
     - scsi: libsas: Grab the ATA port lock in sas_ata_device_link_abort()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.29
     - [arm64,armhf] USB: dwc3: gadget: drop dead hibernation code
     - [arm64,armhf] usb: dwc3: gadget: Execute gadget stop after halting the
       controller
     - drm/vmwgfx: Remove explicit and broken vblank handling
     - drm/vmwgfx: Fix Legacy Display Unit atomic drm support
     - [amd64] crypto: ccp - Clear PSP interrupt status register before calling
       handler
     - [x86] perf/x86/core: Zero @lbr instead of returning -1 in
       x86_perf_get_lbr() stub
     - [x86] KVM: x86: Track supported PERF_CAPABILITIES in kvm_caps
     - [x86] KVM: x86/pmu: Disallow legacy LBRs if architectural LBRs are
       available
     - mtd: spi-nor: spansion: Remove NO_SFDP_FLAGS from s28hs512t info
     - mtd: spi-nor: add SFDP fixups for Quad Page Program
     - mtd: spi-nor: Add a RWW flag
     - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s28hx
       SEMPER flash
     - [arm64] mailbox: zynq: Switch to flexible array to simplify code
     - [arm64] mailbox: zynqmp: Fix counts of child nodes
     - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s25hx
       SEMPER flash
     - drm/amd/display: Ext displays with dock can't recognized after resume
     - [x86] KVM: x86/mmu: Avoid indirect call for get_cr3
     - [x86] KVM: x86: Do not unload MMU roots when only toggling CR0.WP with TDP
       enabled
     - [x86] KVM: x86: Make use of kvm_read_cr*_bits() when testing bits
     - [x86] KVM: VMX: Make CR0.WP a guest owned bit
     - [x86] KVM: x86/mmu: Refresh CR0.WP prior to checking for emulated
       permission faults
     - [x86] ASoC: Intel: soc-acpi-byt: Fix "WM510205" match no longer working
     - scsi: qedi: Fix use after free bug in qedi_remove()
     - drm/amd/display: Remove FPU guards from the DML folder
     - drm/amd/display: Add missing WA and MCLK validation
     - drm/amd/display: Return error code on DSC atomic check failure
     - drm/amd/display: Fixes for dcn32_clk_mgr implementation
     - drm/amd/display: Reset OUTBOX0 r/w pointer on DMUB reset
     - drm/amd/display: Do not clear GPINT register when releasing DMUB from
       reset
     - drm/amd/display: Update bounding box values for DCN321
     - ixgbe: Fix panic during XDP_TX with > 64 CPUs
     - [armhf] net/ncsi: clear Tx enable mode when handling a Config required AEN
     - tcp: fix skb_copy_ubufs() vs BIG TCP
     - net/sched: cls_api: remove block_cb from driver_list before freeing
     - sit: update dev->needed_headroom in ipip6_tunnel_bind_dev()
     - net: ipv6: fix skb hash for some RST packets
     - [arm64,armhf] net: dsa: mv88e6xxx: add mv88e6321 rsvd2cpu
     - writeback: fix call of incorrect macro
     - block: Skip destroyed blkg when restart in blkg_destroy_all()
     - [arm64,armhf] watchdog: dw_wdt: Fix the error handling path of
       dw_wdt_drv_probe()
     - [arm64,armhf] i2c: tegra: Fix PEC support for SMBUS block read
     - net/sched: act_mirred: Add carrier check
     - r8152: fix flow control issue of RTL8156A
     - r8152: fix the poor throughput for 2.5G devices
     - r8152: move setting r8153b_rx_agg_chg_indicate()
     - sfc: Fix module EEPROM reporting for QSFP modules
     - rxrpc: Fix hard call timeout units
     - [x86] drm/i915/mtl: Add the missing CPU transcoder mask in
       intel_device_info
     - ethtool: Fix uninitialized number of lanes
     - af_packet: Don't send zero-byte data in packet_sendmsg_spkt().
     - drm/amdgpu: add a missing lock for AMDGPU_SCHED
     - ALSA: caiaq: input: Add error handling for unsupported input methods in
       `snd_usb_caiaq_input_init`
     - [s390x] KVM: s390: fix race in gmap_make_secure()
     - ice: block LAN in case of VF to VF offload
     - virtio_net: suppress cpu stall when free_unused_bufs
     - [arm64] net: enetc: check the index of the SFI rather than the handle
     - perf record: Fix "read LOST count failed" msg with sample read
     - perf scripts intel-pt-events.py: Fix IPC output for Python 2
     - perf vendor events s390: Remove UTF-8 characters from JSON file
     - perf tests record_offcpu.sh: Fix redirection of stderr to stdin
     - perf ftrace: Make system wide the default target for latency subcommand
     - perf vendor events power9: Remove UTF-8 characters from JSON files
     - perf pmu: zfree() expects a pointer to a pointer to zero it after freeing
       its contents
     - perf map: Delete two variable initialisations before null pointer checks
       in sort__sym_from_cmp()
     - perf cs-etm: Fix timeless decode mode detection
     - crypto: api - Add scaffolding to change completion function signature
     - crypto: engine - Use crypto_request_complete
     - crypto: engine - fix crypto_queue backlog handling
     - perf symbols: Fix return incorrect build_id size in elf_read_build_id()
     - perf tracepoint: Fix memory leak in is_valid_tracepoint()
     - perf stat: Separate bperf from bpf_profiler
     - [x86] retbleed: Fix return thunk alignment
     - btrfs: fix btrfs_prev_leaf() to not return the same key twice
     - btrfs: zoned: fix wrong use of bitops API in btrfs_ensure_empty_zones
     - btrfs: properly reject clear_cache and v1 cache for block-group-tree
     - btrfs: fix assertion of exclop condition when starting balance
     - btrfs: fix encoded write i_size corruption with no-holes
     - btrfs: don't free qgroup space unless specified
     - btrfs: zero the buffer before marking it dirty in btrfs_redirty_list_add
     - btrfs: make clear_cache mount option to rebuild FST without disabling it
     - btrfs: print-tree: parent bytenr must be aligned to sector size
     - btrfs: fix space cache inconsistency after error loading it from disk
     - btrfs: zoned: zone finish data relocation BG with last IO
     - btrfs: zoned: fix full zone super block reading on ZNS
     - cifs: fix pcchunk length type in smb2_copychunk_range
     - cifs: release leases for deferred close handles when freezing
     - [amd64] platform/x86/intel-uncore-freq: Return error on write frequency
     - [x86] platform/x86: touchscreen_dmi: Add upside-down quirk for GDIX1002 ts
       on the Juno Tablet
     - [x86] platform/x86: thinkpad_acpi: Fix platform profiles on T490
     - [x86] platform/x86: touchscreen_dmi: Add info for the Dexp Ursus KX210i
     - [x86] platform/x86: thinkpad_acpi: Add profile force ability
     - inotify: Avoid reporting event with invalid wd
     - smb3: fix problem remounting a share after shutdown
     - SMB3: force unmount was failing to close deferred close files
     - [armhf] remoteproc: stm32: Call of_node_put() on iteration error
     - sysctl: clarify register_sysctl_init() base directory order
     - [armhf] ARM: dts: aspeed: asrock: Correct firmware flash SPI clocks
     - [armhf] ARM: dts: exynos: fix WM8960 clock name in Itop Elite
     - [armhf] ARM: dts: aspeed: romed8hm3: Fix GPIO polarity of system-fault LED
     - [arm64] drm/msm/adreno: fix runtime PM imbalance at gpu load
     - [x86] drm/i915/color: Fix typo for Plane CSC indexes
     - [arm64] drm/msm: fix NULL-deref on snapshot tear down
     - [arm64] drm/msm: fix NULL-deref on irq uninstall
     - [arm64] drm/msm: fix drm device leak on bind errors
     - [arm64] drm/msm: fix vram leak on bind errors
     - [arm64] drm/msm: fix workqueue leak on bind errors
     - [x86] drm/i915/dsi: Use unconditional msleep() instead of
       intel_dsi_msleep()
     - f2fs: fix null pointer panic in tracepoint in __replace_atomic_write_block
     - f2fs: fix potential corruption when moving a directory
     - [armhf] drm/panel: otm8009a: Set backlight parent to panel device
     - drm/amd/display: Add NULL plane_state check for cursor disable logic
     - drm/amd/display: Fix 4to1 MPC black screen with DPP RCO
     - drm/amd/display: filter out invalid bits in pipe_fuses
     - drm/amd/display: fix flickering caused by S/G mode
     - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v10_0_hw_fini
     - drm/amdgpu: fix an amdgpu_irq_put() issue in gmc_v9_0_hw_fini()
     - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v11_0_hw_fini
     - drm/amdgpu/gfx: disable gfx9 cp_ecc_error_irq only when enabling legacy
       gfx ras
     - drm/amdgpu/jpeg: Remove harvest checking for JPEG3
     - drm/amdgpu: change gfx 11.0.4 external_id range
     - drm/amdgpu: Fix vram recover doesn't work after whole GPU reset (v2)
     - drm/amd/display: Enforce 60us prefetch for 200Mhz DCFCLK modes
     - drm/amd/pm: parse pp_handle under appropriate conditions
     - drm/amdgpu: disable sdma ecc irq only when sdma RAS is enabled in suspend
     - drm/amd/pm: avoid potential UBSAN issue on legacy asics
     - drm/amdgpu: remove deprecated MES version vars
     - drm/amd: Load MES microcode during early_init
     - drm/amd: Add a new helper for loading/validating microcode
     - drm/amd: Use `amdgpu_ucode_*` helpers for MES
     - HID: wacom: Set a default resolution for older tablets
     - HID: wacom: insert timestamp to packed Bluetooth (BT) events
     - [arm64] drm/msm/adreno: adreno_gpu: Use suspend() instead of idle() on
       load error
     - f2fs: specify extent cache for read explicitly
     - f2fs: move internal functions into extent_cache.c
     - f2fs: remove unnecessary __init_extent_tree
     - f2fs: refactor extent_cache to support for read and more
     - f2fs: allocate the extent_cache by default
     - f2fs: factor out victim_entry usage from general rb_tree use
     - [arm64] drm/msm/adreno: Simplify read64/write64 helpers
     - [arm64] drm/msm: Hangcheck progress detection
     - [arm64] drm/msm: fix missing wq allocation error handling
     - wifi: rtw88: rtw8821c: Fix rfe_option field width
     - [x86] drm/i915/mtl: update scaler source and destination limits for MTL
     - [x86] drm/i915: Check pipe source size when using skl+ scalers
     - drm/amd/display: Refactor eDP PSR codes
     - drm/amd/display: Add Z8 allow states to z-state support list
     - drm/amd/display: Add debug option to skip PSR CRTC disable
     - drm/amd/display: Fix Z8 support configurations
     - drm/amd/display: Add minimum Z8 residency debug option
     - drm/amd/display: Update minimum stutter residency for DCN314 Z8
     - drm/amd/display: Lowering min Z8 residency time
     - [x86] ASoC: codecs: constify static sdw_slave_ops struct
     - drm/amd/display: Update Z8 watermarks for DCN314
     - drm/amd/display: Update Z8 SR exit/enter latencies
     - drm/amd/display: Change default Z8 watermark values
     - ksmbd: Implements sess->ksmbd_chann_list as xarray
     - ksmbd: fix racy issue from session setup and logoff (CVE-2023-32250)
     - ksmbd: destroy expired sessions
     - ksmbd: block asynchronous requests when making a delay on session setup
     - ksmbd: fix racy issue from smb2 close and logoff with multichannel
     - drm: Add missing DP DSC extended capability definitions.
     - drm/dsc: fix drm_edp_dsc_sink_output_bpp() DPCD high byte usage
     - locking/rwsem: Add __always_inline annotation to __down_read_common() and
       inlined callers
     - ext4: fix WARNING in mb_find_extent
     - ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum
       (CVE-2023-34256)
     - ext4: fix data races when using cached status extents
     - ext4: check iomap type only if ext4_iomap_begin() does not fail
     - ext4: improve error recovery code paths in __ext4_remount()
     - ext4: improve error handling from ext4_dirhash()
     - ext4: fix deadlock when converting an inline directory in nojournal mode
     - ext4: add bounds checking in get_max_inline_xattr_value_size()
     - ext4: bail out of ext4_xattr_ibody_get() fails for any reason
     - ext4: fix lockdep warning when enabling MMP
     - ext4: remove a BUG_ON in ext4_mb_release_group_pa()
     - ext4: fix invalid free tracking in ext4_xattr_move_to_block()
     - drm/dsc: fix DP_DSC_MAX_BPP_DELTA_* macro values
     - f2fs: fix to do sanity check on extent cache correctly
     - f2fs: inode: fix to do sanity check on extent cache correctly
     - [x86] amd_nb: Add PCI ID for family 19h model 78h
     - [x86] fix clear_user_rep_good() exception handling annotation
     - drm/amd/display: Fix hang when skipping modeset
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.30
     - drm/fbdev-generic: prohibit potential out-of-bounds access
     - drm/mipi-dsi: Set the fwnode for mipi_dsi_device
     - net: skb_partial_csum_set() fix against transport header magic value
     - scsi: ufs: core: Fix I/O hang that occurs when BKOPS fails in W-LUN
       suspend
     - tick/broadcast: Make broadcast device replacement work correctly
     - linux/dim: Do nothing if no time delta between samples
     - net: stmmac: Initialize MAC_ONEUS_TIC_COUNTER register
     - net: Fix load-tearing on sk->sk_stamp in sock_recv_cmsgs().
     - [arm64,armhf] net: phy: bcm7xx: Correct read from expansion register
     - netfilter: nf_tables: always release netdev hooks from notifier
     - netfilter: conntrack: fix possible bug_on with enable_hooks=1
     - bonding: fix send_peer_notif overflow
     - netlink: annotate accesses to nlk->cb_running
     - net: annotate sk->sk_err write from do_recvmmsg()
     - net: deal with most data-races in sk_wait_event()
     - net: add vlan_get_protocol_and_depth() helper
     - tcp: add annotations around sk->sk_shutdown accesses
     - [amd64,arm64] gve: Remove the code of clearing PBA bit
     - ipvlan:Fix out-of-bounds caused by unclear skb->cb (CVE-2023-3090)
     - [arm64] net: mscc: ocelot: fix stat counter register values
     - net: datagram: fix data-races in datagram_poll()
     - af_unix: Fix a data race of sk->sk_receive_queue->qlen.
     - af_unix: Fix data races around sk->sk_shutdown.
     - [x86] drm/i915/guc: Don't capture Gen8 regs on Xe devices
     - [x86] drm/i915: Fix NULL ptr deref by checking new_crtc_state
     - [x86] drm/i915/dp: prevent potential div-by-zero
     - [x86] drm/i915: Expand force_probe to block probe of devices as well.
     - [x86] drm/i915: taint kernel when force probing unsupported devices
     - [x86] fbdev: arcfb: Fix error handling in arcfb_probe()
     - ext4: reflect error codes from ext4_multi_mount_protect() to its callers
     - ext4: allow to find by goal if EXT4_MB_HINT_GOAL_ONLY is set
     - ext4: allow ext4_get_group_info() to fail
     - rcu: Protect rcu_print_task_exp_stall() ->exp_tasks access
     - open: return EINVAL for O_DIRECTORY | O_CREAT
     - fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
     - drm/displayid: add displayid_get_header() and check bounds better
     - drm/amd/display: populate subvp cmd info only for the top pipe
     - drm/amd/display: Correct DML calculation to align HW formula
     - [x86] platform/x86: x86-android-tablets: Add Acer Iconia One 7 B1-750 data
     - drm/amd/display: Enable HostVM based on rIOMMU active
     - drm/amd/display: Use DC_LOG_DC in the trasform pixel function
     - regmap: cache: Return error in cache sync operations for REGCACHE_NONE
     - [arm64] dts: qcom: msm8996: Add missing DWC3 quirks
     - media: cx23885: Fix a null-ptr-deref bug in buffer_prepare() and
       buffer_finish()
     - media: pci: tw68: Fix null-ptr-deref bug in buf prepare and finish
     - ACPI: processor: Check for null return of devm_kzalloc() in
       fch_misc_setup()
     - [arm64,armhf] drm/rockchip: dw_hdmi: cleanup drm encoder during unbind
     - memstick: r592: Fix UAF bug in r592_remove due to race condition
       (CVE-2023-3141)
     - ACPI: EC: Fix oops when removing custom query handlers
     - drm/amd/display: fixed dcn30+ underflow issue
     - [armhf] remoteproc: stm32_rproc: Add mutex protection for workqueue
     - [arm64,armhf] drm/tegra: Avoid potential 32-bit integer overflow
     - [arm64] drm/msm/dp: Clean up handling of DP AUX interrupts
     - ACPICA: Avoid undefined behavior: applying zero offset to null pointer
     - ACPICA: ACPICA: check null return of ACPI_ALLOCATE_ZEROED in
       acpi_db_display_objects
     - [arm64] dts: qcom: sdm845-polaris: Drop inexistent properties
     - [arm64,armhf] irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4
     - ACPI: video: Remove desktops without backlight DMI quirks
     - drm/amd/display: Correct DML calculation to follow HW SPEC
     - drm/amd: Fix an out of bounds error in BIOS parser
     - drm/amdgpu: Fix sdma v4 sw fini error
     - [armhf] media: Prefer designated initializers over memset for subdev pad
       ops
     - wifi: ath: Silence memcpy run-time false positive warning
     - bpf: Annotate data races in bpf_local_storage
     - wifi: brcmfmac: pcie: Provide a buffer of random bytes to the device
     - wifi: brcmfmac: cfg80211: Pass the PMK in binary instead of hex
     - scsi: lpfc: Prevent lpfc_debugfs_lockstat_write() buffer overflow
     - scsi: lpfc: Correct used_rpi count when devloss tmo fires with no recovery
     - bnxt: avoid overflow in bnxt_get_nvram_directory()
     - net: Catch invalid index in XPS mapping
     - netdev: Enforce index cap in netdev_get_tx_queue
     - scsi: target: iscsit: Free cmds before session free
     - lib: cpu_rmap: Avoid use after free on rmap->obj array entries
     - scsi: message: mptlan: Fix use after free bug in mptlan_remove() due to
       race condition
     - gfs2: Fix inode height consistency check
     - [x86] scsi: ufs: ufs-pci: Add support for Intel Lunar Lake
     - ext4: set goal start correctly in ext4_mb_normalize_request
     - ext4: Fix best extent lstart adjustment logic in ext4_mb_new_inode_pa()
     - crypto: jitter - permanent and intermittent health errors
     - f2fs: Fix system crash due to lack of free space in LFS
     - f2fs: fix to drop all dirty pages during umount() if cp_error is set
     - f2fs: fix to check readonly condition correctly
     - bpf: Add preempt_count_{sub,add} into btf id deny list
     - md: fix soft lockup in status_resync
     - wifi: iwlwifi: pcie: fix possible NULL pointer dereference
     - wifi: iwlwifi: add a new PCI device ID for BZ device
     - wifi: iwlwifi: pcie: Fix integer overflow in iwl_write_to_user_buf
     - wifi: iwlwifi: mvm: fix ptk_pn memory leak
     - block, bfq: Fix division by zero error on zero wsum
     - wifi: ath11k: Ignore frags from uninitialized peer in dp.
     - wifi: iwlwifi: fix iwl_mvm_max_amsdu_size() for MLO
     - null_blk: Always check queue mode setting from configfs
     - wifi: iwlwifi: dvm: Fix memcpy: detected field-spanning write backtrace
     - wifi: ath11k: Fix SKB corruption in REO destination ring
     - nbd: fix incomplete validation of ioctl arg
     - ipvs: Update width of source for ip_vs_sync_conn_options
     - Bluetooth: btusb: Add new PID/VID 04ca:3801 for MT7663
     - Bluetooth: Add new quirk for broken local ext features page 2
     - Bluetooth: btrtl: add support for the RTL8723CS
     - Bluetooth: Improve support for Actions Semi ATS2851 based devices
     - Bluetooth: btrtl: check for NULL in btrtl_set_quirks()
     - Bluetooth: btintel: Add LE States quirk support
     - Bluetooth: hci_bcm: Fall back to getting bdaddr from EFI if not set
     - Bluetooth: Add new quirk for broken set random RPA timeout for ATS2851
     - Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
     - Bluetooth: btrtl: Add the support for RTL8851B
     - HID: apple: Set the tilde quirk flag on the Geyser 4 and later
     - [x86] ASoC: amd: yc: Add DMI entries to support HP OMEN 16-n0xxx (8A42)
     - HID: logitech-hidpp: Don't use the USB serial for USB devices
     - HID: logitech-hidpp: Reconcile USB and Unifying serials
     - [arm64,armhf] spi: spi-imx: fix MX51_ECSPI_* macros when cs > 3
     - [x86] usb: typec: ucsi: acpi: add quirk for ASUS Zenbook UM325
     - ALSA: hda: LNL: add HD Audio PCI ID
     - [x86] ASoC: amd: Add Dell G15 5525 to quirks list
     - [x86] ASoC: amd: yc: Add ThinkBook 14 G5+ ARP to quirks list for acp6x
     - [x86] HID: apple: Set the tilde quirk flag on the Geyser 3
     - [x86] HID: Ignore battery for ELAN touchscreen on ROG Flow X13 GV301RA
     - HID: wacom: generic: Set battery quirk only when we see battery data
     - usb: typec: tcpm: fix multiple times discover svids error
     - serial: 8250: Reinit port->pm on port specific driver unbind
     - [x86] soundwire: dmi-quirks: add remapping for Intel 'Rooks County' NUC
       M15
     - soundwire: qcom: gracefully handle too many ports in DT
     - soundwire: bus: Fix unbalanced pm_runtime_put() causing usage count
       underflow
     - [x86] mfd: intel_soc_pmic_chtwc: Add Lenovo Yoga Book X90F to
       intel_cht_wc_models
     - [x86] mfd: intel-lpss: Add Intel Meteor Lake PCH-S LPSS PCI IDs
     - [x86] platform/x86: Move existing HP drivers to a new hp subdir
     - [x86] hp-wmi: add micmute to hp_wmi_keymap struct
     - drm/amdgpu: drop gfx_v11_0_cp_ecc_error_irq_funcs
     - xfrm: don't check the default policy if the policy allows the packet
     - Revert "Fix XFRM-I support for nested ESP tunnels"
     - [arm64] drm/msm/dp: unregister audio driver during unbind
     - [arm64] drm/msm/dpu: Assign missing writeback log_mask
     - [arm64] drm/msm/dpu: Move non-MDP_TOP INTF_INTR offsets out of hwio header
     - [arm64] drm/msm/dpu: Remove duplicate register defines from INTF
     - platform: Provide a remove callback that returns no value
     - [arm64] ASoC: fsl_micfil: Fix error handler with pm_runtime_enable
     - cpupower: Make TSC read per CPU for Mperf monitor
     - xfrm: Reject optional tunnel/BEET mode templates in outbound policies
     - af_key: Reject optional tunnel/BEET mode templates in outbound policies
     - [arm64] drm/msm: Fix submit error-path leaks
     - [arm64,armhf] net: fec: Better handle pm_runtime_get() failing in
       .remove()
     - net: phy: dp83867: add w/a for packet errors seen with short cables
     - ALSA: firewire-digi00x: prevent potential use after free
     - wifi: mt76: connac: fix stats->tx_bytes calculation
     - [x86] ALSA: hda/realtek: Apply HP B&O top speaker profile to Pavilion 15
     - sfc: disable RXFCS and RXALL features by default
     - vsock: avoid to close connected socket after the timeout
     - tcp: fix possible sk_priority leak in tcp_v4_send_reset()
     - [armhf] serial: arc_uart: fix of_iomap leak in `arc_serial_probe`
     - erspan: get the proto with the md version for collect_md
     - [arm64] net: hns3: fix output information incomplete for dumping tx queue
       info with debugfs
     - [arm64] net: hns3: fix sending pfc frames after reset issue
     - [arm64] net: hns3: fix reset delay time to avoid configuration timeout
     - [arm64] net: hns3: fix reset timeout when enable full VF
     - media: netup_unidvb: fix use-after-free at del_timer()
     - SUNRPC: double free xprt_ctxt while still in use
     - SUNRPC: always free ctxt when freeing deferred request
     - SUNRPC: Fix trace_svc_register() call site
     - [x86] ASoC: SOF: topology: Fix logic for copying tuples
     - net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment()
     - virtio-net: Maintain reverse cleanup order
     - virtio_net: Fix error unwinding of XDP initialization
     - tipc: add tipc_bearer_min_mtu to calculate min mtu
     - tipc: do not update mtu if msg_max is too small in mtu negotiation
     - tipc: check the bearer min mtu properly when setting it by netlink
     - [s390x] cio: include subchannels without devices also for evaluation
     - can: dev: fix missing CAN XL support in can_put_echo_skb()
     - [arm64] net: bcmgenet: Remove phy_stop() from bcmgenet_netif_stop()
     - [arm64] net: bcmgenet: Restore phy_stop() depending upon suspend/close
     - ice: introduce clear_reset_state operation
     - ice: Fix ice VF reset during iavf initialization
     - wifi: cfg80211: Drop entries with invalid BSSIDs in RNR
     - wifi: mac80211: fortify the spinlock against deadlock by interrupt
     - wifi: mac80211: fix min center freq offset tracing
     - wifi: mac80211: Abort running color change when stopping the AP
     - wifi: iwlwifi: mvm: fix cancel_delayed_work_sync() deadlock
     - wifi: iwlwifi: fw: fix DBGI dump
     - wifi: iwlwifi: fix OEM's name in the ppag approved list
     - wifi: iwlwifi: mvm: fix OEM's name in the tas approved list
     - wifi: iwlwifi: mvm: don't trust firmware n_channels
     - scsi: storvsc: Don't pass unused PFNs to Hyper-V host
     - net: tun: rebuild error handling in tun_get_user
     - tun: Fix memory leak for detached NAPI queue.
     - cassini: Fix a memory leak in the error handling path of cas_init_one()
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix mv88e6393x EPC write command offset
     - igb: fix bit_shift to be in [1..8] range
     - vlan: fix a potential uninit-value in vlan_dev_hard_start_xmit()
     - net: wwan: iosm: fix NULL pointer dereference when removing device
     - net: pcs: xpcs: fix C73 AN not getting enabled
     - netfilter: nf_tables: fix nft_trans type confusion
     - netfilter: nft_set_rbtree: fix null deref on element insertion
     - ALSA: usb-audio: Add a sample rate workaround for Line6 Pod Go
     - USB: usbtmc: Fix direction for 0-length ioctl control messages
     - usb-storage: fix deadlock when a scsi command timeouts more than once
     - USB: UHCI: adjust zhaoxin UHCI controllers OverCurrent bit value
     - [arm64,armhf] usb: dwc3: gadget: Improve dwc3_gadget_suspend() and
       dwc3_gadget_resume()
     - [arm64,armhf] usb: dwc3: debugfs: Resume dwc3 before accessing registers
     - usb: gadget: u_ether: Fix host MAC address case
     - usb: typec: altmodes/displayport: fix pin_assignment_show
     - xhci-pci: Only run d3cold avoidance quirk for s2idle
     - xhci: Fix incorrect tracking of free space on transfer rings
     - ALSA: hda: Fix Oops by 9.1 surround channel names
     - ALSA: hda: Add NVIDIA codec IDs a3 through a7 to patch table
     - [x86] ALSA: hda/realtek: Add quirk for Clevo L140AU
     - [x86] ALSA: hda/realtek: Add a quirk for HP EliteDesk 805
     - [x86] ALSA: hda/realtek: Add quirk for 2nd ASUS GU603
     - [x86] ALSA: hda/realtek: Add quirk for HP EliteBook G10 laptops
     - ALSA: hda/realtek: Fix mute and micmute LEDs for yet another HP laptop
     - can: j1939: recvmsg(): allow MSG_CMSG_COMPAT flag
     - can: isotp: recvmsg(): allow MSG_CMSG_COMPAT flag
     - wifi: rtw88: use work to update rate to avoid RCU warning
     - SMB3: Close all deferred handles of inode in case of handle lease break
     - SMB3: drop reference to cfile before sending oplock break
     - ksmbd: smb2: Allow messages padded to 8byte boundary
     - ksmbd: allocate one more byte for implied bcc[0]
     - ksmbd: fix wrong UserName check in session_user
     - ksmbd: fix global-out-of-bounds in smb2_find_context_vals
     - KVM: Fix vcpu_array[0] races
     - statfs: enforce statfs[64] structure initialization
     - maple_tree: make maple state reusable after mas_empty_area()
       (Closes: #1036755)
     - mm: fix zswap writeback race condition
     - serial: Add support for Advantech PCI-1611U card
     - serial: 8250_exar: Add support for USR298x PCI Modems
     - [arm64] serial: qcom-geni: fix enabling deactivated interrupt
     - [x86] thunderbolt: Clear registers properly when auto clear isn't in use
     - vc_screen: reload load of struct vc_data pointer in vcs_write() to avoid
       UAF
     - ceph: force updating the msg pointer in non-split case
     - drm/amd/pm: fix possible power mode mismatch between driver and PMFW
     - drm/amdgpu/gmc11: implement get_vbios_fb_size()
     - drm/amdgpu/gfx10: Disable gfxoff before disabling powergating.
     - drm/amdgpu/gfx11: Adjust gfxoff before powergating on gfx11 as well
     - drm/amdgpu: refine get gpu clock counter method
     - drm/amdgpu/gfx11: update gpu_clock_counter logic
     - [powerpc*] iommu: DMA address offset is incorrectly calculated with 2MB
       TCEs
     - [powerpc*] iommu: Incorrect DDW Table is referenced for SR-IOV device
     - tpm/tpm_tis: Disable interrupts for more Lenovo devices
     - [powerpc*] 64s/radix: Fix soft dirty tracking
     - nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode()
     - [s390x] dasd: fix command reject error on ESE devices
     - [s390x] crypto: use vector instructions only if available for ChaCha20
     - [s390x] qdio: fix do_sqbs() inline assembly constraint
     - [arm64] mte: Do not set PG_mte_tagged if tags were not initialized
     - [x86] rethook: use preempt_{disable, enable}_notrace in
       rethook_trampoline_handler
     - [x86] rethook, fprobe: do not trace rethook related functions
     - crypto: testmgr - fix RNG performance in fuzz tests
     - drm/amdgpu: declare firmware for new MES 11.0.4
     - drm/amd/amdgpu: introduce gc_*_mes_2.bin v2
     - drm/amdgpu: reserve the old gc_11_0_*_mes.bin
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.31
     - [arm64,armhf] usb: dwc3: fix gadget mode suspend interrupt handler issue
     - tpm, tpm_tis: Avoid cache incoherency in test for interrupts
     - tpm, tpm_tis: Only handle supported interrupts
     - tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume
     - tpm, tpm_tis: startup chip before testing for interrupts
     - tpm: Re-enable TPM chip boostrapping non-tpm_tis TPM drivers
     - tpm: Prevent hwrng from activating during resume
     - [x86] watchdog: sp5100_tco: Immediately trigger upon starting.
     - drm/amd/amdgpu: update mes11 api def
     - drm/amdgpu/mes11: enable reg active poll
     - skbuff: Proactively round up to kmalloc bucket size
     - [arm64,armhf] net: dsa: mv88e6xxx: Add RGMII delay to 88E6320
     - drm/amd/display: hpd rx irq not working with eDP interface
     - ocfs2: Switch to security_inode_init_security()
     - [x86] mm: Avoid incomplete Global INVLPG flushes
     - [x86] ALSA: hda/ca0132: add quirk for EVGA X299 DARK
     - ALSA: hda: Fix unhandled register update during auto-suspend period
     - [x86] ALSA: hda/realtek: Enable headset onLenovo M70/M90
     - SUNRPC: Don't change task->tk_status after the call to rpc_exit_task
     - [arm64,armhf] imc: sdhci-esdhc-imx: make "no-mmc-hs400" works
     - mmc: block: ensure error propagation for non-blk
     - [x86] power: supply: axp288_fuel_gauge: Fix external_power_changed race
     - [arm64] power: supply: bq25890: Fix external_power_changed race
     - ASoC: rt5682: Disable jack detection interrupt during suspend
     - net: cdc_ncm: Deal with too low values of dwNtbOutMaxSize
     - btrfs: use nofs when cleaning up aborted transactions
     - [x86] drm/mgag200: Fix gamma lut not initialized.
     - drm/radeon: reintroduce radeon_dp_work_func content
     - drm/amd/pm: add missing NotifyPowerSource message mapping for SMU13.0.7
     - drm/amd/pm: Fix output of pp_od_clk_voltage
     - Revert "binder_alloc: add missing mmap_lock calls when using the VMA"
     - Revert "android: binder: stop saving a pointer to the VMA"
     - binder: add lockless binder_alloc_(set|get)_vma()
     - binder: fix UAF caused by faulty buffer cleanup
     - binder: fix UAF of alloc->vma in race with munmap()
     - drm/amd/amdgpu: limit one queue per gang
     - [x86] perf/x86/uncore: Correct the number of CHAs on SPR
     - [x86] topology: Fix erroneous smp_num_siblings on Intel Hybrid platforms
     - [mips*] irqchip/mips-gic: Don't touch vl_map if a local interrupt is not
       routable
     - [mips*] irqchip/mips-gic: Use raw spinlock for gic_lock
     - debugobjects: Don't wake up kswapd from fill_pool()
     - fbdev: udlfb: Fix endpoint check
     - net: fix stack overflow when LRO is disabled for virtual interfaces
     - udplite: Fix NULL pointer dereference in __sk_mem_raise_allocated().
     - USB: core: Add routines for endpoint checks in old drivers
     - USB: sisusbvga: Add endpoint checks
     - media: radio-shark: Add endpoint checks
     - net: fix skb leak in __skb_tstamp_tx()
     - drm: fix drmm_mutex_init()
     - bpf: Fix mask generation for 32-bit narrow loads of 64-bit fields
     - bpf: fix a memory leak in the LRU and LRU_PERCPU hash maps
     - ipv6: Fix out-of-bounds access in ipv6_find_tlv()
     - cifs: mapchars mount option ignored
     - power: supply: leds: Fix blink to LED on transition
     - power: supply: bq27xxx: Fix bq27xxx_battery_update() race condition
     - power: supply: bq27xxx: Fix I2C IRQ race on remove
     - power: supply: bq27xxx: Fix poll_interval handling and races on remove
     - power: supply: bq27xxx: Add cache parameter to
       bq27xxx_battery_current_and_status()
     - power: supply: bq27xxx: Move bq27xxx_battery_update() down
     - power: supply: bq27xxx: Ensure power_supply_changed() is called on current
       sign changes
     - power: supply: bq27xxx: After charger plug in/out wait 0.5s for things to
       stabilize
     - [arm64] power: supply: bq25890: Call power_supply_changed() after updating
       input current or voltage
     - [x86] power: supply: bq24190: Call power_supply_changed() after updating
       input current
     - [arm64] optee: fix uninited async notif value
     - fs: fix undefined behavior in bit shift for SB_NOUSER
     - [arm64] regulator: pca9450: Fix BUCK2 enable_mask
     - [x86] platform/x86: ISST: Remove 8 socket limit
     - [armhf] dts: imx6qdl-mba6: Add missing pvcie-supply regulator
     - [x86] pci/xen: populate MSI sysfs entries
     - [x86] show_trace_log_lvl: Ensure stack pointer is aligned, again
     - [x86] ASoC: Intel: Skylake: Fix declaration of enum skl_ch_cfg
     - cxl: Wait Memory_Info_Valid before access memory related info
     - sctp: fix an issue that plpmtu can never go to complete state
     - [x86] forcedeth: Fix an error handling path in nv_probe()
     - net/mlx5e: Fix SQ wake logic in ptp napi_poll context
     - net/mlx5e: Fix deadlock in tc route query code
     - net/mlx5e: Use correct encap attribute during invalidation
     - net/mlx5e: do as little as possible in napi poll when budget is 0
     - [s390x] net/mlx5: DR, Fix crc32 calculation to work on big-endian (BE)
       CPUs
     - net/mlx5: Handle pairing of E-switch via uplink un/load APIs
     - net/mlx5: DR, Check force-loopback RC QP capability independently from
       RoCE
     - net/mlx5: Fix error message when failing to allocate device memory
     - net/mlx5: Collect command failures data only for known commands
     - net/mlx5: Devcom, fix error flow in mlx5_devcom_register_device
     - net/mlx5: Devcom, serialize devcom registration
     - [arm64] dts: imx8mn-var-som: fix PHY detection bug by adding deassert
       delay
     - net/smc: Reset connection when trying to use SMCRv2 fails.
     - [x86] 3c589_cs: Fix an error handling path in tc589_probe()
     - net: phy: mscc: add VSC8502 to MODULE_DEVICE_TABLE
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.32
     - inet: Add IP_LOCAL_PORT_RANGE socket option
     - ipv{4,6}/raw: fix output xfrm lookup wrt protocol
     - tls: rx: device: fix checking decryption status
     - tls: rx: strp: set the skb->len of detached / CoW'ed skbs
     - tls: rx: strp: fix determining record length in copy mode
     - tls: rx: strp: force mixed decrypted records into copy mode
     - tls: rx: strp: factor out copying skb data
     - tls: rx: strp: preserve decryption status of skbs when needed
     - net/mlx5: E-switch, Devcom, sync devcom events and devcom comp register
     - [x86] gpio-f7188x: fix chip name and pin count on Nuvoton chip
     - bpf, sockmap: Pass skb ownership through read_skb
     - bpf, sockmap: Convert schedule_work into delayed_work
     - bpf, sockmap: Reschedule is now done through backlog
     - bpf, sockmap: Improved check for empty queue
     - bpf, sockmap: Handle fin correctly
     - bpf, sockmap: TCP data stall on recv before accept
     - bpf, sockmap: Wake up polling after data copy
     - bpf, sockmap: Incorrectly handling copied_seq
     - blk-mq: fix race condition in active queue accounting
     - vfio/type1: check pfn valid before converting to struct page
     - net: page_pool: use in_softirq() instead
     - page_pool: fix inconsistency for page_pool_ring_[un]lock()
     - net: phy: mscc: enable VSC8501/2 RGMII RX clock
     - wifi: iwlwifi: mvm: support wowlan info notification version 2
     - wifi: iwlwifi: mvm: fix potential memory leak
     - RDMA/rxe: Fix the error "trying to register non-static key in
       rxe_cleanup_task"
     - drm/amd: Don't allow s0ix on APUs older than Raven
     - bluetooth: Add cmd validity checks at the start of hci_sock_ioctl()
     - block: fix bio-cache for passthru IO
     - [x86] cpufreq: amd-pstate: Update policy->cur in amd_pstate_adjust_perf()
     - [x86] cpufreq: amd-pstate: Add ->fast_switch() callback
     - netfilter: ctnetlink: Support offloaded conntrack entry deletion
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.33
     - [arm64,armhf] phy: amlogic: phy-meson-g12a-mipi-dphy-analog: fix
       CNTL2_DIF_TX_CTL0 value
     - [arm64] RDMA/hns: Fix timeout attr in query qp for HIP08
     - [arm64] RDMA/hns: Fix base address table allocation
     - [arm64] RDMA/hns: Modify the value of long message loopback slice
     - [arm64,armhf] iommu/rockchip: Fix unwind goto issue
     - [amd64] iommu/amd: Don't block updates to GATag if guest mode is on
     - [amd64] iommu/amd: Handle GALog overflows
     - [amd64] iommu/amd: Fix up merge conflict resolution
     - nfsd: make a copy of struct iattr before calling notify_change
     - net/mlx5: Drain health before unregistering devlink
     - net/mlx5: SF, Drain health before removing device
     - net/mlx5: fw_tracer, Fix event handling
     - net/mlx5e: Don't attach netdev profile while handling internal error
     - netrom: fix info-leak in nr_write_internal()
     - af_packet: Fix data-races of pkt_sk(sk)->num.
     - tls: improve lockless access safety of tls_err_abort()
     - [amd64,arm64] amd-xgbe: fix the false linkup in xgbe_phy_status
     - perf ftrace latency: Remove unnecessary "--" from --use-nsec option
     - RDMA/irdma: Prevent QP use after free
     - RDMA/irdma: Fix Local Invalidate fencing
     - af_packet: do not use READ_ONCE() in packet_bind()
     - tcp: deny tcp_disconnect() when threads are waiting
     - tcp: Return user_mss for TCP_MAXSEG in CLOSE/LISTEN state if user_mss set
     - net/smc: Scan from current RMB list when no position specified
     - net/smc: Don't use RMBs not mapped to new link in SMCRv2 ADD LINK
     - net/sched: sch_ingress: Only create under TC_H_INGRESS
     - net/sched: sch_clsact: Only create under TC_H_CLSACT
     - net/sched: Reserve TC_H_INGRESS (TC_H_CLSACT) for ingress (clsact) Qdiscs
     - net/sched: Prohibit regrafting ingress or clsact Qdiscs
     - net: sched: fix NULL pointer dereference in mq_attach
     - net/netlink: fix NETLINK_LIST_MEMBERSHIPS length report
     - udp6: Fix race condition in udp6_sendmsg & connect
     - nfsd: fix double fget() bug in __write_ports_addfd()
     - nvme: fix the name of Zone Append for verbose logging
     - net/mlx5e: Fix error handling in mlx5e_refresh_tirs
     - net/mlx5: Read embedded cpu after init bit cleared
     - net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
       (CVE-2023-35788)
     - tcp: fix mishandling when the sack compression is deferred.
     - [arm64,armhf] net: dsa: mv88e6xxx: Increase wait after reset deactivation
     - [armhf] mtd: rawnand: marvell: ensure timing values are written
     - [armhf] mtd: rawnand: marvell: don't set the NAND frequency select
     - rtnetlink: call validate_linkmsg in rtnl_create_link
     - mptcp: avoid unneeded __mptcp_nmpc_socket() usage
     - mptcp: add annotations around msk->subflow accesses
     - mptcp: avoid unneeded address copy
     - mptcp: simplify subflow_syn_recv_sock()
     - mptcp: consolidate passive msk socket initialization
     - mptcp: fix data race around msk->first access
     - mptcp: add annotations around sk->sk_shutdown accesses
     - drm/amdgpu: release gpu full access after "amdgpu_device_ip_late_init"
     - ALSA: hda: Glenfly: add HD Audio PCI IDs and HDMI Codec Vendor IDs.
     - [x86] ASoC: Intel: soc-acpi-cht: Add quirk for Nextbook Ares 8A tablet
     - drm/amdgpu: Use the default reset when loading or reloading the driver
     - [arm64] drm/ast: Fix ARM compatibility
     - btrfs: abort transaction when sibling keys check fails for leaves
     - [armel,armhf] ARM: 9295/1: unwind:fix unwind abort for uleb128 case
     - [x86] hwmon: (k10temp) Add PCI ID for family 19, model 78h
     - gfs2: Don't deref jdesc in evict (CVE-2023-3212)
     - drm/amdgpu: set gfx9 onwards APU atomics support to be true
     - fbdev: modedb: Add 1920x1080 at 60 Hz video mode
     - nbd: Fix debugfs_create_dir error checking
     - nvme-pci: add NVME_QUIRK_BOGUS_NID for HS-SSD-FUTURE 2048G
     - nvme-pci: add quirk for missing secondary temperature thresholds
     - [x86] ASoC: amd: yc: Add DMI entry to support System76 Pangolin 12
     - xfrm: Check if_id in inbound policy/secpath match
     - [x86] ALSA: hda/realtek: Add quirks for ASUS GU604V and GU603V
     - media: dvb_demux: fix a bug for the continuity counter
     - media: dvb-usb: az6027: fix three null-ptr-deref in az6027_i2c_xfer()
     - media: dvb-usb-v2: ec168: fix null-ptr-deref in ec168_i2c_xfer()
     - media: dvb-usb-v2: ce6230: fix null-ptr-deref in ce6230_i2c_master_xfer()
     - media: dvb-usb-v2: rtl28xxu: fix null-ptr-deref in rtl28xxu_i2c_xfer
     - media: dvb-usb: digitv: fix null-ptr-deref in digitv_i2c_xfer()
     - media: dvb-usb: dw2102: fix uninit-value in su3000_read_mac_address
     - media: netup_unidvb: fix irq init by register it at the end of probe
     - media: dvb_ca_en50221: fix a size write bug
     - media: ttusb-dec: fix memory leak in ttusb_dec_exit_dvb()
     - media: dvb-core: Fix use-after-free due on race condition at dvb_net
     - media: dvb-core: Fix use-after-free due to race at dvb_register_device()
     - media: dvb-core: Fix kernel WARNING for blocking operation in
       wait_event*() (CVE-2023-31084)
     - media: dvb-core: Fix use-after-free due to race condition at
       dvb_ca_en50221
     - [x86] ASoC: SOF: debug: conditionally bump runtime_pm counter on
       exceptions
     - [x86] ASoC: SOF: pcm: fix pm_runtime imbalance in error handling
     - [x86] ASoC: SOF: sof-client-probes: fix pm_runtime imbalance in error
       handling
     - [x86] ASoC: SOF: pm: save io region state in case of errors in resume
     - [s390x] topology: honour nr_cpu_ids when adding CPUs
     - ACPI: resource: Add IRQ override quirk for LG UltraPC 17U70P
     - wifi: rtl8xxxu: fix authentication timeout due to incorrect RCR value
     - [arm64] mm: mark private VM_FAULT_X defines as vm_fault_t
     - [arm64] vdso: Pass (void *) to virt_to_page()
     - wifi: mac80211: simplify chanctx allocation
     - wifi: mac80211: consider reserved chanctx for mindef
     - wifi: mac80211: recalc chanctx mindef before assigning
     - wifi: iwlwifi: mvm: Add locking to the rate read flow
     - scsi: core: Decrease scsi_device's iorequest_cnt if dispatch failed
     - nvme-multipath: don't call blk_mark_disk_dead in nvme_mpath_remove_disk
     - nvme: do not let the user delete a ctrl before a complete initialization
     - [arm64] drm/msm: Be more shouty if per-process pgtables aren't working
     - ceph: silence smatch warning in reconnect_caps_cb()
     - drm/amdgpu: skip disabling fence driver src_irqs when device is unplugged
     - nvme-pci: Add quirk for Teamgroup MP33 SSD
     - block: Deny writable memory mapping if block is read-only
     - [arm64] KVM: arm64: vgic: Fix a circular locking issue
     - [arm64] KVM: arm64: vgic: Wrap vgic_its_create() with config_lock
     - [arm64] KVM: arm64: vgic: Fix locking comment
     - drivers: base: cacheinfo: Fix shared_cpu_map changes in event of CPU
       hotplug
     - media: uvcvideo: Don't expose unsupported formats to userspace
     - iio: accel: st_accel: Fix invalid mount_matrix on devices without ACPI
       _ONT method
     - HID: google: add jewel USB id
     - HID: wacom: avoid integer overflow in wacom_intuos_inout()
     - iio: imu: inv_icm42600: fix timestamp reset
     - iio: light: vcnl4035: fixed chip ID check
     - iio: adc: ad_sigma_delta: Fix IRQ issue by setting IRQ_DISABLE_UNLAZY flag
     - iio: dac: mcp4725: Fix i2c_master_send() return value handling
     - iio: adc: ad7192: Change "shorted" channels to differential
     - net: usb: qmi_wwan: Set DTR quirk for BroadMobi BM818
     - usb: gadget: f_fs: Add unbind event before functionfs_unbind
     - md/raid5: fix miscalculation of 'end_sector' in raid5_read_one_chunk()
     - ata: libata-scsi: Use correct device no in ata_find_dev()
     - drm/amdgpu: enable tmz by default for GC 11.0.1
     - drm/amd/pm: reverse mclk and fclk clocks levels for SMU v13.0.4
     - drm/amd/pm: reverse mclk and fclk clocks levels for vangogh
     - drm/amd/pm: resolve reboot exception for si oland
     - drm/amd/pm: reverse mclk clocks levels for SMU v13.0.5
     - drm/amd/pm: reverse mclk and fclk clocks levels for yellow carp
     - drm/amd/pm: reverse mclk and fclk clocks levels for renoir
     - [x86] mtrr: Revert 90b926e68f50 ("x86/pat: Fix pat_x_mtrr_type() for MTRR
       disabled case")
     - mmc: vub300: fix invalid response handling
     - [armhf] mmc: pwrseq: sd8787: Fix WILC CHIP_EN and RESETN toggling order
     - [arm64] tty: serial: fsl_lpuart: use UARTCTRL_TXINV to send break instead
       of UARTCTRL_SBK
     - btrfs: fix csum_tree_block page iteration to avoid tripping on
       -Werror=array-bounds
     - [arm64] phy: qcom-qmp-combo: fix init-count imbalance
     - [arm64] phy: qcom-qmp-pcie-msm8996: fix init-count imbalance
     - block: fix revalidate performance regression
     - [powerpc*] iommu: Limit number of TCEs to 512 for H_STUFF_TCE hcall
     - [amd64] iommu/amd: Fix domain flush size when syncing iotlb
     - tpm, tpm_tis: correct tpm_tis_flags enumeration values
     - io_uring: undeprecate epoll_ctl support
     - mtdchar: mark bits of ioctl handler noinline
     - [rt] tracing/timerlat: Always wakeup the timerlat thread
     - tracing/histograms: Allow variables to have some modifiers
     - tracing/probe: trace_probe_primary_from_call(): checked list_first_entry
     - mptcp: fix connect timeout handling
     - mptcp: fix active subflow finalization
     - ext4: add EA_INODE checking to ext4_iget()
     - ext4: disallow ea_inodes with extended attributes
     - fbcon: Fix null-ptr-deref in soft_cursor
     - [arm64,armhf] serial: 8250_tegra: Fix an error handling path in
       tegra_uart_probe()
     - [powerpc*] xmon: Use KSYM_NAME_LEN in array size
     - [arm64] KVM: arm64: Populate fault info for watchpoint
     - [x86] KVM: x86: Account fastpath-only VM-Exits in vCPU stats
     - ksmbd: fix credit count leakage
     - ksmbd: fix UAF issue from opinfo->conn
     - ksmbd: fix incorrect AllocationSize set in smb2_get_info
     - ksmbd: fix slab-out-of-bounds read in smb2_handle_negotiate
     - ksmbd: fix multiple out-of-bounds read during context decoding
     - KEYS: asymmetric: Copy sig and digest in public_key_verify_signature()
     - fs/ntfs3: Validate MFT flags before replaying logs (CVE-2022-48425)
     - regmap: Account for register length when chunking
     - tpm, tpm_tis: Request threaded interrupt handler
     - [amd64] iommu/amd/pgtbl_v2: Fix domain max address
     - drm/amd/display: Have Payload Properly Created After Resume
     - xfs: verify buffer contents when we skip log replay (CVE-2023-2124)
     - tls: rx: strp: don't use GFP_KERNEL in softirq context
     - [arm64] efi: Use SMBIOS processor version to key off Ampere quirk
     - ext4: enable the lazy init thread when remounting read/write
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.34
     - scsi: megaraid_sas: Add flexible array member for SGLs
     - net: sfp: fix state loss when updating state_hw_mask
     - [x86] platform/surface: aggregator: Allow completion work-items to be
       executed in parallel
     - [x86] platform/surface: aggregator_tabletsw: Add support for book mode in
       KIP subsystem
     - [arm64] spi: qup: Request DMA before enabling clocks
     - afs: Fix setting of mtime when creating a file/dir/symlink
     - wifi: mt76: mt7615: fix possible race in mt7615_mac_sta_poll
     - bpf, sockmap: Avoid potential NULL dereference in
       sk_psock_verdict_data_ready()
     - neighbour: fix unaligned access to pneigh_entry
     - net/ipv4: ping_group_range: allow GID from 2147483648 to 4294967294
     - bpf: Fix UAF in task local storage
     - bpf: Fix elem_size not being set for inner maps
     - net/ipv6: fix bool/int mismatch for skip_notify_on_dev_down
     - net/smc: Avoid to access invalid RMBs' MRs in SMCRv1 ADD LINK CONT
     - [arm64] net: enetc: correct the statistics of rx bytes
     - [arm64] net: enetc: correct rx_bytes statistics of XDP
     - net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
     - [x86] drm/i915: Explain the magic numbers for AUX SYNC/precharge length
     - [x86] drm/i915: Use 18 fast wake AUX sync len
     - Bluetooth: hci_sync: add lock to protect HCI_UNREGISTER
     - Bluetooth: Fix l2cap_disconnect_req deadlock
     - Bluetooth: ISO: don't try to remove CIG if there are bound CIS left
     - Bluetooth: L2CAP: Add missing checks for invalid DCID
     - wifi: mac80211: use correct iftype HE cap
     - wifi: cfg80211: reject bad AP MLD address
     - wifi: mac80211: mlme: fix non-inheritence element
     - wifi: mac80211: don't translate beacon/presp addrs
     - qed/qede: Fix scheduling while atomic
     - wifi: cfg80211: fix locking in sched scan stop work
     - netfilter: nft_bitwise: fix register tracking
     - netfilter: conntrack: fix NULL pointer dereference in nf_confirm_cthelper
     - netfilter: ipset: Add schedule point in call_ad().
     - netfilter: nf_tables: out-of-bound check in chain blob
     - ipv6: rpl: Fix Route of Death. (CVE-2023-2156)
     - tcp: gso: really support BIG TCP
     - rfs: annotate lockless accesses to sk->sk_rxhash
     - rfs: annotate lockless accesses to RFS sock flow table
     - net: sched: add rcu annotations around qdisc->qdisc_sleeping
     - net: sched: move rtm_tca_policy declaration to include file
     - net: sched: act_police: fix sparse errors in tcf_police_dump()
     - net: sched: fix possible refcount leak in tc_chain_tmplt_add()
     - bpf: Add extra path pointer check to d_path helper
     - drm/amdgpu: fix Null pointer dereference error in
       amdgpu_device_recover_vram
     - lib: cpu_rmap: Fix potential use-after-free in irq_cpu_rmap_release()
     - [arm64] net: bcmgenet: Fix EEE implementation
     - bnxt_en: Don't issue AP reset during ethtool's reset operation
     - bnxt_en: Query default VLAN before VNIC setup on a VF
     - bnxt_en: Skip firmware fatal error recovery if chip is not accessible
     - bnxt_en: Prevent kernel panic when receiving unexpected PHC_UPDATE event
     - bnxt_en: Implement .set_port / .unset_port UDP tunnel callbacks
     - batman-adv: Broken sync while rescheduling delayed work
     - Input: xpad - delete a Razer DeathAdder mouse VID/PID entry
     - Input: psmouse - fix OOB access in Elantech protocol
     - Input: fix open count when closing inhibited device
     - ALSA: hda: Fix kctl->id initialization
     - ALSA: ymfpci: Fix kctl->id initialization
     - [i386] ALSA: gus: Fix kctl->id initialization
     - ALSA: cmipci: Fix kctl->id initialization
     - [x86] ALSA: hda/realtek: Add quirk for Clevo NS50AU
     - ALSA: ice1712,ice1724: fix the kcontrol->id initialization
     - [x86] ALSA: hda/realtek: Add a quirk for HP Slim Desktop S01
     - [x86] ALSA: hda/realtek: Add Lenovo P3 Tower platform
     - [x86] ALSA: hda/realtek: Add quirks for Asus ROG 2024 laptops using
       CS35L41
     - [x86] drm/i915/gt: Use the correct error value when kernel_context() fails
     - drm/amd/pm: conditionally disable pcie lane switching for some
       sienna_cichlid SKUs
     - drm/amdgpu: fix xclk freq on CHIP_STONEY
     - drm/amdgpu: change reserved vram info print
     - drm/amd/pm: Fix power context allocation in SMU13
     - drm/amd/display: Reduce sdp bw after urgent to 90%
     - wifi: iwlwifi: mvm: Fix -Warray-bounds bug in iwl_mvm_wait_d3_notif()
     - can: j1939: j1939_sk_send_loop_abort(): improved error queue handling in
       J1939 Socket
     - can: j1939: change j1939_netdev_lock type to mutex
     - can: j1939: avoid possible use-after-free when j1939_can_rx_register fails
     - mptcp: only send RM_ADDR in nl_cmd_remove
     - mptcp: add address into userspace pm list
     - mptcp: update userspace pm infos
     - ceph: fix use-after-free bug for inodes when flushing capsnaps
     - [s390x] dasd: Use correct lock while counting channel queue length
     - Bluetooth: Fix use-after-free in hci_remove_ltk/hci_remove_irk
     - Bluetooth: fix debugfs registration
     - Bluetooth: hci_qca: fix debugfs registration
     - rbd: move RBD_OBJ_FLAG_COPYUP_ENABLED flag setting
     - rbd: get snapshot context after exclusive lock is ensured to be held
     - virtio_net: use control_buf for coalesce params
     - [arm64] pinctrl: meson-axg: add missing GPIOA_18 gpio group
     - usb: usbfs: Enforce page requirements for mmap
     - usb: usbfs: Use consistent mmap functions
     - [arm64] dts: imx8qm-mek: correct GPIOs for USDHC2 CD and WP signals
     - [arm*] ASoC: simple-card-utils: fix PCM constraint error check
     - blk-mq: fix blk_mq_hw_ctx active request accounting
     - [arm64] dts: imx8mn-beacon: Fix SPI CS pinmux
     - [arm*] i2c: mv64xxx: Fix reading invalid status value in atomic mode
     - soundwire: stream: Add missing clear of alloc_slave_rt
     - vhost: support PACKED when setting-getting vring_base
     - ksmbd: fix out-of-bound read in deassemble_neg_contexts()
     - ksmbd: fix out-of-bound read in parse_lease_state()
     - ksmbd: check the validation of pdu_size in ksmbd_conn_handler_loop
     - ext4: only check dquot_initialize_needed() when debugging
     - wifi: rtw89: correct PS calculation for SUPPORTS_DYNAMIC_PS
     - wifi: rtw88: correct PS calculation for SUPPORTS_DYNAMIC_PS
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.35
     - [amd64] x86/head/64: Switch to KERNEL_CS as soon as new GDT is installed
     - cgroup: bpf: use cgroup_lock()/cgroup_unlock() wrappers
     - cgroup: always put cset in cgroup_css_set_put_fork
     - cgroup: fix missing cpus_read_{lock,unlock}() in cgroup_transfer_tasks()
     - EDAC/qcom: Get rid of hardcoded register offsets
     - ksmbd: validate smb request protocol id
     - of: overlay: Fix missing of_node_put() in error case of
       init_overlay_changeset()
     - power: supply: bq27xxx: Use mod_delayed_work() instead of cancel() +
       schedule()
     - [armhf] dts: vexpress: add missing cache properties
     - power: supply: Ratelimit no data debug output
     - PCI/DPC: Quirk PIO log size for Intel Ice Lake Root Ports
     - [x86] platform/x86: asus-wmi: Ignore WMI events with codes 0x7B, 0xC0
     - regulator: Fix error checking for debugfs_create_dir
     - [arm64,armhf] irqchip/gic-v3: Disable pseudo NMIs on Mediatek devices w/
       firmware issues
     - [arm64,armhf] irqchip/meson-gpio: Mark OF related data as maybe unused
     - power: supply: Fix logic checking if system is running from battery
     - drm: panel-orientation-quirks: Change Air's quirk to support Air Plus
     - btrfs: scrub: try harder to mark RAID56 block groups read-only
     - btrfs: handle memory allocation failure in btrfs_csum_one_bio
     - ASoC: soc-pcm: test if a BE can be prepared
     - [mips*] unhide PATA_PLATFORM
     - [mips*] Restore Au1300 support
     - [mips*] Move initrd_start check after initrd address sanitisation.
     - ASoC: cs35l41: Fix default regmap values for some registers
     - ASoC: dwc: move DMA init to snd_soc_dai_driver probe()
     - xen/blkfront: Only check REQ_FUA for writes
     - drm:amd:amdgpu: Fix missing buffer object unlock in failure path
     - io_uring: unlock sqd->lock before sq thread release CPU
     - NVMe: Add MAXIO 1602 to bogus nid list.
     - [arm64,armhf] irqchip/gic: Correctly validate OF quirk descriptors
     - wifi: cfg80211: fix locking in regulatory disconnect
     - wifi: cfg80211: fix double lock bug in reg_wdev_chan_valid()
     - epoll: ep_autoremove_wake_function should use list_del_init_careful
     - ocfs2: fix use-after-free when unmounting read-only filesystem
     - ocfs2: check new file size on fallocate call
     - zswap: do not shrink if cgroup may not zswap
     - nilfs2: fix incomplete buffer cleanup in nilfs_btnode_abort_change_key()
     - nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
     - nilfs2: reject devices with insufficient block count
     - io_uring/net: save msghdr->msg_control for retries
     - kexec: support purgatories with .text.hot sections
     - [x86] purgatory: remove PGO flags
     - [powerpc*] purgatory: remove PGO flags
     - btrfs: do not ASSERT() on duplicated global roots
     - btrfs: fix iomap_begin length for nocow writes
     - btrfs: can_nocow_file_extent should pass down args->strict from callers
     - ALSA: usb-audio: Fix broken resume due to UAC3 power state
     - ALSA: usb-audio: Add quirk flag for HEM devices to enable native DSD
       playback
     - dm thin metadata: check fail_io before using data_sm
     - dm thin: fix issue_discard to pass GFP_NOIO to __blkdev_issue_discard
     - net: ethernet: stmicro: stmmac: fix possible memory leak in __stmmac_open
     - nouveau: fix client work fence deletion race
     - RDMA/uverbs: Restrict usage of privileged QKEYs
     - drm/amdgpu: vcn_4_0 set instance 0 init sched score to 1
     - net: usb: qmi_wwan: add support for Compal RXM-G1
     - drm/amd/display: edp do not add non-edid timings
     - drm/amd: Make sure image is written to trigger VBIOS image update flow
     - drm/amd: Tighten permissions on VBIOS flashing attributes
     - drm/amd/pm: workaround for compute workload type on some skus
     - drm/amdgpu: add missing radeon secondary PCI ID
     - ALSA: hda/realtek: Add a quirk for Compaq N14JP6
     - [x86] thunderbolt: Do not touch CL state configuration during discovery
     - [x86] thunderbolt: dma_test: Use correct value for absent rings when
       creating paths
     - [x86] thunderbolt: Mask ring interrupt on Intel hardware as well
     - USB: serial: option: add Quectel EM061KGL series
     - usb: typec: ucsi: Fix command cancellation
     - usb: typec: Fix fast_role_swap_current show function
     - usb: gadget: udc: core: Offload usb_udc_vbus_handler processing
     - usb: gadget: udc: core: Prevent soft_connect_store() race
     - [arm64] USB: dwc3: qcom: fix NULL-deref on suspend
     - [arm64,armhf] USB: dwc3: fix use-after-free on core driver unbind
     - [arm64,armhf] usb: dwc3: gadget: Reset num TRBs before giving back the
       request
     - RDMA/rxe: Fix packet length checks
     - RDMA/rxe: Fix ref count error in check_rkey()
     - spi: cadence-quadspi: Add missing check for dma_set_mask
     - [arm64] spi: fsl-dspi: avoid SCK glitches with continuous transfers
     - netfilter: nf_tables: integrate pipapo into commit protocol
     - netfilter: nfnetlink: skip error delivery on batch in case of ENOMEM
     - ice: Fix XDP memory leak when NIC is brought up and down
     - netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
       (CVE-2023-3390)
     - [arm64] net: enetc: correct the indexes of highest and 2nd highest TCs
     - ping6: Fix send to link-local addresses with VRF.
     - igb: Fix extts capture value format for 82580/i354/i350
     - net/sched: simplify tcf_pedit_act
     - net/sched: act_pedit: remove extra check for key type
     - net/sched: act_pedit: Parse L3 Header for L4 offset
     - net/sched: cls_u32: Fix reference counter leak leading to overflow
     - wifi: mac80211: fix link activation settings order
     - wifi: cfg80211: fix link del callback to call correct handler
     - wifi: mac80211: take lock before setting vif links
     - RDMA/rxe: Removed unused name from rxe_task struct
     - RDMA/rxe: Fix the use-before-initialization error of resp_pkts
     - iavf: remove mask from iavf_irq_enable_queues()
     - RDMA/mlx5: Initiate dropless RQ for RAW Ethernet functions
     - RDMA/mlx5: Create an indirect flow table for steering anchor
     - RDMA/cma: Always set static rate to 0 for RoCE
     - IB/uverbs: Fix to consider event queue closing also upon non-blocking mode
     - RDMA/mlx5: Fix affinity assignment
     - IB/isert: Fix dead lock in ib_isert
     - IB/isert: Fix possible list corruption in CMA handler
     - IB/isert: Fix incorrect release of isert connection
     - net: ethtool: correct MAX attribute value for stats
     - ipvlan: fix bound dev checking for IPv6 l3s mode
     - sctp: fix an error code in sctp_sf_eat_auth()
     - igc: Clean the TX buffer and TX descriptor ring
     - igc: Fix possible system crash when loading module
     - igb: fix nvm.ops.read() error handling
     - net: phylink: report correct max speed for QUSGMII
     - net: phylink: use a dedicated helper to parse usgmii control word
     - drm/nouveau: don't detect DSM for non-NVIDIA device
     - [arm64] drm/bridge: ti-sn65dsi86: Avoid possible buffer overflow
     - drm/nouveau/dp: check for NULL nv_connector->native_mode
     - drm/nouveau: add nv_encoder pointer check for NULL
     - sched: add new attr TCA_EXT_WARN_MSG to report tc extact message
     - net/sched: Refactor qdisc_graft() for ingress and clsact Qdiscs
     - net/sched: qdisc_destroy() old ingress and clsact Qdiscs before grafting
     - cifs: fix lease break oops in xfstest generic/098
     - ext4: drop the call to ext4_error() from ext4_get_group_info()
     - net/sched: cls_api: Fix lockup on flushing explicitly created chain
     - [arm64] net: dsa: felix: fix taprio guard band overflow at 10Mbps with
       jumbo frames
     - net: macsec: fix double free of percpu stats
     - sfc: fix XDP queues mode with legacy IRQ
     - dm: don't lock fs when the map is NULL during suspend or resume
     - net: tipc: resize nlattr array to correct size
     - afs: Fix vlserver probe RTT handling
     - rcu/kvfree: Avoid freeing new kfree_rcu() memory after old grace period
     - drm/amdgpu: Don't set struct drm_driver.output_poll_changed
     - net/sched: act_api: move TCA_EXT_WARN_MSG to the correct hierarchy
     - Revert "net/sched: act_api: move TCA_EXT_WARN_MSG to the correct
       hierarchy"
     - net/sched: act_api: add specific EXT_WARN_MSG for tc action
     - neighbour: delete neigh_lookup_nodev as not used
     - scsi: target: core: Fix error path in target_setup_session()
     - [mips*] Move '-Wa,-msoft-float' check from as-option to cc-option
     - [mips*] Prefer cc-option for additions to cflags
     - kbuild: Update assembler calls to use proper flags and language target
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.36
     - drm/amd/display: Use dc_update_planes_and_stream
     - drm/amd/display: Add wrapper to call planes and stream update
     - drm/amd/display: fix the system hang while disable PSR
     - [arm64] tty: serial: fsl_lpuart: make rx_watermark configurable for
       different platforms
     - [arm64] tty: serial: fsl_lpuart: reduce RX watermark to 0 on LS1028A
     - ata: libata-scsi: Avoid deadlock on rescan after device resume
     - mm: Fix copy_from_user_nofault(). (Closes: #1033398)
     - tpm, tpm_tis: Claim locality in interrupt handler
     - tpm_crb: Add support for CRB devices based on Pluton
     - ksmbd: validate command payload size
     - ksmbd: fix out-of-bound read in smb2_write
     - ksmbd: validate session id and tree id in the compound request
     - tick/common: Align tick period during sched_timer setup (Closes: #1038754)
     - writeback: fix dereferencing NULL mapping->host on writeback_page_template
     - nilfs2: fix buffer corruption due to concurrent device reads
     - [x86] ACPI: sleep: Avoid breaking S3 wakeup due to might_sleep()
     - KVM: Avoid illegal stage2 mapping on invalid memory slot
     - Drivers: hv: vmbus: Call hv_synic_free() if hv_synic_alloc() fails
     - Drivers: hv: vmbus: Fix vmbus_wait_for_unload() to scan present CPUs
     - PCI: hv: Fix a race condition bug in hv_pci_query_relations()
     - Revert "PCI: hv: Fix a timing issue which causes kdump to fail
       occasionally"
     - PCI: hv: Remove the useless hv_pcichild_state from struct hv_pci_dev
     - PCI: hv: Fix a race condition in hv_irq_unmask() that can cause panic
     - PCI: hv: Add a per-bus mutex state_lock
     - io_uring/net: clear msg_controllen on partial sendmsg retry
     - io_uring/net: disable partial retries for recvmsg with cmsg
     - mptcp: handle correctly disconnect() failures
     - mptcp: fix possible divide by zero in recvmsg()
     - mptcp: fix possible list corruption on passive MPJ
     - mptcp: consolidate fallback and non fallback state machine
     - cgroup: Do not corrupt task iteration when rebinding subsystem
     - cgroup,freezer: hold cpu_hotplug_lock before freezer_mutex in
       freezer_css_{online,offline}()
     - [arm64] mmc: sdhci-msm: Disable broken 64-bit DMA on MSM8916
     - [arm64] mmc: meson-gx: remove redundant mmc_request_done() call from irq
       context
     - [arm64,armhf] mmc: mmci: stm32: fix max busy timeout calculation
     - [arm64,armhf] mmc: bcm2835: fix deferred probing
     - [arm64,armhf] mmc: sunxi: fix deferred probing
     - bpf: ensure main program has an extable
     - wifi: iwlwifi: pcie: Handle SO-F device for PCI id 0x7AF0
     - io_uring/poll: serialize poll linked timer start with poll removal
     - nilfs2: prevent general protection fault in nilfs_clear_dirty_page()
     - [x86] mm: Avoid using set_pgd() outside of real PGD pages
     - memfd: check for non-NULL file_seals in memfd_create() syscall
     - [arm64] mmc: meson-gx: fix deferred probing
     - ieee802154: hwsim: Fix possible memory leaks
     - xfrm: Treat already-verified secpath entries as optional
     - xfrm: interface: rename xfrm_interface.c to xfrm_interface_core.c
     - xfrm: Ensure policies always checked on XFRM-I input path
     - [arm64] KVM: arm64: PMU: Restore the host's PMUSERENR_EL0
     - bpf: track immediate values written to stack by BPF_ST instruction
     - bpf: Fix verifier id tracking of scalars on spill
     - xfrm: fix inbound ipv4/udp/esp packets to UDPv6 dualstack sockets
     - bpf: Fix a bpf_jit_dump issue for x86_64 with sysctl bpf_jit_enable.
     - xfrm: Linearize the skb after offloading if needed.
     - net/mlx5: DR, Fix wrong action data allocation in decap action
     - sfc: use budget for TX completions
     - [armel,armhf] mmc: mvsdio: fix deferred probing
     - [armhf] mmc: omap: fix deferred probing
     - [armhf] mmc: omap_hsmmc: fix deferred probing
     - mmc: sdhci-acpi: fix deferred probing
     - ipvs: align inner_mac_header for encapsulation
     - be2net: Extend xmit workaround to BE3 chip
     - netfilter: nf_tables: fix chain binding transaction logic
     - netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound
       set/chain
     - netfilter: nf_tables: drop map element references from preparation phase
     - netfilter: nft_set_pipapo: .walk does not deal with generations
     - netfilter: nf_tables: disallow element updates of bound anonymous sets
     - netfilter: nf_tables: reject unbound anonymous set before commit phase
     - netfilter: nf_tables: reject unbound chain set before commit phase
     - netfilter: nf_tables: disallow updates of anonymous sets
     - netfilter: nfnetlink_osf: fix module autoload
     - Revert "net: phy: dp83867: perform soft reset and retain established link"
     - bpf/btf: Accept function names that contain dots
     - bpf: Force kprobe multi expected_attach_type for kprobe_multi link
     - io_uring/net: use the correct msghdr union member in io_sendmsg_copy_hdr
     - sch_netem: acquire qdisc lock in netem_change()
     - revert "net: align SO_RCVMARK required privileges with SO_MARK"
     - [arm64] dts: rockchip: fix nEXTRST on SOQuartz
     - gpiolib: Fix GPIO chip IRQ initialization restriction
     - gpiolib: Fix irq_domain resource tracking for
       gpiochip_irqchip_add_domain()
     - scsi: target: iscsi: Prevent login threads from racing between each other
     - HID: wacom: Add error check to wacom_parse_and_register()
     - smb3: missing null check in SMB2_change_notify
     - media: cec: core: disable adapter in cec_devnode_unregister
     - media: cec: core: don't set last_initiator if tx in progress
     - nfcsim.c: Fix error checking for debugfs_create_dir
     - btrfs: fix an uninitialized variable warning in btrfs_log_inode
     - [i386] usb: gadget: udc: fix NULL dereference in remove()
     - nvme: double KA polling frequency to avoid KATO with TBKAS on
     - nvme: check IO start time when deciding to defer KA
     - nvme: improve handling of long keep alives
     - [x86] Input: soc_button_array - add invalid acpi_index DMI quirk handling
     - [s390x] cio: unregister device when the only path is gone
     - [arm*] ASoC: simple-card: Add missing of_node_put() in case of error
     - soundwire: dmi-quirks: add new mapping for HP Spectre x360
     - soundwire: qcom: add proper error paths in qcom_swrm_startup()
     - [x86] ASoC: nau8824: Add quirk to active-high jack-detect
     - [x86] ASoC: amd: yc: Add Thinkpad Neo14 to quirks list for acp6x
     - gfs2: Don't get stuck writing page onto itself under direct I/O
     - [arm64] ASoC: fsl_sai: Enable BCI bit if SAI works on synchronous mode
       with BYP asserted
     - ALSA: hda/realtek: Add "Intel Reference board" and "NUC 13" SSID in the
       ALC256
     - i2c: mchp-pci1xxxx: Avoid cast to incompatible function type
     - null_blk: Fix: memory release when memory_backed=1
     - drm/radeon: fix race condition UAF in radeon_gem_set_domain_ioctl
     - vhost_net: revert upend_idx only on retriable error
     - [arm64] KVM: arm64: Restore GICv2-on-GICv3 functionality
     - [x86] apic: Fix kernel panic when booting with intremap=off and
       x2apic_phys
     - [arm64] i2c: imx-lpi2c: fix type char overflow issue when calculating the
       clock cycle
     - smb: move client and server files to common directory fs/smb
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.37
     - mm/mmap: Fix error path in do_vmi_align_munmap()
     - mm/mmap: Fix error return in do_vmi_align_munmap()
     - mptcp: ensure listener is unhashed before updating the sk status
     - mm, hwpoison: try to recover from copy-on write faults
     - mm, hwpoison: when copy-on-write hits poison, take page offline
     - [x86] microcode/AMD: Load late on both threads too
     - [x86] smp: Make stop_other_cpus() more robust
     - [x86] smp: Dont access non-existing CPUID leaf
     - [x86] smp: Remove pointless wmb()s from native_stop_other_cpus()
     - [x86] smp: Use dedicated cache-line for mwait_play_dead()
     - [x86] smp: Cure kexec() vs. mwait_play_dead() breakage
     - can: isotp: isotp_sendmsg(): fix return error fix on TX path
     - maple_tree: fix potential out-of-bounds access in mas_wr_end_piv()
     - mm: introduce new 'lock_mm_and_find_vma()' page fault helper
     - mm: make the page fault mmap locking killable
     - [arm64] mm: Convert to using lock_mm_and_find_vma()
     - [powerpc*] mm: Convert to using lock_mm_and_find_vma()
     - [mips*] mm: Convert to using lock_mm_and_find_vma()
     - [armhf] mm: Convert to using lock_mm_and_find_vma()
     - mm/fault: convert remaining simple cases to lock_mm_and_find_vma()
     - [powerpc*] mm: convert coprocessor fault to lock_mm_and_find_vma()
     - mm: make find_extend_vma() fail if write lock not held
     - execve: expand new process stack manually ahead of time
     - mm: always expand the stack with the mmap write lock held
     - fbdev: fix potential OOB read in fast_imageblit()
     - HID: hidraw: fix data race on device refcount
     - HID: wacom: Use ktime_t rather than int when dealing with timestamps
     - HID: logitech-hidpp: add HIDPP_QUIRK_DELAYED_INIT for the T651.
       (Closes: #1038271)
 .
   [ Salvatore Bonaccorso ]
   * d/salsa-ci.yml: Update for bookworm: Set RELEASE to bookworm
   * d/rules.real: Fix typo in setup_image target.
   * [amd64,arm64] drivers/virtio: Enable VIRTIO_MEM as module (Closes: #1038665)
   * Bump ABI to 10
   * [rt] Update to 6.1.33-rt11
   * Revert "drm/amd/display: edp do not add non-edid timings"
 .
   [ Cyril Brulebois ]
   * udeb: Add r8188eu to nic-wireless-modules (Closes: #1035824)
 .
   [ Ben Hutchings ]
   * Add pkg.linux.mintools profile for building minimal userland tools
   * d/b/test-patches: Build linux-{kbuild,bootwrapper} packages
     (Closes: #871216, #1035359)

linux-signed-arm64 (6.1.38+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.38-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.38
     - drm/amd/display: Remove optimization for VRR updates
     - drm/amd/display: Do not update DRR while BW optimizations pending
     - PCI/ACPI: Validate acpi_pci_set_power_state() parameter
     - PCI/ACPI: Call _REG when transitioning D-states
     - execve: always mark stack as growing down during early stack setup
     - perf symbols: Symbol lookup with kcore can fail if multiple segments match
       stext
     - scripts/tags.sh: Resolve gtags empty index generation
     - drm/amdgpu: Validate VM ioctl flags.
     - drm/amd/display: Ensure vmin and vmax adjust for DCE
 .
   [ Salvatore Bonaccorso ]
   * drm: use mgr->dev in drm_dbg_kms in drm_dp_add_payload_part2
   * mm/mmap: Fix VM_LOCKED check in do_vmi_align_munmap()
   * netfilter: nf_tables: do not ignore genmask when looking up chain by id
     (CVE-2023-31248)
   * netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
     (CVE-2023-35001)
linux-signed-arm64 (6.1.37+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.37-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.28
     - [x86] ASOC: Intel: sof_sdw: add quirk for Intel 'Rooks County' NUC M15
     - [x86] ASoC: Intel: soc-acpi: add table for Intel 'Rooks County' NUC M15
     - ASoC: soc-pcm: fix hw->formats cleared by soc_pcm_hw_init() for dpcm
     - [x86] hyperv: Block root partition functionality in a Confidential VM
     - [x86] ASoC: amd: yc: Add DMI entries to support Victus by HP Laptop
       16-e1xxx (8A22)
     - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for the Acer Iconia One 7
       B1-750
     - [x86] ASoC: da7213.c: add missing pm_runtime_disable()
     - scsi: mpi3mr: Handle soft reset in progress fault code (0xF002)
     - net: sfp: add quirk enabling 2500Base-x for HG MXPD-483II
     - [x86] platform/x86: thinkpad_acpi: Add missing T14s Gen1 type to s2idle
       quirk list
     - wifi: ath11k: reduce the MHI timeout to 20s
     - tracing: Error if a trace event has an array for a __field()
     - [x86] cpu: Add model number for Intel Arrow Lake processor
     - wireguard: timers: cast enum limits members to int in prints
     - wifi: mt76: mt7921e: Set memory space enable in PCI_COMMAND if unset
     - [arm64] Always load shadow stack pointer directly from the task struct
     - [arm64] Stash shadow stack pointer in the task struct on interrupt
     - PCI: pciehp: Fix AB-BA deadlock between reset_lock and device_lock
     - [arm64] PCI: qcom: Fix the incorrect register usage in v2.7.0 config
     - [arm64] phy: qcom-qmp-pcie: sc8180x PCIe PHY has 2 lanes
     - [arm64,armhf] usb: dwc3: gadget: Stall and restart EP0 if host is
       unresponsive
     - [arm64,armhf] USB: dwc3: fix runtime pm imbalance on probe errors
     - [arm64,armhf] USB: dwc3: fix runtime pm imbalance on unbind
     - [x86] hwmon: (k10temp) Check range scale when CUR_TEMP register is
       read-write
     - hwmon: (adt7475) Use device_property APIs when configuring polarity
     - tpm: Add !tpm_amd_is_rng_defective() to the hwrng_unregister() call site
     - posix-cpu-timers: Implement the missing timer_wait_running callback
     - blk-stat: fix QUEUE_FLAG_STATS clear
     - blk-crypto: don't use struct request_queue for public interfaces
     - blk-crypto: add a blk_crypto_config_supported_natively helper
     - blk-crypto: move internal only declarations to blk-crypto-internal.h
     - blk-crypto: Add a missing include directive
     - blk-mq: release crypto keyslot before reporting I/O complete
     - blk-crypto: make blk_crypto_evict_key() return void
     - blk-crypto: make blk_crypto_evict_key() more robust
     - tty: Prevent writing chars during tcsetattr TCSADRAIN/FLUSH
     - xhci: fix debugfs register accesses while suspended
     - serial: fix TIOCSRS485 locking
     - serial: 8250: Fix serial8250_tx_empty() race with DMA Tx
     - tick/nohz: Fix cpu_is_hotpluggable() by checking with nohz subsystem
     - fs: fix sysctls.c built
     - [mips*] fw: Allow firmware to pass a empty env
     - ipmi:ssif: Add send_retries increment
     - ipmi: fix SSIF not responding under certain cond.
     - wifi: mt76: add missing locking to protect against concurrent rx/status
       calls
     - [arm64,armhf] pwm: meson: Fix axg ao mux parents
     - [arm64,armhf] pwm: meson: Fix g12a ao clk81 name
     - soundwire: qcom: correct setting ignore bit on v1.5.1
     - ring-buffer: Ensure proper resetting of atomic variables in
       ring_buffer_reset_online_cpus
     - ring-buffer: Sync IRQ works before buffer destruction
     - crypto: api - Demote BUG_ON() in crypto_unregister_alg() to a WARN_ON()
     - [arm64] crypto: safexcel - Cleanup ring IRQ workqueues on load failure
     - [x86] crypto: ccp - Don't initialize CCP for PSP 0x1649
     - rcu: Avoid stack overflow due to __rcu_irq_enter_check_tick() being
       kprobe-ed
     - reiserfs: Add security prefix to xattr name in reiserfs_security_write()
     - [x86] KVM: nVMX: Emulate NOPs in L2, and PAUSE if it's not intercepted
     - [arm64] KVM: arm64: Avoid vcpu->mutex v. kvm->lock inversion in CPU_ON
     - [arm64] KVM: arm64: Avoid lock inversion when setting the VM register
       width
     - [arm64] KVM: arm64: Use config_lock to protect data ordered against
       KVM_RUN
     - [arm64] KVM: arm64: Use config_lock to protect vgic state
     - [arm64] KVM: arm64: vgic: Don't acquire its_lock before config_lock
     - relayfs: fix out-of-bounds access in relay_file_read (CVE-2023-3268)
     - drm/amd/display: Remove stutter only configurations
     - drm/amd/display: limit timing for single dimm memory
     - drm/amd/display: fix PSR-SU/DSC interoperability support
     - drm/amd/display: fix a divided-by-zero error
     - ksmbd: fix racy issue under cocurrent smb2 tree disconnect
       (CVE-2023-32254)
     - ksmbd: call rcu_barrier() in ksmbd_server_exit()
     - ksmbd: fix NULL pointer dereference in smb2_get_info_filesystem()
     - ksmbd: fix memleak in session setup
     - ksmbd: not allow guest user on multichannel
     - ksmbd: fix deadlock in ksmbd_find_crypto_ctx()
     - [x86] ACPI: video: Remove acpi_backlight=video quirk for Lenovo ThinkPad
       W530
     - [arm64,armhf] i2c: omap: Fix standard mode false ACK readings
     - tracing: Fix permissions for the buffer_percent file
     - swsmu/amdgpu_smu: Fix the wrong if-condition
     - drm/amd/pm: re-enable the gfx imu when smu resume
     - [amd64] iommu/amd: Fix "Guest Virtual APIC Table Root Pointer"
       configuration in IRTE
     - Revert "ubifs: dirty_cow_znode: Fix memleak in error handling path"
     - ubifs: Fix memleak when insert_old_idx() failed
     - ubi: Fix return value overwrite issue in try_write_vid_and_data()
     - ubifs: Free memory for tmpfile name
     - ubifs: Fix memory leak in do_rename
     - ceph: fix potential use-after-free bug when trimming caps
     - xfs: don't consider future format versions valid
     - cxl/hdm: Fail upon detecting 0-sized decoders
     - bus: mhi: host: Remove duplicate ee check for syserr
     - bus: mhi: host: Use mhi_tryset_pm_state() for setting fw error state
     - bus: mhi: host: Range check CHDBOFF and ERDBOFF
     - rcu: Fix missing TICK_DEP_MASK_RCU_EXP dependency check
     - tpm, tpm_tis: Do not skip reset of original interrupt vector
     - tpm, tpm_tis: Claim locality before writing TPM_INT_ENABLE register
     - tpm, tpm_tis: Disable interrupts if tpm_tis_probe_irq() failed
     - tpm, tpm_tis: Claim locality before writing interrupt registers
     - tpm, tpm: Implement usage counter for locality
     - tpm, tpm_tis: Claim locality when interrupts are reenabled on resume
     - erofs: stop parsing non-compact HEAD index if clusterofs is invalid
     - erofs: initialize packed inode after root inode is assigned
     - erofs: fix potential overflow calculating xattr_isize
     - [arm64,armhf] drm/rockchip: Drop unbalanced obj unref
     - [x86] drm/i915/dg2: Drop one PCI ID
     - drm/vgem: add missing mutex_destroy
     - drm/probe-helper: Cancel previous job before starting new one
     - drm/amdgpu: register a vga_switcheroo client for MacBooks with apple-gmux
     - [arm64] dts: ti: k3-am62-main: Fix GPIO numbers in DT
     - [arm64] drm/msm/disp/dpu: check for crtc enable rather than crtc active to
       release shared resources
     - [amd64] EDAC/skx: Fix overflows on the DRAM row address mapping arrays
     - regulator: core: Shorten off-on-delay-us for always-on/boot-on by time
       since booted
     - [arm64] dts: ti: k3-am62a7-sk: Fix DDR size to full 4GB
     - [arm64] dts: qcom: msm8998: Fix stm-stimulus-base reg name
     - [arm64] dts: qcom: sdm845: correct dynamic power coefficients
     - [x86] MCE/AMD: Use an u64 for bank_map
     - [arm64] firmware: qcom_scm: Clear download bit during reboot
     - [arm64] drm/bridge: adv7533: Fix adv7533_mode_valid for adv7533 and
       adv7535
     - [arm64] drm/msm/adreno: drop bogus pm_runtime_set_active()
     - [arm64] drm: msm: adreno: Disable preemption on Adreno 510
     - [amd64] virt/coco/sev-guest: Double-buffer messages
     - [arm64] dts: qcom: sm8350-microsoft-surface: fix USB dual-role mode
       property
     - [x86] ACPI: processor: Fix evaluating _PDC method when running as Xen dom0
     - [arm64] mmc: sdhci-of-esdhc: fix quirk to ignore command inhibit for data
     - [armhf] dts: gta04: fix excess dma channel usage
     - [arm64] firmware: arm_scmi: Fix xfers allocation on Rx channel
     - [arm64] perf/arm-cmn: Move overlapping wp_combine field
     - [armhf] dts: stm32: fix spi1 pin assignment on stm32mp15
     - [arm64] cpufreq: qcom-cpufreq-hw: Revert adding cpufreq qos
     - [arm64,armhf] drm/lima/lima_drv: Add missing unwind goto in
       lima_pdev_probe()
     - [arm64,armhf] gpu: host1x: Fix potential double free if IOMMU is disabled
     - [arm64,armhf] gpu: host1x: Fix memory leak of device names
     - drm/ttm: optimize pool allocations a bit v2
     - drm/ttm/pool: Fix ttm_pool_alloc error path
     - regulator: core: Consistently set mutex_owner when using
       ww_mutex_lock_slow()
     - regulator: core: Avoid lockdep reports when resolving supplies
     - [x86] apic: Fix atomic update of offset in reserve_eilvt_offset()
     - [arm64] dts: qcom: msm8994-angler: Fix cont_splash_mem mapping
     - [arm64] dts: qcom: msm8994-angler: removed clash with smem_region
     - [arm64,armhf] media: cedrus: fix use after free bug in cedrus_remove due
       to race condition (CVE-2023-35826)
     - [arm64] media: rkvdec: fix use after free bug in rkvdec_remove
       (CVE-2023-35829)
     - [amd64] platform/x86/amd: pmc: Don't try to read SMU version on Picasso
     - [amd64] platform/x86/amd: pmc: Hide SMU version and program attributes for
       Picasso
     - [amd64] platform/x86/amd: pmc: Don't dump data after resume from s0i3 on
       picasso
     - [amd64] platform/x86/amd: pmc: Move idlemask check into
       `amd_pmc_idlemask_read`
     - [amd64] platform/x86/amd: pmc: Utilize SMN index 0 for driver probe
     - [amd64] platform/x86/amd: pmc: Move out of BIOS SMN pair for STB init
     - media: dm1105: Fix use after free bug in dm1105_remove due to race
       condition (CVE-2023-35824)
     - media: saa7134: fix use after free bug in saa7134_finidev due to race
       condition (CVE-2023-35823)
     - media: v4l: async: Return async sub-devices to subnotifier list
     - drm/amd/display: Fix potential null dereference
     - [arm64,armhf] media: rc: gpio-ir-recv: Fix support for wake-up
     - [arm64] media: venus: dec: Fix handling of the start cmd
     - [arm64] media: venus: dec: Fix capture formats enumeration order
     - [armhf] regulator: stm32-pwr: fix of_iomap leak
     - [x86] ioapic: Don't return 0 from arch_dynirq_lower_bound()
     - [arm64] kgdb: Set PSTATE.SS to 1 to re-enable single-step
     - [arm64] perf/arm-cmn: Fix port detection for CMN-700
     - [x86] drm/i915: Make intel_get_crtc_new_encoder() less oopsy
     - tick/common: Align tick period with the HZ tick.
     - ACPI: bus: Ensure that notify handlers are not running after removal
     - cpufreq: use correct unit when verify cur freq
     - [arm64] rpmsg: glink: Propagate TX failures in intentless mode as well
     - platform/chrome: cros_typec_switch: Add missing fwnode_handle_put()
     - wifi: ath6kl: minor fix for allocation size
     - wifi: ath9k: hif_usb: fix memory leak of remain_skbs
     - wifi: ath11k: Use platform_get_irq() to get the interrupt
     - wifi: ath5k: Use platform_get_irq() to get the interrupt
     - wifi: ath5k: fix an off by one check in ath5k_eeprom_read_freq_list()
     - wifi: ath11k: fix SAC bug on peer addition with sta band migration
     - wifi: brcmfmac: support CQM RSSI notification with older firmware
     - wifi: ath6kl: reduce WARN to dev_dbg() in callback
     - tools: bpftool: Remove invalid \' json escape
     - wifi: rtw88: mac: Return the original error from rtw_pwr_seq_parser()
     - wifi: rtw88: mac: Return the original error from rtw_mac_power_switch()
     - bpf: take into account liveness when propagating precision
     - bpf: fix precision propagation verbose logging
     - [x86] crypto: qat - fix concurrency issue when device state changes
     - scm: fix MSG_CTRUNC setting condition for SO_PASSSEC
     - wifi: ath11k: fix deinitialization of firmware resources
     - bpf: Remove misleading spec_v1 check on var-offset stack read
     - net: pcs: xpcs: remove double-read of link state when using AN
     - vlan: partially enable SIOCSHWTSTAMP in container
     - net/packet: annotate accesses to po->xmit
     - net/packet: convert po->origdev to an atomic flag
     - net/packet: convert po->auxdata to an atomic flag
     - libbpf: Fix ld_imm64 copy logic for ksym in light skeleton.
     - netfilter: keep conntrack reference until IPsecv6 policy checks are done
     - bpf: Fix __reg_bound_offset 64->32 var_off subreg propagation
     - scsi: target: core: Change the way target_xcopy_do_work() sets restiction
       on max I/O
     - scsi: target: Move sess cmd counter to new struct
     - scsi: target: Move cmd counter allocation
     - scsi: target: Pass in cmd counter to use during cmd setup
     - scsi: target: iscsit: isert: Alloc per conn cmd counter
     - scsi: target: iscsit: Stop/wait on cmds during conn close
     - scsi: target: Fix multiple LUN_RESET handling
     - scsi: target: iscsit: Fix TAS handling during conn cleanup
     - scsi: megaraid: Fix mega_cmd_done() CMDID_INT_CMDS
     - net: sunhme: Fix uninitialized return code
     - f2fs: handle dqget error in f2fs_transfer_project_quota()
     - f2fs: fix uninitialized skipped_gc_rwsem
     - f2fs: apply zone capacity to all zone type
     - f2fs: compress: fix to call f2fs_wait_on_page_writeback() in
       f2fs_write_raw_pages()
     - f2fs: fix scheduling while atomic in decompression path
     - [arm64,armhf] crypto: caam - Clear some memory in instantiate_rng
     - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_rfreg()
     - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_reg()
     - scsi: libsas: Add sas_ata_device_link_abort()
     - [arm64] scsi: hisi_sas: Handle NCQ error when IPTT is valid
     - wifi: rt2x00: Fix memory leak when handling surveys
     - f2fs: fix iostat lock protection
     - net: qrtr: correct types of trace event parameters
     - bpftool: Fix bug for long instructions in program CFG dumps
     - crypto: drbg - Only fail when jent is unavailable in FIPS mode
     - xsk: Fix unaligned descriptor validation
     - f2fs: fix to avoid use-after-free for cached IPU bio
     - wifi: iwlwifi: fix duplicate entry in iwl_dev_info_table
     - bpf/btf: Fix is_int_ptr()
     - scsi: lpfc: Fix ioremap issues in lpfc_sli4_pci_mem_setup()
     - [arm64,armhf] net: ethernet: stmmac: dwmac-rk: rework optional clock
       handling
     - [arm64,armhf] net: ethernet: stmmac: dwmac-rk: fix optional phy regulator
       handling
     - wifi: ath11k: fix writing to unintended memory region
     - bpf, sockmap: fix deadlocks in the sockhash and sockmap
     - nvmet: fix error handling in nvmet_execute_identify_cns_cs_ns()
     - nvmet: fix Identify Namespace handling
     - nvmet: fix Identify Controller handling
     - nvmet: fix Identify Active Namespace ID list handling
     - nvmet: fix I/O Command Set specific Identify Controller
     - nvme: fix async event trace event
     - blk-mq: don't plug for head insertions in blk_execute_rq_nowait
     - wifi: iwlwifi: debug: fix crash in __iwl_err()
     - wifi: iwlwifi: trans: don't trigger d3 interrupt twice
     - wifi: iwlwifi: mvm: don't set CHECKSUM_COMPLETE for unsupported protocols
     - bpf, sockmap: Revert buggy deadlock fix in the sockhash and sockmap
     - f2fs: fix to check return value of f2fs_do_truncate_blocks()
     - f2fs: fix to check return value of inc_valid_block_count()
     - md/raid10: fix task hung in raid10d
     - md/raid10: fix leak of 'r10bio->remaining' for recovery
     - md/raid10: fix memleak for 'conf->bio_split'
     - md/raid10: fix memleak of md thread
     - md/raid10: don't call bio_start_io_acct twice for bio which experienced
       read error
     - wifi: iwlwifi: mvm: don't drop unencrypted MCAST frames
     - wifi: iwlwifi: yoyo: skip dump correctly on hw error
     - wifi: iwlwifi: yoyo: Fix possible division by zero
     - wifi: iwlwifi: mvm: initialize seq variable
     - wifi: iwlwifi: fw: move memset before early return
     - jdb2: Don't refuse invalidation of already invalidated buffers
     - io_uring/rsrc: use nospec'ed indexes
     - wifi: iwlwifi: make the loop for card preparation effective
     - wifi: mt76: handle failure of vzalloc in mt7615_coredump_work
     - wifi: mt76: add flexible polling wait-interval support
     - wifi: mt76: mt7921e: fix probe timeout after reboot
     - wifi: mt76: fix 6GHz high channel not be scanned
     - mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data
     - wifi: mt76: mt7921: fix missing unwind goto in `mt7921u_probe`
     - wifi: mt76: mt7921e: improve reliability of dma reset
     - wifi: mt76: mt7921e: stop chip reset worker in unregister hook
     - wifi: mt76: connac: fix txd multicast rate setting
     - wifi: iwlwifi: mvm: check firmware response size
     - netfilter: conntrack: restore IPS_CONFIRMED out of
       nf_conntrack_hash_check_insert()
     - netfilter: conntrack: fix wrong ct->timeout value
     - wifi: iwlwifi: fw: fix memory leak in debugfs
     - ixgbe: Allow flow hash to be set via ethtool
     - ixgbe: Enable setting RSS table to default values
     - net/mlx5e: Don't clone flow post action attributes second time
     - net/mlx5: E-switch, Create per vport table based on devlink encap mode
     - net/mlx5: E-switch, Don't destroy indirect table in split rule
     - net/mlx5e: Fix error flow in representor failing to add vport rx rule
     - net/mlx5: Suspend auxiliary devices only in case of PCI device suspend
     - net/mlx5: Use recovery timeout on sync reset flow
     - net/mlx5e: Nullify table pointer when failing to create
     - net: stmmac:fix system hang when setting up tag_8021q VLAN for DSA ports
     - bpf: Fix race between btf_put and btf_idr walk.
     - bpf: Don't EFAULT for getsockopt with optval=NULL
     - netfilter: nf_tables: don't write table validation state without mutex
     - net/sched: sch_fq: fix integer overflow of "credit"
     - ipv4: Fix potential uninit variable access bug in __ip_make_skb()
     - Revert "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to
       unfinished work"
     - netlink: Use copy_to_user() for optval in netlink_getsockopt().
     - [x86] net: amd: Fix link leak when verifying config failed
     - tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp.
     - [x86] ASoC: cs35l41: Only disable internal boost
     - drivers: staging: rtl8723bs: Fix locking in _rtw_join_timeout_handler()
     - drivers: staging: rtl8723bs: Fix locking in rtw_scan_timeout_handler()
     - [arm64] usb: host: xhci-rcar: remove leftover quirk handling
     - [arm64,armhf] usb: dwc3: gadget: Change condition for processing suspend
       event
     - [armhf] serial: stm32: Re-assert RTS/DE GPIO in RS485 mode only if more
       data are transmitted
     - iio: light: max44009: add missing OF device matching
     - [arm64,armhf] spi: imx: Don't skip cleanup in remove's error path
     - [x86] ASoC: soc-compress: Inherit atomicity from DAI link for Compress FE
     - [arm64,armhf] PCI: imx6: Install the fault handler only on compatible
       match
     - ASoC: es8316: Handle optional IRQ assignment
     - [arm64] spi: qup: Don't skip cleanup in remove's error path
     - [x86] vmci_host: fix a race condition in vmci_host_poll() causing GPF
     - of: Fix modalias string generation
     - [amd64] HID: amd_sfh: Correct the structure fields
     - [amd64] HID: amd_sfh: Correct the sensor enable and disable command
     - [amd64] HID: amd_sfh: Fix illuminance value
     - [amd64] HID: amd_sfh: Add support for shutdown operation
     - [amd64] HID: amd_sfh: Correct the stop all command
     - [amd64] HID: amd_sfh: Increase sensor command timeout for SFH1.1
     - [amd64] HID: amd_sfh: Handle "no sensors" enabled for SFH1.1
     - cacheinfo: Check sib_leaf in cache_leaves_are_shared()
     - [arm64] coresight: etm_pmu: Set the module field
     - PCI/PM: Extend D3hot delay for NVIDIA HDA controllers
     - spi: cadence-quadspi: fix suspend-resume implementations
     - [arm64,armhf] usb: chipidea: fix missing goto in `ci_hdrc_probe`
     - [arm64] tty: serial: fsl_lpuart: adjust buffer length to the intended size
     - serial: 8250: Add missing wakeup event reporting
     - spi: cadence-quadspi: use macro DEFINE_SIMPLE_DEV_PM_OPS
     - [x86] staging: rtl8192e: Fix W_DISABLE# does not work after stop/start
     - [arm64] spmi: Add a check for remove callback when removing a SPMI driver
     - virtio_ring: don't update event idx on get_buf
     - [powerpc*] rtas: use memmove for potentially overlapping buffer copy
     - sched/fair: Fix inaccurate tally of ttwu_move_affine
     - perf/core: Fix hardlockup failure caused by perf throttle
     - Revert "objtool: Support addition to set CFA base"
     - sched/rt: Fix bad task migration for rt tasks
     - tracing/user_events: Ensure write index cannot be negative
     - [amd64] IB/hifi1: add a null check of kzalloc_node in
       hfi1_ipoib_txreq_init
     - [amd64] RDMA/rdmavt: Delete unnecessary NULL check
     - workqueue: Fix hung time report of worker pools
     - [armhf] rtc: omap: include header for omap_rtc_power_off_program prototype
     - RDMA/mlx4: Prevent shift wrapping in set_user_sq_size()
     - [arm64,armhf] rtc: meson-vrtc: Use ktime_get_real_ts64() to get the
       current time
     - clk: add missing of_node_put() in "assigned-clocks" property parsing
     - [arm64] power: supply: rk817: Fix low SOC bugs
     - RDMA/cm: Trace icm_send_rej event before the cm state is reset
     - RDMA/srpt: Add a check for valid 'mad_agent' pointer
     - [amd64] IB/hfi1: Fix SDMA mmu_rb_node not being evicted in LRU order
     - [amd64] IB/hfi1: Fix bugs with non-PAGE_SIZE-end multi-iovec user SDMA
       requests
     - [arm64,armhf] clk: imx: fracn-gppll: fix the rate table
     - [arm64,armhf] clk: imx: fracn-gppll: disable hardware select control
     - NFSv4.1: Always send a RECLAIM_COMPLETE after establishing lease
     - [amd64] iommu/amd: Set page size bitmap during V2 domain allocation
     - [arm64] Input: raspberrypi-ts - fix refcount leak in rpi_ts_probe
     - swiotlb: relocate PageHighMem test away from rmem_swiotlb_setup
     - swiotlb: fix debugfs reporting of reserved memory pools
     - RDMA/mlx5: Check pcie_relaxed_ordering_enabled() in UMR
     - RDMA/mlx5: Fix flow counter query via DEVX
     - SUNRPC: remove the maximum number of retries in call_bind_status
     - RDMA/mlx5: Use correct device num_ports when modify DC
     - timekeeping: Fix references to nonexistent ktime_get_fast_ns()
     - SMB3: Add missing locks to protect deferred close file list
     - SMB3: Close deferred file handles in case of handle lease break
     - ext4: fix i_disksize exceeding i_size problem in paritally written case
     - ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline
     - [arm64] dmaengine: mv_xor_v2: Fix an error code.
     - [armhf] leds: tca6507: Fix error handling of using
       fwnode_property_read_string
     - soundwire: cadence: rename sdw_cdns_dai_dma_data as sdw_cdns_dai_runtime
     - [x86] soundwire: intel: don't save hw_params for use in prepare
     - [arm64,armhf] phy: tegra: xusb: Add missing tegra_xusb_port_unregister for
       usb2_port and ulpi_port
     - [arm64,armhf] pinctrl-bcm2835.c: fix race condition when setting gpio dir
     - [x86] ACPI: PM: Do not turn of unused power resources on the Toshiba Click
       Mini
     - PM: hibernate: Turn snapshot_test into global variable
     - PM: hibernate: Do not get block device exclusively in test_resume mode
     - afs: Fix updating of i_size with dv jump from server
     - afs: Fix getattr to report server i_size on dirs, not local size
     - afs: Avoid endless loop if file is larger than expected
     - ALSA: usb-audio: Add quirk for Pioneer DDJ-800
     - [x86] ALSA: hda/realtek: Add quirk for ThinkPad P1 Gen 6
     - [x86] ALSA: hda/realtek: Add quirk for ASUS UM3402YAR using CS35L41
     - [x86] ALSA: hda/realtek: support HP Pavilion Aero 13-be0xxx Mute LED
     - [x86] ALSA: hda/realtek: Fix mute and micmute LEDs for an HP laptop
     - nilfs2: do not write dirty data after degenerating to read-only
     - nilfs2: fix infinite loop in nilfs_mdt_get_block()
     - mm: do not reclaim private data from pinned page
     - drbd: correctly submit flush bio on barrier
     - md/raid10: fix null-ptr-deref in raid10_sync_request
     - md/raid5: Improve performance for sequential IO
     - mtd: core: provide unique name for nvmem device, take two
     - mtd: core: fix nvmem error reporting
     - mtd: core: fix error path for nvmem provider
     - mtd: spi-nor: core: Update flash's current address mode when changing
       address mode
     - [arm64] mailbox: zynqmp: Fix IPI isr handling
     - [arm64] mailbox: zynqmp: Fix typo in IPI documentation
     - wifi: rtl8xxxu: RTL8192EU always needs full init
     - wifi: rtw89: fix potential race condition between napi_init and
       napi_enable
     - [arm64] clk: rockchip: rk3399: allow clk_cifout to force clk_cifout_src to
       reparent
     - btrfs: scrub: reject unsupported scrub flags
     - [s390x] dasd: fix hanging blockdevice after request requeue
     - mm/mempolicy: correctly update prev when policy is equal on mbind
     - dm verity: fix error handling for check_at_most_once on FEC
     - dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path
     - dm flakey: fix a crash with invalid table line
     - dm ioctl: fix nested locking in table_clear() to remove deadlock concern
       (CVE-2023-2269)
     - dm: don't lock fs when the map is NULL in process of resume
     - blk-iocost: avoid 64-bit division in ioc_timer_fn
     - cifs: fix potential use-after-free bugs in TCP_Server_Info::hostname
     - cifs: protect session status check in smb2_reconnect()
     - [x86] thunderbolt: Use correct type in tb_port_is_clx_enabled() prototype
     - wifi: ath11k: synchronize ath11k_mac_he_gi_to_nl80211_he_gi()'s return
       type
     - [x86] perf auxtrace: Fix address filter entire kernel size
     - [x86] perf intel-pt: Fix CYC timestamps after standalone CBR
     - i40e: Remove unused i40e status codes
     - i40e: Remove string printing for i40e_status
     - i40e: use int for i40e_status
     - scsi: libsas: Grab the ATA port lock in sas_ata_device_link_abort()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.29
     - [arm64,armhf] USB: dwc3: gadget: drop dead hibernation code
     - [arm64,armhf] usb: dwc3: gadget: Execute gadget stop after halting the
       controller
     - drm/vmwgfx: Remove explicit and broken vblank handling
     - drm/vmwgfx: Fix Legacy Display Unit atomic drm support
     - [amd64] crypto: ccp - Clear PSP interrupt status register before calling
       handler
     - [x86] perf/x86/core: Zero @lbr instead of returning -1 in
       x86_perf_get_lbr() stub
     - [x86] KVM: x86: Track supported PERF_CAPABILITIES in kvm_caps
     - [x86] KVM: x86/pmu: Disallow legacy LBRs if architectural LBRs are
       available
     - mtd: spi-nor: spansion: Remove NO_SFDP_FLAGS from s28hs512t info
     - mtd: spi-nor: add SFDP fixups for Quad Page Program
     - mtd: spi-nor: Add a RWW flag
     - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s28hx
       SEMPER flash
     - [arm64] mailbox: zynq: Switch to flexible array to simplify code
     - [arm64] mailbox: zynqmp: Fix counts of child nodes
     - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s25hx
       SEMPER flash
     - drm/amd/display: Ext displays with dock can't recognized after resume
     - [x86] KVM: x86/mmu: Avoid indirect call for get_cr3
     - [x86] KVM: x86: Do not unload MMU roots when only toggling CR0.WP with TDP
       enabled
     - [x86] KVM: x86: Make use of kvm_read_cr*_bits() when testing bits
     - [x86] KVM: VMX: Make CR0.WP a guest owned bit
     - [x86] KVM: x86/mmu: Refresh CR0.WP prior to checking for emulated
       permission faults
     - [x86] ASoC: Intel: soc-acpi-byt: Fix "WM510205" match no longer working
     - scsi: qedi: Fix use after free bug in qedi_remove()
     - drm/amd/display: Remove FPU guards from the DML folder
     - drm/amd/display: Add missing WA and MCLK validation
     - drm/amd/display: Return error code on DSC atomic check failure
     - drm/amd/display: Fixes for dcn32_clk_mgr implementation
     - drm/amd/display: Reset OUTBOX0 r/w pointer on DMUB reset
     - drm/amd/display: Do not clear GPINT register when releasing DMUB from
       reset
     - drm/amd/display: Update bounding box values for DCN321
     - ixgbe: Fix panic during XDP_TX with > 64 CPUs
     - [armhf] net/ncsi: clear Tx enable mode when handling a Config required AEN
     - tcp: fix skb_copy_ubufs() vs BIG TCP
     - net/sched: cls_api: remove block_cb from driver_list before freeing
     - sit: update dev->needed_headroom in ipip6_tunnel_bind_dev()
     - net: ipv6: fix skb hash for some RST packets
     - [arm64,armhf] net: dsa: mv88e6xxx: add mv88e6321 rsvd2cpu
     - writeback: fix call of incorrect macro
     - block: Skip destroyed blkg when restart in blkg_destroy_all()
     - [arm64,armhf] watchdog: dw_wdt: Fix the error handling path of
       dw_wdt_drv_probe()
     - [arm64,armhf] i2c: tegra: Fix PEC support for SMBUS block read
     - net/sched: act_mirred: Add carrier check
     - r8152: fix flow control issue of RTL8156A
     - r8152: fix the poor throughput for 2.5G devices
     - r8152: move setting r8153b_rx_agg_chg_indicate()
     - sfc: Fix module EEPROM reporting for QSFP modules
     - rxrpc: Fix hard call timeout units
     - [x86] drm/i915/mtl: Add the missing CPU transcoder mask in
       intel_device_info
     - ethtool: Fix uninitialized number of lanes
     - af_packet: Don't send zero-byte data in packet_sendmsg_spkt().
     - drm/amdgpu: add a missing lock for AMDGPU_SCHED
     - ALSA: caiaq: input: Add error handling for unsupported input methods in
       `snd_usb_caiaq_input_init`
     - [s390x] KVM: s390: fix race in gmap_make_secure()
     - ice: block LAN in case of VF to VF offload
     - virtio_net: suppress cpu stall when free_unused_bufs
     - [arm64] net: enetc: check the index of the SFI rather than the handle
     - perf record: Fix "read LOST count failed" msg with sample read
     - perf scripts intel-pt-events.py: Fix IPC output for Python 2
     - perf vendor events s390: Remove UTF-8 characters from JSON file
     - perf tests record_offcpu.sh: Fix redirection of stderr to stdin
     - perf ftrace: Make system wide the default target for latency subcommand
     - perf vendor events power9: Remove UTF-8 characters from JSON files
     - perf pmu: zfree() expects a pointer to a pointer to zero it after freeing
       its contents
     - perf map: Delete two variable initialisations before null pointer checks
       in sort__sym_from_cmp()
     - perf cs-etm: Fix timeless decode mode detection
     - crypto: api - Add scaffolding to change completion function signature
     - crypto: engine - Use crypto_request_complete
     - crypto: engine - fix crypto_queue backlog handling
     - perf symbols: Fix return incorrect build_id size in elf_read_build_id()
     - perf tracepoint: Fix memory leak in is_valid_tracepoint()
     - perf stat: Separate bperf from bpf_profiler
     - [x86] retbleed: Fix return thunk alignment
     - btrfs: fix btrfs_prev_leaf() to not return the same key twice
     - btrfs: zoned: fix wrong use of bitops API in btrfs_ensure_empty_zones
     - btrfs: properly reject clear_cache and v1 cache for block-group-tree
     - btrfs: fix assertion of exclop condition when starting balance
     - btrfs: fix encoded write i_size corruption with no-holes
     - btrfs: don't free qgroup space unless specified
     - btrfs: zero the buffer before marking it dirty in btrfs_redirty_list_add
     - btrfs: make clear_cache mount option to rebuild FST without disabling it
     - btrfs: print-tree: parent bytenr must be aligned to sector size
     - btrfs: fix space cache inconsistency after error loading it from disk
     - btrfs: zoned: zone finish data relocation BG with last IO
     - btrfs: zoned: fix full zone super block reading on ZNS
     - cifs: fix pcchunk length type in smb2_copychunk_range
     - cifs: release leases for deferred close handles when freezing
     - [amd64] platform/x86/intel-uncore-freq: Return error on write frequency
     - [x86] platform/x86: touchscreen_dmi: Add upside-down quirk for GDIX1002 ts
       on the Juno Tablet
     - [x86] platform/x86: thinkpad_acpi: Fix platform profiles on T490
     - [x86] platform/x86: touchscreen_dmi: Add info for the Dexp Ursus KX210i
     - [x86] platform/x86: thinkpad_acpi: Add profile force ability
     - inotify: Avoid reporting event with invalid wd
     - smb3: fix problem remounting a share after shutdown
     - SMB3: force unmount was failing to close deferred close files
     - [armhf] remoteproc: stm32: Call of_node_put() on iteration error
     - sysctl: clarify register_sysctl_init() base directory order
     - [armhf] ARM: dts: aspeed: asrock: Correct firmware flash SPI clocks
     - [armhf] ARM: dts: exynos: fix WM8960 clock name in Itop Elite
     - [armhf] ARM: dts: aspeed: romed8hm3: Fix GPIO polarity of system-fault LED
     - [arm64] drm/msm/adreno: fix runtime PM imbalance at gpu load
     - [x86] drm/i915/color: Fix typo for Plane CSC indexes
     - [arm64] drm/msm: fix NULL-deref on snapshot tear down
     - [arm64] drm/msm: fix NULL-deref on irq uninstall
     - [arm64] drm/msm: fix drm device leak on bind errors
     - [arm64] drm/msm: fix vram leak on bind errors
     - [arm64] drm/msm: fix workqueue leak on bind errors
     - [x86] drm/i915/dsi: Use unconditional msleep() instead of
       intel_dsi_msleep()
     - f2fs: fix null pointer panic in tracepoint in __replace_atomic_write_block
     - f2fs: fix potential corruption when moving a directory
     - [armhf] drm/panel: otm8009a: Set backlight parent to panel device
     - drm/amd/display: Add NULL plane_state check for cursor disable logic
     - drm/amd/display: Fix 4to1 MPC black screen with DPP RCO
     - drm/amd/display: filter out invalid bits in pipe_fuses
     - drm/amd/display: fix flickering caused by S/G mode
     - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v10_0_hw_fini
     - drm/amdgpu: fix an amdgpu_irq_put() issue in gmc_v9_0_hw_fini()
     - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v11_0_hw_fini
     - drm/amdgpu/gfx: disable gfx9 cp_ecc_error_irq only when enabling legacy
       gfx ras
     - drm/amdgpu/jpeg: Remove harvest checking for JPEG3
     - drm/amdgpu: change gfx 11.0.4 external_id range
     - drm/amdgpu: Fix vram recover doesn't work after whole GPU reset (v2)
     - drm/amd/display: Enforce 60us prefetch for 200Mhz DCFCLK modes
     - drm/amd/pm: parse pp_handle under appropriate conditions
     - drm/amdgpu: disable sdma ecc irq only when sdma RAS is enabled in suspend
     - drm/amd/pm: avoid potential UBSAN issue on legacy asics
     - drm/amdgpu: remove deprecated MES version vars
     - drm/amd: Load MES microcode during early_init
     - drm/amd: Add a new helper for loading/validating microcode
     - drm/amd: Use `amdgpu_ucode_*` helpers for MES
     - HID: wacom: Set a default resolution for older tablets
     - HID: wacom: insert timestamp to packed Bluetooth (BT) events
     - [arm64] drm/msm/adreno: adreno_gpu: Use suspend() instead of idle() on
       load error
     - f2fs: specify extent cache for read explicitly
     - f2fs: move internal functions into extent_cache.c
     - f2fs: remove unnecessary __init_extent_tree
     - f2fs: refactor extent_cache to support for read and more
     - f2fs: allocate the extent_cache by default
     - f2fs: factor out victim_entry usage from general rb_tree use
     - [arm64] drm/msm/adreno: Simplify read64/write64 helpers
     - [arm64] drm/msm: Hangcheck progress detection
     - [arm64] drm/msm: fix missing wq allocation error handling
     - wifi: rtw88: rtw8821c: Fix rfe_option field width
     - [x86] drm/i915/mtl: update scaler source and destination limits for MTL
     - [x86] drm/i915: Check pipe source size when using skl+ scalers
     - drm/amd/display: Refactor eDP PSR codes
     - drm/amd/display: Add Z8 allow states to z-state support list
     - drm/amd/display: Add debug option to skip PSR CRTC disable
     - drm/amd/display: Fix Z8 support configurations
     - drm/amd/display: Add minimum Z8 residency debug option
     - drm/amd/display: Update minimum stutter residency for DCN314 Z8
     - drm/amd/display: Lowering min Z8 residency time
     - [x86] ASoC: codecs: constify static sdw_slave_ops struct
     - drm/amd/display: Update Z8 watermarks for DCN314
     - drm/amd/display: Update Z8 SR exit/enter latencies
     - drm/amd/display: Change default Z8 watermark values
     - ksmbd: Implements sess->ksmbd_chann_list as xarray
     - ksmbd: fix racy issue from session setup and logoff (CVE-2023-32250)
     - ksmbd: destroy expired sessions
     - ksmbd: block asynchronous requests when making a delay on session setup
     - ksmbd: fix racy issue from smb2 close and logoff with multichannel
     - drm: Add missing DP DSC extended capability definitions.
     - drm/dsc: fix drm_edp_dsc_sink_output_bpp() DPCD high byte usage
     - locking/rwsem: Add __always_inline annotation to __down_read_common() and
       inlined callers
     - ext4: fix WARNING in mb_find_extent
     - ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum
       (CVE-2023-34256)
     - ext4: fix data races when using cached status extents
     - ext4: check iomap type only if ext4_iomap_begin() does not fail
     - ext4: improve error recovery code paths in __ext4_remount()
     - ext4: improve error handling from ext4_dirhash()
     - ext4: fix deadlock when converting an inline directory in nojournal mode
     - ext4: add bounds checking in get_max_inline_xattr_value_size()
     - ext4: bail out of ext4_xattr_ibody_get() fails for any reason
     - ext4: fix lockdep warning when enabling MMP
     - ext4: remove a BUG_ON in ext4_mb_release_group_pa()
     - ext4: fix invalid free tracking in ext4_xattr_move_to_block()
     - drm/dsc: fix DP_DSC_MAX_BPP_DELTA_* macro values
     - f2fs: fix to do sanity check on extent cache correctly
     - f2fs: inode: fix to do sanity check on extent cache correctly
     - [x86] amd_nb: Add PCI ID for family 19h model 78h
     - [x86] fix clear_user_rep_good() exception handling annotation
     - drm/amd/display: Fix hang when skipping modeset
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.30
     - drm/fbdev-generic: prohibit potential out-of-bounds access
     - drm/mipi-dsi: Set the fwnode for mipi_dsi_device
     - net: skb_partial_csum_set() fix against transport header magic value
     - scsi: ufs: core: Fix I/O hang that occurs when BKOPS fails in W-LUN
       suspend
     - tick/broadcast: Make broadcast device replacement work correctly
     - linux/dim: Do nothing if no time delta between samples
     - net: stmmac: Initialize MAC_ONEUS_TIC_COUNTER register
     - net: Fix load-tearing on sk->sk_stamp in sock_recv_cmsgs().
     - [arm64,armhf] net: phy: bcm7xx: Correct read from expansion register
     - netfilter: nf_tables: always release netdev hooks from notifier
     - netfilter: conntrack: fix possible bug_on with enable_hooks=1
     - bonding: fix send_peer_notif overflow
     - netlink: annotate accesses to nlk->cb_running
     - net: annotate sk->sk_err write from do_recvmmsg()
     - net: deal with most data-races in sk_wait_event()
     - net: add vlan_get_protocol_and_depth() helper
     - tcp: add annotations around sk->sk_shutdown accesses
     - [amd64,arm64] gve: Remove the code of clearing PBA bit
     - ipvlan:Fix out-of-bounds caused by unclear skb->cb (CVE-2023-3090)
     - [arm64] net: mscc: ocelot: fix stat counter register values
     - net: datagram: fix data-races in datagram_poll()
     - af_unix: Fix a data race of sk->sk_receive_queue->qlen.
     - af_unix: Fix data races around sk->sk_shutdown.
     - [x86] drm/i915/guc: Don't capture Gen8 regs on Xe devices
     - [x86] drm/i915: Fix NULL ptr deref by checking new_crtc_state
     - [x86] drm/i915/dp: prevent potential div-by-zero
     - [x86] drm/i915: Expand force_probe to block probe of devices as well.
     - [x86] drm/i915: taint kernel when force probing unsupported devices
     - [x86] fbdev: arcfb: Fix error handling in arcfb_probe()
     - ext4: reflect error codes from ext4_multi_mount_protect() to its callers
     - ext4: allow to find by goal if EXT4_MB_HINT_GOAL_ONLY is set
     - ext4: allow ext4_get_group_info() to fail
     - rcu: Protect rcu_print_task_exp_stall() ->exp_tasks access
     - open: return EINVAL for O_DIRECTORY | O_CREAT
     - fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
     - drm/displayid: add displayid_get_header() and check bounds better
     - drm/amd/display: populate subvp cmd info only for the top pipe
     - drm/amd/display: Correct DML calculation to align HW formula
     - [x86] platform/x86: x86-android-tablets: Add Acer Iconia One 7 B1-750 data
     - drm/amd/display: Enable HostVM based on rIOMMU active
     - drm/amd/display: Use DC_LOG_DC in the trasform pixel function
     - regmap: cache: Return error in cache sync operations for REGCACHE_NONE
     - [arm64] dts: qcom: msm8996: Add missing DWC3 quirks
     - media: cx23885: Fix a null-ptr-deref bug in buffer_prepare() and
       buffer_finish()
     - media: pci: tw68: Fix null-ptr-deref bug in buf prepare and finish
     - ACPI: processor: Check for null return of devm_kzalloc() in
       fch_misc_setup()
     - [arm64,armhf] drm/rockchip: dw_hdmi: cleanup drm encoder during unbind
     - memstick: r592: Fix UAF bug in r592_remove due to race condition
       (CVE-2023-3141)
     - ACPI: EC: Fix oops when removing custom query handlers
     - drm/amd/display: fixed dcn30+ underflow issue
     - [armhf] remoteproc: stm32_rproc: Add mutex protection for workqueue
     - [arm64,armhf] drm/tegra: Avoid potential 32-bit integer overflow
     - [arm64] drm/msm/dp: Clean up handling of DP AUX interrupts
     - ACPICA: Avoid undefined behavior: applying zero offset to null pointer
     - ACPICA: ACPICA: check null return of ACPI_ALLOCATE_ZEROED in
       acpi_db_display_objects
     - [arm64] dts: qcom: sdm845-polaris: Drop inexistent properties
     - [arm64,armhf] irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4
     - ACPI: video: Remove desktops without backlight DMI quirks
     - drm/amd/display: Correct DML calculation to follow HW SPEC
     - drm/amd: Fix an out of bounds error in BIOS parser
     - drm/amdgpu: Fix sdma v4 sw fini error
     - [armhf] media: Prefer designated initializers over memset for subdev pad
       ops
     - wifi: ath: Silence memcpy run-time false positive warning
     - bpf: Annotate data races in bpf_local_storage
     - wifi: brcmfmac: pcie: Provide a buffer of random bytes to the device
     - wifi: brcmfmac: cfg80211: Pass the PMK in binary instead of hex
     - scsi: lpfc: Prevent lpfc_debugfs_lockstat_write() buffer overflow
     - scsi: lpfc: Correct used_rpi count when devloss tmo fires with no recovery
     - bnxt: avoid overflow in bnxt_get_nvram_directory()
     - net: Catch invalid index in XPS mapping
     - netdev: Enforce index cap in netdev_get_tx_queue
     - scsi: target: iscsit: Free cmds before session free
     - lib: cpu_rmap: Avoid use after free on rmap->obj array entries
     - scsi: message: mptlan: Fix use after free bug in mptlan_remove() due to
       race condition
     - gfs2: Fix inode height consistency check
     - [x86] scsi: ufs: ufs-pci: Add support for Intel Lunar Lake
     - ext4: set goal start correctly in ext4_mb_normalize_request
     - ext4: Fix best extent lstart adjustment logic in ext4_mb_new_inode_pa()
     - crypto: jitter - permanent and intermittent health errors
     - f2fs: Fix system crash due to lack of free space in LFS
     - f2fs: fix to drop all dirty pages during umount() if cp_error is set
     - f2fs: fix to check readonly condition correctly
     - bpf: Add preempt_count_{sub,add} into btf id deny list
     - md: fix soft lockup in status_resync
     - wifi: iwlwifi: pcie: fix possible NULL pointer dereference
     - wifi: iwlwifi: add a new PCI device ID for BZ device
     - wifi: iwlwifi: pcie: Fix integer overflow in iwl_write_to_user_buf
     - wifi: iwlwifi: mvm: fix ptk_pn memory leak
     - block, bfq: Fix division by zero error on zero wsum
     - wifi: ath11k: Ignore frags from uninitialized peer in dp.
     - wifi: iwlwifi: fix iwl_mvm_max_amsdu_size() for MLO
     - null_blk: Always check queue mode setting from configfs
     - wifi: iwlwifi: dvm: Fix memcpy: detected field-spanning write backtrace
     - wifi: ath11k: Fix SKB corruption in REO destination ring
     - nbd: fix incomplete validation of ioctl arg
     - ipvs: Update width of source for ip_vs_sync_conn_options
     - Bluetooth: btusb: Add new PID/VID 04ca:3801 for MT7663
     - Bluetooth: Add new quirk for broken local ext features page 2
     - Bluetooth: btrtl: add support for the RTL8723CS
     - Bluetooth: Improve support for Actions Semi ATS2851 based devices
     - Bluetooth: btrtl: check for NULL in btrtl_set_quirks()
     - Bluetooth: btintel: Add LE States quirk support
     - Bluetooth: hci_bcm: Fall back to getting bdaddr from EFI if not set
     - Bluetooth: Add new quirk for broken set random RPA timeout for ATS2851
     - Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
     - Bluetooth: btrtl: Add the support for RTL8851B
     - HID: apple: Set the tilde quirk flag on the Geyser 4 and later
     - [x86] ASoC: amd: yc: Add DMI entries to support HP OMEN 16-n0xxx (8A42)
     - HID: logitech-hidpp: Don't use the USB serial for USB devices
     - HID: logitech-hidpp: Reconcile USB and Unifying serials
     - [arm64,armhf] spi: spi-imx: fix MX51_ECSPI_* macros when cs > 3
     - [x86] usb: typec: ucsi: acpi: add quirk for ASUS Zenbook UM325
     - ALSA: hda: LNL: add HD Audio PCI ID
     - [x86] ASoC: amd: Add Dell G15 5525 to quirks list
     - [x86] ASoC: amd: yc: Add ThinkBook 14 G5+ ARP to quirks list for acp6x
     - [x86] HID: apple: Set the tilde quirk flag on the Geyser 3
     - [x86] HID: Ignore battery for ELAN touchscreen on ROG Flow X13 GV301RA
     - HID: wacom: generic: Set battery quirk only when we see battery data
     - usb: typec: tcpm: fix multiple times discover svids error
     - serial: 8250: Reinit port->pm on port specific driver unbind
     - [x86] soundwire: dmi-quirks: add remapping for Intel 'Rooks County' NUC
       M15
     - soundwire: qcom: gracefully handle too many ports in DT
     - soundwire: bus: Fix unbalanced pm_runtime_put() causing usage count
       underflow
     - [x86] mfd: intel_soc_pmic_chtwc: Add Lenovo Yoga Book X90F to
       intel_cht_wc_models
     - [x86] mfd: intel-lpss: Add Intel Meteor Lake PCH-S LPSS PCI IDs
     - [x86] platform/x86: Move existing HP drivers to a new hp subdir
     - [x86] hp-wmi: add micmute to hp_wmi_keymap struct
     - drm/amdgpu: drop gfx_v11_0_cp_ecc_error_irq_funcs
     - xfrm: don't check the default policy if the policy allows the packet
     - Revert "Fix XFRM-I support for nested ESP tunnels"
     - [arm64] drm/msm/dp: unregister audio driver during unbind
     - [arm64] drm/msm/dpu: Assign missing writeback log_mask
     - [arm64] drm/msm/dpu: Move non-MDP_TOP INTF_INTR offsets out of hwio header
     - [arm64] drm/msm/dpu: Remove duplicate register defines from INTF
     - platform: Provide a remove callback that returns no value
     - [arm64] ASoC: fsl_micfil: Fix error handler with pm_runtime_enable
     - cpupower: Make TSC read per CPU for Mperf monitor
     - xfrm: Reject optional tunnel/BEET mode templates in outbound policies
     - af_key: Reject optional tunnel/BEET mode templates in outbound policies
     - [arm64] drm/msm: Fix submit error-path leaks
     - [arm64,armhf] net: fec: Better handle pm_runtime_get() failing in
       .remove()
     - net: phy: dp83867: add w/a for packet errors seen with short cables
     - ALSA: firewire-digi00x: prevent potential use after free
     - wifi: mt76: connac: fix stats->tx_bytes calculation
     - [x86] ALSA: hda/realtek: Apply HP B&O top speaker profile to Pavilion 15
     - sfc: disable RXFCS and RXALL features by default
     - vsock: avoid to close connected socket after the timeout
     - tcp: fix possible sk_priority leak in tcp_v4_send_reset()
     - [armhf] serial: arc_uart: fix of_iomap leak in `arc_serial_probe`
     - erspan: get the proto with the md version for collect_md
     - [arm64] net: hns3: fix output information incomplete for dumping tx queue
       info with debugfs
     - [arm64] net: hns3: fix sending pfc frames after reset issue
     - [arm64] net: hns3: fix reset delay time to avoid configuration timeout
     - [arm64] net: hns3: fix reset timeout when enable full VF
     - media: netup_unidvb: fix use-after-free at del_timer()
     - SUNRPC: double free xprt_ctxt while still in use
     - SUNRPC: always free ctxt when freeing deferred request
     - SUNRPC: Fix trace_svc_register() call site
     - [x86] ASoC: SOF: topology: Fix logic for copying tuples
     - net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment()
     - virtio-net: Maintain reverse cleanup order
     - virtio_net: Fix error unwinding of XDP initialization
     - tipc: add tipc_bearer_min_mtu to calculate min mtu
     - tipc: do not update mtu if msg_max is too small in mtu negotiation
     - tipc: check the bearer min mtu properly when setting it by netlink
     - [s390x] cio: include subchannels without devices also for evaluation
     - can: dev: fix missing CAN XL support in can_put_echo_skb()
     - [arm64] net: bcmgenet: Remove phy_stop() from bcmgenet_netif_stop()
     - [arm64] net: bcmgenet: Restore phy_stop() depending upon suspend/close
     - ice: introduce clear_reset_state operation
     - ice: Fix ice VF reset during iavf initialization
     - wifi: cfg80211: Drop entries with invalid BSSIDs in RNR
     - wifi: mac80211: fortify the spinlock against deadlock by interrupt
     - wifi: mac80211: fix min center freq offset tracing
     - wifi: mac80211: Abort running color change when stopping the AP
     - wifi: iwlwifi: mvm: fix cancel_delayed_work_sync() deadlock
     - wifi: iwlwifi: fw: fix DBGI dump
     - wifi: iwlwifi: fix OEM's name in the ppag approved list
     - wifi: iwlwifi: mvm: fix OEM's name in the tas approved list
     - wifi: iwlwifi: mvm: don't trust firmware n_channels
     - scsi: storvsc: Don't pass unused PFNs to Hyper-V host
     - net: tun: rebuild error handling in tun_get_user
     - tun: Fix memory leak for detached NAPI queue.
     - cassini: Fix a memory leak in the error handling path of cas_init_one()
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix mv88e6393x EPC write command offset
     - igb: fix bit_shift to be in [1..8] range
     - vlan: fix a potential uninit-value in vlan_dev_hard_start_xmit()
     - net: wwan: iosm: fix NULL pointer dereference when removing device
     - net: pcs: xpcs: fix C73 AN not getting enabled
     - netfilter: nf_tables: fix nft_trans type confusion
     - netfilter: nft_set_rbtree: fix null deref on element insertion
     - ALSA: usb-audio: Add a sample rate workaround for Line6 Pod Go
     - USB: usbtmc: Fix direction for 0-length ioctl control messages
     - usb-storage: fix deadlock when a scsi command timeouts more than once
     - USB: UHCI: adjust zhaoxin UHCI controllers OverCurrent bit value
     - [arm64,armhf] usb: dwc3: gadget: Improve dwc3_gadget_suspend() and
       dwc3_gadget_resume()
     - [arm64,armhf] usb: dwc3: debugfs: Resume dwc3 before accessing registers
     - usb: gadget: u_ether: Fix host MAC address case
     - usb: typec: altmodes/displayport: fix pin_assignment_show
     - xhci-pci: Only run d3cold avoidance quirk for s2idle
     - xhci: Fix incorrect tracking of free space on transfer rings
     - ALSA: hda: Fix Oops by 9.1 surround channel names
     - ALSA: hda: Add NVIDIA codec IDs a3 through a7 to patch table
     - [x86] ALSA: hda/realtek: Add quirk for Clevo L140AU
     - [x86] ALSA: hda/realtek: Add a quirk for HP EliteDesk 805
     - [x86] ALSA: hda/realtek: Add quirk for 2nd ASUS GU603
     - [x86] ALSA: hda/realtek: Add quirk for HP EliteBook G10 laptops
     - ALSA: hda/realtek: Fix mute and micmute LEDs for yet another HP laptop
     - can: j1939: recvmsg(): allow MSG_CMSG_COMPAT flag
     - can: isotp: recvmsg(): allow MSG_CMSG_COMPAT flag
     - wifi: rtw88: use work to update rate to avoid RCU warning
     - SMB3: Close all deferred handles of inode in case of handle lease break
     - SMB3: drop reference to cfile before sending oplock break
     - ksmbd: smb2: Allow messages padded to 8byte boundary
     - ksmbd: allocate one more byte for implied bcc[0]
     - ksmbd: fix wrong UserName check in session_user
     - ksmbd: fix global-out-of-bounds in smb2_find_context_vals
     - KVM: Fix vcpu_array[0] races
     - statfs: enforce statfs[64] structure initialization
     - maple_tree: make maple state reusable after mas_empty_area()
       (Closes: #1036755)
     - mm: fix zswap writeback race condition
     - serial: Add support for Advantech PCI-1611U card
     - serial: 8250_exar: Add support for USR298x PCI Modems
     - [arm64] serial: qcom-geni: fix enabling deactivated interrupt
     - [x86] thunderbolt: Clear registers properly when auto clear isn't in use
     - vc_screen: reload load of struct vc_data pointer in vcs_write() to avoid
       UAF
     - ceph: force updating the msg pointer in non-split case
     - drm/amd/pm: fix possible power mode mismatch between driver and PMFW
     - drm/amdgpu/gmc11: implement get_vbios_fb_size()
     - drm/amdgpu/gfx10: Disable gfxoff before disabling powergating.
     - drm/amdgpu/gfx11: Adjust gfxoff before powergating on gfx11 as well
     - drm/amdgpu: refine get gpu clock counter method
     - drm/amdgpu/gfx11: update gpu_clock_counter logic
     - [powerpc*] iommu: DMA address offset is incorrectly calculated with 2MB
       TCEs
     - [powerpc*] iommu: Incorrect DDW Table is referenced for SR-IOV device
     - tpm/tpm_tis: Disable interrupts for more Lenovo devices
     - [powerpc*] 64s/radix: Fix soft dirty tracking
     - nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode()
     - [s390x] dasd: fix command reject error on ESE devices
     - [s390x] crypto: use vector instructions only if available for ChaCha20
     - [s390x] qdio: fix do_sqbs() inline assembly constraint
     - [arm64] mte: Do not set PG_mte_tagged if tags were not initialized
     - [x86] rethook: use preempt_{disable, enable}_notrace in
       rethook_trampoline_handler
     - [x86] rethook, fprobe: do not trace rethook related functions
     - crypto: testmgr - fix RNG performance in fuzz tests
     - drm/amdgpu: declare firmware for new MES 11.0.4
     - drm/amd/amdgpu: introduce gc_*_mes_2.bin v2
     - drm/amdgpu: reserve the old gc_11_0_*_mes.bin
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.31
     - [arm64,armhf] usb: dwc3: fix gadget mode suspend interrupt handler issue
     - tpm, tpm_tis: Avoid cache incoherency in test for interrupts
     - tpm, tpm_tis: Only handle supported interrupts
     - tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume
     - tpm, tpm_tis: startup chip before testing for interrupts
     - tpm: Re-enable TPM chip boostrapping non-tpm_tis TPM drivers
     - tpm: Prevent hwrng from activating during resume
     - [x86] watchdog: sp5100_tco: Immediately trigger upon starting.
     - drm/amd/amdgpu: update mes11 api def
     - drm/amdgpu/mes11: enable reg active poll
     - skbuff: Proactively round up to kmalloc bucket size
     - [arm64,armhf] net: dsa: mv88e6xxx: Add RGMII delay to 88E6320
     - drm/amd/display: hpd rx irq not working with eDP interface
     - ocfs2: Switch to security_inode_init_security()
     - [x86] mm: Avoid incomplete Global INVLPG flushes
     - [x86] ALSA: hda/ca0132: add quirk for EVGA X299 DARK
     - ALSA: hda: Fix unhandled register update during auto-suspend period
     - [x86] ALSA: hda/realtek: Enable headset onLenovo M70/M90
     - SUNRPC: Don't change task->tk_status after the call to rpc_exit_task
     - [arm64,armhf] imc: sdhci-esdhc-imx: make "no-mmc-hs400" works
     - mmc: block: ensure error propagation for non-blk
     - [x86] power: supply: axp288_fuel_gauge: Fix external_power_changed race
     - [arm64] power: supply: bq25890: Fix external_power_changed race
     - ASoC: rt5682: Disable jack detection interrupt during suspend
     - net: cdc_ncm: Deal with too low values of dwNtbOutMaxSize
     - btrfs: use nofs when cleaning up aborted transactions
     - [x86] drm/mgag200: Fix gamma lut not initialized.
     - drm/radeon: reintroduce radeon_dp_work_func content
     - drm/amd/pm: add missing NotifyPowerSource message mapping for SMU13.0.7
     - drm/amd/pm: Fix output of pp_od_clk_voltage
     - Revert "binder_alloc: add missing mmap_lock calls when using the VMA"
     - Revert "android: binder: stop saving a pointer to the VMA"
     - binder: add lockless binder_alloc_(set|get)_vma()
     - binder: fix UAF caused by faulty buffer cleanup
     - binder: fix UAF of alloc->vma in race with munmap()
     - drm/amd/amdgpu: limit one queue per gang
     - [x86] perf/x86/uncore: Correct the number of CHAs on SPR
     - [x86] topology: Fix erroneous smp_num_siblings on Intel Hybrid platforms
     - [mips*] irqchip/mips-gic: Don't touch vl_map if a local interrupt is not
       routable
     - [mips*] irqchip/mips-gic: Use raw spinlock for gic_lock
     - debugobjects: Don't wake up kswapd from fill_pool()
     - fbdev: udlfb: Fix endpoint check
     - net: fix stack overflow when LRO is disabled for virtual interfaces
     - udplite: Fix NULL pointer dereference in __sk_mem_raise_allocated().
     - USB: core: Add routines for endpoint checks in old drivers
     - USB: sisusbvga: Add endpoint checks
     - media: radio-shark: Add endpoint checks
     - net: fix skb leak in __skb_tstamp_tx()
     - drm: fix drmm_mutex_init()
     - bpf: Fix mask generation for 32-bit narrow loads of 64-bit fields
     - bpf: fix a memory leak in the LRU and LRU_PERCPU hash maps
     - ipv6: Fix out-of-bounds access in ipv6_find_tlv()
     - cifs: mapchars mount option ignored
     - power: supply: leds: Fix blink to LED on transition
     - power: supply: bq27xxx: Fix bq27xxx_battery_update() race condition
     - power: supply: bq27xxx: Fix I2C IRQ race on remove
     - power: supply: bq27xxx: Fix poll_interval handling and races on remove
     - power: supply: bq27xxx: Add cache parameter to
       bq27xxx_battery_current_and_status()
     - power: supply: bq27xxx: Move bq27xxx_battery_update() down
     - power: supply: bq27xxx: Ensure power_supply_changed() is called on current
       sign changes
     - power: supply: bq27xxx: After charger plug in/out wait 0.5s for things to
       stabilize
     - [arm64] power: supply: bq25890: Call power_supply_changed() after updating
       input current or voltage
     - [x86] power: supply: bq24190: Call power_supply_changed() after updating
       input current
     - [arm64] optee: fix uninited async notif value
     - fs: fix undefined behavior in bit shift for SB_NOUSER
     - [arm64] regulator: pca9450: Fix BUCK2 enable_mask
     - [x86] platform/x86: ISST: Remove 8 socket limit
     - [armhf] dts: imx6qdl-mba6: Add missing pvcie-supply regulator
     - [x86] pci/xen: populate MSI sysfs entries
     - [x86] show_trace_log_lvl: Ensure stack pointer is aligned, again
     - [x86] ASoC: Intel: Skylake: Fix declaration of enum skl_ch_cfg
     - cxl: Wait Memory_Info_Valid before access memory related info
     - sctp: fix an issue that plpmtu can never go to complete state
     - [x86] forcedeth: Fix an error handling path in nv_probe()
     - net/mlx5e: Fix SQ wake logic in ptp napi_poll context
     - net/mlx5e: Fix deadlock in tc route query code
     - net/mlx5e: Use correct encap attribute during invalidation
     - net/mlx5e: do as little as possible in napi poll when budget is 0
     - [s390x] net/mlx5: DR, Fix crc32 calculation to work on big-endian (BE)
       CPUs
     - net/mlx5: Handle pairing of E-switch via uplink un/load APIs
     - net/mlx5: DR, Check force-loopback RC QP capability independently from
       RoCE
     - net/mlx5: Fix error message when failing to allocate device memory
     - net/mlx5: Collect command failures data only for known commands
     - net/mlx5: Devcom, fix error flow in mlx5_devcom_register_device
     - net/mlx5: Devcom, serialize devcom registration
     - [arm64] dts: imx8mn-var-som: fix PHY detection bug by adding deassert
       delay
     - net/smc: Reset connection when trying to use SMCRv2 fails.
     - [x86] 3c589_cs: Fix an error handling path in tc589_probe()
     - net: phy: mscc: add VSC8502 to MODULE_DEVICE_TABLE
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.32
     - inet: Add IP_LOCAL_PORT_RANGE socket option
     - ipv{4,6}/raw: fix output xfrm lookup wrt protocol
     - tls: rx: device: fix checking decryption status
     - tls: rx: strp: set the skb->len of detached / CoW'ed skbs
     - tls: rx: strp: fix determining record length in copy mode
     - tls: rx: strp: force mixed decrypted records into copy mode
     - tls: rx: strp: factor out copying skb data
     - tls: rx: strp: preserve decryption status of skbs when needed
     - net/mlx5: E-switch, Devcom, sync devcom events and devcom comp register
     - [x86] gpio-f7188x: fix chip name and pin count on Nuvoton chip
     - bpf, sockmap: Pass skb ownership through read_skb
     - bpf, sockmap: Convert schedule_work into delayed_work
     - bpf, sockmap: Reschedule is now done through backlog
     - bpf, sockmap: Improved check for empty queue
     - bpf, sockmap: Handle fin correctly
     - bpf, sockmap: TCP data stall on recv before accept
     - bpf, sockmap: Wake up polling after data copy
     - bpf, sockmap: Incorrectly handling copied_seq
     - blk-mq: fix race condition in active queue accounting
     - vfio/type1: check pfn valid before converting to struct page
     - net: page_pool: use in_softirq() instead
     - page_pool: fix inconsistency for page_pool_ring_[un]lock()
     - net: phy: mscc: enable VSC8501/2 RGMII RX clock
     - wifi: iwlwifi: mvm: support wowlan info notification version 2
     - wifi: iwlwifi: mvm: fix potential memory leak
     - RDMA/rxe: Fix the error "trying to register non-static key in
       rxe_cleanup_task"
     - drm/amd: Don't allow s0ix on APUs older than Raven
     - bluetooth: Add cmd validity checks at the start of hci_sock_ioctl()
     - block: fix bio-cache for passthru IO
     - [x86] cpufreq: amd-pstate: Update policy->cur in amd_pstate_adjust_perf()
     - [x86] cpufreq: amd-pstate: Add ->fast_switch() callback
     - netfilter: ctnetlink: Support offloaded conntrack entry deletion
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.33
     - [arm64,armhf] phy: amlogic: phy-meson-g12a-mipi-dphy-analog: fix
       CNTL2_DIF_TX_CTL0 value
     - [arm64] RDMA/hns: Fix timeout attr in query qp for HIP08
     - [arm64] RDMA/hns: Fix base address table allocation
     - [arm64] RDMA/hns: Modify the value of long message loopback slice
     - [arm64,armhf] iommu/rockchip: Fix unwind goto issue
     - [amd64] iommu/amd: Don't block updates to GATag if guest mode is on
     - [amd64] iommu/amd: Handle GALog overflows
     - [amd64] iommu/amd: Fix up merge conflict resolution
     - nfsd: make a copy of struct iattr before calling notify_change
     - net/mlx5: Drain health before unregistering devlink
     - net/mlx5: SF, Drain health before removing device
     - net/mlx5: fw_tracer, Fix event handling
     - net/mlx5e: Don't attach netdev profile while handling internal error
     - netrom: fix info-leak in nr_write_internal()
     - af_packet: Fix data-races of pkt_sk(sk)->num.
     - tls: improve lockless access safety of tls_err_abort()
     - [amd64,arm64] amd-xgbe: fix the false linkup in xgbe_phy_status
     - perf ftrace latency: Remove unnecessary "--" from --use-nsec option
     - RDMA/irdma: Prevent QP use after free
     - RDMA/irdma: Fix Local Invalidate fencing
     - af_packet: do not use READ_ONCE() in packet_bind()
     - tcp: deny tcp_disconnect() when threads are waiting
     - tcp: Return user_mss for TCP_MAXSEG in CLOSE/LISTEN state if user_mss set
     - net/smc: Scan from current RMB list when no position specified
     - net/smc: Don't use RMBs not mapped to new link in SMCRv2 ADD LINK
     - net/sched: sch_ingress: Only create under TC_H_INGRESS
     - net/sched: sch_clsact: Only create under TC_H_CLSACT
     - net/sched: Reserve TC_H_INGRESS (TC_H_CLSACT) for ingress (clsact) Qdiscs
     - net/sched: Prohibit regrafting ingress or clsact Qdiscs
     - net: sched: fix NULL pointer dereference in mq_attach
     - net/netlink: fix NETLINK_LIST_MEMBERSHIPS length report
     - udp6: Fix race condition in udp6_sendmsg & connect
     - nfsd: fix double fget() bug in __write_ports_addfd()
     - nvme: fix the name of Zone Append for verbose logging
     - net/mlx5e: Fix error handling in mlx5e_refresh_tirs
     - net/mlx5: Read embedded cpu after init bit cleared
     - net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
       (CVE-2023-35788)
     - tcp: fix mishandling when the sack compression is deferred.
     - [arm64,armhf] net: dsa: mv88e6xxx: Increase wait after reset deactivation
     - [armhf] mtd: rawnand: marvell: ensure timing values are written
     - [armhf] mtd: rawnand: marvell: don't set the NAND frequency select
     - rtnetlink: call validate_linkmsg in rtnl_create_link
     - mptcp: avoid unneeded __mptcp_nmpc_socket() usage
     - mptcp: add annotations around msk->subflow accesses
     - mptcp: avoid unneeded address copy
     - mptcp: simplify subflow_syn_recv_sock()
     - mptcp: consolidate passive msk socket initialization
     - mptcp: fix data race around msk->first access
     - mptcp: add annotations around sk->sk_shutdown accesses
     - drm/amdgpu: release gpu full access after "amdgpu_device_ip_late_init"
     - ALSA: hda: Glenfly: add HD Audio PCI IDs and HDMI Codec Vendor IDs.
     - [x86] ASoC: Intel: soc-acpi-cht: Add quirk for Nextbook Ares 8A tablet
     - drm/amdgpu: Use the default reset when loading or reloading the driver
     - [arm64] drm/ast: Fix ARM compatibility
     - btrfs: abort transaction when sibling keys check fails for leaves
     - [armel,armhf] ARM: 9295/1: unwind:fix unwind abort for uleb128 case
     - [x86] hwmon: (k10temp) Add PCI ID for family 19, model 78h
     - gfs2: Don't deref jdesc in evict (CVE-2023-3212)
     - drm/amdgpu: set gfx9 onwards APU atomics support to be true
     - fbdev: modedb: Add 1920x1080 at 60 Hz video mode
     - nbd: Fix debugfs_create_dir error checking
     - nvme-pci: add NVME_QUIRK_BOGUS_NID for HS-SSD-FUTURE 2048G
     - nvme-pci: add quirk for missing secondary temperature thresholds
     - [x86] ASoC: amd: yc: Add DMI entry to support System76 Pangolin 12
     - xfrm: Check if_id in inbound policy/secpath match
     - [x86] ALSA: hda/realtek: Add quirks for ASUS GU604V and GU603V
     - media: dvb_demux: fix a bug for the continuity counter
     - media: dvb-usb: az6027: fix three null-ptr-deref in az6027_i2c_xfer()
     - media: dvb-usb-v2: ec168: fix null-ptr-deref in ec168_i2c_xfer()
     - media: dvb-usb-v2: ce6230: fix null-ptr-deref in ce6230_i2c_master_xfer()
     - media: dvb-usb-v2: rtl28xxu: fix null-ptr-deref in rtl28xxu_i2c_xfer
     - media: dvb-usb: digitv: fix null-ptr-deref in digitv_i2c_xfer()
     - media: dvb-usb: dw2102: fix uninit-value in su3000_read_mac_address
     - media: netup_unidvb: fix irq init by register it at the end of probe
     - media: dvb_ca_en50221: fix a size write bug
     - media: ttusb-dec: fix memory leak in ttusb_dec_exit_dvb()
     - media: dvb-core: Fix use-after-free due on race condition at dvb_net
     - media: dvb-core: Fix use-after-free due to race at dvb_register_device()
     - media: dvb-core: Fix kernel WARNING for blocking operation in
       wait_event*() (CVE-2023-31084)
     - media: dvb-core: Fix use-after-free due to race condition at
       dvb_ca_en50221
     - [x86] ASoC: SOF: debug: conditionally bump runtime_pm counter on
       exceptions
     - [x86] ASoC: SOF: pcm: fix pm_runtime imbalance in error handling
     - [x86] ASoC: SOF: sof-client-probes: fix pm_runtime imbalance in error
       handling
     - [x86] ASoC: SOF: pm: save io region state in case of errors in resume
     - [s390x] topology: honour nr_cpu_ids when adding CPUs
     - ACPI: resource: Add IRQ override quirk for LG UltraPC 17U70P
     - wifi: rtl8xxxu: fix authentication timeout due to incorrect RCR value
     - [arm64] mm: mark private VM_FAULT_X defines as vm_fault_t
     - [arm64] vdso: Pass (void *) to virt_to_page()
     - wifi: mac80211: simplify chanctx allocation
     - wifi: mac80211: consider reserved chanctx for mindef
     - wifi: mac80211: recalc chanctx mindef before assigning
     - wifi: iwlwifi: mvm: Add locking to the rate read flow
     - scsi: core: Decrease scsi_device's iorequest_cnt if dispatch failed
     - nvme-multipath: don't call blk_mark_disk_dead in nvme_mpath_remove_disk
     - nvme: do not let the user delete a ctrl before a complete initialization
     - [arm64] drm/msm: Be more shouty if per-process pgtables aren't working
     - ceph: silence smatch warning in reconnect_caps_cb()
     - drm/amdgpu: skip disabling fence driver src_irqs when device is unplugged
     - nvme-pci: Add quirk for Teamgroup MP33 SSD
     - block: Deny writable memory mapping if block is read-only
     - [arm64] KVM: arm64: vgic: Fix a circular locking issue
     - [arm64] KVM: arm64: vgic: Wrap vgic_its_create() with config_lock
     - [arm64] KVM: arm64: vgic: Fix locking comment
     - drivers: base: cacheinfo: Fix shared_cpu_map changes in event of CPU
       hotplug
     - media: uvcvideo: Don't expose unsupported formats to userspace
     - iio: accel: st_accel: Fix invalid mount_matrix on devices without ACPI
       _ONT method
     - HID: google: add jewel USB id
     - HID: wacom: avoid integer overflow in wacom_intuos_inout()
     - iio: imu: inv_icm42600: fix timestamp reset
     - iio: light: vcnl4035: fixed chip ID check
     - iio: adc: ad_sigma_delta: Fix IRQ issue by setting IRQ_DISABLE_UNLAZY flag
     - iio: dac: mcp4725: Fix i2c_master_send() return value handling
     - iio: adc: ad7192: Change "shorted" channels to differential
     - net: usb: qmi_wwan: Set DTR quirk for BroadMobi BM818
     - usb: gadget: f_fs: Add unbind event before functionfs_unbind
     - md/raid5: fix miscalculation of 'end_sector' in raid5_read_one_chunk()
     - ata: libata-scsi: Use correct device no in ata_find_dev()
     - drm/amdgpu: enable tmz by default for GC 11.0.1
     - drm/amd/pm: reverse mclk and fclk clocks levels for SMU v13.0.4
     - drm/amd/pm: reverse mclk and fclk clocks levels for vangogh
     - drm/amd/pm: resolve reboot exception for si oland
     - drm/amd/pm: reverse mclk clocks levels for SMU v13.0.5
     - drm/amd/pm: reverse mclk and fclk clocks levels for yellow carp
     - drm/amd/pm: reverse mclk and fclk clocks levels for renoir
     - [x86] mtrr: Revert 90b926e68f50 ("x86/pat: Fix pat_x_mtrr_type() for MTRR
       disabled case")
     - mmc: vub300: fix invalid response handling
     - [armhf] mmc: pwrseq: sd8787: Fix WILC CHIP_EN and RESETN toggling order
     - [arm64] tty: serial: fsl_lpuart: use UARTCTRL_TXINV to send break instead
       of UARTCTRL_SBK
     - btrfs: fix csum_tree_block page iteration to avoid tripping on
       -Werror=array-bounds
     - [arm64] phy: qcom-qmp-combo: fix init-count imbalance
     - [arm64] phy: qcom-qmp-pcie-msm8996: fix init-count imbalance
     - block: fix revalidate performance regression
     - [powerpc*] iommu: Limit number of TCEs to 512 for H_STUFF_TCE hcall
     - [amd64] iommu/amd: Fix domain flush size when syncing iotlb
     - tpm, tpm_tis: correct tpm_tis_flags enumeration values
     - io_uring: undeprecate epoll_ctl support
     - mtdchar: mark bits of ioctl handler noinline
     - [rt] tracing/timerlat: Always wakeup the timerlat thread
     - tracing/histograms: Allow variables to have some modifiers
     - tracing/probe: trace_probe_primary_from_call(): checked list_first_entry
     - mptcp: fix connect timeout handling
     - mptcp: fix active subflow finalization
     - ext4: add EA_INODE checking to ext4_iget()
     - ext4: disallow ea_inodes with extended attributes
     - fbcon: Fix null-ptr-deref in soft_cursor
     - [arm64,armhf] serial: 8250_tegra: Fix an error handling path in
       tegra_uart_probe()
     - [powerpc*] xmon: Use KSYM_NAME_LEN in array size
     - [arm64] KVM: arm64: Populate fault info for watchpoint
     - [x86] KVM: x86: Account fastpath-only VM-Exits in vCPU stats
     - ksmbd: fix credit count leakage
     - ksmbd: fix UAF issue from opinfo->conn
     - ksmbd: fix incorrect AllocationSize set in smb2_get_info
     - ksmbd: fix slab-out-of-bounds read in smb2_handle_negotiate
     - ksmbd: fix multiple out-of-bounds read during context decoding
     - KEYS: asymmetric: Copy sig and digest in public_key_verify_signature()
     - fs/ntfs3: Validate MFT flags before replaying logs (CVE-2022-48425)
     - regmap: Account for register length when chunking
     - tpm, tpm_tis: Request threaded interrupt handler
     - [amd64] iommu/amd/pgtbl_v2: Fix domain max address
     - drm/amd/display: Have Payload Properly Created After Resume
     - xfs: verify buffer contents when we skip log replay (CVE-2023-2124)
     - tls: rx: strp: don't use GFP_KERNEL in softirq context
     - [arm64] efi: Use SMBIOS processor version to key off Ampere quirk
     - ext4: enable the lazy init thread when remounting read/write
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.34
     - scsi: megaraid_sas: Add flexible array member for SGLs
     - net: sfp: fix state loss when updating state_hw_mask
     - [x86] platform/surface: aggregator: Allow completion work-items to be
       executed in parallel
     - [x86] platform/surface: aggregator_tabletsw: Add support for book mode in
       KIP subsystem
     - [arm64] spi: qup: Request DMA before enabling clocks
     - afs: Fix setting of mtime when creating a file/dir/symlink
     - wifi: mt76: mt7615: fix possible race in mt7615_mac_sta_poll
     - bpf, sockmap: Avoid potential NULL dereference in
       sk_psock_verdict_data_ready()
     - neighbour: fix unaligned access to pneigh_entry
     - net/ipv4: ping_group_range: allow GID from 2147483648 to 4294967294
     - bpf: Fix UAF in task local storage
     - bpf: Fix elem_size not being set for inner maps
     - net/ipv6: fix bool/int mismatch for skip_notify_on_dev_down
     - net/smc: Avoid to access invalid RMBs' MRs in SMCRv1 ADD LINK CONT
     - [arm64] net: enetc: correct the statistics of rx bytes
     - [arm64] net: enetc: correct rx_bytes statistics of XDP
     - net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
     - [x86] drm/i915: Explain the magic numbers for AUX SYNC/precharge length
     - [x86] drm/i915: Use 18 fast wake AUX sync len
     - Bluetooth: hci_sync: add lock to protect HCI_UNREGISTER
     - Bluetooth: Fix l2cap_disconnect_req deadlock
     - Bluetooth: ISO: don't try to remove CIG if there are bound CIS left
     - Bluetooth: L2CAP: Add missing checks for invalid DCID
     - wifi: mac80211: use correct iftype HE cap
     - wifi: cfg80211: reject bad AP MLD address
     - wifi: mac80211: mlme: fix non-inheritence element
     - wifi: mac80211: don't translate beacon/presp addrs
     - qed/qede: Fix scheduling while atomic
     - wifi: cfg80211: fix locking in sched scan stop work
     - netfilter: nft_bitwise: fix register tracking
     - netfilter: conntrack: fix NULL pointer dereference in nf_confirm_cthelper
     - netfilter: ipset: Add schedule point in call_ad().
     - netfilter: nf_tables: out-of-bound check in chain blob
     - ipv6: rpl: Fix Route of Death. (CVE-2023-2156)
     - tcp: gso: really support BIG TCP
     - rfs: annotate lockless accesses to sk->sk_rxhash
     - rfs: annotate lockless accesses to RFS sock flow table
     - net: sched: add rcu annotations around qdisc->qdisc_sleeping
     - net: sched: move rtm_tca_policy declaration to include file
     - net: sched: act_police: fix sparse errors in tcf_police_dump()
     - net: sched: fix possible refcount leak in tc_chain_tmplt_add()
     - bpf: Add extra path pointer check to d_path helper
     - drm/amdgpu: fix Null pointer dereference error in
       amdgpu_device_recover_vram
     - lib: cpu_rmap: Fix potential use-after-free in irq_cpu_rmap_release()
     - [arm64] net: bcmgenet: Fix EEE implementation
     - bnxt_en: Don't issue AP reset during ethtool's reset operation
     - bnxt_en: Query default VLAN before VNIC setup on a VF
     - bnxt_en: Skip firmware fatal error recovery if chip is not accessible
     - bnxt_en: Prevent kernel panic when receiving unexpected PHC_UPDATE event
     - bnxt_en: Implement .set_port / .unset_port UDP tunnel callbacks
     - batman-adv: Broken sync while rescheduling delayed work
     - Input: xpad - delete a Razer DeathAdder mouse VID/PID entry
     - Input: psmouse - fix OOB access in Elantech protocol
     - Input: fix open count when closing inhibited device
     - ALSA: hda: Fix kctl->id initialization
     - ALSA: ymfpci: Fix kctl->id initialization
     - [i386] ALSA: gus: Fix kctl->id initialization
     - ALSA: cmipci: Fix kctl->id initialization
     - [x86] ALSA: hda/realtek: Add quirk for Clevo NS50AU
     - ALSA: ice1712,ice1724: fix the kcontrol->id initialization
     - [x86] ALSA: hda/realtek: Add a quirk for HP Slim Desktop S01
     - [x86] ALSA: hda/realtek: Add Lenovo P3 Tower platform
     - [x86] ALSA: hda/realtek: Add quirks for Asus ROG 2024 laptops using
       CS35L41
     - [x86] drm/i915/gt: Use the correct error value when kernel_context() fails
     - drm/amd/pm: conditionally disable pcie lane switching for some
       sienna_cichlid SKUs
     - drm/amdgpu: fix xclk freq on CHIP_STONEY
     - drm/amdgpu: change reserved vram info print
     - drm/amd/pm: Fix power context allocation in SMU13
     - drm/amd/display: Reduce sdp bw after urgent to 90%
     - wifi: iwlwifi: mvm: Fix -Warray-bounds bug in iwl_mvm_wait_d3_notif()
     - can: j1939: j1939_sk_send_loop_abort(): improved error queue handling in
       J1939 Socket
     - can: j1939: change j1939_netdev_lock type to mutex
     - can: j1939: avoid possible use-after-free when j1939_can_rx_register fails
     - mptcp: only send RM_ADDR in nl_cmd_remove
     - mptcp: add address into userspace pm list
     - mptcp: update userspace pm infos
     - ceph: fix use-after-free bug for inodes when flushing capsnaps
     - [s390x] dasd: Use correct lock while counting channel queue length
     - Bluetooth: Fix use-after-free in hci_remove_ltk/hci_remove_irk
     - Bluetooth: fix debugfs registration
     - Bluetooth: hci_qca: fix debugfs registration
     - rbd: move RBD_OBJ_FLAG_COPYUP_ENABLED flag setting
     - rbd: get snapshot context after exclusive lock is ensured to be held
     - virtio_net: use control_buf for coalesce params
     - [arm64] pinctrl: meson-axg: add missing GPIOA_18 gpio group
     - usb: usbfs: Enforce page requirements for mmap
     - usb: usbfs: Use consistent mmap functions
     - [arm64] dts: imx8qm-mek: correct GPIOs for USDHC2 CD and WP signals
     - [arm*] ASoC: simple-card-utils: fix PCM constraint error check
     - blk-mq: fix blk_mq_hw_ctx active request accounting
     - [arm64] dts: imx8mn-beacon: Fix SPI CS pinmux
     - [arm*] i2c: mv64xxx: Fix reading invalid status value in atomic mode
     - soundwire: stream: Add missing clear of alloc_slave_rt
     - vhost: support PACKED when setting-getting vring_base
     - ksmbd: fix out-of-bound read in deassemble_neg_contexts()
     - ksmbd: fix out-of-bound read in parse_lease_state()
     - ksmbd: check the validation of pdu_size in ksmbd_conn_handler_loop
     - ext4: only check dquot_initialize_needed() when debugging
     - wifi: rtw89: correct PS calculation for SUPPORTS_DYNAMIC_PS
     - wifi: rtw88: correct PS calculation for SUPPORTS_DYNAMIC_PS
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.35
     - [amd64] x86/head/64: Switch to KERNEL_CS as soon as new GDT is installed
     - cgroup: bpf: use cgroup_lock()/cgroup_unlock() wrappers
     - cgroup: always put cset in cgroup_css_set_put_fork
     - cgroup: fix missing cpus_read_{lock,unlock}() in cgroup_transfer_tasks()
     - EDAC/qcom: Get rid of hardcoded register offsets
     - ksmbd: validate smb request protocol id
     - of: overlay: Fix missing of_node_put() in error case of
       init_overlay_changeset()
     - power: supply: bq27xxx: Use mod_delayed_work() instead of cancel() +
       schedule()
     - [armhf] dts: vexpress: add missing cache properties
     - power: supply: Ratelimit no data debug output
     - PCI/DPC: Quirk PIO log size for Intel Ice Lake Root Ports
     - [x86] platform/x86: asus-wmi: Ignore WMI events with codes 0x7B, 0xC0
     - regulator: Fix error checking for debugfs_create_dir
     - [arm64,armhf] irqchip/gic-v3: Disable pseudo NMIs on Mediatek devices w/
       firmware issues
     - [arm64,armhf] irqchip/meson-gpio: Mark OF related data as maybe unused
     - power: supply: Fix logic checking if system is running from battery
     - drm: panel-orientation-quirks: Change Air's quirk to support Air Plus
     - btrfs: scrub: try harder to mark RAID56 block groups read-only
     - btrfs: handle memory allocation failure in btrfs_csum_one_bio
     - ASoC: soc-pcm: test if a BE can be prepared
     - [mips*] unhide PATA_PLATFORM
     - [mips*] Restore Au1300 support
     - [mips*] Move initrd_start check after initrd address sanitisation.
     - ASoC: cs35l41: Fix default regmap values for some registers
     - ASoC: dwc: move DMA init to snd_soc_dai_driver probe()
     - xen/blkfront: Only check REQ_FUA for writes
     - drm:amd:amdgpu: Fix missing buffer object unlock in failure path
     - io_uring: unlock sqd->lock before sq thread release CPU
     - NVMe: Add MAXIO 1602 to bogus nid list.
     - [arm64,armhf] irqchip/gic: Correctly validate OF quirk descriptors
     - wifi: cfg80211: fix locking in regulatory disconnect
     - wifi: cfg80211: fix double lock bug in reg_wdev_chan_valid()
     - epoll: ep_autoremove_wake_function should use list_del_init_careful
     - ocfs2: fix use-after-free when unmounting read-only filesystem
     - ocfs2: check new file size on fallocate call
     - zswap: do not shrink if cgroup may not zswap
     - nilfs2: fix incomplete buffer cleanup in nilfs_btnode_abort_change_key()
     - nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
     - nilfs2: reject devices with insufficient block count
     - io_uring/net: save msghdr->msg_control for retries
     - kexec: support purgatories with .text.hot sections
     - [x86] purgatory: remove PGO flags
     - [powerpc*] purgatory: remove PGO flags
     - btrfs: do not ASSERT() on duplicated global roots
     - btrfs: fix iomap_begin length for nocow writes
     - btrfs: can_nocow_file_extent should pass down args->strict from callers
     - ALSA: usb-audio: Fix broken resume due to UAC3 power state
     - ALSA: usb-audio: Add quirk flag for HEM devices to enable native DSD
       playback
     - dm thin metadata: check fail_io before using data_sm
     - dm thin: fix issue_discard to pass GFP_NOIO to __blkdev_issue_discard
     - net: ethernet: stmicro: stmmac: fix possible memory leak in __stmmac_open
     - nouveau: fix client work fence deletion race
     - RDMA/uverbs: Restrict usage of privileged QKEYs
     - drm/amdgpu: vcn_4_0 set instance 0 init sched score to 1
     - net: usb: qmi_wwan: add support for Compal RXM-G1
     - drm/amd/display: edp do not add non-edid timings
     - drm/amd: Make sure image is written to trigger VBIOS image update flow
     - drm/amd: Tighten permissions on VBIOS flashing attributes
     - drm/amd/pm: workaround for compute workload type on some skus
     - drm/amdgpu: add missing radeon secondary PCI ID
     - ALSA: hda/realtek: Add a quirk for Compaq N14JP6
     - [x86] thunderbolt: Do not touch CL state configuration during discovery
     - [x86] thunderbolt: dma_test: Use correct value for absent rings when
       creating paths
     - [x86] thunderbolt: Mask ring interrupt on Intel hardware as well
     - USB: serial: option: add Quectel EM061KGL series
     - usb: typec: ucsi: Fix command cancellation
     - usb: typec: Fix fast_role_swap_current show function
     - usb: gadget: udc: core: Offload usb_udc_vbus_handler processing
     - usb: gadget: udc: core: Prevent soft_connect_store() race
     - [arm64] USB: dwc3: qcom: fix NULL-deref on suspend
     - [arm64,armhf] USB: dwc3: fix use-after-free on core driver unbind
     - [arm64,armhf] usb: dwc3: gadget: Reset num TRBs before giving back the
       request
     - RDMA/rxe: Fix packet length checks
     - RDMA/rxe: Fix ref count error in check_rkey()
     - spi: cadence-quadspi: Add missing check for dma_set_mask
     - [arm64] spi: fsl-dspi: avoid SCK glitches with continuous transfers
     - netfilter: nf_tables: integrate pipapo into commit protocol
     - netfilter: nfnetlink: skip error delivery on batch in case of ENOMEM
     - ice: Fix XDP memory leak when NIC is brought up and down
     - netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
       (CVE-2023-3390)
     - [arm64] net: enetc: correct the indexes of highest and 2nd highest TCs
     - ping6: Fix send to link-local addresses with VRF.
     - igb: Fix extts capture value format for 82580/i354/i350
     - net/sched: simplify tcf_pedit_act
     - net/sched: act_pedit: remove extra check for key type
     - net/sched: act_pedit: Parse L3 Header for L4 offset
     - net/sched: cls_u32: Fix reference counter leak leading to overflow
     - wifi: mac80211: fix link activation settings order
     - wifi: cfg80211: fix link del callback to call correct handler
     - wifi: mac80211: take lock before setting vif links
     - RDMA/rxe: Removed unused name from rxe_task struct
     - RDMA/rxe: Fix the use-before-initialization error of resp_pkts
     - iavf: remove mask from iavf_irq_enable_queues()
     - RDMA/mlx5: Initiate dropless RQ for RAW Ethernet functions
     - RDMA/mlx5: Create an indirect flow table for steering anchor
     - RDMA/cma: Always set static rate to 0 for RoCE
     - IB/uverbs: Fix to consider event queue closing also upon non-blocking mode
     - RDMA/mlx5: Fix affinity assignment
     - IB/isert: Fix dead lock in ib_isert
     - IB/isert: Fix possible list corruption in CMA handler
     - IB/isert: Fix incorrect release of isert connection
     - net: ethtool: correct MAX attribute value for stats
     - ipvlan: fix bound dev checking for IPv6 l3s mode
     - sctp: fix an error code in sctp_sf_eat_auth()
     - igc: Clean the TX buffer and TX descriptor ring
     - igc: Fix possible system crash when loading module
     - igb: fix nvm.ops.read() error handling
     - net: phylink: report correct max speed for QUSGMII
     - net: phylink: use a dedicated helper to parse usgmii control word
     - drm/nouveau: don't detect DSM for non-NVIDIA device
     - [arm64] drm/bridge: ti-sn65dsi86: Avoid possible buffer overflow
     - drm/nouveau/dp: check for NULL nv_connector->native_mode
     - drm/nouveau: add nv_encoder pointer check for NULL
     - sched: add new attr TCA_EXT_WARN_MSG to report tc extact message
     - net/sched: Refactor qdisc_graft() for ingress and clsact Qdiscs
     - net/sched: qdisc_destroy() old ingress and clsact Qdiscs before grafting
     - cifs: fix lease break oops in xfstest generic/098
     - ext4: drop the call to ext4_error() from ext4_get_group_info()
     - net/sched: cls_api: Fix lockup on flushing explicitly created chain
     - [arm64] net: dsa: felix: fix taprio guard band overflow at 10Mbps with
       jumbo frames
     - net: macsec: fix double free of percpu stats
     - sfc: fix XDP queues mode with legacy IRQ
     - dm: don't lock fs when the map is NULL during suspend or resume
     - net: tipc: resize nlattr array to correct size
     - afs: Fix vlserver probe RTT handling
     - rcu/kvfree: Avoid freeing new kfree_rcu() memory after old grace period
     - drm/amdgpu: Don't set struct drm_driver.output_poll_changed
     - net/sched: act_api: move TCA_EXT_WARN_MSG to the correct hierarchy
     - Revert "net/sched: act_api: move TCA_EXT_WARN_MSG to the correct
       hierarchy"
     - net/sched: act_api: add specific EXT_WARN_MSG for tc action
     - neighbour: delete neigh_lookup_nodev as not used
     - scsi: target: core: Fix error path in target_setup_session()
     - [mips*] Move '-Wa,-msoft-float' check from as-option to cc-option
     - [mips*] Prefer cc-option for additions to cflags
     - kbuild: Update assembler calls to use proper flags and language target
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.36
     - drm/amd/display: Use dc_update_planes_and_stream
     - drm/amd/display: Add wrapper to call planes and stream update
     - drm/amd/display: fix the system hang while disable PSR
     - [arm64] tty: serial: fsl_lpuart: make rx_watermark configurable for
       different platforms
     - [arm64] tty: serial: fsl_lpuart: reduce RX watermark to 0 on LS1028A
     - ata: libata-scsi: Avoid deadlock on rescan after device resume
     - mm: Fix copy_from_user_nofault(). (Closes: #1033398)
     - tpm, tpm_tis: Claim locality in interrupt handler
     - tpm_crb: Add support for CRB devices based on Pluton
     - ksmbd: validate command payload size
     - ksmbd: fix out-of-bound read in smb2_write
     - ksmbd: validate session id and tree id in the compound request
     - tick/common: Align tick period during sched_timer setup (Closes: #1038754)
     - writeback: fix dereferencing NULL mapping->host on writeback_page_template
     - nilfs2: fix buffer corruption due to concurrent device reads
     - [x86] ACPI: sleep: Avoid breaking S3 wakeup due to might_sleep()
     - KVM: Avoid illegal stage2 mapping on invalid memory slot
     - Drivers: hv: vmbus: Call hv_synic_free() if hv_synic_alloc() fails
     - Drivers: hv: vmbus: Fix vmbus_wait_for_unload() to scan present CPUs
     - PCI: hv: Fix a race condition bug in hv_pci_query_relations()
     - Revert "PCI: hv: Fix a timing issue which causes kdump to fail
       occasionally"
     - PCI: hv: Remove the useless hv_pcichild_state from struct hv_pci_dev
     - PCI: hv: Fix a race condition in hv_irq_unmask() that can cause panic
     - PCI: hv: Add a per-bus mutex state_lock
     - io_uring/net: clear msg_controllen on partial sendmsg retry
     - io_uring/net: disable partial retries for recvmsg with cmsg
     - mptcp: handle correctly disconnect() failures
     - mptcp: fix possible divide by zero in recvmsg()
     - mptcp: fix possible list corruption on passive MPJ
     - mptcp: consolidate fallback and non fallback state machine
     - cgroup: Do not corrupt task iteration when rebinding subsystem
     - cgroup,freezer: hold cpu_hotplug_lock before freezer_mutex in
       freezer_css_{online,offline}()
     - [arm64] mmc: sdhci-msm: Disable broken 64-bit DMA on MSM8916
     - [arm64] mmc: meson-gx: remove redundant mmc_request_done() call from irq
       context
     - [arm64,armhf] mmc: mmci: stm32: fix max busy timeout calculation
     - [arm64,armhf] mmc: bcm2835: fix deferred probing
     - [arm64,armhf] mmc: sunxi: fix deferred probing
     - bpf: ensure main program has an extable
     - wifi: iwlwifi: pcie: Handle SO-F device for PCI id 0x7AF0
     - io_uring/poll: serialize poll linked timer start with poll removal
     - nilfs2: prevent general protection fault in nilfs_clear_dirty_page()
     - [x86] mm: Avoid using set_pgd() outside of real PGD pages
     - memfd: check for non-NULL file_seals in memfd_create() syscall
     - [arm64] mmc: meson-gx: fix deferred probing
     - ieee802154: hwsim: Fix possible memory leaks
     - xfrm: Treat already-verified secpath entries as optional
     - xfrm: interface: rename xfrm_interface.c to xfrm_interface_core.c
     - xfrm: Ensure policies always checked on XFRM-I input path
     - [arm64] KVM: arm64: PMU: Restore the host's PMUSERENR_EL0
     - bpf: track immediate values written to stack by BPF_ST instruction
     - bpf: Fix verifier id tracking of scalars on spill
     - xfrm: fix inbound ipv4/udp/esp packets to UDPv6 dualstack sockets
     - bpf: Fix a bpf_jit_dump issue for x86_64 with sysctl bpf_jit_enable.
     - xfrm: Linearize the skb after offloading if needed.
     - net/mlx5: DR, Fix wrong action data allocation in decap action
     - sfc: use budget for TX completions
     - [armel,armhf] mmc: mvsdio: fix deferred probing
     - [armhf] mmc: omap: fix deferred probing
     - [armhf] mmc: omap_hsmmc: fix deferred probing
     - mmc: sdhci-acpi: fix deferred probing
     - ipvs: align inner_mac_header for encapsulation
     - be2net: Extend xmit workaround to BE3 chip
     - netfilter: nf_tables: fix chain binding transaction logic
     - netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound
       set/chain
     - netfilter: nf_tables: drop map element references from preparation phase
     - netfilter: nft_set_pipapo: .walk does not deal with generations
     - netfilter: nf_tables: disallow element updates of bound anonymous sets
     - netfilter: nf_tables: reject unbound anonymous set before commit phase
     - netfilter: nf_tables: reject unbound chain set before commit phase
     - netfilter: nf_tables: disallow updates of anonymous sets
     - netfilter: nfnetlink_osf: fix module autoload
     - Revert "net: phy: dp83867: perform soft reset and retain established link"
     - bpf/btf: Accept function names that contain dots
     - bpf: Force kprobe multi expected_attach_type for kprobe_multi link
     - io_uring/net: use the correct msghdr union member in io_sendmsg_copy_hdr
     - sch_netem: acquire qdisc lock in netem_change()
     - revert "net: align SO_RCVMARK required privileges with SO_MARK"
     - [arm64] dts: rockchip: fix nEXTRST on SOQuartz
     - gpiolib: Fix GPIO chip IRQ initialization restriction
     - gpiolib: Fix irq_domain resource tracking for
       gpiochip_irqchip_add_domain()
     - scsi: target: iscsi: Prevent login threads from racing between each other
     - HID: wacom: Add error check to wacom_parse_and_register()
     - smb3: missing null check in SMB2_change_notify
     - media: cec: core: disable adapter in cec_devnode_unregister
     - media: cec: core: don't set last_initiator if tx in progress
     - nfcsim.c: Fix error checking for debugfs_create_dir
     - btrfs: fix an uninitialized variable warning in btrfs_log_inode
     - [i386] usb: gadget: udc: fix NULL dereference in remove()
     - nvme: double KA polling frequency to avoid KATO with TBKAS on
     - nvme: check IO start time when deciding to defer KA
     - nvme: improve handling of long keep alives
     - [x86] Input: soc_button_array - add invalid acpi_index DMI quirk handling
     - [s390x] cio: unregister device when the only path is gone
     - [arm*] ASoC: simple-card: Add missing of_node_put() in case of error
     - soundwire: dmi-quirks: add new mapping for HP Spectre x360
     - soundwire: qcom: add proper error paths in qcom_swrm_startup()
     - [x86] ASoC: nau8824: Add quirk to active-high jack-detect
     - [x86] ASoC: amd: yc: Add Thinkpad Neo14 to quirks list for acp6x
     - gfs2: Don't get stuck writing page onto itself under direct I/O
     - [arm64] ASoC: fsl_sai: Enable BCI bit if SAI works on synchronous mode
       with BYP asserted
     - ALSA: hda/realtek: Add "Intel Reference board" and "NUC 13" SSID in the
       ALC256
     - i2c: mchp-pci1xxxx: Avoid cast to incompatible function type
     - null_blk: Fix: memory release when memory_backed=1
     - drm/radeon: fix race condition UAF in radeon_gem_set_domain_ioctl
     - vhost_net: revert upend_idx only on retriable error
     - [arm64] KVM: arm64: Restore GICv2-on-GICv3 functionality
     - [x86] apic: Fix kernel panic when booting with intremap=off and
       x2apic_phys
     - [arm64] i2c: imx-lpi2c: fix type char overflow issue when calculating the
       clock cycle
     - smb: move client and server files to common directory fs/smb
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.37
     - mm/mmap: Fix error path in do_vmi_align_munmap()
     - mm/mmap: Fix error return in do_vmi_align_munmap()
     - mptcp: ensure listener is unhashed before updating the sk status
     - mm, hwpoison: try to recover from copy-on write faults
     - mm, hwpoison: when copy-on-write hits poison, take page offline
     - [x86] microcode/AMD: Load late on both threads too
     - [x86] smp: Make stop_other_cpus() more robust
     - [x86] smp: Dont access non-existing CPUID leaf
     - [x86] smp: Remove pointless wmb()s from native_stop_other_cpus()
     - [x86] smp: Use dedicated cache-line for mwait_play_dead()
     - [x86] smp: Cure kexec() vs. mwait_play_dead() breakage
     - can: isotp: isotp_sendmsg(): fix return error fix on TX path
     - maple_tree: fix potential out-of-bounds access in mas_wr_end_piv()
     - mm: introduce new 'lock_mm_and_find_vma()' page fault helper
     - mm: make the page fault mmap locking killable
     - [arm64] mm: Convert to using lock_mm_and_find_vma()
     - [powerpc*] mm: Convert to using lock_mm_and_find_vma()
     - [mips*] mm: Convert to using lock_mm_and_find_vma()
     - [armhf] mm: Convert to using lock_mm_and_find_vma()
     - mm/fault: convert remaining simple cases to lock_mm_and_find_vma()
     - [powerpc*] mm: convert coprocessor fault to lock_mm_and_find_vma()
     - mm: make find_extend_vma() fail if write lock not held
     - execve: expand new process stack manually ahead of time
     - mm: always expand the stack with the mmap write lock held
     - fbdev: fix potential OOB read in fast_imageblit()
     - HID: hidraw: fix data race on device refcount
     - HID: wacom: Use ktime_t rather than int when dealing with timestamps
     - HID: logitech-hidpp: add HIDPP_QUIRK_DELAYED_INIT for the T651.
       (Closes: #1038271)
 .
   [ Salvatore Bonaccorso ]
   * d/salsa-ci.yml: Update for bookworm: Set RELEASE to bookworm
   * d/rules.real: Fix typo in setup_image target.
   * [amd64,arm64] drivers/virtio: Enable VIRTIO_MEM as module (Closes: #1038665)
   * Bump ABI to 10
   * [rt] Update to 6.1.33-rt11
   * Revert "drm/amd/display: edp do not add non-edid timings"
 .
   [ Cyril Brulebois ]
   * udeb: Add r8188eu to nic-wireless-modules (Closes: #1035824)
 .
   [ Ben Hutchings ]
   * Add pkg.linux.mintools profile for building minimal userland tools
   * d/b/test-patches: Build linux-{kbuild,bootwrapper} packages
     (Closes: #871216, #1035359)

linux-signed-i386 (6.1.38+1) bookworm; urgency=medium
 .
   * Sign kernel from linux 6.1.38-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.38
     - drm/amd/display: Remove optimization for VRR updates
     - drm/amd/display: Do not update DRR while BW optimizations pending
     - PCI/ACPI: Validate acpi_pci_set_power_state() parameter
     - PCI/ACPI: Call _REG when transitioning D-states
     - execve: always mark stack as growing down during early stack setup
     - perf symbols: Symbol lookup with kcore can fail if multiple segments match
       stext
     - scripts/tags.sh: Resolve gtags empty index generation
     - drm/amdgpu: Validate VM ioctl flags.
     - drm/amd/display: Ensure vmin and vmax adjust for DCE
 .
   [ Salvatore Bonaccorso ]
   * drm: use mgr->dev in drm_dbg_kms in drm_dp_add_payload_part2
   * mm/mmap: Fix VM_LOCKED check in do_vmi_align_munmap()
   * netfilter: nf_tables: do not ignore genmask when looking up chain by id
     (CVE-2023-31248)
   * netfilter: nf_tables: prevent OOB access in nft_byteorder_eval
     (CVE-2023-35001)
linux-signed-i386 (6.1.37+1) bookworm-security; urgency=high
 .
   * Sign kernel from linux 6.1.37-1
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.28
     - [x86] ASOC: Intel: sof_sdw: add quirk for Intel 'Rooks County' NUC M15
     - [x86] ASoC: Intel: soc-acpi: add table for Intel 'Rooks County' NUC M15
     - ASoC: soc-pcm: fix hw->formats cleared by soc_pcm_hw_init() for dpcm
     - [x86] hyperv: Block root partition functionality in a Confidential VM
     - [x86] ASoC: amd: yc: Add DMI entries to support Victus by HP Laptop
       16-e1xxx (8A22)
     - [x86] ASoC: Intel: bytcr_rt5640: Add quirk for the Acer Iconia One 7
       B1-750
     - [x86] ASoC: da7213.c: add missing pm_runtime_disable()
     - scsi: mpi3mr: Handle soft reset in progress fault code (0xF002)
     - net: sfp: add quirk enabling 2500Base-x for HG MXPD-483II
     - [x86] platform/x86: thinkpad_acpi: Add missing T14s Gen1 type to s2idle
       quirk list
     - wifi: ath11k: reduce the MHI timeout to 20s
     - tracing: Error if a trace event has an array for a __field()
     - [x86] cpu: Add model number for Intel Arrow Lake processor
     - wireguard: timers: cast enum limits members to int in prints
     - wifi: mt76: mt7921e: Set memory space enable in PCI_COMMAND if unset
     - [arm64] Always load shadow stack pointer directly from the task struct
     - [arm64] Stash shadow stack pointer in the task struct on interrupt
     - PCI: pciehp: Fix AB-BA deadlock between reset_lock and device_lock
     - [arm64] PCI: qcom: Fix the incorrect register usage in v2.7.0 config
     - [arm64] phy: qcom-qmp-pcie: sc8180x PCIe PHY has 2 lanes
     - [arm64,armhf] usb: dwc3: gadget: Stall and restart EP0 if host is
       unresponsive
     - [arm64,armhf] USB: dwc3: fix runtime pm imbalance on probe errors
     - [arm64,armhf] USB: dwc3: fix runtime pm imbalance on unbind
     - [x86] hwmon: (k10temp) Check range scale when CUR_TEMP register is
       read-write
     - hwmon: (adt7475) Use device_property APIs when configuring polarity
     - tpm: Add !tpm_amd_is_rng_defective() to the hwrng_unregister() call site
     - posix-cpu-timers: Implement the missing timer_wait_running callback
     - blk-stat: fix QUEUE_FLAG_STATS clear
     - blk-crypto: don't use struct request_queue for public interfaces
     - blk-crypto: add a blk_crypto_config_supported_natively helper
     - blk-crypto: move internal only declarations to blk-crypto-internal.h
     - blk-crypto: Add a missing include directive
     - blk-mq: release crypto keyslot before reporting I/O complete
     - blk-crypto: make blk_crypto_evict_key() return void
     - blk-crypto: make blk_crypto_evict_key() more robust
     - tty: Prevent writing chars during tcsetattr TCSADRAIN/FLUSH
     - xhci: fix debugfs register accesses while suspended
     - serial: fix TIOCSRS485 locking
     - serial: 8250: Fix serial8250_tx_empty() race with DMA Tx
     - tick/nohz: Fix cpu_is_hotpluggable() by checking with nohz subsystem
     - fs: fix sysctls.c built
     - [mips*] fw: Allow firmware to pass a empty env
     - ipmi:ssif: Add send_retries increment
     - ipmi: fix SSIF not responding under certain cond.
     - wifi: mt76: add missing locking to protect against concurrent rx/status
       calls
     - [arm64,armhf] pwm: meson: Fix axg ao mux parents
     - [arm64,armhf] pwm: meson: Fix g12a ao clk81 name
     - soundwire: qcom: correct setting ignore bit on v1.5.1
     - ring-buffer: Ensure proper resetting of atomic variables in
       ring_buffer_reset_online_cpus
     - ring-buffer: Sync IRQ works before buffer destruction
     - crypto: api - Demote BUG_ON() in crypto_unregister_alg() to a WARN_ON()
     - [arm64] crypto: safexcel - Cleanup ring IRQ workqueues on load failure
     - [x86] crypto: ccp - Don't initialize CCP for PSP 0x1649
     - rcu: Avoid stack overflow due to __rcu_irq_enter_check_tick() being
       kprobe-ed
     - reiserfs: Add security prefix to xattr name in reiserfs_security_write()
     - [x86] KVM: nVMX: Emulate NOPs in L2, and PAUSE if it's not intercepted
     - [arm64] KVM: arm64: Avoid vcpu->mutex v. kvm->lock inversion in CPU_ON
     - [arm64] KVM: arm64: Avoid lock inversion when setting the VM register
       width
     - [arm64] KVM: arm64: Use config_lock to protect data ordered against
       KVM_RUN
     - [arm64] KVM: arm64: Use config_lock to protect vgic state
     - [arm64] KVM: arm64: vgic: Don't acquire its_lock before config_lock
     - relayfs: fix out-of-bounds access in relay_file_read (CVE-2023-3268)
     - drm/amd/display: Remove stutter only configurations
     - drm/amd/display: limit timing for single dimm memory
     - drm/amd/display: fix PSR-SU/DSC interoperability support
     - drm/amd/display: fix a divided-by-zero error
     - ksmbd: fix racy issue under cocurrent smb2 tree disconnect
       (CVE-2023-32254)
     - ksmbd: call rcu_barrier() in ksmbd_server_exit()
     - ksmbd: fix NULL pointer dereference in smb2_get_info_filesystem()
     - ksmbd: fix memleak in session setup
     - ksmbd: not allow guest user on multichannel
     - ksmbd: fix deadlock in ksmbd_find_crypto_ctx()
     - [x86] ACPI: video: Remove acpi_backlight=video quirk for Lenovo ThinkPad
       W530
     - [arm64,armhf] i2c: omap: Fix standard mode false ACK readings
     - tracing: Fix permissions for the buffer_percent file
     - swsmu/amdgpu_smu: Fix the wrong if-condition
     - drm/amd/pm: re-enable the gfx imu when smu resume
     - [amd64] iommu/amd: Fix "Guest Virtual APIC Table Root Pointer"
       configuration in IRTE
     - Revert "ubifs: dirty_cow_znode: Fix memleak in error handling path"
     - ubifs: Fix memleak when insert_old_idx() failed
     - ubi: Fix return value overwrite issue in try_write_vid_and_data()
     - ubifs: Free memory for tmpfile name
     - ubifs: Fix memory leak in do_rename
     - ceph: fix potential use-after-free bug when trimming caps
     - xfs: don't consider future format versions valid
     - cxl/hdm: Fail upon detecting 0-sized decoders
     - bus: mhi: host: Remove duplicate ee check for syserr
     - bus: mhi: host: Use mhi_tryset_pm_state() for setting fw error state
     - bus: mhi: host: Range check CHDBOFF and ERDBOFF
     - rcu: Fix missing TICK_DEP_MASK_RCU_EXP dependency check
     - tpm, tpm_tis: Do not skip reset of original interrupt vector
     - tpm, tpm_tis: Claim locality before writing TPM_INT_ENABLE register
     - tpm, tpm_tis: Disable interrupts if tpm_tis_probe_irq() failed
     - tpm, tpm_tis: Claim locality before writing interrupt registers
     - tpm, tpm: Implement usage counter for locality
     - tpm, tpm_tis: Claim locality when interrupts are reenabled on resume
     - erofs: stop parsing non-compact HEAD index if clusterofs is invalid
     - erofs: initialize packed inode after root inode is assigned
     - erofs: fix potential overflow calculating xattr_isize
     - [arm64,armhf] drm/rockchip: Drop unbalanced obj unref
     - [x86] drm/i915/dg2: Drop one PCI ID
     - drm/vgem: add missing mutex_destroy
     - drm/probe-helper: Cancel previous job before starting new one
     - drm/amdgpu: register a vga_switcheroo client for MacBooks with apple-gmux
     - [arm64] dts: ti: k3-am62-main: Fix GPIO numbers in DT
     - [arm64] drm/msm/disp/dpu: check for crtc enable rather than crtc active to
       release shared resources
     - [amd64] EDAC/skx: Fix overflows on the DRAM row address mapping arrays
     - regulator: core: Shorten off-on-delay-us for always-on/boot-on by time
       since booted
     - [arm64] dts: ti: k3-am62a7-sk: Fix DDR size to full 4GB
     - [arm64] dts: qcom: msm8998: Fix stm-stimulus-base reg name
     - [arm64] dts: qcom: sdm845: correct dynamic power coefficients
     - [x86] MCE/AMD: Use an u64 for bank_map
     - [arm64] firmware: qcom_scm: Clear download bit during reboot
     - [arm64] drm/bridge: adv7533: Fix adv7533_mode_valid for adv7533 and
       adv7535
     - [arm64] drm/msm/adreno: drop bogus pm_runtime_set_active()
     - [arm64] drm: msm: adreno: Disable preemption on Adreno 510
     - [amd64] virt/coco/sev-guest: Double-buffer messages
     - [arm64] dts: qcom: sm8350-microsoft-surface: fix USB dual-role mode
       property
     - [x86] ACPI: processor: Fix evaluating _PDC method when running as Xen dom0
     - [arm64] mmc: sdhci-of-esdhc: fix quirk to ignore command inhibit for data
     - [armhf] dts: gta04: fix excess dma channel usage
     - [arm64] firmware: arm_scmi: Fix xfers allocation on Rx channel
     - [arm64] perf/arm-cmn: Move overlapping wp_combine field
     - [armhf] dts: stm32: fix spi1 pin assignment on stm32mp15
     - [arm64] cpufreq: qcom-cpufreq-hw: Revert adding cpufreq qos
     - [arm64,armhf] drm/lima/lima_drv: Add missing unwind goto in
       lima_pdev_probe()
     - [arm64,armhf] gpu: host1x: Fix potential double free if IOMMU is disabled
     - [arm64,armhf] gpu: host1x: Fix memory leak of device names
     - drm/ttm: optimize pool allocations a bit v2
     - drm/ttm/pool: Fix ttm_pool_alloc error path
     - regulator: core: Consistently set mutex_owner when using
       ww_mutex_lock_slow()
     - regulator: core: Avoid lockdep reports when resolving supplies
     - [x86] apic: Fix atomic update of offset in reserve_eilvt_offset()
     - [arm64] dts: qcom: msm8994-angler: Fix cont_splash_mem mapping
     - [arm64] dts: qcom: msm8994-angler: removed clash with smem_region
     - [arm64,armhf] media: cedrus: fix use after free bug in cedrus_remove due
       to race condition (CVE-2023-35826)
     - [arm64] media: rkvdec: fix use after free bug in rkvdec_remove
       (CVE-2023-35829)
     - [amd64] platform/x86/amd: pmc: Don't try to read SMU version on Picasso
     - [amd64] platform/x86/amd: pmc: Hide SMU version and program attributes for
       Picasso
     - [amd64] platform/x86/amd: pmc: Don't dump data after resume from s0i3 on
       picasso
     - [amd64] platform/x86/amd: pmc: Move idlemask check into
       `amd_pmc_idlemask_read`
     - [amd64] platform/x86/amd: pmc: Utilize SMN index 0 for driver probe
     - [amd64] platform/x86/amd: pmc: Move out of BIOS SMN pair for STB init
     - media: dm1105: Fix use after free bug in dm1105_remove due to race
       condition (CVE-2023-35824)
     - media: saa7134: fix use after free bug in saa7134_finidev due to race
       condition (CVE-2023-35823)
     - media: v4l: async: Return async sub-devices to subnotifier list
     - drm/amd/display: Fix potential null dereference
     - [arm64,armhf] media: rc: gpio-ir-recv: Fix support for wake-up
     - [arm64] media: venus: dec: Fix handling of the start cmd
     - [arm64] media: venus: dec: Fix capture formats enumeration order
     - [armhf] regulator: stm32-pwr: fix of_iomap leak
     - [x86] ioapic: Don't return 0 from arch_dynirq_lower_bound()
     - [arm64] kgdb: Set PSTATE.SS to 1 to re-enable single-step
     - [arm64] perf/arm-cmn: Fix port detection for CMN-700
     - [x86] drm/i915: Make intel_get_crtc_new_encoder() less oopsy
     - tick/common: Align tick period with the HZ tick.
     - ACPI: bus: Ensure that notify handlers are not running after removal
     - cpufreq: use correct unit when verify cur freq
     - [arm64] rpmsg: glink: Propagate TX failures in intentless mode as well
     - platform/chrome: cros_typec_switch: Add missing fwnode_handle_put()
     - wifi: ath6kl: minor fix for allocation size
     - wifi: ath9k: hif_usb: fix memory leak of remain_skbs
     - wifi: ath11k: Use platform_get_irq() to get the interrupt
     - wifi: ath5k: Use platform_get_irq() to get the interrupt
     - wifi: ath5k: fix an off by one check in ath5k_eeprom_read_freq_list()
     - wifi: ath11k: fix SAC bug on peer addition with sta band migration
     - wifi: brcmfmac: support CQM RSSI notification with older firmware
     - wifi: ath6kl: reduce WARN to dev_dbg() in callback
     - tools: bpftool: Remove invalid \' json escape
     - wifi: rtw88: mac: Return the original error from rtw_pwr_seq_parser()
     - wifi: rtw88: mac: Return the original error from rtw_mac_power_switch()
     - bpf: take into account liveness when propagating precision
     - bpf: fix precision propagation verbose logging
     - [x86] crypto: qat - fix concurrency issue when device state changes
     - scm: fix MSG_CTRUNC setting condition for SO_PASSSEC
     - wifi: ath11k: fix deinitialization of firmware resources
     - bpf: Remove misleading spec_v1 check on var-offset stack read
     - net: pcs: xpcs: remove double-read of link state when using AN
     - vlan: partially enable SIOCSHWTSTAMP in container
     - net/packet: annotate accesses to po->xmit
     - net/packet: convert po->origdev to an atomic flag
     - net/packet: convert po->auxdata to an atomic flag
     - libbpf: Fix ld_imm64 copy logic for ksym in light skeleton.
     - netfilter: keep conntrack reference until IPsecv6 policy checks are done
     - bpf: Fix __reg_bound_offset 64->32 var_off subreg propagation
     - scsi: target: core: Change the way target_xcopy_do_work() sets restiction
       on max I/O
     - scsi: target: Move sess cmd counter to new struct
     - scsi: target: Move cmd counter allocation
     - scsi: target: Pass in cmd counter to use during cmd setup
     - scsi: target: iscsit: isert: Alloc per conn cmd counter
     - scsi: target: iscsit: Stop/wait on cmds during conn close
     - scsi: target: Fix multiple LUN_RESET handling
     - scsi: target: iscsit: Fix TAS handling during conn cleanup
     - scsi: megaraid: Fix mega_cmd_done() CMDID_INT_CMDS
     - net: sunhme: Fix uninitialized return code
     - f2fs: handle dqget error in f2fs_transfer_project_quota()
     - f2fs: fix uninitialized skipped_gc_rwsem
     - f2fs: apply zone capacity to all zone type
     - f2fs: compress: fix to call f2fs_wait_on_page_writeback() in
       f2fs_write_raw_pages()
     - f2fs: fix scheduling while atomic in decompression path
     - [arm64,armhf] crypto: caam - Clear some memory in instantiate_rng
     - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_rfreg()
     - wifi: rtlwifi: fix incorrect error codes in rtl_debugfs_set_write_reg()
     - scsi: libsas: Add sas_ata_device_link_abort()
     - [arm64] scsi: hisi_sas: Handle NCQ error when IPTT is valid
     - wifi: rt2x00: Fix memory leak when handling surveys
     - f2fs: fix iostat lock protection
     - net: qrtr: correct types of trace event parameters
     - bpftool: Fix bug for long instructions in program CFG dumps
     - crypto: drbg - Only fail when jent is unavailable in FIPS mode
     - xsk: Fix unaligned descriptor validation
     - f2fs: fix to avoid use-after-free for cached IPU bio
     - wifi: iwlwifi: fix duplicate entry in iwl_dev_info_table
     - bpf/btf: Fix is_int_ptr()
     - scsi: lpfc: Fix ioremap issues in lpfc_sli4_pci_mem_setup()
     - [arm64,armhf] net: ethernet: stmmac: dwmac-rk: rework optional clock
       handling
     - [arm64,armhf] net: ethernet: stmmac: dwmac-rk: fix optional phy regulator
       handling
     - wifi: ath11k: fix writing to unintended memory region
     - bpf, sockmap: fix deadlocks in the sockhash and sockmap
     - nvmet: fix error handling in nvmet_execute_identify_cns_cs_ns()
     - nvmet: fix Identify Namespace handling
     - nvmet: fix Identify Controller handling
     - nvmet: fix Identify Active Namespace ID list handling
     - nvmet: fix I/O Command Set specific Identify Controller
     - nvme: fix async event trace event
     - blk-mq: don't plug for head insertions in blk_execute_rq_nowait
     - wifi: iwlwifi: debug: fix crash in __iwl_err()
     - wifi: iwlwifi: trans: don't trigger d3 interrupt twice
     - wifi: iwlwifi: mvm: don't set CHECKSUM_COMPLETE for unsupported protocols
     - bpf, sockmap: Revert buggy deadlock fix in the sockhash and sockmap
     - f2fs: fix to check return value of f2fs_do_truncate_blocks()
     - f2fs: fix to check return value of inc_valid_block_count()
     - md/raid10: fix task hung in raid10d
     - md/raid10: fix leak of 'r10bio->remaining' for recovery
     - md/raid10: fix memleak for 'conf->bio_split'
     - md/raid10: fix memleak of md thread
     - md/raid10: don't call bio_start_io_acct twice for bio which experienced
       read error
     - wifi: iwlwifi: mvm: don't drop unencrypted MCAST frames
     - wifi: iwlwifi: yoyo: skip dump correctly on hw error
     - wifi: iwlwifi: yoyo: Fix possible division by zero
     - wifi: iwlwifi: mvm: initialize seq variable
     - wifi: iwlwifi: fw: move memset before early return
     - jdb2: Don't refuse invalidation of already invalidated buffers
     - io_uring/rsrc: use nospec'ed indexes
     - wifi: iwlwifi: make the loop for card preparation effective
     - wifi: mt76: handle failure of vzalloc in mt7615_coredump_work
     - wifi: mt76: add flexible polling wait-interval support
     - wifi: mt76: mt7921e: fix probe timeout after reboot
     - wifi: mt76: fix 6GHz high channel not be scanned
     - mt76: mt7921: fix kernel panic by accessing unallocated eeprom.data
     - wifi: mt76: mt7921: fix missing unwind goto in `mt7921u_probe`
     - wifi: mt76: mt7921e: improve reliability of dma reset
     - wifi: mt76: mt7921e: stop chip reset worker in unregister hook
     - wifi: mt76: connac: fix txd multicast rate setting
     - wifi: iwlwifi: mvm: check firmware response size
     - netfilter: conntrack: restore IPS_CONFIRMED out of
       nf_conntrack_hash_check_insert()
     - netfilter: conntrack: fix wrong ct->timeout value
     - wifi: iwlwifi: fw: fix memory leak in debugfs
     - ixgbe: Allow flow hash to be set via ethtool
     - ixgbe: Enable setting RSS table to default values
     - net/mlx5e: Don't clone flow post action attributes second time
     - net/mlx5: E-switch, Create per vport table based on devlink encap mode
     - net/mlx5: E-switch, Don't destroy indirect table in split rule
     - net/mlx5e: Fix error flow in representor failing to add vport rx rule
     - net/mlx5: Suspend auxiliary devices only in case of PCI device suspend
     - net/mlx5: Use recovery timeout on sync reset flow
     - net/mlx5e: Nullify table pointer when failing to create
     - net: stmmac:fix system hang when setting up tag_8021q VLAN for DSA ports
     - bpf: Fix race between btf_put and btf_idr walk.
     - bpf: Don't EFAULT for getsockopt with optval=NULL
     - netfilter: nf_tables: don't write table validation state without mutex
     - net/sched: sch_fq: fix integer overflow of "credit"
     - ipv4: Fix potential uninit variable access bug in __ip_make_skb()
     - Revert "Bluetooth: btsdio: fix use after free bug in btsdio_remove due to
       unfinished work"
     - netlink: Use copy_to_user() for optval in netlink_getsockopt().
     - [x86] net: amd: Fix link leak when verifying config failed
     - tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp.
     - [x86] ASoC: cs35l41: Only disable internal boost
     - drivers: staging: rtl8723bs: Fix locking in _rtw_join_timeout_handler()
     - drivers: staging: rtl8723bs: Fix locking in rtw_scan_timeout_handler()
     - [arm64] usb: host: xhci-rcar: remove leftover quirk handling
     - [arm64,armhf] usb: dwc3: gadget: Change condition for processing suspend
       event
     - [armhf] serial: stm32: Re-assert RTS/DE GPIO in RS485 mode only if more
       data are transmitted
     - iio: light: max44009: add missing OF device matching
     - [arm64,armhf] spi: imx: Don't skip cleanup in remove's error path
     - [x86] ASoC: soc-compress: Inherit atomicity from DAI link for Compress FE
     - [arm64,armhf] PCI: imx6: Install the fault handler only on compatible
       match
     - ASoC: es8316: Handle optional IRQ assignment
     - [arm64] spi: qup: Don't skip cleanup in remove's error path
     - [x86] vmci_host: fix a race condition in vmci_host_poll() causing GPF
     - of: Fix modalias string generation
     - [amd64] HID: amd_sfh: Correct the structure fields
     - [amd64] HID: amd_sfh: Correct the sensor enable and disable command
     - [amd64] HID: amd_sfh: Fix illuminance value
     - [amd64] HID: amd_sfh: Add support for shutdown operation
     - [amd64] HID: amd_sfh: Correct the stop all command
     - [amd64] HID: amd_sfh: Increase sensor command timeout for SFH1.1
     - [amd64] HID: amd_sfh: Handle "no sensors" enabled for SFH1.1
     - cacheinfo: Check sib_leaf in cache_leaves_are_shared()
     - [arm64] coresight: etm_pmu: Set the module field
     - PCI/PM: Extend D3hot delay for NVIDIA HDA controllers
     - spi: cadence-quadspi: fix suspend-resume implementations
     - [arm64,armhf] usb: chipidea: fix missing goto in `ci_hdrc_probe`
     - [arm64] tty: serial: fsl_lpuart: adjust buffer length to the intended size
     - serial: 8250: Add missing wakeup event reporting
     - spi: cadence-quadspi: use macro DEFINE_SIMPLE_DEV_PM_OPS
     - [x86] staging: rtl8192e: Fix W_DISABLE# does not work after stop/start
     - [arm64] spmi: Add a check for remove callback when removing a SPMI driver
     - virtio_ring: don't update event idx on get_buf
     - [powerpc*] rtas: use memmove for potentially overlapping buffer copy
     - sched/fair: Fix inaccurate tally of ttwu_move_affine
     - perf/core: Fix hardlockup failure caused by perf throttle
     - Revert "objtool: Support addition to set CFA base"
     - sched/rt: Fix bad task migration for rt tasks
     - tracing/user_events: Ensure write index cannot be negative
     - [amd64] IB/hifi1: add a null check of kzalloc_node in
       hfi1_ipoib_txreq_init
     - [amd64] RDMA/rdmavt: Delete unnecessary NULL check
     - workqueue: Fix hung time report of worker pools
     - [armhf] rtc: omap: include header for omap_rtc_power_off_program prototype
     - RDMA/mlx4: Prevent shift wrapping in set_user_sq_size()
     - [arm64,armhf] rtc: meson-vrtc: Use ktime_get_real_ts64() to get the
       current time
     - clk: add missing of_node_put() in "assigned-clocks" property parsing
     - [arm64] power: supply: rk817: Fix low SOC bugs
     - RDMA/cm: Trace icm_send_rej event before the cm state is reset
     - RDMA/srpt: Add a check for valid 'mad_agent' pointer
     - [amd64] IB/hfi1: Fix SDMA mmu_rb_node not being evicted in LRU order
     - [amd64] IB/hfi1: Fix bugs with non-PAGE_SIZE-end multi-iovec user SDMA
       requests
     - [arm64,armhf] clk: imx: fracn-gppll: fix the rate table
     - [arm64,armhf] clk: imx: fracn-gppll: disable hardware select control
     - NFSv4.1: Always send a RECLAIM_COMPLETE after establishing lease
     - [amd64] iommu/amd: Set page size bitmap during V2 domain allocation
     - [arm64] Input: raspberrypi-ts - fix refcount leak in rpi_ts_probe
     - swiotlb: relocate PageHighMem test away from rmem_swiotlb_setup
     - swiotlb: fix debugfs reporting of reserved memory pools
     - RDMA/mlx5: Check pcie_relaxed_ordering_enabled() in UMR
     - RDMA/mlx5: Fix flow counter query via DEVX
     - SUNRPC: remove the maximum number of retries in call_bind_status
     - RDMA/mlx5: Use correct device num_ports when modify DC
     - timekeeping: Fix references to nonexistent ktime_get_fast_ns()
     - SMB3: Add missing locks to protect deferred close file list
     - SMB3: Close deferred file handles in case of handle lease break
     - ext4: fix i_disksize exceeding i_size problem in paritally written case
     - ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline
     - [arm64] dmaengine: mv_xor_v2: Fix an error code.
     - [armhf] leds: tca6507: Fix error handling of using
       fwnode_property_read_string
     - soundwire: cadence: rename sdw_cdns_dai_dma_data as sdw_cdns_dai_runtime
     - [x86] soundwire: intel: don't save hw_params for use in prepare
     - [arm64,armhf] phy: tegra: xusb: Add missing tegra_xusb_port_unregister for
       usb2_port and ulpi_port
     - [arm64,armhf] pinctrl-bcm2835.c: fix race condition when setting gpio dir
     - [x86] ACPI: PM: Do not turn of unused power resources on the Toshiba Click
       Mini
     - PM: hibernate: Turn snapshot_test into global variable
     - PM: hibernate: Do not get block device exclusively in test_resume mode
     - afs: Fix updating of i_size with dv jump from server
     - afs: Fix getattr to report server i_size on dirs, not local size
     - afs: Avoid endless loop if file is larger than expected
     - ALSA: usb-audio: Add quirk for Pioneer DDJ-800
     - [x86] ALSA: hda/realtek: Add quirk for ThinkPad P1 Gen 6
     - [x86] ALSA: hda/realtek: Add quirk for ASUS UM3402YAR using CS35L41
     - [x86] ALSA: hda/realtek: support HP Pavilion Aero 13-be0xxx Mute LED
     - [x86] ALSA: hda/realtek: Fix mute and micmute LEDs for an HP laptop
     - nilfs2: do not write dirty data after degenerating to read-only
     - nilfs2: fix infinite loop in nilfs_mdt_get_block()
     - mm: do not reclaim private data from pinned page
     - drbd: correctly submit flush bio on barrier
     - md/raid10: fix null-ptr-deref in raid10_sync_request
     - md/raid5: Improve performance for sequential IO
     - mtd: core: provide unique name for nvmem device, take two
     - mtd: core: fix nvmem error reporting
     - mtd: core: fix error path for nvmem provider
     - mtd: spi-nor: core: Update flash's current address mode when changing
       address mode
     - [arm64] mailbox: zynqmp: Fix IPI isr handling
     - [arm64] mailbox: zynqmp: Fix typo in IPI documentation
     - wifi: rtl8xxxu: RTL8192EU always needs full init
     - wifi: rtw89: fix potential race condition between napi_init and
       napi_enable
     - [arm64] clk: rockchip: rk3399: allow clk_cifout to force clk_cifout_src to
       reparent
     - btrfs: scrub: reject unsupported scrub flags
     - [s390x] dasd: fix hanging blockdevice after request requeue
     - mm/mempolicy: correctly update prev when policy is equal on mbind
     - dm verity: fix error handling for check_at_most_once on FEC
     - dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path
     - dm flakey: fix a crash with invalid table line
     - dm ioctl: fix nested locking in table_clear() to remove deadlock concern
       (CVE-2023-2269)
     - dm: don't lock fs when the map is NULL in process of resume
     - blk-iocost: avoid 64-bit division in ioc_timer_fn
     - cifs: fix potential use-after-free bugs in TCP_Server_Info::hostname
     - cifs: protect session status check in smb2_reconnect()
     - [x86] thunderbolt: Use correct type in tb_port_is_clx_enabled() prototype
     - wifi: ath11k: synchronize ath11k_mac_he_gi_to_nl80211_he_gi()'s return
       type
     - [x86] perf auxtrace: Fix address filter entire kernel size
     - [x86] perf intel-pt: Fix CYC timestamps after standalone CBR
     - i40e: Remove unused i40e status codes
     - i40e: Remove string printing for i40e_status
     - i40e: use int for i40e_status
     - scsi: libsas: Grab the ATA port lock in sas_ata_device_link_abort()
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.29
     - [arm64,armhf] USB: dwc3: gadget: drop dead hibernation code
     - [arm64,armhf] usb: dwc3: gadget: Execute gadget stop after halting the
       controller
     - drm/vmwgfx: Remove explicit and broken vblank handling
     - drm/vmwgfx: Fix Legacy Display Unit atomic drm support
     - [amd64] crypto: ccp - Clear PSP interrupt status register before calling
       handler
     - [x86] perf/x86/core: Zero @lbr instead of returning -1 in
       x86_perf_get_lbr() stub
     - [x86] KVM: x86: Track supported PERF_CAPABILITIES in kvm_caps
     - [x86] KVM: x86/pmu: Disallow legacy LBRs if architectural LBRs are
       available
     - mtd: spi-nor: spansion: Remove NO_SFDP_FLAGS from s28hs512t info
     - mtd: spi-nor: add SFDP fixups for Quad Page Program
     - mtd: spi-nor: Add a RWW flag
     - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s28hx
       SEMPER flash
     - [arm64] mailbox: zynq: Switch to flexible array to simplify code
     - [arm64] mailbox: zynqmp: Fix counts of child nodes
     - mtd: spi-nor: spansion: Enable JFFS2 write buffer for Infineon s25hx
       SEMPER flash
     - drm/amd/display: Ext displays with dock can't recognized after resume
     - [x86] KVM: x86/mmu: Avoid indirect call for get_cr3
     - [x86] KVM: x86: Do not unload MMU roots when only toggling CR0.WP with TDP
       enabled
     - [x86] KVM: x86: Make use of kvm_read_cr*_bits() when testing bits
     - [x86] KVM: VMX: Make CR0.WP a guest owned bit
     - [x86] KVM: x86/mmu: Refresh CR0.WP prior to checking for emulated
       permission faults
     - [x86] ASoC: Intel: soc-acpi-byt: Fix "WM510205" match no longer working
     - scsi: qedi: Fix use after free bug in qedi_remove()
     - drm/amd/display: Remove FPU guards from the DML folder
     - drm/amd/display: Add missing WA and MCLK validation
     - drm/amd/display: Return error code on DSC atomic check failure
     - drm/amd/display: Fixes for dcn32_clk_mgr implementation
     - drm/amd/display: Reset OUTBOX0 r/w pointer on DMUB reset
     - drm/amd/display: Do not clear GPINT register when releasing DMUB from
       reset
     - drm/amd/display: Update bounding box values for DCN321
     - ixgbe: Fix panic during XDP_TX with > 64 CPUs
     - [armhf] net/ncsi: clear Tx enable mode when handling a Config required AEN
     - tcp: fix skb_copy_ubufs() vs BIG TCP
     - net/sched: cls_api: remove block_cb from driver_list before freeing
     - sit: update dev->needed_headroom in ipip6_tunnel_bind_dev()
     - net: ipv6: fix skb hash for some RST packets
     - [arm64,armhf] net: dsa: mv88e6xxx: add mv88e6321 rsvd2cpu
     - writeback: fix call of incorrect macro
     - block: Skip destroyed blkg when restart in blkg_destroy_all()
     - [arm64,armhf] watchdog: dw_wdt: Fix the error handling path of
       dw_wdt_drv_probe()
     - [arm64,armhf] i2c: tegra: Fix PEC support for SMBUS block read
     - net/sched: act_mirred: Add carrier check
     - r8152: fix flow control issue of RTL8156A
     - r8152: fix the poor throughput for 2.5G devices
     - r8152: move setting r8153b_rx_agg_chg_indicate()
     - sfc: Fix module EEPROM reporting for QSFP modules
     - rxrpc: Fix hard call timeout units
     - [x86] drm/i915/mtl: Add the missing CPU transcoder mask in
       intel_device_info
     - ethtool: Fix uninitialized number of lanes
     - af_packet: Don't send zero-byte data in packet_sendmsg_spkt().
     - drm/amdgpu: add a missing lock for AMDGPU_SCHED
     - ALSA: caiaq: input: Add error handling for unsupported input methods in
       `snd_usb_caiaq_input_init`
     - [s390x] KVM: s390: fix race in gmap_make_secure()
     - ice: block LAN in case of VF to VF offload
     - virtio_net: suppress cpu stall when free_unused_bufs
     - [arm64] net: enetc: check the index of the SFI rather than the handle
     - perf record: Fix "read LOST count failed" msg with sample read
     - perf scripts intel-pt-events.py: Fix IPC output for Python 2
     - perf vendor events s390: Remove UTF-8 characters from JSON file
     - perf tests record_offcpu.sh: Fix redirection of stderr to stdin
     - perf ftrace: Make system wide the default target for latency subcommand
     - perf vendor events power9: Remove UTF-8 characters from JSON files
     - perf pmu: zfree() expects a pointer to a pointer to zero it after freeing
       its contents
     - perf map: Delete two variable initialisations before null pointer checks
       in sort__sym_from_cmp()
     - perf cs-etm: Fix timeless decode mode detection
     - crypto: api - Add scaffolding to change completion function signature
     - crypto: engine - Use crypto_request_complete
     - crypto: engine - fix crypto_queue backlog handling
     - perf symbols: Fix return incorrect build_id size in elf_read_build_id()
     - perf tracepoint: Fix memory leak in is_valid_tracepoint()
     - perf stat: Separate bperf from bpf_profiler
     - [x86] retbleed: Fix return thunk alignment
     - btrfs: fix btrfs_prev_leaf() to not return the same key twice
     - btrfs: zoned: fix wrong use of bitops API in btrfs_ensure_empty_zones
     - btrfs: properly reject clear_cache and v1 cache for block-group-tree
     - btrfs: fix assertion of exclop condition when starting balance
     - btrfs: fix encoded write i_size corruption with no-holes
     - btrfs: don't free qgroup space unless specified
     - btrfs: zero the buffer before marking it dirty in btrfs_redirty_list_add
     - btrfs: make clear_cache mount option to rebuild FST without disabling it
     - btrfs: print-tree: parent bytenr must be aligned to sector size
     - btrfs: fix space cache inconsistency after error loading it from disk
     - btrfs: zoned: zone finish data relocation BG with last IO
     - btrfs: zoned: fix full zone super block reading on ZNS
     - cifs: fix pcchunk length type in smb2_copychunk_range
     - cifs: release leases for deferred close handles when freezing
     - [amd64] platform/x86/intel-uncore-freq: Return error on write frequency
     - [x86] platform/x86: touchscreen_dmi: Add upside-down quirk for GDIX1002 ts
       on the Juno Tablet
     - [x86] platform/x86: thinkpad_acpi: Fix platform profiles on T490
     - [x86] platform/x86: touchscreen_dmi: Add info for the Dexp Ursus KX210i
     - [x86] platform/x86: thinkpad_acpi: Add profile force ability
     - inotify: Avoid reporting event with invalid wd
     - smb3: fix problem remounting a share after shutdown
     - SMB3: force unmount was failing to close deferred close files
     - [armhf] remoteproc: stm32: Call of_node_put() on iteration error
     - sysctl: clarify register_sysctl_init() base directory order
     - [armhf] ARM: dts: aspeed: asrock: Correct firmware flash SPI clocks
     - [armhf] ARM: dts: exynos: fix WM8960 clock name in Itop Elite
     - [armhf] ARM: dts: aspeed: romed8hm3: Fix GPIO polarity of system-fault LED
     - [arm64] drm/msm/adreno: fix runtime PM imbalance at gpu load
     - [x86] drm/i915/color: Fix typo for Plane CSC indexes
     - [arm64] drm/msm: fix NULL-deref on snapshot tear down
     - [arm64] drm/msm: fix NULL-deref on irq uninstall
     - [arm64] drm/msm: fix drm device leak on bind errors
     - [arm64] drm/msm: fix vram leak on bind errors
     - [arm64] drm/msm: fix workqueue leak on bind errors
     - [x86] drm/i915/dsi: Use unconditional msleep() instead of
       intel_dsi_msleep()
     - f2fs: fix null pointer panic in tracepoint in __replace_atomic_write_block
     - f2fs: fix potential corruption when moving a directory
     - [armhf] drm/panel: otm8009a: Set backlight parent to panel device
     - drm/amd/display: Add NULL plane_state check for cursor disable logic
     - drm/amd/display: Fix 4to1 MPC black screen with DPP RCO
     - drm/amd/display: filter out invalid bits in pipe_fuses
     - drm/amd/display: fix flickering caused by S/G mode
     - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v10_0_hw_fini
     - drm/amdgpu: fix an amdgpu_irq_put() issue in gmc_v9_0_hw_fini()
     - drm/amdgpu: fix amdgpu_irq_put call trace in gmc_v11_0_hw_fini
     - drm/amdgpu/gfx: disable gfx9 cp_ecc_error_irq only when enabling legacy
       gfx ras
     - drm/amdgpu/jpeg: Remove harvest checking for JPEG3
     - drm/amdgpu: change gfx 11.0.4 external_id range
     - drm/amdgpu: Fix vram recover doesn't work after whole GPU reset (v2)
     - drm/amd/display: Enforce 60us prefetch for 200Mhz DCFCLK modes
     - drm/amd/pm: parse pp_handle under appropriate conditions
     - drm/amdgpu: disable sdma ecc irq only when sdma RAS is enabled in suspend
     - drm/amd/pm: avoid potential UBSAN issue on legacy asics
     - drm/amdgpu: remove deprecated MES version vars
     - drm/amd: Load MES microcode during early_init
     - drm/amd: Add a new helper for loading/validating microcode
     - drm/amd: Use `amdgpu_ucode_*` helpers for MES
     - HID: wacom: Set a default resolution for older tablets
     - HID: wacom: insert timestamp to packed Bluetooth (BT) events
     - [arm64] drm/msm/adreno: adreno_gpu: Use suspend() instead of idle() on
       load error
     - f2fs: specify extent cache for read explicitly
     - f2fs: move internal functions into extent_cache.c
     - f2fs: remove unnecessary __init_extent_tree
     - f2fs: refactor extent_cache to support for read and more
     - f2fs: allocate the extent_cache by default
     - f2fs: factor out victim_entry usage from general rb_tree use
     - [arm64] drm/msm/adreno: Simplify read64/write64 helpers
     - [arm64] drm/msm: Hangcheck progress detection
     - [arm64] drm/msm: fix missing wq allocation error handling
     - wifi: rtw88: rtw8821c: Fix rfe_option field width
     - [x86] drm/i915/mtl: update scaler source and destination limits for MTL
     - [x86] drm/i915: Check pipe source size when using skl+ scalers
     - drm/amd/display: Refactor eDP PSR codes
     - drm/amd/display: Add Z8 allow states to z-state support list
     - drm/amd/display: Add debug option to skip PSR CRTC disable
     - drm/amd/display: Fix Z8 support configurations
     - drm/amd/display: Add minimum Z8 residency debug option
     - drm/amd/display: Update minimum stutter residency for DCN314 Z8
     - drm/amd/display: Lowering min Z8 residency time
     - [x86] ASoC: codecs: constify static sdw_slave_ops struct
     - drm/amd/display: Update Z8 watermarks for DCN314
     - drm/amd/display: Update Z8 SR exit/enter latencies
     - drm/amd/display: Change default Z8 watermark values
     - ksmbd: Implements sess->ksmbd_chann_list as xarray
     - ksmbd: fix racy issue from session setup and logoff (CVE-2023-32250)
     - ksmbd: destroy expired sessions
     - ksmbd: block asynchronous requests when making a delay on session setup
     - ksmbd: fix racy issue from smb2 close and logoff with multichannel
     - drm: Add missing DP DSC extended capability definitions.
     - drm/dsc: fix drm_edp_dsc_sink_output_bpp() DPCD high byte usage
     - locking/rwsem: Add __always_inline annotation to __down_read_common() and
       inlined callers
     - ext4: fix WARNING in mb_find_extent
     - ext4: avoid a potential slab-out-of-bounds in ext4_group_desc_csum
       (CVE-2023-34256)
     - ext4: fix data races when using cached status extents
     - ext4: check iomap type only if ext4_iomap_begin() does not fail
     - ext4: improve error recovery code paths in __ext4_remount()
     - ext4: improve error handling from ext4_dirhash()
     - ext4: fix deadlock when converting an inline directory in nojournal mode
     - ext4: add bounds checking in get_max_inline_xattr_value_size()
     - ext4: bail out of ext4_xattr_ibody_get() fails for any reason
     - ext4: fix lockdep warning when enabling MMP
     - ext4: remove a BUG_ON in ext4_mb_release_group_pa()
     - ext4: fix invalid free tracking in ext4_xattr_move_to_block()
     - drm/dsc: fix DP_DSC_MAX_BPP_DELTA_* macro values
     - f2fs: fix to do sanity check on extent cache correctly
     - f2fs: inode: fix to do sanity check on extent cache correctly
     - [x86] amd_nb: Add PCI ID for family 19h model 78h
     - [x86] fix clear_user_rep_good() exception handling annotation
     - drm/amd/display: Fix hang when skipping modeset
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.30
     - drm/fbdev-generic: prohibit potential out-of-bounds access
     - drm/mipi-dsi: Set the fwnode for mipi_dsi_device
     - net: skb_partial_csum_set() fix against transport header magic value
     - scsi: ufs: core: Fix I/O hang that occurs when BKOPS fails in W-LUN
       suspend
     - tick/broadcast: Make broadcast device replacement work correctly
     - linux/dim: Do nothing if no time delta between samples
     - net: stmmac: Initialize MAC_ONEUS_TIC_COUNTER register
     - net: Fix load-tearing on sk->sk_stamp in sock_recv_cmsgs().
     - [arm64,armhf] net: phy: bcm7xx: Correct read from expansion register
     - netfilter: nf_tables: always release netdev hooks from notifier
     - netfilter: conntrack: fix possible bug_on with enable_hooks=1
     - bonding: fix send_peer_notif overflow
     - netlink: annotate accesses to nlk->cb_running
     - net: annotate sk->sk_err write from do_recvmmsg()
     - net: deal with most data-races in sk_wait_event()
     - net: add vlan_get_protocol_and_depth() helper
     - tcp: add annotations around sk->sk_shutdown accesses
     - [amd64,arm64] gve: Remove the code of clearing PBA bit
     - ipvlan:Fix out-of-bounds caused by unclear skb->cb (CVE-2023-3090)
     - [arm64] net: mscc: ocelot: fix stat counter register values
     - net: datagram: fix data-races in datagram_poll()
     - af_unix: Fix a data race of sk->sk_receive_queue->qlen.
     - af_unix: Fix data races around sk->sk_shutdown.
     - [x86] drm/i915/guc: Don't capture Gen8 regs on Xe devices
     - [x86] drm/i915: Fix NULL ptr deref by checking new_crtc_state
     - [x86] drm/i915/dp: prevent potential div-by-zero
     - [x86] drm/i915: Expand force_probe to block probe of devices as well.
     - [x86] drm/i915: taint kernel when force probing unsupported devices
     - [x86] fbdev: arcfb: Fix error handling in arcfb_probe()
     - ext4: reflect error codes from ext4_multi_mount_protect() to its callers
     - ext4: allow to find by goal if EXT4_MB_HINT_GOAL_ONLY is set
     - ext4: allow ext4_get_group_info() to fail
     - rcu: Protect rcu_print_task_exp_stall() ->exp_tasks access
     - open: return EINVAL for O_DIRECTORY | O_CREAT
     - fs: hfsplus: remove WARN_ON() from hfsplus_cat_{read,write}_inode()
     - drm/displayid: add displayid_get_header() and check bounds better
     - drm/amd/display: populate subvp cmd info only for the top pipe
     - drm/amd/display: Correct DML calculation to align HW formula
     - [x86] platform/x86: x86-android-tablets: Add Acer Iconia One 7 B1-750 data
     - drm/amd/display: Enable HostVM based on rIOMMU active
     - drm/amd/display: Use DC_LOG_DC in the trasform pixel function
     - regmap: cache: Return error in cache sync operations for REGCACHE_NONE
     - [arm64] dts: qcom: msm8996: Add missing DWC3 quirks
     - media: cx23885: Fix a null-ptr-deref bug in buffer_prepare() and
       buffer_finish()
     - media: pci: tw68: Fix null-ptr-deref bug in buf prepare and finish
     - ACPI: processor: Check for null return of devm_kzalloc() in
       fch_misc_setup()
     - [arm64,armhf] drm/rockchip: dw_hdmi: cleanup drm encoder during unbind
     - memstick: r592: Fix UAF bug in r592_remove due to race condition
       (CVE-2023-3141)
     - ACPI: EC: Fix oops when removing custom query handlers
     - drm/amd/display: fixed dcn30+ underflow issue
     - [armhf] remoteproc: stm32_rproc: Add mutex protection for workqueue
     - [arm64,armhf] drm/tegra: Avoid potential 32-bit integer overflow
     - [arm64] drm/msm/dp: Clean up handling of DP AUX interrupts
     - ACPICA: Avoid undefined behavior: applying zero offset to null pointer
     - ACPICA: ACPICA: check null return of ACPI_ALLOCATE_ZEROED in
       acpi_db_display_objects
     - [arm64] dts: qcom: sdm845-polaris: Drop inexistent properties
     - [arm64,armhf] irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4
     - ACPI: video: Remove desktops without backlight DMI quirks
     - drm/amd/display: Correct DML calculation to follow HW SPEC
     - drm/amd: Fix an out of bounds error in BIOS parser
     - drm/amdgpu: Fix sdma v4 sw fini error
     - [armhf] media: Prefer designated initializers over memset for subdev pad
       ops
     - wifi: ath: Silence memcpy run-time false positive warning
     - bpf: Annotate data races in bpf_local_storage
     - wifi: brcmfmac: pcie: Provide a buffer of random bytes to the device
     - wifi: brcmfmac: cfg80211: Pass the PMK in binary instead of hex
     - scsi: lpfc: Prevent lpfc_debugfs_lockstat_write() buffer overflow
     - scsi: lpfc: Correct used_rpi count when devloss tmo fires with no recovery
     - bnxt: avoid overflow in bnxt_get_nvram_directory()
     - net: Catch invalid index in XPS mapping
     - netdev: Enforce index cap in netdev_get_tx_queue
     - scsi: target: iscsit: Free cmds before session free
     - lib: cpu_rmap: Avoid use after free on rmap->obj array entries
     - scsi: message: mptlan: Fix use after free bug in mptlan_remove() due to
       race condition
     - gfs2: Fix inode height consistency check
     - [x86] scsi: ufs: ufs-pci: Add support for Intel Lunar Lake
     - ext4: set goal start correctly in ext4_mb_normalize_request
     - ext4: Fix best extent lstart adjustment logic in ext4_mb_new_inode_pa()
     - crypto: jitter - permanent and intermittent health errors
     - f2fs: Fix system crash due to lack of free space in LFS
     - f2fs: fix to drop all dirty pages during umount() if cp_error is set
     - f2fs: fix to check readonly condition correctly
     - bpf: Add preempt_count_{sub,add} into btf id deny list
     - md: fix soft lockup in status_resync
     - wifi: iwlwifi: pcie: fix possible NULL pointer dereference
     - wifi: iwlwifi: add a new PCI device ID for BZ device
     - wifi: iwlwifi: pcie: Fix integer overflow in iwl_write_to_user_buf
     - wifi: iwlwifi: mvm: fix ptk_pn memory leak
     - block, bfq: Fix division by zero error on zero wsum
     - wifi: ath11k: Ignore frags from uninitialized peer in dp.
     - wifi: iwlwifi: fix iwl_mvm_max_amsdu_size() for MLO
     - null_blk: Always check queue mode setting from configfs
     - wifi: iwlwifi: dvm: Fix memcpy: detected field-spanning write backtrace
     - wifi: ath11k: Fix SKB corruption in REO destination ring
     - nbd: fix incomplete validation of ioctl arg
     - ipvs: Update width of source for ip_vs_sync_conn_options
     - Bluetooth: btusb: Add new PID/VID 04ca:3801 for MT7663
     - Bluetooth: Add new quirk for broken local ext features page 2
     - Bluetooth: btrtl: add support for the RTL8723CS
     - Bluetooth: Improve support for Actions Semi ATS2851 based devices
     - Bluetooth: btrtl: check for NULL in btrtl_set_quirks()
     - Bluetooth: btintel: Add LE States quirk support
     - Bluetooth: hci_bcm: Fall back to getting bdaddr from EFI if not set
     - Bluetooth: Add new quirk for broken set random RPA timeout for ATS2851
     - Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp
     - Bluetooth: btrtl: Add the support for RTL8851B
     - HID: apple: Set the tilde quirk flag on the Geyser 4 and later
     - [x86] ASoC: amd: yc: Add DMI entries to support HP OMEN 16-n0xxx (8A42)
     - HID: logitech-hidpp: Don't use the USB serial for USB devices
     - HID: logitech-hidpp: Reconcile USB and Unifying serials
     - [arm64,armhf] spi: spi-imx: fix MX51_ECSPI_* macros when cs > 3
     - [x86] usb: typec: ucsi: acpi: add quirk for ASUS Zenbook UM325
     - ALSA: hda: LNL: add HD Audio PCI ID
     - [x86] ASoC: amd: Add Dell G15 5525 to quirks list
     - [x86] ASoC: amd: yc: Add ThinkBook 14 G5+ ARP to quirks list for acp6x
     - [x86] HID: apple: Set the tilde quirk flag on the Geyser 3
     - [x86] HID: Ignore battery for ELAN touchscreen on ROG Flow X13 GV301RA
     - HID: wacom: generic: Set battery quirk only when we see battery data
     - usb: typec: tcpm: fix multiple times discover svids error
     - serial: 8250: Reinit port->pm on port specific driver unbind
     - [x86] soundwire: dmi-quirks: add remapping for Intel 'Rooks County' NUC
       M15
     - soundwire: qcom: gracefully handle too many ports in DT
     - soundwire: bus: Fix unbalanced pm_runtime_put() causing usage count
       underflow
     - [x86] mfd: intel_soc_pmic_chtwc: Add Lenovo Yoga Book X90F to
       intel_cht_wc_models
     - [x86] mfd: intel-lpss: Add Intel Meteor Lake PCH-S LPSS PCI IDs
     - [x86] platform/x86: Move existing HP drivers to a new hp subdir
     - [x86] hp-wmi: add micmute to hp_wmi_keymap struct
     - drm/amdgpu: drop gfx_v11_0_cp_ecc_error_irq_funcs
     - xfrm: don't check the default policy if the policy allows the packet
     - Revert "Fix XFRM-I support for nested ESP tunnels"
     - [arm64] drm/msm/dp: unregister audio driver during unbind
     - [arm64] drm/msm/dpu: Assign missing writeback log_mask
     - [arm64] drm/msm/dpu: Move non-MDP_TOP INTF_INTR offsets out of hwio header
     - [arm64] drm/msm/dpu: Remove duplicate register defines from INTF
     - platform: Provide a remove callback that returns no value
     - [arm64] ASoC: fsl_micfil: Fix error handler with pm_runtime_enable
     - cpupower: Make TSC read per CPU for Mperf monitor
     - xfrm: Reject optional tunnel/BEET mode templates in outbound policies
     - af_key: Reject optional tunnel/BEET mode templates in outbound policies
     - [arm64] drm/msm: Fix submit error-path leaks
     - [arm64,armhf] net: fec: Better handle pm_runtime_get() failing in
       .remove()
     - net: phy: dp83867: add w/a for packet errors seen with short cables
     - ALSA: firewire-digi00x: prevent potential use after free
     - wifi: mt76: connac: fix stats->tx_bytes calculation
     - [x86] ALSA: hda/realtek: Apply HP B&O top speaker profile to Pavilion 15
     - sfc: disable RXFCS and RXALL features by default
     - vsock: avoid to close connected socket after the timeout
     - tcp: fix possible sk_priority leak in tcp_v4_send_reset()
     - [armhf] serial: arc_uart: fix of_iomap leak in `arc_serial_probe`
     - erspan: get the proto with the md version for collect_md
     - [arm64] net: hns3: fix output information incomplete for dumping tx queue
       info with debugfs
     - [arm64] net: hns3: fix sending pfc frames after reset issue
     - [arm64] net: hns3: fix reset delay time to avoid configuration timeout
     - [arm64] net: hns3: fix reset timeout when enable full VF
     - media: netup_unidvb: fix use-after-free at del_timer()
     - SUNRPC: double free xprt_ctxt while still in use
     - SUNRPC: always free ctxt when freeing deferred request
     - SUNRPC: Fix trace_svc_register() call site
     - [x86] ASoC: SOF: topology: Fix logic for copying tuples
     - net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment()
     - virtio-net: Maintain reverse cleanup order
     - virtio_net: Fix error unwinding of XDP initialization
     - tipc: add tipc_bearer_min_mtu to calculate min mtu
     - tipc: do not update mtu if msg_max is too small in mtu negotiation
     - tipc: check the bearer min mtu properly when setting it by netlink
     - [s390x] cio: include subchannels without devices also for evaluation
     - can: dev: fix missing CAN XL support in can_put_echo_skb()
     - [arm64] net: bcmgenet: Remove phy_stop() from bcmgenet_netif_stop()
     - [arm64] net: bcmgenet: Restore phy_stop() depending upon suspend/close
     - ice: introduce clear_reset_state operation
     - ice: Fix ice VF reset during iavf initialization
     - wifi: cfg80211: Drop entries with invalid BSSIDs in RNR
     - wifi: mac80211: fortify the spinlock against deadlock by interrupt
     - wifi: mac80211: fix min center freq offset tracing
     - wifi: mac80211: Abort running color change when stopping the AP
     - wifi: iwlwifi: mvm: fix cancel_delayed_work_sync() deadlock
     - wifi: iwlwifi: fw: fix DBGI dump
     - wifi: iwlwifi: fix OEM's name in the ppag approved list
     - wifi: iwlwifi: mvm: fix OEM's name in the tas approved list
     - wifi: iwlwifi: mvm: don't trust firmware n_channels
     - scsi: storvsc: Don't pass unused PFNs to Hyper-V host
     - net: tun: rebuild error handling in tun_get_user
     - tun: Fix memory leak for detached NAPI queue.
     - cassini: Fix a memory leak in the error handling path of cas_init_one()
     - [arm64,armhf] net: dsa: mv88e6xxx: Fix mv88e6393x EPC write command offset
     - igb: fix bit_shift to be in [1..8] range
     - vlan: fix a potential uninit-value in vlan_dev_hard_start_xmit()
     - net: wwan: iosm: fix NULL pointer dereference when removing device
     - net: pcs: xpcs: fix C73 AN not getting enabled
     - netfilter: nf_tables: fix nft_trans type confusion
     - netfilter: nft_set_rbtree: fix null deref on element insertion
     - ALSA: usb-audio: Add a sample rate workaround for Line6 Pod Go
     - USB: usbtmc: Fix direction for 0-length ioctl control messages
     - usb-storage: fix deadlock when a scsi command timeouts more than once
     - USB: UHCI: adjust zhaoxin UHCI controllers OverCurrent bit value
     - [arm64,armhf] usb: dwc3: gadget: Improve dwc3_gadget_suspend() and
       dwc3_gadget_resume()
     - [arm64,armhf] usb: dwc3: debugfs: Resume dwc3 before accessing registers
     - usb: gadget: u_ether: Fix host MAC address case
     - usb: typec: altmodes/displayport: fix pin_assignment_show
     - xhci-pci: Only run d3cold avoidance quirk for s2idle
     - xhci: Fix incorrect tracking of free space on transfer rings
     - ALSA: hda: Fix Oops by 9.1 surround channel names
     - ALSA: hda: Add NVIDIA codec IDs a3 through a7 to patch table
     - [x86] ALSA: hda/realtek: Add quirk for Clevo L140AU
     - [x86] ALSA: hda/realtek: Add a quirk for HP EliteDesk 805
     - [x86] ALSA: hda/realtek: Add quirk for 2nd ASUS GU603
     - [x86] ALSA: hda/realtek: Add quirk for HP EliteBook G10 laptops
     - ALSA: hda/realtek: Fix mute and micmute LEDs for yet another HP laptop
     - can: j1939: recvmsg(): allow MSG_CMSG_COMPAT flag
     - can: isotp: recvmsg(): allow MSG_CMSG_COMPAT flag
     - wifi: rtw88: use work to update rate to avoid RCU warning
     - SMB3: Close all deferred handles of inode in case of handle lease break
     - SMB3: drop reference to cfile before sending oplock break
     - ksmbd: smb2: Allow messages padded to 8byte boundary
     - ksmbd: allocate one more byte for implied bcc[0]
     - ksmbd: fix wrong UserName check in session_user
     - ksmbd: fix global-out-of-bounds in smb2_find_context_vals
     - KVM: Fix vcpu_array[0] races
     - statfs: enforce statfs[64] structure initialization
     - maple_tree: make maple state reusable after mas_empty_area()
       (Closes: #1036755)
     - mm: fix zswap writeback race condition
     - serial: Add support for Advantech PCI-1611U card
     - serial: 8250_exar: Add support for USR298x PCI Modems
     - [arm64] serial: qcom-geni: fix enabling deactivated interrupt
     - [x86] thunderbolt: Clear registers properly when auto clear isn't in use
     - vc_screen: reload load of struct vc_data pointer in vcs_write() to avoid
       UAF
     - ceph: force updating the msg pointer in non-split case
     - drm/amd/pm: fix possible power mode mismatch between driver and PMFW
     - drm/amdgpu/gmc11: implement get_vbios_fb_size()
     - drm/amdgpu/gfx10: Disable gfxoff before disabling powergating.
     - drm/amdgpu/gfx11: Adjust gfxoff before powergating on gfx11 as well
     - drm/amdgpu: refine get gpu clock counter method
     - drm/amdgpu/gfx11: update gpu_clock_counter logic
     - [powerpc*] iommu: DMA address offset is incorrectly calculated with 2MB
       TCEs
     - [powerpc*] iommu: Incorrect DDW Table is referenced for SR-IOV device
     - tpm/tpm_tis: Disable interrupts for more Lenovo devices
     - [powerpc*] 64s/radix: Fix soft dirty tracking
     - nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode()
     - [s390x] dasd: fix command reject error on ESE devices
     - [s390x] crypto: use vector instructions only if available for ChaCha20
     - [s390x] qdio: fix do_sqbs() inline assembly constraint
     - [arm64] mte: Do not set PG_mte_tagged if tags were not initialized
     - [x86] rethook: use preempt_{disable, enable}_notrace in
       rethook_trampoline_handler
     - [x86] rethook, fprobe: do not trace rethook related functions
     - crypto: testmgr - fix RNG performance in fuzz tests
     - drm/amdgpu: declare firmware for new MES 11.0.4
     - drm/amd/amdgpu: introduce gc_*_mes_2.bin v2
     - drm/amdgpu: reserve the old gc_11_0_*_mes.bin
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.31
     - [arm64,armhf] usb: dwc3: fix gadget mode suspend interrupt handler issue
     - tpm, tpm_tis: Avoid cache incoherency in test for interrupts
     - tpm, tpm_tis: Only handle supported interrupts
     - tpm_tis: Use tpm_chip_{start,stop} decoration inside tpm_tis_resume
     - tpm, tpm_tis: startup chip before testing for interrupts
     - tpm: Re-enable TPM chip boostrapping non-tpm_tis TPM drivers
     - tpm: Prevent hwrng from activating during resume
     - [x86] watchdog: sp5100_tco: Immediately trigger upon starting.
     - drm/amd/amdgpu: update mes11 api def
     - drm/amdgpu/mes11: enable reg active poll
     - skbuff: Proactively round up to kmalloc bucket size
     - [arm64,armhf] net: dsa: mv88e6xxx: Add RGMII delay to 88E6320
     - drm/amd/display: hpd rx irq not working with eDP interface
     - ocfs2: Switch to security_inode_init_security()
     - [x86] mm: Avoid incomplete Global INVLPG flushes
     - [x86] ALSA: hda/ca0132: add quirk for EVGA X299 DARK
     - ALSA: hda: Fix unhandled register update during auto-suspend period
     - [x86] ALSA: hda/realtek: Enable headset onLenovo M70/M90
     - SUNRPC: Don't change task->tk_status after the call to rpc_exit_task
     - [arm64,armhf] imc: sdhci-esdhc-imx: make "no-mmc-hs400" works
     - mmc: block: ensure error propagation for non-blk
     - [x86] power: supply: axp288_fuel_gauge: Fix external_power_changed race
     - [arm64] power: supply: bq25890: Fix external_power_changed race
     - ASoC: rt5682: Disable jack detection interrupt during suspend
     - net: cdc_ncm: Deal with too low values of dwNtbOutMaxSize
     - btrfs: use nofs when cleaning up aborted transactions
     - [x86] drm/mgag200: Fix gamma lut not initialized.
     - drm/radeon: reintroduce radeon_dp_work_func content
     - drm/amd/pm: add missing NotifyPowerSource message mapping for SMU13.0.7
     - drm/amd/pm: Fix output of pp_od_clk_voltage
     - Revert "binder_alloc: add missing mmap_lock calls when using the VMA"
     - Revert "android: binder: stop saving a pointer to the VMA"
     - binder: add lockless binder_alloc_(set|get)_vma()
     - binder: fix UAF caused by faulty buffer cleanup
     - binder: fix UAF of alloc->vma in race with munmap()
     - drm/amd/amdgpu: limit one queue per gang
     - [x86] perf/x86/uncore: Correct the number of CHAs on SPR
     - [x86] topology: Fix erroneous smp_num_siblings on Intel Hybrid platforms
     - [mips*] irqchip/mips-gic: Don't touch vl_map if a local interrupt is not
       routable
     - [mips*] irqchip/mips-gic: Use raw spinlock for gic_lock
     - debugobjects: Don't wake up kswapd from fill_pool()
     - fbdev: udlfb: Fix endpoint check
     - net: fix stack overflow when LRO is disabled for virtual interfaces
     - udplite: Fix NULL pointer dereference in __sk_mem_raise_allocated().
     - USB: core: Add routines for endpoint checks in old drivers
     - USB: sisusbvga: Add endpoint checks
     - media: radio-shark: Add endpoint checks
     - net: fix skb leak in __skb_tstamp_tx()
     - drm: fix drmm_mutex_init()
     - bpf: Fix mask generation for 32-bit narrow loads of 64-bit fields
     - bpf: fix a memory leak in the LRU and LRU_PERCPU hash maps
     - ipv6: Fix out-of-bounds access in ipv6_find_tlv()
     - cifs: mapchars mount option ignored
     - power: supply: leds: Fix blink to LED on transition
     - power: supply: bq27xxx: Fix bq27xxx_battery_update() race condition
     - power: supply: bq27xxx: Fix I2C IRQ race on remove
     - power: supply: bq27xxx: Fix poll_interval handling and races on remove
     - power: supply: bq27xxx: Add cache parameter to
       bq27xxx_battery_current_and_status()
     - power: supply: bq27xxx: Move bq27xxx_battery_update() down
     - power: supply: bq27xxx: Ensure power_supply_changed() is called on current
       sign changes
     - power: supply: bq27xxx: After charger plug in/out wait 0.5s for things to
       stabilize
     - [arm64] power: supply: bq25890: Call power_supply_changed() after updating
       input current or voltage
     - [x86] power: supply: bq24190: Call power_supply_changed() after updating
       input current
     - [arm64] optee: fix uninited async notif value
     - fs: fix undefined behavior in bit shift for SB_NOUSER
     - [arm64] regulator: pca9450: Fix BUCK2 enable_mask
     - [x86] platform/x86: ISST: Remove 8 socket limit
     - [armhf] dts: imx6qdl-mba6: Add missing pvcie-supply regulator
     - [x86] pci/xen: populate MSI sysfs entries
     - [x86] show_trace_log_lvl: Ensure stack pointer is aligned, again
     - [x86] ASoC: Intel: Skylake: Fix declaration of enum skl_ch_cfg
     - cxl: Wait Memory_Info_Valid before access memory related info
     - sctp: fix an issue that plpmtu can never go to complete state
     - [x86] forcedeth: Fix an error handling path in nv_probe()
     - net/mlx5e: Fix SQ wake logic in ptp napi_poll context
     - net/mlx5e: Fix deadlock in tc route query code
     - net/mlx5e: Use correct encap attribute during invalidation
     - net/mlx5e: do as little as possible in napi poll when budget is 0
     - [s390x] net/mlx5: DR, Fix crc32 calculation to work on big-endian (BE)
       CPUs
     - net/mlx5: Handle pairing of E-switch via uplink un/load APIs
     - net/mlx5: DR, Check force-loopback RC QP capability independently from
       RoCE
     - net/mlx5: Fix error message when failing to allocate device memory
     - net/mlx5: Collect command failures data only for known commands
     - net/mlx5: Devcom, fix error flow in mlx5_devcom_register_device
     - net/mlx5: Devcom, serialize devcom registration
     - [arm64] dts: imx8mn-var-som: fix PHY detection bug by adding deassert
       delay
     - net/smc: Reset connection when trying to use SMCRv2 fails.
     - [x86] 3c589_cs: Fix an error handling path in tc589_probe()
     - net: phy: mscc: add VSC8502 to MODULE_DEVICE_TABLE
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.32
     - inet: Add IP_LOCAL_PORT_RANGE socket option
     - ipv{4,6}/raw: fix output xfrm lookup wrt protocol
     - tls: rx: device: fix checking decryption status
     - tls: rx: strp: set the skb->len of detached / CoW'ed skbs
     - tls: rx: strp: fix determining record length in copy mode
     - tls: rx: strp: force mixed decrypted records into copy mode
     - tls: rx: strp: factor out copying skb data
     - tls: rx: strp: preserve decryption status of skbs when needed
     - net/mlx5: E-switch, Devcom, sync devcom events and devcom comp register
     - [x86] gpio-f7188x: fix chip name and pin count on Nuvoton chip
     - bpf, sockmap: Pass skb ownership through read_skb
     - bpf, sockmap: Convert schedule_work into delayed_work
     - bpf, sockmap: Reschedule is now done through backlog
     - bpf, sockmap: Improved check for empty queue
     - bpf, sockmap: Handle fin correctly
     - bpf, sockmap: TCP data stall on recv before accept
     - bpf, sockmap: Wake up polling after data copy
     - bpf, sockmap: Incorrectly handling copied_seq
     - blk-mq: fix race condition in active queue accounting
     - vfio/type1: check pfn valid before converting to struct page
     - net: page_pool: use in_softirq() instead
     - page_pool: fix inconsistency for page_pool_ring_[un]lock()
     - net: phy: mscc: enable VSC8501/2 RGMII RX clock
     - wifi: iwlwifi: mvm: support wowlan info notification version 2
     - wifi: iwlwifi: mvm: fix potential memory leak
     - RDMA/rxe: Fix the error "trying to register non-static key in
       rxe_cleanup_task"
     - drm/amd: Don't allow s0ix on APUs older than Raven
     - bluetooth: Add cmd validity checks at the start of hci_sock_ioctl()
     - block: fix bio-cache for passthru IO
     - [x86] cpufreq: amd-pstate: Update policy->cur in amd_pstate_adjust_perf()
     - [x86] cpufreq: amd-pstate: Add ->fast_switch() callback
     - netfilter: ctnetlink: Support offloaded conntrack entry deletion
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.33
     - [arm64,armhf] phy: amlogic: phy-meson-g12a-mipi-dphy-analog: fix
       CNTL2_DIF_TX_CTL0 value
     - [arm64] RDMA/hns: Fix timeout attr in query qp for HIP08
     - [arm64] RDMA/hns: Fix base address table allocation
     - [arm64] RDMA/hns: Modify the value of long message loopback slice
     - [arm64,armhf] iommu/rockchip: Fix unwind goto issue
     - [amd64] iommu/amd: Don't block updates to GATag if guest mode is on
     - [amd64] iommu/amd: Handle GALog overflows
     - [amd64] iommu/amd: Fix up merge conflict resolution
     - nfsd: make a copy of struct iattr before calling notify_change
     - net/mlx5: Drain health before unregistering devlink
     - net/mlx5: SF, Drain health before removing device
     - net/mlx5: fw_tracer, Fix event handling
     - net/mlx5e: Don't attach netdev profile while handling internal error
     - netrom: fix info-leak in nr_write_internal()
     - af_packet: Fix data-races of pkt_sk(sk)->num.
     - tls: improve lockless access safety of tls_err_abort()
     - [amd64,arm64] amd-xgbe: fix the false linkup in xgbe_phy_status
     - perf ftrace latency: Remove unnecessary "--" from --use-nsec option
     - RDMA/irdma: Prevent QP use after free
     - RDMA/irdma: Fix Local Invalidate fencing
     - af_packet: do not use READ_ONCE() in packet_bind()
     - tcp: deny tcp_disconnect() when threads are waiting
     - tcp: Return user_mss for TCP_MAXSEG in CLOSE/LISTEN state if user_mss set
     - net/smc: Scan from current RMB list when no position specified
     - net/smc: Don't use RMBs not mapped to new link in SMCRv2 ADD LINK
     - net/sched: sch_ingress: Only create under TC_H_INGRESS
     - net/sched: sch_clsact: Only create under TC_H_CLSACT
     - net/sched: Reserve TC_H_INGRESS (TC_H_CLSACT) for ingress (clsact) Qdiscs
     - net/sched: Prohibit regrafting ingress or clsact Qdiscs
     - net: sched: fix NULL pointer dereference in mq_attach
     - net/netlink: fix NETLINK_LIST_MEMBERSHIPS length report
     - udp6: Fix race condition in udp6_sendmsg & connect
     - nfsd: fix double fget() bug in __write_ports_addfd()
     - nvme: fix the name of Zone Append for verbose logging
     - net/mlx5e: Fix error handling in mlx5e_refresh_tirs
     - net/mlx5: Read embedded cpu after init bit cleared
     - net/sched: flower: fix possible OOB write in fl_set_geneve_opt()
       (CVE-2023-35788)
     - tcp: fix mishandling when the sack compression is deferred.
     - [arm64,armhf] net: dsa: mv88e6xxx: Increase wait after reset deactivation
     - [armhf] mtd: rawnand: marvell: ensure timing values are written
     - [armhf] mtd: rawnand: marvell: don't set the NAND frequency select
     - rtnetlink: call validate_linkmsg in rtnl_create_link
     - mptcp: avoid unneeded __mptcp_nmpc_socket() usage
     - mptcp: add annotations around msk->subflow accesses
     - mptcp: avoid unneeded address copy
     - mptcp: simplify subflow_syn_recv_sock()
     - mptcp: consolidate passive msk socket initialization
     - mptcp: fix data race around msk->first access
     - mptcp: add annotations around sk->sk_shutdown accesses
     - drm/amdgpu: release gpu full access after "amdgpu_device_ip_late_init"
     - ALSA: hda: Glenfly: add HD Audio PCI IDs and HDMI Codec Vendor IDs.
     - [x86] ASoC: Intel: soc-acpi-cht: Add quirk for Nextbook Ares 8A tablet
     - drm/amdgpu: Use the default reset when loading or reloading the driver
     - [arm64] drm/ast: Fix ARM compatibility
     - btrfs: abort transaction when sibling keys check fails for leaves
     - [armel,armhf] ARM: 9295/1: unwind:fix unwind abort for uleb128 case
     - [x86] hwmon: (k10temp) Add PCI ID for family 19, model 78h
     - gfs2: Don't deref jdesc in evict (CVE-2023-3212)
     - drm/amdgpu: set gfx9 onwards APU atomics support to be true
     - fbdev: modedb: Add 1920x1080 at 60 Hz video mode
     - nbd: Fix debugfs_create_dir error checking
     - nvme-pci: add NVME_QUIRK_BOGUS_NID for HS-SSD-FUTURE 2048G
     - nvme-pci: add quirk for missing secondary temperature thresholds
     - [x86] ASoC: amd: yc: Add DMI entry to support System76 Pangolin 12
     - xfrm: Check if_id in inbound policy/secpath match
     - [x86] ALSA: hda/realtek: Add quirks for ASUS GU604V and GU603V
     - media: dvb_demux: fix a bug for the continuity counter
     - media: dvb-usb: az6027: fix three null-ptr-deref in az6027_i2c_xfer()
     - media: dvb-usb-v2: ec168: fix null-ptr-deref in ec168_i2c_xfer()
     - media: dvb-usb-v2: ce6230: fix null-ptr-deref in ce6230_i2c_master_xfer()
     - media: dvb-usb-v2: rtl28xxu: fix null-ptr-deref in rtl28xxu_i2c_xfer
     - media: dvb-usb: digitv: fix null-ptr-deref in digitv_i2c_xfer()
     - media: dvb-usb: dw2102: fix uninit-value in su3000_read_mac_address
     - media: netup_unidvb: fix irq init by register it at the end of probe
     - media: dvb_ca_en50221: fix a size write bug
     - media: ttusb-dec: fix memory leak in ttusb_dec_exit_dvb()
     - media: dvb-core: Fix use-after-free due on race condition at dvb_net
     - media: dvb-core: Fix use-after-free due to race at dvb_register_device()
     - media: dvb-core: Fix kernel WARNING for blocking operation in
       wait_event*() (CVE-2023-31084)
     - media: dvb-core: Fix use-after-free due to race condition at
       dvb_ca_en50221
     - [x86] ASoC: SOF: debug: conditionally bump runtime_pm counter on
       exceptions
     - [x86] ASoC: SOF: pcm: fix pm_runtime imbalance in error handling
     - [x86] ASoC: SOF: sof-client-probes: fix pm_runtime imbalance in error
       handling
     - [x86] ASoC: SOF: pm: save io region state in case of errors in resume
     - [s390x] topology: honour nr_cpu_ids when adding CPUs
     - ACPI: resource: Add IRQ override quirk for LG UltraPC 17U70P
     - wifi: rtl8xxxu: fix authentication timeout due to incorrect RCR value
     - [arm64] mm: mark private VM_FAULT_X defines as vm_fault_t
     - [arm64] vdso: Pass (void *) to virt_to_page()
     - wifi: mac80211: simplify chanctx allocation
     - wifi: mac80211: consider reserved chanctx for mindef
     - wifi: mac80211: recalc chanctx mindef before assigning
     - wifi: iwlwifi: mvm: Add locking to the rate read flow
     - scsi: core: Decrease scsi_device's iorequest_cnt if dispatch failed
     - nvme-multipath: don't call blk_mark_disk_dead in nvme_mpath_remove_disk
     - nvme: do not let the user delete a ctrl before a complete initialization
     - [arm64] drm/msm: Be more shouty if per-process pgtables aren't working
     - ceph: silence smatch warning in reconnect_caps_cb()
     - drm/amdgpu: skip disabling fence driver src_irqs when device is unplugged
     - nvme-pci: Add quirk for Teamgroup MP33 SSD
     - block: Deny writable memory mapping if block is read-only
     - [arm64] KVM: arm64: vgic: Fix a circular locking issue
     - [arm64] KVM: arm64: vgic: Wrap vgic_its_create() with config_lock
     - [arm64] KVM: arm64: vgic: Fix locking comment
     - drivers: base: cacheinfo: Fix shared_cpu_map changes in event of CPU
       hotplug
     - media: uvcvideo: Don't expose unsupported formats to userspace
     - iio: accel: st_accel: Fix invalid mount_matrix on devices without ACPI
       _ONT method
     - HID: google: add jewel USB id
     - HID: wacom: avoid integer overflow in wacom_intuos_inout()
     - iio: imu: inv_icm42600: fix timestamp reset
     - iio: light: vcnl4035: fixed chip ID check
     - iio: adc: ad_sigma_delta: Fix IRQ issue by setting IRQ_DISABLE_UNLAZY flag
     - iio: dac: mcp4725: Fix i2c_master_send() return value handling
     - iio: adc: ad7192: Change "shorted" channels to differential
     - net: usb: qmi_wwan: Set DTR quirk for BroadMobi BM818
     - usb: gadget: f_fs: Add unbind event before functionfs_unbind
     - md/raid5: fix miscalculation of 'end_sector' in raid5_read_one_chunk()
     - ata: libata-scsi: Use correct device no in ata_find_dev()
     - drm/amdgpu: enable tmz by default for GC 11.0.1
     - drm/amd/pm: reverse mclk and fclk clocks levels for SMU v13.0.4
     - drm/amd/pm: reverse mclk and fclk clocks levels for vangogh
     - drm/amd/pm: resolve reboot exception for si oland
     - drm/amd/pm: reverse mclk clocks levels for SMU v13.0.5
     - drm/amd/pm: reverse mclk and fclk clocks levels for yellow carp
     - drm/amd/pm: reverse mclk and fclk clocks levels for renoir
     - [x86] mtrr: Revert 90b926e68f50 ("x86/pat: Fix pat_x_mtrr_type() for MTRR
       disabled case")
     - mmc: vub300: fix invalid response handling
     - [armhf] mmc: pwrseq: sd8787: Fix WILC CHIP_EN and RESETN toggling order
     - [arm64] tty: serial: fsl_lpuart: use UARTCTRL_TXINV to send break instead
       of UARTCTRL_SBK
     - btrfs: fix csum_tree_block page iteration to avoid tripping on
       -Werror=array-bounds
     - [arm64] phy: qcom-qmp-combo: fix init-count imbalance
     - [arm64] phy: qcom-qmp-pcie-msm8996: fix init-count imbalance
     - block: fix revalidate performance regression
     - [powerpc*] iommu: Limit number of TCEs to 512 for H_STUFF_TCE hcall
     - [amd64] iommu/amd: Fix domain flush size when syncing iotlb
     - tpm, tpm_tis: correct tpm_tis_flags enumeration values
     - io_uring: undeprecate epoll_ctl support
     - mtdchar: mark bits of ioctl handler noinline
     - [rt] tracing/timerlat: Always wakeup the timerlat thread
     - tracing/histograms: Allow variables to have some modifiers
     - tracing/probe: trace_probe_primary_from_call(): checked list_first_entry
     - mptcp: fix connect timeout handling
     - mptcp: fix active subflow finalization
     - ext4: add EA_INODE checking to ext4_iget()
     - ext4: disallow ea_inodes with extended attributes
     - fbcon: Fix null-ptr-deref in soft_cursor
     - [arm64,armhf] serial: 8250_tegra: Fix an error handling path in
       tegra_uart_probe()
     - [powerpc*] xmon: Use KSYM_NAME_LEN in array size
     - [arm64] KVM: arm64: Populate fault info for watchpoint
     - [x86] KVM: x86: Account fastpath-only VM-Exits in vCPU stats
     - ksmbd: fix credit count leakage
     - ksmbd: fix UAF issue from opinfo->conn
     - ksmbd: fix incorrect AllocationSize set in smb2_get_info
     - ksmbd: fix slab-out-of-bounds read in smb2_handle_negotiate
     - ksmbd: fix multiple out-of-bounds read during context decoding
     - KEYS: asymmetric: Copy sig and digest in public_key_verify_signature()
     - fs/ntfs3: Validate MFT flags before replaying logs (CVE-2022-48425)
     - regmap: Account for register length when chunking
     - tpm, tpm_tis: Request threaded interrupt handler
     - [amd64] iommu/amd/pgtbl_v2: Fix domain max address
     - drm/amd/display: Have Payload Properly Created After Resume
     - xfs: verify buffer contents when we skip log replay (CVE-2023-2124)
     - tls: rx: strp: don't use GFP_KERNEL in softirq context
     - [arm64] efi: Use SMBIOS processor version to key off Ampere quirk
     - ext4: enable the lazy init thread when remounting read/write
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.34
     - scsi: megaraid_sas: Add flexible array member for SGLs
     - net: sfp: fix state loss when updating state_hw_mask
     - [x86] platform/surface: aggregator: Allow completion work-items to be
       executed in parallel
     - [x86] platform/surface: aggregator_tabletsw: Add support for book mode in
       KIP subsystem
     - [arm64] spi: qup: Request DMA before enabling clocks
     - afs: Fix setting of mtime when creating a file/dir/symlink
     - wifi: mt76: mt7615: fix possible race in mt7615_mac_sta_poll
     - bpf, sockmap: Avoid potential NULL dereference in
       sk_psock_verdict_data_ready()
     - neighbour: fix unaligned access to pneigh_entry
     - net/ipv4: ping_group_range: allow GID from 2147483648 to 4294967294
     - bpf: Fix UAF in task local storage
     - bpf: Fix elem_size not being set for inner maps
     - net/ipv6: fix bool/int mismatch for skip_notify_on_dev_down
     - net/smc: Avoid to access invalid RMBs' MRs in SMCRv1 ADD LINK CONT
     - [arm64] net: enetc: correct the statistics of rx bytes
     - [arm64] net: enetc: correct rx_bytes statistics of XDP
     - net/sched: fq_pie: ensure reasonable TCA_FQ_PIE_QUANTUM values
     - [x86] drm/i915: Explain the magic numbers for AUX SYNC/precharge length
     - [x86] drm/i915: Use 18 fast wake AUX sync len
     - Bluetooth: hci_sync: add lock to protect HCI_UNREGISTER
     - Bluetooth: Fix l2cap_disconnect_req deadlock
     - Bluetooth: ISO: don't try to remove CIG if there are bound CIS left
     - Bluetooth: L2CAP: Add missing checks for invalid DCID
     - wifi: mac80211: use correct iftype HE cap
     - wifi: cfg80211: reject bad AP MLD address
     - wifi: mac80211: mlme: fix non-inheritence element
     - wifi: mac80211: don't translate beacon/presp addrs
     - qed/qede: Fix scheduling while atomic
     - wifi: cfg80211: fix locking in sched scan stop work
     - netfilter: nft_bitwise: fix register tracking
     - netfilter: conntrack: fix NULL pointer dereference in nf_confirm_cthelper
     - netfilter: ipset: Add schedule point in call_ad().
     - netfilter: nf_tables: out-of-bound check in chain blob
     - ipv6: rpl: Fix Route of Death. (CVE-2023-2156)
     - tcp: gso: really support BIG TCP
     - rfs: annotate lockless accesses to sk->sk_rxhash
     - rfs: annotate lockless accesses to RFS sock flow table
     - net: sched: add rcu annotations around qdisc->qdisc_sleeping
     - net: sched: move rtm_tca_policy declaration to include file
     - net: sched: act_police: fix sparse errors in tcf_police_dump()
     - net: sched: fix possible refcount leak in tc_chain_tmplt_add()
     - bpf: Add extra path pointer check to d_path helper
     - drm/amdgpu: fix Null pointer dereference error in
       amdgpu_device_recover_vram
     - lib: cpu_rmap: Fix potential use-after-free in irq_cpu_rmap_release()
     - [arm64] net: bcmgenet: Fix EEE implementation
     - bnxt_en: Don't issue AP reset during ethtool's reset operation
     - bnxt_en: Query default VLAN before VNIC setup on a VF
     - bnxt_en: Skip firmware fatal error recovery if chip is not accessible
     - bnxt_en: Prevent kernel panic when receiving unexpected PHC_UPDATE event
     - bnxt_en: Implement .set_port / .unset_port UDP tunnel callbacks
     - batman-adv: Broken sync while rescheduling delayed work
     - Input: xpad - delete a Razer DeathAdder mouse VID/PID entry
     - Input: psmouse - fix OOB access in Elantech protocol
     - Input: fix open count when closing inhibited device
     - ALSA: hda: Fix kctl->id initialization
     - ALSA: ymfpci: Fix kctl->id initialization
     - [i386] ALSA: gus: Fix kctl->id initialization
     - ALSA: cmipci: Fix kctl->id initialization
     - [x86] ALSA: hda/realtek: Add quirk for Clevo NS50AU
     - ALSA: ice1712,ice1724: fix the kcontrol->id initialization
     - [x86] ALSA: hda/realtek: Add a quirk for HP Slim Desktop S01
     - [x86] ALSA: hda/realtek: Add Lenovo P3 Tower platform
     - [x86] ALSA: hda/realtek: Add quirks for Asus ROG 2024 laptops using
       CS35L41
     - [x86] drm/i915/gt: Use the correct error value when kernel_context() fails
     - drm/amd/pm: conditionally disable pcie lane switching for some
       sienna_cichlid SKUs
     - drm/amdgpu: fix xclk freq on CHIP_STONEY
     - drm/amdgpu: change reserved vram info print
     - drm/amd/pm: Fix power context allocation in SMU13
     - drm/amd/display: Reduce sdp bw after urgent to 90%
     - wifi: iwlwifi: mvm: Fix -Warray-bounds bug in iwl_mvm_wait_d3_notif()
     - can: j1939: j1939_sk_send_loop_abort(): improved error queue handling in
       J1939 Socket
     - can: j1939: change j1939_netdev_lock type to mutex
     - can: j1939: avoid possible use-after-free when j1939_can_rx_register fails
     - mptcp: only send RM_ADDR in nl_cmd_remove
     - mptcp: add address into userspace pm list
     - mptcp: update userspace pm infos
     - ceph: fix use-after-free bug for inodes when flushing capsnaps
     - [s390x] dasd: Use correct lock while counting channel queue length
     - Bluetooth: Fix use-after-free in hci_remove_ltk/hci_remove_irk
     - Bluetooth: fix debugfs registration
     - Bluetooth: hci_qca: fix debugfs registration
     - rbd: move RBD_OBJ_FLAG_COPYUP_ENABLED flag setting
     - rbd: get snapshot context after exclusive lock is ensured to be held
     - virtio_net: use control_buf for coalesce params
     - [arm64] pinctrl: meson-axg: add missing GPIOA_18 gpio group
     - usb: usbfs: Enforce page requirements for mmap
     - usb: usbfs: Use consistent mmap functions
     - [arm64] dts: imx8qm-mek: correct GPIOs for USDHC2 CD and WP signals
     - [arm*] ASoC: simple-card-utils: fix PCM constraint error check
     - blk-mq: fix blk_mq_hw_ctx active request accounting
     - [arm64] dts: imx8mn-beacon: Fix SPI CS pinmux
     - [arm*] i2c: mv64xxx: Fix reading invalid status value in atomic mode
     - soundwire: stream: Add missing clear of alloc_slave_rt
     - vhost: support PACKED when setting-getting vring_base
     - ksmbd: fix out-of-bound read in deassemble_neg_contexts()
     - ksmbd: fix out-of-bound read in parse_lease_state()
     - ksmbd: check the validation of pdu_size in ksmbd_conn_handler_loop
     - ext4: only check dquot_initialize_needed() when debugging
     - wifi: rtw89: correct PS calculation for SUPPORTS_DYNAMIC_PS
     - wifi: rtw88: correct PS calculation for SUPPORTS_DYNAMIC_PS
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.35
     - [amd64] x86/head/64: Switch to KERNEL_CS as soon as new GDT is installed
     - cgroup: bpf: use cgroup_lock()/cgroup_unlock() wrappers
     - cgroup: always put cset in cgroup_css_set_put_fork
     - cgroup: fix missing cpus_read_{lock,unlock}() in cgroup_transfer_tasks()
     - EDAC/qcom: Get rid of hardcoded register offsets
     - ksmbd: validate smb request protocol id
     - of: overlay: Fix missing of_node_put() in error case of
       init_overlay_changeset()
     - power: supply: bq27xxx: Use mod_delayed_work() instead of cancel() +
       schedule()
     - [armhf] dts: vexpress: add missing cache properties
     - power: supply: Ratelimit no data debug output
     - PCI/DPC: Quirk PIO log size for Intel Ice Lake Root Ports
     - [x86] platform/x86: asus-wmi: Ignore WMI events with codes 0x7B, 0xC0
     - regulator: Fix error checking for debugfs_create_dir
     - [arm64,armhf] irqchip/gic-v3: Disable pseudo NMIs on Mediatek devices w/
       firmware issues
     - [arm64,armhf] irqchip/meson-gpio: Mark OF related data as maybe unused
     - power: supply: Fix logic checking if system is running from battery
     - drm: panel-orientation-quirks: Change Air's quirk to support Air Plus
     - btrfs: scrub: try harder to mark RAID56 block groups read-only
     - btrfs: handle memory allocation failure in btrfs_csum_one_bio
     - ASoC: soc-pcm: test if a BE can be prepared
     - [mips*] unhide PATA_PLATFORM
     - [mips*] Restore Au1300 support
     - [mips*] Move initrd_start check after initrd address sanitisation.
     - ASoC: cs35l41: Fix default regmap values for some registers
     - ASoC: dwc: move DMA init to snd_soc_dai_driver probe()
     - xen/blkfront: Only check REQ_FUA for writes
     - drm:amd:amdgpu: Fix missing buffer object unlock in failure path
     - io_uring: unlock sqd->lock before sq thread release CPU
     - NVMe: Add MAXIO 1602 to bogus nid list.
     - [arm64,armhf] irqchip/gic: Correctly validate OF quirk descriptors
     - wifi: cfg80211: fix locking in regulatory disconnect
     - wifi: cfg80211: fix double lock bug in reg_wdev_chan_valid()
     - epoll: ep_autoremove_wake_function should use list_del_init_careful
     - ocfs2: fix use-after-free when unmounting read-only filesystem
     - ocfs2: check new file size on fallocate call
     - zswap: do not shrink if cgroup may not zswap
     - nilfs2: fix incomplete buffer cleanup in nilfs_btnode_abort_change_key()
     - nilfs2: fix possible out-of-bounds segment allocation in resize ioctl
     - nilfs2: reject devices with insufficient block count
     - io_uring/net: save msghdr->msg_control for retries
     - kexec: support purgatories with .text.hot sections
     - [x86] purgatory: remove PGO flags
     - [powerpc*] purgatory: remove PGO flags
     - btrfs: do not ASSERT() on duplicated global roots
     - btrfs: fix iomap_begin length for nocow writes
     - btrfs: can_nocow_file_extent should pass down args->strict from callers
     - ALSA: usb-audio: Fix broken resume due to UAC3 power state
     - ALSA: usb-audio: Add quirk flag for HEM devices to enable native DSD
       playback
     - dm thin metadata: check fail_io before using data_sm
     - dm thin: fix issue_discard to pass GFP_NOIO to __blkdev_issue_discard
     - net: ethernet: stmicro: stmmac: fix possible memory leak in __stmmac_open
     - nouveau: fix client work fence deletion race
     - RDMA/uverbs: Restrict usage of privileged QKEYs
     - drm/amdgpu: vcn_4_0 set instance 0 init sched score to 1
     - net: usb: qmi_wwan: add support for Compal RXM-G1
     - drm/amd/display: edp do not add non-edid timings
     - drm/amd: Make sure image is written to trigger VBIOS image update flow
     - drm/amd: Tighten permissions on VBIOS flashing attributes
     - drm/amd/pm: workaround for compute workload type on some skus
     - drm/amdgpu: add missing radeon secondary PCI ID
     - ALSA: hda/realtek: Add a quirk for Compaq N14JP6
     - [x86] thunderbolt: Do not touch CL state configuration during discovery
     - [x86] thunderbolt: dma_test: Use correct value for absent rings when
       creating paths
     - [x86] thunderbolt: Mask ring interrupt on Intel hardware as well
     - USB: serial: option: add Quectel EM061KGL series
     - usb: typec: ucsi: Fix command cancellation
     - usb: typec: Fix fast_role_swap_current show function
     - usb: gadget: udc: core: Offload usb_udc_vbus_handler processing
     - usb: gadget: udc: core: Prevent soft_connect_store() race
     - [arm64] USB: dwc3: qcom: fix NULL-deref on suspend
     - [arm64,armhf] USB: dwc3: fix use-after-free on core driver unbind
     - [arm64,armhf] usb: dwc3: gadget: Reset num TRBs before giving back the
       request
     - RDMA/rxe: Fix packet length checks
     - RDMA/rxe: Fix ref count error in check_rkey()
     - spi: cadence-quadspi: Add missing check for dma_set_mask
     - [arm64] spi: fsl-dspi: avoid SCK glitches with continuous transfers
     - netfilter: nf_tables: integrate pipapo into commit protocol
     - netfilter: nfnetlink: skip error delivery on batch in case of ENOMEM
     - ice: Fix XDP memory leak when NIC is brought up and down
     - netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE
       (CVE-2023-3390)
     - [arm64] net: enetc: correct the indexes of highest and 2nd highest TCs
     - ping6: Fix send to link-local addresses with VRF.
     - igb: Fix extts capture value format for 82580/i354/i350
     - net/sched: simplify tcf_pedit_act
     - net/sched: act_pedit: remove extra check for key type
     - net/sched: act_pedit: Parse L3 Header for L4 offset
     - net/sched: cls_u32: Fix reference counter leak leading to overflow
     - wifi: mac80211: fix link activation settings order
     - wifi: cfg80211: fix link del callback to call correct handler
     - wifi: mac80211: take lock before setting vif links
     - RDMA/rxe: Removed unused name from rxe_task struct
     - RDMA/rxe: Fix the use-before-initialization error of resp_pkts
     - iavf: remove mask from iavf_irq_enable_queues()
     - RDMA/mlx5: Initiate dropless RQ for RAW Ethernet functions
     - RDMA/mlx5: Create an indirect flow table for steering anchor
     - RDMA/cma: Always set static rate to 0 for RoCE
     - IB/uverbs: Fix to consider event queue closing also upon non-blocking mode
     - RDMA/mlx5: Fix affinity assignment
     - IB/isert: Fix dead lock in ib_isert
     - IB/isert: Fix possible list corruption in CMA handler
     - IB/isert: Fix incorrect release of isert connection
     - net: ethtool: correct MAX attribute value for stats
     - ipvlan: fix bound dev checking for IPv6 l3s mode
     - sctp: fix an error code in sctp_sf_eat_auth()
     - igc: Clean the TX buffer and TX descriptor ring
     - igc: Fix possible system crash when loading module
     - igb: fix nvm.ops.read() error handling
     - net: phylink: report correct max speed for QUSGMII
     - net: phylink: use a dedicated helper to parse usgmii control word
     - drm/nouveau: don't detect DSM for non-NVIDIA device
     - [arm64] drm/bridge: ti-sn65dsi86: Avoid possible buffer overflow
     - drm/nouveau/dp: check for NULL nv_connector->native_mode
     - drm/nouveau: add nv_encoder pointer check for NULL
     - sched: add new attr TCA_EXT_WARN_MSG to report tc extact message
     - net/sched: Refactor qdisc_graft() for ingress and clsact Qdiscs
     - net/sched: qdisc_destroy() old ingress and clsact Qdiscs before grafting
     - cifs: fix lease break oops in xfstest generic/098
     - ext4: drop the call to ext4_error() from ext4_get_group_info()
     - net/sched: cls_api: Fix lockup on flushing explicitly created chain
     - [arm64] net: dsa: felix: fix taprio guard band overflow at 10Mbps with
       jumbo frames
     - net: macsec: fix double free of percpu stats
     - sfc: fix XDP queues mode with legacy IRQ
     - dm: don't lock fs when the map is NULL during suspend or resume
     - net: tipc: resize nlattr array to correct size
     - afs: Fix vlserver probe RTT handling
     - rcu/kvfree: Avoid freeing new kfree_rcu() memory after old grace period
     - drm/amdgpu: Don't set struct drm_driver.output_poll_changed
     - net/sched: act_api: move TCA_EXT_WARN_MSG to the correct hierarchy
     - Revert "net/sched: act_api: move TCA_EXT_WARN_MSG to the correct
       hierarchy"
     - net/sched: act_api: add specific EXT_WARN_MSG for tc action
     - neighbour: delete neigh_lookup_nodev as not used
     - scsi: target: core: Fix error path in target_setup_session()
     - [mips*] Move '-Wa,-msoft-float' check from as-option to cc-option
     - [mips*] Prefer cc-option for additions to cflags
     - kbuild: Update assembler calls to use proper flags and language target
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.36
     - drm/amd/display: Use dc_update_planes_and_stream
     - drm/amd/display: Add wrapper to call planes and stream update
     - drm/amd/display: fix the system hang while disable PSR
     - [arm64] tty: serial: fsl_lpuart: make rx_watermark configurable for
       different platforms
     - [arm64] tty: serial: fsl_lpuart: reduce RX watermark to 0 on LS1028A
     - ata: libata-scsi: Avoid deadlock on rescan after device resume
     - mm: Fix copy_from_user_nofault(). (Closes: #1033398)
     - tpm, tpm_tis: Claim locality in interrupt handler
     - tpm_crb: Add support for CRB devices based on Pluton
     - ksmbd: validate command payload size
     - ksmbd: fix out-of-bound read in smb2_write
     - ksmbd: validate session id and tree id in the compound request
     - tick/common: Align tick period during sched_timer setup (Closes: #1038754)
     - writeback: fix dereferencing NULL mapping->host on writeback_page_template
     - nilfs2: fix buffer corruption due to concurrent device reads
     - [x86] ACPI: sleep: Avoid breaking S3 wakeup due to might_sleep()
     - KVM: Avoid illegal stage2 mapping on invalid memory slot
     - Drivers: hv: vmbus: Call hv_synic_free() if hv_synic_alloc() fails
     - Drivers: hv: vmbus: Fix vmbus_wait_for_unload() to scan present CPUs
     - PCI: hv: Fix a race condition bug in hv_pci_query_relations()
     - Revert "PCI: hv: Fix a timing issue which causes kdump to fail
       occasionally"
     - PCI: hv: Remove the useless hv_pcichild_state from struct hv_pci_dev
     - PCI: hv: Fix a race condition in hv_irq_unmask() that can cause panic
     - PCI: hv: Add a per-bus mutex state_lock
     - io_uring/net: clear msg_controllen on partial sendmsg retry
     - io_uring/net: disable partial retries for recvmsg with cmsg
     - mptcp: handle correctly disconnect() failures
     - mptcp: fix possible divide by zero in recvmsg()
     - mptcp: fix possible list corruption on passive MPJ
     - mptcp: consolidate fallback and non fallback state machine
     - cgroup: Do not corrupt task iteration when rebinding subsystem
     - cgroup,freezer: hold cpu_hotplug_lock before freezer_mutex in
       freezer_css_{online,offline}()
     - [arm64] mmc: sdhci-msm: Disable broken 64-bit DMA on MSM8916
     - [arm64] mmc: meson-gx: remove redundant mmc_request_done() call from irq
       context
     - [arm64,armhf] mmc: mmci: stm32: fix max busy timeout calculation
     - [arm64,armhf] mmc: bcm2835: fix deferred probing
     - [arm64,armhf] mmc: sunxi: fix deferred probing
     - bpf: ensure main program has an extable
     - wifi: iwlwifi: pcie: Handle SO-F device for PCI id 0x7AF0
     - io_uring/poll: serialize poll linked timer start with poll removal
     - nilfs2: prevent general protection fault in nilfs_clear_dirty_page()
     - [x86] mm: Avoid using set_pgd() outside of real PGD pages
     - memfd: check for non-NULL file_seals in memfd_create() syscall
     - [arm64] mmc: meson-gx: fix deferred probing
     - ieee802154: hwsim: Fix possible memory leaks
     - xfrm: Treat already-verified secpath entries as optional
     - xfrm: interface: rename xfrm_interface.c to xfrm_interface_core.c
     - xfrm: Ensure policies always checked on XFRM-I input path
     - [arm64] KVM: arm64: PMU: Restore the host's PMUSERENR_EL0
     - bpf: track immediate values written to stack by BPF_ST instruction
     - bpf: Fix verifier id tracking of scalars on spill
     - xfrm: fix inbound ipv4/udp/esp packets to UDPv6 dualstack sockets
     - bpf: Fix a bpf_jit_dump issue for x86_64 with sysctl bpf_jit_enable.
     - xfrm: Linearize the skb after offloading if needed.
     - net/mlx5: DR, Fix wrong action data allocation in decap action
     - sfc: use budget for TX completions
     - [armel,armhf] mmc: mvsdio: fix deferred probing
     - [armhf] mmc: omap: fix deferred probing
     - [armhf] mmc: omap_hsmmc: fix deferred probing
     - mmc: sdhci-acpi: fix deferred probing
     - ipvs: align inner_mac_header for encapsulation
     - be2net: Extend xmit workaround to BE3 chip
     - netfilter: nf_tables: fix chain binding transaction logic
     - netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound
       set/chain
     - netfilter: nf_tables: drop map element references from preparation phase
     - netfilter: nft_set_pipapo: .walk does not deal with generations
     - netfilter: nf_tables: disallow element updates of bound anonymous sets
     - netfilter: nf_tables: reject unbound anonymous set before commit phase
     - netfilter: nf_tables: reject unbound chain set before commit phase
     - netfilter: nf_tables: disallow updates of anonymous sets
     - netfilter: nfnetlink_osf: fix module autoload
     - Revert "net: phy: dp83867: perform soft reset and retain established link"
     - bpf/btf: Accept function names that contain dots
     - bpf: Force kprobe multi expected_attach_type for kprobe_multi link
     - io_uring/net: use the correct msghdr union member in io_sendmsg_copy_hdr
     - sch_netem: acquire qdisc lock in netem_change()
     - revert "net: align SO_RCVMARK required privileges with SO_MARK"
     - [arm64] dts: rockchip: fix nEXTRST on SOQuartz
     - gpiolib: Fix GPIO chip IRQ initialization restriction
     - gpiolib: Fix irq_domain resource tracking for
       gpiochip_irqchip_add_domain()
     - scsi: target: iscsi: Prevent login threads from racing between each other
     - HID: wacom: Add error check to wacom_parse_and_register()
     - smb3: missing null check in SMB2_change_notify
     - media: cec: core: disable adapter in cec_devnode_unregister
     - media: cec: core: don't set last_initiator if tx in progress
     - nfcsim.c: Fix error checking for debugfs_create_dir
     - btrfs: fix an uninitialized variable warning in btrfs_log_inode
     - [i386] usb: gadget: udc: fix NULL dereference in remove()
     - nvme: double KA polling frequency to avoid KATO with TBKAS on
     - nvme: check IO start time when deciding to defer KA
     - nvme: improve handling of long keep alives
     - [x86] Input: soc_button_array - add invalid acpi_index DMI quirk handling
     - [s390x] cio: unregister device when the only path is gone
     - [arm*] ASoC: simple-card: Add missing of_node_put() in case of error
     - soundwire: dmi-quirks: add new mapping for HP Spectre x360
     - soundwire: qcom: add proper error paths in qcom_swrm_startup()
     - [x86] ASoC: nau8824: Add quirk to active-high jack-detect
     - [x86] ASoC: amd: yc: Add Thinkpad Neo14 to quirks list for acp6x
     - gfs2: Don't get stuck writing page onto itself under direct I/O
     - [arm64] ASoC: fsl_sai: Enable BCI bit if SAI works on synchronous mode
       with BYP asserted
     - ALSA: hda/realtek: Add "Intel Reference board" and "NUC 13" SSID in the
       ALC256
     - i2c: mchp-pci1xxxx: Avoid cast to incompatible function type
     - null_blk: Fix: memory release when memory_backed=1
     - drm/radeon: fix race condition UAF in radeon_gem_set_domain_ioctl
     - vhost_net: revert upend_idx only on retriable error
     - [arm64] KVM: arm64: Restore GICv2-on-GICv3 functionality
     - [x86] apic: Fix kernel panic when booting with intremap=off and
       x2apic_phys
     - [arm64] i2c: imx-lpi2c: fix type char overflow issue when calculating the
       clock cycle
     - smb: move client and server files to common directory fs/smb
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.37
     - mm/mmap: Fix error path in do_vmi_align_munmap()
     - mm/mmap: Fix error return in do_vmi_align_munmap()
     - mptcp: ensure listener is unhashed before updating the sk status
     - mm, hwpoison: try to recover from copy-on write faults
     - mm, hwpoison: when copy-on-write hits poison, take page offline
     - [x86] microcode/AMD: Load late on both threads too
     - [x86] smp: Make stop_other_cpus() more robust
     - [x86] smp: Dont access non-existing CPUID leaf
     - [x86] smp: Remove pointless wmb()s from native_stop_other_cpus()
     - [x86] smp: Use dedicated cache-line for mwait_play_dead()
     - [x86] smp: Cure kexec() vs. mwait_play_dead() breakage
     - can: isotp: isotp_sendmsg(): fix return error fix on TX path
     - maple_tree: fix potential out-of-bounds access in mas_wr_end_piv()
     - mm: introduce new 'lock_mm_and_find_vma()' page fault helper
     - mm: make the page fault mmap locking killable
     - [arm64] mm: Convert to using lock_mm_and_find_vma()
     - [powerpc*] mm: Convert to using lock_mm_and_find_vma()
     - [mips*] mm: Convert to using lock_mm_and_find_vma()
     - [armhf] mm: Convert to using lock_mm_and_find_vma()
     - mm/fault: convert remaining simple cases to lock_mm_and_find_vma()
     - [powerpc*] mm: convert coprocessor fault to lock_mm_and_find_vma()
     - mm: make find_extend_vma() fail if write lock not held
     - execve: expand new process stack manually ahead of time
     - mm: always expand the stack with the mmap write lock held
     - fbdev: fix potential OOB read in fast_imageblit()
     - HID: hidraw: fix data race on device refcount
     - HID: wacom: Use ktime_t rather than int when dealing with timestamps
     - HID: logitech-hidpp: add HIDPP_QUIRK_DELAYED_INIT for the T651.
       (Closes: #1038271)
 .
   [ Salvatore Bonaccorso ]
   * d/salsa-ci.yml: Update for bookworm: Set RELEASE to bookworm
   * d/rules.real: Fix typo in setup_image target.
   * [amd64,arm64] drivers/virtio: Enable VIRTIO_MEM as module (Closes: #1038665)
   * Bump ABI to 10
   * [rt] Update to 6.1.33-rt11
   * Revert "drm/amd/display: edp do not add non-edid timings"
 .
   [ Cyril Brulebois ]
   * udeb: Add r8188eu to nic-wireless-modules (Closes: #1035824)
 .
   [ Ben Hutchings ]
   * Add pkg.linux.mintools profile for building minimal userland tools
   * d/b/test-patches: Build linux-{kbuild,bootwrapper} packages
     (Closes: #871216, #1035359)

mailman3 (3.3.8-2~deb12u1) bookworm; urgency=medium
 .
   * Bookworm-pu of 4 bug fixes

marco (1.26.1-3+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0004_show-correct-window-title-when-owned-by-superuser.patch. Fix
       window titles sometimes shown incorrectly when owned as root. This
       affects mostly KDE apps if they are run on MATE. (Closes: #1040752).

mate-control-center (1.26.0-2+deb12u1) bookworm; urgency=medium
 .
   [ Martin Wimpress ]
   * debian/patches:
     + Add 2002-remove_obsolete_lock_button.patch (LP: #1955339)
 .
   [ Mike Gabriel ]
   * debian/patches:
     + Add various memleak fix patches (0007, 0008, 0009, 0010, 0011, 0013, 0014,
     + 0016 and 0017). Cherry-picked from 1.26.1 upstream release. (Closes:
       #1040019).

mate-power-manager (1.26.0-2+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0002_gpm-statistics-fix-memory-leak.patch (gpm-prefs: fix memory leak)
       and 0003_gpm-prefs-fix-memory-leak.patch (gpm-statistics: fix memory
       leak). Cherry-picked and simplified from v1.26.1. (Closes: #1038444).
     + Document simplification in patch 0002_gpm-statistics-fix-memory-
       leak.patch.
     + Trivial rebase of 0001_add-gaming-input-devices.patch.

mate-session-manager (1.26.0-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add 0007_Fix-memory-leaks-284.patch and 0008_mate-session-fix-memory-
       leak.patch. Fix various memory leaks. (Closes: #1038638).
     + Cherry-pick 0009_main-fix-double-free-on-gl_renderer.patch from upstream's
       1.26 branch. Regression fix for 0008_mate-session-fix-memory-leak.patch.
   * debian/default-settings/X11/Xsession.d/99mate-environment:
     + Allow clutter backends other than x11 (while preferring x11). (Closes:
       #954783).

mediawiki (1:1.39.4-1~deb12u1) bookworm-security; urgency=medium
 .
   [ Taavi Väänänen ]
   * New upstream version 1.39.4, fixing CVE-2023-29141, CVE-2023-36674
     and CVE-2023-36675.
     * The bundled guzzlehttp/guzzle library was updated to 2.4.5 to fix
       CVE-2023-29197.
   * Update config for the bookworm branch.
 .
   [ Kunal Mehta ]
   * Set Breaks/Replaces for mediawiki-extensions-math (Closes: #1039075)

minidlna (1.3.0+dfsg-2.2+deb12u1) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * upnphttp: Fix chunk length parsing (CVE-2023-33476) (Closes: #1037052)

multipath-tools (0.9.4-3+deb12u1) bookworm; urgency=medium
 .
   * [cfa5138] Re-add dm-multipath module loading to ExecStartPre
     (Closes: #1037292)
   * [1289691] Fail package build if udev rules are missing
   * [2e45796] Install udev mulitpath.rules again.
     Thanks to Joshua Huber <jhuber@blockbridge.com> (Closes: #1037539)
   * [6b05510] debian/gbp.conf: update branch for bookworm

mutter (43.6-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm
 .
 mutter (43.6-1) unstable; urgency=medium
 .
   * New upstream stable release 43.5
     - Always update surfaces belonging to a window that is being recorded
       or included in a screencast, even if the window is not visible
       on a local display (mutter#2538, mutter!2789)
     - Export previously-private meta_window_has_pointer(), needed by
       screenshot UI fixes in gnome-shell 43.5 (mutter!2928)
       + d/libmutter-11-0.symbols: Update to add that symbol
     - All other changes were already present in 43.4-2
   * New upstream stable release 43.6
     - Fix a resource leak when a compositor view is destroyed (mutter!2991)
     - Fix a crash when headless gdm greeter via gnome-remote-desktop
       attempts to blank the screen (mutter#2841)
   * d/patches: Drop patches that were applied upstream
   * d/p/wayland-outputs-Fix-potential-crash-when-output-has-no-mo.patch:
     Backport patch from 44~beta to fix a crash during suspend/resume on
     some systems (mutter#2570, Closes: #1036268)

network-manager-strongswan (1.6.0-1+deb12u1) bookworm; urgency=medium
 .
   [ Harald Dunkel ]
   * Build editor component with GTK 4, too (fix provided by Moritz Schlarb)
     (Closes: #1020495, #1036607)

nfdump (1.7.1-2+deb12u1) bookworm; urgency=medium
 .
   * [8554dec3] Fix init script to return success when process has started.
     Thanks to Yury Shevchuk
   * [c9d7e789] Fix segfault in getopt parsing for -R (Closes: #1038644)
   * [eb140f97] d/gbp.conf: set debian branch

nftables (1.0.6-2+deb12u1) bookworm; urgency=medium
 .
   * [7edf72e] d/patches: add 0001-debian-bug-1038724.patch (Closes: #1038724)
     This patch fixes a Debian 11 Bullseye -> Debian 12 Bookworm regression in
     set listing format, and makes the output consistent and predictable,
     bringing back the Debian Bullseye behavior.

node-openpgp-seek-bzip (1.0.5-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Fix seek-bzip install (Closes: #1040584)

node-tough-cookie (4.0.0-2+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Fix prototype pollution (Closes: CVE-2023-26136)

node-undici (5.15.0+dfsg1+~cs20.10.9.3-1+deb12u1) bookworm; urgency=medium
 .
   * Fix security issues (Closes: #1031418):
     - Protect "Host" HTTP header from CLRF injection (Closes: CVE-2023-23936)
     - Fix potential ReDoS on Headers.set and Headers.append
       (Closes: CVE-2023-24807)
   * Increase httpbin.org test timeout

node-webpack (5.75.0+dfsg+~cs17.16.14-1+deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Avoid cross-realm objects (Closes: #1032904, CVE-2023-28154)

nvidia-cuda-toolkit (11.8.0-5~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-cuda-toolkit (11.8.0-5) unstable; urgency=medium
 .
   * Fix nvidia-fs kernel module build for Linux 6.4.
   * Use a snapshot of openjdk-8-jre (8u372-ga-1).

nvidia-graphics-drivers (525.125.06-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.125.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.125.06 (2023-05-09).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039678)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     - Fixed a bug which prevented running a Wayland compositor in headless
       mode on GPUs without display hardware.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (525.116.04-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.116.04 (2023-05-09).
   * New upstream production branch release 525.116.03 (2023-04-25).
     - Fixed a regression in Luxmark performance between 525.89.02 and
       525.105.17.
     - Fixed a bug that could cause an unexpected
       VK_ERROR_NATIVE_WINDOW_IN_USE_KHR error in certain circumstances when
       recreating Vulkan surfaces.
     - Fixed a regression that caused brightness control to not vary
       smoothly across the range of values.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (525.105.17-2) unstable; urgency=medium
 .
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.
nvidia-graphics-drivers (525.116.04-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.116.04 (2023-05-09).
   * New upstream production branch release 525.116.03 (2023-04-25).
     - Fixed a regression in Luxmark performance between 525.89.02 and
       525.105.17.
     - Fixed a bug that could cause an unexpected
       VK_ERROR_NATIVE_WINDOW_IN_USE_KHR error in certain circumstances when
       recreating Vulkan surfaces.
     - Fixed a regression that caused brightness control to not vary
       smoothly across the range of values.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
nvidia-graphics-drivers (525.105.17-2) unstable; urgency=medium
 .
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.

nvidia-graphics-drivers-tesla (525.125.06-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla (525.125.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.125.06 (2023-05-09).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039685)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     - Fixed a bug which prevented running a Wayland compositor in headless
       mode on GPUs without display hardware.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (525.125.06-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers (525.125.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.125.06 (2023-05-09).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039678)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     - Fixed a bug which prevented running a Wayland compositor in headless
       mode on GPUs without display hardware.
 .
   [ Andreas Beckmann ]
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers (525.116.04-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.116.04 (2023-05-09).
   * New upstream production branch release 525.116.03 (2023-04-25).
     - Fixed a regression in Luxmark performance between 525.89.02 and
       525.105.17.
     - Fixed a bug that could cause an unexpected
       VK_ERROR_NATIVE_WINDOW_IN_USE_KHR error in certain circumstances when
       recreating Vulkan surfaces.
     - Fixed a regression that caused brightness control to not vary
       smoothly across the range of values.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
 .
 nvidia-graphics-drivers-tesla (525.105.17-2) unstable; urgency=medium
 .
   * Rebuild as Tesla driver.
 .
 nvidia-graphics-drivers (525.105.17-2) unstable; urgency=medium
 .
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.
nvidia-graphics-drivers-tesla (525.105.17-2) unstable; urgency=medium
 .
   * Rebuild as Tesla driver.
 .
 nvidia-graphics-drivers (525.105.17-2) unstable; urgency=medium
 .
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.

nvidia-graphics-drivers-tesla-470 (470.199.02-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla-470 (470.199.02-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.199.02 (2023-06-26).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039684)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.199.02-1) bullseye; urgency=medium
 .
   * New upstream production branch release 470.199.02 (2023-06-26).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039678)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Upload to bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.182.03-2) unstable; urgency=medium
 .
   * Backport vm_area_struct_has_const_vm_flags changes from 470.199.02 to fix
     kernel module build for Linux 6.3.  (Closes: #1038004)
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.
 .
 nvidia-graphics-drivers-tesla-470 (470.182.03-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
nvidia-graphics-drivers-tesla-470 (470.199.02-1~deb11u1) bullseye; urgency=medium
 .
   * Rebuild for bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.199.02-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-graphics-drivers-tesla-470 (470.199.02-1) unstable; urgency=medium
 .
   * New upstream production branch release 470.199.02 (2023-06-26).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039684)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
 .
 nvidia-graphics-drivers (470.199.02-1) bullseye; urgency=medium
 .
   * New upstream production branch release 470.199.02 (2023-06-26).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039678)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Upload to bullseye.
 .
 nvidia-graphics-drivers-tesla-470 (470.182.03-2) unstable; urgency=medium
 .
   * Backport vm_area_struct_has_const_vm_flags changes from 470.199.02 to fix
     kernel module build for Linux 6.3.  (Closes: #1038004)
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.
nvidia-graphics-drivers-tesla-470 (470.182.03-2) unstable; urgency=medium
 .
   * Backport vm_area_struct_has_const_vm_flags changes from 525.105.17 to fix
     kernel module build for Linux 6.3.  (Closes: #1038004)
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.

nvidia-modprobe (535.54.03-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-modprobe (535.54.03-1) unstable; urgency=medium
 .
   * New upstream release.

nvidia-open-gpu-kernel-modules (525.125.06-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-open-gpu-kernel-modules (525.125.06-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.125.06 (2023-06-26).
     * Fixed CVE-2023-25515, CVE-2023-25516.  (Closes: #1039686)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5468
 .
 nvidia-open-gpu-kernel-modules (525.116.04-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.116.04 (2023-05-09).
   * New upstream production branch release 525.116.03 (2023-04-25).
   * Refresh patches.
 .
 nvidia-open-gpu-kernel-modules (525.105.17-2) unstable; urgency=medium
 .
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.
nvidia-open-gpu-kernel-modules (525.116.04-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.116.04 (2023-05-09).
   * New upstream production branch release 525.116.03 (2023-04-25).
   * Refresh patches.
nvidia-open-gpu-kernel-modules (525.105.17-2) unstable; urgency=medium
 .
   * Backport drm_driver_has_dumb_destroy changes from 525.116.03 to fix kernel
     module build for Linux 6.4.

nvidia-support (20220217+3~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-support (20220217+3) unstable; urgency=medium
 .
   * nvidia-installer-cleanup: Add Breaks against obsolete nvidia-*-dkms
     packages from bullseye that are incompatible with the bookworm kernel.

onionshare (2.6-5~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.

openjdk-17 (17.0.7+7-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm
openjdk-17 (17.0.7+7-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye

openvpn (2.6.3-1+deb12u1) bookworm; urgency=medium
 .
   * Cherry-pick two bugfix commits from upstream
     - Memory leak in dco_get_peer_stats_multi for Linux
     - dangling pointer passed to pkcs11-helper
   * d/gbp.conf: set branch to bookworm

pacemaker (2.1.5-1+deb12u1) bookworm; urgency=medium
 .
   * [0c22be8] New patches fixing migration regression.
     Backport of https://github.com/ClusterLabs/pacemaker/pull/3020/ to
     Pacemaker 2.1.5 (without the CTS changes, which we don't ship):
     5754a2af9 Refactor: scheduler: improve xpath efficiency when unpacking
     3f6f524f1 Low: scheduler: unknown_on_node() should ignore pending actions
     ad9fd9548 Fix: scheduler: handle cleaned migrate_from history correctly
     The starting refactor is required by the other two patches, but the
     third patch still needed backporting.
     Thanks to Ken Gaillot (Closes: #1040165)

php8.2 (8.2.7-1~deb12u1) bookworm-security; urgency=high
 .
   * No change upload to bookworm-security

postfix (3.7.6-0+deb12u2) bookworm; urgency=medium
 .
   * Correct regression that caused postfix set-permissions to fail (Closes:
     #1040329)
     - Restore and update debian/patches/05_debian_manpage_differences.diff
     - Restore and update debian/patches/05_debian_readme_differences.diff
   * Update autopkgtest to test postfix set-permissions
postfix (3.7.6-0+deb12u1) bookworm; urgency=medium
 .
   [Scott Kitterman]
 .
   * Refresh patches
 .
   [Wietse Venema]
 .
   * 3.7.6
     - Bugfix (defect introduced: Postfix 1.0): the command "postconf
       .. name=v1 .. name=v2 .." (multiple instances of the same
       parameter name) created multiple name=value entries with
       the same parameter name. It now logs a warning and skips
       the earlier update. Found during code maintenance. File:
       postconf/postconf_edit.c
 .
     - Bugfix (defect introduced: Postfix 3.3): the command "postconf
       -M name1/type1='name2 type2 ...'" died with a segmentation
       violation when the request matched multiple master.cf
       entries. The master.cf file was not damaged. Problem reported
       by SATOH Fumiyasu. File: postconf/postconf_master.c.
 .
     - Bugfix (defect introduced: Postfix 2.11): the command
       "postconf -M name1/type1='name2 type2 ...'" could add a
       service definition to master.cf that conflicted with an
       already existing service definition. It now replaces all
       existing service definitions that match the service pattern
       'name1/type1' or the service name and type in 'name2 type2
       ...' with a single service definition 'name2 type2 ...'.
       Problem reported by SATOH Fumiyasu. File: postconf/postconf_edit.c.
 .
     - Bitrot: preliminary support for OpenSSL configuration files,
       primarily OpenSSL 1.1.1b and later. This introduces new
       parameters "tls_config_file" and "tls_config_name", which
       can be used to limit collateral damage from OS distributions
       that crank up security to 11, increasing the number of
       plaintext email deliveries. Details are in the postconf(5)
       manpage under "tls_config_file" and "tls_config_name".
       Viktor Dukhovni. Files: mantools/postlink, proto/postconf.proto,
       global/mail_params.h, posttls-finger/posttls-finger.c,
       smtp/smtp.c, smtp/smtp_proto.c, tls/tls_client.c, tls/tls.h,
       tls/tls_misc.c, tls/tls_proxy_client_print.c,
       tls/tls_proxy_client_scan.c, tls/tls_proxy.h, tls/tls_server.c,
       tlsproxy/tlsproxy.c.
 .
     - Cleanup: use TLS_CLIENT_PARAMS to pass the OpensSSL 'init'
       configurations. This information is independent from the
       client or server TLS context, and therefore does not belong
       in tls_*_init() or tls_*_start() calls. The tlsproxy(8)
       server uses TLS_CLIENT_PARAMS to report differences between
       its own global TLS settings, and those from its clients.
       Files: posttls-finger/posttls-finger.c, smtp/smtp.c,
       smtp/smtp_proto.c, tls/tls.h, tls/tls_proxy_client_misc.c,
       tls/tls_proxy_client_print.c, tls/tls_proxy_client_scan.c,
       tls/tls_proxy.h, tlsproxy/tlsproxy.c.
 .
     - Cleanup: reverted cosmetic-only changes to minimize the
       patch footprint for OpenSSL INI file support; updated daemon
       manpages with the new tls_config_file and tls_config_name
       configuration parameters. Files: smtp/smtp.c, smtpd/smtpd.c,
       tls/tls_client.c, tls/tls.h, tls/tls_server.c, tlsproxy/tlsproxy.c,
 .
     - Cleanup: made OpenSSL 'default' INI file support error
       handling consistent with OpenSSL default behavior. Viktor
       Dukhovni. Files: proto/postconf.proto, tls/tls_misc.c.
 .
     - Backwards compatibility for stable releases that originally
       had no OpenSSL INI support. Skip the new OpenSSL INI support
       code, unless the Postfix configuration actually specifies
       non-default tls_config_xxx settings. File: tls/tls_misc.c.
 .
     - Cleanup: added a multiple initialization guard in the
       tls_library_init() function, and made an initialization
       error sticky. File: tls/tls_misc.c.
 .
     - Security: new parameter smtpd_forbid_unauth_pipelining
       (default: no) to disconnect remote SMTP clients that violate
       RFC 2920 (or 5321) command pipelining constraints. Files:
       global/mail_params.h, smtpd/smtpd.c, proto/postconf.proto.

proftpd-dfsg (1.3.8+dfsg-4+deb12u1) bookworm; urgency=medium
 .
   * Now do not enable proftpd.socket to avoid conflicts at boot time.
     (Closes: #1038416)
   * Introduced a new prerm script to manage stop of service/socket before
     remove.
   * Added an entry to NEWS file to explain the change in unit files
     and how to deal with changes.
   * Revised README.Debian to reflect changes in unit file management.

qemu (1:7.2+dfsg-7+deb12u1) bookworm; urgency=medium
 .
   * d/rules: add the forgotten --enable-libusb for the xen build.
     This makes usb devices available for xen hvm domUs again,
     as it has always been before. Closes: #1037341
   * update to upstream 7.2.3 stable/bugfix release, v7.2.3.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.3 :
    - vnc: avoid underflow when accessing user-provided address
    - target/i386: Change wrong XFRM value in SGX CPUID leaf
      (was in debian already)
    - acpi: pcihp: allow repeating hot-unplug requests
    - qemu-options: finesse the recommendations around -blockdev
    - docs/about/deprecated.rst: Add "since 7.1" tag to dtb-kaslr-seed
      deprecation
    - target/arm: Initialize debug capabilities only once
    - hw/net/msf2-emac: Don't modify descriptor in-place in emac_store_desc()
    - hw/arm/boot: Make write_bootloader() public as arm_write_bootloader()
    - hw/arm/aspeed: Use arm_write_bootloader() to write the bootloader
    - hw/arm/raspi: Use arm_write_bootloader() to write boot code
    - hw/intc/allwinner-a10-pic: Don't use set_bit()/clear_bit()
    - target/arm: Define and use new load_cpu_field_low32()
    - hw/sd/allwinner-sdhost: Correctly byteswap descriptor fields
    - hw/net/allwinner-sun8i-emac: Correctly byteswap descriptor fields
    - softfloat: Fix the incorrect computation in float32_exp2
    - meson: leave unnecessary modules out of the build
    - block: Fix use after free in blockdev_mark_auto_del()
    - target/riscv: Fix itrigger when icount is used
    - accel/tcg: Fix atomic_mmu_lookup for reads
    - ui: Fix pixel colour channel order for PNG screenshots
    - async: Suppress GCC13 false positive in aio_bh_poll()
    - tcg: ppc64: Fix mask generation for vextractdm
    - hw/virtio/vhost-user: avoid using uninitialized errp
    - virtio: fix reachable assertion due to stale value of cached region size
    - block/monitor: Fix crash when executing HMP commit
    - target/s390x: Fix EXECUTE of relative branches
    - s390x/tcg: Fix LDER instruction format
    - 9pfs/xen: Fix segfault on shutdown
    - xen/pt: reserve PCI slot 2 for Intel igd-passthru
    - Revert "vhost-user: Monitor slave channel in vhost_user_read()"
    - Revert "vhost-user: Introduce nested event loop in vhost_user_read()"
    - target/ppc: Fix helper_pminsn() prototype
    - tests/docker: bump the xtensa base to debian:11-slim
    - linux-user: Fix mips fp64 executables loading
    - linux-user: fix getgroups/setgroups allocations
      (was in debian already)
    - migration: Handle block device inactivation failures better
    - migration: Minor control flow simplification
    - migration: Attempt disk reactivation in more failure scenarios
    - target/arm: Fix vd == vm overlap in sve_ldff1_z
    - scsi-generic: fix buffer overflow on block limits inquiry
    - target/i386: fix operand size for VCOMI/VUCOMI instructions
    - target/i386: fix avx2 instructions vzeroall and vpermdq
    - vhost: fix possible wrap in SVQ descriptor ring
    - virtio-net: not enable vq reset feature unconditionally
    - virtio-crypto: fix NULL pointer dereference in virtio_crypto_free_request
    - e1000: Count CRC in Tx statistics
    - e1000e: Fix tx/rx counters
    - rtl8139: fix large_send_mss divide-by-zero
      (was in debian already)
    - util/vfio-helpers: Use g_file_read_link()
    - usb/ohci: Set pad to 0 after frame update
    - hw/scsi/lsi53c895a: Fix reentrancy issues in the LSI controller
      (Closes: #1029155, CVE-2023-0330)
    - machine: do not crash if default RAM backend name has been stolen
    - Update version for 7.2.3 release
   * update to upstream 7.2.4 stable/bugfix release, v7.2.4.diff,
     https://gitlab.com/qemu-project/qemu/-/commits/v7.2.4 :
    - gitlab-ci: Avoid to re-run "configure" in the device-crash-test jobs
    - scripts/device-crash-test: Add a parameter to run with TCG only
    - hw/ppc/prep: Fix wiring of PIC -> CPU interrupt
    - ui/gtk: fix passing y0_top parameter to scanout
    - ui/gtk: use widget size for cursor motion event
    - ui/gtk-egl: fix scaling for cursor position in scanout mode
    - ui/sdl2: fix surface_gl_update_texture: Assertion 'gls' failed
    - ui/sdl2: Grab Alt+Tab also in fullscreen mode
    - ui/sdl2: Grab Alt+F4 also under Windows
    - ui/sdl2: disable SDL_HINT_GRAB_KEYBOARD on Windows
    - hw/dma/xilinx_axidma: Check DMASR.HALTED to prevent infinite loop.
    - hw/arm/xlnx-zynqmp: fix unsigned error when checking the RPUs number
    - target/arm: Explicitly select short-format FSR for M-profile
    - target/s390x: Fix LCBB overwriting the top 32 bits
    - tests/tcg/s390x: Test LCBB
    - target/s390x: Fix LOCFHR taking the wrong half of R2
    - tests/tcg/s390x: Test LOCFHR
    - linux-user/s390x: Fix single-stepping SVC
    - tests/tcg/s390x: Test single-stepping SVC
    - s390x/tcg: Fix CPU address returned by STIDP
    - docs: fix multi-process QEMU documentation
    - qga: Fix suspend on Linux guests without systemd
    - 9pfs: prevent opening special files (CVE-2023-2861)
    - hw/remote: Fix vfu_cfg trace offset format
    - vnc: move assert in vnc_worker_thread_loop
    - target/ppc: Fix lqarx to set cpu_reserve
    - target/ppc: Fix nested-hv HEAI delivery
    - target/ppc: Fix PMU hflags calculation
    - hw/riscv: qemu crash when NUMA nodes exceed available CPUs
    - aspeed/hace: Initialize g_autofree pointer
    - target/arm: Fix return value from LDSMIN/LDSMAX 8/16 bit atomics
    - target/arm: Return correct result for LDG when ATA=0
    - hw/intc/allwinner-a10-pic: Handle IRQ levels other than 0 or 1
    - hw/timer/nrf51_timer: Don't lose time when timer is queried in tight loop
    - host-utils: Avoid using __builtin_subcll on buggy versions of Apple Clang
    - pc-bios/keymaps: Use the official xkb name for Arabic layout,
      not the legacy synonym
    - target/hppa: Fix OS reboot issues
    - target/hppa: Provide qemu version via fw_cfg to firmware
    - target/hppa: New SeaBIOS-hppa version 7
      (minus the binary pc-bios/hppa-firmware.img changes)
    - target/hppa: Update to SeaBIOS-hppa version 8
      (minus the binary pc-bios/hppa-firmware.img changes)
    - vhost: release memory_listener object in error path
    - vdpa: fix not using CVQ buffer in case of error
    - vhost-vdpa: do not cleanup the vdpa/vhost-net structures if peer nic
      is present
    - virtio-gpu: Make non-gl display updates work again when blob=true
    - icount: don't adjust virtual time backwards after warp
    - vdpa: mask _F_CTRL_GUEST_OFFLOADS for vhost vdpa devices
    - target/ppc: Fix decrementer time underflow and infinite timer loop
    - vfio/pci: Fix a segfault in vfio_realize
    - vfio/pci: Call vfio_prepare_kvm_msi_virq_batch() in MSI retry path
    - ui/gtk: set the area of the scanout texture correctly
    - Update version for 7.2.4 release
   * remove patches included in v7.2.4:
    - linux-user-fix-getgroups-setgroups-allocations.patch
    - rtl8139-fix-large_send_mss-divide-by-zero.patch
    - target_i386-Change-wrong-XFRM-value.patch

request-tracker5 (5.0.3+dfsg-3~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.

rime-cantonese (0.0~git20230209.e0295fa-2~deb12u1) bookworm; urgency=medium
 .
   * Upload fix to Debian Bookworm.

rime-luna-pinyin (0.0~git20230204.79aeae2-3~deb12u1) bookworm; urgency=medium
 .
   * Upload to Debian Bookworm.

samba (2:4.17.9+dfsg-0+deb12u3) bookworm; urgency=medium
 .
   * +fix-unsupported-netr_LogonGetCapabilities-l2.patch
     Fix windows logon/trust issues with 2023-07 windows updates:
     https://bugzilla.samba.org/show_bug.cgi?id=15418
samba (2:4.17.9+dfsg-0+deb12u3~bpo11+1) bullseye-backports; urgency=medium
 .
   * Rebuild for bullseye-backports.
samba (2:4.17.9+dfsg-0+deb12u2) bookworm; urgency=medium
 .
   * link with -latomic explicitly on a few architectures where gcc misses it
     (notable armel & mipsel), to fix FTBFS there, - the same as on sid.
     https://gcc.gnu.org/bugzilla/show_bug.cgi?id=81358
samba (2:4.17.9+dfsg-0+deb12u1) bookworm-proposed-updates; urgency=medium
 .
   * d/copyright: filter out autogenerated manpages from the upstream source
     when dfsg-repacking.  The manpages are generated during build if not up
     to date, and changes significantly in every upstream release since the
     version number and the release date are included in every manpage.
   * new upstream stable/bugfix release, with the following fixes:
    * https://bugzilla.samba.org/show_bug.cgi?id=14030
      named crashes on DLZ zone update
      (this was in debian in previous upload)
    * https://bugzilla.samba.org/show_bug.cgi?id=15275
      smbd_scavenger crashes when service smbd is stopped
    * https://bugzilla.samba.org/show_bug.cgi?id=15361
      winbind recurses into itself via rpcd_lsad
    * https://bugzilla.samba.org/show_bug.cgi?id=15374
      aes256 smb3 encryption algorithms are not allowed in smb3_sid_parse()
    * https://bugzilla.samba.org/show_bug.cgi?id=15378
      vfs_fruit might cause a failing open for delete
    * https://bugzilla.samba.org/show_bug.cgi?id=15382
      cli_list loops 100% CPU against pre-lanman2 servers
    * https://bugzilla.samba.org/show_bug.cgi?id=15391
      smbclient leaks fds with showacls
    * https://bugzilla.samba.org/show_bug.cgi?id=15403
      smbget memory leak if failed to download files recursively
    * https://bugzilla.samba.org/show_bug.cgi?id=15404
      Backport --pidl-developer fixes
    * https://bugzilla.samba.org/show_bug.cgi?id=15413
      winbindd gets stuck on NT_STATUS_RPC_SEC_PKG_ERROR
   * remove dnsserver-rename-dns_name_equal.patch
     (included upstream)
   * heimdal-to-support-KEYRING-ccache.patch: enable KEYRING in heimdal
     (ability to store kerberos tickets in kernel keyring) (Closes: #1023609)
   * d/control: build-depend on libkeyutils-dev
     (it is pulled by some other dep, but better to be safe)

schleuder-cli (0.1.0-4+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     - Pull in upstream patch to fix escaping values in Ruby 3.
       (Closes: #1040257)

smarty4 (4.3.0-1+deb12u1) bookworm; urgency=medium
 .
   * debian/patches:
     + Add CVE-2023-28447.patch. Prohibit execution of arbitrary JavaScript code
       in the context of the user's browser session. (Closes: #1033965,
       CVE-2023-28447).

spip (4.1.9+dfsg-1+deb12u2) bookworm; urgency=medium
 .
   * Backport security fix from 4.1.11
     - use an auth_desensibiliser_session() function to centralize extended
       authentification data filtering.
spip (4.1.9+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   [ David Prévot ]
   * Add CVE to previous changelog entry
   * Update documented branch
   * Backport security fixes from 4.1.10
     - Limit recursion depth in protege_champ() function
     - Avoid unserialize use in security screen
     - Properly block hidden files in provided htaccess
     - Update security screen to 1.5.3
 .
   [ RealET ]
   * mutualisation: PHP 8.1 compatibility fixes #2

sra-sdk (3.0.3+dfsg-6~deb12u1) bookworm; urgency=medium
 .
   * Reupload to bookworm (stable).
 .
 sra-sdk (3.0.3+dfsg-6) unstable; urgency=high
 .
   * debian/rules: Expand $(DEB_HOST_MULTIARCH) in libngs-java.links.in.
     (Closes: #1039621.)

sudo (1.9.13p3-1+deb12u1) bookworm; urgency=medium
 .
   * add upstream patch to fix event log format.
     Thanks to Kimmo Suominen (Closes: #1039557)

systemd (252.12-1~deb12u1) bookworm; urgency=medium
 .
   * New upstream version 252.12
   * Refresh patches for v252.12
systemd (252.11-1) unstable; urgency=medium
 .
   * New upstream version 252.11
   * Refresh patches
systemd (252.11-1~deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm.
 .
 systemd (252.11-1) unstable; urgency=medium
 .
   * New upstream version 252.11
   * Refresh patches

tang (11-2+deb12u1) bookworm; urgency=medium
 .
   * Fix CVE-2023-1672. Closes: #1038119
     - Cherry-pick "Fix race condition when creating/rotating keys"
     - Assert restrictive permissions on tang's key directory

texlive-bin (2022.20220321.62855-5.1+deb12u1) bookworm; urgency=medium
 .
   * Stop building *jit* binaries on i386 based arches to make TL installable
     on computers not supporting sse2 (Closes: #1035461).
   * Add patch for CVE-2023-32668: disable socket in luatex by default
     (Closes: #1036470).

thunderbird (1:102.13.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
     (Closes: #971790, #1006432)
thunderbird (1:102.13.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security
     (Closes: #971790, #1006432)
thunderbird (1:102.12.0-1) unstable; urgency=medium
 .
   * [a285966] New upstream version 102.12.0
     (Upstream has published a MFSA yet.)
   * [73c48d4] d/control: Add libotr5 to Depends
thunderbird (1:102.12.0-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security
thunderbird (1:102.12.0-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security

trafficserver (9.2.0+ds-2+deb12u1) bookworm-security; urgency=medium
 .
   * Fix version number (Closes: #1038860)

unixodbc (2.3.11-2+deb12u1) bookworm; urgency=medium
 .
   * unixodbc-common, odbcinst: Add Breaks+Replaces against odbcinst1debian1
     (Closes: #1037172).

usb.ids (2023.05.17-0+deb12u1) bookworm; urgency=medium
 .
   * Upload to bookworm.

vm (8.2.0b-8+deb12u1) bookworm; urgency=medium
 .
   * Avoid byte compilation to work around trouble with emacs 28
     Closes: #1039105.  [Report from and patch via Dirk Eddelbuettel
     (Fix cherry picked from e8779ea20768ad08 in 8.2.0b-9.).)

vte2.91 (0.70.6-1~deb12u1) bookworm; urgency=medium
 .
   * Team upload
   * Rebuild for bookworm (Closes: #1037919, LP: #2022019)
   * d/gbp.conf, d/control.in: Use debian/bookworm packaging branch
 .
 vte2.91 (0.70.6-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream release
     - Functionally equivalent to 0.70.5-2, but the fix for #1037919
       is incorporated upstream instead of as a patch
   * Add Debian and Ubuntu bug numbers to 0.70.5-2 changelog entry
   * Fix a typo in revised 0.70.5-1 changelog entry
   * d/gbp.conf, d/control.in: Use debian/trixie branch for packaging
 .
 vte2.91 (0.70.5-2) unstable; urgency=high
 .
   * Team upload
   * This version is functionally equivalent to 0.70.6 upstream, but 0.70.6
     tarballs are not yet available
   * d/p/emulation-Fix-infinite-loop-on-non-number-OSC-104-param.patch:
     Add patch from upstream to fix an infinite loop processing OSC 104.
     A malicious program accessed via ssh, telnet or similar protocols could
     use this as a denial of service.
     (Closes: #1037919, LP: #2022019; vte#2631 upstream)
   * Add more details of the bugs fixed in the previous changelog entry
 .
 vte2.91 (0.70.5-1) unstable; urgency=medium
 .
   * New upstream bugfix release 0.70.4
     - Fix an invalid memory access which can cause a terminal freeze
       or crash, for example when pasting emojis
       (vte#2606, vte#2620 upstream)
   * New upstream bugfix release 0.70.5
     - Fix seconds vs milliseconds confusion so that the cursor stops
       blinking as intended when a focused window becomes idle
       (vte#2622 upstream)
     - Produce correct coordinates when mouse wheel scrolling on the
       left edge of a terminal (vte#2621 upstream)
   * d/gbp.conf, d/watch: Branch for 0.70.x and bookworm
vte2.91 (0.70.5-2) unstable; urgency=high
 .
   * Team upload
   * This version is functionally equivalent to 0.70.6 upstream, but 0.70.6
     tarballs are not yet available
   * d/p/emulation-Fix-infinite-loop-on-non-number-OSC-104-param.patch:
     Add patch from upstream to fix an infinite loop processing OSC 104.
     A malicious program accessed via ssh, telnet or similar protocols could
     use this as a denial of service. (vte#2631 upstream)
   * Add more details of the bugs fixed in the previous changelog entry
vte2.91 (0.70.5-1) unstable; urgency=medium
 .
   * New upstream bugfix release

webkit2gtk (2.40.3-2~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
     - Fixes CVE-2023-32439.
webkit2gtk (2.40.3-2~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
   * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
     clang instead. Keep using gcc in other architectures because clang has
     problems in at least i386, arm64 and mipsel (see #1010329 and
     #1016811).
     - debian/rules: Tell CMake to use clang.
     - debian/control.in: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and
       USE_PREBUILT_DOCS=YES.
     - debian/control.in: Remove build dependency on ccache.
   * debian/rules:
     - Disable USE_AVI, USE_GBM and USE_GSTREAMER_TRANSCODER due to missing
       or additional build dependencies.
     - Set Build-Depends-Indep to jdupes when USE_PREBUILT_DOCS is set.
   * debian/control:
     - Don't require version 1.20.0 of libgstreamer-plugins-bad1.0-dev.
webkit2gtk (2.40.3-1) unstable; urgency=high
 .
   * New upstream release (Closes: #1036946).
   * debian/control.in:
     - Enable the bubblewrap sandbox in riscv64.
   * debian/copyright:
     - Update copyright information of all files.
   * debian/patches/fix-jsc-timestamp.patch:
     - Ensure reproducibility of __TIMESTAMP__ in JSCBytecodeCacheVersion.cpp.
webkit2gtk (2.40.2-1) unstable; urgency=high
 .
   * New upstream release.
   * debian/rules:
     - Pass -VNone to dh_makeshlibs for javascriptcore to keep the behavior
       of the debhelper compat level 11 and earlier.
webkit2gtk (2.40.2-1~deb12u1) bookworm-security; urgency=medium
 .
   * Rebuild for bookworm-security.
   * The WebKitGTK security advisory WSA-2023-0004 lists the following
     security fixes in the latest versions of WebKitGTK:
     - CVE-2023-28204 and CVE-2023-32373 (fixed in 2.40.2).
webkit2gtk (2.40.2-1~deb11u1) bullseye-security; urgency=medium
 .
   * Rebuild for bullseye-security.
   * gcc 10 segfaults when building webkit in amd64 (see #1008098) so use
     clang instead. Keep using gcc in other architectures because clang has
     problems in at least i386, arm64 and mipsel (see #1010329 and
     #1016811).
     - debian/rules: Tell CMake to use clang.
     - debian/control.in: Build depend on clang.
   * Build libsoup2 packages only.
     - debian/rules: Set ENABLE_SOUP3=NO, ENABLE_GTK4=NO and
       USE_PREBUILT_DOCS=YES.
     - debian/control.in: Remove build dependency on ccache.
   * debian/rules:
     - Disable USE_AVI, USE_GBM and USE_GSTREAMER_TRANSCODER due to missing
       or additional build dependencies.
   * debian/control:
     - Don't require version 1.20.0 of libgstreamer-plugins-bad1.0-dev.
   * debian/patches/g-spawn-check-wait-status.patch:
     - Fix build with older versions of GLib.

wireshark (4.0.6-1~deb12u1) bookworm-security; urgency=medium
 .
   * Upload to bookworm-security
 .
 wireshark (4.0.6-1) unstable; urgency=medium
 .
   * Upload to unstable
 .
 wireshark (4.0.6-1~exp1) experimental; urgency=medium
 .
   * New upstream version 4.0.6
     - security fixes:
       - Candump log file parser crash (CVE-2023-2855)
       - BLF file parser crash (CVE-2023-2857)
       - GDSDB dissector infinite loop
       - NetScaler file parser crash (CVE-2023-2858)
       - VMS TCPIPtrace file parser crash (CVE-2023-2856)
       - BLF file parser crash (CVE-2023-2854)
       - RTPS dissector crash (CVE-2023-0666)
       - IEEE C37.118 Synchrophasor dissector crash (CVE-2023-0668)
       - XRA dissector infinite loop
   * Fix mismatched Lintian overrides
 .
 wireshark (4.0.5-1~exp1) experimental; urgency=medium
 .
   [ Balint Reczey ]
   * New upstream version 4.0.4
     - security fixes:
       -  ISO 15765 and ISO 10681 dissector crash (CVE-2023-1161)
          (Closes: #1033756)
   * Drop 0001-tests-Get-tests-working-with-Python-3.11-except-with.patch
     integrated to the new upstream release.
   * New upstream version 4.0.5
     - security fixes (Closes: #1034721):
       - RPCoRDMA dissector crash (CVE-2023-1992)
       - LISP dissector large loop (CVE-2023-1993)
       - GQUIC dissector crash (CVE-2023-1994)
 .
   [ Remus-Gabriel Chelu ]
   * Adding Romanian debconf templates translation (Closes: #1033792)
wireshark (4.0.5-1~exp1) experimental; urgency=medium
 .
   [ Balint Reczey ]
   * New upstream version 4.0.4
     - security fixes:
       -  ISO 15765 and ISO 10681 dissector crash (CVE-2023-1161)
          (Closes: #1033756)
   * Drop 0001-tests-Get-tests-working-with-Python-3.11-except-with.patch
     integrated to the new upstream release.
   * New upstream version 4.0.5
     - security fixes (Closes: #1034721):
       - RPCoRDMA dissector crash (CVE-2023-1992)
       - LISP dissector large loop (CVE-2023-1993)
       - GQUIC dissector crash (CVE-2023-1994)
 .
   [ Remus-Gabriel Chelu ]
   * Adding Romanian debconf templates translation (Closes: #1033792)

xerial-sqlite-jdbc (3.40.1.0+dfsg-1+deb12u1) bookworm; urgency=medium
 .
   * Using a random UUID for the connection (Fixes CVE-2023-32697 in Bookworm,
     Closes: #1036706)

xmltooling (3.2.3-1+deb12u1) bookworm-security; urgency=high
 .
   * [9e43891] New patch: CPPXT-157 - Install blocking URI resolver into
     Santuario.
     Fix a denial of service vulnerability: Parsing of KeyInfo elements can
     cause remote resource access.
     Including certain legal but "malicious in intent" content in the
     KeyInfo element defined by the XML Signature standard will result
     in attempts by the SP's shibd process to dereference untrusted
     URLs.
     While the content of the URL must be supplied within the message
     and does not include any SP internal state or dynamic content,
     there is at minimum a risk of denial of service, and the attack
     could be combined with others to create more serious vulnerabilities
     in the future.
     Thanks to Scott Cantor for the fix. (Closes: #1037948)

yajl (2.1.0-3+deb12u2) bookworm; urgency=medium
 .
   [Tobias Frost]
   * Non-maintainer upload.
   * Cherry pick John's CVE fixes from 2.1.0-4 and 2.1.0-5
 .
   [John Stamp]
   * Patch CVE-2017-16516 and CVE-2022-24795 (Closes: #1040036)
   * The patch for CVE-2023-33460 turned out to be incomplete. Fix that. (Closes: #1039984)
yajl (2.1.0-3+deb12u1) bookworm; urgency=medium
 .
   * Non-maintainer upload.
   * Import upstream patch for CVE-2023-33460. (Closes: #1039984)
   * Fix d/control Homepage field (Closes: #1040034)
yajl (2.1.0-3+deb11u1) bullseye; urgency=medium
 .
   * Non-maintainer upload.
   * Import upstream patch for CVE-2023-33460. (Closes: #1039984)
=========================================
Sat, 10 Jun 2023 - Debian 12.0 released
=========================================