Accepted linux 6.11.7-1 (source) into unstable

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 09 Nov 2024 20:40:06 +0100
Source: linux
Architecture: source
Version: 6.11.7-1
Distribution: unstable
Urgency: medium
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Closes: 1062421
Changes:
 linux (6.11.7-1) unstable; urgency=medium
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.11.7
     - drm/amdgpu: fix random data corruption for sdma 7
     - cgroup: Fix potential overflow issue when checking max_depth
     - spi: geni-qcom: Fix boot warning related to pm_runtime and devres
     - slub/kunit: fix a WARNING due to unwrapped __kmalloc_cache_noprof
     - perf trace: Fix non-listed archs in the syscalltbl routines
     - perf python: Fix up the build on architectures without
       HAVE_KVM_STAT_SUPPORT
     - scsi: scsi_debug: Fix do_device_access() handling of unexpected SG copy
       length
     - wifi: iwlegacy: Fix "field-spanning write" warning in il_enqueue_hcmd()
       (Closes: #1062421)
     - mac80211: MAC80211_MESSAGE_TRACING should depend on TRACING
     - wifi: mac80211: skip non-uploaded keys in ieee80211_iter_keys
     - wifi: ath11k: Fix invalid ring usage in full monitor mode
     - wifi: rtw89: pci: early chips only enable 36-bit DMA on specific PCI hosts
     - wifi: brcm80211: BRCM_TRACING should depend on TRACING
     - RDMA/cxgb4: Dump vendor specific QP details
     - RDMA/mlx5: Round max_rd_atomic/max_dest_rd_atomic up instead of down
     - RDMA/bnxt_re: Fix the usage of control path spin locks
     - RDMA/bnxt_re: synchronize the qp-handle table array
     - wifi: iwlwifi: mvm: don't leak a link on AP removal
     - wifi: iwlwifi: mvm: really send iwl_txpower_constraints_cmd
     - wifi: iwlwifi: mvm: Fix response handling in iwl_mvm_send_recovery_cmd()
     - wifi: iwlwifi: mvm: don't add default link in fw restart flow
     - Revert "wifi: iwlwifi: remove retry loops in start"
     - [armhf] ASoC: cs42l51: Fix some error handling paths in cs42l51_probe()
     - macsec: Fix use-after-free while sending the offloading packet
       (CVE-2024-50261)
     - ASoC: dapm: fix bounds checker error in dapm_widget_list_create
     - sock_map: fix a NULL pointer dereference in sock_map_link_update_prog()
       (CVE-2024-50260)
     - net: stmmac: dwmac4: Fix high address display by updating reg_space[] from
       register values
     - net: stmmac: TSO: Fix unbalanced DMA map/unmap for non-paged SKB data
     - dpll: add Embedded SYNC feature for a pin
     - ice: add callbacks for Embedded SYNC enablement on dpll pins
     - ice: fix crash on probe for DPLL enabled E810 LOM
     - ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()
     - ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_find()
     - gtp: allow -1 to be specified as file description from userspace
     - net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT
     - bpf: Force checkpoint when jmp history is too long
     - net/sched: sch_api: fix xa_insert() error path in tcf_block_get_ext()
     - bpf: Fix out-of-bounds write in trie_get_next_key() (CVE-2024-50262)
     - net: fix crash when config small gso_max_size/gso_ipv4_max_size
       (CVE-2024-50258)
     - netfilter: Fix use-after-free in get_info() (CVE-2024-50257)
     - netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6()
       (CVE-2024-50256)
     - Bluetooth: hci: fix null-ptr-deref in hci_read_supported_codecs
       (CVE-2024-50255)
     - bpf: Free dynamically allocated bits in bpf_iter_bits_destroy()
       (CVE-2024-50254)
     - bpf: Add bpf_mem_alloc_check_size() helper
     - bpf: Check the validity of nr_words in bpf_iter_bits_new()
       (CVE-2024-50253)
     - net: skip offload for NETIF_F_IPV6_CSUM if ipv6 header contains extension
     - net: ethernet: mtk_wed: fix path of MT7988 WO firmware
     - netfilter: nft_payload: sanitize offset and length before calling
       skb_checksum()
     - bpf, test_run: Fix LIVE_FRAME frame update after a page has been recycled
     - iomap: improve shared block detection in iomap_unshare_iter
     - iomap: don't bother unsharing delalloc extents
     - iomap: share iomap_unshare_iter predicate code with fsdax
     - fsdax: remove zeroing code from dax_unshare_iter
     - fsdax: dax_unshare_iter needs to copy entire blocks (CVE-2024-50250)
     - iomap: turn iomap_want_unshare_iter into an inline function
     - firmware: arm_sdei: Fix the input parameter of cpuhp_remove_state()
     - afs: Fix missing subdir edit when renamed between parent dirs
     - ACPI: CPPC: Make rmw_lock a raw_spin_lock (CVE-2024-50249)
     - gpio: sloppy-logic-analyzer: Check for error code from devm_mutex_init()
       call
     - smb: client: fix parsing of device numbers
     - smb: client: set correct device number on nfs reparse points
     - [arm64] drm/mediatek: ovl: Remove the color format comment for
       ovl_fmt_convert()
     - [arm64] drm/mediatek: Fix color format MACROs in OVL
     - [arm64] drm/mediatek: Fix get efuse issue for MT8188 DPTX
     - [arm64] drm/mediatek: Use cmdq_pkt_create() and cmdq_pkt_destroy()
     - [arm64] drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy()
     - [arm64,armhf] drm/tegra: Fix NULL vs IS_ERR() check in probe()
     - cxl/events: Fix Trace DRAM Event Record
     - PCI: Fix pci_enable_acs() support for the ACS quirks
     - nvme: module parameter to disable pi with offsets
     - [arm64] drm/panthor: Fix firmware initialization on systems with a page
       size > 4k
     - [arm64] drm/panthor: Fail job creation when the group is dead
     - [arm64] drm/panthor: Report group as timedout when we fail to properly
       suspend
     - scsi: scsi_transport_fc: Allow setting rport state to current state
     - cifs: Improve creating native symlinks pointing to directory
     - cifs: Fix creating native symlinks pointing to current or parent directory
     - ACPI: resource: Fold Asus Vivobook Pro N6506M* DMI quirks together
     - [amd64] powercap: intel_rapl_msr: Add PL4 support for Arrowlake-U
     - [amd64] thermal: intel: int340x: processor: Remove MMIO RAPL CPU hotplug
       support
     - [amd64] thermal: intel: int340x: processor: Add MMIO RAPL PL4 support
     - NFS: remove revoked delegation from server's delegation list
     - misc: sgi-gru: Don't disable preemption in GRU driver
     - NFSD: Initialize struct nfsd4_copy earlier (CVE-2024-50241)
     - NFSD: Never decrement pending_async_copies on error
     - rpcrdma: Always release the rpcrdma_device's xa_array
     - ALSA: usb-audio: Add quirks for Dell WD19 dock
     - wifi: rtlwifi: rtl8192du: Don't claim USB ID 0bda:8171
     - usbip: tools: Fix detach_port() invalid port error path
     - usb: phy: Fix API devm_usb_put_phy() can not release the phy
     - usb: typec: fix unreleased fwnode_handle in typec_port_register_altmodes()
     - usb: typec: tcpm: restrict SNK_WAIT_CAPABILITIES_TIMEOUT transitions to
       non self-powered devices
     - [arm64] usb: typec: qcom-pmic-typec: use fwnode_handle_put() to release
       fwnodes
     - [arm64] usb: typec: qcom-pmic-typec: fix missing fwnode removal in error
       path
     - [arm64] phy: qcom: qmp-usb: fix NULL-deref on runtime suspend
       (CVE-2024-50240)
     - [arm64] phy: qcom: qmp-usb-legacy: fix NULL-deref on runtime suspend
       (CVE-2024-50239)
     - [arm64] phy: qcom: qmp-usbc: fix NULL-deref on runtime suspend
       (CVE-2024-50238)
     - xhci: Fix Link TRB DMA in command ring stopped completion event
     - xhci: Use pm_runtime_get to prevent RPM on unsupported systems
     - Revert "driver core: Fix uevent_show() vs driver detach race"
     - Revert "drm/amd/display: update DML2 policy
       EnhancedPrefetchScheduleAccelerationFinal DCN35"
     - wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower
       (CVE-2024-50237)
     - wifi: ath10k: Fix memory leak in management tx (CVE-2024-50236)
     - wifi: cfg80211: clear wdev->cqm_config pointer on free (CVE-2024-50235)
     - wifi: iwlegacy: Clear stale interrupts before resuming device
       (CVE-2024-50234)
     - wifi: iwlwifi: mvm: fix 6 GHz scan construction
     - staging: iio: frequency: ad9832: fix division by zero in
       ad9832_calc_freqreg()
     - dt-bindings: iio: adc: ad7380: fix ad7380-4 reference supply
     - iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr()
       (CVE-2024-50232)
     - iio: gts-helper: Fix memory leaks for the error path of
       iio_gts_build_avail_scale_table()
     - iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table()
       (CVE-2024-50231)
     - iio: light: veml6030: fix microlux value calculation
     - nilfs2: fix kernel bug due to missing clearing of checked flag
       (CVE-2024-50230)
     - nilfs2: fix potential deadlock with newly created symlinks
       (CVE-2024-50229)
     - [riscv64] ACPI: fix early_ioremap to early_memremap
     - mm: shmem: fix data-race in shmem_getattr() (CVE-2024-50228)
     - tools/mm: -Werror fixes in page-types/slabinfo
     - mm: shrinker: avoid memleak in alloc_shrinker_info
     - firmware: microchip: auto-update: fix poll_complete() to not report
       spurious timeout errors
     - [amd64] thunderbolt: Fix KASAN reported stack out-of-bounds read in
       tb_retimer_scan()
     - [amd64] thunderbolt: Honor TMU requirements in the domain when setting TMU
       mode
     - [arm64] soc: qcom: pmic_glink: Handle GLINK intent allocation rejections
     - cxl/port: Fix use-after-free, permit out-of-order decoder shutdown
       (CVE-2024-50226)
     - cxl/port: Fix CXL port initialization order when the subsystem is built-in
     - mmc: sdhci-pci-gli: GL9767: Fix low power mode on the set clock function
     - mmc: sdhci-pci-gli: GL9767: Fix low power mode in the SD Express process
     - block: fix sanity checks in blk_rq_map_user_bvec
     - cgroup/bpf: use a dedicated workqueue for cgroup bpf destruction
     - phy: freescale: imx8m-pcie: Do CMN_RST just before PHY PLL lock check
     - btrfs: merge btrfs_orig_bbio_end_io() into btrfs_bio_end_io()
     - btrfs: fix error propagation of split bios (CVE-2024-50225)
     - spi: spi-fsl-dspi: Fix crash when not using GPIO chip select
       (CVE-2024-50224)
     - riscv: vdso: Prevent the compiler from inserting calls to memset()
     - Input: edt-ft5x06 - fix regmap leak when probe fails
     - ALSA: hda/realtek: Limit internal Mic boost on Dell platform
     - [riscv64] efi: Set NX compat flag in PE/COFF header
     - [riscv64] Prevent a bad reference count on CPU nodes
     - [riscv64] Use '%u' to format the output of 'cpu'
     - [riscv64] Remove unused GENERATING_ASM_OFFSETS
     - [riscv64] Remove duplicated GET_RM
     - scsi: ufs: core: Fix another deadlock during RTC update
     - cxl/port: Fix cxl_bus_rescan() vs bus_rescan_devices()
     - cxl/acpi: Ensure ports ready at cxl_acpi_probe() return
     - sched/numa: Fix the potential null pointer dereference in task_numa_work()
       (CVE-2024-50223)
     - posix-cpu-timers: Clear TICK_DEP_BIT_POSIX_TIMER on clone
     - iov_iter: fix copy_page_from_iter_atomic() if KMAP_LOCAL_FORCE_MAP
     - tpm: Return tpm2_sessions_init() when null key creation fails
     - tpm: Rollback tpm2_load_null()
     - drm/amd/pm: Vangogh: Fix kernel memory out of bounds write
       (CVE-2024-50221)
     - drm/amdgpu/smu13: fix profile reporting
     - tpm: Lazily flush the auth session
     - mptcp: init: protect sched with rcu_read_lock
     - mei: use kvmalloc for read buffer
     - fork: do not invoke uffd on fork if error occurs (CVE-2024-50220)
     - fork: only invoke khugepaged, ksm hooks if no error
     - mm/page_alloc: let GFP_ATOMIC order-0 allocs access highatomic reserves
       (CVE-2024-50219)
     - [x86] traps: Enable UBSAN traps on x86
     - [x86] traps: move kmsan check after instrumentation_begin
     - ocfs2: pass u64 to ocfs2_truncate_inline maybe overflow (CVE-2024-50218)
     - resource,kexec: walk_system_ram_res_rev must retain resource flags
     - mctp i2c: handle NULL header address
     - btrfs: fix use-after-free of block device file in
       __btrfs_free_extra_devids()
     - accel/ivpu: Fix NOC firewall interrupt handling
     - xfs: fix finding a last resort AG in xfs_filestream_pick_ag
       (CVE-2024-50216)
     - ALSA: hda/realtek: Fix headset mic on TUXEDO Gemini 17 Gen3
     - ALSA: hda/realtek: Fix headset mic on TUXEDO Stellaris 16 Gen6 mb1
     - nvmet-auth: assign dh_key to NULL after kfree_sensitive (CVE-2024-50215)
     - nvme: re-fix error-handling for io_uring nvme-passthrough
     - kasan: remove vmalloc_percpu test
     - drm/tests: helpers: Add helper for drm_display_mode_from_cea_vic()
     - drm/connector: hdmi: Fix memory leak in drm_display_mode_from_cea_vic()
       (CVE-2024-50214)
     - drm/tests: hdmi: Fix memory leaks in drm_display_mode_from_cea_vic()
       (CVE-2024-50213)
     - io_uring/rw: fix missing NOWAIT check for O_DIRECT start write
     - btrfs: fix extent map merging not happening for adjacent extents
     - btrfs: fix defrag not merging contiguous extents due to merged extent maps
     - gpiolib: fix debugfs newline separators
     - gpiolib: fix debugfs dangling chip separator
     - vmscan,migrate: fix page count imbalance on node stats when demoting pages
     - mm, mmap: limit THP alignment of anonymous mappings to PMD-aligned sizes
     - Input: fix regression when re-registering input handlers
     - mm: multi-gen LRU: ignore non-leaf pmd_young for force_scan=true
     - mm: multi-gen LRU: remove MM_LEAF_OLD and MM_NONLEAF_TOTAL stats
     - mm: shrink skip folio mapped by an exiting process
     - mm: multi-gen LRU: use {ptep,pmdp}_clear_young_notify()
     - [riscv64] dts: starfive: Update ethernet phy0 delay parameter values for
       Star64
     - [riscv64] dts: starfive: disable unused csi/camss nodes
     - [arm64] dts: qcom: msm8939: revert use of APCS mbox for RPM
     - [arm64] dts: qcom: x1e80100-yoga-slim7x: fix nvme regulator boot glitch
     - [arm64] dts: qcom: x1e80100: Fix up BAR spaces
     - [arm64] dts: qcom: x1e80100-vivobook-s15: fix nvme regulator boot glitch
     - [arm64] dts: qcom: x1e80100: fix PCIe4 interconnect
     - [arm64] dts: qcom: x1e80100-qcp: fix nvme regulator boot glitch
     - [arm64] dts: qcom: x1e80100-crd: fix nvme regulator boot glitch
     - [arm64] dts: imx8ulp: correct the flexspi compatible string
     - [arm64] dts: qcom: x1e80100: Add Broadcast_AND region in LLCC block
     - [arm64] dts: qcom: x1e80100: fix PCIe4 and PCIe6a PHY clocks
     - [x86] drm/i915: Skip programming FIA link enable bits for MTL+
     - [x86] drm/i915: disable fbc due to Wa_16023588340
     - [x86] drm/i915/display: Cache adpative sync caps to use it later
     - [x86] drm/i915/display: WA for Re-initialize dispcnlunitt1 xosc clock
     - [x86] drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability
     - [x86] drm/i915/hdcp: Add encoder check in hdcp2_get_capability
     - [x86] drm/i915/dp: Clear VSC SDP during post ddi disable routine
     - [x86] drm/i915/display/dp: Compute AS SDP when vrr is also enabled
     - [x86] drm/i915/pps: Disable DPLS_GATING around pps sequence
     - [x86] drm/i915: move rawclk from runtime to display runtime info
     - [x86] drm/i915/psr: Prevent Panel Replay if CRC calculation is enabled
     - [x86] drm/i915/display: Don't enable decompression on Xe2 with Tile4
     - drm/amdgpu/swsmu: fix ordering for setting workload_mask
     - drm/amdgpu/swsmu: default to fullscreen 3D profile for dGPUs
     - drm/amdgpu: handle default profile on on devices without fullscreen 3D
     - [mips64el] export __cmpxchg_small()
     - rcu/kvfree: Add kvfree_rcu_barrier() API
     - lib: alloc_tag_module_unload must wait for pending kfree_rcu calls
       (CVE-2024-50212)
     - rcu/kvfree: Refactor kvfree_rcu_queue_batch()
Checksums-Sha1:
 5f383a731a0ce4610613d9868a3fc66cf401b5d8 204594 linux_6.11.7-1.dsc
 271c7e72ef14f7c959357e3514526c554a6d46ce 149926228 linux_6.11.7.orig.tar.xz
 6f666724a78f5fa4513b8b5ab98533e3b1613493 1597936 linux_6.11.7-1.debian.tar.xz
 f227e24bf6b198c2d2355d46bbbfdb9d558f4da4 7525 linux_6.11.7-1_source.buildinfo
Checksums-Sha256:
 8ccce2478f15fbc05edd18b24bf08b2b02df67cb2099f28a3c0765c7ab3ac854 204594 linux_6.11.7-1.dsc
 b9850a3f11f67d6d13224b6d7071da392f45edd023e7d681b62a8c42c1dd48a0 149926228 linux_6.11.7.orig.tar.xz
 0ab2a17c70355bb90092f909658091baae9cd35546b2eba3cca7e8bc66513f90 1597936 linux_6.11.7-1.debian.tar.xz
 d577ebabbf851e9b2f27746b1ff73fe2de693070f0016e1328a8020776e8a991 7525 linux_6.11.7-1_source.buildinfo
Files:
 5fd732296e6b3938936ce63c04e77080 204594 kernel optional linux_6.11.7-1.dsc
 0b333bd867e5ffb38f928df456ac28c8 149926228 kernel optional linux_6.11.7.orig.tar.xz
 54be6d8319acda5ff1678bd796f66d7c 1597936 kernel optional linux_6.11.7-1.debian.tar.xz
 182334a1de973ab4738f5ed9e840a080 7525 kernel optional linux_6.11.7-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----
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=fvZS
-----END PGP SIGNATURE-----