Accepted linux 6.12.74-2~bpo12+1 (source) into oldstable-backports

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 13 Mar 2026 15:32:42 +0100
Source: linux
Architecture: source
Version: 6.12.74-2~bpo12+1
Distribution: bookworm-backports
Urgency: high
Maintainer: Debian Kernel Team <debian-kernel@lists.debian.org>
Changed-By: Ben Hutchings <benh@debian.org>
Changes:
 linux (6.12.74-2~bpo12+1) bookworm-backports; urgency=high
 .
   * Rebuild for bookworm-backports
 .
 linux (6.12.74-2) trixie-security; urgency=high
 .
   * Refresh patchset to address multiple vulnerabilities in AppArmor
 .
 linux (6.12.74-1) trixie-security; urgency=high
 .
   * New upstream stable update:
     https://www.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.12.74
     - scsi: qla2xxx: Fix bsg_done() causing double free
     - bnxt_en: Change FW message timeout warning
     - bnxt_en: hide CONFIG_DETECT_HUNG_TASK specific code
     - [arm64] bus: fsl-mc: Replace snprintf and sprintf with sysfs_emit in sysfs
       show functions
     - [arm64] bus: fsl-mc: fix use-after-free in driver_override_show()
       (CVE-2026-23221)
     - ALSA: hda/realtek: Fix headset mic for TongFang X6AR55xU
     - [amd64] ASoC: amd: yc: Add ASUS ExpertBook PM1503CDA to quirks list
     - ALSA: hda/realtek: Add quirk for Inspur S14-G1
     - ALSA: hda/realtek - fixed speaker no sound
     - romfs: check sb_set_blocksize() return value
     - [arm64,armhf] drm/tegra: hdmi: sor: Fix error: variable ‘j’ set but not
       used
     - [amd64] platform/x86: classmate-laptop: Add missing NULL pointer checks
     - [amd64] ASoC: Intel: sof_es8336: Add DMI quirk for Huawei BOD-WXX9
     - [amd64] ASoC: amd: yc: Add quirk for HP 200 G2a 16
     - ALSA: hda/realtek: Enable headset mic for Acer Nitro 5
     - [amd64] platform/x86/amd/pmc: Add quirk for MECHREVO Wujie 15X Pro
     - [amd64] platform/x86: panasonic-laptop: Fix sysfs group leak in error path
     - [amd64] ASoC: cs42l43: Correct handling of 3-pole jack load detection
     - tracing/dma: Cap dma_map_sg tracepoint arrays to prevent buffer overflow
     - drm/amd/display: extend delta clamping logic to CM3 LUT helper
     - drm/amd/display: remove assert around dpp_base replacement
     - mm/hugetlb: fix copy_hugetlb_page_range() to use ->pt_share_count
     - mm/hugetlb: fix hugetlb_pmd_shared() (CVE-2026-23100)
     - mm/hugetlb: fix two comments related to huge_pmd_unshare()
     - mm/hugetlb: fix excessive IPI broadcasts when unsharing PMD tables using
       mmu_gather
     - Revert "wireguard: device: enable threaded NAPI"
     - cpuset: Fix missing adaptation for cpuset_is_populated
     - fbdev: smscufx: properly copy ioctl memory to kernelspace
     - f2fs: fix to add gc count stat in f2fs_gc_range
     - f2fs: fix to check sysfs filename w/ gc_pin_file_thresh correctly
     - f2fs: fix out-of-bounds access in sysfs attribute read/write
     - f2fs: fix to avoid mapping wrong physical block for swapfile
     - [arm64] iommu/arm-smmu-qcom: do not register driver in probe()
     - f2fs: fix to avoid UAF in f2fs_write_end_io()
     - f2fs: fix IS_CHECKPOINTED flag inconsistency issue caused by concurrent
       atomic commit and checkpoint writes
     - USB: serial: option: add Telit FN920C04 RNDIS compositions
 .
   [ Simone Weiß ]
   * db-mok: Remove unused function, fixing compilation warning
 .
   [ Ben Hutchings ]
   * CI: Delete support for ccache, which was removed from common pipeline
   * CI: Update build job to work after another common pipeline change
 .
   [ Salvatore Bonaccorso ]
   * apparmor: validate DFA start states are in bounds in unpack_pdb
   * apparmor: fix memory leak in verify_header
   * apparmor: replace recursive profile removal with iterative approach
   * apparmor: fix side-effect bug in match_char() macro usage
   * apparmor: fix missing bounds check on DEFAULT table in verify_dfa()
   * apparmor: Fix double free of ns_name in aa_replace_profiles()
   * apparmor: unprivileged local user can privilge escalate policy management
   * apparmor: fix differential encoding verification
   * apparmor: fix race on rawdata dereference
Checksums-Sha1:
 b704734ac7139c2592414cf8133de1ad8c92dfa6 219284 linux_6.12.74-2~bpo12+1.dsc
 48776b1c45e10050a0e728a64f3beade44823af8 1783864 linux_6.12.74-2~bpo12+1.debian.tar.xz
 778a59c5808b9879ef05f7fe1f8fb28b765bdecb 6489 linux_6.12.74-2~bpo12+1_source.buildinfo
Checksums-Sha256:
 d3d4fa57d5bf07390874eb662c81845173fb97c9335067af00d304401f940fd1 219284 linux_6.12.74-2~bpo12+1.dsc
 e0a641217e22b87674feb43559cf1e36c3ccdcdb7ee4cff334e962491147f6ff 1783864 linux_6.12.74-2~bpo12+1.debian.tar.xz
 c67b527fdae70e192e64e9e76dce6c79374afe46595e9398e6da37ea47f6c976 6489 linux_6.12.74-2~bpo12+1_source.buildinfo
Files:
 16cb07b6c85d8904b148b25a400383d9 219284 kernel optional linux_6.12.74-2~bpo12+1.dsc
 47a40bd13ea9550bae063a2636abc8b0 1783864 kernel optional linux_6.12.74-2~bpo12+1.debian.tar.xz
 e759c0f15e3afdc66f40085f7ad17a5e 6489 kernel optional linux_6.12.74-2~bpo12+1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEErCspvTSmr92z9o8157/I7JWGEQkFAmm1tN4ACgkQ57/I7JWG
EQkgJRAAuEVweQ5zIV31JiY2YZ7qcEHw4ApPWiX0JGbkO8UpLq5gLgkw9cQGA+fg
RzxHFUsmzKGnwjL8BBW2qABqb6E189V6yAcGJsH/t1qtbzZldBAI1Jxmy0bp/Hs+
VUc4I2QPDEPWnsB6P9/Lv7F7s2EtURHu7PFjvGoxd6lYy3fMCyNY6PrimtCqEQO+
GV8uvTIVcx8DJHghaDr6wB1e1JFmFx59AMeSU4pHqzTcDuOnYo3ydWEEkwNLl9LG
1tLU+y6fuXKZS7Xs57EYvHRzKzmejnkzwERXUL+kyn38Nhm/g5lsgOtFID0ILsxJ
x4lO+3bbSsHHOch6RTfmvmAJ6wqLmLBlS5tE1PfI8e4TEBy+cTOSYbChXB9runQU
X7DDaWrDvSSnw3AazVZIVHqz2E/5V0AutpFoJ0DYUEEfhI1mYteGhRSJLkMeJde0
v/dlCF7ai3OMSFRm4WYDMZmp9i46gqRzH3qClzm11xpFVoAOEq592l8/1pdxMrjy
RDnj1vR9tEYPuQENwbrcMZQ7XmjGsrRAT4NFHvYtFUE9HXOtYJr+4zj67kq4/io8
hGP2TCaZ4fcUrOWwdvIYY4w3kaFwIHUxuFIj7q/MoyTJZBMZaWikSLBju4Pa7JcT
EO+l/eaH48XhgeyWFEPlDOTH8drGJRuMW9fnPHh6J4OvkRYn5G0=
=9lca
-----END PGP SIGNATURE-----